last executing test programs:

34m3.112398661s ago: executing program 32 (id=303):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, 0x0, 0x0)

29m50.210528828s ago: executing program 33 (id=1175):
openat$tun(0xffffffffffffff9c, 0x0, 0x20702, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x7, 0x4, 0x8, 0xd9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000000, 0x0, 0x200000000000000}, 0x50)

24m6.893694644s ago: executing program 34 (id=2822):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000240)=0x7f)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0xe)
ioctl$KDSIGACCEPT(r3, 0x80047456, 0x100000001ffffffd)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r4, 0x40045612, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x4, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[], 0x0, 0x5}, 0x94)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
landlock_create_ruleset(0x0, 0x0, 0x3)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$VHOST_VDPA_SET_GROUP_ASID(r5, 0x4008af7c, &(0x7f0000000280)={0x1, 0x100})
getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x38, 0x1403, 0x1, 0x0, 0x25dfdbfb, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'vxcan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x200808e4}, 0x8000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)

23m51.650870725s ago: executing program 35 (id=2866):
setsockopt$MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, 0x0, 0x0)
setsockopt$MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f00000001c0)={{0xa, 0x4e22, 0xc4, @loopback, 0x3c}, {0xa, 0x4e21, 0xdb94, @private1, 0x1}, 0x1, {[0xc, 0xfd, 0x4, 0x1, 0xffffff27, 0xff, 0x1, 0xde]}}, 0x5c)
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000300)={'filter\x00', 0x6002, 0x4, 0x3d0, 0x200, 0x0, 0x200, 0x2e8, 0x2e8, 0x2e8, 0x4, 0x0, {[{{@uncond, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x7}}}, {{@arp={@dev, @remote, 0x0, 0x0, 0x0, 0xfe, {@empty, {[0x0, 0x0, 0x0, 0x0, 0xff]}}, {@mac=@broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth1_vlan\x00', 'nicvf0\x00', {}, {}, 0x0, 0x80}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @multicast2, @private, 0x0, 0x1}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xf0}}], {{'\x00', 0xc0, 0xe8}, {0x28, '\x00', 0x0, 0xfffffffb}}}}, 0x420)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680))
r1 = eventfd2(0x1, 0x0)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0, 0xffff1000})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/4096})
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getpid()
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)

16m38.709838279s ago: executing program 7 (id=3612):
r0 = io_uring_setup(0xf25, &(0x7f0000000440)={0x0, 0xf855, 0x80, 0x3, 0x117})
io_uring_register$IORING_REGISTER_FILES(r0, 0x1e, 0x0, 0x0)

16m38.302278688s ago: executing program 7 (id=3613):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r1, &(0x7f0000000000)={&(0x7f0000000280)=@pptp={0x18, 0x2, {0x0, @empty}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYRES16=r0], 0x10b8}, 0x40810)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec85"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, 0x0, &(0x7f00000000c0))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000280)="db", 0x1}], 0x1}, 0x41)
recvmsg(r6, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000036000b63d25a80648c2594f90b24fc60", 0x14}], 0x1}, 0x0)
recvmmsg(r1, &(0x7f0000000fc0)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x40, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x181603, 0x0)

16m34.038918396s ago: executing program 7 (id=3620):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@updpolicy={0xc4, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x50, 0x0, 0x0, 0xfffffffffffffffb}, {0x0, 0x0, 0x200000000000000}}, [@mark={0xc, 0x15, {0x35075a, 0x8}}]}, 0xc4}}, 0x2c000010)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}}}, 0xb8}}, 0x0)

16m33.655480124s ago: executing program 7 (id=3624):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='cubic', 0x4)
listen(r0, 0x4000)
close(r0)

16m32.440902914s ago: executing program 7 (id=3625):
openat$comedi(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)

16m30.68788815s ago: executing program 7 (id=3626):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=@newtaction={0x70, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_ctinfo={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x23, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0xfffffd5a, 0x3, {0x0, 0x0, 0x0, 0x0, 0x5}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x3f}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8}]}, {0x4}, {0xc}, {0xfffffe06}}}]}]}, 0x70}}, 0x0)

16m15.408575514s ago: executing program 36 (id=3626):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=@newtaction={0x70, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_ctinfo={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x23, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0xfffffd5a, 0x3, {0x0, 0x0, 0x0, 0x0, 0x5}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x3f}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8}]}, {0x4}, {0xc}, {0xfffffe06}}}]}]}, 0x70}}, 0x0)

15m30.428834125s ago: executing program 6 (id=3718):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x19, &(0x7f0000000400)=ANY=[@ANYBLOB="180000008f000000000000000b00000018110000", @ANYBLOB="0000000000000000b702000014000000b703000000000000850000008600"], &(0x7f0000000080)='GPL\x00', 0x7, 0x1000, &(0x7f0000000cc0)=""/4096, 0x41100, 0x2f}, 0x94)

15m30.170139066s ago: executing program 6 (id=3719):
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x38}}, 0x44810)

15m30.169893388s ago: executing program 3 (id=3720):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)

15m30.030500418s ago: executing program 6 (id=3721):
pselect6(0x40, &(0x7f00000000c0)={0x6, 0xfffffffffffffffd, 0x9, 0x40, 0x2, 0xd}, 0x0, &(0x7f0000000680)={0x7ff, 0x7, 0x5, 0x7, 0xffffffffffffff22, 0x2, 0x5, 0x8}, 0x0, 0x0)

15m29.928529807s ago: executing program 3 (id=3723):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000000000041000040"])
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
close_range(r3, 0xffffffffffffffff, 0x0)

15m29.834898282s ago: executing program 6 (id=3724):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
syz_open_dev$radio(0x0, 0x0, 0x2)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x801, 0x0)
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x0, 0x8, 0x81, 0x0, 0x9, 0xfffffffffffffffd, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000200)={0x48})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0)
add_key$keyring(&(0x7f0000000400), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="d80000001b0001000000000000000000fc000000000000", @ANYRES32=0x0], 0xd8}, 0x1, 0x0, 0x0, 0x4044001}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
fsopen(&(0x7f0000000100)='ecryptfs\x00', 0x0)
r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r4, r0, &(0x7f00000000c0)=0x58, 0x8)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000196378"], 0x5c}, 0x1, 0x0, 0x0, 0x20000014}, 0x0)

15m29.640371615s ago: executing program 3 (id=3725):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = syz_io_uring_setup(0xcaf, &(0x7f0000000100)={0x0, 0xb601, 0x1, 0x5, 0x17a}, 0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0xc000000, &(0x7f00000001c0)=[{0x0}], 0x1, 0x1e})
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000003980)={0x0, 0x0, &(0x7f0000003940)={&(0x7f00000001c0)={0x1c, 0x0, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80c1}, 0x10)
syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec25, 0x0, 0x0, 0x2fb}, &(0x7f0000000140), &(0x7f00000001c0))
io_uring_enter(r1, 0x847ba, 0x20000000, 0xe, 0x0, 0x0)

15m29.5016488s ago: executing program 3 (id=3726):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

15m29.378842095s ago: executing program 3 (id=3727):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r1 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x2}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, 0x0, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, 0x0, 0x10)
tkill(r1, 0xb)
getgroups(0xfffffffffffffdb2, 0xfffffffffffffffe)
socket$alg(0x26, 0x5, 0x0)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB], 0xd8)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

15m28.379972537s ago: executing program 3 (id=3728):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x40, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x3, 0x0, &(0x7f00000003c0)="131c87", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
write$cgroup_devices(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="1e030600bc5cb60128876360864666702c1ffe80000000000000", @ANYRESDEC], 0xffdd)

15m27.703673537s ago: executing program 6 (id=3731):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)

15m24.064325566s ago: executing program 6 (id=3736):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000880), 0x12)

15m13.20991055s ago: executing program 37 (id=3728):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x40, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x3, 0x0, &(0x7f00000003c0)="131c87", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
write$cgroup_devices(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="1e030600bc5cb60128876360864666702c1ffe80000000000000", @ANYRESDEC], 0xffdd)

15m8.211827366s ago: executing program 38 (id=3736):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f0000000880), 0x12)

3m27.73688664s ago: executing program 0 (id=4613):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
preadv2(r0, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0x0, 0x4, 0x8)

3m27.128413193s ago: executing program 0 (id=4614):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$uinput_user_dev(r2, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000052c0), 0x0, 0x40000000, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
read$FUSE(r5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x8, &(0x7f0000001340)=@framed={{0xbe, 0xa, 0xa, 0x0, 0x0, 0x79, 0x10, 0x8}, [@tail_call]}, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x9, 0x0, 0x0, 0x0, 0x61, 0x11, 0x10}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x4, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe}, 0x70)

3m25.496449166s ago: executing program 0 (id=4618):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x20100, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000600)={r1}, 0xc)
mount$binderfs(0x0, 0x0, 0x0, 0x4000, 0x0)
ioctl$sock_FIOGETOWN(r2, 0x8903, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0xc0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x3, 0xde, &(0x7f0000000340)=""/222}, 0x94)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0xd6f0, 0x0, 0x0, 0xfffffffd})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@can_newroute={0x1c, 0x18, 0x1, 0x0, 0x200, {0x1d, 0x1, 0x8}, [@CGW_SRC_IF={0x8}]}, 0x1c}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
socket$netlink(0x10, 0x3, 0x0)

3m24.264443817s ago: executing program 0 (id=4620):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000ea28a8f398a5711472e4ca602e3e66fdecdb3b57ac6ea04cb3cb9d5c43298645604818c5"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000980)={&(0x7f0000000880)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6a}]}}, 0x0, 0x2a, 0x0, 0x1, 0x1}, 0x28)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0xc0)
sendmsg$NFC_CMD_GET_TARGET(0xffffffffffffffff, 0x0, 0x4000094)
syz_open_dev$vbi(0x0, 0x1, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40)
sendmsg$NFT_BATCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a400000000c0a010400000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c000180060001"], 0x68}, 0x1, 0x0, 0x0, 0x24000840}, 0x40)

3m22.828504339s ago: executing program 0 (id=4621):
arch_prctl$ARCH_SHSTK_DISABLE(0x5002, 0x1)
arch_prctl$ARCH_SHSTK_UNLOCK(0x5004, 0x1)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = open(0x0, 0x8060, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = open(&(0x7f0000000340)='./file0\x00', 0x113800, 0x0)
fcntl$lock(r2, 0x25, &(0x7f00000002c0))
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='fdinfo/4\x00')
preadv(r3, &(0x7f0000001600)=[{&(0x7f0000000240)=""/41, 0x29}], 0x1, 0x0, 0x0)
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x2)
ptrace(0x10, r0)
ptrace$ARCH_SHSTK_DISABLE(0x1e, r0, 0x1, 0x5002)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x2a, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa080058bd4ddae84500001c006500000008907800000000000000000000020000000000"], 0x0)
r4 = syz_open_dev$dri(0x0, 0x1ff, 0x101000)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, 0x0)
ioctl$DRM_IOCTL_MODE_CURSOR(r4, 0xc01c64a3, &(0x7f0000000280)={0x3, 0x0, 0x1, 0x0, 0xd, 0x1ff, 0x1})
r5 = fsopen(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bca)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r6 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r6, &(0x7f0000002700)=""/102392, 0x18ff8)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x6, 0x0, 0x0, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x4, 0x8, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file4\x00', 0x11c0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file4\x00', &(0x7f0000000040), 0x4, &(0x7f00000000c0)={[{@mpol={'mpol', 0x3d, {'bind', '=static'}}}]})

3m21.917162203s ago: executing program 0 (id=4622):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x50, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @key_params=[@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}], @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @key_params=[@NL80211_ATTR_KEY_DEFAULT={0x4}]]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

3m6.722166221s ago: executing program 39 (id=4622):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x50, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @key_params=[@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}], @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @key_params=[@NL80211_ATTR_KEY_DEFAULT={0x4}]]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

2m36.04131789s ago: executing program 8 (id=4667):
eventfd(0x9)
r0 = openat$dsp(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001180)=0x2000000)
mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xe825, 0x3400, 0x1, 0x2db}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000500)=0x57)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x5008, 0x0)
ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f00000000c0))

2m35.254718489s ago: executing program 8 (id=4668):
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x40810)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x4d}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, 0x0, &(0x7f00000000c0))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001600)={0x0, 0x0, 0x0}, 0x41)
recvmsg(r3, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)

2m31.018410055s ago: executing program 8 (id=4669):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000)
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r4, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x1fee00}], 0x2, 0x0, 0x0, 0x0)

2m27.507631747s ago: executing program 8 (id=4674):
setuid(0xee01)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$ttys(0xc, 0x2, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x1)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff})
write$binfmt_aout(r2, &(0x7f0000000000)=ANY=[], 0xfdef)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket(0x10, 0x80003, 0x0)
prctl$PR_SET_MM(0x23, 0x2, &(0x7f0000001000/0x4000)=nil)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xc}, {0xffff, 0xffff}, {0xfff3}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x6, 0x2, {0xf, "00000000000000000001000f0e00"}}}]}, 0x48}}, 0x0)
shmget$private(0x0, 0x4000, 0x10, &(0x7f0000000000/0x4000)=nil)
r4 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r4, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
setsockopt$sock_linger(r4, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r4, &(0x7f0000002140)={0xa, 0x4e28, 0x8, @mcast2, 0x5}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

2m20.695821965s ago: executing program 8 (id=4680):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)

2m20.586389392s ago: executing program 8 (id=4682):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$SNDCTL_DSP_SPEED(r3, 0xc0045002, &(0x7f0000000000))
read$dsp(r3, &(0x7f0000000300)=""/79, 0x4f)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
syz_open_dev$media(0x0, 0x9, 0x40b02)
pselect6(0x40, &(0x7f00000000c0)={0x6, 0xfffffffffffffffd, 0x9, 0x40, 0x2, 0xd}, 0x0, &(0x7f0000000680)={0x7ff, 0x7, 0x5, 0x7, 0xffffffffffffff22, 0x2, 0x5, 0x8}, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x8000, 0xffffffffffffffff)
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, 0x0)

2m5.186297595s ago: executing program 40 (id=4682):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$SNDCTL_DSP_SPEED(r3, 0xc0045002, &(0x7f0000000000))
read$dsp(r3, &(0x7f0000000300)=""/79, 0x4f)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
syz_open_dev$media(0x0, 0x9, 0x40b02)
pselect6(0x40, &(0x7f00000000c0)={0x6, 0xfffffffffffffffd, 0x9, 0x40, 0x2, 0xd}, 0x0, &(0x7f0000000680)={0x7ff, 0x7, 0x5, 0x7, 0xffffffffffffff22, 0x2, 0x5, 0x8}, 0x0, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x8000, 0xffffffffffffffff)
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, 0x0)

18.917293318s ago: executing program 1 (id=4948):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r1)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000080)=[{&(0x7f0000000180)="580000001400192340834b80040d8c561e067f0202ff000000020000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000c0c1000000000000000", 0x56}], 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000001010101000000000000000002000000180001801400018008000100ac1414aa08000200000000000c0019800800010015010000cbb146f85a5f17e6840f9ae44991c875a2692f0c907b12f05223842f401335454051560bc25384586969afbff42f4761336f9086"], 0x38}}, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYBLOB="0500000004000000040000000700000000000000", @ANYRES32, @ANYBLOB="000000000000006e384e8f8ddc8df329eda0c300", @ANYRES32=0x0, @ANYRES32=r4, @ANYRES32=r0], 0x48)
r6 = epoll_create(0x10)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r5, &(0x7f00000000c0))
capset(0x0, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd, 0x0, 0xfffff05b})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x26e1, 0x0)
r7 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000180)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000140), 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000040)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000080), 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x0, 0x48, 0x830, 0x56bb, 0x6, 0x7, 0x100001, 0x8f5a, 0x5}, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000)={0x6, 'wlan1\x00', {}, 0x108})
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01090000000000000f478e"])
r8 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x101800, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r10, 0xae80, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x3)

17.429359826s ago: executing program 1 (id=4951):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
add_key$user(0x0, &(0x7f0000000440), &(0x7f00000000c0), 0x0, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={'blake2b-256\x00'}})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(0xffffffffffffffff, 0xc08c5336, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f00000003c0), 0xb, 0x80)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0xc1105511, &(0x7f0000000040))

16.204336375s ago: executing program 5 (id=4954):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r3, 0x2000)
openat$kvm(0xffffff9c, 0x0, 0x800, 0x0)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r4, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)

14.620720197s ago: executing program 4 (id=4956):
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(0xffffffffffffffff, 0xc01864b0, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x3a9e9908})
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
write$P9_RSTATu(0xffffffffffffffff, 0x0, 0x2c2)
socket$nl_audit(0x10, 0x3, 0x9)
name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x400)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)
recvmmsg(r2, &(0x7f0000001b40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
lchown(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

13.500439444s ago: executing program 9 (id=4957):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
close(0x3)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={<r3=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000000340)={r3, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000"], 0x30}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x19, &(0x7f0000000340), 0x8)

13.348163119s ago: executing program 2 (id=4958):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)

13.166896572s ago: executing program 1 (id=4959):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000001080)="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", 0x444}, {&(0x7f00000002c0)="ab29d92826349952eb8f7a2a74f535bc9739c1df57144c51a3391625b8b5354134b06ef1355506aeae96e3f097503998f375a054cf3d7de4fe53ea51518955349cdbadca60e1c65cc18dbe99369be03e492fb55fc906dc9b1477866b7882c57bb6f7f7c3ee17c420000000054a63ac58225ed0502f5ac8999e0c74a5dbb320bd54ec813e8bee6bfa5cbfb0726ac1b6ad97d802d5fae186f0768021fb965c7396854e2a3ac844a3769f8449901ba5e2b2da1ff6119aeb26ac204cfc6b54be73b6f195491ae2c0cb26b0cba61dae7a17740e8112ff188919c6e2e31a2a074863edba4a0e58b61f48eccfcc29d7f9e48a43b8cb7d3c5a1e5aa67f87538140f8d633a54bceb8b1dda2397ea147d3b26e903f608b6ab1844ea7cf630d828118bba0f0f85e2e6316ae1ed9a2a7d08a05c170cb76bf111930df0cf760f7768571afdefe82a95296cee7c010f748a97046efcc774e7d85edbd5058104fef4942fb4430da89f67d1fea", 0x165}], 0x2, 0x0, 0x0, 0x900}}], 0x1, 0x0)

13.166574879s ago: executing program 9 (id=4960):
r0 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f00000004c0), r5)
sendmsg$NFC_CMD_ENABLE_SE(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x71eff8d2059dfe60}, 0xc004)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000000)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f0000000640)={0x2, 0x0, {&(0x7f0000001900)=""/4096, 0x1000, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000080)={0x2, 0x0, {&(0x7f0000001840)=""/141, 0x8d, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48)

11.8392945s ago: executing program 9 (id=4961):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r1)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000080)=[{&(0x7f0000000180)="580000001400192340834b80040d8c561e067f0202ff000000020000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000c0c100000000000000003", 0x57}], 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000001010101000000000000000002000000180001801400018008000100ac1414aa08000200000000000c0019800800010015010000cbb146f85a5f17e6840f9ae44991c875a2692f0c907b12f05223842f401335454051560bc25384586969afbff42f4761336f9086"], 0x38}}, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYBLOB="0500000004000000040000000700000000000000", @ANYRES32, @ANYBLOB="000000000000006e384e8f8ddc8df329eda0c300", @ANYRES32=0x0, @ANYRES32=r4, @ANYRES32=r0], 0x48)
r6 = epoll_create(0x10)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r5, &(0x7f00000000c0))
capset(0x0, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd, 0x0, 0xfffff05b})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x26e1, 0x0)
r7 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000180)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000140), 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000040)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000080), 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x0, 0x48, 0x830, 0x56bb, 0x6, 0x7, 0x100001, 0x8f5a, 0x5}, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000)={0x6, 'wlan1\x00', {}, 0x108})
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01090000000000000f478e"])
r8 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x101800, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r10, 0xae80, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x3)

11.758212105s ago: executing program 2 (id=4962):
eventfd(0x9)
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001180)=0x2000000)
mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xe825, 0x3400, 0x1, 0x2db}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x5008, 0x0)
ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f00000000c0))

11.567123631s ago: executing program 1 (id=4963):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
syz_open_dev$sndctrl(&(0x7f0000000380), 0x1ff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000280), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe3e64c6be2492c0f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
move_mount(0xffffffffffffffff, &(0x7f0000002500)='./file1\x00', 0xffffffffffffff9c, 0x0, 0x154)

11.13513886s ago: executing program 9 (id=4964):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x43, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f000012c000/0x4000)=nil, 0x4000, 0x67)
openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000380)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_connect$cdc_ecm(0x2, 0x59, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000102505a1a440000000010109024700010100800309040007ff02020000052406000005240000000d240f010000000000000000000424130903240702042413"], 0x0)

10.706749058s ago: executing program 5 (id=4965):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f00000004c0), r4)
sendmsg$NFC_CMD_ENABLE_SE(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x71eff8d2059dfe60}, 0xc004)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000000)=0x200000000)
write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000040)=""/27, 0x1b, 0x0, 0x1, 0x1}}, 0x48)
write$vhost_msg_v2(0xffffffffffffffff, &(0x7f00000004c0)={0x2, 0x0, {&(0x7f0000000400)=""/185, 0xb9, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48)

9.617350781s ago: executing program 2 (id=4966):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
r2 = socket(0x1e, 0x4, 0x0)
connect$tipc(r2, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x1, 0x4}}, 0x10)
sendfile(r2, r1, 0x0, 0x8010002b)

8.417068341s ago: executing program 5 (id=4967):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
ioctl$PIO_SCRNMAP(0xffffffffffffffff, 0x4b52, 0x0)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ptrace$ARCH_GET_UNTAG_MASK(0x1e, 0x0, 0x0, 0x4001)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000680)='\b', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000b40)}, {&(0x7f0000001a80)="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", 0x436}], 0x2}}], 0x3, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000001180), 0x2a01, 0x0)

7.132858441s ago: executing program 9 (id=4968):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x180300, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f00000004c0)='cubic', 0x6)
bind$inet6(r5, 0x0, 0x0)
shutdown(r5, 0x1)

7.046574606s ago: executing program 5 (id=4969):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
add_key$user(0x0, &(0x7f0000000440), &(0x7f00000000c0), 0x0, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={'blake2b-256\x00'}})
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(0xffffffffffffffff, 0xc08c5336, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f00000003c0), 0xb, 0x80)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0xc1105511, &(0x7f0000000040))

7.026720886s ago: executing program 2 (id=4970):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r3}, 0x18)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r4 = fsopen(&(0x7f00000029c0)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)

6.996976749s ago: executing program 4 (id=4971):
r0 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f00000004c0), r5)
sendmsg$NFC_CMD_ENABLE_SE(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x71eff8d2059dfe60}, 0xc004)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000000)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f0000000640)={0x2, 0x0, {&(0x7f0000001900)=""/4096, 0x1000, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000080)={0x2, 0x0, {&(0x7f0000001840)=""/141, 0x8d, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48)

3.836707047s ago: executing program 1 (id=4972):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x2, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000005580)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)

3.81892819s ago: executing program 2 (id=4973):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000001080)="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", 0x444}, {&(0x7f00000002c0)="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", 0x165}], 0x2, 0x0, 0x0, 0x900}}], 0x1, 0x0)

3.818333901s ago: executing program 4 (id=4974):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r1)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000080)=[{&(0x7f0000000180)="580000001400192340834b80040d8c561e067f0202ff000000020000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000c0c100000000000000003", 0x57}], 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000001010101000000000000000002000000180001801400018008000100ac1414aa08000200000000000c0019800800010015010000cbb146f85a5f17e6840f9ae44991c875a2692f0c907b12f05223842f401335454051560bc25384586969afbff42f4761336f9086"], 0x38}}, 0x0)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYBLOB="0500000004000000040000000700000000000000", @ANYRES32, @ANYBLOB="000000000000006e384e8f8ddc8df329eda0c300", @ANYRES32=0x0, @ANYRES32=r4, @ANYRES32=r0], 0x48)
r6 = epoll_create(0x10)
epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r5, &(0x7f00000000c0))
capset(0x0, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd, 0x0, 0xfffff05b})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.dequeue\x00', 0x26e1, 0x0)
r7 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000180)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000140), 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000040)='user\x00N\xac]\x86\x8a\xa3\x7f\x00', &(0x7f0000000080), 0x0)
sched_setattr(0x0, &(0x7f0000000000)={0x38, 0x0, 0x48, 0x830, 0x56bb, 0x6, 0x7, 0x100001, 0x8f5a, 0x5}, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000)={0x6, 'wlan1\x00', {}, 0x108})
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01090000000000000f478e"])
r8 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x101800, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r10, 0xae80, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x3)

3.130217258s ago: executing program 9 (id=4975):
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0xe3}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x2000c801, &(0x7f0000000400)={0x2, 0x4e23, @local}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xd06d000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r3 = socket$kcm(0x2a, 0x2, 0x0)
recvmsg(r3, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x40002182)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, 0x0)
sendmmsg$inet(r2, &(0x7f0000000ac0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000019c0)="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", 0x349}], 0x1}}], 0x1, 0x400c0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000480)=0x1df9, 0x4)
socket$alg(0x26, 0x5, 0x0)
sendto$inet(r2, &(0x7f0000000580)="17", 0x1d4c, 0x10048095, 0x0, 0x0)

3.074917513s ago: executing program 5 (id=4976):
eventfd(0x9)
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001180)=0x2000000)
mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xe825, 0x3400, 0x1, 0x2db}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000500)=0x57)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x5008, 0x0)
ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, 0x0)

3.046775269s ago: executing program 1 (id=4977):
setuid(0xee01)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$ttys(0xc, 0x2, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x1)
socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xab49}, {0x20, 0x0, 0x3, 0xffeff010}, {0x6}]}, 0x8)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfdef)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x10, 0x80003, 0x0)
prctl$PR_SET_MM(0x23, 0x2, &(0x7f0000001000/0x4000)=nil)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xc}, {0xffff, 0xffff}, {0xfff3}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x6, 0x2, {0xf, "00000000000000000001000f0e00"}}}]}, 0x48}}, 0x0)
shmget$private(0x0, 0x4000, 0x10, &(0x7f0000000000/0x4000)=nil)
r3 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
connect$inet6(r3, &(0x7f0000002140)={0xa, 0x4e28, 0x8, @mcast2, 0x5}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

3.002776375s ago: executing program 2 (id=4978):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x43, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f000012c000/0x4000)=nil, 0x4000, 0x67)
openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000380)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_connect$cdc_ecm(0x2, 0x59, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000102505a1a440000000010109024700010100800309040007ff02020000052406000005240000000d240f010000000000000000000424130903240702042413"], 0x0)

1.547361879s ago: executing program 4 (id=4979):
r0 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f00000004c0), r5)
sendmsg$NFC_CMD_ENABLE_SE(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x71eff8d2059dfe60}, 0xc004)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x2, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000000140)=""/18, 0x12)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000540), 0xffffffffffffffff)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000000)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f0000000640)={0x2, 0x0, {&(0x7f0000001900)=""/4096, 0x1000, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000080)={0x2, 0x0, {&(0x7f0000001840)=""/141, 0x8d, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000040)=""/27, 0x1b, 0x0, 0x1, 0x1}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f00000004c0)={0x2, 0x0, {&(0x7f0000000400)=""/185, 0xb9, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000180)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48)

310.905937ms ago: executing program 4 (id=4980):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
ioctl$PIO_SCRNMAP(0xffffffffffffffff, 0x4b52, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)=ANY=[], 0x50)
ptrace$ARCH_GET_UNTAG_MASK(0x1e, 0x0, 0x0, 0x4001)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000a40)=[{{0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000680)='\b', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000b40)}, {&(0x7f0000001a80)="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", 0x436}], 0x2}}], 0x3, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000001180), 0x2a01, 0x0)

284.338323ms ago: executing program 5 (id=4981):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
r2 = socket(0x1e, 0x4, 0x0)
connect$tipc(r2, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x1, 0x4}}, 0x10)
sendfile(r2, r1, 0x0, 0x8010002b)

0s ago: executing program 4 (id=4982):
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
syz_open_dev$sndctrl(&(0x7f0000000380), 0x1ff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000280), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe3e64c6be2492c0f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
move_mount(0xffffffffffffffff, &(0x7f0000002500)='./file1\x00', 0xffffffffffffff9c, 0x0, 0x154)

kernel console output (not intermixed with test programs):

t mode
[ 1808.601855][ T8850] bridge_slave_1: left promiscuous mode
[ 1808.602106][ T8850] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1808.705938][ T8850] bridge_slave_0: left allmulticast mode
[ 1808.705976][ T8850] bridge_slave_0: left promiscuous mode
[ 1808.706266][ T8850] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1809.161775][T19491] tty tty1: ldisc open failed (-12), clearing slot 0
[ 1809.603121][ T8850] bridge_slave_1: left allmulticast mode
[ 1809.603156][ T8850] bridge_slave_1: left promiscuous mode
[ 1809.603423][ T8850] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1809.699613][ T8850] bridge_slave_0: left allmulticast mode
[ 1809.699649][ T8850] bridge_slave_0: left promiscuous mode
[ 1809.699931][ T8850] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1809.786223][ T8850] bridge_slave_1: left allmulticast mode
[ 1809.786246][ T8850] bridge_slave_1: left promiscuous mode
[ 1809.786406][ T8850] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1809.853477][ T8850] bridge_slave_0: left allmulticast mode
[ 1809.853510][ T8850] bridge_slave_0: left promiscuous mode
[ 1809.853783][ T8850] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1812.077459][T15372] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[ 1812.147604][ T8850] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1812.228203][ T8850] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1812.259463][T15372] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1812.259498][T15372] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1812.259538][T15372] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1812.259561][T15372] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1812.266561][T19510] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1812.289249][T15372] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 1812.404649][ T8850] bond0 (unregistering): Released all slaves
[ 1813.708067][ T8850] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1813.918058][ T8850] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1814.001758][ T8850] bond0 (unregistering): Released all slaves
[ 1814.549820][ T8850] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1814.576644][T11626] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1814.608582][T11626] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1814.615798][T11626] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1814.640802][T11626] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1814.642359][T11626] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1814.649831][ T8850] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1814.725546][ T8850] bond0 (unregistering): Released all slaves
[ 1815.010826][ T5837] usb 1-1: USB disconnect, device number 16
[ 1815.753009][T19519] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4216'.
[ 1815.828184][T19380] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1815.828199][T19380] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1815.828224][T19380] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1816.766747][   T59] Bluetooth: hci4: command tx timeout
[ 1817.874942][T19380] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1817.874954][T19380] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1817.874969][T19380] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1817.885456][T19360] hsr_slave_0: entered promiscuous mode
[ 1817.886746][T19360] hsr_slave_1: entered promiscuous mode
[ 1817.942807][T19360] debugfs: 'hsr0' already exists in 'hsr'
[ 1817.942832][T19360] Cannot create hsr debugfs directory
[ 1818.868448][   T59] Bluetooth: hci4: command tx timeout
[ 1819.602685][T19538] random: crng reseeded on system resumption
[ 1819.861775][ T8850] hsr_slave_0: left promiscuous mode
[ 1819.897281][ T8850] hsr_slave_1: left promiscuous mode
[ 1819.898758][ T8850] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1819.938167][ T8850] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1820.147352][ T8850] hsr_slave_0: left promiscuous mode
[ 1820.168237][ T8850] hsr_slave_1: left promiscuous mode
[ 1820.169165][ T8850] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1820.190719][ T8850] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1820.227186][ T5837] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[ 1820.377266][ T8850] hsr_slave_0: left promiscuous mode
[ 1820.399941][ T5837] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1820.399977][ T5837] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1820.400017][ T5837] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1820.400048][ T5837] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1820.445076][T19542] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1820.466137][ T8850] hsr_slave_1: left promiscuous mode
[ 1820.467429][ T8850] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1820.468189][ T5837] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 1820.537976][ T8850] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1821.111750][   T59] Bluetooth: hci4: command tx timeout
[ 1823.273250][   T59] Bluetooth: hci4: command tx timeout
[ 1824.180818][ T5837] usb 1-1: USB disconnect, device number 17
[ 1825.438080][ T8850] team0 (unregistering): Port device team_slave_1 removed
[ 1826.074515][ T8850] team0 (unregistering): Port device team_slave_0 removed
[ 1830.768678][ T8850] team0 (unregistering): Port device team_slave_1 removed
[ 1830.992196][ T8850] team0 (unregistering): Port device team_slave_0 removed
[ 1832.645553][ T8850] team0 (unregistering): Port device team_slave_1 removed
[ 1832.847668][ T8850] team0 (unregistering): Port device team_slave_0 removed
[ 1834.257207][T19572] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4233'.
[ 1834.344923][T19380] hsr_slave_0: entered promiscuous mode
[ 1834.346260][T19380] hsr_slave_1: entered promiscuous mode
[ 1834.347426][T19380] debugfs: 'hsr0' already exists in 'hsr'
[ 1834.347453][T19380] Cannot create hsr debugfs directory
[ 1834.632386][T19598] Bluetooth: MGMT ver 1.23
[ 1834.635139][T19598] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[ 1836.577266][T17094] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[ 1836.807505][T17094] usb 1-1: Using ep0 maxpacket: 8
[ 1836.816878][T17094] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1836.864095][T17094] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1836.864436][T17094] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[ 1836.864535][T17094] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[ 1836.927891][T17094] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1836.928100][T17094] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1836.928241][T17094] usb 1-1: Product: syz
[ 1836.928353][T17094] usb 1-1: Manufacturer: syz
[ 1836.928517][T17094] usb 1-1: SerialNumber: syz
[ 1837.161896][T18855] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1838.005764][T19514] chnl_net:caif_netlink_parms(): no params data found
[ 1838.828675][T19619] tmpfs: Bad value for 'mpol'
[ 1839.287246][T17094] cdc_ncm 1-1:1.0: bind() failure
[ 1839.331020][T17094] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[ 1839.331068][T17094] cdc_ncm 1-1:1.1: bind() failure
[ 1839.358656][T17094] usb 1-1: USB disconnect, device number 18
[ 1840.520653][T19514] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1840.520732][T19514] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1840.520904][T19514] bridge_slave_0: entered allmulticast mode
[ 1840.527255][T19514] bridge_slave_0: entered promiscuous mode
[ 1840.547454][T19514] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1840.547606][T19514] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1840.547850][T19514] bridge_slave_1: entered allmulticast mode
[ 1840.561391][T19514] bridge_slave_1: entered promiscuous mode
[ 1840.982873][T19514] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1840.989146][T19514] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1841.506499][T19514] team0: Port device team_slave_0 added
[ 1841.514064][T19514] team0: Port device team_slave_1 added
[ 1841.944410][T19634] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[ 1842.260488][T19514] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1842.260504][T19514] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1842.260526][T19514] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1842.262889][T19514] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1842.262902][T19514] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1842.262927][T19514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1843.800033][ T1242] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[ 1843.987258][ T1242] usb 1-1: Using ep0 maxpacket: 8
[ 1843.999283][ T1242] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1844.001025][ T1242] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1844.001075][ T1242] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[ 1844.001100][ T1242] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[ 1844.004080][ T1242] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1844.004106][ T1242] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1844.004127][ T1242] usb 1-1: Product: syz
[ 1844.004141][ T1242] usb 1-1: Manufacturer: syz
[ 1844.004155][ T1242] usb 1-1: SerialNumber: syz
[ 1844.032419][T19514] hsr_slave_0: entered promiscuous mode
[ 1844.043685][T19514] hsr_slave_1: entered promiscuous mode
[ 1844.050718][T19514] debugfs: 'hsr0' already exists in 'hsr'
[ 1844.050746][T19514] Cannot create hsr debugfs directory
[ 1845.718157][ T1242] cdc_ncm 1-1:1.0: bind() failure
[ 1845.745011][ T1242] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[ 1845.745059][ T1242] cdc_ncm 1-1:1.1: bind() failure
[ 1845.774663][ T1242] usb 1-1: USB disconnect, device number 19
[ 1845.994923][T19658] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[ 1846.290179][T19360] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1846.367475][T19360] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1846.447539][T19360] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1847.050160][T19360] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1847.658610][T19360] kthread_run failed with err -4
[ 1847.740255][T19380] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1847.812311][T19380] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1847.887673][T19380] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1847.955187][T19380] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1849.507870][T17094] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[ 1849.619747][ T8850] bridge_slave_1: left allmulticast mode
[ 1849.619779][ T8850] bridge_slave_1: left promiscuous mode
[ 1849.620042][ T8850] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1849.662199][T19693] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1849.685383][T19693] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1849.699953][T17094] usb 1-1: Using ep0 maxpacket: 8
[ 1849.700596][T19693] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1849.707067][T17094] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1849.709314][T17094] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1849.709361][T17094] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[ 1849.709387][T17094] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[ 1849.712236][T17094] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1849.712265][T17094] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1849.712285][T17094] usb 1-1: Product: syz
[ 1849.712300][T17094] usb 1-1: Manufacturer: syz
[ 1849.712315][T17094] usb 1-1: SerialNumber: syz
[ 1849.723417][T19693] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1849.734007][T19693] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1849.767948][ T8850] bridge_slave_0: left allmulticast mode
[ 1849.767981][ T8850] bridge_slave_0: left promiscuous mode
[ 1849.768255][ T8850] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1851.275563][T19693] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1851.302857][T19693] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1851.305554][T19693] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1851.497069][T17094] cdc_ncm 1-1:1.0: bind() failure
[ 1851.505659][T17094] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[ 1851.505705][T17094] cdc_ncm 1-1:1.1: bind() failure
[ 1851.530588][T17094] usb 1-1: USB disconnect, device number 20
[ 1851.592615][T19693] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1851.593776][T19693] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1851.631916][T19701] binder: 19700:19701 ioctl 4018620d 0 returned -22
[ 1851.635738][T19701] binder: 19700:19701 ioctl c0306201 200000000240 returned -11
[ 1852.348128][T19693] Bluetooth: hci2: command tx timeout
[ 1852.857921][ T8850] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1852.895566][T19707] Bluetooth: MGMT ver 1.23
[ 1852.895604][T19707] Bluetooth: hci0: unsupported parameter 255
[ 1852.895617][T19707] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[ 1852.987873][ T8850] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1853.051415][ T8850] bond0 (unregistering): Released all slaves
[ 1853.797298][T19693] Bluetooth: hci0: command tx timeout
[ 1854.819139][T19693] Bluetooth: hci2: command tx timeout
[ 1855.323651][T19722] binder: 19721:19722 ioctl 4018620d 0 returned -22
[ 1855.334905][T19722] binder: 19721:19722 ioctl c0306201 200000000240 returned -11
[ 1855.674514][ T8850] hsr_slave_0: left promiscuous mode
[ 1856.311721][ T8850] hsr_slave_1: left promiscuous mode
[ 1856.386881][T19693] Bluetooth: hci0: command tx timeout
[ 1856.623666][ T8850] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1856.798788][ T8850] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1856.872124][T19734] Bluetooth: hci0: unsupported parameter 255
[ 1856.872146][T19734] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[ 1856.926196][T19693] Bluetooth: hci2: command tx timeout
[ 1857.656367][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 1857.657300][ T1326] ieee802154 phy1 wpan1: encryption failed: -22
[ 1858.437094][T19693] Bluetooth: hci0: command tx timeout
[ 1858.979179][ T8850] team0 (unregistering): Port device team_slave_1 removed
[ 1859.123307][T19693] Bluetooth: hci2: command tx timeout
[ 1859.635439][ T8850] team0 (unregistering): Port device team_slave_0 removed
[ 1860.584441][T19693] Bluetooth: hci0: command tx timeout
[ 1861.583001][T19773] Bluetooth: hci0: unsupported parameter 255
[ 1861.583020][T19773] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[ 1862.137035][T19777] 9pnet_virtio: no channels available for device syz
[ 1864.776775][T19803] random: crng reseeded on system resumption
[ 1866.242156][T19514] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1866.299088][T19514] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1866.707539][T19514] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1866.997438][T19514] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1867.142421][T19692] chnl_net:caif_netlink_parms(): no params data found
[ 1867.175306][T19696] chnl_net:caif_netlink_parms(): no params data found
[ 1868.311933][T15945] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1868.367126][ T5837] usb 1-1: new full-speed USB device number 21 using dummy_hcd
[ 1868.521256][ T5837] usb 1-1: config 1 has an invalid interface descriptor of length 2, skipping
[ 1868.521282][ T5837] usb 1-1: config 1 has an invalid descriptor of length 36, skipping remainder of the config
[ 1868.521323][ T5837] usb 1-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[ 1868.521368][ T5837] usb 1-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1868.521396][ T5837] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1868.522732][ T5837] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1868.522758][ T5837] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1868.522774][ T5837] usb 1-1: SerialNumber: syz
[ 1868.629358][ T5837] cdc_acm 1-1:1.0: Control and data interfaces are not separated!
[ 1868.629382][ T5837] cdc_acm 1-1:1.0: This needs exactly 3 endpoints
[ 1868.629420][ T5837] cdc_acm 1-1:1.0: probe with driver cdc_acm failed with error -22
[ 1870.329868][ T5931] usb 1-1: USB disconnect, device number 21
[ 1870.477915][T19692] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1870.478131][T19692] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1870.478432][T19692] bridge_slave_0: entered allmulticast mode
[ 1870.480165][T19692] bridge_slave_0: entered promiscuous mode
[ 1870.485410][T19696] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1870.485563][T19696] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1870.485759][T19696] bridge_slave_0: entered allmulticast mode
[ 1870.488680][T19696] bridge_slave_0: entered promiscuous mode
[ 1870.492002][T19692] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1870.492146][T19692] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1870.492323][T19692] bridge_slave_1: entered allmulticast mode
[ 1870.495001][T19692] bridge_slave_1: entered promiscuous mode
[ 1870.510614][T19696] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1870.511321][T19696] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1870.511528][T19696] bridge_slave_1: entered allmulticast mode
[ 1870.535678][T19696] bridge_slave_1: entered promiscuous mode
[ 1871.455853][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1871.546508][T19692] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1871.552208][T19696] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1871.594226][T19696] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1871.612876][T19692] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1872.610381][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1873.034084][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1873.157176][ T5931] usb 9-1: new full-speed USB device number 31 using dummy_hcd
[ 1873.264583][T19696] team0: Port device team_slave_0 added
[ 1873.303024][T19692] team0: Port device team_slave_0 added
[ 1873.305131][T19696] team0: Port device team_slave_1 added
[ 1873.312759][ T5931] usb 9-1: config 1 has an invalid interface descriptor of length 2, skipping
[ 1873.312784][ T5931] usb 9-1: config 1 has an invalid descriptor of length 36, skipping remainder of the config
[ 1873.312823][ T5931] usb 9-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[ 1873.312862][ T5931] usb 9-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1873.312889][ T5931] usb 9-1: config 1 interface 0 has no altsetting 0
[ 1873.314084][ T5931] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1873.314110][ T5931] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1873.314130][ T5931] usb 9-1: SerialNumber: syz
[ 1873.340332][T19692] team0: Port device team_slave_1 added
[ 1873.341118][ T5931] cdc_acm 9-1:1.0: Control and data interfaces are not separated!
[ 1873.341135][ T5931] cdc_acm 9-1:1.0: This needs exactly 3 endpoints
[ 1873.341170][ T5931] cdc_acm 9-1:1.0: probe with driver cdc_acm failed with error -22
[ 1873.769545][T19696] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1873.769561][T19696] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1873.769588][T19696] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1873.826165][T19692] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1873.826182][T19692] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1873.826206][T19692] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1873.874489][T19696] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1873.874506][T19696] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1873.874531][T19696] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1873.901291][T19692] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1873.930960][T19692] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1873.930988][T19692] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1874.258313][T19882] netlink: 'syz.0.4319': attribute type 3 has an invalid length.
[ 1874.699342][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1874.776893][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1874.779978][ T1242] usb 9-1: USB disconnect, device number 31
[ 1874.960044][T19696] hsr_slave_0: entered promiscuous mode
[ 1874.961380][T19696] hsr_slave_1: entered promiscuous mode
[ 1874.962518][T19883] syz_tun: entered allmulticast mode
[ 1874.993874][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1875.002372][T19692] hsr_slave_0: entered promiscuous mode
[ 1875.003675][T19692] hsr_slave_1: entered promiscuous mode
[ 1875.004755][T19692] debugfs: 'hsr0' already exists in 'hsr'
[ 1875.004779][T19692] Cannot create hsr debugfs directory
[ 1875.144787][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1875.228718][T19884] syz_tun: left allmulticast mode
[ 1875.693397][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1875.923181][   T59] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1875.926876][   T59] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1875.940014][   T59] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1875.968237][   T59] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1875.970369][   T59] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1876.211414][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1876.432698][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1876.671177][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1877.397553][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1878.037526][   T59] Bluetooth: hci3: command tx timeout
[ 1878.326690][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1878.560971][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1878.833931][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1879.018006][ T1075] usb 1-1: new full-speed USB device number 22 using dummy_hcd
[ 1879.223153][ T1075] usb 1-1: config 1 has an invalid interface descriptor of length 2, skipping
[ 1879.223229][ T1075] usb 1-1: config 1 has an invalid descriptor of length 36, skipping remainder of the config
[ 1879.258599][ T1075] usb 1-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[ 1879.259023][ T1075] usb 1-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1879.259080][ T1075] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1879.311688][ T1075] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1879.312092][ T1075] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1879.312139][ T1075] usb 1-1: SerialNumber: syz
[ 1879.374093][ T1075] cdc_acm 1-1:1.0: Control and data interfaces are not separated!
[ 1879.374117][ T1075] cdc_acm 1-1:1.0: This needs exactly 3 endpoints
[ 1879.374154][ T1075] cdc_acm 1-1:1.0: probe with driver cdc_acm failed with error -22
[ 1879.702141][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1880.117427][   T59] Bluetooth: hci3: command tx timeout
[ 1880.784307][T16337] bridge_slave_1: left allmulticast mode
[ 1880.784338][T16337] bridge_slave_1: left promiscuous mode
[ 1880.784594][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1880.838679][T16337] bridge_slave_0: left allmulticast mode
[ 1880.838703][T16337] bridge_slave_0: left promiscuous mode
[ 1880.838890][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1880.902380][T16337] bridge_slave_1: left allmulticast mode
[ 1880.902404][T16337] bridge_slave_1: left promiscuous mode
[ 1880.902560][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1880.968981][T16337] bridge_slave_0: left allmulticast mode
[ 1880.969022][T16337] bridge_slave_0: left promiscuous mode
[ 1880.969291][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1881.262042][ T5931] usb 1-1: USB disconnect, device number 22
[ 1881.330504][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1881.473163][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1881.577483][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1881.664237][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1882.197213][   T59] Bluetooth: hci3: command tx timeout
[ 1882.918154][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1883.338690][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1883.833604][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1884.090017][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1884.435328][   T59] Bluetooth: hci3: command tx timeout
[ 1884.481203][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1884.489043][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1884.982013][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1885.207748][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1885.261048][T16337] bond0 (unregistering): Released all slaves
[ 1885.446123][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1885.748337][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1885.840596][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1886.060263][T16337] bond0 (unregistering): Released all slaves
[ 1886.206865][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1887.449591][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1887.747242][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1887.837580][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1888.717482][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1888.884083][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1888.959675][T16337] hsr_slave_0: left promiscuous mode
[ 1888.997714][T16337] hsr_slave_1: left promiscuous mode
[ 1888.998730][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1889.028389][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1889.181501][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1889.207964][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1889.377217][T16337] hsr_slave_0: left promiscuous mode
[ 1889.398469][T16337] hsr_slave_1: left promiscuous mode
[ 1889.399414][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1889.439792][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1889.938968][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1890.188568][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1890.555268][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 1890.728168][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 1894.129199][T15372] usb 1-1: new full-speed USB device number 23 using dummy_hcd
[ 1894.296025][T15372] usb 1-1: config 1 has an invalid interface descriptor of length 2, skipping
[ 1894.296099][T15372] usb 1-1: config 1 has an invalid descriptor of length 36, skipping remainder of the config
[ 1894.296336][T15372] usb 1-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[ 1894.296454][T15372] usb 1-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1894.296507][T15372] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1894.637162][T15372] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1894.637192][T15372] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1894.637212][T15372] usb 1-1: SerialNumber: syz
[ 1894.684880][T15372] cdc_acm 1-1:1.0: Control and data interfaces are not separated!
[ 1894.684902][T15372] cdc_acm 1-1:1.0: This needs exactly 3 endpoints
[ 1894.684939][T15372] cdc_acm 1-1:1.0: probe with driver cdc_acm failed with error -22
[ 1895.429868][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 1895.675444][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 1896.557244][T15372] usb 1-1: USB disconnect, device number 23
[ 1896.651301][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1896.958985][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1897.119168][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1897.606247][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1897.977598][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1898.222904][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1898.411838][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1899.165693][T19892] chnl_net:caif_netlink_parms(): no params data found
[ 1899.199249][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1899.336354][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1899.661320][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1899.662660][ T8857] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1899.815569][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1899.932189][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1900.571152][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1900.631462][T19892] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1900.631544][T19892] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1900.631716][T19892] bridge_slave_0: entered allmulticast mode
[ 1900.633405][T19892] bridge_slave_0: entered promiscuous mode
[ 1900.635521][T19892] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1900.635597][T19892] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1900.635722][T19892] bridge_slave_1: entered allmulticast mode
[ 1900.643095][T19892] bridge_slave_1: entered promiscuous mode
[ 1900.683565][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1900.936038][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1900.995540][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1901.179607][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1901.246492][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1901.268927][T19892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1901.273337][T19892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1901.650112][T19892] team0: Port device team_slave_0 added
[ 1901.653224][T19892] team0: Port device team_slave_1 added
[ 1902.251536][T19892] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1902.251551][T19892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1902.251570][T19892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1902.254313][T19892] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1902.254323][T19892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1902.254338][T19892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1903.175474][T19892] hsr_slave_0: entered promiscuous mode
[ 1903.176380][T19892] hsr_slave_1: entered promiscuous mode
[ 1903.188310][T19892] debugfs: 'hsr0' already exists in 'hsr'
[ 1903.188338][T19892] Cannot create hsr debugfs directory
[ 1903.807021][T19696] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1904.186679][T19696] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1905.014666][T19696] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1906.341181][T19696] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1908.454460][T19692] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1908.773204][T20067] tmpfs: Bad value for 'mpol'
[ 1908.877683][T19692] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1909.256364][T19696] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1909.279684][T19696] 8021q: adding VLAN 0 to HW filter on device team0
[ 1909.284168][T13634] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1909.284280][T13634] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1909.305996][T13634] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1909.306269][T13634] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1910.257841][T16337] bridge_slave_1: left allmulticast mode
[ 1910.257872][T16337] bridge_slave_1: left promiscuous mode
[ 1910.258129][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1910.265742][T19693] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1910.309703][T19693] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1910.314888][T19693] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1910.335005][T19693] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1910.348543][T19693] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1910.568768][T16337] bridge_slave_0: left allmulticast mode
[ 1910.568801][T16337] bridge_slave_0: left promiscuous mode
[ 1910.569093][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1912.092049][T20084] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1912.597467][T19693] Bluetooth: hci4: command tx timeout
[ 1913.219457][   T59] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1913.254881][   T59] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1913.255448][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1913.278924][   T59] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1913.296423][   T59] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1913.304678][   T59] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1913.503469][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1913.861093][T16337] bond0 (unregistering): Released all slaves
[ 1914.677248][T19693] Bluetooth: hci4: command tx timeout
[ 1915.677146][T19693] Bluetooth: hci2: command tx timeout
[ 1916.023681][T16337] hsr_slave_0: left promiscuous mode
[ 1916.060569][T16337] hsr_slave_1: left promiscuous mode
[ 1916.062557][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1917.153904][T19693] Bluetooth: hci4: command tx timeout
[ 1917.173628][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1917.731723][T19693] Bluetooth: hci2: command tx timeout
[ 1918.950878][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 1918.950995][ T1326] ieee802154 phy1 wpan1: encryption failed: -22
[ 1919.157213][T19693] Bluetooth: hci4: command tx timeout
[ 1919.378815][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 1919.588624][   T37] audit: type=1326 audit(2000000601.720:2029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20125 comm="syz.8.4387" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f42067aeec9 code=0x0
[ 1919.698761][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 1919.807231][T19693] Bluetooth: hci2: command tx timeout
[ 1921.687734][T20146] tmpfs: Bad value for 'mpol'
[ 1921.877063][T19693] Bluetooth: hci2: command tx timeout
[ 1923.359303][   T37] audit: type=1326 audit(2000000605.470:2030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20163 comm="syz.8.4399" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f42067aeec9 code=0x0
[ 1923.786401][T20174] fuse: Unknown parameter 'group_i00000000000000000000'
[ 1924.017053][T20077] chnl_net:caif_netlink_parms(): no params data found
[ 1924.326539][T20093] chnl_net:caif_netlink_parms(): no params data found
[ 1925.391676][T19892] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1925.443811][T19892] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1925.650785][T19892] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1925.848258][T19892] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1925.910706][T20077] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1925.910916][T20077] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1925.911285][T20077] bridge_slave_0: entered allmulticast mode
[ 1925.914345][T20077] bridge_slave_0: entered promiscuous mode
[ 1926.102283][T20077] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1926.107402][T20077] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1926.107658][T20077] bridge_slave_1: entered allmulticast mode
[ 1926.112359][T20077] bridge_slave_1: entered promiscuous mode
[ 1926.562841][T20093] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1926.562976][T20093] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1926.563160][T20093] bridge_slave_0: entered allmulticast mode
[ 1926.564869][T20093] bridge_slave_0: entered promiscuous mode
[ 1926.761025][T20093] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1926.761193][T20093] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1926.761417][T20093] bridge_slave_1: entered allmulticast mode
[ 1926.763952][T20093] bridge_slave_1: entered promiscuous mode
[ 1926.800024][T20077] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1926.910447][T20077] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1927.446402][T20093] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1927.661646][   T37] audit: type=1326 audit(2000000609.780:2031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20210 comm="syz.0.4409" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde837deec9 code=0x0
[ 1927.695099][T20093] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1927.698973][T20077] team0: Port device team_slave_0 added
[ 1927.985909][T20220] fuse: Unknown parameter 'group_i00000000000000000000'
[ 1928.149758][T20077] team0: Port device team_slave_1 added
[ 1928.621677][T20093] team0: Port device team_slave_0 added
[ 1928.781279][T20093] team0: Port device team_slave_1 added
[ 1929.039571][T20077] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1929.039583][T20077] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1929.039598][T20077] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1929.368974][T20077] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1929.368991][T20077] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1929.369017][T20077] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1929.565831][T20093] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1929.565843][T20093] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1929.565867][T20093] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1929.749275][T20093] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1929.749287][T20093] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1929.749302][T20093] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1929.939295][T20077] hsr_slave_0: entered promiscuous mode
[ 1929.940931][T20077] hsr_slave_1: entered promiscuous mode
[ 1929.943490][T20077] debugfs: 'hsr0' already exists in 'hsr'
[ 1929.943517][T20077] Cannot create hsr debugfs directory
[ 1930.081968][   T37] audit: type=1326 audit(2000000612.210:2032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20239 comm="syz.0.4418" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fde837deec9 code=0x0
[ 1930.982961][ T1219] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1931.589518][T20093] hsr_slave_0: entered promiscuous mode
[ 1931.598597][T20093] hsr_slave_1: entered promiscuous mode
[ 1931.599484][T20093] debugfs: 'hsr0' already exists in 'hsr'
[ 1931.599509][T20093] Cannot create hsr debugfs directory
[ 1933.687138][   T37] audit: type=1326 audit(2000000615.810:2033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20271 comm="syz.8.4428" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f42067aeec9 code=0x0
[ 1937.057490][T16337] bridge_slave_1: left allmulticast mode
[ 1937.057514][T16337] bridge_slave_1: left promiscuous mode
[ 1937.057733][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1937.153560][T16337] bridge_slave_0: left allmulticast mode
[ 1937.153582][T16337] bridge_slave_0: left promiscuous mode
[ 1937.153751][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1937.354767][T16337] bridge_slave_1: left allmulticast mode
[ 1937.354802][T16337] bridge_slave_1: left promiscuous mode
[ 1937.355058][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1937.634471][T16337] bridge_slave_0: left allmulticast mode
[ 1937.634504][T16337] bridge_slave_0: left promiscuous mode
[ 1937.634735][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1937.641006][   T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1937.672797][   T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1937.677094][   T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1937.692774][   T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1937.703064][   T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1939.797304][T19693] Bluetooth: hci0: command tx timeout
[ 1940.175516][T20314] : Can't lookup blockdev
[ 1942.111056][T19693] Bluetooth: hci0: command tx timeout
[ 1944.079130][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1944.197109][T19693] Bluetooth: hci0: command tx timeout
[ 1944.281911][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1944.332204][T16337] bond0 (unregistering): Released all slaves
[ 1944.570734][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1944.648093][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1944.694516][T16337] bond0 (unregistering): Released all slaves
[ 1945.405599][T16337] hsr_slave_0: left promiscuous mode
[ 1945.458376][T16337] hsr_slave_1: left promiscuous mode
[ 1945.460372][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1945.520435][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1946.737437][T19693] Bluetooth: hci0: command tx timeout
[ 1946.867135][T16337] hsr_slave_0: left promiscuous mode
[ 1947.154393][T16337] hsr_slave_1: left promiscuous mode
[ 1947.155315][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1947.847941][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1947.926236][T20363] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1948.973349][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 1949.217960][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 1950.664285][T20370] tmpfs: Unknown parameter 'usrquota_inode_hardlim'
[ 1950.705687][T20370] overlayfs: failed to clone upperpath
[ 1953.968003][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 1954.099417][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 1955.574498][T20298] chnl_net:caif_netlink_parms(): no params data found
[ 1957.776440][T20403] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[ 1957.927446][T20298] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1957.927673][T20298] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1957.927917][T20298] bridge_slave_0: entered allmulticast mode
[ 1957.930877][T20298] bridge_slave_0: entered promiscuous mode
[ 1958.899874][T20298] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1958.900029][T20298] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1958.900286][T20298] bridge_slave_1: entered allmulticast mode
[ 1958.933235][T20298] bridge_slave_1: entered promiscuous mode
[ 1960.110763][T20298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1960.115286][T20298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1960.726381][T20298] team0: Port device team_slave_0 added
[ 1960.759829][T20298] team0: Port device team_slave_1 added
[ 1961.483983][T20298] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1961.483999][T20298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1961.484024][T20298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1961.532118][T20298] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1961.532129][T20298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1961.532143][T20298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1963.225228][T20298] hsr_slave_0: entered promiscuous mode
[ 1963.226319][T20298] hsr_slave_1: entered promiscuous mode
[ 1963.259772][ T8850] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1963.274257][T20077] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1963.555178][T20077] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1963.715918][T20077] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1964.381855][T20442] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[ 1964.979545][T20077] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1966.565726][T20093] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1967.738081][T20093] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1967.830824][T20464] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4478'.
[ 1967.937421][T20093] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1968.333979][T20093] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1969.775671][T16337] bridge_slave_1: left allmulticast mode
[ 1969.775705][T16337] bridge_slave_1: left promiscuous mode
[ 1969.775950][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1969.861993][T16337] bridge_slave_0: left allmulticast mode
[ 1969.862016][T16337] bridge_slave_0: left promiscuous mode
[ 1969.862207][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1972.519542][   T59] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1972.553602][   T59] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1972.555859][   T59] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1972.557274][   T59] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1972.561585][   T59] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1973.415591][T19693] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1973.540534][T19693] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1973.617471][T19693] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1973.659984][T19693] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1973.683643][T19693] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1974.562154][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1974.597545][   T59] Bluetooth: hci3: command tx timeout
[ 1974.881755][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1974.949894][T16337] bond0 (unregistering): Released all slaves
[ 1975.621774][T16337] hsr_slave_0: left promiscuous mode
[ 1975.677214][T16337] hsr_slave_1: left promiscuous mode
[ 1975.678215][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1975.805621][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1976.117629][T19693] Bluetooth: hci6: command tx timeout
[ 1976.429033][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1977.377363][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1977.386132][T19693] Bluetooth: hci3: command tx timeout
[ 1977.671168][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1978.031759][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1978.207324][T19693] Bluetooth: hci6: command tx timeout
[ 1978.228715][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1978.579175][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 1978.626654][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1978.744797][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1978.987663][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 1979.032019][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1979.293229][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1979.359769][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1979.599457][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1979.600375][T19693] Bluetooth: hci3: command tx timeout
[ 1979.951238][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1980.307909][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1980.313740][T19693] Bluetooth: hci6: command tx timeout
[ 1980.448139][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1980.505565][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 1980.506033][ T1326] ieee802154 phy1 wpan1: encryption failed: -22
[ 1980.553732][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1981.987311][T19693] Bluetooth: hci3: command tx timeout
[ 1982.467137][   T59] Bluetooth: hci6: command tx timeout
[ 1983.199073][T20549] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1984.277174][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1984.426305][T20298] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1984.479452][T20298] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1984.667828][T20500] chnl_net:caif_netlink_parms(): no params data found
[ 1984.687627][T20298] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1984.833613][T20298] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1984.977601][T20494] chnl_net:caif_netlink_parms(): no params data found
[ 1987.317213][T20500] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1987.317450][T20500] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1987.317699][T20500] bridge_slave_0: entered allmulticast mode
[ 1987.332833][T20500] bridge_slave_0: entered promiscuous mode
[ 1987.468597][T20500] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1987.468738][T20500] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1987.468986][T20500] bridge_slave_1: entered allmulticast mode
[ 1987.471971][T20500] bridge_slave_1: entered promiscuous mode
[ 1989.192252][T20494] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1989.192384][T20494] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1989.192627][T20494] bridge_slave_0: entered allmulticast mode
[ 1989.195255][T20494] bridge_slave_0: entered promiscuous mode
[ 1989.434701][T20494] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1989.434860][T20494] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1989.435037][T20494] bridge_slave_1: entered allmulticast mode
[ 1989.443627][T20494] bridge_slave_1: entered promiscuous mode
[ 1989.471655][T20500] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1989.575366][T20500] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1991.277303][T20494] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1992.103395][T20494] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1992.105472][T20500] team0: Port device team_slave_0 added
[ 1992.115112][T20500] team0: Port device team_slave_1 added
[ 1992.977169][ T5837] usb 1-1: new full-speed USB device number 24 using dummy_hcd
[ 1993.152421][ T5837] usb 1-1: config 1 has an invalid interface descriptor of length 2, skipping
[ 1993.152448][ T5837] usb 1-1: config 1 has an invalid descriptor of length 36, skipping remainder of the config
[ 1993.152549][ T5837] usb 1-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[ 1993.152576][ T5837] usb 1-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1993.152591][ T5837] usb 1-1: config 1 interface 0 has no altsetting 0
[ 1993.165146][ T5837] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1993.165176][ T5837] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1993.165197][ T5837] usb 1-1: SerialNumber: syz
[ 1993.276722][ T5837] cdc_acm 1-1:1.0: Control and data interfaces are not separated!
[ 1993.276745][ T5837] cdc_acm 1-1:1.0: This needs exactly 3 endpoints
[ 1993.276782][ T5837] cdc_acm 1-1:1.0: probe with driver cdc_acm failed with error -22
[ 1993.336513][T20500] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1993.336525][T20500] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1993.336539][T20500] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1993.343216][T20494] team0: Port device team_slave_0 added
[ 1993.348124][T20500] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1993.348140][T20500] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1993.348173][T20500] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1993.418244][T20494] team0: Port device team_slave_1 added
[ 1993.950516][T20494] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1993.950534][T20494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1993.950561][T20494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1994.300002][T20494] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1994.300018][T20494] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1994.300045][T20494] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1994.335670][T20500] hsr_slave_0: entered promiscuous mode
[ 1994.368428][T20500] hsr_slave_1: entered promiscuous mode
[ 1994.369467][T20500] debugfs: 'hsr0' already exists in 'hsr'
[ 1994.369493][T20500] Cannot create hsr debugfs directory
[ 1994.868206][T20494] hsr_slave_0: entered promiscuous mode
[ 1994.869941][T20494] hsr_slave_1: entered promiscuous mode
[ 1994.870949][T20494] debugfs: 'hsr0' already exists in 'hsr'
[ 1994.870974][T20494] Cannot create hsr debugfs directory
[ 1995.509154][T17094] usb 1-1: USB disconnect, device number 24
[ 1995.515257][ T8833] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1995.910779][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1996.598988][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1997.151277][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1997.690094][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1998.641331][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1999.998769][T19693] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2000.023860][T19693] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2000.025314][T19693] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2000.051572][T19693] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2000.062810][T19693] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2000.246560][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2001.723804][T16337] bridge_slave_1: left allmulticast mode
[ 2001.723828][T16337] bridge_slave_1: left promiscuous mode
[ 2001.723983][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2001.957822][T16337] bridge_slave_0: left allmulticast mode
[ 2001.957857][T16337] bridge_slave_0: left promiscuous mode
[ 2001.958134][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2002.050613][T16337] bridge_slave_1: left allmulticast mode
[ 2002.050647][T16337] bridge_slave_1: left promiscuous mode
[ 2002.050903][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2002.223912][T19693] Bluetooth: hci0: command tx timeout
[ 2002.388659][T16337] bridge_slave_0: left allmulticast mode
[ 2002.388693][T16337] bridge_slave_0: left promiscuous mode
[ 2002.388964][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2002.407105][T17094] usb 9-1: new full-speed USB device number 32 using dummy_hcd
[ 2002.570497][T17094] usb 9-1: config 1 has an invalid interface descriptor of length 2, skipping
[ 2002.570521][T17094] usb 9-1: config 1 has an invalid descriptor of length 36, skipping remainder of the config
[ 2002.570556][T17094] usb 9-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[ 2002.570595][T17094] usb 9-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 2002.570620][T17094] usb 9-1: config 1 interface 0 has no altsetting 0
[ 2002.572901][T17094] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2002.572929][T17094] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 2002.572948][T17094] usb 9-1: SerialNumber: syz
[ 2002.630450][T17094] cdc_acm 9-1:1.0: Control and data interfaces are not separated!
[ 2002.630472][T17094] cdc_acm 9-1:1.0: This needs exactly 3 endpoints
[ 2002.630508][T17094] cdc_acm 9-1:1.0: probe with driver cdc_acm failed with error -22
[ 2002.822561][T15372] usb 9-1: USB disconnect, device number 32
[ 2002.974255][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2003.075004][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2003.175644][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2003.478015][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2003.597560][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2004.477940][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2004.541291][T19693] Bluetooth: hci0: command tx timeout
[ 2004.876414][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2004.888577][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2004.991422][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2005.047367][T16337] bond0 (unregistering): Released all slaves
[ 2005.303472][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2005.391133][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2005.502113][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2005.632611][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2005.723429][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2005.838761][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2005.943573][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2006.078480][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2006.167899][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2006.237581][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2006.256101][T20662] 9pnet_fd: Insufficient options for proto=fd
[ 2006.257251][T20662] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2006.537353][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2006.561293][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2007.313829][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2007.314621][T19693] Bluetooth: hci0: command tx timeout
[ 2007.435619][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2007.499616][T16337] bond0 (unregistering): Released all slaves
[ 2008.314976][T20634] chnl_net:caif_netlink_parms(): no params data found
[ 2009.327337][T19693] Bluetooth: hci0: command tx timeout
[ 2009.807172][T16337] hsr_slave_0: left promiscuous mode
[ 2010.534263][T16337] hsr_slave_1: left promiscuous mode
[ 2010.535182][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2010.580749][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2011.908788][T16337] hsr_slave_0: left promiscuous mode
[ 2011.947225][T16337] hsr_slave_1: left promiscuous mode
[ 2011.948197][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2011.970516][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2013.417619][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 2013.587968][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 2014.440028][T20701] 9pnet_fd: Insufficient options for proto=fd
[ 2014.440923][T20701] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2015.737253][T20709] binder: 20708:20709 ioctl c0306201 200000000240 returned -11
[ 2015.857682][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 2016.155645][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 2017.916510][T20634] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2017.924869][T20634] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2017.925051][T20634] bridge_slave_0: entered allmulticast mode
[ 2017.929361][T20634] bridge_slave_0: entered promiscuous mode
[ 2017.934770][T20634] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2017.945575][T20634] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2017.945973][T20634] bridge_slave_1: entered allmulticast mode
[ 2017.952217][T20634] bridge_slave_1: entered promiscuous mode
[ 2018.535759][T20634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2018.560680][T20634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2019.275778][T20634] team0: Port device team_slave_0 added
[ 2019.281475][T20634] team0: Port device team_slave_1 added
[ 2019.422616][T20728] 9pnet_fd: Insufficient options for proto=fd
[ 2019.461489][T20728] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2019.603776][T20500] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2019.910539][T20500] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2019.969258][T20634] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2019.969271][T20634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2019.969285][T20634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2019.990061][T20500] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2020.040959][T20634] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2020.040975][T20634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2020.041002][T20634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2020.190088][T20500] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2020.834054][T20737] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4540'.
[ 2021.735593][T20634] hsr_slave_0: entered promiscuous mode
[ 2021.736349][T20634] hsr_slave_1: entered promiscuous mode
[ 2021.736843][T20634] debugfs: 'hsr0' already exists in 'hsr'
[ 2021.736858][T20634] Cannot create hsr debugfs directory
[ 2021.933264][T20743] binder: 20742:20743 ioctl c0306201 200000000240 returned -11
[ 2021.972013][T20494] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 2022.238633][T20494] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 2022.289770][T20494] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 2022.414615][T20494] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 2025.126797][T20778] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4549'.
[ 2025.417574][ T1075] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[ 2025.678276][ T1075] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 2025.695656][ T1075] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2025.695944][ T1075] usb 1-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 2025.695998][ T1075] usb 1-1: config 1 interface 0 has no altsetting 1
[ 2025.792046][ T1075] usb 1-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75
[ 2025.792166][ T1075] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2025.792213][ T1075] usb 1-1: Product: syz
[ 2025.792264][ T1075] usb 1-1: Manufacturer: syz
[ 2025.792305][ T1075] usb 1-1: SerialNumber: syz
[ 2025.893681][ T1075] smsusb:smsusb_probe: board id=8, interface number 0
[ 2025.986127][T20500] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2026.094889][T20500] 8021q: adding VLAN 0 to HW filter on device team0
[ 2026.153005][ T8857] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2026.153165][ T8857] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2026.193485][T20494] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2026.219910][ T8857] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2026.220047][ T8857] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2026.704551][T20494] 8021q: adding VLAN 0 to HW filter on device team0
[ 2026.810823][ T8857] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2026.811021][ T8857] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2026.925137][ T8857] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2026.925316][ T8857] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2027.565472][T18855] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2027.897800][ T1075] smsusb:smsusb_probe: usb_set_interface failed, rc -71
[ 2027.897848][ T1075] smsusb 1-1:1.0: probe with driver smsusb failed with error -71
[ 2027.927321][ T1075] usb 1-1: USB disconnect, device number 25
[ 2028.211461][T16337] bridge_slave_1: left allmulticast mode
[ 2028.211484][T16337] bridge_slave_1: left promiscuous mode
[ 2028.211658][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2028.296779][T20790] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 2028.309782][T16337] bridge_slave_0: left allmulticast mode
[ 2028.309813][T16337] bridge_slave_0: left promiscuous mode
[ 2028.310108][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2029.427082][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 2030.058140][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2030.167969][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2030.235806][T16337] bond0 (unregistering): Released all slaves
[ 2030.486176][T20500] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2030.690311][T20494] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2032.167194][T16337] hsr_slave_0: left promiscuous mode
[ 2032.207188][T16337] hsr_slave_1: left promiscuous mode
[ 2032.208135][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2032.260488][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2033.455980][   T59] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2033.529766][   T59] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2033.536061][   T59] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2033.555879][   T59] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2033.567348][   T59] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2033.714297][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 2034.056681][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 2035.670482][T19693] Bluetooth: hci2: command tx timeout
[ 2035.816280][   T59] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2035.833838][   T59] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2035.835361][   T59] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2035.854920][T20830] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 2035.857299][   T59] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2035.932445][   T59] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2036.917089][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 2037.717093][   T59] Bluetooth: hci2: command tx timeout
[ 2038.067258][   T59] Bluetooth: hci4: command tx timeout
[ 2039.797179][   T59] Bluetooth: hci2: command tx timeout
[ 2040.117132][   T59] Bluetooth: hci4: command tx timeout
[ 2040.759506][T20634] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2040.802632][T20634] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2040.869521][T20634] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2041.120667][T20634] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2042.035514][   T59] Bluetooth: hci2: command tx timeout
[ 2042.056584][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 2042.056632][ T1326] ieee802154 phy1 wpan1: encryption failed: -22
[ 2042.244992][   T59] Bluetooth: hci4: command tx timeout
[ 2043.514720][T20815] chnl_net:caif_netlink_parms(): no params data found
[ 2043.853846][T20827] chnl_net:caif_netlink_parms(): no params data found
[ 2044.292933][   T59] Bluetooth: hci4: command tx timeout
[ 2045.530626][T20815] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2045.530795][T20815] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2045.530971][T20815] bridge_slave_0: entered allmulticast mode
[ 2045.532649][T20815] bridge_slave_0: entered promiscuous mode
[ 2045.630889][T20815] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2045.631028][T20815] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2045.631275][T20815] bridge_slave_1: entered allmulticast mode
[ 2045.634001][T20815] bridge_slave_1: entered promiscuous mode
[ 2046.470868][T20815] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2046.471785][T20827] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2046.471926][T20827] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2046.472126][T20827] bridge_slave_0: entered allmulticast mode
[ 2046.508551][T20827] bridge_slave_0: entered promiscuous mode
[ 2046.577670][T20827] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2046.577824][T20827] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2046.578049][T20827] bridge_slave_1: entered allmulticast mode
[ 2046.580807][T20827] bridge_slave_1: entered promiscuous mode
[ 2046.615950][T20815] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2046.870421][T20910] netlink: 'syz.0.4574': attribute type 1 has an invalid length.
[ 2046.871010][T20910] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 2047.272240][T20918] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 2047.553153][T20922] random: crng reseeded on system resumption
[ 2048.180853][T20827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2048.278207][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 2048.397990][T20815] team0: Port device team_slave_0 added
[ 2048.496809][T20827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2048.528543][T20815] team0: Port device team_slave_1 added
[ 2050.362961][T20827] team0: Port device team_slave_0 added
[ 2050.470389][T20815] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2050.470410][T20815] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2050.470425][T20815] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2050.476885][T20827] team0: Port device team_slave_1 added
[ 2050.479692][T20815] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2050.479706][T20815] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2050.479730][T20815] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2050.745753][T20827] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2050.745764][T20827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2050.745778][T20827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2051.314264][T20939] tmpfs: Bad value for 'mpol'
[ 2051.728642][T20827] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2051.728659][T20827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2051.728678][T20827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2053.452843][T20815] hsr_slave_0: entered promiscuous mode
[ 2053.453594][T20815] hsr_slave_1: entered promiscuous mode
[ 2053.789202][T20957] netlink: 172 bytes leftover after parsing attributes in process `syz.0.4587'.
[ 2053.913732][T20961] fuse: Unknown parameter '00000000000000000000'
[ 2054.109199][T20827] hsr_slave_0: entered promiscuous mode
[ 2054.111360][T20827] hsr_slave_1: entered promiscuous mode
[ 2054.112212][T20827] debugfs: 'hsr0' already exists in 'hsr'
[ 2054.112228][T20827] Cannot create hsr debugfs directory
[ 2054.229928][T20634] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2054.767292][T16802] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[ 2054.930866][T16802] usb 1-1: Using ep0 maxpacket: 8
[ 2054.948283][T16802] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 2054.949580][T16802] usb 1-1: config 4 interface 0 has no altsetting 0
[ 2054.953006][T16802] usb 1-1: string descriptor 0 read error: -22
[ 2054.953129][T16802] usb 1-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[ 2054.953143][T16802] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2054.962727][T16802] usb 1-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[ 2054.998228][T16802] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 2054.998669][T16802] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[ 2054.998719][T16802] usb 1-1: media controller created
[ 2055.738673][T16802] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 2055.854129][T20965] usb 1-1: dvb_usb_au6610: wlen=0, aborting
[ 2055.978755][T20634] 8021q: adding VLAN 0 to HW filter on device team0
[ 2056.178612][ T1075] usb 1-1: USB disconnect, device number 26
[ 2056.371116][T13634] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2056.371531][T13634] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2056.628616][ T8842] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2056.628768][ T8842] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2056.675172][T16337] bridge_slave_1: left allmulticast mode
[ 2056.675206][T16337] bridge_slave_1: left promiscuous mode
[ 2056.675487][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2056.774173][T16337] bridge_slave_0: left allmulticast mode
[ 2056.774194][T16337] bridge_slave_0: left promiscuous mode
[ 2056.774357][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2056.869969][T16337] bridge_slave_1: left allmulticast mode
[ 2056.870001][T16337] bridge_slave_1: left promiscuous mode
[ 2056.870261][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2057.160956][T16337] bridge_slave_0: left allmulticast mode
[ 2057.160980][T16337] bridge_slave_0: left promiscuous mode
[ 2057.161143][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2058.572065][T15945] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2060.985159][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2061.067976][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2061.105871][T16337] bond0 (unregistering): Released all slaves
[ 2061.404385][T19693] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2061.424657][T19693] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2061.426766][T19693] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2061.481603][T19693] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2061.482460][T19693] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2063.557671][   T59] Bluetooth: hci3: command tx timeout
[ 2065.754591][   T59] Bluetooth: hci3: command tx timeout
[ 2067.819952][T19693] Bluetooth: hci3: command tx timeout
[ 2067.896138][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2067.970282][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2068.223418][T16337] bond0 (unregistering): Released all slaves
[ 2070.099552][T19693] Bluetooth: hci3: command tx timeout
[ 2073.273075][T21081] tmpfs: Bad value for 'mpol'
[ 2074.072205][T16337] hsr_slave_0: left promiscuous mode
[ 2074.112914][T16337] hsr_slave_1: left promiscuous mode
[ 2074.114021][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2074.158422][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2074.317828][T16337] hsr_slave_0: left promiscuous mode
[ 2074.337290][T16337] hsr_slave_1: left promiscuous mode
[ 2074.337969][T16337] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2074.388631][T16337] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2075.494377][T21088] trusted_key: syz.8.4624 sent an empty control message without MSG_MORE.
[ 2076.345608][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 2077.678435][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 2079.401280][T21113] overlayfs: failed to clone lowerpath
[ 2085.618128][T16337] team0 (unregistering): Port device team_slave_1 removed
[ 2086.368166][T16337] team0 (unregistering): Port device team_slave_0 removed
[ 2088.002022][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2088.222613][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2088.286601][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2088.382238][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2088.527122][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2088.622377][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2088.724056][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2088.819461][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2088.993745][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2089.086810][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2089.498700][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2089.634837][   T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2089.652636][   T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2089.654711][   T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2089.655881][   T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2089.656832][   T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2089.810335][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2089.939493][T18855] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2090.177195][ T1075] usb 9-1: new high-speed USB device number 33 using dummy_hcd
[ 2090.343231][ T1075] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2090.343274][ T1075] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2090.343317][ T1075] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2090.343340][ T1075] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2090.428684][T21160] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 2090.452205][ T1075] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[ 2090.516565][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2090.998344][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2091.140131][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2091.443260][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2091.535043][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2091.619475][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2091.711717][T21006] chnl_net:caif_netlink_parms(): no params data found
[ 2091.717980][   T59] Bluetooth: hci0: command tx timeout
[ 2092.953927][T21006] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2092.959936][T21006] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2092.960205][T21006] bridge_slave_0: entered allmulticast mode
[ 2092.962884][T21006] bridge_slave_0: entered promiscuous mode
[ 2092.990011][T21006] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2092.990157][T21006] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2092.990407][T21006] bridge_slave_1: entered allmulticast mode
[ 2092.993130][T21006] bridge_slave_1: entered promiscuous mode
[ 2093.237873][T20780] usb 9-1: USB disconnect, device number 33
[ 2093.402552][T21006] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2093.406874][T21006] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2093.553109][T21156] chnl_net:caif_netlink_parms(): no params data found
[ 2093.770542][T21006] team0: Port device team_slave_0 added
[ 2093.789314][T21006] team0: Port device team_slave_1 added
[ 2093.797321][   T59] Bluetooth: hci0: command tx timeout
[ 2093.934835][T21173] tmpfs: Bad value for 'mpol'
[ 2094.305836][T21006] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2094.305854][T21006] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2094.305880][T21006] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2094.735777][T21006] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2094.735794][T21006] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2094.735815][T21006] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2095.218150][T19693] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2095.223943][T19693] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2095.225487][T19693] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2095.226649][T19693] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2095.278661][T19693] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2095.455324][T21156] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2095.455547][T21156] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2095.455745][T21156] bridge_slave_0: entered allmulticast mode
[ 2095.479112][T21156] bridge_slave_0: entered promiscuous mode
[ 2095.644821][T21156] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2095.644959][T21156] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2095.645160][T21156] bridge_slave_1: entered allmulticast mode
[ 2095.646741][T21156] bridge_slave_1: entered promiscuous mode
[ 2095.877090][   T59] Bluetooth: hci0: command tx timeout
[ 2096.035699][T21006] hsr_slave_0: entered promiscuous mode
[ 2096.047322][T21006] hsr_slave_1: entered promiscuous mode
[ 2096.048332][T21006] debugfs: 'hsr0' already exists in 'hsr'
[ 2096.048358][T21006] Cannot create hsr debugfs directory
[ 2096.163168][T21156] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2096.201535][T21156] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2096.835196][T19693] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2096.855606][T19693] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2096.868494][T19693] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2096.870451][T19693] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2096.871256][T19693] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2097.605373][T19693] Bluetooth: hci5: command tx timeout
[ 2097.967103][   T59] Bluetooth: hci0: command tx timeout
[ 2098.516821][T21156] team0: Port device team_slave_0 added
[ 2098.664592][T21156] team0: Port device team_slave_1 added
[ 2099.086299][T21156] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2099.086316][T21156] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2099.086342][T21156] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2099.241287][T21156] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2099.241298][T21156] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2099.241313][T21156] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2099.637287][T19693] Bluetooth: hci5: command tx timeout
[ 2099.637304][   T59] Bluetooth: hci2: command tx timeout
[ 2100.012144][T21199] tmpfs: Cannot change global quota limit on remount
[ 2100.049598][T21156] hsr_slave_0: entered promiscuous mode
[ 2100.050967][T21156] hsr_slave_1: entered promiscuous mode
[ 2100.051900][T21156] debugfs: 'hsr0' already exists in 'hsr'
[ 2100.051924][T21156] Cannot create hsr debugfs directory
[ 2100.377311][ T5931] usb 9-1: new high-speed USB device number 34 using dummy_hcd
[ 2100.569022][ T5931] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2100.569056][ T5931] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2100.569096][ T5931] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2100.569119][ T5931] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2100.615560][T21201] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 2100.635331][ T5931] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[ 2101.582007][T21183] chnl_net:caif_netlink_parms(): no params data found
[ 2101.717422][   T59] Bluetooth: hci2: command tx timeout
[ 2101.732551][   T59] Bluetooth: hci5: command tx timeout
[ 2101.750079][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2103.264276][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 2103.264353][ T1326] ieee802154 phy1 wpan1: encryption failed: -22
[ 2103.378978][T16337] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2103.379015][T16337] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[ 2103.509625][T21187] chnl_net:caif_netlink_parms(): no params data found
[ 2103.527277][T21183] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2103.527425][T21183] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2103.527683][T21183] bridge_slave_0: entered allmulticast mode
[ 2103.530494][T21183] bridge_slave_0: entered promiscuous mode
[ 2103.588122][T16802] usb 9-1: USB disconnect, device number 34
[ 2103.799484][T19693] Bluetooth: hci2: command tx timeout
[ 2103.799576][   T59] Bluetooth: hci5: command tx timeout
[ 2103.809319][T16337] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2103.809351][T16337] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[ 2103.876781][T21183] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2103.894780][T21183] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2103.894975][T21183] bridge_slave_1: entered allmulticast mode
[ 2103.907896][T21183] bridge_slave_1: entered promiscuous mode
[ 2104.495127][T16337] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2104.495152][T16337] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[ 2104.676901][T21183] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2104.693424][T21006] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2104.976232][T16337] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2104.976254][T16337] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[ 2105.083661][T21183] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2105.111945][T21006] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2105.539041][T21006] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2106.062597][   T59] Bluetooth: hci2: command tx timeout
[ 2106.075207][T21006] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2106.979489][T21183] team0: Port device team_slave_0 added
[ 2106.981566][T21187] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2106.983603][T21187] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2106.983872][T21187] bridge_slave_0: entered allmulticast mode
[ 2106.986737][T21187] bridge_slave_0: entered promiscuous mode
[ 2106.995745][T21183] team0: Port device team_slave_1 added
[ 2107.000074][T21187] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2107.000200][T21187] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2107.000416][T21187] bridge_slave_1: entered allmulticast mode
[ 2107.003267][T21187] bridge_slave_1: entered promiscuous mode
[ 2107.533816][T21183] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2107.533828][T21183] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2107.533845][T21183] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2107.540053][T21187] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2107.542690][T21183] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2107.542705][T21183] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2107.542731][T21183] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2107.595226][T21187] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2108.069637][T21187] team0: Port device team_slave_0 added
[ 2108.254019][T21187] team0: Port device team_slave_1 added
[ 2108.345821][T21183] hsr_slave_0: entered promiscuous mode
[ 2108.346588][T21183] hsr_slave_1: entered promiscuous mode
[ 2108.367698][T21183] debugfs: 'hsr0' already exists in 'hsr'
[ 2108.367727][T21183] Cannot create hsr debugfs directory
[ 2108.752060][T21187] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2108.752075][T21187] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2108.752095][T21187] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2108.834297][T21187] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2108.834313][T21187] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2108.834337][T21187] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2108.835580][T16337] bridge_slave_1: left allmulticast mode
[ 2108.835609][T16337] bridge_slave_1: left promiscuous mode
[ 2108.835873][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2108.939103][T16337] bridge_slave_0: left allmulticast mode
[ 2108.939138][T16337] bridge_slave_0: left promiscuous mode
[ 2108.943055][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2109.026211][T16337] bridge_slave_1: left allmulticast mode
[ 2109.026244][T16337] bridge_slave_1: left promiscuous mode
[ 2109.026504][T16337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2109.108719][T16337] bridge_slave_0: left allmulticast mode
[ 2109.108753][T16337] bridge_slave_0: left promiscuous mode
[ 2109.109007][T16337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2110.208016][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2110.311789][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2110.373093][T16337] bond0 (unregistering): Released all slaves
[ 2110.447089][ T5931] usb 9-1: new high-speed USB device number 35 using dummy_hcd
[ 2110.623667][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2110.633933][ T5931] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2110.633968][ T5931] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2110.634010][ T5931] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2110.634034][ T5931] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2110.724857][T21246] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 2110.738936][ T5931] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[ 2110.788108][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2111.368297][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2111.440067][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2112.704022][T16337] bond0 (unregistering): Released all slaves
[ 2112.859430][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2112.962197][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2113.080893][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2113.180023][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2113.600095][ T5837] usb 9-1: USB disconnect, device number 35
[ 2115.817988][T16337] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2115.887928][T16337] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2115.921922][T16337] bond0 (unregistering): Released all slaves
[ 2117.494912][T21187] hsr_slave_0: entered promiscuous mode
[ 2117.496286][T21187] hsr_slave_1: entered promiscuous mode
[ 2117.497581][T21187] debugfs: 'hsr0' already exists in 'hsr'
[ 2117.497607][T21187] Cannot create hsr debugfs directory
[ 2117.574188][T21156] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2117.751158][T16337] rxrpc: Call ffff88803513f1c0 still in use (1,Complete,1409,0)!
[ 2117.976603][T21156] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2118.192657][T21156] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2118.323800][T21156] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2119.074301][T21006] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2119.115369][T21006] 8021q: adding VLAN 0 to HW filter on device team0
[ 2119.152915][T13636] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2119.157222][T13636] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2119.250486][T13640] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2119.250576][T13640] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2119.768276][T21156] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2119.871324][T21156] 8021q: adding VLAN 0 to HW filter on device team0
[ 2119.906211][T21041] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2119.906416][T21041] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2119.983712][T13640] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2119.983866][T13640] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2120.427732][T21006] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2121.020464][T21156] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2121.056693][T13636] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2121.167195][T21156] veth0_vlan: entered promiscuous mode
[ 2121.188408][T21156] veth1_vlan: entered promiscuous mode
[ 2121.275625][T21156] veth0_macvtap: entered promiscuous mode
[ 2121.330663][T21156] veth1_macvtap: entered promiscuous mode
[ 2121.377607][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2121.388812][ T5837] usb 9-1: new high-speed USB device number 36 using dummy_hcd
[ 2121.466918][T21156] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2121.503445][T21156] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2121.682346][T13634] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2121.697399][T13634] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2121.734923][T13634] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2121.736213][T13634] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2121.811795][ T5837] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2121.811838][ T5837] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2121.811878][ T5837] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2121.811900][ T5837] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2121.857329][T21294] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 2121.862451][ T5837] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[ 2121.991764][T21183] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 2122.041530][T21183] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 2122.130389][T21183] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 2122.425506][T21183] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 2122.446391][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2123.224959][T19693] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2123.238730][T19693] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2123.241843][T19693] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2123.255682][T19693] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2123.277964][T19693] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2123.291850][T21187] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2123.353310][T21187] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2123.460668][ T3848] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2123.460690][ T3848] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2123.647523][T21187] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2123.802008][T21187] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2123.870562][T13636] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2123.870584][T13636] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2124.611304][T20780] usb 9-1: USB disconnect, device number 36
[ 2124.914084][T21183] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2124.960604][T21307] chnl_net:caif_netlink_parms(): no params data found
[ 2125.483453][   T59] Bluetooth: hci3: command tx timeout
[ 2125.748568][T21332] overlayfs: missing 'lowerdir'
[ 2125.751656][T21183] 8021q: adding VLAN 0 to HW filter on device team0
[ 2126.294188][T13640] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2126.294436][T13640] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2126.295318][T21307] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2126.295454][T21307] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2126.295665][T21307] bridge_slave_0: entered allmulticast mode
[ 2127.048874][T21307] bridge_slave_0: entered promiscuous mode
[ 2127.267520][T21307] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2127.267665][T21307] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2127.267929][T21307] bridge_slave_1: entered allmulticast mode
[ 2127.270866][T21307] bridge_slave_1: entered promiscuous mode
[ 2127.432259][T21187] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2127.435233][ T8837] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2127.435443][ T8837] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2127.557112][   T59] Bluetooth: hci3: command tx timeout
[ 2127.691271][T21307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2127.701398][T21307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2128.047769][T21307] team0: Port device team_slave_0 added
[ 2128.054588][T21187] 8021q: adding VLAN 0 to HW filter on device team0
[ 2128.071781][T21307] team0: Port device team_slave_1 added
[ 2128.409933][T21307] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2128.409945][T21307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2128.409959][T21307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2128.414270][T13636] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2128.414452][T13636] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2128.431520][T21307] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2128.431537][T21307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2128.431562][T21307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2128.473160][T13636] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2128.473407][T13636] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2128.776550][T21307] hsr_slave_0: entered promiscuous mode
[ 2128.783411][T21307] hsr_slave_1: entered promiscuous mode
[ 2128.784002][T21307] debugfs: 'hsr0' already exists in 'hsr'
[ 2128.784018][T21307] Cannot create hsr debugfs directory
[ 2129.638053][   T59] Bluetooth: hci3: command tx timeout
[ 2130.006114][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2130.316900][T21353] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4674'.
[ 2130.452174][T21183] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2130.487553][T21304] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[ 2130.609613][T21187] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2130.645260][T21304] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2130.645296][T21304] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2130.645338][T21304] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2130.645361][T21304] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2130.691211][T21358] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 2130.758295][T21187] veth0_vlan: entered promiscuous mode
[ 2130.782382][T21187] veth1_vlan: entered promiscuous mode
[ 2130.855053][T21304] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[ 2130.898371][T21187] veth0_macvtap: entered promiscuous mode
[ 2131.043385][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2131.074263][T21187] veth1_macvtap: entered promiscuous mode
[ 2131.164038][T21187] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2131.187312][T21187] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2131.259954][ T3848] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2131.260477][ T3848] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2131.261440][ T3848] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2131.261889][ T3848] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2131.718864][   T59] Bluetooth: hci3: command tx timeout
[ 2132.080338][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2133.592002][T17094] usb 2-1: USB disconnect, device number 4
[ 2134.242022][T13636] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2134.242044][T13636] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2134.676296][T21183] veth0_vlan: entered promiscuous mode
[ 2134.695036][T21041] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2134.695058][T21041] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2134.891665][T21183] veth1_vlan: entered promiscuous mode
[ 2134.945257][T21376] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3742'.
[ 2135.000324][T21307] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2135.098142][T21307] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2135.151511][T21378] tmpfs: Bad value for 'mpol'
[ 2135.157345][T21307] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2135.203897][T21307] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2137.029168][T21183] veth0_macvtap: entered promiscuous mode
[ 2137.075622][T21183] veth1_macvtap: entered promiscuous mode
[ 2137.275903][T21183] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2137.359235][T21183] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2137.421670][T15945] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2137.439122][T15945] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2137.441101][T15945] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2137.470784][T15945] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2137.857541][T21304] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[ 2138.063795][T21304] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 2138.063829][T21304] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 2138.063868][T21304] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 2138.063890][T21304] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2138.165777][T21402] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 2138.195084][T21304] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[ 2138.264920][T21307] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2138.662631][ T3848] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2138.662653][ T3848] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2138.740202][T21307] 8021q: adding VLAN 0 to HW filter on device team0
[ 2138.924181][T13640] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2138.924317][T13640] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2138.926615][T13636] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2138.926627][T13636] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2138.948627][T13640] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2138.948719][T13640] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2141.219733][T21307] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2141.704516][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2142.147305][T21405] usb 2-1: USB disconnect, device number 5
[ 2143.035293][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2143.173607][T21438] tmpfs: Bad value for 'mpol'
[ 2143.254834][T21307] veth0_vlan: entered promiscuous mode
[ 2143.280178][T21307] veth1_vlan: entered promiscuous mode
[ 2143.353567][T21307] veth0_macvtap: entered promiscuous mode
[ 2143.380888][T21307] veth1_macvtap: entered promiscuous mode
[ 2143.435793][T21307] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2143.456336][T21307] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2143.482474][T13640] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2143.485520][T13640] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2143.520548][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2143.523366][T21428] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2143.567075][T13806] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2143.882111][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2144.192746][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2144.342233][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2144.794604][T13640] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2144.794627][T13640] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2144.912127][T21429] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2144.912150][T21429] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2144.919989][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2146.344257][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2149.465059][T21484] sp0: Synchronizing with TNC
[ 2152.127471][T13632] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2152.924305][T19693] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 2153.182686][T19693] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 2153.581753][T19693] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 2153.653346][T19693] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 2153.698033][T19693] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 2156.100523][T19693] Bluetooth: hci4: command tx timeout
[ 2156.572649][T21516] chnl_net:caif_netlink_parms(): no params data found
[ 2158.119950][T19693] Bluetooth: hci4: command tx timeout
[ 2158.710260][T21572] netlink: 224 bytes leftover after parsing attributes in process `syz.4.4725'.
[ 2158.710316][T21572] ksmbd: Unknown IPC event: 4, ignore.
[ 2158.940423][T21573] tmpfs: Bad value for 'mpol'
[ 2160.254519][T19693] Bluetooth: hci4: command tx timeout
[ 2160.317609][T21516] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2160.321062][T21516] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2160.321348][T21516] bridge_slave_0: entered allmulticast mode
[ 2160.328408][T21516] bridge_slave_0: entered promiscuous mode
[ 2160.332676][T21516] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2160.332882][T21516] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2160.333094][T21516] bridge_slave_1: entered allmulticast mode
[ 2160.340858][T21516] bridge_slave_1: entered promiscuous mode
[ 2161.986233][T21606] netlink: 224 bytes leftover after parsing attributes in process `syz.9.4735'.
[ 2161.986254][T21606] ksmbd: Unknown IPC event: 4, ignore.
[ 2162.277192][T19693] Bluetooth: hci4: command tx timeout
[ 2162.507893][T21516] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2162.542540][T21516] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2162.886658][T21618] tmpfs: Bad value for 'mpol'
[ 2163.296837][T21516] team0: Port device team_slave_0 added
[ 2163.316819][T21516] team0: Port device team_slave_1 added
[ 2164.787821][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 2164.787897][ T1326] ieee802154 phy1 wpan1: encryption failed: -22
[ 2164.982454][T21516] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2164.982472][T21516] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2164.982499][T21516] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2165.001908][T21516] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2165.001926][T21516] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2165.001952][T21516] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2166.664183][T21649] 9pnet_virtio: no channels available for device syz
[ 2169.788699][T21670] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4757'.
[ 2169.788720][T21670] ksmbd: Unknown IPC event: 4, ignore.
[ 2172.802474][T21696] 9pnet_virtio: no channels available for device syz
[ 2173.775791][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2173.984884][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2174.473339][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2174.586324][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2174.846302][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2175.030646][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2175.072082][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2175.324057][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2175.464676][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2175.693484][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2175.997270][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2176.396550][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2177.259568][T21516] hsr_slave_0: entered promiscuous mode
[ 2177.268985][T21516] hsr_slave_1: entered promiscuous mode
[ 2177.274348][T21516] debugfs: 'hsr0' already exists in 'hsr'
[ 2177.274375][T21516] Cannot create hsr debugfs directory
[ 2177.901880][T21737] 9pnet_virtio: no channels available for device syz
[ 2178.703822][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2178.960926][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2179.152179][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2181.240582][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2181.263858][T21760] 9pnet_fd: Insufficient options for proto=fd
[ 2181.273905][T21760] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2182.072943][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2182.193877][T21769] 9pnet_virtio: no channels available for device syz
[ 2183.421085][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2183.515429][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2183.522484][T21771] random: crng reseeded on system resumption
[ 2183.725896][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2184.512107][T13636] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2186.158384][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2186.985213][T21787] 9pnet_fd: Insufficient options for proto=fd
[ 2186.988825][T21787] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2189.211704][T21516] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 2189.363961][T21516] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 2189.442148][T21516] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 2189.707838][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2189.838763][T21812] 9pnet_virtio: no channels available for device syz
[ 2190.794514][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2190.915407][T21516] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 2194.788782][T21516] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2194.902554][T21516] 8021q: adding VLAN 0 to HW filter on device team0
[ 2194.974907][T13636] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2194.981708][T13636] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2195.066320][T13806] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2195.067220][T13806] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2198.201932][T21516] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2199.480291][T21853] tmpfs: Bad value for 'mpol'
[ 2199.971255][T21865] tmpfs: Bad value for 'mpol'
[ 2200.613407][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2200.713032][T21873] binder: 21872:21873 ioctl c0306201 0 returned -14
[ 2201.944725][T21516] veth0_vlan: entered promiscuous mode
[ 2201.962514][T21516] veth1_vlan: entered promiscuous mode
[ 2202.032769][T21516] veth0_macvtap: entered promiscuous mode
[ 2202.046371][T21516] veth1_macvtap: entered promiscuous mode
[ 2202.079836][T21516] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2203.278031][T21516] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2203.329868][ T3848] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2203.331804][ T3848] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2203.334047][ T3848] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2204.646818][ T3848] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2206.389902][T21906] tmpfs: Bad value for 'mpol'
[ 2206.716367][T13806] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2206.716389][T13806] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2207.031598][ T3848] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2207.031622][ T3848] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2208.435030][T21919] tmpfs: Bad value for 'mpol'
[ 2212.989445][T21947] Bluetooth: hci0: command 0x0406 tx timeout
[ 2213.154258][T21966] 9pnet_fd: Insufficient options for proto=fd
[ 2213.157770][T21966] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2216.212832][T21041] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2217.638908][T22011] tmpfs: Bad value for 'mpol'
[ 2218.279800][T19693] Bluetooth: hci5: command 0x0406 tx timeout
[ 2218.354327][T22019] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4855'.
[ 2223.020022][T22064] tmpfs: Bad value for 'mpol'
[ 2223.397033][T21947] Bluetooth: hci2: command 0x0406 tx timeout
[ 2225.155745][T22084] 9pnet_virtio: no channels available for device syz
[ 2226.261539][ T1326] ieee802154 phy0 wpan0: encryption failed: -22
[ 2226.261747][ T1326] ieee802154 phy1 wpan1: encryption failed: -22
[ 2226.494387][T22091] Bluetooth: MGMT ver 1.23
[ 2227.894117][T22104] random: crng reseeded on system resumption
[ 2247.850343][T13632] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 2248.558193][T22259] 9pnet_fd: Insufficient options for proto=fd
[ 2248.559124][T22259] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2253.882617][T22310] 9pnet_fd: Insufficient options for proto=fd
[ 2253.886650][T22310] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 2258.507875][T22348] futex_wake_op: syz.2.4950 tries to shift op by -1; fix this program
[ 2266.407889][T21457] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[ 2267.257201][T21457] usb 10-1: config 1 has an invalid interface descriptor of length 2, skipping
[ 2267.257227][T21457] usb 10-1: config 1 has an invalid descriptor of length 36, skipping remainder of the config
[ 2267.257263][T21457] usb 10-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[ 2267.257304][T21457] usb 10-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 2267.257330][T21457] usb 10-1: config 1 interface 0 has no altsetting 0
[ 2267.258663][T21457] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2267.258689][T21457] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 2267.258708][T21457] usb 10-1: SerialNumber: syz
[ 2267.315718][T21457] cdc_acm 10-1:1.0: Control and data interfaces are not separated!
[ 2267.315745][T21457] cdc_acm 10-1:1.0: This needs exactly 3 endpoints
[ 2267.315780][T21457] cdc_acm 10-1:1.0: probe with driver cdc_acm failed with error -22
[ 2267.746057][T22406] random: crng reseeded on system resumption
[ 2268.591999][T15372] usb 10-1: USB disconnect, device number 2
[ 2269.190160][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2271.822480][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2271.843122][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2271.961185][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2272.692200][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2273.159829][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2273.190475][T22444] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4977'.
[ 2275.272027][T19693] Bluetooth: hci3: command 0x0406 tx timeout
[ 2275.272149][T15372] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[ 2275.569191][T15372] usb 3-1: config 1 has an invalid interface descriptor of length 2, skipping
[ 2275.569217][T15372] usb 3-1: config 1 has an invalid descriptor of length 36, skipping remainder of the config
[ 2275.569254][T15372] usb 3-1: too many endpoints for config 1 interface 0 altsetting 7: 255, using maximum allowed: 30
[ 2275.569298][T15372] usb 3-1: config 1 interface 0 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 2275.569325][T15372] usb 3-1: config 1 interface 0 has no altsetting 0
[ 2275.570577][T15372] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2275.570605][T15372] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 2275.570626][T15372] usb 3-1: SerialNumber: syz
[ 2275.746756][T22454] random: crng reseeded on system resumption
[ 2275.829972][T15372] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[ 2275.829986][T15372] cdc_acm 3-1:1.0: This needs exactly 3 endpoints
[ 2275.830006][T15372] cdc_acm 3-1:1.0: probe with driver cdc_acm failed with error -22
[ 2276.037682][   T38] INFO: task kworker/u8:11:16337 blocked for more than 143 seconds.
[ 2276.037706][   T38]       Not tainted syzkaller #0
[ 2276.037714][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2276.037723][   T38] task:kworker/u8:11   state:D stack:18936 pid:16337 tgid:16337 ppid:2      task_flags:0x4208060 flags:0x00004000
[ 2276.037826][   T38] Workqueue: netns cleanup_net
[ 2276.037856][   T38] Call Trace:
[ 2276.037863][   T38]  <TASK>
[ 2276.037877][   T38]  __schedule+0x16f3/0x4c20
[ 2276.037930][   T38]  ? __pfx___schedule+0x10/0x10
[ 2276.037972][   T38]  ? schedule+0x91/0x360
[ 2276.037999][   T38]  schedule+0x165/0x360
[ 2276.038026][   T38]  rxrpc_destroy_all_calls+0x564/0x660
[ 2276.038054][   T38]  ? __pfx_rxrpc_destroy_all_calls+0x10/0x10
[ 2276.038077][   T38]  ? __pfx_var_wake_function+0x10/0x10
[ 2276.038102][   T38]  ? rxrpc_net+0x23/0x240
[ 2276.038128][   T38]  rxrpc_exit_net+0x6f/0xc0
[ 2276.038149][   T38]  ops_undo_list+0x49a/0x990
[ 2276.038180][   T38]  ? __pfx_ops_undo_list+0x10/0x10
[ 2276.038216][   T38]  cleanup_net+0x4cb/0x800
[ 2276.038242][   T38]  ? __pfx_cleanup_net+0x10/0x10
[ 2276.038269][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2276.038292][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 2276.038315][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[ 2276.038339][   T38]  process_scheduled_works+0xade/0x17b0
[ 2276.038393][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2276.038434][   T38]  worker_thread+0x8a0/0xda0
[ 2276.038467][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2276.038501][   T38]  ? __kthread_parkme+0x7b/0x200
[ 2276.038536][   T38]  kthread+0x70e/0x8a0
[ 2276.038563][   T38]  ? __pfx_worker_thread+0x10/0x10
[ 2276.038585][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.038615][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.038640][   T38]  ret_from_fork+0x436/0x7d0
[ 2276.038664][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 2276.038694][   T38]  ? __switch_to_asm+0x39/0x70
[ 2276.038711][   T38]  ? __switch_to_asm+0x33/0x70
[ 2276.038727][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.038752][   T38]  ret_from_fork_asm+0x1a/0x30
[ 2276.038838][   T38]  </TASK>
[ 2276.038914][   T38] 
[ 2276.038914][   T38] Showing all locks held in the system:
[ 2276.038926][   T38] 1 lock held by khungtaskd/38:
[ 2276.038941][   T38]  #0: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 2276.039010][   T38] 5 locks held by kworker/u8:14/3848:
[ 2276.039023][   T38] 2 locks held by getty/5598:
[ 2276.039033][   T38]  #0: ffff88823bf3a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 2276.039083][   T38]  #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1410
[ 2276.039126][   T38] 3 locks held by kworker/u8:11/16337:
[ 2276.039136][   T38]  #0: ffff88801a6f4138 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 2276.039180][   T38]  #1: ffffc9000435fbc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 2276.039222][   T38]  #2: ffffffff8ecc6980 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[ 2276.039276][   T38] 1 lock held by syz.9.4975/22433:
[ 2276.039286][   T38]  #0: ffff88807c63f2d0 (&mm->mmap_lock){++++}-{4:4}, at: exit_mm+0xcc/0x2c0
[ 2276.039326][   T38] 1 lock held by syz.9.4975/22434:
[ 2276.039337][   T38]  #0: ffff88807c63f2d0 (&mm->mmap_lock){++++}-{4:4}, at: exit_mm+0xcc/0x2c0
[ 2276.039376][   T38] 1 lock held by syz.9.4975/22439:
[ 2276.039386][   T38]  #0: ffff88807c63f2d0 (&mm->mmap_lock){++++}-{4:4}, at: exit_mm+0xcc/0x2c0
[ 2276.039422][   T38] 2 locks held by syz.9.4975/22446:
[ 2276.039432][   T38] 1 lock held by syz.1.4977/22442:
[ 2276.039443][   T38] 1 lock held by syz.5.4981/22456:
[ 2276.039459][   T38] 3 locks held by syz.4.4982/22458:
[ 2276.039469][   T38] 
[ 2276.039474][   T38] =============================================
[ 2276.039474][   T38] 
[ 2276.039487][   T38] NMI backtrace for cpu 1
[ 2276.039501][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2276.039521][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2276.039531][   T38] Call Trace:
[ 2276.039539][   T38]  <TASK>
[ 2276.039548][   T38]  dump_stack_lvl+0x189/0x250
[ 2276.039576][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2276.039600][   T38]  ? __pfx__printk+0x10/0x10
[ 2276.039631][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[ 2276.039655][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 2276.039674][   T38]  ? __pfx__printk+0x10/0x10
[ 2276.039691][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2276.039711][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 2276.039731][   T38]  watchdog+0xf93/0xfe0
[ 2276.039752][   T38]  ? watchdog+0x1de/0xfe0
[ 2276.039772][   T38]  kthread+0x70e/0x8a0
[ 2276.039794][   T38]  ? __pfx_watchdog+0x10/0x10
[ 2276.039810][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.039836][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.039856][   T38]  ret_from_fork+0x436/0x7d0
[ 2276.039876][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 2276.039897][   T38]  ? __switch_to_asm+0x39/0x70
[ 2276.039910][   T38]  ? __switch_to_asm+0x33/0x70
[ 2276.039921][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.039941][   T38]  ret_from_fork_asm+0x1a/0x30
[ 2276.039965][   T38]  </TASK>
[ 2276.039993][   T38] Sending NMI from CPU 1 to CPUs 0:
[ 2276.040015][    C0] NMI backtrace for cpu 0
[ 2276.040029][    C0] CPU: 0 UID: 0 PID: 3848 Comm: kworker/u8:14 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2276.040048][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2276.040059][    C0] Workqueue: events_unbound toggle_allocation_gate
[ 2276.040079][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x8/0xa0
[ 2276.040099][    C0] Code: 89 74 0a 18 48 89 44 0a 20 e9 c4 4d 3c 09 cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 <65> 48 8b 0c 25 08 40 f6 91 65 44 8b 05 27 cd 37 10 41 81 e0 00 00
[ 2276.040113][    C0] RSP: 0018:ffffc9000e467600 EFLAGS: 00000246
[ 2276.040126][    C0] RAX: ffffffff820b41b9 RBX: 00002aaaaaaab000 RCX: ffff888031b93b80
[ 2276.040140][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 2276.040150][    C0] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffff820b4189
[ 2276.040161][    C0] R10: dffffc0000000000 R11: fffff94000010981 R12: ffffffff82130d10
[ 2276.040174][    C0] R13: fffffffffffffeff R14: ffff88801987baa8 R15: ffffc9000e467678
[ 2276.040186][    C0] FS:  0000000000000000(0000) GS:ffff8881268bc000(0000) knlGS:0000000000000000
[ 2276.040200][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2276.040212][    C0] CR2: 000000110c339549 CR3: 000000000d7a6000 CR4: 00000000003526f0
[ 2276.040226][    C0] Call Trace:
[ 2276.040233][    C0]  <TASK>
[ 2276.040239][    C0]  ___pte_offset_map+0x59/0x200
[ 2276.040259][    C0]  ? __pte_offset_map_lock+0x2d/0x210
[ 2276.040277][    C0]  ? __kmalloc_noprof+0xe0/0x430
[ 2276.040296][    C0]  __pte_offset_map_lock+0x46/0x210
[ 2276.040314][    C0]  ? __kmalloc_noprof+0xe0/0x430
[ 2276.040333][    C0]  ? __kmalloc_noprof+0xe0/0x430
[ 2276.040352][    C0]  __text_poke+0x2e6/0xa10
[ 2276.040370][    C0]  ? __pfx_text_poke_memcpy+0x10/0x10
[ 2276.040385][    C0]  ? __kmalloc_noprof+0xe0/0x430
[ 2276.040402][    C0]  ? __pfx___text_poke+0x10/0x10
[ 2276.040429][    C0]  smp_text_poke_batch_finish+0x90a/0x1130
[ 2276.040450][    C0]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[ 2276.040471][    C0]  ? mutex_lock_nested+0x154/0x1d0
[ 2276.040487][    C0]  ? arch_jump_label_transform_apply+0x17/0x30
[ 2276.040507][    C0]  arch_jump_label_transform_apply+0x1c/0x30
[ 2276.040524][    C0]  static_key_disable_cpuslocked+0xc5/0x1b0
[ 2276.040546][    C0]  static_key_disable+0x1a/0x20
[ 2276.040564][    C0]  toggle_allocation_gate+0x1a1/0x240
[ 2276.040583][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[ 2276.040600][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 2276.040622][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[ 2276.040646][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[ 2276.040663][    C0]  process_scheduled_works+0xade/0x17b0
[ 2276.040695][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2276.040726][    C0]  worker_thread+0x8a0/0xda0
[ 2276.040756][    C0]  kthread+0x70e/0x8a0
[ 2276.040776][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 2276.040793][    C0]  ? __pfx_kthread+0x10/0x10
[ 2276.040815][    C0]  ? __pfx_kthread+0x10/0x10
[ 2276.040834][    C0]  ret_from_fork+0x436/0x7d0
[ 2276.040852][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 2276.040872][    C0]  ? __switch_to_asm+0x39/0x70
[ 2276.040886][    C0]  ? __switch_to_asm+0x33/0x70
[ 2276.040900][    C0]  ? __pfx_kthread+0x10/0x10
[ 2276.040919][    C0]  ret_from_fork_asm+0x1a/0x30
[ 2276.040941][    C0]  </TASK>
[ 2276.041302][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 2276.041317][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 2276.041334][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2276.041342][   T38] Call Trace:
[ 2276.041348][   T38]  <TASK>
[ 2276.041354][   T38]  dump_stack_lvl+0x99/0x250
[ 2276.041376][   T38]  ? __asan_memcpy+0x40/0x70
[ 2276.041394][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2276.041412][   T38]  ? __pfx__printk+0x10/0x10
[ 2276.041436][   T38]  vpanic+0x281/0x750
[ 2276.041465][   T38]  ? __pfx_vpanic+0x10/0x10
[ 2276.041481][   T38]  ? __x2apic_send_IPI_mask+0x1e4/0x260
[ 2276.041496][   T38]  ? preempt_schedule+0xae/0xc0
[ 2276.041516][   T38]  ? preempt_schedule_common+0x83/0xd0
[ 2276.041538][   T38]  panic+0xb9/0xc0
[ 2276.041556][   T38]  ? __pfx_panic+0x10/0x10
[ 2276.041574][   T38]  ? preempt_schedule_thunk+0x16/0x30
[ 2276.041595][   T38]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[ 2276.041614][   T38]  watchdog+0xfd2/0xfe0
[ 2276.041634][   T38]  ? watchdog+0x1de/0xfe0
[ 2276.041654][   T38]  kthread+0x70e/0x8a0
[ 2276.041676][   T38]  ? __pfx_watchdog+0x10/0x10
[ 2276.041691][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.041714][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.041733][   T38]  ret_from_fork+0x436/0x7d0
[ 2276.041752][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 2276.041773][   T38]  ? __switch_to_asm+0x39/0x70
[ 2276.041785][   T38]  ? __switch_to_asm+0x33/0x70
[ 2276.041796][   T38]  ? __pfx_kthread+0x10/0x10
[ 2276.041815][   T38]  ret_from_fork_asm+0x1a/0x30
[ 2276.041839][   T38]  </TASK>
[ 2276.044276][   T38] Kernel Offset: disabled