last executing test programs:

20m23.193231018s ago: executing program 2 (id=18):
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
dup(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000740)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r4, @ANYBLOB="1f003300d00000000802110000010802110000005050505050500000", @ANYRES8=r2], 0x3c}}, 0x10)

20m22.823982889s ago: executing program 2 (id=19):
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
fcntl$addseals(r1, 0x409, 0x9)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[], 0x50)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000180)='./file5\x00', 0x3)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x1e3003, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000300))
ioctl$SNDCTL_SEQ_RESET(r3, 0x5100)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004140)=ANY=[@ANYBLOB="02000000040000", @ANYBLOB="000000000000000018004a28e495d6e91be6fb1d9a20ff730e5fe4621b8768b5fa24cef6efd89d5718fc89b68d3ccbb4ca7dc7d615408663367bd98415", @ANYBLOB="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", @ANYRESDEC=r0, @ANYBLOB="000000000200"/28], 0x50)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r5, &(0x7f0000002080)={0xfc, {"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", 0x1000}}, 0x1006)
socket$netlink(0x10, 0x3, 0x5)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, &(0x7f0000000340)={0x3, 0x900900, 0x3})
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x1a86f, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x8}, 0x1c)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc008561c, 0x0)
io_submit(0x0, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f00000003c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x780ebade, @mcast2, 0x880}, {0xa, 0x4e22, 0x5, @loopback, 0x4}, 0xffffffffffffffff, 0x3}}, 0x48)

20m19.325631392s ago: executing program 2 (id=24):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000100)={{0x100}, 'syz0\x00', 0x1c})
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_SET_RELBIT(r0, 0x40045566, 0xf)

20m18.199344857s ago: executing program 2 (id=29):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00'})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, 0x2, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_SIZE={0x8, 0x17, 0x0}]}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'list:set\x00'}]}, 0x54}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000080), 0x1000, 0x2)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={0x0, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x10)
setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000580)={0x0, 0x1, 0x6, @local}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x10, 0x3, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1)
r5 = eventfd(0x5f0)
ioctl$KVM_IOEVENTFD(r4, 0x40a0ae49, &(0x7f0000000080)={0x7ff, 0x8080000, 0x0, r5})

20m9.002190225s ago: executing program 2 (id=36):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x3e, 0x229, 0x0, 0xfffffffd, {0xa}}, 0x14}, 0x1, 0x6000000}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
creat(&(0x7f0000000100)='./file0\x00', 0x104)
openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r5=>0x0})
bind$can_j1939(r4, &(0x7f00000000c0)={0x1d, r5}, 0x18)
connect$can_j1939(r4, &(0x7f0000000140)={0x1d, r5, 0x0, {0x0, 0xff, 0x4}, 0x2}, 0x18)
sendmmsg(r4, &(0x7f0000003e40), 0x3fffffffffffe3d, 0xf5)

20m8.753434667s ago: executing program 4 (id=37):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_SETSEL(r0, 0x541c, 0x0)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000200)={0xfffe7567, 0x10000, 0xefc9, 0x6, 0x9, "20ab9809006ea4a7446c180000cd681ec267a0", 0x7, 0x200008})
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000000))

20m8.158210899s ago: executing program 4 (id=38):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x5)
r0 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000200)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x7f, 0xc1, 0x0, 0x0, 0x1, 0x7f, 0xfffffffe, 0x28, 0x1, 0x0})

20m7.54537522s ago: executing program 4 (id=40):
socket$pppl2tp(0x18, 0x1, 0x1)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_ERRQUEUE(r3, 0x6b, 0x4, &(0x7f0000000000), &(0x7f0000000080)=0x4)

20m4.105518227s ago: executing program 0 (id=45):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x1, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r3, 0x40045612, &(0x7f00000002c0)=0x1)

20m2.220908541s ago: executing program 4 (id=49):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
write$dsp(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='ext4_ext_convert_to_initialized_enter\x00'}, 0x18)
r1 = openat$udambuf(0xffffff9c, &(0x7f0000000380), 0x2)
ioctl$UDMABUF_CREATE_LIST(r1, 0x40087543, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x8]}, 0x8, 0x80800)
io_setup(0x2, &(0x7f0000000b80)=<r4=>0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, &(0x7f0000006340))
io_submit(r4, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
signalfd4(r3, &(0x7f0000000140)={[0x72]}, 0x8, 0x0)
connect$pppl2tp(r2, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}, 0x2}}, 0x26)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
pidfd_send_signal(0xffffffffffffffff, 0x21, 0x0, 0x4)
openat$random(0xffffff9c, &(0x7f00000001c0), 0x311140, 0x0)

20m1.774425736s ago: executing program 0 (id=51):
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000a40)={&(0x7f00000000c0)=[{0x6, 0x4200, 0x0, 0x0}, {0x8, 0x4a10, 0x4, &(0x7f0000000100)="1e0c77b2"}], 0x2})
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000040)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000240)={<r4=>0x0, @private, @initdev}, &(0x7f00000003c0)=0xc)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r5, 0x6, 0x5, 0x0, &(0x7f0000000040))
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_lsm={0x1d, 0x15, &(0x7f0000000980)=ANY=[@ANYBLOB="180000000700000000000000030000001869000006000000000000000200000095e004001000000001b80600620800008510000006000000181a0000", @ANYRES32, @ANYBLOB="0000000000000000018883cf0300000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000040000007b8af8ff00000000bfa200000000004c0ac6040444f9b96372289555a444760007020000f8ffffffb703000008000000b704000002000000850000008200000085100000070000009500000000000000"], &(0x7f0000000500)='GPL\x00', 0x800, 0x0, 0x0, 0x41000, 0x22, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000540)={0x6, 0x1}, 0x8, 0x10, &(0x7f0000000580)={0x4, 0xa, 0xe, 0x2}, 0x10, 0x0, 0x0, 0x3, &(0x7f00000005c0)=[0x1, 0xffffffffffffffff], &(0x7f0000000600)=[{0x2, 0x2, 0x6, 0x7}, {0x4, 0x1, 0x9, 0x3}, {0x3, 0x4, 0x5, 0xb}], 0x10, 0x80000001}, 0x94)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000700)={0x0, 0x4, 0x10}, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=@newqdisc={0x23, 0x24, 0x200, 0x0, 0x2, {0x0, 0x0, 0x0, 0x0, {0xc, 0xf}, {0xffff, 0xffff}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000000)
r7 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r7, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0x8, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x87, 0xdb, &(0x7f00000002c0)=""/219, 0x40f00, 0x40, '\x00', r4, @fallback=0x6, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000400)={0x1, 0xa, 0x2000f, 0x3ff}, 0x10, 0x0, r6, 0x2, &(0x7f0000000740), &(0x7f0000000780)=[{0x0, 0x4, 0xb, 0x5}, {0x5, 0x3, 0x0, 0x6}], 0x10, 0x8}, 0x94)
r8 = socket$alg(0x26, 0x5, 0x0)
accept4$alg(r8, 0x0, 0x0, 0x80800)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r9 = syz_open_dev$I2C(&(0x7f0000000140), 0x1, 0x703201)
ioctl$I2C_PEC(r9, 0x708, 0x2)
ioctl$I2C_SMBUS(r9, 0x720, &(0x7f00000001c0)={0x0, 0xc, 0x5, &(0x7f0000000180)={0x11, "7ee4e298cc982d5223de9ac3ae86f11f61bef7ad3a5c8acb4f8a2e5cde75d5f9d0"}})
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r10, &(0x7f0000000040)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1, @default}, 0x1c)
socket$kcm(0x29, 0x2, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r12 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r12, 0x641f)

20m1.565175812s ago: executing program 4 (id=52):
syz_open_dev$dmmidi(&(0x7f00000000c0), 0x2, 0x0)
openat$comedi(0xffffff9c, &(0x7f0000000440)='/dev/comedi0\x00', 0x101001, 0x0)
dup(0xffffffffffffffff)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x9, @loopback, 0x4}, 0x1c, &(0x7f0000000380)}, 0x4048043)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x7f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
mount(&(0x7f0000000400)=@nullb, &(0x7f0000000040)='./file0\x00', 0x0, 0x281847e, 0x0)
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300)=[0x0], &(0x7f0000000340)=[<r4=>0x0], 0x0, 0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000})

20m0.851064533s ago: executing program 0 (id=53):
openat$nvram(0xffffffffffffff9c, &(0x7f0000002080), 0x8ac3094c6a9c458c, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
prctl$PR_SVE_GET_VL(0x33, 0x14cd)
r2 = socket$nl_generic(0x11, 0x3, 0x10)
sendmsg(r2, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0), 0x0, 0x0, 0x0, 0x11000000}, 0x0)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
ptrace$peekuser(0x3, 0x0, 0x9)
r3 = syz_io_uring_setup(0x3ac6, &(0x7f00000002c0)={0x0, 0xfffffffd, 0x10100, 0x4, 0x37c}, &(0x7f0000000080), 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
io_uring_enter(r3, 0x92, 0x0, 0x0, 0x0, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
write$qrtrtun(0xffffffffffffffff, &(0x7f0000000240)="c185dc12b3b9ad6ccd67b348ce15d0b930bb54140497d799b8cf7177377bb79784e2c522e8066af528f21e98a6fd4172bdc525cad90044c9862f86ee5ad454b34feb707d", 0x44)
getdents64(0xffffffffffffffff, &(0x7f0000002f40)=""/4098, 0x1002)
setrlimit(0x0, 0x0)
timer_create(0x2, &(0x7f00000001c0)={0x0, 0x15, 0x4, @thr={&(0x7f0000000000)="80a518", &(0x7f0000000140)}}, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r5, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfb, 0x4000000}, 0xc)
getsockopt$netlink(r5, 0x10e, 0x9, 0x0, &(0x7f0000000040))
timer_delete(0x0)
sendfile(r4, r4, 0x0, 0x200000)
syz_usb_connect(0x0, 0x2d, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xb7, 0x9e, 0x69, 0x8, 0x2040, 0xd300, 0x16b3, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0xf6, 0x0, 0x1, 0x65, 0x80, 0xca, 0x0, [], [{{0x9, 0x5, 0x6, 0x0, 0x0, 0x0, 0x0, 0x8}}]}}]}}]}}, 0x0)

20m0.288226964s ago: executing program 1 (id=54):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = epoll_create1(0x80000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
mount$9p_fd(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x84, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, 0x0)

19m59.930067983s ago: executing program 2 (id=55):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0x3, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socket$unix(0x1, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r1, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563"], 0xffdd)
close(0x3)
close(0x4)

19m59.39865953s ago: executing program 4 (id=57):
r0 = socket$nl_route(0x10, 0x3, 0x0)
gettid()
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140), 0xc0843, 0x0)
ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000001c0)={0x0, 0x4, 0x2, 0x0, 0x8d})
request_key(&(0x7f0000000040)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0xfffffffffffffffe)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f0000000000)={0x5, 0x0, 0x11ffffffffff, 0x2, 0x500, 0x0, 0x1800000000000000, 0x49}, 0x0, &(0x7f0000000180)={0x3fe, 0x53bf, 0x0, 0x200000004, 0x4000000000000086, 0x804, 0x3, 0x1}, 0x0, 0x0)
dup(0xffffffffffffffff)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x30, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x8}, [@IFLA_GROUP={0x8}, @IFLA_TXQLEN={0x8, 0xd, 0x1}]}, 0x30}}, 0x0)

19m58.885377011s ago: executing program 1 (id=58):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000080), 0xffffb45f, 0x401)
ioctl$BTRFS_IOC_SPACE_INFO(r1, 0x4c08, 0x0)

19m58.678780815s ago: executing program 1 (id=59):
socket$pppl2tp(0x18, 0x1, 0x1)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_ERRQUEUE(r3, 0x6b, 0x4, &(0x7f0000000000), &(0x7f0000000080)=0x4)

19m56.990408703s ago: executing program 0 (id=60):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00'/13])
lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x7857}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x6, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)

19m55.905274607s ago: executing program 1 (id=62):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x504}, 0x48)
socket$xdp(0x2c, 0x3, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi0\x00', 0x8080, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x6, 0x100000b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="340000003e0007010000000000000000017c00000400fc800c000180060006006558000008000280040011"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0xc010)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
eventfd(0x3)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

19m54.137916085s ago: executing program 0 (id=64):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
socket(0x2, 0x80805, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r2}, 0x1e)
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r1], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff]})

19m54.136432251s ago: executing program 1 (id=65):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000700)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000006c0), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000400), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000b80)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x106}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000940)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100), 0x111}}, 0x20)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080), 0x62}, {&(0x7f0000000100)="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", 0x682c}, {&(0x7f0000001480)="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", 0x1001}], 0x3)

19m54.045631807s ago: executing program 1 (id=66):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = syz_open_dev$cec(0x0, 0x0, 0x81)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
mkdir(&(0x7f0000003a00)='./file0\x00', 0x0)
r5 = socket$inet6(0xa, 0x3, 0xa)
setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
socket(0x40000000002, 0x3, 0x6)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='rpc_pipefs\x00', 0x0, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4080)

19m52.479863053s ago: executing program 0 (id=68):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, 0x9}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4040004}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

19m44.829471838s ago: executing program 32 (id=55):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r2, 0x10e, 0x3, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socket$unix(0x1, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r1, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563"], 0xffdd)
close(0x3)
close(0x4)

19m43.591516566s ago: executing program 33 (id=57):
r0 = socket$nl_route(0x10, 0x3, 0x0)
gettid()
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140), 0xc0843, 0x0)
ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000001c0)={0x0, 0x4, 0x2, 0x0, 0x8d})
request_key(&(0x7f0000000040)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0xfffffffffffffffe)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f0000000000)={0x5, 0x0, 0x11ffffffffff, 0x2, 0x500, 0x0, 0x1800000000000000, 0x49}, 0x0, &(0x7f0000000180)={0x3fe, 0x53bf, 0x0, 0x200000004, 0x4000000000000086, 0x804, 0x3, 0x1}, 0x0, 0x0)
dup(0xffffffffffffffff)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x30, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x8}, [@IFLA_GROUP={0x8}, @IFLA_TXQLEN={0x8, 0xd, 0x1}]}, 0x30}}, 0x0)

19m38.938203766s ago: executing program 34 (id=66):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = syz_open_dev$cec(0x0, 0x0, 0x81)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
mkdir(&(0x7f0000003a00)='./file0\x00', 0x0)
r5 = socket$inet6(0xa, 0x3, 0xa)
setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
socket(0x40000000002, 0x3, 0x6)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='rpc_pipefs\x00', 0x0, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="5c00000026006bab9a3fe3d86e17aa31106b876c1d0000007ea60864160af36504001a0038001d004231a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb5b64f69853362ac3407173ec", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4080)

19m37.432921908s ago: executing program 35 (id=68):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, 0x9}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4040004}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)

12m21.378523046s ago: executing program 7 (id=547):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00'/13])
lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x7857}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x6, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)

12m18.662641867s ago: executing program 7 (id=554):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2000000}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x83}, {0x85, 0x0, 0x0, 0x1e}}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
fsetxattr$security_evm(r0, &(0x7f0000000200), &(0x7f0000000240)=@md5={0x1, "703596489885e0121dbc8fe650fcbd15"}, 0x11, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000140), 0x404000, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x8031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x19})
bind$alg(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000040)=ANY=[], 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000010000/0x1000)=nil, 0x1000}, 0x5})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prctl$PR_SET_KEEPCAPS(0x59616d61, 0x1ffffffffffffff)
syz_clone(0x500, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0)
close(r1)
get_mempolicy(&(0x7f0000000000), &(0x7f0000000040), 0x800, &(0x7f00000d9000/0x11000)=nil, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x1d)

12m14.881588624s ago: executing program 7 (id=565):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x10, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x2, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0xfffffffd}}, &(0x7f0000000280)='GPL\x00', 0x7}, 0x94)

12m14.597075029s ago: executing program 7 (id=569):
syz_emit_ethernet(0x56, &(0x7f0000000000)={@broadcast, @random="1704b45adbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x23, 0x48, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0xff, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0xb, 0x4, 0x0, 0x0, 0x0, 0x65, 0x0, 0x0, 0x6, 0x1, @broadcast, @rand_addr, {[@timestamp={0x44, 0x18, 0x9d, 0x0, 0xd, [0x800, 0x1000, 0x8000, 0x3, 0xb]}]}}}}}}}, 0x0)

12m14.401707201s ago: executing program 7 (id=573):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
write$dsp(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='ext4_ext_convert_to_initialized_enter\x00'}, 0x18)
r1 = openat$udambuf(0xffffff9c, &(0x7f0000000380), 0x2)
ioctl$UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f00000003c0)={0x1})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x8]}, 0x8, 0x80800)
io_setup(0x2, &(0x7f0000000b80)=<r4=>0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, &(0x7f0000006340))
io_submit(r4, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
signalfd4(r3, &(0x7f0000000140)={[0x72]}, 0x8, 0x0)
connect$pppl2tp(r2, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}, 0x2}}, 0x26)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
pidfd_send_signal(0xffffffffffffffff, 0x21, 0x0, 0x4)
openat$random(0xffffff9c, &(0x7f00000001c0), 0x311140, 0x0)

12m14.023349642s ago: executing program 7 (id=578):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)

11m58.84197026s ago: executing program 36 (id=578):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)

1m4.889036231s ago: executing program 6 (id=2876):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r1, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
setsockopt(0xffffffffffffffff, 0x84, 0x7d, &(0x7f0000000280)="1a00000002000000", 0x8)

1m4.807953997s ago: executing program 6 (id=2877):
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r0 = dup(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r0, 0x62a10000)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x13, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
setgroups(0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04040a"], 0xd)
shmget(0x0, 0x3000, 0x200, &(0x7f0000ffd000/0x3000)=nil)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4008840)

1m3.413287031s ago: executing program 6 (id=2880):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c000000090605000000000000000000060000000900020073797a300000000014000780060004403621000006000540362100000500010007"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x804)

1m3.177081083s ago: executing program 6 (id=2883):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c018}, 0x4000000)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000240)={[0x6, 0x480000000005, 0x9, 0x3fffffffff, 0x400000000000006, 0x2, 0x1041, 0x807, 0x0, 0x32a, 0xfffffffffffffffd, 0x8000000fffffffa, 0x1, 0x10000, 0x4000000000800005, 0x6a], 0x6000, 0x1000d6})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

1m1.693513866s ago: executing program 6 (id=2891):
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
openat$tun(0xffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getpgid(0x0)
r4 = socket$kcm(0x25, 0x1, 0x0)
recvmsg(r4, 0x0, 0x10160)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x18}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0xffff}, 0x38)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r5, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={<r6=>0x0, 0x20, &(0x7f0000000040)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e21, @broadcast}]}, &(0x7f0000000080)=0xc)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f0000000200)={r6, 0x6, 0x8000, 0x0, 0x6f, 0xc}, &(0x7f00000004c0)=0x14)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
r7 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r7, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
syz_extract_tcp_res(&(0x7f0000000140), 0x4e6, 0x6)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000140)={0x14, 0x25, 0x1, 0x70bd2f, 0x25dfdbfb, {0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x81}, 0x10)

59.401306651s ago: executing program 6 (id=2895):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x38, 0x1403, 0x1, 0x70bd2b, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
sendmsg$sock(r0, &(0x7f00000001c0)={&(0x7f0000000000)=@llc={0x1a, 0x30d, 0x9, 0x4, 0xb, 0x9, @broadcast}, 0x80, 0x0}, 0x24000000)

53.048932264s ago: executing program 5 (id=2935):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000240)={0x1, @raw_data="a425e2f1a54d24f15955564160608d70566e425a6c36af37b33fac9d31c8a9c7044410d324b03e044e454d2092a62fea8f13441431ce248bfc73a6726ee61ba491d15d8f392ff66fe0b17f0e11f5d2367d5593205ab1efa97d40619a553e7da2518125b850a186ef691daa55c9e50ffaf6ddc25220ded32aeba4524cec1afbd17abba1d15ea05e97ed3dcad452db6e08a991e2c78b057f55de7fdeba7411ce65700c0a1ad7946ff7c355db87566e3e5abb7a37a06731ed19ddfa970bb58a27fd9fa194c092730319"})
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0)
r4 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r4, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000cc0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x50)

48.335412857s ago: executing program 5 (id=2938):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002400010325bd7000fcffffff05"], 0x1c}, 0x1, 0x0, 0x0, 0x448d3}, 0x0)
recvmsg(r1, &(0x7f00000008c0)={0x0, 0x0, 0x0}, 0x40000040)

48.093388724s ago: executing program 5 (id=2940):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x34, r1, 0x431, 0x70bd28, 0xfffffffd, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_PAUSE_RX={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x40)

47.804792404s ago: executing program 5 (id=2943):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000001c0)={0x1ff, 0x1, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000100)={0x1, 0x0, [{0x4b564d03, 0x0, 0x1}]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

46.27460522s ago: executing program 5 (id=2948):
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(0xffffffffffffffff, 0xc01064c7, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a400020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r4}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000008c0)=@newtaction={0x6c, 0x30, 0x1, 0x1, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x0, 0x0, 0x2d3e}}}, @TCA_MPLS_BOS={0x5}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
openat$sw_sync(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, 0x0)
ioctl$SYNC_IOC_FILE_INFO(0xffffffffffffffff, 0x40103e05, 0x0)
r5 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r5, &(0x7f0000000840), 0x0)

44.904028771s ago: executing program 5 (id=2952):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
fsync(r0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)={0x4c, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.time_recursive\x00', 0x7a44, 0x1700)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x84}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

43.228866447s ago: executing program 37 (id=2895):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x38, 0x1403, 0x1, 0x70bd2b, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
sendmsg$sock(r0, &(0x7f00000001c0)={&(0x7f0000000000)=@llc={0x1a, 0x30d, 0x9, 0x4, 0xb, 0x9, @broadcast}, 0x80, 0x0}, 0x24000000)

29.378114122s ago: executing program 38 (id=2952):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
fsync(r0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)={0x4c, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.time_recursive\x00', 0x7a44, 0x1700)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x84}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

13.380441248s ago: executing program 8 (id=2998):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_buf(r0, 0x0, 0x4, &(0x7f0000000200)="440910bc996c301c8183070400", 0xd)
sendmsg$inet(r0, &(0x7f0000000180)={&(0x7f0000000280)={0x2, 0x4e24, @empty}, 0x10, 0x0}, 0x0)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
listen(r1, 0x1ff)

11.156253214s ago: executing program 8 (id=3003):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x2)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f0000000380)=0x20000, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

10.820592552s ago: executing program 8 (id=3004):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmsg(r1, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$tipc(r2, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0x6e9c84f3}], 0x1}, 0x0)

10.180792532s ago: executing program 9 (id=3005):
r0 = syz_io_uring_setup(0x1458, &(0x7f00000003c0)={0x0, 0x4, 0x10180, 0x2000, 0x3ae}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xfff3}}}, 0x24}}, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x6a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2040, 0x1})
io_uring_enter(r0, 0x2d3e, 0xfffffffd, 0x0, 0x0, 0x0)

9.624265556s ago: executing program 9 (id=3007):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f00000005c0)="120000001200e7ef007b00000000", 0xe, 0x20000090, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000680)=[{{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000000500)=""/138, 0x8a}, {&(0x7f0000002c00)=""/4107, 0x100b}, {&(0x7f00000006c0)=""/234, 0xea}, {&(0x7f0000000100)=""/77, 0x4d}, {&(0x7f0000000a40)=""/231, 0xe7}, {&(0x7f00000003c0)=""/122, 0x7a}, {&(0x7f0000000280)=""/168, 0xa8}, {&(0x7f0000000b40)=""/150, 0x96}], 0x8}, 0x10001}], 0x102, 0x10120, 0x0)

9.515593734s ago: executing program 8 (id=3008):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x1, 0x0, &(0x7f0000000000))

9.440782995s ago: executing program 9 (id=3009):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000300)={0x44, r1, 0x607, 0x0, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x2000000}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x5}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x15}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}]}, 0x44}}, 0x40000)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x3c, r2, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x18}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4014}, 0x40008810)

9.329290575s ago: executing program 8 (id=3010):
syz_open_dev$usbmon(0x0, 0x9000000000000000, 0x1199c3)
socket$nl_xfrm(0x10, 0x3, 0x6)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
syz_io_uring_setup(0x50cf, &(0x7f0000000000)={0x0, 0xfffffffd, 0x2, 0x2, 0x332}, &(0x7f0000000100), &(0x7f0000ff4000))
syz_open_dev$usbmon(0x0, 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
open(0x0, 0x147840, 0x1c7)
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000040)=ANY=[])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$vicodec1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)

7.862365261s ago: executing program 9 (id=3012):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x18)
socket$packet(0x11, 0x2, 0x300)

7.814851119s ago: executing program 8 (id=3013):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x10, 0x803, 0x0)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'veth0_vlan\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={@private2, 0x0, r3})
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_mreq(r4, 0x29, 0x1b, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

7.604690644s ago: executing program 9 (id=3014):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xbd, 0x16, 0xf, 0x40, 0x8086, 0x110, 0xbfad, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xa0, 0x12, 0x24}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

6.126883452s ago: executing program 9 (id=3016):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3800000055002f03000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="20000100", @ANYRES32=0x0, @ANYBLOB="0002"], 0x38}}, 0x0)

3.330849951s ago: executing program 3 (id=3021):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000004c0)='dctcp\x00', 0x6)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f00000000c0)='?', 0x1, 0x20040845, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='veno\x00', 0x5)
shutdown(r0, 0x1)

3.249779948s ago: executing program 3 (id=3022):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x18)
socket$packet(0x11, 0x2, 0x300)

3.112233162s ago: executing program 3 (id=3023):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0xdfc, 0x101, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x80, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x4}}}}}]}}]}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x5, 0x0, 0x0, &(0x7f0000001500)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x201, 0xe, 0xd, 0xfb, 0xff, 0x5}, 0x61, 0x0, 0x3, [{0x0, 0x0}, {0x0, 0x0}, {0x32, &(0x7f00000003c0)=@string={0x32, 0x3, "160d5093c7b6a6c05251472daf51ce0756fa343e8caa0150aed5b4a855bea9398f4bc353f3184a57b4bfb6440161c57c"}}]})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

1.375837218s ago: executing program 3 (id=3024):
openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xd}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x3, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010300, @local}, @info_reply={0xd, 0x0, 0x0, 0xfffe, 0x9}}}}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
socket$inet6(0xa, 0x1, 0x84)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet(0x2, 0x801, 0x0)
pipe2(&(0x7f0000000100), 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x3, 0x3d8})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/11, @ANYRES32=0x0], 0x50)
pipe(&(0x7f0000000000))
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1.228234096s ago: executing program 3 (id=3025):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, 0x0, &(0x7f0000000300))
sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="400300001a000100000000000000000020010000000000000000000000000001ac1e00010000000000000000000000000000e6ff00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x340}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
listen(0xffffffffffffffff, 0x0)
socket(0x1d, 0x2, 0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r2, 0x3ba0, &(0x7f0000000440)={0x48, 0x2, r3})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000100)={0x28, 0x6, r3, 0x0, &(0x7f0000c00000/0x400000)=nil, 0x400000, 0x51e})

0s ago: executing program 3 (id=3026):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r1)
getsockname$packet(r1, 0x0, &(0x7f00000000c0))
socket$inet_udp(0x2, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
futex(0x0, 0xc, 0x1, 0x0, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x8000000000000001}, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000001c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840), 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
r7 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000800)={r7, r7, r7}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha384\x00'}})
write(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f00000018c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880)

kernel console output (not intermixed with test programs):

vkms_vblank_simulate: vblank timer overrun
[  797.330639][ T5995] usblp0: Disabling reads from problematic bidirectional printer
[  797.377327][ T5995] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 16 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[  797.399236][ T5995] usb 4-1: USB disconnect, device number 16
[  798.492366][    C0] vkms_vblank_simulate: vblank timer overrun
[  799.368653][ T5995] usblp0: removed
[  807.256965][T11268] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  807.369056][ T5955] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  807.529152][ T5955] usb 10-1: Using ep0 maxpacket: 8
[  807.533926][ T5955] usb 10-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  807.533945][ T5955] usb 10-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  807.533958][ T5955] usb 10-1: config 1 interface 0 has no altsetting 0
[  807.573943][ T5955] usb 10-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  807.573973][ T5955] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  807.573994][ T5955] usb 10-1: Product: syz
[  807.574009][ T5955] usb 10-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[  807.574040][ T5955] usb 10-1: SerialNumber: syz
[  807.686723][T11276] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  807.686863][T11276] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  808.260655][ T5955] usblp0: Disabling reads from problematic bidirectional printer
[  808.314871][ T5955] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[  808.406500][ T5955] usb 10-1: USB disconnect, device number 2
[  808.499971][ T5955] usblp0: removed
[  808.825635][    C1] vkms_vblank_simulate: vblank timer overrun
[  808.966058][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  808.966107][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  809.054849][T11291] 9pnet_fd: Insufficient options for proto=fd
[  809.339357][ T5850] Bluetooth: hci5: command 0x0405 tx timeout
[  809.722420][    C1] vkms_vblank_simulate: vblank timer overrun
[  809.800298][T11300] fuse: Bad value for 'fd'
[  809.980588][    C1] vkms_vblank_simulate: vblank timer overrun
[  810.018162][    C1] vkms_vblank_simulate: vblank timer overrun
[  810.992678][    C1] vkms_vblank_simulate: vblank timer overrun
[  811.193976][ T5955] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  811.200053][    C1] vkms_vblank_simulate: vblank timer overrun
[  811.362862][    C1] vkms_vblank_simulate: vblank timer overrun
[  811.539579][ T5955] usb 6-1: device descriptor read/64, error -71
[  811.677384][    C1] vkms_vblank_simulate: vblank timer overrun
[  812.000135][    C1] vkms_vblank_simulate: vblank timer overrun
[  812.229168][ T5955] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  812.359057][ T5955] usb 6-1: device descriptor read/64, error -71
[  812.469663][ T5955] usb usb6-port1: attempt power cycle
[  812.489280][    C1] vkms_vblank_simulate: vblank timer overrun
[  812.551690][T11326] 9pnet_fd: Insufficient options for proto=fd
[  812.579109][T10428] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  812.626543][    C1] vkms_vblank_simulate: vblank timer overrun
[  812.741389][    C1] vkms_vblank_simulate: vblank timer overrun
[  813.066420][    C1] vkms_vblank_simulate: vblank timer overrun
[  813.291504][    C1] vkms_vblank_simulate: vblank timer overrun
[  813.788998][T10428] usb 4-1: Using ep0 maxpacket: 8
[  813.793160][T10428] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  813.793194][T10428] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  813.793219][T10428] usb 4-1: config 1 interface 0 has no altsetting 0
[  813.797665][T10428] usb 4-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  813.797692][T10428] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  813.797712][T10428] usb 4-1: Product: syz
[  813.797727][T10428] usb 4-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[  813.797757][T10428] usb 4-1: SerialNumber: syz
[  813.914525][T11322] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  813.914653][T11322] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  814.326485][    C1] vkms_vblank_simulate: vblank timer overrun
[  815.072409][T10428] usblp0: Disabling reads from problematic bidirectional printer
[  815.094406][T10428] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 17 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[  815.130269][T10428] usb 4-1: USB disconnect, device number 17
[  815.137149][T10428] usblp0: removed
[  815.270420][T11360] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1210'.
[  815.420907][T11366] 9pnet_fd: Insufficient options for proto=fd
[  815.534111][   T37] audit: type=1326 audit(1757471104.266:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11361 comm="syz.6.1211" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f164196eba9 code=0x0
[  815.705999][    C1] vkms_vblank_simulate: vblank timer overrun
[  815.857061][    C1] vkms_vblank_simulate: vblank timer overrun
[  816.421189][    C1] vkms_vblank_simulate: vblank timer overrun
[  816.712521][T11373] block nbd6: shutting down sockets
[  817.056249][T11387] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1219'.
[  817.967408][T11406] 9pnet_fd: Insufficient options for proto=fd
[  818.275234][T11403] Falling back ldisc for ttyS3.
[  818.724691][    C1] vkms_vblank_simulate: vblank timer overrun
[  818.779081][ T8670] usb 9-1: new high-speed USB device number 20 using dummy_hcd
[  818.881958][    C1] vkms_vblank_simulate: vblank timer overrun
[  819.076449][ T8670] usb 9-1: Using ep0 maxpacket: 8
[  819.407467][    C1] vkms_vblank_simulate: vblank timer overrun
[  819.437319][ T8670] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  819.437354][ T8670] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  819.437379][ T8670] usb 9-1: config 1 interface 0 has no altsetting 0
[  819.483694][ T8670] usb 9-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  819.483726][ T8670] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  819.483748][ T8670] usb 9-1: Product: syz
[  819.483763][ T8670] usb 9-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[  819.483796][ T8670] usb 9-1: SerialNumber: syz
[  819.602671][T11409] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  819.602868][T11409] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  819.880891][T11427] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1232'.
[  820.224910][T11436] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1236'.
[  820.273688][ T8670] usblp0: Disabling reads from problematic bidirectional printer
[  820.276716][ T8670] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 20 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[  820.309468][ T8670] usb 9-1: USB disconnect, device number 20
[  820.393826][ T8670] usblp0: removed
[  821.825991][T11448] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8)
[  821.826019][T11448] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  821.826117][T11448] vhci_hcd vhci_hcd.0: Device attached
[  821.851820][T11452] vhci_hcd: connection closed
[  822.203517][    C1] vkms_vblank_simulate: vblank timer overrun
[  822.241531][   T57] vhci_hcd: stop threads
[  822.241551][   T57] vhci_hcd: release socket
[  822.241625][   T57] vhci_hcd: disconnect device
[  822.297057][   T31] vhci_hcd: vhci_device speed not set
[  822.361346][    C1] vkms_vblank_simulate: vblank timer overrun
[  822.859865][    C1] vkms_vblank_simulate: vblank timer overrun
[  823.093447][    C1] vkms_vblank_simulate: vblank timer overrun
[  823.424296][T11469] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1246'.
[  823.456332][T11471] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1249'.
[  823.626630][T11477] 9pnet_fd: Insufficient options for proto=fd
[  823.833987][T11479] input: syz1 as /devices/virtual/input/input25
[  824.944778][    C1] vkms_vblank_simulate: vblank timer overrun
[  824.986012][T11509] netlink: 'syz.8.1263': attribute type 4 has an invalid length.
[  825.305885][T11514] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1265'.
[  829.757145][T11532] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  829.757167][T11532] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  829.757222][T11532] vhci_hcd vhci_hcd.0: Device attached
[  829.809089][T11535] vhci_hcd: connection closed
[  829.833811][ T1177] vhci_hcd: stop threads
[  829.833833][ T1177] vhci_hcd: release socket
[  829.833866][ T1177] vhci_hcd: disconnect device
[  829.834980][T11537] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1271'.
[  830.167020][T11548] netlink: 36 bytes leftover after parsing attributes in process `syz.9.1276'.
[  830.966002][T11576] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1288'.
[  831.408280][T11585] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  831.408304][T11585] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  831.408391][T11585] vhci_hcd vhci_hcd.0: Device attached
[  831.434068][T11588] vhci_hcd: connection closed
[  831.435012][ T3641] vhci_hcd: stop threads
[  831.435030][ T3641] vhci_hcd: release socket
[  831.435060][ T3641] vhci_hcd: disconnect device
[  831.446800][T11587] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1293'.
[  832.087920][T11604] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1301'.
[  832.249569][T11609] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1300'.
[  832.257762][T11611] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1302'.
[  833.030278][T11618] nbd: must specify an index to disconnect
[  833.319242][T11622] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1306'.
[  833.685306][T11627] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  833.685331][T11627] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  833.685429][T11627] vhci_hcd vhci_hcd.0: Device attached
[  833.712614][T11631] vhci_hcd: connection closed
[  833.718328][   T57] vhci_hcd: stop threads
[  833.718348][   T57] vhci_hcd: release socket
[  833.757462][   T57] vhci_hcd: disconnect device
[  834.013073][T11641] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1313'.
[  834.179575][T11644] nbd: must specify an index to disconnect
[  834.267780][T11648] batadv_slave_1: entered promiscuous mode
[  834.268725][T11648] lo: entered promiscuous mode
[  834.269089][  T988] usb 9-1: new high-speed USB device number 21 using dummy_hcd
[  834.373034][T11651] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1319'.
[  834.447184][  T988] usb 9-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  834.447245][  T988] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  834.447270][  T988] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  834.447283][  T988] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  834.459779][  T988] usb 9-1: config 0 descriptor??
[  834.494108][  T988] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  834.625665][T11646] lo: left promiscuous mode
[  834.626153][T11646] batadv_slave_1: left promiscuous mode
[  836.486067][T11680] __nla_validate_parse: 2 callbacks suppressed
[  836.486089][T11680] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1326'.
[  836.836192][T11685] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  836.836217][T11685] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  836.836302][T11685] vhci_hcd vhci_hcd.0: Device attached
[  836.865722][T11691] netlink: 36 bytes leftover after parsing attributes in process `syz.9.1330'.
[  836.866665][T11689] vhci_hcd: connection closed
[  836.867067][   T13] vhci_hcd: stop threads
[  836.867084][   T13] vhci_hcd: release socket
[  836.867127][   T13] vhci_hcd: disconnect device
[  836.867209][T11688] nbd: must specify an index to disconnect
[  837.073534][T11695] netlink: 'syz.9.1332': attribute type 1 has an invalid length.
[  837.228066][T11695] macvlan2: entered promiscuous mode
[  837.228102][T11695] macvlan2: entered allmulticast mode
[  837.242002][T11695] bond1: entered promiscuous mode
[  837.243247][T11695] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  837.362189][T11695] bond1: left promiscuous mode
[  837.546381][   T46] usb 9-1: USB disconnect, device number 21
[  837.620579][T11710] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1337'.
[  837.846726][T11716] fuse: Unknown parameter 'group_i00000000000000000000'
[  838.712893][   T37] audit: type=1326 audit(1757471127.466:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11728 comm="syz.9.1347" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5b3fdeeba9 code=0x0
[  838.999445][T11731] block nbd9: shutting down sockets
[  839.127131][T11736] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  839.127149][T11736] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  839.127209][T11736] vhci_hcd vhci_hcd.0: Device attached
[  839.152299][T11743] vhci_hcd: connection closed
[  839.162495][ T1177] vhci_hcd: stop threads
[  839.162508][ T1177] vhci_hcd: release socket
[  839.162538][ T1177] vhci_hcd: disconnect device
[  839.219175][ T1231] usb 9-1: new high-speed USB device number 22 using dummy_hcd
[  839.437648][    C0] vkms_vblank_simulate: vblank timer overrun
[  839.448061][ T1231] usb 9-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  839.448123][ T1231] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  839.448167][ T1231] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  839.448190][ T1231] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  839.550170][ T1231] usb 9-1: config 0 descriptor??
[  839.556365][ T1231] usbhid 9-1:0.0: couldn't find an input interrupt endpoint
[  840.216434][    C0] vkms_vblank_simulate: vblank timer overrun
[  840.474465][T11773] fuse: Unknown parameter 'group_i00000000000000000000'
[  841.665206][    C0] vkms_vblank_simulate: vblank timer overrun
[  841.800037][    C0] vkms_vblank_simulate: vblank timer overrun
[  841.872056][T11795] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(7)
[  841.872080][T11795] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  841.872166][T11795] vhci_hcd vhci_hcd.0: Device attached
[  841.929835][T11798] vhci_hcd: connection closed
[  841.949010][ T1177] vhci_hcd: stop threads
[  841.949029][ T1177] vhci_hcd: release socket
[  841.949062][ T1177] vhci_hcd: disconnect device
[  842.001666][ T1231] usb 9-1: USB disconnect, device number 22
[  842.317964][    C0] vkms_vblank_simulate: vblank timer overrun
[  842.835746][T11821] fuse: Unknown parameter 'group_id00000000000000000000'
[  843.074742][    C0] vkms_vblank_simulate: vblank timer overrun
[  843.529054][   T31] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  843.706045][   T31] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  843.706119][   T31] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  843.706163][   T31] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  843.706188][   T31] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  843.852094][   T31] usb 7-1: config 0 descriptor??
[  843.936852][   T31] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  844.044674][   T37] audit: type=1326 audit(1757471132.806:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.044721][   T37] audit: type=1326 audit(1757471132.806:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.066017][    C0] vkms_vblank_simulate: vblank timer overrun
[  844.067906][   T37] audit: type=1326 audit(1757471132.836:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.067953][   T37] audit: type=1326 audit(1757471132.836:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.104970][   T37] audit: type=1326 audit(1757471132.876:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.106096][   T37] audit: type=1326 audit(1757471132.876:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.106142][   T37] audit: type=1326 audit(1757471132.876:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.106183][   T37] audit: type=1326 audit(1757471132.876:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.131782][   T37] audit: type=1326 audit(1757471132.906:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.131833][   T37] audit: type=1326 audit(1757471132.906:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11841 comm="syz.5.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[  844.253496][    C0] vkms_vblank_simulate: vblank timer overrun
[  844.348572][    C0] vkms_vblank_simulate: vblank timer overrun
[  844.715670][T11845] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  844.715698][T11845] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  844.732900][T11845] vhci_hcd vhci_hcd.0: Device attached
[  844.805748][T11854] vhci_hcd: connection closed
[  844.819898][ T5988] vhci_hcd: stop threads
[  844.819917][ T5988] vhci_hcd: release socket
[  844.819952][ T5988] vhci_hcd: disconnect device
[  845.338323][    C0] vkms_vblank_simulate: vblank timer overrun
[  846.160781][    C0] vkms_vblank_simulate: vblank timer overrun
[  846.286604][  T988] usb 7-1: USB disconnect, device number 12
[  847.626274][T11906] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  847.626301][T11906] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  847.652279][T11906] vhci_hcd vhci_hcd.0: Device attached
[  847.665364][T11910] vhci_hcd: connection closed
[  847.683838][ T1177] vhci_hcd: stop threads
[  847.683856][ T1177] vhci_hcd: release socket
[  847.683891][ T1177] vhci_hcd: disconnect device
[  851.695568][T11951] fuse: Bad value for 'fd'
[  852.326843][T11950] Process accounting resumed
[  852.411022][   T37] kauditd_printk_skb: 6 callbacks suppressed
[  852.411040][   T37] audit: type=1326 audit(1757471141.186:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11949 comm="syz.6.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f164196eba9 code=0x7ffc0000
[  852.411086][   T37] audit: type=1326 audit(1757471141.186:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11949 comm="syz.6.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f164196eba9 code=0x7ffc0000
[  852.493547][   T37] audit: type=1326 audit(1757471141.266:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11949 comm="syz.6.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7f164196eba9 code=0x7ffc0000
[  852.493608][   T37] audit: type=1326 audit(1757471141.266:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11949 comm="syz.6.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f164196eba9 code=0x7ffc0000
[  852.493650][   T37] audit: type=1326 audit(1757471141.266:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11949 comm="syz.6.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f164196eba9 code=0x7ffc0000
[  853.880800][T11984] fuse: Bad value for 'user_id'
[  853.880820][T11984] fuse: Bad value for 'user_id'
[  854.284792][T11988] fuse: Bad value for 'fd'
[  854.954890][T11988] Process accounting resumed
[  855.167579][T11980] input: syz1 as /devices/virtual/input/input26
[  857.007218][    C1] vkms_vblank_simulate: vblank timer overrun
[  857.168438][    C1] vkms_vblank_simulate: vblank timer overrun
[  857.361475][    C1] vkms_vblank_simulate: vblank timer overrun
[  857.523444][T12025] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1435'.
[  857.539519][    C1] vkms_vblank_simulate: vblank timer overrun
[  857.832015][    C1] vkms_vblank_simulate: vblank timer overrun
[  858.427961][T11993] team0 (unregistering): Port device team_slave_0 removed
[  858.476223][T11993] team0 (unregistering): Port device team_slave_1 removed
[  858.552945][    C1] vkms_vblank_simulate: vblank timer overrun
[  858.601142][    C1] vkms_vblank_simulate: vblank timer overrun
[  858.721220][    C1] vkms_vblank_simulate: vblank timer overrun
[  858.769692][    C1] vkms_vblank_simulate: vblank timer overrun
[  858.820315][    C1] vkms_vblank_simulate: vblank timer overrun
[  858.921930][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.000601][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.053130][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.103067][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.251364][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.301708][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.374296][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.507093][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.847972][    C1] vkms_vblank_simulate: vblank timer overrun
[  859.870281][T12029] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  860.035995][T12041] fuse: Bad value for 'fd'
[  860.048590][    C1] vkms_vblank_simulate: vblank timer overrun
[  860.658814][T12040] Process accounting resumed
[  860.871979][T12045] fuse: Bad value for 'user_id'
[  860.871999][T12045] fuse: Bad value for 'user_id'
[  861.203094][T12052] =======================================================
[  861.203094][T12052] WARNING: The mand mount option has been deprecated and
[  861.203094][T12052]          and is ignored by this kernel. Remove the mand
[  861.203094][T12052]          option from the mount to silence this warning.
[  861.203094][T12052] =======================================================
[  861.930150][ T5850] Bluetooth: hci5: command 0x0405 tx timeout
[  862.106409][T12066] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1449'.
[  862.543680][    C0] vkms_vblank_simulate: vblank timer overrun
[  862.834769][    C0] vkms_vblank_simulate: vblank timer overrun
[  863.134775][T12077] fuse: Bad value for 'fd'
[  863.713973][    C0] vkms_vblank_simulate: vblank timer overrun
[  863.765184][T12077] Process accounting resumed
[  864.538499][    C0] vkms_vblank_simulate: vblank timer overrun
[  864.884067][    C0] vkms_vblank_simulate: vblank timer overrun
[  865.149171][T12090] netlink: 52 bytes leftover after parsing attributes in process `syz.5.1459'.
[  865.297638][    C0] vkms_vblank_simulate: vblank timer overrun
[  865.388284][   T37] audit: type=1326 audit(1757471154.156:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12091 comm="syz.9.1458" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x0
[  866.144013][T12109] fuse: Bad value for 'user_id'
[  866.144028][T12109] fuse: Bad value for 'user_id'
[  867.567480][    C1] vkms_vblank_simulate: vblank timer overrun
[  867.657625][    C1] vkms_vblank_simulate: vblank timer overrun
[  867.869656][T12124] fuse: Invalid rootmode
[  867.879876][    C1] vkms_vblank_simulate: vblank timer overrun
[  868.299351][    C1] vkms_vblank_simulate: vblank timer overrun
[  868.450622][T12124] Process accounting resumed
[  868.501399][    C1] vkms_vblank_simulate: vblank timer overrun
[  868.636527][    C1] vkms_vblank_simulate: vblank timer overrun
[  868.956158][    C1] vkms_vblank_simulate: vblank timer overrun
[  869.111804][    C1] vkms_vblank_simulate: vblank timer overrun
[  869.760929][    C1] vkms_vblank_simulate: vblank timer overrun
[  869.780366][T12140] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1474'.
[  869.878473][    C0] vcan0: j1939_tp_rxtimer: 0xffff888036a8ec00: rx timeout, send abort
[  869.878709][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888036a8ec00: 0x2f000: (3) A timeout occurred and this is the connection abort to close the session.
[  869.981034][    C1] vkms_vblank_simulate: vblank timer overrun
[  870.145576][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  870.145651][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  871.362364][T12180] netlink: 52 bytes leftover after parsing attributes in process `syz.9.1489'.
[  871.694110][    C1] vkms_vblank_simulate: vblank timer overrun
[  873.280756][T12216] input: syz1 as /devices/virtual/input/input27
[  874.672884][T12244] netlink: 32 bytes leftover after parsing attributes in process `syz.8.1514'.
[  875.062218][T12247] cgroup: fork rejected by pids controller in /syz9
[  875.442821][ T5850] Bluetooth: hci5: unexpected event for opcode 0x0c23
[  875.641439][    C0] vkms_vblank_simulate: vblank timer overrun
[  875.681031][T12283] input: syz1 as /devices/virtual/input/input28
[  876.211432][    C0] vkms_vblank_simulate: vblank timer overrun
[  876.425921][    C0] vkms_vblank_simulate: vblank timer overrun
[  876.840984][    C0] vkms_vblank_simulate: vblank timer overrun
[  877.089992][    C0] vkms_vblank_simulate: vblank timer overrun
[  877.537943][    C0] vkms_vblank_simulate: vblank timer overrun
[  877.789244][    C0] vkms_vblank_simulate: vblank timer overrun
[  877.839428][    C0] vkms_vblank_simulate: vblank timer overrun
[  877.940140][    C0] vkms_vblank_simulate: vblank timer overrun
[  877.965032][    C0] vkms_vblank_simulate: vblank timer overrun
[  878.001942][T12313] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1526'.
[  879.598833][    C0] vkms_vblank_simulate: vblank timer overrun
[  880.221034][    C0] vkms_vblank_simulate: vblank timer overrun
[  880.495953][    C0] vkms_vblank_simulate: vblank timer overrun
[  880.554196][T12331] input: syz1 as /devices/virtual/input/input29
[  883.209251][T12358] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1542'.
[  883.209422][T12358] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  884.390107][T12358] batman_adv: batadv0: Removing interface: batadv_slave_1
[  884.559837][T12368] input: syz1 as /devices/virtual/input/input30
[  885.190459][T12384] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1551'.
[  887.361252][T12400] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  887.361283][T12400] overlayfs: failed to set xattr on upper
[  887.361291][T12400] overlayfs: ...falling back to redirect_dir=nofollow.
[  887.361300][T12400] overlayfs: ...falling back to index=off.
[  887.361307][T12400] overlayfs: ...falling back to uuid=null.
[  887.695416][T12412] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  890.928148][T12444] fuse: Unknown parameter 'group_i00000000000000000000'
[  891.789461][ T1231] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  892.265008][T12462] input: syz1 as /devices/virtual/input/input32
[  892.331671][ T1231] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  892.331708][ T1231] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  892.331736][ T1231] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  892.331759][ T1231] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  892.331805][ T1231] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  892.331829][ T1231] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  892.406637][ T1231] usb 7-1: config 0 descriptor??
[  892.755060][T12470] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1580'.
[  892.853362][ T1231] usbhid 7-1:0.0: can't add hid device: -71
[  892.853491][ T1231] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  892.879817][ T1231] usb 7-1: USB disconnect, device number 13
[  893.044523][   T37] audit: type=1326 audit(1757471181.816:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12480 comm="syz.3.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  893.048172][   T37] audit: type=1326 audit(1757471181.816:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12480 comm="syz.3.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  893.048485][   T37] audit: type=1326 audit(1757471181.816:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12480 comm="syz.3.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  893.125627][   T37] audit: type=1326 audit(1757471181.896:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12480 comm="syz.3.1585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  894.199235][T12500] input: syz1 as /devices/virtual/input/input33
[  894.376732][T12508] fuse: Invalid rootmode
[  894.397396][T12506] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1595'.
[  895.929231][ T5956] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  896.081620][ T5956] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  896.081652][ T5956] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  896.081677][ T5956] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  896.081698][ T5956] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  896.081739][ T5956] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  896.081762][ T5956] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  896.206708][ T5956] usb 4-1: config 0 descriptor??
[  897.041782][ T5956] usbhid 4-1:0.0: can't add hid device: -71
[  897.041909][ T5956] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  897.070771][T12545] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1609'.
[  897.082107][ T5956] usb 4-1: USB disconnect, device number 18
[  897.203144][T12543] input: syz1 as /devices/virtual/input/input34
[  897.537095][    C0] vkms_vblank_simulate: vblank timer overrun
[  897.551542][T12557] fuse: Invalid rootmode
[  898.060855][    C0] vkms_vblank_simulate: vblank timer overrun
[  898.142776][    C0] vkms_vblank_simulate: vblank timer overrun
[  898.336036][    C0] vkms_vblank_simulate: vblank timer overrun
[  899.010017][T12566] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1615'.
[  899.029098][T12566] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1615'.
[  899.304250][T12568] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  899.792439][    C0] vkms_vblank_simulate: vblank timer overrun
[  899.983346][    C0] vkms_vblank_simulate: vblank timer overrun
[  900.027699][    C0] vkms_vblank_simulate: vblank timer overrun
[  900.164530][    C0] vkms_vblank_simulate: vblank timer overrun
[  900.536892][    C0] vkms_vblank_simulate: vblank timer overrun
[  900.766329][    C0] vkms_vblank_simulate: vblank timer overrun
[  900.803514][    C0] vkms_vblank_simulate: vblank timer overrun
[  900.899871][ T5996] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  901.286771][    C0] vkms_vblank_simulate: vblank timer overrun
[  901.298207][ T5996] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  901.298241][ T5996] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  901.298269][ T5996] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  901.298293][ T5996] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  901.298338][ T5996] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  901.298362][ T5996] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  901.371603][ T5996] usb 4-1: config 0 descriptor??
[  901.548081][ T5850] Bluetooth: hci5: command 0x0405 tx timeout
[  901.801501][T12602] fuse: Bad value for 'rootmode'
[  901.830324][T12606] netlink: 'syz.6.1630': attribute type 1 has an invalid length.
[  901.857635][ T5996] usbhid 4-1:0.0: can't add hid device: -71
[  901.857766][ T5996] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  901.994604][ T5996] usb 4-1: USB disconnect, device number 19
[  903.115244][T12606] 8021q: adding VLAN 0 to HW filter on device bond1
[  903.680229][T12626] input: syz1 as /devices/virtual/input/input35
[  903.703776][T12625] 9pnet_fd: Insufficient options for proto=fd
[  903.825054][T12623] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  904.172924][    C0] vkms_vblank_simulate: vblank timer overrun
[  904.811181][    C0] vkms_vblank_simulate: vblank timer overrun
[  905.292325][T12648] netlink: 'syz.5.1643': attribute type 1 has an invalid length.
[  905.369016][ T8670] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  905.370830][T12652] fuse: Bad value for 'rootmode'
[  905.485150][T12648] 8021q: adding VLAN 0 to HW filter on device bond1
[  905.521963][ T8670] usb 10-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  905.521997][ T8670] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  905.522024][ T8670] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  905.522047][ T8670] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  905.522092][ T8670] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  905.522116][ T8670] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  905.804277][ T8670] usb 10-1: config 0 descriptor??
[  905.819080][ T5850] Bluetooth: hci5: command 0x0405 tx timeout
[  906.494204][ T8670] usbhid 10-1:0.0: can't add hid device: -71
[  906.494625][ T8670] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[  906.741959][ T8670] usb 10-1: USB disconnect, device number 3
[  907.339306][    C0] vkms_vblank_simulate: vblank timer overrun
[  907.590076][    C0] vkms_vblank_simulate: vblank timer overrun
[  907.730034][T12677] fuse: Bad value for 'fd'
[  907.863510][    C0] vkms_vblank_simulate: vblank timer overrun
[  908.590387][    C0] vkms_vblank_simulate: vblank timer overrun
[  909.016381][    C0] vkms_vblank_simulate: vblank timer overrun
[  909.117697][T12696] netlink: 'syz.8.1658': attribute type 1 has an invalid length.
[  909.724656][T12696] 8021q: adding VLAN 0 to HW filter on device bond1
[  909.853826][T12703] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1660'.
[  910.128261][    C0] vkms_vblank_simulate: vblank timer overrun
[  910.406601][T12707] fuse: Bad value for 'rootmode'
[  910.770234][ T8670] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  910.938112][ T8670] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  910.938147][ T8670] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  910.938174][ T8670] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  910.938197][ T8670] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  910.938247][ T8670] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  910.938271][ T8670] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  911.162079][ T8670] usb 7-1: config 0 descriptor??
[  911.590935][ T8670] usbhid 7-1:0.0: can't add hid device: -71
[  911.591050][ T8670] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  911.607246][ T8670] usb 7-1: USB disconnect, device number 14
[  911.938517][    C0] vkms_vblank_simulate: vblank timer overrun
[  912.761711][    C0] vkms_vblank_simulate: vblank timer overrun
[  913.029720][T12742] netlink: 'syz.6.1674': attribute type 1 has an invalid length.
[  913.114189][T12742] 8021q: adding VLAN 0 to HW filter on device bond2
[  913.508453][T12753] fuse: Unknown parameter 'use00000000000000000000'
[  913.885617][   T37] audit: type=1326 audit(1757471202.656:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12756 comm="syz.6.1680" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f164196eba9 code=0x0
[  914.302271][T12762] block nbd6: shutting down sockets
[  914.677269][    C0] vkms_vblank_simulate: vblank timer overrun
[  914.815793][    C0] vkms_vblank_simulate: vblank timer overrun
[  915.287481][    C0] vkms_vblank_simulate: vblank timer overrun
[  915.535972][    C0] vkms_vblank_simulate: vblank timer overrun
[  916.314024][T12796] fuse: Unknown parameter 'use00000000000000000000'
[  919.030763][T12847] fuse: Unknown parameter 'use00000000000000000000'
[  921.061339][    C0] vkms_vblank_simulate: vblank timer overrun
[  921.162996][    C0] vkms_vblank_simulate: vblank timer overrun
[  921.656677][T12873] 9pnet_virtio: no channels available for device syz
[  923.107790][    C0] vkms_vblank_simulate: vblank timer overrun
[  923.190983][    C0] vkms_vblank_simulate: vblank timer overrun
[  923.369092][T12887] input: syz1 as /devices/virtual/input/input36
[  924.029295][    C0] vkms_vblank_simulate: vblank timer overrun
[  924.074902][    C0] vkms_vblank_simulate: vblank timer overrun
[  924.139170][    C0] vkms_vblank_simulate: vblank timer overrun
[  924.259253][    C0] vkms_vblank_simulate: vblank timer overrun
[  924.316877][    C0] vkms_vblank_simulate: vblank timer overrun
[  924.361990][    C0] vkms_vblank_simulate: vblank timer overrun
[  924.459483][T12898] fuse: Unknown parameter 'user_i00000000000000000000'
[  924.690140][T12899] netlink: 'syz.6.1732': attribute type 1 has an invalid length.
[  925.002615][T12899] 8021q: adding VLAN 0 to HW filter on device bond3
[  926.091659][    C0] vkms_vblank_simulate: vblank timer overrun
[  926.166038][    C0] vkms_vblank_simulate: vblank timer overrun
[  926.304747][    C0] vkms_vblank_simulate: vblank timer overrun
[  927.535155][    C0] vkms_vblank_simulate: vblank timer overrun
[  927.596924][    C0] vkms_vblank_simulate: vblank timer overrun
[  927.655835][    C0] vkms_vblank_simulate: vblank timer overrun
[  927.916822][    C0] vkms_vblank_simulate: vblank timer overrun
[  928.378143][    C0] vkms_vblank_simulate: vblank timer overrun
[  928.586576][    C0] vkms_vblank_simulate: vblank timer overrun
[  928.932046][    C0] vkms_vblank_simulate: vblank timer overrun
[  929.193607][    C0] vkms_vblank_simulate: vblank timer overrun
[  929.547686][    C0] vkms_vblank_simulate: vblank timer overrun
[  929.583109][    C0] vkms_vblank_simulate: vblank timer overrun
[  929.674059][    C0] vkms_vblank_simulate: vblank timer overrun
[  929.916631][T12942] netlink: 'syz.6.1745': attribute type 1 has an invalid length.
[  930.017244][T12942] 8021q: adding VLAN 0 to HW filter on device bond4
[  930.487607][T12955] sctp: [Deprecated]: syz.8.1749 (pid 12955) Use of int in max_burst socket option.
[  930.487607][T12955] Use struct sctp_assoc_value instead
[  931.590932][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  931.591012][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  932.993715][T12982] netlink: 'syz.6.1758': attribute type 1 has an invalid length.
[  933.240945][T12982] 8021q: adding VLAN 0 to HW filter on device bond5
[  939.811287][T13008] fuse: Unknown parameter 'user_id00000000000000000000'
[  941.250730][T13029] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1775'.
[  941.648580][T13044] fuse: Unknown parameter 'user_id00000000000000000000'
[  943.069288][    C0] vkms_vblank_simulate: vblank timer overrun
[  943.312435][    C0] vkms_vblank_simulate: vblank timer overrun
[  943.600953][    C0] vkms_vblank_simulate: vblank timer overrun
[  943.760041][  T988] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  943.891624][  T988] usb 6-1: device descriptor read/64, error -71
[  944.139057][  T988] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  944.269183][  T988] usb 6-1: device descriptor read/64, error -71
[  944.380534][  T988] usb usb6-port1: attempt power cycle
[  945.300069][    C0] vkms_vblank_simulate: vblank timer overrun
[  945.389031][  T988] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  945.420225][  T988] usb 6-1: device descriptor read/8, error -71
[  945.659144][  T988] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  945.680890][  T988] usb 6-1: device descriptor read/8, error -71
[  945.789657][  T988] usb usb6-port1: unable to enumerate USB device
[  945.945231][    C0] vkms_vblank_simulate: vblank timer overrun
[  946.042493][T13098] 9pnet_virtio: no channels available for device syz
[  946.592382][T13097] fuse: Unknown parameter 'user_id00000000000000000000'
[  946.985331][    C0] vkms_vblank_simulate: vblank timer overrun
[  947.273678][T13102] mmap: syz.9.1798 (13102) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  947.292139][T13108] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1802'.
[  949.567792][    C0] vkms_vblank_simulate: vblank timer overrun
[  949.669286][    C0] vkms_vblank_simulate: vblank timer overrun
[  949.759125][    C0] vkms_vblank_simulate: vblank timer overrun
[  949.783378][    C0] vkms_vblank_simulate: vblank timer overrun
[  949.881460][    C0] vkms_vblank_simulate: vblank timer overrun
[  949.922399][    C0] vkms_vblank_simulate: vblank timer overrun
[  950.591299][    C0] vkms_vblank_simulate: vblank timer overrun
[  950.815316][    C0] vkms_vblank_simulate: vblank timer overrun
[  951.372620][    C0] vkms_vblank_simulate: vblank timer overrun
[  951.929007][ T5996] usb 9-1: new high-speed USB device number 23 using dummy_hcd
[  952.060621][ T5996] usb 9-1: device descriptor read/64, error -71
[  952.299013][ T5996] usb 9-1: new high-speed USB device number 24 using dummy_hcd
[  952.429098][ T5996] usb 9-1: device descriptor read/64, error -71
[  952.539390][ T5996] usb usb9-port1: attempt power cycle
[  952.718633][T13163] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1815'.
[  952.899148][ T5996] usb 9-1: new high-speed USB device number 25 using dummy_hcd
[  952.921479][ T5996] usb 9-1: device descriptor read/8, error -71
[  953.160451][ T5996] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[  953.198055][ T5996] usb 9-1: device descriptor read/8, error -71
[  953.259204][   T37] audit: type=1326 audit(1757471242.026:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  953.259373][   T37] audit: type=1326 audit(1757471242.026:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  953.278072][   T37] audit: type=1326 audit(1757471242.046:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4881a0d510 code=0x7ffc0000
[  953.293554][   T37] audit: type=1326 audit(1757471242.066:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4881a0d510 code=0x7ffc0000
[  953.293731][   T37] audit: type=1326 audit(1757471242.066:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  953.293878][   T37] audit: type=1326 audit(1757471242.066:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  953.296124][   T37] audit: type=1326 audit(1757471242.066:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  953.297292][   T37] audit: type=1326 audit(1757471242.066:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  953.303253][   T37] audit: type=1326 audit(1757471242.076:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13168 comm="syz.3.1817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4881a0eba9 code=0x7ffc0000
[  953.307906][ T5996] usb usb9-port1: unable to enumerate USB device
[  953.527659][    C0] vkms_vblank_simulate: vblank timer overrun
[  954.995416][T13177] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1818'.
[  954.995591][T13177] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  955.273653][    C0] vkms_vblank_simulate: vblank timer overrun
[  955.513367][T13177] batman_adv: batadv0: Removing interface: batadv_slave_1
[  955.742344][    C0] vkms_vblank_simulate: vblank timer overrun
[  958.262784][    C0] vkms_vblank_simulate: vblank timer overrun
[  959.384570][    C0] vkms_vblank_simulate: vblank timer overrun
[  960.431464][   T37] audit: type=1326 audit(1757471249.206:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13251 comm="syz.6.1849" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f164196eba9 code=0x0
[  960.432425][   T37] audit: type=1326 audit(1757471249.206:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.432727][   T37] audit: type=1326 audit(1757471249.206:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.434720][   T37] audit: type=1326 audit(1757471249.206:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.435046][   T37] audit: type=1326 audit(1757471249.206:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.436113][   T37] audit: type=1326 audit(1757471249.206:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.436158][   T37] audit: type=1326 audit(1757471249.206:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.436752][   T37] audit: type=1326 audit(1757471249.206:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.437187][   T37] audit: type=1326 audit(1757471249.206:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.437231][   T37] audit: type=1326 audit(1757471249.206:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13259 comm="syz.9.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[  960.894115][T13266] block nbd6: shutting down sockets
[  963.321254][   T59] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  963.347879][   T59] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  963.362623][   T59] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  963.365047][   T59] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  963.365848][   T59] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  964.729911][ T4898] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  965.423967][ T5850] Bluetooth: hci1: command tx timeout
[  965.627361][ T4898] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  966.735958][T13348] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1883'.
[  967.141549][ T4898] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  967.499165][ T5850] Bluetooth: hci1: command tx timeout
[  967.847217][ T4898] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  968.320437][T13374] fuse: Unknown parameter 'group_i00000000000000000000'
[  968.506490][T13367] Falling back ldisc for ttyS3.
[  969.147237][T13393] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1894'.
[  969.634884][ T5850] Bluetooth: hci1: command tx timeout
[  970.257794][T13296] chnl_net:caif_netlink_parms(): no params data found
[  970.763834][ T4898] bridge_slave_1: left allmulticast mode
[  970.763867][ T4898] bridge_slave_1: left promiscuous mode
[  970.764116][ T4898] bridge0: port 2(bridge_slave_1) entered disabled state
[  970.892701][ T4898] bridge_slave_0: left allmulticast mode
[  970.892735][ T4898] bridge_slave_0: left promiscuous mode
[  970.893028][ T4898] bridge0: port 1(bridge_slave_0) entered disabled state
[  971.393360][T13426] fuse: Unknown parameter 'group_i00000000000000000000'
[  971.660228][ T5850] Bluetooth: hci1: command tx timeout
[  973.169716][T10428] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  973.358957][T10428] usb 7-1: Using ep0 maxpacket: 8
[  973.362803][T10428] usb 7-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  973.362835][T10428] usb 7-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  973.362859][T10428] usb 7-1: config 1 interface 0 has no altsetting 0
[  973.366415][T10428] usb 7-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  973.366450][T10428] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  973.366471][T10428] usb 7-1: Product: syz
[  973.366485][T10428] usb 7-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[  973.366514][T10428] usb 7-1: SerialNumber: syz
[  973.616895][T13454] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  973.617177][T13454] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  974.721712][T10428] usblp0: Disabling reads from problematic bidirectional printer
[  974.742476][T10428] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 15 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[  974.777133][T10428] usb 7-1: USB disconnect, device number 15
[  974.808245][T10428] usblp0: removed
[  974.987621][T13474] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1912'.
[  977.070996][ T4898] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  977.136615][ T4898] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  977.199738][ T4898] bond0 (unregistering): (slave macvlan0): Releasing backup interface
[  977.262956][ T4898] bond0 (unregistering): Released all slaves
[  977.611852][ T4898] tipc: Left network mode
[  978.480125][T13296] bridge0: port 1(bridge_slave_0) entered blocking state
[  978.480264][T13296] bridge0: port 1(bridge_slave_0) entered disabled state
[  978.480506][T13296] bridge_slave_0: entered allmulticast mode
[  978.488087][T13296] bridge_slave_0: entered promiscuous mode
[  978.512727][T13296] bridge0: port 2(bridge_slave_1) entered blocking state
[  978.512863][T13296] bridge0: port 2(bridge_slave_1) entered disabled state
[  978.513222][T13296] bridge_slave_1: entered allmulticast mode
[  978.554769][T13296] bridge_slave_1: entered promiscuous mode
[  979.459683][T10428] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[  979.629034][T10428] usb 9-1: Using ep0 maxpacket: 8
[  979.634961][T10428] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[  979.634996][T10428] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[  979.635020][T10428] usb 9-1: config 1 interface 0 has no altsetting 0
[  979.651301][T10428] usb 9-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  979.651331][T10428] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  979.651350][T10428] usb 9-1: Product: syz
[  979.651365][T10428] usb 9-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[  979.651396][T10428] usb 9-1: SerialNumber: syz
[  979.698965][T13508] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  979.703343][T13508] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  980.092353][T13296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  980.107049][T13296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  980.286843][T10428] usblp0: Disabling reads from problematic bidirectional printer
[  980.319494][T10428] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 27 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[  980.357765][T10428] usb 9-1: USB disconnect, device number 27
[  980.368191][ T4898] hsr_slave_0: left promiscuous mode
[  980.440075][T10428] usblp0: removed
[  980.495025][ T4898] hsr_slave_1: left promiscuous mode
[  980.495951][ T4898] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  980.495981][ T4898] batman_adv: batadv0: Removing interface: batadv_slave_0
[  980.585891][T13524] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1924'.
[  980.590061][ T4898] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  980.590091][ T4898] batman_adv: batadv0: Removing interface: batadv_slave_1
[  981.055895][ T4898] veth1_macvtap: left promiscuous mode
[  981.056016][ T4898] veth0_macvtap: left promiscuous mode
[  981.056209][ T4898] veth1_vlan: left promiscuous mode
[  981.056414][ T4898] veth0_vlan: left promiscuous mode
[  981.185478][T13536] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1926'.
[  985.781304][ T4898] team0 (unregistering): Port device team_slave_1 removed
[  986.039860][ T4898] team0 (unregistering): Port device team_slave_0 removed
[  987.698983][ T8670] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  987.879147][ T8670] usb 9-1: device descriptor read/64, error -71
[  988.129057][ T8670] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[  988.289126][ T8670] usb 9-1: device descriptor read/64, error -71
[  988.399896][ T8670] usb usb9-port1: attempt power cycle
[  988.739249][ T8670] usb 9-1: new high-speed USB device number 30 using dummy_hcd
[  988.774264][ T8670] usb 9-1: device descriptor read/8, error -71
[  989.029094][ T8670] usb 9-1: new high-speed USB device number 31 using dummy_hcd
[  989.076362][ T8670] usb 9-1: device descriptor read/8, error -71
[  989.190418][ T8670] usb usb9-port1: unable to enumerate USB device
[  990.496198][T13296] team0: Port device team_slave_0 added
[  990.606772][T13580] 9pnet_virtio: no channels available for device syz
[  990.679618][T13296] team0: Port device team_slave_1 added
[  991.120014][T13296] batman_adv: batadv0: Adding interface: batadv_slave_0
[  991.120031][T13296] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  991.120057][T13296] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  991.122432][T13296] batman_adv: batadv0: Adding interface: batadv_slave_1
[  991.122446][T13296] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  991.122471][T13296] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  991.259552][T13584] fuse: Bad value for 'user_id'
[  991.259565][T13584] fuse: Bad value for 'user_id'
[  991.968773][T13296] hsr_slave_0: entered promiscuous mode
[  991.981244][T13296] hsr_slave_1: entered promiscuous mode
[  991.982106][T13296] debugfs: 'hsr0' already exists in 'hsr'
[  991.982130][T13296] Cannot create hsr debugfs directory
[  992.959737][ T5996] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  993.139657][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[  993.139730][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[  993.289022][ T5996] usb 10-1: device descriptor read/64, error -71
[  993.549128][ T5996] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  993.679036][ T5996] usb 10-1: device descriptor read/64, error -71
[  993.789548][ T5996] usb usb10-port1: attempt power cycle
[  994.086911][ T4898] IPVS: stop unused estimator thread 0...
[  994.128936][ T5996] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  994.149970][ T5996] usb 10-1: device descriptor read/8, error -71
[  994.399041][ T5996] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  994.430099][ T5996] usb 10-1: device descriptor read/8, error -71
[  994.549407][ T5996] usb usb10-port1: unable to enumerate USB device
[  994.631787][T13626] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1948'.
[  994.774602][   T37] kauditd_printk_skb: 4 callbacks suppressed
[  994.774620][   T37] audit: type=1326 audit(1757471283.546:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  994.776297][   T37] audit: type=1326 audit(1757471283.546:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  994.776345][   T37] audit: type=1326 audit(1757471283.546:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  994.776386][   T37] audit: type=1326 audit(1757471283.546:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  994.776427][   T37] audit: type=1326 audit(1757471283.546:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  994.776469][   T37] audit: type=1326 audit(1757471283.546:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  994.808956][   T37] audit: type=1326 audit(1757471283.546:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  994.809016][   T37] audit: type=1326 audit(1757471283.546:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  994.809058][   T37] audit: type=1326 audit(1757471283.546:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13632 comm="syz.8.1949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[  995.087856][T13635] fuse: Bad value for 'user_id'
[  995.087876][T13635] fuse: Bad value for 'user_id'
[  997.518532][T13668] 9pnet_virtio: no channels available for device syz
[  998.193589][    C0] vkms_vblank_simulate: vblank timer overrun
[  999.166848][    C0] vkms_vblank_simulate: vblank timer overrun
[  999.288959][ T1231] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  999.421711][ T1231] usb 7-1: device descriptor read/64, error -71
[  999.680456][ T1231] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  999.809236][ T1231] usb 7-1: device descriptor read/64, error -71
[  999.920773][ T1231] usb usb7-port1: attempt power cycle
[ 1000.259221][ T1231] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 1000.279745][ T1231] usb 7-1: device descriptor read/8, error -71
[ 1000.529409][ T1231] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 1000.551981][ T1231] usb 7-1: device descriptor read/8, error -71
[ 1000.682518][ T1231] usb usb7-port1: unable to enumerate USB device
[ 1000.682923][T13296] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1000.733888][T13296] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1000.963490][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1001.017789][T13296] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1001.121445][T13296] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1002.447453][T13296] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1002.458115][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1002.599797][T13296] 8021q: adding VLAN 0 to HW filter on device team0
[ 1002.807047][ T4897] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1002.809631][ T4897] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1002.868536][ T1160] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1002.869070][ T1160] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1004.321506][T13755] 9pnet_virtio: no channels available for device syz
[ 1004.368225][T13296] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1004.543633][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1004.703172][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1005.234487][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1005.391637][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1005.701487][T13774] tmpfs: Bad value for 'nr_inodes'
[ 1005.705219][T13296] veth0_vlan: entered promiscuous mode
[ 1005.747989][T13296] veth1_vlan: entered promiscuous mode
[ 1006.248188][T13296] veth0_macvtap: entered promiscuous mode
[ 1006.336523][T13296] veth1_macvtap: entered promiscuous mode
[ 1006.990817][T13790] syz.9.1985 (13790) used greatest stack depth: 16648 bytes left
[ 1007.040531][T13296] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1007.088396][T13296] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1007.388005][ T5988] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1007.411660][ T5988] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1007.416266][ T5988] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1007.429041][T13798] Falling back ldisc for ttyS3.
[ 1007.444878][ T5988] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1008.341633][ T4898] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1008.341654][ T4898] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1008.530392][ T4898] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1008.530414][ T4898] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1008.935081][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1009.270197][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1009.480737][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1009.673480][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1009.946968][T13855] 9pnet_virtio: no channels available for device syz
[ 1011.309982][T13884] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2006'.
[ 1012.204005][T13889] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2009'.
[ 1014.181489][T13920] 9pnet_virtio: no channels available for device syz
[ 1014.652457][T13926] veth1_to_team: entered promiscuous mode
[ 1014.653054][T13926] veth1_to_team: left promiscuous mode
[ 1015.929372][T13941] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2022'.
[ 1016.329394][T13945] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2023'.
[ 1019.235264][T13988] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2036'.
[ 1023.238104][T14032] syz.9.2051 (14032) used greatest stack depth: 16120 bytes left
[ 1029.411551][T14101] 9pnet_virtio: no channels available for device syz
[ 1043.942947][T14247] 9pnet_virtio: no channels available for device syz
[ 1046.283802][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1046.492817][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1047.275851][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1048.718573][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1048.838668][T14303] 9pnet_virtio: no channels available for device syz
[ 1048.929036][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1049.029365][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1049.087804][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1049.192857][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1049.560467][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1052.003709][T14342] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[ 1052.003740][T14342] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1052.003818][T14344] vhci_hcd: connection closed
[ 1052.083307][T14342] vhci_hcd vhci_hcd.0: Device attached
[ 1052.163767][ T1312] vhci_hcd: stop threads
[ 1052.163786][ T1312] vhci_hcd: release socket
[ 1052.164762][ T1312] vhci_hcd: disconnect device
[ 1052.231342][T14325] vhci_hcd: vhci_device speed not set
[ 1052.596100][T14349] 9pnet_virtio: no channels available for device syz
[ 1053.119076][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1053.138404][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1053.920874][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1054.319213][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1054.464577][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.464623][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.862889][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1055.937004][T14386] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[ 1055.937031][T14386] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1055.937112][T14386] vhci_hcd vhci_hcd.0: Device attached
[ 1055.969074][T14387] vhci_hcd: connection closed
[ 1055.974032][   T67] vhci_hcd: stop threads
[ 1055.974155][   T67] vhci_hcd: release socket
[ 1055.976405][   T67] vhci_hcd: disconnect device
[ 1056.199418][T14391] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1062.327519][T14425] fuse: Unknown parameter 'user_id00000000000000000000'
[ 1062.689279][T14426] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(8)
[ 1062.689311][T14426] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1062.690089][T14426] vhci_hcd vhci_hcd.0: Device attached
[ 1062.731422][T14428] vhci_hcd: connection closed
[ 1063.121111][  T988] usb 51-1: new high-speed USB device number 2 using vhci_hcd
[ 1063.321567][T13951] vhci_hcd: stop threads
[ 1063.321634][T13951] vhci_hcd: release socket
[ 1063.512321][T13951] vhci_hcd: disconnect device
[ 1065.920778][T14476] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[ 1065.920799][T14476] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1065.920876][T14476] vhci_hcd vhci_hcd.0: Device attached
[ 1065.963737][T14477] vhci_hcd: connection closed
[ 1065.963961][ T5988] vhci_hcd: stop threads
[ 1065.963979][ T5988] vhci_hcd: release socket
[ 1065.964012][ T5988] vhci_hcd: disconnect device
[ 1068.609013][  T988] vhci_hcd: vhci_device speed not set
[ 1069.767878][T14508] fuse: Bad value for 'fd'
[ 1072.443936][T14546] fuse: Bad value for 'fd'
[ 1074.272264][T14577] fuse: Bad value for 'fd'
[ 1075.074664][   T37] audit: type=1326 audit(1757471363.846:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14599 comm="syz.8.2233" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f82bf89eba9 code=0x0
[ 1075.293670][T14614] block nbd8: shutting down sockets
[ 1078.090555][   T37] audit: type=1326 audit(1757471366.856:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14666 comm="syz.9.2256" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5b3fdeeba9 code=0x0
[ 1078.928604][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1079.159601][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1079.265664][T14681] block nbd9: shutting down sockets
[ 1081.946452][   T37] audit: type=1326 audit(1757471370.716:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14724 comm="syz.3.2274" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f387b7beba9 code=0x0
[ 1085.251559][   T37] audit: type=1326 audit(1757471374.026:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14765 comm="syz.3.2288" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f387b7beba9 code=0x0
[ 1087.258931][T14771] Bluetooth: hci1: command 0x0406 tx timeout
[ 1092.461677][   T37] audit: type=1326 audit(1757471381.226:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14841 comm="syz.5.2315" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f288793eba9 code=0x0
[ 1092.516489][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1092.638086][   T37] audit: type=1326 audit(1757471381.386:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14850 comm="syz.6.2318" exe="/root/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7f1641965b67 code=0x0
[ 1092.927914][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1093.570681][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1093.631657][T14855] block nbd5: shutting down sockets
[ 1094.302159][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1094.452520][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1094.527185][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1094.769451][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1095.210164][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1099.582809][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1099.757668][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1100.179505][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1100.809756][   T37] audit: type=1800 audit(1757471389.586:100): pid=14908 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.2336" name="file0" dev="fuse" ino=2 res=0 errno=0
[ 1101.998142][ T5850] Bluetooth: hci5: unexpected event for opcode 0x0c23
[ 1102.179283][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1102.487177][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1103.007225][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1103.279222][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1103.344052][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1103.813363][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1103.981505][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1110.747309][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1110.925232][T14974] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2354'.
[ 1110.940492][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1111.533270][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1114.170743][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1114.585952][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1116.179797][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.179874][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.699248][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1117.086838][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1118.833746][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1119.140807][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1119.805433][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1119.967377][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1120.141184][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1120.419494][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1121.574779][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1121.638994][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1122.307167][ T5850] Bluetooth: hci5: unexpected event for opcode 0x0c23
[ 1123.107876][T15095] Falling back ldisc for ttyS3.
[ 1123.418943][T15113] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2387'.
[ 1123.418965][T15113] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2387'.
[ 1123.418993][T15113] netlink: 'syz.9.2387': attribute type 12 has an invalid length.
[ 1123.760295][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1123.927306][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1123.956913][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1124.009982][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1124.448873][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1124.815642][T15127] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2392'.
[ 1124.985931][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1125.332401][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1125.479533][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1125.732145][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1126.641712][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1127.099492][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1127.788089][   T37] audit: type=1326 audit(1757471416.556:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15156 comm="syz.6.2400" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f164196eba9 code=0x0
[ 1128.035899][T15165] block nbd6: shutting down sockets
[ 1129.184140][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1129.328249][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1129.919727][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1130.347537][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1130.542702][T15180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2405'.
[ 1131.662531][ T5850] Bluetooth: hci1: unexpected event for opcode 0x0c23
[ 1132.721508][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1132.854915][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1134.060212][   T37] audit: type=1326 audit(1757471422.836:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15218 comm="syz.6.2419" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f164196eba9 code=0x0
[ 1134.237035][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1134.785723][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1134.962351][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1135.436303][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1135.526668][T15238] block nbd6: shutting down sockets
[ 1135.749572][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1136.195334][T15255] cgroup: fork rejected by pids controller in /syz5
[ 1136.279249][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1138.506751][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1138.731946][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1139.946928][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1140.530492][T15320] cgroup: fork rejected by pids controller in /syz3
[ 1140.617227][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1140.657669][ T5850] Bluetooth: hci1: unexpected event for opcode 0x0c23
[ 1140.865486][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1141.898209][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1142.140069][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1142.559764][   T37] audit: type=1326 audit(1757471431.336:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15362 comm="syz.9.2445" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5b3fdeeba9 code=0x0
[ 1142.854184][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1143.300773][T15382] block nbd9: shutting down sockets
[ 1143.499479][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1143.555220][ T5850] Bluetooth: hci1: unexpected event for opcode 0x0c23
[ 1143.860749][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1144.785889][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1145.688685][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1146.297256][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1146.405919][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1146.483239][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1146.613434][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1146.661003][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1146.839170][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1147.471432][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1148.622244][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1149.040257][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1149.552283][T15449] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2470'.
[ 1150.742489][T15468] 9pnet_virtio: no channels available for device syz
[ 1153.130469][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1153.739336][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1154.240228][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1154.887134][T15493] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2483'.
[ 1155.046794][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1156.139714][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1156.783125][T15506] 9pnet_virtio: no channels available for device syz
[ 1159.533346][T15537] Falling back ldisc for ttyS3.
[ 1162.287138][T15595] Falling back ldisc for ttyS3.
[ 1164.272922][T15621] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2520'.
[ 1164.706072][   T37] audit: type=1326 audit(1757471453.476:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1164.707287][   T37] audit: type=1326 audit(1757471453.476:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1164.708616][   T37] audit: type=1326 audit(1757471453.476:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1164.786725][   T37] audit: type=1326 audit(1757471453.556:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1164.787153][   T37] audit: type=1326 audit(1757471453.556:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1164.788126][   T37] audit: type=1326 audit(1757471453.556:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1164.788175][   T37] audit: type=1326 audit(1757471453.556:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1164.788593][   T37] audit: type=1326 audit(1757471453.556:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1164.935243][   T37] audit: type=1326 audit(1757471453.556:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15626 comm="syz.9.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5b3fdeeba9 code=0x7ffc0000
[ 1165.990704][T15651] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2531'.
[ 1165.990859][T15651] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1166.457764][T15651] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1168.809051][ T1231] usb 9-1: new high-speed USB device number 32 using dummy_hcd
[ 1168.959050][ T1231] usb 9-1: Using ep0 maxpacket: 8
[ 1168.964608][ T1231] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[ 1168.964648][ T1231] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[ 1168.964674][ T1231] usb 9-1: config 1 interface 0 has no altsetting 0
[ 1168.968140][ T1231] usb 9-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[ 1168.968168][ T1231] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1168.968188][ T1231] usb 9-1: Product: syz
[ 1168.968197][ T1231] usb 9-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[ 1168.968214][ T1231] usb 9-1: SerialNumber: syz
[ 1169.895600][T15693] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1169.895744][T15693] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1170.205073][   T37] audit: type=1326 audit(1757471458.976:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15709 comm="syz.9.2549" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5b3fdeeba9 code=0x0
[ 1170.442530][ T1231] usblp0: Disabling reads from problematic bidirectional printer
[ 1170.478902][ T1231] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 32 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[ 1170.510921][ T1231] usb 9-1: USB disconnect, device number 32
[ 1170.541469][ T1231] usblp0: removed
[ 1170.563157][T15532] udevd[15532]: setting mode of /dev/bus/usb/009/032 to 020664 failed: No such file or directory
[ 1170.563286][T15532] udevd[15532]: setting owner of /dev/bus/usb/009/032 to uid=0, gid=7 failed: No such file or directory
[ 1171.165494][T15724] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2553'.
[ 1171.167191][T15731] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2554'.
[ 1173.042295][T15765] netlink: 48 bytes leftover after parsing attributes in process `syz.6.2565'.
[ 1173.286733][T15773] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2568'.
[ 1173.619758][T14325] usb 9-1: new high-speed USB device number 33 using dummy_hcd
[ 1173.799495][T14325] usb 9-1: Using ep0 maxpacket: 8
[ 1173.806673][T14325] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[ 1173.806705][T14325] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[ 1173.806722][T14325] usb 9-1: config 1 interface 0 has no altsetting 0
[ 1173.847853][T14325] usb 9-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[ 1173.847872][T14325] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1173.847883][T14325] usb 9-1: Product: syz
[ 1173.847891][T14325] usb 9-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[ 1173.847907][T14325] usb 9-1: SerialNumber: syz
[ 1173.925027][T15775] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1173.925157][T15775] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1174.454236][T14325] usblp0: Disabling reads from problematic bidirectional printer
[ 1174.486745][T14325] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 33 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[ 1174.528883][T14325] usb 9-1: USB disconnect, device number 33
[ 1174.548270][T14325] usblp0: removed
[ 1177.343334][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.343432][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.462161][T15838] kAFS: No cell specified
[ 1177.574150][T15838] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[ 1177.574168][T15838] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1177.574228][T15838] vhci_hcd vhci_hcd.0: Device attached
[ 1177.576380][T15839] vhci_hcd: connection closed
[ 1177.576720][ T1312] vhci_hcd: stop threads
[ 1177.576730][ T1312] vhci_hcd: release socket
[ 1177.576748][ T1312] vhci_hcd: disconnect device
[ 1179.349411][T15858] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2593'.
[ 1179.536561][   T37] audit: type=1326 audit(1757471468.306:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15863 comm="syz.5.2599" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f288793eba9 code=0x0
[ 1182.493798][T15894] kAFS: No cell specified
[ 1182.599830][T15894] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[ 1182.599873][T15894] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1182.600239][T15895] vhci_hcd: connection closed
[ 1182.600272][T15894] vhci_hcd vhci_hcd.0: Device attached
[ 1182.719922][   T13] vhci_hcd: stop threads
[ 1182.719977][   T13] vhci_hcd: release socket
[ 1182.722392][   T13] vhci_hcd: disconnect device
[ 1185.944030][   T37] audit: type=1326 audit(1757471474.716:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15922 comm="syz.6.2614" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f164196eba9 code=0x0
[ 1189.106958][T15973] kAFS: No cell specified
[ 1189.122241][T15973] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(7)
[ 1189.122268][T15973] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1189.122332][T15973] vhci_hcd vhci_hcd.0: Device attached
[ 1189.141170][T15975] vhci_hcd: connection closed
[ 1189.267982][ T1177] vhci_hcd: stop threads
[ 1189.268003][ T1177] vhci_hcd: release socket
[ 1189.268302][ T1177] vhci_hcd: disconnect device
[ 1189.348369][  T988] vhci_hcd: vhci_device speed not set
[ 1189.419702][   T37] audit: type=1326 audit(1757471478.196:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15978 comm="syz.3.2632" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f387b7beba9 code=0x0
[ 1189.611886][   T37] audit: type=1326 audit(1757471478.386:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15980 comm="syz.9.2633" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5b3fdeeba9 code=0x0
[ 1189.774473][T15988] block nbd9: shutting down sockets
[ 1191.551217][T16016] kAFS: No cell specified
[ 1191.760280][T16016] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8)
[ 1191.760339][T16016] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1191.762929][T16016] vhci_hcd vhci_hcd.0: Device attached
[ 1191.797339][T16017] vhci_hcd: connection closed
[ 1191.807850][   T13] vhci_hcd: stop threads
[ 1191.807900][   T13] vhci_hcd: release socket
[ 1191.808058][   T13] vhci_hcd: disconnect device
[ 1193.882544][   T37] audit: type=1326 audit(1757471482.656:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16034 comm="syz.8.2650" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f82bf89eba9 code=0x0
[ 1196.536966][T16050] block nbd8: shutting down sockets
[ 1196.980246][   T37] audit: type=1800 audit(1757471485.746:119): pid=16071 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.2657" name="file0" dev="fuse" ino=2 res=0 errno=0
[ 1197.059258][T16067] Falling back ldisc for ttyS3.
[ 1197.565593][T16082] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2659'.
[ 1198.861330][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1199.186484][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1199.366325][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1199.563533][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1199.814085][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1199.947952][   T37] audit: type=1326 audit(1757471488.716:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16112 comm="syz.3.2669" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f387b7beba9 code=0x0
[ 1200.083697][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1200.388004][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1200.447518][T16115] block nbd3: shutting down sockets
[ 1200.475652][   T37] audit: type=1800 audit(1757471489.246:121): pid=16118 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.9.2672" name="file0" dev="fuse" ino=2 res=0 errno=0
[ 1200.845236][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1201.018432][T16129] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2673'.
[ 1201.033567][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1201.670167][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1202.263712][T16140] kAFS: No cell specified
[ 1203.041376][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1203.197144][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1203.240485][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1203.829213][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1204.229804][   T37] audit: type=1800 audit(1757471492.996:122): pid=16164 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.9.2685" name="file0" dev="fuse" ino=2 res=0 errno=0
[ 1204.449293][   T10] usb 9-1: new high-speed USB device number 34 using dummy_hcd
[ 1204.598874][   T10] usb 9-1: Using ep0 maxpacket: 8
[ 1204.601553][   T10] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[ 1204.601572][   T10] usb 9-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[ 1204.601585][   T10] usb 9-1: config 1 interface 0 has no altsetting 0
[ 1204.603534][   T10] usb 9-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[ 1204.603574][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1204.603589][   T10] usb 9-1: Product: syz
[ 1204.603597][   T10] usb 9-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[ 1204.603613][   T10] usb 9-1: SerialNumber: syz
[ 1204.786189][T16166] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1204.786387][T16166] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1205.268043][T16179] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2692'.
[ 1205.331464][   T10] usblp0: Disabling reads from problematic bidirectional printer
[ 1205.461545][   T10] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 34 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[ 1205.501011][   T10] usb 9-1: USB disconnect, device number 34
[ 1205.554423][   T37] audit: type=1326 audit(1757471494.326:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16181 comm="syz.9.2691" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5b3fdeeba9 code=0x0
[ 1205.560901][   T10] usblp0: removed
[ 1205.966031][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1206.133682][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1206.243270][T16199] block nbd9: shutting down sockets
[ 1206.646780][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1207.422500][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1207.570629][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1208.099020][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1208.569462][T16231] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2707'.
[ 1208.916116][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1209.070316][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1209.530071][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1212.460826][T16258] Process accounting resumed
[ 1212.465132][T16262] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2717'.
[ 1214.719107][   T37] audit: type=1326 audit(1757471503.496:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16284 comm="syz.9.2725" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5b3fdeeba9 code=0x0
[ 1215.067733][T16288] block nbd9: shutting down sockets
[ 1217.831228][T16306] Process accounting resumed
[ 1218.484902][T16316] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2732'.
[ 1222.920525][T16345] Process accounting resumed
[ 1228.927284][   T37] audit: type=1326 audit(1757471517.696:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16388 comm="syz.3.2754" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f387b7beba9 code=0x0
[ 1229.213341][T16400] block nbd3: shutting down sockets
[ 1229.465958][   T37] audit: type=1326 audit(1757471518.236:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16405 comm="syz.8.2759" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f82bf89eba9 code=0x0
[ 1233.477264][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1234.075559][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1234.082775][T16454] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2772'.
[ 1237.388745][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1237.440391][T16483] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2783'.
[ 1237.550119][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1237.942582][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1238.653703][T16498] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2789'.
[ 1238.653727][T16498] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2789'.
[ 1238.787519][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.787603][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.993020][T16507] fuse: Bad value for 'fd'
[ 1239.738207][T16507] Process accounting resumed
[ 1241.467247][   T37] audit: type=1326 audit(1757471530.236:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.473273][   T37] audit: type=1326 audit(1757471530.246:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.473322][   T37] audit: type=1326 audit(1757471530.246:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.473567][   T37] audit: type=1326 audit(1757471530.246:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.473817][   T37] audit: type=1326 audit(1757471530.246:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.474048][   T37] audit: type=1326 audit(1757471530.246:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.474347][   T37] audit: type=1326 audit(1757471530.246:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.474753][   T37] audit: type=1326 audit(1757471530.246:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.475130][   T37] audit: type=1326 audit(1757471530.246:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1241.475171][   T37] audit: type=1326 audit(1757471530.246:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16537 comm="syz.5.2800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f288793eba9 code=0x7ffc0000
[ 1243.122259][T16554] fuse: Bad value for 'fd'
[ 1243.546988][T16553] Process accounting resumed
[ 1244.981823][T16565] block nbd9: shutting down sockets
[ 1247.360540][T16593] fuse: Bad value for 'fd'
[ 1248.038168][T16591] Process accounting resumed
[ 1248.142709][   T37] kauditd_printk_skb: 14 callbacks suppressed
[ 1248.142726][   T37] audit: type=1800 audit(1757471536.916:151): pid=16595 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.6.2818" name="file0" dev="fuse" ino=2 res=0 errno=0
[ 1249.146138][   T37] audit: type=1326 audit(1757471537.916:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16604 comm="syz.8.2821" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f82bf89eba9 code=0x0
[ 1249.327721][T16611] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2822'.
[ 1250.927433][T16609] block nbd8: shutting down sockets
[ 1252.313625][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1253.446128][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1253.586290][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1253.866916][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1254.117660][   T37] audit: type=1326 audit(1757471542.886:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16643 comm="syz.3.2831" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f387b7beba9 code=0x0
[ 1255.189882][   T37] audit: type=1326 audit(1757471543.956:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16662 comm="syz.8.2839" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f82bf89eba9 code=0x0
[ 1256.514058][T16671] block nbd8: shutting down sockets
[ 1260.174430][T16726] netlink: 'syz.6.2857': attribute type 41 has an invalid length.
[ 1265.208896][   T37] audit: type=1326 audit(1757471553.966:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.208953][   T37] audit: type=1326 audit(1757471553.966:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.208996][   T37] audit: type=1326 audit(1757471553.966:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.209039][   T37] audit: type=1326 audit(1757471553.966:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.209081][   T37] audit: type=1326 audit(1757471553.966:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.209125][   T37] audit: type=1326 audit(1757471553.976:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.209168][   T37] audit: type=1326 audit(1757471553.976:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.209210][   T37] audit: type=1326 audit(1757471553.976:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.209261][   T37] audit: type=1326 audit(1757471553.976:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1265.209303][   T37] audit: type=1326 audit(1757471553.976:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16781 comm="syz.8.2875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1267.112582][T16796] netlink: 132 bytes leftover after parsing attributes in process `syz.9.2879'.
[ 1267.807559][T16811] fuse: Unknown parameter '0x0000000000000008'
[ 1268.490701][T16810] Process accounting resumed
[ 1268.795908][T16823] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2889'.
[ 1268.796396][T16820] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2889'.
[ 1268.821119][T16820] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2889'.
[ 1269.688910][ T5850] Bluetooth: hci5: connection err: -111
[ 1271.416922][T16853] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2899'.
[ 1272.130459][  T988] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[ 1272.312336][  T988] usb 4-1: Using ep0 maxpacket: 8
[ 1272.334366][T16844] infiniband syz1: set down
[ 1272.334388][T16844] infiniband syz1: added ipvlan1
[ 1272.353628][  T988] usb 4-1: config index 0 descriptor too short (expected 30, got 18)
[ 1272.356120][T16844] syz1: rxe_create_cq: returned err = -12
[ 1272.361944][T16844] infiniband syz1: Couldn't create ib_mad CQ
[ 1272.362146][T16844] infiniband syz1: Couldn't open port 1
[ 1272.406459][  T988] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[ 1272.406490][  T988] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1272.406511][  T988] usb 4-1: Product: syz
[ 1272.406524][  T988] usb 4-1: Manufacturer: syz
[ 1272.406537][  T988] usb 4-1: SerialNumber: syz
[ 1272.454368][  T988] usb 4-1: config 0 descriptor??
[ 1272.467591][  T988] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[ 1272.467671][  T988] usb 4-1: setting power ON
[ 1272.468313][  T988] dvb-usb: bulk message failed: -22 (2/0)
[ 1272.505983][  T988] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1272.507413][  T988] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[ 1272.507509][  T988] usb 4-1: media controller created
[ 1272.539377][T16884] netlink: 39 bytes leftover after parsing attributes in process `syz.5.2911'.
[ 1272.539405][T16884] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2911'.
[ 1272.561431][   T37] kauditd_printk_skb: 135 callbacks suppressed
[ 1272.561448][   T37] audit: type=1326 audit(1757471561.336:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.561564][   T37] audit: type=1326 audit(1757471561.336:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.561751][   T37] audit: type=1326 audit(1757471561.336:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.562206][   T37] audit: type=1326 audit(1757471561.336:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.579501][   T37] audit: type=1326 audit(1757471561.356:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.579665][   T37] audit: type=1326 audit(1757471561.356:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.579826][   T37] audit: type=1326 audit(1757471561.356:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.580058][   T37] audit: type=1326 audit(1757471561.356:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.580278][   T37] audit: type=1326 audit(1757471561.356:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.592604][   T37] audit: type=1326 audit(1757471561.366:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16883 comm="syz.8.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1272.659591][T16866] dvb-usb: bulk message failed: -22 (3/0)
[ 1272.659618][T16866] dvb-usb: bulk message failed: -22 (4/0)
[ 1272.663712][T16844] RDS/IB: syz1: added
[ 1272.664758][T16844] smc: adding ib device syz1 with port count 1
[ 1272.665020][T16844] smc:    ib device syz1 port 1 has pnetid 
[ 1272.846263][  T988] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1272.935479][  T988] usb 4-1: selecting invalid altsetting 6
[ 1272.935521][  T988] usb 4-1: digital interface selection failed (-22)
[ 1272.935538][  T988] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[ 1272.936793][  T988] usb 4-1: setting power OFF
[ 1272.936984][  T988] dvb-usb: bulk message failed: -22 (2/0)
[ 1272.937020][  T988] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[ 1272.937048][  T988] (NULL device *): no alternate interface
[ 1273.118864][  T988] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[ 1273.125970][  T988] usb 4-1: USB disconnect, device number 20
[ 1274.738892][   T10] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1274.894321][   T10] usb 4-1: Using ep0 maxpacket: 8
[ 1274.932986][   T10] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 16
[ 1274.933020][   T10] usb 4-1: config 1 interface 0 altsetting 8 bulk endpoint 0x82 has invalid maxpacket 64
[ 1274.933045][   T10] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1274.967576][   T10] usb 4-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[ 1274.967608][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1274.967629][   T10] usb 4-1: Product: syz
[ 1274.967643][   T10] usb 4-1: Manufacturer: 폏蹃晡ᘌ疈澢ᢹλ樵ݡᙚ꽂髏韙䛒﷭⃃ᶏ覯뿄ų쎯褈⤗䜚툖萳殯Ȝꃈ㹡䒔肃僂ͣ๾憱롢嬭땶玍艱㒷唞鋫ॉ㸐峻哹ཧꛋᢌ낎ͳ섪뵞謟孌쨳뒮଄ꅵ迲龈汗令뢄䒎앐襎ﾈ㬡쟰糇拓ᡫ懤ㄕ⌔䫋ꤣጺዴ菌殺
[ 1274.967675][   T10] usb 4-1: SerialNumber: syz
[ 1275.065351][T16913] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1275.065518][T16913] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1275.610366][   T10] usblp0: Disabling reads from problematic bidirectional printer
[ 1275.635798][   T10] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 21 if 0 alt 8 proto 3 vid 0x03F0 pid 0x0004
[ 1275.673706][   T10] usb 4-1: USB disconnect, device number 21
[ 1275.697783][   T10] usblp0: removed
[ 1276.118854][ T5996] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1276.272037][ T5996] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1276.272064][ T5996] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1276.272249][ T5996] usb 10-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1276.275745][ T5996] usb 10-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5
[ 1276.275772][ T5996] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1276.275792][ T5996] usb 10-1: Product: syz
[ 1276.275807][ T5996] usb 10-1: Manufacturer: syz
[ 1276.275822][ T5996] usb 10-1: SerialNumber: syz
[ 1276.370386][ T5996] usb 10-1: config 0 descriptor??
[ 1276.398304][ T5996] uvcvideo 10-1:0.0: probe with driver uvcvideo failed with error -22
[ 1276.647386][T14487] usb 10-1: USB disconnect, device number 8
[ 1282.191996][T16957] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2938'.
[ 1282.312852][T16958] netlink: 9 bytes leftover after parsing attributes in process `syz.3.2937'.
[ 1282.343480][T16958] gretap0: entered promiscuous mode
[ 1282.369051][T16958] netlink: 5 bytes leftover after parsing attributes in process `syz.3.2937'.
[ 1282.369137][T16958] 0��{X��: renamed from gretap0
[ 1282.415579][T16958] 0��{X��: left promiscuous mode
[ 1282.415597][T16958] 0��{X��: entered allmulticast mode
[ 1282.429779][T16958] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[ 1282.936400][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1283.086854][T16972] fuse: Unknown parameter 'fd0x0000000000000008'
[ 1283.580241][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1283.738197][T16972] Process accounting resumed
[ 1283.822662][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1284.124968][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1284.592351][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1284.740477][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1284.883964][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1285.344507][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1285.901550][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1286.054675][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1286.131993][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1286.500207][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1286.593963][T17003] ceph: No mds server is up or the cluster is laggy
[ 1286.600045][ T5996] libceph: connect (1)[c::]:6789 error -101
[ 1286.600283][ T5996] libceph: mon0 (1)[c::]:6789 connect error
[ 1286.757769][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1286.906947][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1287.174204][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1287.448748][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1290.977923][T14771] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1291.005934][T14771] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1291.009559][T14771] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1291.013291][T14771] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1291.022971][T14771] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1291.111519][T17013] Falling back ldisc for ttyS3.
[ 1293.153482][T14771] Bluetooth: hci4: command tx timeout
[ 1293.557606][   T10] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[ 1293.819065][   T10] usb 10-1: Using ep0 maxpacket: 32
[ 1293.823109][   T10] usb 10-1: config 0 has no interfaces?
[ 1293.828324][   T10] usb 10-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[ 1293.828353][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1293.828373][   T10] usb 10-1: Product: syz
[ 1293.828388][   T10] usb 10-1: Manufacturer: syz
[ 1293.828403][   T10] usb 10-1: SerialNumber: syz
[ 1293.903942][   T10] usb 10-1: config 0 descriptor??
[ 1294.123664][ T7867] usb 10-1: USB disconnect, device number 9
[ 1294.692272][ T4897] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1295.184407][T14771] Bluetooth: hci4: command tx timeout
[ 1297.225734][ T4897] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1297.258909][T14771] Bluetooth: hci4: command tx timeout
[ 1298.003691][ T4897] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1298.270343][   T37] kauditd_printk_skb: 52 callbacks suppressed
[ 1298.270363][   T37] audit: type=1800 audit(1757471586.996:362): pid=17083 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.9.2976" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1298.683384][ T4897] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1299.338875][T14771] Bluetooth: hci4: command tx timeout
[ 1300.270934][ T1324] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.271010][ T1324] ieee802154 phy1 wpan1: encryption failed: -22
[ 1301.945630][T17115] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2985'.
[ 1301.946125][T17115] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2985'.
[ 1301.946243][T17115] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2985'.
[ 1303.142047][ T5850] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1303.158546][ T5850] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1303.163700][ T5850] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1303.165998][ T5850] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1303.176298][ T5850] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1304.157714][T16995] Set syz1 is full, maxelem 65536 reached
[ 1305.970498][T14771] Bluetooth: hci3: command tx timeout
[ 1306.970239][ T4897] bridge_slave_1: left allmulticast mode
[ 1306.970276][ T4897] bridge_slave_1: left promiscuous mode
[ 1306.970574][ T4897] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1307.060632][ T4897] bridge_slave_0: left allmulticast mode
[ 1307.060666][ T4897] bridge_slave_0: left promiscuous mode
[ 1307.060972][ T4897] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1307.777778][T17140] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2992'.
[ 1308.059421][T14771] Bluetooth: hci3: command tx timeout
[ 1310.099884][ T4897] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1310.138944][T14771] Bluetooth: hci3: command tx timeout
[ 1310.160165][ T4897] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1310.212729][ T4897] bond0 (unregistering): Released all slaves
[ 1311.287699][ T4897] bond1 (unregistering): Released all slaves
[ 1312.239027][T14771] Bluetooth: hci3: command tx timeout
[ 1312.268470][ T4897] bond2 (unregistering): Released all slaves
[ 1313.171898][ T4897] bond3 (unregistering): Released all slaves
[ 1314.147133][ T4897] bond4 (unregistering): Released all slaves
[ 1315.148045][ T4897] bond5 (unregistering): Released all slaves
[ 1315.663195][ T4897] tipc: Left network mode
[ 1316.032270][T17032] chnl_net:caif_netlink_parms(): no params data found
[ 1316.093520][T17150] Falling back ldisc for ttyS3.
[ 1317.171326][   T37] audit: type=1326 audit(1757471605.936:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171381][   T37] audit: type=1326 audit(1757471605.936:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171421][   T37] audit: type=1326 audit(1757471605.936:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171472][   T37] audit: type=1326 audit(1757471605.936:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171512][   T37] audit: type=1326 audit(1757471605.936:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171550][   T37] audit: type=1326 audit(1757471605.936:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171590][   T37] audit: type=1326 audit(1757471605.936:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171630][   T37] audit: type=1326 audit(1757471605.936:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171668][   T37] audit: type=1326 audit(1757471605.946:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.171708][   T37] audit: type=1326 audit(1757471605.946:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17164 comm="syz.8.2998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f82bf89eba9 code=0x7ffc0000
[ 1317.901734][T16837] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[ 1318.149393][T16837] usb 10-1: Using ep0 maxpacket: 32
[ 1318.283836][T16837] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1318.283922][T16837] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1318.284116][T16837] usb 10-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[ 1318.284191][T16837] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1318.951890][T16837] usb 10-1: config 0 descriptor??
[ 1319.472652][T16837] isku 0003:1E7D:319C.0001: ignoring exceeding usage max
[ 1319.621910][T16837] isku 0003:1E7D:319C.0001: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.9-1/input0
[ 1319.693168][T16837] usb 10-1: USB disconnect, device number 10
[ 1320.250823][T17187] fido_id[17187]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory
[ 1320.405074][T17032] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1320.407836][T17032] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1320.408106][T17032] bridge_slave_0: entered allmulticast mode
[ 1320.437156][T17032] bridge_slave_0: entered promiscuous mode
[ 1320.456001][T17032] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1320.456448][T17032] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1320.456590][T17032] bridge_slave_1: entered allmulticast mode
[ 1320.491512][T17032] bridge_slave_1: entered promiscuous mode
[ 1322.484136][T17032] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1322.651972][T17032] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1322.762269][ T4897] hsr_slave_0: left promiscuous mode
[ 1322.799109][ T4897] hsr_slave_1: left promiscuous mode
[ 1322.800177][ T4897] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1322.800207][ T4897] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1322.860090][ T4897] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1322.860123][ T4897] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1322.933071][   T37] kauditd_printk_skb: 65 callbacks suppressed
[ 1322.933089][   T37] audit: type=1326 audit(1757471611.706:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f387b7bec67 code=0x7ffc0000
[ 1322.933134][   T37] audit: type=1326 audit(1757471611.706:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f387b7beba9 code=0x7ffc0000
[ 1322.934310][   T37] audit: type=1326 audit(1757471611.706:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f387b7beba9 code=0x7ffc0000
[ 1322.934358][   T37] audit: type=1326 audit(1757471611.706:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f387b77615d code=0x7ffc0000
[ 1322.934721][   T37] audit: type=1326 audit(1757471611.706:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f387b7f3409 code=0x7ffc0000
[ 1322.935679][   T37] audit: type=1326 audit(1757471611.706:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f387b7758d7 code=0x7ffc0000
[ 1322.935722][   T37] audit: type=1326 audit(1757471611.706:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f387b7761c7 code=0x7ffc0000
[ 1322.936272][   T37] audit: type=1326 audit(1757471611.706:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f387b7beba9 code=0x7ffc0000
[ 1322.936318][   T37] audit: type=1326 audit(1757471611.706:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f387b775936 code=0x7ffc0000
[ 1322.936627][   T37] audit: type=1326 audit(1757471611.706:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17204 comm="syz.3.3011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f387b7beba9 code=0x7ffc0000
[ 1323.139119][ T8670] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 1323.262377][ T4897] veth1_macvtap: left promiscuous mode
[ 1323.262517][ T4897] veth0_macvtap: left promiscuous mode
[ 1323.262815][ T4897] veth1_vlan: left promiscuous mode
[ 1323.263030][ T4897] veth0_vlan: left promiscuous mode
[ 1323.291518][ T8670] usb 10-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[ 1323.291550][ T8670] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1323.302628][ T8670] usb 10-1: config 0 descriptor??
[ 1323.320683][ T8670] gspca_main: spca508-2.14.0 probing 8086:0110
[ 1323.527623][ T8670] gspca_spca508: reg_read err -32
[ 1323.535374][ T8670] gspca_spca508: reg_read err -32
[ 1323.538990][ T8670] gspca_spca508: reg_read err -32
[ 1323.541742][ T8670] gspca_spca508: reg_read err -32
[ 1323.548278][ T8670] gspca_spca508: reg_read err -32
[ 1323.755438][ T8670] gspca_spca508: reg write: error -71
[ 1323.755530][ T8670] spca508 10-1:0.0: probe with driver spca508 failed with error -71
[ 1323.771398][ T8670] usb 10-1: USB disconnect, device number 11
[ 1324.341168][ T3641] smc: removing ib device syz1
[ 1327.558904][T16837] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[ 1327.729083][T16837] usb 4-1: Using ep0 maxpacket: 16
[ 1327.782767][T16837] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1327.782811][T16837] usb 4-1: New USB device found, idVendor=0dfc, idProduct=0101, bcdDevice= 0.00
[ 1327.782835][T16837] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1327.788342][T16837] usb 4-1: config 0 descriptor??
[ 1328.267511][T16837] hid (null): unknown global tag 0xc
[ 1328.295925][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.295973][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.296001][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.296030][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.296058][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.296087][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.296115][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.296143][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.296171][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.296199][T16837] hid-generic 0003:0DFC:0101.0002: unknown main item tag 0x0
[ 1328.397303][T16837] hid-generic 0003:0DFC:0101.0002: unknown global tag 0xc
[ 1328.397430][T16837] hid-generic 0003:0DFC:0101.0002: item 0 1 1 12 parsing failed
[ 1328.398297][T16837] hid-generic 0003:0DFC:0101.0002: probe with driver hid-generic failed with error -22
[ 1328.472574][ T5996] usb 4-1: USB disconnect, device number 22
[ 1329.212794][T17244] netlink: 296 bytes leftover after parsing attributes in process `syz.3.3025'.
[ 1329.503624][T17245] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1332.351057][  T988] ==================================================================
[ 1332.351078][  T988] BUG: KASAN: slab-use-after-free in __ethtool_get_link_ksettings+0x6e/0x190
[ 1332.351114][  T988] Read of size 8 at addr ffff888060b522e8 by task kworker/0:2/988
[ 1332.351129][  T988] 
[ 1332.351157][  T988] CPU: 0 UID: 0 PID: 988 Comm: kworker/0:2 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1332.351179][  T988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1332.351191][  T988] Workqueue: events smc_ib_port_event_work
[ 1332.351220][  T988] Call Trace:
[ 1332.351228][  T988]  <TASK>
[ 1332.351235][  T988]  dump_stack_lvl+0x189/0x250
[ 1332.351261][  T988]  ? rcu_is_watching+0x15/0xb0
[ 1332.351284][  T988]  ? __kasan_check_byte+0x12/0x40
[ 1332.351308][  T988]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1332.351330][  T988]  ? rcu_is_watching+0x15/0xb0
[ 1332.351355][  T988]  ? lock_release+0x4b/0x3e0
[ 1332.351380][  T988]  ? __virt_addr_valid+0x1c8/0x5c0
[ 1332.351396][  T988]  ? __virt_addr_valid+0x4a5/0x5c0
[ 1332.351412][  T988]  print_report+0xca/0x240
[ 1332.351432][  T988]  ? __ethtool_get_link_ksettings+0x6e/0x190
[ 1332.351456][  T988]  kasan_report+0x118/0x150
[ 1332.351477][  T988]  ? __ethtool_get_link_ksettings+0x6e/0x190
[ 1332.351503][  T988]  __ethtool_get_link_ksettings+0x6e/0x190
[ 1332.351525][  T988]  ib_get_eth_speed+0x15e/0x7b0
[ 1332.351542][  T988]  ? __pfx_ib_get_eth_speed+0x10/0x10
[ 1332.351555][  T988]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1332.351582][  T988]  ? rxe_query_port+0x7e/0x3b0
[ 1332.351602][  T988]  rxe_query_port+0x93/0x3b0
[ 1332.351623][  T988]  ib_query_port+0x170/0x830
[ 1332.351640][  T988]  smc_ib_port_event_work+0x16f/0x940
[ 1332.351659][  T988]  ? process_scheduled_works+0x9ef/0x17b0
[ 1332.351680][  T988]  ? process_scheduled_works+0x9ef/0x17b0
[ 1332.351698][  T988]  process_scheduled_works+0xade/0x17b0
[ 1332.351724][  T988]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1332.351747][  T988]  worker_thread+0x8a0/0xda0
[ 1332.351774][  T988]  kthread+0x70e/0x8a0
[ 1332.351795][  T988]  ? __pfx_worker_thread+0x10/0x10
[ 1332.351812][  T988]  ? __pfx_kthread+0x10/0x10
[ 1332.351834][  T988]  ? __pfx_kthread+0x10/0x10
[ 1332.351853][  T988]  ret_from_fork+0x3f9/0x770
[ 1332.351873][  T988]  ? __pfx_ret_from_fork+0x10/0x10
[ 1332.351892][  T988]  ? __switch_to_asm+0x39/0x70
[ 1332.351905][  T988]  ? __switch_to_asm+0x33/0x70
[ 1332.351917][  T988]  ? __pfx_kthread+0x10/0x10
[ 1332.351937][  T988]  ret_from_fork_asm+0x1a/0x30
[ 1332.351956][  T988]  </TASK>
[ 1332.351961][  T988] 
[ 1332.351964][  T988] Allocated by task 7700:
[ 1332.351971][  T988]  kasan_save_track+0x3e/0x80
[ 1332.351986][  T988]  __kasan_kmalloc+0x93/0xb0
[ 1332.352007][  T988]  __kvmalloc_node_noprof+0x28d/0x550
[ 1332.352026][  T988]  alloc_netdev_mqs+0xa3/0x11c0
[ 1332.352040][  T988]  rtnl_create_link+0x31f/0xd10
[ 1332.352053][  T988]  rtnl_newlink_create+0x25c/0xb00
[ 1332.352071][  T988]  rtnl_newlink+0x16d6/0x1c70
[ 1332.352087][  T988]  rtnetlink_rcv_msg+0x7cf/0xb70
[ 1332.352103][  T988]  netlink_rcv_skb+0x205/0x470
[ 1332.352119][  T988]  netlink_unicast+0x843/0xa10
[ 1332.352134][  T988]  netlink_sendmsg+0x805/0xb30
[ 1332.352150][  T988]  __sock_sendmsg+0x219/0x270
[ 1332.352165][  T988]  __sys_sendto+0x3c7/0x520
[ 1332.352182][  T988]  __x64_sys_sendto+0xde/0x100
[ 1332.352199][  T988]  do_syscall_64+0xfa/0x3b0
[ 1332.352210][  T988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1332.352224][  T988] 
[ 1332.352227][  T988] Freed by task 4897:
[ 1332.352233][  T988]  kasan_save_track+0x3e/0x80
[ 1332.352248][  T988]  kasan_save_free_info+0x46/0x50
[ 1332.352259][  T988]  __kasan_slab_free+0x5b/0x80
[ 1332.352274][  T988]  kfree+0x195/0x550
[ 1332.352288][  T988]  device_release+0x99/0x1c0
[ 1332.352304][  T988]  kobject_put+0x22b/0x480
[ 1332.352316][  T988]  netdev_run_todo+0xd2e/0xea0
[ 1332.352328][  T988]  default_device_exit_batch+0x81e/0x890
[ 1332.352345][  T988]  ops_undo_list+0x525/0x990
[ 1332.352362][  T988]  cleanup_net+0x4cb/0x800
[ 1332.352379][  T988]  process_scheduled_works+0xade/0x17b0
[ 1332.352394][  T988]  worker_thread+0x8a0/0xda0
[ 1332.352409][  T988]  kthread+0x70e/0x8a0
[ 1332.352425][  T988]  ret_from_fork+0x3f9/0x770
[ 1332.352440][  T988]  ret_from_fork_asm+0x1a/0x30
[ 1332.352452][  T988] 
[ 1332.352455][  T988] The buggy address belongs to the object at ffff888060b52000
[ 1332.352455][  T988]  which belongs to the cache kmalloc-cg-4k of size 4096
[ 1332.352467][  T988] The buggy address is located 744 bytes inside of
[ 1332.352467][  T988]  freed 4096-byte region [ffff888060b52000, ffff888060b53000)
[ 1332.352483][  T988] 
[ 1332.352486][  T988] The buggy address belongs to the physical page:
[ 1332.352502][  T988] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x60b50
[ 1332.352518][  T988] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1332.352530][  T988] memcg:ffff888030843d81
[ 1332.352537][  T988] anon flags: 0x80000000000040(head|node=0|zone=1)
[ 1332.352552][  T988] page_type: f5(slab)
[ 1332.352565][  T988] raw: 0080000000000040 ffff88801984b500 0000000000000000 0000000000000001
[ 1332.352577][  T988] raw: 0000000000000000 0000000000040004 00000000f5000000 ffff888030843d81
[ 1332.352589][  T988] head: 0080000000000040 ffff88801984b500 0000000000000000 0000000000000001
[ 1332.352601][  T988] head: 0000000000000000 0000000000040004 00000000f5000000 ffff888030843d81
[ 1332.352613][  T988] head: 0080000000000003 ffffea000182d401 00000000ffffffff 00000000ffffffff
[ 1332.352624][  T988] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000008
[ 1332.352631][  T988] page dumped because: kasan: bad access detected
[ 1332.352642][  T988] page_owner tracks the page as allocated
[ 1332.352647][  T988] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5214, tgid 5214 (udevd), ts 471574229880, free_ts 469482028832
[ 1332.352672][  T988]  post_alloc_hook+0x240/0x2a0
[ 1332.352691][  T988]  get_page_from_freelist+0x2119/0x21b0
[ 1332.352703][  T988]  __alloc_frozen_pages_noprof+0x181/0x370
[ 1332.352715][  T988]  alloc_pages_mpol+0xd1/0x380
[ 1332.352731][  T988]  allocate_slab+0x8a/0x370
[ 1332.352743][  T988]  ___slab_alloc+0x8d1/0xdc0
[ 1332.352761][  T988]  __kvmalloc_node_noprof+0x1d6/0x550
[ 1332.352778][  T988]  seq_read_iter+0x1fe/0xe10
[ 1332.352791][  T988]  vfs_read+0x560/0xa30
[ 1332.352805][  T988]  ksys_read+0x14b/0x260
[ 1332.352819][  T988]  do_syscall_64+0xfa/0x3b0
[ 1332.352829][  T988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1332.352842][  T988] page last free pid 7841 tgid 7838 stack trace:
[ 1332.352850][  T988]  __free_frozen_pages+0xb59/0xce0
[ 1332.352868][  T988]  __put_partials+0x159/0x1a0
[ 1332.352878][  T988]  __slab_free+0x2b3/0x390
[ 1332.352890][  T988]  qlist_free_all+0x97/0x140
[ 1332.352903][  T988]  kasan_quarantine_reduce+0x148/0x160
[ 1332.352917][  T988]  __kasan_slab_alloc+0x22/0x80
[ 1332.352932][  T988]  kmem_cache_alloc_noprof+0x143/0x310
[ 1332.352948][  T988]  security_inode_alloc+0x39/0x330
[ 1332.352959][  T988]  inode_init_always_gfp+0x9bf/0xd70
[ 1332.352976][  T988]  alloc_inode+0x82/0x1b0
[ 1332.352991][  T988]  __sock_create+0x12d/0x9f0
[ 1332.353010][  T988]  __sys_socket+0xd7/0x1b0
[ 1332.353025][  T988]  __x64_sys_socket+0x7a/0x90
[ 1332.353040][  T988]  do_syscall_64+0xfa/0x3b0
[ 1332.353051][  T988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1332.353063][  T988] 
[ 1332.353067][  T988] Memory state around the buggy address:
[ 1332.353074][  T988]  ffff888060b52180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1332.353084][  T988]  ffff888060b52200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1332.353093][  T988] >ffff888060b52280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1332.353100][  T988]                                                           ^
[ 1332.353108][  T988]  ffff888060b52300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1332.353117][  T988]  ffff888060b52380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1332.353124][  T988] ==================================================================
[ 1332.353144][  T988] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1332.353157][  T988] CPU: 0 UID: 0 PID: 988 Comm: kworker/0:2 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1332.353176][  T988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1332.353187][  T988] Workqueue: events smc_ib_port_event_work
[ 1332.353208][  T988] Call Trace:
[ 1332.353219][  T988]  <TASK>
[ 1332.353226][  T988]  dump_stack_lvl+0x99/0x250
[ 1332.353251][  T988]  ? __asan_memcpy+0x40/0x70
[ 1332.353270][  T988]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1332.353295][  T988]  ? __pfx__printk+0x10/0x10
[ 1332.353321][  T988]  vpanic+0x281/0x750
[ 1332.353347][  T988]  ? __pfx_vpanic+0x10/0x10
[ 1332.353371][  T988]  ? irqentry_exit+0x74/0x90
[ 1332.353403][  T988]  panic+0xb9/0xc0
[ 1332.353426][  T988]  ? __pfx_panic+0x10/0x10
[ 1332.353451][  T988]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[ 1332.353477][  T988]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1332.353506][  T988]  ? __ethtool_get_link_ksettings+0x6e/0x190
[ 1332.353533][  T988]  check_panic_on_warn+0x89/0xb0
[ 1332.353552][  T988]  ? __ethtool_get_link_ksettings+0x6e/0x190
[ 1332.353578][  T988]  end_report+0x78/0x160
[ 1332.353600][  T988]  kasan_report+0x129/0x150
[ 1332.353623][  T988]  ? __ethtool_get_link_ksettings+0x6e/0x190
[ 1332.353656][  T988]  __ethtool_get_link_ksettings+0x6e/0x190
[ 1332.353684][  T988]  ib_get_eth_speed+0x15e/0x7b0
[ 1332.353704][  T988]  ? __pfx_ib_get_eth_speed+0x10/0x10
[ 1332.353722][  T988]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1332.353755][  T988]  ? rxe_query_port+0x7e/0x3b0
[ 1332.353780][  T988]  rxe_query_port+0x93/0x3b0
[ 1332.353805][  T988]  ib_query_port+0x170/0x830
[ 1332.353827][  T988]  smc_ib_port_event_work+0x16f/0x940
[ 1332.353849][  T988]  ? process_scheduled_works+0x9ef/0x17b0
[ 1332.353875][  T988]  ? process_scheduled_works+0x9ef/0x17b0
[ 1332.353898][  T988]  process_scheduled_works+0xade/0x17b0
[ 1332.353934][  T988]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1332.353963][  T988]  worker_thread+0x8a0/0xda0
[ 1332.354002][  T988]  kthread+0x70e/0x8a0
[ 1332.354029][  T988]  ? __pfx_worker_thread+0x10/0x10
[ 1332.354050][  T988]  ? __pfx_kthread+0x10/0x10
[ 1332.354076][  T988]  ? __pfx_kthread+0x10/0x10
[ 1332.354101][  T988]  ret_from_fork+0x3f9/0x770
[ 1332.354124][  T988]  ? __pfx_ret_from_fork+0x10/0x10
[ 1332.354149][  T988]  ? __switch_to_asm+0x39/0x70
[ 1332.354165][  T988]  ? __switch_to_asm+0x33/0x70
[ 1332.354182][  T988]  ? __pfx_kthread+0x10/0x10
[ 1332.354207][  T988]  ret_from_fork_asm+0x1a/0x30
[ 1332.354231][  T988]  </TASK>
[ 1332.354728][  T988] Kernel Offset: disabled