last executing test programs:

14m2.38912245s ago: executing program 0 (id=1117):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7fffffffffffffff}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x44, r3, 0x7, 0x2, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '@{/.-\x00'}]}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x8040)

14m2.078056186s ago: executing program 0 (id=1121):
capset(&(0x7f0000000080)={0x20080522}, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000)=0x9, 0x4)
syz_emit_ethernet(0x681, &(0x7f00000010c0)={@local, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x673, 0x0, 0x0, 0x10, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x65f, 0x0, @gue={{0x2, 0x0, 0x3, 0xc, 0x100}, "bd138189b11da1b22021f596c3bb91216125d24dd98ca913d9c8dd98667c55ed05fd0cbd7d39fbd27422ba31f30e5c902ba3940f8ce4ddaa8710104712af0b7cc8b6174c3fde085bacc1077ef34afe27ed674c1db4e0f4ff06a8dd940956475750d0b7cda62d43232839b7826f2f786f02e449cb079b6b6a47ef232400cb2fa0e90a6ccde58afcc3ab15a43a3419f40a3d9f73b8560dd50fe1a1165fb9ccf16d830f152939fd76159eb6636277200bd6fb203b0be5875143ddb0b647269a7b3babcfbeee3c9c750304adb495b22dbf3999ab7121d4d0cc706a47c293a7cd0521e4826c713d11981bd56797b6930dd56beecb589111d104d62093087afa9a39335919e0aca7f018087aa9c797023b413045a136edbffda8874087add96b00030769c471d274418f5d7316bb5283c439944c8fecacef9dd67411e177b81ac13743fae58c8a1b820df920f17816be26a455c9881ef80ac2aa2121b211d64942a70565d0d70e4ea3fcf85e308b53e6cfa8312c69ec2ed5f4b45320c4abd7f60d215961eb30764cbc949ac946ed9d36d8a87a0582c6f66efd87ac4d080de522b2f22c65bd7978eaa499ff803383cef64476c1b16ce74cf733ac5dbb52752767602c0c215b9c6d029e7cf2d2ec5ab0ea336e61d82e3827ab6237faba099ec9249d73de2694795a9ff1bae2760d1946296f812ffa9267b203a471879c1bd14049e9387b629624f016f002f7593dce8fc69592e7672d0f5ee78f817012df029475b8851ac67167e62191db35f10baa23a895c8aaac41ed32041bf0210c71c6081eeeecaa4c244397b9f439f85de0635fd0d1700fe8538eadc5750be06d165ab4cbd4d362694a12cf15ab74cb431648d492da63092a371eb09af7b7d6c03bc8f2d03bbdad2e39276967d1c62975dbf69fe5529d4dfdf5fbbc5a29671babd98e004c415471311dce05d57658336e5587002f21d9e094b1db2e58dea4a0a75dc78d243e9cc791683a8e7a3b56d59772d4e556dfcf2ef16a26a4096e08c4e2f5105b7b1ad4586c44fb1db2a726e3105e44d3e319a7b17d9a4dd06874019b848d6cd2131add053e0fbba0b07ab9103d007e496155bf349b9ea109776834e0a80f84f42a41d13eb7251b4cfb5d93861dc774b5c234f11ec538933bb6ed01457db49f52f1adb7ac2c18b32a449c37c589a3275a16f459db76a5b65569bdca598c655b5ef90905c929c800359ddd7e858934ae5df00d041904a038d1cdbe32b552f0efb3d495e2cdcd9c0a92f12a552aec7c8e4cb70ad0093d1be517073d45d80aed9310611c959832897f163f6723870d24f04d27f1971efa4f16d8c77f9779e57f2bd043d7263fb16bc029d255d602d033b1ae5ccc6fc8317e9610832f8e779a434acbf27839301a21e072609d09d10acf9246332494d9da323a6a1a395474ec1e446786d5460c6ff7123875017481cf075c63178adc8e71255cb3d45dd87462b327e5a98d62e08f380ca4a7f45a06cd03c06f2899a3a96cef4dc7ae33574e8fbc909852351218b33f93332c71d0785296fbc8c173ddb13e94cbb6cfb524d3e05be471434f6fbc719a95cc466bb523975af521f48cf06cf73927e7c51e4d90648cc923157527cb8b6b865962a8f424c1fd1498499c408e0ebace0faee14c629cb384ac3aa4b51c2e81b29f0b4135a3b96e4c64e2d12c7eebc036448c4a48909e68d8bb21fb5401690c1f2c843c4bda902e53beaba6e15177cf1b5a21892b973d992582e91a7a9e0258e7fee14a58045290e22f1e90c5362515dd3b9cc8b9b5ab99d0df888895c6f7a93810e1736cc2c9731e748860b6dabe4a256b1619a11cdf979480a2b3516ef7acb3d6ee2a326fe737997ec579bc534bb6dd1512b0b83cfcde5e3b89fcf10fed680dff6fd41768acd48f73b1fae790b3010ffba72d0c5506bf690ee29f781bc1fa347c3189c662d35ea445c703830b5b13a40d347b4c5d331b4f1f63c5cba7921385224559a56a58d9418b580794ec031ea63d4764ee71d8604f064600496da7c2e512ace5a7d506c40d9aa0947f2bc1e4d61b5cd69ac20914cd466ee79b5646ecf6d4210acfd2c54cc5c9c9261458a1a1deecebb6f19dcb7fe128548d73aeed82610d8577b41813cbe5dd8db924b7b9e870ef3b272263f1e6a1434cb428f7c0a52c1ca2c04fc7d99be6f7d120a690150d82ff8f79ec5241f444624cafa067457e73f7c1ed1b714f9045f14d127c82ec8dbc36067ca2ccb231028cf6ffa9d6742b293eb31c81c30c8f25925f1ed6"}}}}}}, 0x0)
syz_emit_ethernet(0x7e, &(0x7f00000001c0)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, '\x00', 0x48, 0x11, 0x0, @local, @local, {[], {0x4e1d, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "dc521c259b538a2bf2a113dc2eeec0a072edf20b6d59027f", "d646c098cfc27eb8549d66e7b219c2c3b85e4508546e551af9e59631718ba089"}}}}}}}, 0x0)

14m1.815700296s ago: executing program 0 (id=1124):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xdddd1000, 0x10, 0x0, 0xb, 0x2, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4}, {0x2000, 0x0, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x14}, {0x3000, 0xd000, 0xe, 0x0, 0x0, 0x0, 0xff, 0x6, 0x0, 0x0, 0x4}, {0xeeee0000, 0x4, 0x9, 0x0, 0xff, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x2, 0x0, 0x0, 0x10, 0x80}, {0x2, 0x0, 0xa, 0x6, 0xa, 0x0, 0x2}, {0x8080000, 0x3000, 0x4, 0x0, 0x0, 0x1, 0x10, 0xa, 0x25, 0x0, 0x0, 0xff}, {0x8080000, 0x2}, {0xeeee0000}, 0xddf8ffdb, 0x0, 0x8080000, 0xf0, 0x8, 0xdd00, 0x4000, [0xe, 0x0, 0x1]})
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f00000000c0))

14m1.291701908s ago: executing program 0 (id=1132):
mkdir(&(0x7f0000000280)='./file0\x00', 0x324)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='devtmpfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

14m1.063170703s ago: executing program 0 (id=1136):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="00000c000000070001"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000180)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB=' '], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000001200)={0x84, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x20, 0x0, 0x4, {0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f00000006c0)={0x2c, &(0x7f00000004c0)=ANY=[@ANYBLOB="4018780000007be4ae"], 0x0, 0x0, 0x0, 0x0})

14m0.543509142s ago: executing program 0 (id=1144):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x2, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
write(r0, &(0x7f0000000380)="bf773af833620ee8", 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0xff, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

13m59.976880681s ago: executing program 32 (id=1144):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x2, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
write(r0, &(0x7f0000000380)="bf773af833620ee8", 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0xff, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

13m57.62489035s ago: executing program 3 (id=1170):
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b406800000000000000200004000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd96, &(0x7f0000000080)=""/201, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffd56, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000000)=0xf7)

13m57.017445905s ago: executing program 3 (id=1171):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000080)={0x0, 0x3, r0, 0x3, 0x80000})
r1 = semget(0x1, 0x5, 0x6b4)
semop(r1, &(0x7f0000000040)=[{0x1, 0x0, 0x1800}], 0x12)
semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000000440)=[0x8, 0x5])

13m56.757162201s ago: executing program 3 (id=1173):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000140), 0x10)
r1 = syz_io_uring_setup(0x835, &(0x7f00000000c0)={0x0, 0x679d, 0x400, 0x2000006, 0x3ce}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r0, 0x0, &(0x7f0000000240)="144024aeae8b2b5d63f7449a372e1406d4defe495b5744eed6801d1d51e1d3fcdcf25bdf4a5f2ef4b45d6898757795c858f0c3d4b26bd644", 0x38, 0x2400c0c7, 0x1})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

13m56.031962168s ago: executing program 3 (id=1179):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x260)

13m55.728007708s ago: executing program 3 (id=1180):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000180)={0x3, {{0xa, 0x4e20, 0xa3f, @mcast2, 0xbfd}}, {{0xa, 0x4e24, 0x20, @loopback, 0xfffffe01}}}, 0x108)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000200)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes)\x00'}, 0x58)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f0000000180)=""/214, &(0x7f0000000080)=0xd6)

13m52.230323807s ago: executing program 3 (id=1195):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)

13m51.728675635s ago: executing program 33 (id=1195):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)

10m54.147546122s ago: executing program 6 (id=2284):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0xfdef}], 0x1)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000001200)={0x0, 0xffffff1e, 0xffffffff, 0x4, 0x16, "001bf100eeff0000a2c2000100000000002000"})
r1 = syz_open_pts(r0, 0x101)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x15)
write$UHID_INPUT(r2, &(0x7f00000001c0)={0xa, {"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", 0xe00}}, 0xffffff5c)

10m53.747796611s ago: executing program 6 (id=2287):
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
setrlimit(0x40000000000008, &(0x7f0000000000))
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000001440)=""/4106, 0x100a}], 0x1, 0x300, 0x0)

10m53.399881188s ago: executing program 6 (id=2288):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000340)={@val={0xa}, @void, @eth={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x2d}, @local, @void, {@ipv6={0x86dd, @udp={0xd, 0x6, '\x00 \x00', 0xc, 0x11, 0xff, @empty, @empty, {[], {0x4f19, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x3, 0x5, 0x100, @void}}}}}}}}}, 0x46)

10m51.219947367s ago: executing program 6 (id=2296):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000500)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)

10m51.134146524s ago: executing program 6 (id=2297):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x101842, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040))
r1 = syz_io_uring_setup(0x66e, &(0x7f0000000240)={0x0, 0x0, 0x10100, 0x0, 0x2e9}, &(0x7f0000000380)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
socket(0x2, 0x80805, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)=""/4, 0x4}], 0x1})
io_uring_enter(r1, 0x567, 0x0, 0x0, 0x0, 0x0)

10m50.20791804s ago: executing program 6 (id=2307):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="18"], 0x830200)

10m49.478874781s ago: executing program 34 (id=2307):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="18"], 0x830200)

6m13.287901178s ago: executing program 5 (id=3761):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1100})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
dup3(r1, r0, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x11, r2, 0x10000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000001c0)={0x73622a85, 0x1200})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000480)={0x98, 0x0, &(0x7f0000000500)=[@acquire, @transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x1800, 0x5c, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0})

6m13.066017125s ago: executing program 5 (id=3763):
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f0000000140), 0x24, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x18e)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
rmdir(&(0x7f0000000380)='./file0/../file0\x00')
mknod(&(0x7f0000000240)='./file0\x00', 0x1000, 0xfffffff6)

6m12.70204903s ago: executing program 5 (id=3767):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_usb_connect(0x2, 0x6b, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000385352608f20446b76e8e01020301090259000104e9000909049300000e0100ff0a2403020005029a010209240603040000a5301124d500000000c65b0fa26410f3b600050924030506030501f909240702020005cbad0924"], &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x807bff)

6m9.654754293s ago: executing program 5 (id=3783):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x24020400)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000580)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1b5008, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
mount$bpf(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0)

6m9.343754053s ago: executing program 5 (id=3787):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x2b9, &(0x7f0000000740)={0x0, 0xb1e9, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
readv(r5, &(0x7f0000000000)=[{&(0x7f0000000100)=""/54, 0x36}], 0x1)

6m8.275768286s ago: executing program 5 (id=3791):
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xffff, 0x24, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xfb}}, 0x5}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac95ab194f93f8e795a9b29420fa62d", 0x11}], 0x1}}], 0x1, 0x4000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800008080b63428e900"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})

6m6.488001398s ago: executing program 35 (id=3791):
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xffff, 0x24, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xfb}}, 0x5}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac95ab194f93f8e795a9b29420fa62d", 0x11}], 0x1}}], 0x1, 0x4000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800008080b63428e900"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})

3m58.598564405s ago: executing program 4 (id=4231):
r0 = landlock_create_ruleset(&(0x7f00000001c0)={0xa019, 0x1, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
landlock_restrict_self(r3, 0x0)
r4 = getpgrp(0x0)
fcntl$setownex(r2, 0xf, &(0x7f0000000100)={0x2, r4})
sendmsg$unix(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="b5", 0x1}], 0x1}, 0x240408c1)

3m58.199763447s ago: executing program 4 (id=4234):
sched_setscheduler(0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = memfd_create(&(0x7f0000000a00)='/dev/loop#\x00\xee\b\xce\xde\xe9\x8d\xd2\xd59\xe8\xda\b\xd6\xb2\x15\xf6F\xb8\xb4{r.\xd2\xea\xec\xdbXe&J \xe9\x16\x82\xe8=\x83\x88sN\x83N`\xf9\xec\xe1<r\xf8\xd56\xaf~Nh%\x14\xf4\x14\xa3\x88i*rR\x17\x1a\vz\x950#(Wy\xc4x\x82u\xa3c\x9ez7\x88\x15\xdbz\xd1\\\xb5&\xd1\xca\xcb\xc5C\xa6,\xc7~\xa3\x86\xee=\xae}\xeb\xe8N\x11\xef\xb2\xceP\xff\xed\xee\xd7x6}-y #\x17\x8d[~\xe2\xab\xe6\xe3\x17\xd2/&\xfb\x13\xf3\xd9\xf4O\xf2\xdb\x9b\x03)\xae\x03\x00\x00\x00W\xb5;\xa6\xb4\'\'\x17\t\x00\x00\xaa\xe8\x81\xc0\x85\xd2\xfe\xcf\x9bn\xee*\x15\x97#\'\xc4\x06h\x1f@\a\n=7\xeb2\xaa\x0e\xee\x03\xd1\xd4\xc2yT\x8a0\x06=\xe7R\x85\x02\xf3\x15\x99z0]\xc4\x04\xb0\xea^\xd9\x1e\xbf\xb6\xe9\x8a\xfe\xd9G\x82\x93\xbf,J}\xed\x06\x18\x86WQn`\xf1\x9b\xb5\x96\xfe\xcf\xeb\x9f\x87:me\x02\x90\xa2\x13O\x9a\xd6\xd0\x12\xf2$7\xb4\x8f\xfaal\xb8\xaaV>\xb16\xfb*\xf5\xd5\\\xa7\xebe\xbe\x9d\xd7\xf5\xb9<\xb2\xc4\xf9:\xef\xc0g\xc3\xb5\x7f\xc0\xcck.5=\xcc\x10Y\xad^*\x10\x00\x00\x00\x00\x00\x00\x00\x0e%\x84\x95bXy\x81;o\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa9{b\xab\x91\x88\xba\xa5J\xfd\xd2\x96R\x06\xeeP\x0f\xb0\xad_\x0e\xf6\xe7k\xbf\x93)\x02yX\x91\xc0\x8c\xeb\xd9\xda=\\\xa0\xdeke\xb6\xef\x10\xd2\xbd9\x87<[BKq\t*t\x9e\xf9\xa6\xb5\xda\tb\xcc%?\x14Y\x9b\x18nx\x19\x11\xb7\x9d~\xc5{O\xd0S\xbdi\xf8\"P>4\x05E|h?\x0f\xf5\xf8\x8c\xce\xebXN\xb7\xc0F\xbao\xf7\xab\xedO\x96\xa1(\n\x1e\xf9\xbe/.\xe2^\xb0\xb6{\x1fdX\x100v\xab\xce\x05\x00i\x85\xf63\x05\b\xd8\xeb\xdf\x00\x00]N\xe1\x9di&\r\xd2pw\x85\vQ \x82v\x8a7\xb6\xf8\x1c\x8c\xf0\xaf\xfa\x17\xbeD\a\vM\x87\xc0Q\x94\xd4\xd3\xc7I@Z\t\xa9\xf0\x9d4c\xb1^\xeeF\x96\xa1{OV\xe0\x1e#\xb3w\xc7\x87\xdd\'c\xcf.\x04\x8b\x9e\xef-b\xbe\x17T\xee\xe1\xf7\'+s\x15\xeb\xb1D\x86\x93\x1e\xf9\xf1L\x0f\x9b7/\xd9D\x91\xc47hI\xbc\x13.@R\x8b\xe2x\x97:A\xf1\xb6\xe2\xc8\xb2\x9bD\xb2P\xdc\xd4\xb1\xa50\x9f\x83~)\x9b7-\x80&r\xbc\xf6<p7\xaaS7\xb4\xcdtd\x81V|\xc6\x99\x81\x80\'\xf8\xb5\xe0{\xb0\x04hVL/\xff\x97\td\xd5\xddc\xc0i5\x9c\x06\x88\x8cb\xfb2\xbf\xa3\xb4\xceF\xd9\xc8\xdf\xfcw\"\xdcv\x8d\x83\x91\xacn[a~\xc8\x9a1\x04\x18\xd2@O\xf3q\xb3\xadj\xb1\x01\xfa\xc4i\'\xa0\x86\x12\xcd3l\x98v;@\x95\xa5\xa8/7\x03\xb2\x88\xa7', 0x2)
fallocate(r2, 0x0, 0x0, 0x200401)
fallocate(r2, 0x0, 0x0, 0x200401)

3m53.817990779s ago: executing program 4 (id=4252):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x200, 0xfffffffd}}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x3, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000140)={0x42, 0x2, 0x1}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f0000000380)={&(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4000884}, 0x4)

3m53.59293451s ago: executing program 4 (id=4253):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

3m53.097539189s ago: executing program 4 (id=4255):
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000540)=""/141, 0x8d}], 0x1, 0x800000b2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffffef}, 0x27)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10)
r3 = openat$cgroup_subtree(r1, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)
write$cgroup_subtree(r3, &(0x7f0000000500)=ANY=[@ANYBLOB='+cpu'], 0x5)

3m48.171951826s ago: executing program 4 (id=4264):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = fanotify_init(0x200, 0x0)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000040)={0x201, 0xa, 0x1, 0x0, 0x1})
r2 = fanotify_init(0x200, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r2, 0x455, 0x8000003, r3, 0x0)
fanotify_mark(r0, 0x201, 0x800003f, r0, 0x0)
fanotify_mark(r0, 0x80, 0x800, 0xffffffffffffffff, 0x0)

3m47.049799255s ago: executing program 36 (id=4264):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = fanotify_init(0x200, 0x0)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000040)={0x201, 0xa, 0x1, 0x0, 0x1})
r2 = fanotify_init(0x200, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r2, 0x455, 0x8000003, r3, 0x0)
fanotify_mark(r0, 0x201, 0x800003f, r0, 0x0)
fanotify_mark(r0, 0x80, 0x800, 0xffffffffffffffff, 0x0)

15.48370241s ago: executing program 2 (id=4874):
socket$rxrpc(0x21, 0x2, 0x2)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
wait4(0x0, &(0x7f0000000140), 0x80000000, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)

14.566421635s ago: executing program 7 (id=4877):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)={0x48, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x48}}, 0x0)

14.336903816s ago: executing program 2 (id=4879):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = syz_io_uring_setup(0x497, &(0x7f0000002180)={0x0, 0xd2f6, 0x100, 0x4, 0x1b0}, &(0x7f00000000c0)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x2, r2, 0x0, 0x0, 0x0, 0x200, 0x1, {0x1}})
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0)

14.289078858s ago: executing program 8 (id=4880):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x4c, 0x0, &(0x7f0000000500)=[@transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})

13.197034771s ago: executing program 7 (id=4881):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x1000000000, 0x7, 0xfa11, 0xffffffff}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fc01000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000b93760000000000000000000000000000000000000000000200000000000000010000000000000044000500ac141400000000000000000000000000000000003c00000000000000000000000000000000000000000000000000000001"], 0xfc}, 0x1, 0x0, 0x0, 0x24008040}, 0x20040000)
sendto$inet6(r2, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x1, @local, 0x9}, 0x1c)

12.694899489s ago: executing program 8 (id=4883):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000000)="0000000000000002", 0x8)
sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000001f00)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}], 0x1, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000280)=0x8)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = dup2(r0, r3)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)
sendto$inet6(r3, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e23, 0x10001, @private2={0xfc, 0x2, '\x00', 0x1}, 0x81}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f00000002c0)=ANY=[@ANYRES32=r2], 0x9)

11.147982529s ago: executing program 8 (id=4887):
socket$inet6_mptcp(0xa, 0x1, 0x106)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f000001aa40)=""/102400, 0x19000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
r1 = add_key$user(&(0x7f0000000040), &(0x7f0000000180)={'syz', 0x0}, &(0x7f0000000080)='\x00', 0x1, 0xfffffffffffffffb)
pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r1, r2, 0x100000000000f7)
keyctl$revoke(0x3, r1)

10.631161408s ago: executing program 9 (id=4888):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = dup(r1)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010, 0x1, 0x39d}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)

9.320218392s ago: executing program 9 (id=4890):
r0 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x0)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f00000002c0)={0x1, 0x68}, 0x8)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
sendto$inet6(r0, &(0x7f0000000140)="bde0f0ed742af5f427fff43e260343942cb5e3bcc1b2d74159ea7d3c1a7155f7710e15062f54b2af8a857f7ff4f9f52292bf500a121f47d39c6b", 0x3a, 0x4, &(0x7f00000000c0)={0xa, 0x4e20, 0x8, @loopback, 0x1}, 0x1c)
close(r0)

9.183710067s ago: executing program 1 (id=4891):
r0 = socket$rxrpc(0x21, 0x2, 0xa)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bind$rxrpc(r0, &(0x7f0000000000)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x100, @empty, 0xe}}, 0x24)
r1 = syz_io_uring_setup(0x10a, &(0x7f0000000140)={0x0, 0x5883, 0x0, 0x0, 0xfffffdfc}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

8.630563715s ago: executing program 9 (id=4892):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000300), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000040)=0x1800, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_LINK_GET(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2040}, 0xc, &(0x7f0000000180)={&(0x7f0000001b00)={0x2c8, 0x0, 0x200, 0x70bd2d, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x2b4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8}, @TIPC_NLA_NODE_ID={0x2a8, 0x3, "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"}]}]}, 0x2c8}, 0x1, 0x0, 0x0, 0x20004005}, 0x2000c800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x5c, r4, 0x917, 0x1000, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @loopback={0xffff0000}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x44}, 0x0)

8.316031921s ago: executing program 2 (id=4893):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x1b, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a0300000000f5ffffff00010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)

8.042739884s ago: executing program 1 (id=4894):
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x80000)
socket$qrtr(0x2a, 0x2, 0x0)
syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x800, 0x3, 0x285}, 0x0, 0x0)
syz_io_uring_setup(0x111, &(0x7f0000000b00)={0x0, 0x35da, 0x2, 0x7, 0x367}, 0x0, 0x0)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@bridge_delneigh={0x28, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2, 0x0, 0x2}, [@NDA_LLADDR={0xa, 0x2, @remote}]}, 0x28}}, 0x4000800)

7.757940442s ago: executing program 7 (id=4895):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
get_mempolicy(0x0, 0x0, 0x7f, &(0x7f000022d000/0x3000)=nil, 0x4)

7.745816474s ago: executing program 9 (id=4896):
mkdir(&(0x7f0000000000)='./file0\x00', 0x6)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x81, 0x0, 0x0, {0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r2, 0xffffffffffffffff, 0x0)

6.652556811s ago: executing program 8 (id=4897):
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x90, 0x0, 0xfffffffffffffff9, {0x6, 0x80000000000, 0x9, 0x3, 0x2, 0xe2, {0x2, 0x63, 0x5, 0x8005, 0xf0000, 0x7, 0xffffffff, 0x0, 0x2, 0x4000, 0x2, 0x0, 0x0, 0x7, 0xffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$mouse(&(0x7f0000000180), 0x0, 0x2)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x822b01)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x918)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$alg(0x26, 0x5, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x181001, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x8}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x2}, 0x0, 0x0)

5.673336499s ago: executing program 2 (id=4898):
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0x13}], 0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r1, &(0x7f0000003800)={0x2020}, 0x2020)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f00000001c0)={0x24, 0x14, 0x105, 0x70bc2a, 0x2ddfdb7b, {0x11}, [@INET_DIAG_REQ_BYTECODE={0xd, 0x1, "053e3e71ed07348ace"}]}, 0x24}, 0x1, 0x0, 0x0, 0x8086}, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

5.672545635s ago: executing program 7 (id=4899):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x103000, 0x8d)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
socket(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0xffffffffffffffb9}, 0x48)

5.549862292s ago: executing program 9 (id=4900):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100", @ANYRES32=0x0, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xc, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="18080000e9ff0000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b70300002bb91a008500000008000000bc0900000000000045080100002000009500000000000000b7020000000000007b9af8ff00000000b5090000000000007baaf0ff00000000bf2700000000000007080000fffdffffbfa400000000000007040000f0ffffffc40200000800000018220000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7050000080000004608efff76000000bf9800000000000056090000000000008500000000020800b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

4.509852717s ago: executing program 9 (id=4901):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000300)={0x0, 0xaee2, 0x0, 0x5, 0xbfdffffc}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
mkdir(0x0, 0xc4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, &(0x7f0000000040)='./file0\x00', 0x50, 0x183000, 0x12345})
ioctl$RNDADDTOENTCNT(0xffffffffffffffff, 0x40045201, 0x0)
io_uring_enter(r2, 0x47f6, 0x40, 0x2, 0x0, 0x0)

4.39194132s ago: executing program 1 (id=4902):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x3, {0x42, 0x2, 0xffffffff}}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r2, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x4, 0x4}}, 0x10)
bind$tipc(r2, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r3, &(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
bind$tipc(r2, 0x0, 0x0)

4.312288875s ago: executing program 7 (id=4903):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x7}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00'}, 0x94)

3.732869584s ago: executing program 2 (id=4904):
socket$nl_rdma(0x10, 0x3, 0x14)
socket(0x40000000015, 0x5, 0x0)
socket(0x2b, 0x1, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r0 = syz_io_uring_setup(0x1458, &(0x7f00000004c0)={0x0, 0x3, 0x10180, 0x2000, 0x3ae}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000002c0)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='9'], 0x38}}, 0x4000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x9, 0x4004, @fd, 0x7925, 0x0, 0x0, 0x18, 0x1, {0x3}})
io_uring_enter(r0, 0x2d3e, 0xfffffffd, 0x0, 0x0, 0x0)

3.349849008s ago: executing program 8 (id=4905):
socket(0x1d, 0x1, 0x10a0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@xino_auto}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x17e)
getdents64(r0, &(0x7f0000000200)=""/179, 0xb3)

2.054423933s ago: executing program 2 (id=4906):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x1000000000, 0x7, 0xfa11, 0xffffffff}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fc01000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000b93760000000000000000000000000000000000000000000200000000000000010000000000000044000500ac141400000000000000000000000000000000003c00000000000000000000000000000000000000000000000000000001"], 0xfc}, 0x1, 0x0, 0x0, 0x24008040}, 0x20040000)
sendto$inet6(r2, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x1, @local, 0x9}, 0x1c)

2.053978432s ago: executing program 7 (id=4907):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x10001, 0x1000000, 0x0, 0xffffffff})
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'veth1_to_hsr\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000580)={0x0, 0x58, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="330300000000000000001c000000200001801400020064766d7270310000000000000000000008000100", @ANYRES32=r4], 0x34}}, 0x0)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xe, 0x0, 0x700, 0x0, [@sadb_key={0x4, 0x9, 0xa8, 0x0, "01d78771b90bd8a3b4914783c58777003d5b9538a9"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x70}, 0x1, 0x7}, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0xdbac)

2.052785615s ago: executing program 1 (id=4916):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, 0x0, &(0x7f00000001c0)}, 0x20)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000540)={r3, &(0x7f00000001c0), &(0x7f0000000340)=@udp6=r5}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r4, r1, 0x25, 0x2, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x37, &(0x7f00000007c0)=ANY=[], 0x0)

1.966022504s ago: executing program 8 (id=4908):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x18)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000b80)=[{0x6}]}, 0x10)
bind$bt_hci(r0, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r3, 0x400448e3, 0x0)
close(r3)

1.630355892s ago: executing program 1 (id=4909):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
rt_sigpending(0x0, 0x0)

0s ago: executing program 1 (id=4910):
r0 = syz_io_uring_setup(0x237, &(0x7f0000000480)={0x0, 0x8901, 0x400, 0x0, 0x2cf}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000600)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
sendmsg$rds(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440), 0x0, 0x0, 0x0, 0x20000800}, 0x4000008)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}, 0x5, 0x12, 0x0, 0x3}, 0x9c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x38, 0x0, @fd=r0, 0x100000001, 0x0, 0x0, 0x2, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r0, 0x18, &(0x7f0000000280)={0x10000, 0xffffffffffffffff, 0x1, {0x7, 0xa44}, 0x80}, 0x1)

kernel console output (not intermixed with test programs):

ap = 124996kB
[  698.923874][T15519] 2097051 pages RAM
[  698.923891][T15519] 0 pages HighMem/MovableOnly
[  698.923900][T15519] 422079 pages reserved
[  698.923909][T15519] 0 pages cma reserved
[  699.826885][    C1] vkms_vblank_simulate: vblank timer overrun
[  700.416500][    C1] vkms_vblank_simulate: vblank timer overrun
[  700.417483][T15540] : Can't lookup blockdev
[  700.833773][T15545] netlink: 'syz.1.3475': attribute type 3 has an invalid length.
[  700.834107][T15545] netlink: 'syz.1.3475': attribute type 3 has an invalid length.
[  701.008388][    T9] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  701.166077][    T9] usb 6-1: Using ep0 maxpacket: 32
[  701.171853][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  701.171885][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  701.171926][    T9] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  701.171949][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  701.224124][    T9] usb 6-1: config 0 descriptor??
[  701.249985][    T9] hub 6-1:0.0: USB hub found
[  701.269193][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  701.498476][    T9] hub 6-1:0.0: 1 port detected
[  701.728797][    C1] vkms_vblank_simulate: vblank timer overrun
[  702.109005][    T9] hub 6-1:0.0: activate --> -90
[  702.526578][    T9] usb 6-1-port1: cannot disable (err = -71)
[  702.526930][    T9] hub 6-1:0.0: hub_ext_port_status failed (err = -71)
[  702.527268][    T9] usb 6-1-port1: cannot disable (err = -71)
[  702.586555][ T5932] usb 6-1: Failed to suspend device, error -71
[  702.603494][ T5932] usb 6-1: USB disconnect, device number 29
[  704.103070][T15578] netlink: 'syz.5.3488': attribute type 21 has an invalid length.
[  704.103189][T15578] netlink: 156 bytes leftover after parsing attributes in process `syz.5.3488'.
[  704.182641][T15581] netlink: 'syz.5.3488': attribute type 21 has an invalid length.
[  704.182664][T15581] netlink: 6 bytes leftover after parsing attributes in process `syz.5.3488'.
[  705.304607][T15598] Bluetooth: hci0: unsupported parameter 256
[  705.304629][T15598] Bluetooth: hci0: unsupported parameter 108
[  705.304643][T15598] Bluetooth: hci0: unsupported parameter 256
[  705.304657][T15598] Bluetooth: hci0: unsupported parameter 108
[  705.854543][T15606] batman_adv: batadv0: Adding interface: dummy0
[  705.854562][T15606] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  705.854599][T15606] batman_adv: batadv0: Interface activated: dummy0
[  705.945461][T15606] batadv0: mtu less than device minimum
[  705.957373][T15606] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  705.964438][T15607] netlink: 'syz.7.3498': attribute type 10 has an invalid length.
[  705.967457][T15606] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  705.974012][T15606] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  705.979827][T15606] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  705.985609][T15606] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  705.991511][T15606] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  705.997150][T15606] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  706.002848][T15606] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  706.330879][T15607] net_ratelimit: 11 callbacks suppressed
[  706.330900][T15607] batman_adv: batadv0: Local translation table size (108) exceeds maximum packet size (-320); Ignoring new local tt entry: aa:aa:aa:aa:aa:17
[  706.337749][T15607] 8021q: adding VLAN 0 to HW filter on device batadv0
[  706.387651][T15607] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  706.648603][    C1] vkms_vblank_simulate: vblank timer overrun
[  706.766677][T15612] netlink: 'syz.4.3499': attribute type 2 has an invalid length.
[  708.421556][   T38] audit: type=1804 audit(1757941011.460:367): pid=15646 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.5.3510" name="/newroot/448/file0" dev="tmpfs" ino=2461 res=1 errno=0
[  708.566117][ T1084] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  708.749065][ T1084] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  708.749146][ T1084] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  708.749290][ T1084] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  708.749367][ T1084] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  708.837256][ T1084] usb 8-1: config 0 descriptor??
[  709.659887][T15656] loop6: detected capacity change from 0 to 7
[  709.698456][T15656] Dev loop6: unable to read RDB block 7
[  709.698505][T15656]  loop6: unable to read partition table
[  709.698881][T15656] loop6: partition table beyond EOD, truncated
[  709.698901][T15656] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  710.120189][ T1084] uclogic 0003:256C:006D.002D: failed retrieving string descriptor #100: -71
[  710.120258][ T1084] uclogic 0003:256C:006D.002D: failed retrieving pen parameters: -71
[  710.120279][ T1084] uclogic 0003:256C:006D.002D: failed probing pen v1 parameters: -71
[  710.120347][ T1084] uclogic 0003:256C:006D.002D: failed probing parameters: -71
[  710.120471][ T1084] uclogic 0003:256C:006D.002D: probe with driver uclogic failed with error -71
[  710.190259][ T1084] usb 8-1: USB disconnect, device number 18
[  711.248441][ T6080] usb 6-1: new low-speed USB device number 30 using dummy_hcd
[  711.404797][ T6080] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  711.404830][ T6080] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  711.459256][ T6080] usb 6-1: config 0 descriptor??
[  713.111636][ T6080] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  713.111672][ T6080] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  713.111967][ T6080] asix 6-1:0.0: probe with driver asix failed with error -71
[  713.164409][ T6080] usb 6-1: USB disconnect, device number 30
[  713.984989][T15703] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  714.515781][T15719] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3535'.
[  714.794914][T15725] input: syz1 as /devices/virtual/input/input51
[  715.548574][   T38] audit: type=1326 audit(1757941018.580:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.548644][   T38] audit: type=1326 audit(1757941018.590:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.548694][   T38] audit: type=1326 audit(1757941018.590:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.549487][   T38] audit: type=1326 audit(1757941018.590:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.549540][   T38] audit: type=1326 audit(1757941018.590:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.549591][   T38] audit: type=1326 audit(1757941018.590:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.549642][   T38] audit: type=1326 audit(1757941018.590:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.549690][   T38] audit: type=1326 audit(1757941018.590:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.549739][   T38] audit: type=1326 audit(1757941018.590:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  715.549797][   T38] audit: type=1326 audit(1757941018.590:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15734 comm="syz.2.3541" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x50000
[  718.668418][ T1084] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  718.818401][ T1084] usb 5-1: Using ep0 maxpacket: 16
[  718.823444][ T1084] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  718.823478][ T1084] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  718.823503][ T1084] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  718.823548][ T1084] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  718.823573][ T1084] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  718.840594][ T1084] usb 5-1: config 0 descriptor??
[  719.041010][T15764] input: syz1 as /devices/virtual/input/input52
[  719.059868][T15790] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3562'.
[  719.066100][T15790] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3562'.
[  719.271558][   T45] page_pool_release_retry() stalled pool shutdown: id 59, 3329 inflight 301 sec
[  719.314666][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314705][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314734][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314762][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314790][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314819][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314855][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314883][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314911][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.314940][ T1084] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0
[  719.325420][ T1084] HID 045e:07da: Invalid code 65791 type 1
[  719.367938][ T1084] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.002E/input/input53
[  719.425843][ T1084] microsoft 0003:045E:07DA.002E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  719.570359][   T45] usb 5-1: USB disconnect, device number 41
[  721.229051][ T6080] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  721.383319][ T6080] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  721.383353][ T6080] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  721.383374][ T6080] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  721.383428][ T6080] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  721.383457][ T6080] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  721.386149][ T6080] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  721.386179][ T6080] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  721.386200][ T6080] usb 8-1: Product: syz
[  721.386215][ T6080] usb 8-1: Manufacturer: syz
[  721.490510][ T6080] cdc_wdm 8-1:1.0: skipping garbage
[  721.490532][ T6080] cdc_wdm 8-1:1.0: skipping garbage
[  721.494228][ T6080] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  721.494247][ T6080] cdc_wdm 8-1:1.0: Unknown control protocol
[  721.934165][    T9] usb 8-1: USB disconnect, device number 19
[  722.321407][T15838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3581'.
[  723.538597][   T45] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  723.693199][   T45] usb 2-1: config 27 interface 0 altsetting 0 has an endpoint descriptor with address 0x98, changing to 0x88
[  723.693238][   T45] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  723.693268][   T45] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0xB has an invalid bInterval 255, changing to 11
[  723.693297][   T45] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 59391, setting to 1024
[  723.693343][   T45] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  723.693368][   T45] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  723.822306][T15848] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  723.826631][   T45] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  724.079859][   T45] usb 2-1: USB disconnect, device number 51
[  724.794287][T15868] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3588'.
[  725.246337][ T6080] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[  725.454132][ T6080] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  725.454163][ T6080] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  725.454185][ T6080] usb 2-1: Product: syz
[  725.454199][ T6080] usb 2-1: Manufacturer: syz
[  725.454214][ T6080] usb 2-1: SerialNumber: syz
[  726.228161][T15881] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  726.425466][    C1] vkms_vblank_simulate: vblank timer overrun
[  726.842741][T15889] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3598'.
[  726.911506][ T6080] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[  727.119514][ T6080] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00001000. ret = -EPROTO
[  727.120440][ T6080] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[  727.120498][ T6080] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  727.121339][ T6080] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  727.281865][ T6080] lan78xx 2-1:1.0: probe with driver lan78xx failed with error -71
[  727.346586][ T6080] usb 2-1: USB disconnect, device number 52
[  727.999802][T15898] Set syz1 is full, maxelem 65536 reached
[  729.093781][T15930] loop2: detected capacity change from 0 to 7
[  729.097334][T15930] Dev loop2: unable to read RDB block 7
[  729.097379][T15930]  loop2: unable to read partition table
[  729.097728][T15930] loop2: partition table beyond EOD, truncated
[  729.097748][T15930] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  730.769511][ T6080] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[  730.960126][ T6080] usb 2-1: Using ep0 maxpacket: 16
[  730.986144][ T6080] usb 2-1: config 0 has an invalid interface number: 2 but max is 0
[  730.986165][ T6080] usb 2-1: config 0 has no interface number 0
[  730.992172][ T6080] usb 2-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 0.01
[  730.992206][ T6080] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  730.992230][ T6080] usb 2-1: Product: syz
[  730.992246][ T6080] usb 2-1: Manufacturer: syz
[  730.992263][ T6080] usb 2-1: SerialNumber: syz
[  731.009720][ T6080] usb 2-1: config 0 descriptor??
[  731.043509][ T6080] gspca_main: xirlink-cit-2.14.0 probing 0545:8080
[  732.268452][    T9] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  732.438431][    T9] usb 5-1: Using ep0 maxpacket: 32
[  732.443034][    T9] usb 5-1: config 0 has an invalid interface number: 67 but max is 0
[  732.443055][    T9] usb 5-1: config 0 has no interface number 0
[  732.469285][    T9] usb 5-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  732.469316][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  732.469337][    T9] usb 5-1: Product: syz
[  732.469353][    T9] usb 5-1: Manufacturer: syz
[  732.469367][    T9] usb 5-1: SerialNumber: syz
[  732.599853][    T9] usb 5-1: config 0 descriptor??
[  732.686936][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x040A, value 0x02, error -71)
[  732.687342][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x0405, value 0x18, error -71)
[  732.687741][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x0435, value 0x08, error -71)
[  732.688162][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x040B, value 0x26, error -71)
[  732.688786][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x0437, value 0x07, error -71)
[  732.689262][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x042F, value 0x15, error -71)
[  732.689733][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x0439, value 0x2B, error -71)
[  732.690206][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x043A, value 0x26, error -71)
[  732.690672][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x0438, value 0x08, error -71)
[  732.691264][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x042B, value 0x1E, error -71)
[  732.691759][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x042C, value 0x41, error -71)
[  732.692232][ T6080] gspca_xirlink_cit: Failed to write a register (index 0x0100, value 0xC0, error -71)
[  732.703788][ T6080] input: xirlink-cit as /devices/platform/dummy_hcd.1/usb2/2-1/input/input54
[  732.720764][    T9] smsc95xx v2.0.0
[  733.024025][ T6080] usb 2-1: USB disconnect, device number 53
[  733.070320][    T9] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  733.070345][    T9] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  733.742785][    C1] vkms_vblank_simulate: vblank timer overrun
[  734.097611][T15965] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  734.097633][T15965] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  734.105255][T15965] overlayfs: failed to get uuid (/file1, err=-95); falling back to uuid=null.
[  734.676619][ T1084] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  734.697746][    T9] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  734.698075][    T9] smsc95xx 5-1:0.67: probe with driver smsc95xx failed with error -71
[  734.729580][    T9] usb 5-1: USB disconnect, device number 42
[  734.833072][ T1084] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  734.833105][ T1084] usb 6-1: config 0 interface 0 has no altsetting 0
[  734.836924][ T1084] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  734.836952][ T1084] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  734.836973][ T1084] usb 6-1: Product: syz
[  734.836988][ T1084] usb 6-1: Manufacturer: syz
[  734.837002][ T1084] usb 6-1: SerialNumber: syz
[  734.889530][ T1084] usb 6-1: config 0 descriptor??
[  734.909497][ T1084] usb 6-1: selecting invalid altsetting 0
[  735.194557][    T9] usb 6-1: USB disconnect, device number 31
[  735.615224][   T38] kauditd_printk_skb: 53 callbacks suppressed
[  735.615243][   T38] audit: type=1326 audit(1757941038.660:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.616705][   T38] audit: type=1326 audit(1757941038.660:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.643298][   T38] audit: type=1326 audit(1757941038.690:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.643376][   T38] audit: type=1326 audit(1757941038.690:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.643428][   T38] audit: type=1326 audit(1757941038.690:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.646836][   T38] audit: type=1326 audit(1757941038.690:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.646899][   T38] audit: type=1326 audit(1757941038.690:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.646957][   T38] audit: type=1326 audit(1757941038.690:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.647015][   T38] audit: type=1326 audit(1757941038.690:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  735.650147][   T38] audit: type=1326 audit(1757941038.700:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15983 comm="syz.7.3633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f17f9485b67 code=0x7ffc0000
[  736.051188][T15991] binder: 15990:15991 ioctl c0306201 200000000080 returned -14
[  736.258133][T15996] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4)
[  736.258162][T15996] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  736.270015][T15996] vhci_hcd vhci_hcd.0: Device attached
[  736.511226][    T9] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  736.511400][ T6080] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  736.668718][ T6080] usb 5-1: Using ep0 maxpacket: 16
[  736.673831][ T6080] usb 5-1: config 0 has no interfaces?
[  736.673858][ T6080] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  736.673874][ T6080] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  736.677563][ T6080] usb 5-1: config 0 descriptor??
[  736.885117][T15998] usb 41-1: recv xbuf, 0
[  736.894972][ T6080] usb 5-1: USB disconnect, device number 43
[  736.920249][T14219] vhci_hcd: stop threads
[  736.920268][T14219] vhci_hcd: release socket
[  736.927768][T14219] vhci_hcd: disconnect device
[  736.958454][    T9] vhci_hcd: vhci_device speed not set
[  737.137489][T16009] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3640'.
[  737.242046][T16011] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3640'.
[  737.321169][T16015] netlink: 'syz.5.3642': attribute type 4 has an invalid length.
[  737.588502][ T5932] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[  737.758393][ T5932] usb 2-1: Using ep0 maxpacket: 8
[  737.763479][ T5932] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  737.763505][ T5932] usb 2-1: config 0 has no interfaces?
[  737.781255][ T5932] usb 2-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  737.781293][ T5932] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  737.781316][ T5932] usb 2-1: Product: syz
[  737.781334][ T5932] usb 2-1: Manufacturer: syz
[  737.781351][ T5932] usb 2-1: SerialNumber: syz
[  737.808556][ T5932] usb 2-1: config 0 descriptor??
[  738.110101][    T9] usb 2-1: USB disconnect, device number 54
[  739.493301][T16059] binder: 16058:16059 ioctl c0306201 200000000240 returned -14
[  740.612396][    C1] vkms_vblank_simulate: vblank timer overrun
[  741.128415][    T9] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[  741.281590][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  741.281627][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  741.281670][    T9] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  741.281696][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  741.291760][    T9] usb 2-1: config 0 descriptor??
[  741.763827][    T9] cp2112 0003:10C4:EA90.002F: unknown main item tag 0x0
[  741.777254][    T9] cp2112 0003:10C4:EA90.002F: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.1-1/input0
[  741.951375][    T9] cp2112 0003:10C4:EA90.002F: Part Number: 0x82 Device Version: 0xFE
[  742.598317][    T9] cp2112 0003:10C4:EA90.002F: error reading lock byte: 0
[  742.869100][T16079] cp2112 0003:10C4:EA90.002F: Error starting transaction: -38
[  744.054227][ T1084] usb 2-1: USB disconnect, device number 55
[  744.356459][T16125] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3683'.
[  744.615743][T16125] team1: entered promiscuous mode
[  744.615776][T16125] team1: entered allmulticast mode
[  748.659537][   T38] kauditd_printk_skb: 52 callbacks suppressed
[  748.659555][   T38] audit: type=1326 audit(1757941051.710:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.659606][   T38] audit: type=1326 audit(1757941051.710:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.666932][   T38] audit: type=1326 audit(1757941051.710:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.669364][   T38] audit: type=1326 audit(1757941051.720:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.680924][   T38] audit: type=1326 audit(1757941051.730:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.680988][   T38] audit: type=1326 audit(1757941051.730:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.681050][   T38] audit: type=1326 audit(1757941051.730:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.686345][   T38] audit: type=1326 audit(1757941051.730:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.710437][   T38] audit: type=1326 audit(1757941051.730:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  748.710509][   T38] audit: type=1326 audit(1757941051.760:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16158 comm="syz.7.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  749.715115][T16173] sctp: [Deprecated]: syz.4.3701 (pid 16173) Use of struct sctp_assoc_value in delayed_ack socket option.
[  749.715115][T16173] Use struct sctp_sack_info instead
[  750.228441][ T5910] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  750.378365][ T5910] usb 6-1: Using ep0 maxpacket: 8
[  750.381093][ T5910] usb 6-1: unable to get BOS descriptor or descriptor too short
[  750.382430][ T5910] usb 6-1: config 4 has an invalid interface number: 146 but max is 0
[  750.382456][ T5910] usb 6-1: config 4 has no interface number 0
[  750.382490][ T5910] usb 6-1: config 4 interface 146 has no altsetting 0
[  750.385506][ T5910] usb 6-1: New USB device found, idVendor=13d8, idProduct=0021, bcdDevice=af.79
[  750.385526][ T5910] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  750.385540][ T5910] usb 6-1: Product: syz
[  750.385550][ T5910] usb 6-1: Manufacturer: syz
[  750.385560][ T5910] usb 6-1: SerialNumber: syz
[  750.938522][ T5910] comedi comedi5: could not set alternate setting 3 in high speed
[  750.938547][ T5910] usbduxsigma 6-1:4.146: driver 'usbduxsigma' failed to auto-configure device.
[  750.947517][ T5910] usbduxsigma 6-1:4.146: probe with driver usbduxsigma failed with error -71
[  750.983840][ T5910] usb 6-1: USB disconnect, device number 32
[  752.479588][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[  752.479670][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[  754.716334][   T38] kauditd_printk_skb: 11 callbacks suppressed
[  754.716353][   T38] audit: type=1326 audit(1757941057.760:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.716948][   T38] audit: type=1326 audit(1757941057.760:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.724442][   T38] audit: type=1326 audit(1757941057.770:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.725867][   T38] audit: type=1326 audit(1757941057.770:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.730344][   T38] audit: type=1326 audit(1757941057.770:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.736039][   T38] audit: type=1326 audit(1757941057.780:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.736477][   T38] audit: type=1326 audit(1757941057.780:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.737202][   T38] audit: type=1326 audit(1757941057.780:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.737822][   T38] audit: type=1326 audit(1757941057.780:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=81 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  754.765611][   T38] audit: type=1326 audit(1757941057.780:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16251 comm="syz.2.3731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x7ffc0000
[  758.288485][    T9] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[  758.441194][    T9] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  758.441254][    T9] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  758.441277][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  758.451408][    T9] usb 2-1: config 0 descriptor??
[  758.458131][    T9] pwc: Askey VC010 type 2 USB webcam detected.
[  758.865096][    T9] pwc: recv_control_msg error -32 req 02 val 2b00
[  758.865713][    T9] pwc: recv_control_msg error -32 req 02 val 2700
[  758.866459][    T9] pwc: recv_control_msg error -32 req 02 val 2c00
[  758.867105][    T9] pwc: recv_control_msg error -32 req 04 val 1000
[  758.867645][    T9] pwc: recv_control_msg error -32 req 04 val 1300
[  758.868710][    T9] pwc: recv_control_msg error -32 req 04 val 1400
[  759.103662][    T9] pwc: recv_control_msg error -71 req 02 val 2100
[  759.110290][    T9] pwc: recv_control_msg error -71 req 04 val 1500
[  759.110970][    T9] pwc: recv_control_msg error -71 req 02 val 2500
[  759.111497][    T9] pwc: recv_control_msg error -71 req 02 val 2400
[  759.118438][    T9] pwc: recv_control_msg error -71 req 02 val 2600
[  759.120174][    T9] pwc: recv_control_msg error -71 req 02 val 2900
[  759.120741][    T9] pwc: recv_control_msg error -71 req 02 val 2800
[  759.181379][    T9] pwc: recv_control_msg error -71 req 04 val 1100
[  759.564078][    T9] pwc: recv_control_msg error -71 req 04 val 1200
[  759.758548][    T9] pwc: Registered as video103.
[  759.762233][    T9] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input55
[  759.788859][    T9] usb 2-1: USB disconnect, device number 56
[  760.421623][ T5932] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[  760.575457][ T5932] usb 5-1: config 1 has an invalid descriptor of length 97, skipping remainder of the config
[  760.575487][ T5932] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  760.577321][ T5932] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  760.577349][ T5932] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  760.577370][ T5932] usb 5-1: SerialNumber: syz
[  760.865468][ T5932] usb 5-1: 0:2 : does not exist
[  760.873239][ T5932] usb 5-1: unit 3 not found!
[  760.893305][ T5932] usb 5-1: USB disconnect, device number 44
[  761.921416][T16341] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  762.488421][ T5910] usb 6-1: new full-speed USB device number 33 using dummy_hcd
[  762.654059][ T5910] usb 6-1: unable to get BOS descriptor or descriptor too short
[  762.654905][ T5910] usb 6-1: not running at top speed; connect to a high speed hub
[  762.657181][ T5910] usb 6-1: config 4 has an invalid interface number: 147 but max is 0
[  762.657208][ T5910] usb 6-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  762.657228][ T5910] usb 6-1: config 4 has no interface number 0
[  762.720668][ T5910] usb 6-1: string descriptor 0 read error: -22
[  762.720838][ T5910] usb 6-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  762.720864][ T5910] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  762.767874][ T5910] usb 6-1: Found UVC 0.00 device <unnamed> (04f2:b746)
[  762.768036][ T5910] usb 6-1: No valid video chain found.
[  762.939923][    C1] vkms_vblank_simulate: vblank timer overrun
[  763.965650][   T45] usb 6-1: USB disconnect, device number 33
[  765.648447][   T45] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[  765.844375][   T45] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  765.844401][   T45] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  765.844415][   T45] usb 5-1: Product: syz
[  765.844425][   T45] usb 5-1: Manufacturer: syz
[  765.844435][   T45] usb 5-1: SerialNumber: syz
[  765.896687][   T45] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  766.162264][ T1084] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  766.308553][    T9] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  766.364293][T16409] lo speed is unknown, defaulting to 1000
[  766.416871][T16409] lo speed is unknown, defaulting to 1000
[  766.461789][    T9] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  766.461917][    T9] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  766.461963][    T9] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  766.461988][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  766.502662][T16416] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  766.521057][    T9] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  766.560304][T16409] lo speed is unknown, defaulting to 1000
[  766.857354][T16409] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  767.783093][ T1084] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  767.895720][ T1084] ath9k_htc: Failed to initialize the device
[  767.896827][ T5932] usb 3-1: USB disconnect, device number 35
[  767.941637][    C1] vkms_vblank_simulate: vblank timer overrun
[  768.349509][T16432] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3795'.
[  769.446514][T16440] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  769.475593][T16440] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  769.486688][T16440] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  769.487966][T16440] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  769.506775][T16440] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  770.077373][   T45] usb 5-1: USB disconnect, device number 45
[  770.118676][    C1] vkms_vblank_simulate: vblank timer overrun
[  770.131814][   T45] usb 5-1: ath9k_htc: USB layer deinitialized
[  770.201283][T16409] lo speed is unknown, defaulting to 1000
[  770.213008][T16409] lo speed is unknown, defaulting to 1000
[  770.216044][T16409] lo speed is unknown, defaulting to 1000
[  770.259880][T16409] lo speed is unknown, defaulting to 1000
[  770.262912][T16409] lo speed is unknown, defaulting to 1000
[  770.419143][T16439] lo speed is unknown, defaulting to 1000
[  770.424542][T16439] lo speed is unknown, defaulting to 1000
[  771.601062][T11152] Bluetooth: hci3: command tx timeout
[  772.528426][    C1] vkms_vblank_simulate: vblank timer overrun
[  772.978465][    C1] vkms_vblank_simulate: vblank timer overrun
[  773.578471][    C1] vkms_vblank_simulate: vblank timer overrun
[  773.668485][T11152] Bluetooth: hci3: command tx timeout
[  774.087192][T16439] chnl_net:caif_netlink_parms(): no params data found
[  774.101618][T16457] overlayfs: missing 'lowerdir'
[  775.250818][T16439] bridge0: port 1(bridge_slave_0) entered blocking state
[  775.251112][T16439] bridge0: port 1(bridge_slave_0) entered disabled state
[  775.251343][T16439] bridge_slave_0: entered allmulticast mode
[  775.282333][T16439] bridge_slave_0: entered promiscuous mode
[  775.332032][T16439] bridge0: port 2(bridge_slave_1) entered blocking state
[  775.365370][T16439] bridge0: port 2(bridge_slave_1) entered disabled state
[  775.365591][T16439] bridge_slave_1: entered allmulticast mode
[  775.367972][T16439] bridge_slave_1: entered promiscuous mode
[  775.670690][T16439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  775.686634][T16439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  775.748526][T11152] Bluetooth: hci3: command tx timeout
[  776.755301][T16488] input: syz1 as /devices/virtual/input/input56
[  776.895054][T16439] team0: Port device team_slave_0 added
[  776.954175][T16439] team0: Port device team_slave_1 added
[  777.347994][T16494] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  777.348180][T16494] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  777.486175][T16439] batman_adv: batadv0: Adding interface: batadv_slave_0
[  777.486189][T16439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  777.486207][T16439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  777.498782][T16439] batman_adv: batadv0: Adding interface: batadv_slave_1
[  777.498801][T16439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  777.498833][T16439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  777.828472][T11152] Bluetooth: hci3: command tx timeout
[  778.356067][T16439] hsr_slave_0: entered promiscuous mode
[  778.374243][T16439] hsr_slave_1: entered promiscuous mode
[  778.384362][T16439] debugfs: 'hsr0' already exists in 'hsr'
[  778.384395][T16439] Cannot create hsr debugfs directory
[  779.911173][ T1084] page_pool_release_retry() stalled pool shutdown: id 59, 3329 inflight 362 sec
[  781.598617][T16426] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  781.801123][T16426] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  781.801157][T16426] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  781.801177][T16426] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  781.801225][T16426] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  781.801243][T16426] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  781.805185][T16426] usb 3-1: config 0 descriptor??
[  782.006772][T16439] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  782.068066][T16439] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  782.185419][T16439] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  782.300242][T16439] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  782.459195][T16426] plantronics 0003:047F:FFFF.0030: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  783.194790][  T989] usb 3-1: USB disconnect, device number 36
[  783.411124][T16439] 8021q: adding VLAN 0 to HW filter on device bond0
[  783.588910][T16439] 8021q: adding VLAN 0 to HW filter on device team0
[  783.680308][T14227] bridge0: port 1(bridge_slave_0) entered blocking state
[  783.680525][T14227] bridge0: port 1(bridge_slave_0) entered forwarding state
[  783.715262][T14227] bridge0: port 2(bridge_slave_1) entered blocking state
[  783.715512][T14227] bridge0: port 2(bridge_slave_1) entered forwarding state
[  784.040832][T16557] batadv_slave_0: entered allmulticast mode
[  784.087921][T16557] dvmrp8: entered allmulticast mode
[  784.130326][T16556] batadv_slave_0: left allmulticast mode
[  785.235350][T16568] overlayfs: failed to clone upperpath
[  785.442548][T16573] openvswitch: netlink: IPv4 tun info is not correct
[  785.535883][T16439] 8021q: adding VLAN 0 to HW filter on device batadv0
[  785.883332][T16586] overlayfs: failed to clone upperpath
[  786.800684][  T989] usb 2-1: new high-speed USB device number 57 using dummy_hcd
[  787.199263][  T989] usb 2-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  787.199289][  T989] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  787.199303][  T989] usb 2-1: Product: syz
[  787.199314][  T989] usb 2-1: Manufacturer: syz
[  787.199324][  T989] usb 2-1: SerialNumber: syz
[  787.802313][T16439] veth0_vlan: entered promiscuous mode
[  787.853448][T16439] veth1_vlan: entered promiscuous mode
[  788.131796][T16439] veth0_macvtap: entered promiscuous mode
[  788.185551][T16439] veth1_macvtap: entered promiscuous mode
[  788.294816][T16439] batman_adv: batadv0: Interface activated: batadv_slave_0
[  788.350483][T16439] batman_adv: batadv0: Interface activated: batadv_slave_1
[  788.386423][T14927] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  788.387585][T14927] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  788.387654][T14927] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  788.418008][T14927] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  788.736547][ T5932] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  788.947622][ T5932] usb 5-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  788.947654][ T5932] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  788.947738][ T5932] usb 5-1: Product: syz
[  788.947755][ T5932] usb 5-1: Manufacturer: syz
[  788.947770][ T5932] usb 5-1: SerialNumber: syz
[  789.097867][T14227] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  789.097883][T14227] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  789.121422][  T989] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000040. ret = -EPROTO
[  789.121943][  T989] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPROTO
[  789.122425][  T989] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[  789.122491][  T989] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  789.124767][  T989] lan78xx 2-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  789.185798][  T989] lan78xx 2-1:1.0: probe with driver lan78xx failed with error -71
[  789.245054][  T989] usb 2-1: USB disconnect, device number 57
[  789.450320][T14927] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  789.450344][T14927] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  790.823527][ T5932] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000040. ret = -EPIPE
[  790.824035][ T5932] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPROTO
[  790.824627][ T5932] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[  790.824680][ T5932] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  790.825534][ T5932] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  790.914897][ T5932] lan78xx 5-1:1.0: probe with driver lan78xx failed with error -71
[  790.969790][ T5932] usb 5-1: USB disconnect, device number 46
[  794.930499][T16682] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.3869'.
[  797.534189][T16712] overlayfs: failed to clone upperpath
[  800.143813][T16738] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3889'.
[  802.291585][T16775] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  802.557571][T16775] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  802.728399][ T5848] usb 5-1: new low-speed USB device number 47 using dummy_hcd
[  803.142077][ T5848] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  803.142109][ T5848] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  803.142129][ T5848] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  803.142168][ T5848] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  803.142209][ T5848] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  803.142233][ T5848] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  803.159907][ T5848] usb 5-1: string descriptor 0 read error: -22
[  803.161940][ T5848] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  803.161971][ T5848] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  803.168415][ T5848] usb 5-1: config 0 descriptor??
[  803.235434][T16774] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  803.237908][ T5848] hub 5-1:0.0: bad descriptor, ignoring hub
[  803.237952][ T5848] hub 5-1:0.0: probe with driver hub failed with error -5
[  803.284928][ T5848] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input58
[  803.670100][ T5918] usb 5-1: USB disconnect, device number 47
[  803.670282][    C1] usb_acecad 5-1:0.0: can't resubmit intr, dummy_hcd.4-1/input0, status -19
[  803.722462][T16786] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  805.434747][T11152] Bluetooth: hci0: unexpected event for opcode 0x0c22
[  813.519093][T16808] netlink: 220 bytes leftover after parsing attributes in process `syz.1.3913'.
[  813.520567][T16808] netlink: 220 bytes leftover after parsing attributes in process `syz.1.3913'.
[  813.520601][T16808] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3913'.
[  813.924490][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[  813.924583][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[  817.982110][T16870] netlink: 'syz.4.3935': attribute type 10 has an invalid length.
[  818.474493][T16870] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  818.474688][T16870] team0: Failed to send options change via netlink (err -105)
[  818.474706][T16870] team0: Port device netdevsim0 added
[  818.958491][   T38] kauditd_printk_skb: 19 callbacks suppressed
[  818.958513][   T38] audit: type=1800 audit(1757941121.950:543): pid=16873 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.3936" name="/" dev="9p" ino=2 res=0 errno=0
[  819.228595][T16882] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3940'.
[  819.333630][    C1] vkms_vblank_simulate: vblank timer overrun
[  819.611779][T16890] overlayfs: failed to clone upperpath
[  825.651249][T16959] loop2: detected capacity change from 0 to 7
[  825.653524][T16959]  loop2: [POWERTEC] p1
[  825.653658][T16959] loop2: p1 size 1048576 extends beyond EOD, truncated
[  825.868876][ T5918] usb 5-1: new full-speed USB device number 48 using dummy_hcd
[  825.871810][  T989] hid-generic 0000:0000:0000.0031: unknown main item tag 0x0
[  825.940541][  T989] hid-generic 0000:0000:0000.0031: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  826.023321][ T5918] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  826.023354][ T5918] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  826.023376][ T5918] usb 5-1: Product: syz
[  826.023392][ T5918] usb 5-1: Manufacturer: syz
[  826.023406][ T5918] usb 5-1: SerialNumber: syz
[  826.069522][ T5918] usb 5-1: config 0 descriptor??
[  826.296359][ T5918] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  827.915391][ T5918] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  827.922649][ T5918] usb 5-1: USB disconnect, device number 48
[  828.892623][T17005] overlayfs: failed to clone upperpath
[  830.545835][T17026] lo speed is unknown, defaulting to 1000
[  830.553111][T17026] lo speed is unknown, defaulting to 1000
[  830.643533][   T38] audit: type=1326 audit(1757941133.690:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.643592][   T38] audit: type=1326 audit(1757941133.690:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.714297][   T38] audit: type=1326 audit(1757941133.760:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.714352][   T38] audit: type=1326 audit(1757941133.760:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.714397][   T38] audit: type=1326 audit(1757941133.760:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.714446][   T38] audit: type=1326 audit(1757941133.760:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.714493][   T38] audit: type=1326 audit(1757941133.760:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.714538][   T38] audit: type=1326 audit(1757941133.760:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.714584][   T38] audit: type=1326 audit(1757941133.760:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.714628][   T38] audit: type=1326 audit(1757941133.760:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17032 comm="syz.8.3995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[  830.942639][T17031] syz_tun: entered allmulticast mode
[  831.041117][T17030] syz_tun: left allmulticast mode
[  832.739648][    C1] vkms_vblank_simulate: vblank timer overrun
[  834.708947][T17071] binder: 17070:17071 ioctl c0306201 200000000080 returned -14
[  836.038305][ T5848] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  836.250393][ T5848] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  836.250416][ T5848] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  836.250449][ T5848] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  836.250467][ T5848] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  836.266861][ T5848] usb 9-1: config 0 descriptor??
[  836.697318][ T5848] kovaplus 0003:1E7D:2D50.0032: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.8-1/input0
[  837.505011][ T5848] kovaplus 0003:1E7D:2D50.0032: couldn't init struct kovaplus_device
[  837.505052][ T5848] kovaplus 0003:1E7D:2D50.0032: couldn't install mouse
[  837.509897][ T5848] kovaplus 0003:1E7D:2D50.0032: probe with driver kovaplus failed with error -71
[  837.530897][ T5848] usb 9-1: USB disconnect, device number 2
[  840.408303][ T5848] page_pool_release_retry() stalled pool shutdown: id 59, 3329 inflight 422 sec
[  841.470788][T16608] usb 2-1: new high-speed USB device number 58 using dummy_hcd
[  841.668473][T16608] usb 2-1: Using ep0 maxpacket: 8
[  841.791585][T16608] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  841.791648][T16608] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  841.791671][T16608] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  841.791697][T16608] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  841.791722][T16608] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  841.791766][T16608] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  841.791788][T16608] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  842.128952][T16608] usb 2-1: usb_control_msg returned -32
[  842.129001][T16608] usbtmc 2-1:16.0: can't read capabilities
[  842.843325][T17130] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  843.118327][ T5848] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  843.342208][ T5848] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  843.342271][ T5848] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  843.342297][ T5848] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  843.373894][ T5848] usb 3-1: config 0 descriptor??
[  843.487331][ T5848] pwc: Askey VC010 type 2 USB webcam detected.
[  843.846299][ T5848] pwc: recv_control_msg error -32 req 02 val 2b00
[  843.849658][ T5848] pwc: recv_control_msg error -32 req 02 val 2700
[  843.852317][ T5848] pwc: recv_control_msg error -32 req 02 val 2c00
[  843.868091][ T5848] pwc: recv_control_msg error -32 req 04 val 1000
[  843.894862][ T5848] pwc: recv_control_msg error -32 req 04 val 1300
[  843.895609][ T5848] pwc: recv_control_msg error -32 req 04 val 1400
[  844.100464][T16608] usb 2-1: USB disconnect, device number 58
[  844.161946][ T5848] pwc: recv_control_msg error -71 req 02 val 2100
[  844.162458][ T5848] pwc: recv_control_msg error -71 req 04 val 1500
[  844.162967][ T5848] pwc: recv_control_msg error -71 req 02 val 2500
[  844.163510][ T5848] pwc: recv_control_msg error -71 req 02 val 2400
[  844.167133][ T5848] pwc: recv_control_msg error -71 req 02 val 2600
[  844.168618][ T5848] pwc: recv_control_msg error -71 req 02 val 2900
[  844.170140][ T5848] pwc: recv_control_msg error -71 req 02 val 2800
[  844.171846][ T5848] pwc: recv_control_msg error -71 req 04 val 1100
[  844.174675][ T5848] pwc: recv_control_msg error -71 req 04 val 1200
[  844.347741][ T5848] pwc: Registered as video103.
[  844.351724][ T5848] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input59
[  844.428899][ T5848] usb 3-1: USB disconnect, device number 37
[  844.531147][T17144] overlayfs: failed to clone upperpath
[  850.847542][T17204] bond0: (slave bond_slave_0): Releasing backup interface
[  850.943749][T17204] bond0: (slave bond_slave_1): Releasing backup interface
[  851.037649][T17204] team_slave_0: left promiscuous mode
[  851.037810][T17204] team_slave_0: left allmulticast mode
[  851.231768][T17204] team0: Port device team_slave_0 removed
[  851.232779][T17204] team_slave_1: left promiscuous mode
[  851.232933][T17204] team_slave_1: left allmulticast mode
[  851.285234][T17204] team0: Port device team_slave_1 removed
[  851.296541][T17204] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  851.296567][T17204] batman_adv: batadv0: Removing interface: batadv_slave_0
[  851.342808][T17204] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  851.342834][T17204] batman_adv: batadv0: Removing interface: batadv_slave_1
[  851.441917][T16426] lo speed is unknown, defaulting to 1000
[  853.548590][T17234] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4063'.
[  853.768597][    C1] vkms_vblank_simulate: vblank timer overrun
[  853.970531][    C1] vkms_vblank_simulate: vblank timer overrun
[  854.417795][    C1] vkms_vblank_simulate: vblank timer overrun
[  855.120155][T17264] binder: 17262:17264 ioctl c0306201 0 returned -14
[  855.146305][T17265] netlink: 'syz.1.4074': attribute type 10 has an invalid length.
[  855.288423][T16608] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[  855.403425][T17255] bridge0: port 2(bridge_slave_1) entered disabled state
[  855.403996][T17255] bridge0: port 1(bridge_slave_0) entered disabled state
[  855.487114][T16608] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  855.487137][T16608] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  855.487151][T16608] usb 9-1: Product: syz
[  855.487162][T16608] usb 9-1: Manufacturer: syz
[  855.487171][T16608] usb 9-1: SerialNumber: syz
[  855.528093][T16608] usb 9-1: config 0 descriptor??
[  855.661777][T17255] batman_adv: batadv0: Interface deactivated: dummy0
[  855.773688][T16608] usb 9-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  856.456433][T17255] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  856.583976][T17255] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  857.215386][T16608] dvb_usb_rtl28xxu 9-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  857.240273][T16608] usb 9-1: USB disconnect, device number 3
[  857.644585][T17281] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  858.227777][   T38] kauditd_printk_skb: 9 callbacks suppressed
[  858.227796][   T38] audit: type=1800 audit(1757941161.270:563): pid=17287 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.8.4082" name="/" dev="fuse" ino=3 res=0 errno=0
[  858.479401][T17265] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  858.507345][T17268] netlink: 'syz.2.4076': attribute type 4 has an invalid length.
[  858.517053][ T1270] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  858.536875][T15385] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  858.543338][T15385] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  858.543396][T15385] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  868.179886][   T38] audit: type=1804 audit(1757941171.220:564): pid=17414 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.4124" name="/newroot/840/file0" dev="tmpfs" ino=4502 res=1 errno=0
[  872.950603][T17488] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4153'.
[  875.822731][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[  875.822817][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[  876.163747][T17517] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4161'.
[  876.201165][T17517] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4161'.
[  877.543958][T17530] netlink: 96 bytes leftover after parsing attributes in process `syz.8.4166'.
[  886.796013][T17615] batman_adv: batadv0: Removing interface: dummy0
[  887.029412][T17615] bond0: (slave batadv0): Releasing backup interface
[  887.093670][T17615] bridge_slave_0: left allmulticast mode
[  887.093706][T17615] bridge_slave_0: left promiscuous mode
[  887.094219][T17615] bridge0: port 1(bridge_slave_0) entered disabled state
[  887.259928][T17615] bridge_slave_1: left allmulticast mode
[  887.259953][T17615] bridge_slave_1: left promiscuous mode
[  887.260332][T17615] bridge0: port 2(bridge_slave_1) entered disabled state
[  887.530676][T17615] bond0: (slave bond_slave_0): Releasing backup interface
[  887.639704][T17615] bond0: (slave bond_slave_1): Releasing backup interface
[  887.749455][T17615] team0: Port device team_slave_0 removed
[  887.841908][T17615] team0: Port device team_slave_1 removed
[  887.842387][T17615] batman_adv: batadv0: Removing interface: batadv_slave_0
[  887.890399][T17615] batman_adv: batadv0: Removing interface: batadv_slave_1
[  890.367848][T17663] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4213'.
[  890.368133][T17663] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4213'.
[  892.792819][T16440] Bluetooth: hci3: command 0x0406 tx timeout
[  893.731040][T17691] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4220'.
[  894.950833][T17700] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4223'.
[  894.950853][T17700] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4223'.
[  896.037616][ T5932] libceph: connect (1)[c::]:6789 error -97
[  896.049972][ T5932] libceph: mon0 (1)[c::]:6789 connect error
[  896.061682][T16608] libceph: connect (1)[c::]:6789 error -97
[  896.062052][T16608] libceph: mon0 (1)[c::]:6789 connect error
[  896.106222][T17719] ceph: No mds server is up or the cluster is laggy
[  896.298425][ T5932] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  896.494612][ T5932] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  896.494665][ T5932] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  896.494689][ T5932] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  896.516531][ T5932] usb 9-1: config 0 descriptor??
[  896.759636][ T5932] usbhid 9-1:0.0: can't add hid device: -71
[  896.759767][ T5932] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  896.778811][ T5932] usb 9-1: USB disconnect, device number 4
[  897.278417][ T5932] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  897.620758][ T5932] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  897.620784][ T5932] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  897.620814][ T5932] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  897.620831][ T5932] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  897.624675][ T5932] usb 9-1: config 0 descriptor??
[  898.093463][ T5932] plantronics 0003:047F:FFFF.0033: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  899.100559][ T6082] usb 9-1: USB disconnect, device number 5
[  899.346842][   T38] audit: type=1326 audit(1757941202.390:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.346901][   T38] audit: type=1326 audit(1757941202.390:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.401766][   T38] audit: type=1326 audit(1757941202.450:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.411246][   T38] audit: type=1326 audit(1757941202.460:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.420128][   T38] audit: type=1326 audit(1757941202.460:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.420194][   T38] audit: type=1326 audit(1757941202.470:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.505626][   T38] audit: type=1326 audit(1757941202.550:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.505680][   T38] audit: type=1326 audit(1757941202.550:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.505723][   T38] audit: type=1326 audit(1757941202.550:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  899.505786][   T38] audit: type=1326 audit(1757941202.550:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17763 comm="syz.7.4245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  901.188527][T16426] page_pool_release_retry() stalled pool shutdown: id 59, 3329 inflight 483 sec
[  917.445431][T17837] overlayfs: failed to clone upperpath
[  918.627702][T16440] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  918.665867][T16440] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  918.676070][T16440] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  918.684902][T16440] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  918.685702][T16440] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  919.004382][T17844] lo speed is unknown, defaulting to 1000
[  919.041154][T17844] lo speed is unknown, defaulting to 1000
[  920.351142][T17844] chnl_net:caif_netlink_parms(): no params data found
[  920.807249][T16440] Bluetooth: hci4: command tx timeout
[  921.083718][T16440] Bluetooth: hci0: unexpected event for opcode 0x1004
[  921.202602][T17844] bridge0: port 1(bridge_slave_0) entered blocking state
[  921.204058][T17844] bridge0: port 1(bridge_slave_0) entered disabled state
[  921.204302][T17844] bridge_slave_0: entered allmulticast mode
[  921.210721][T17844] bridge_slave_0: entered promiscuous mode
[  921.220935][T17844] bridge0: port 2(bridge_slave_1) entered blocking state
[  921.222255][T17844] bridge0: port 2(bridge_slave_1) entered disabled state
[  921.222515][T17844] bridge_slave_1: entered allmulticast mode
[  921.232410][T17844] bridge_slave_1: entered promiscuous mode
[  921.604223][T17844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  921.626676][T17844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  922.512331][T17844] team0: Port device team_slave_0 added
[  922.554295][T17844] team0: Port device team_slave_1 added
[  922.878660][T16440] Bluetooth: hci4: command tx timeout
[  923.105282][T17844] batman_adv: batadv0: Adding interface: batadv_slave_0
[  923.105294][T17844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  923.105314][T17844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  923.112003][T17844] batman_adv: batadv0: Adding interface: batadv_slave_1
[  923.112021][T17844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  923.112053][T17844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  923.603234][T17844] hsr_slave_0: entered promiscuous mode
[  923.604884][T17844] hsr_slave_1: entered promiscuous mode
[  923.606007][T17844] debugfs: 'hsr0' already exists in 'hsr'
[  923.606034][T17844] Cannot create hsr debugfs directory
[  924.958599][T16440] Bluetooth: hci4: command tx timeout
[  925.114231][T16440] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  925.114381][T16440] Bluetooth: hci0: Injecting HCI hardware error event
[  925.117700][T11152] Bluetooth: hci0: hardware error 0x00
[  925.373586][T17844] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  925.664987][T17844] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  925.803701][T17844] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  925.927624][T17844] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  927.093114][T16440] Bluetooth: hci4: command tx timeout
[  927.348319][T11152] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  927.403299][T17844] 8021q: adding VLAN 0 to HW filter on device bond0
[  927.486867][    C0] vkms_vblank_simulate: vblank timer overrun
[  927.535812][    C0] vkms_vblank_simulate: vblank timer overrun
[  927.977055][    C0] vkms_vblank_simulate: vblank timer overrun
[  928.077338][T17844] 8021q: adding VLAN 0 to HW filter on device team0
[  928.211698][T14924] bridge0: port 1(bridge_slave_0) entered blocking state
[  928.211806][T14924] bridge0: port 1(bridge_slave_0) entered forwarding state
[  928.697238][T14924] bridge0: port 2(bridge_slave_1) entered blocking state
[  928.698396][T14924] bridge0: port 2(bridge_slave_1) entered forwarding state
[  930.192919][T17844] 8021q: adding VLAN 0 to HW filter on device batadv0
[  930.503616][T17983] 8021q: VLANs not supported on lo
[  930.505524][   T38] kauditd_printk_skb: 5 callbacks suppressed
[  930.505540][   T38] audit: type=1326 audit(1757941233.550:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  930.505962][   T38] audit: type=1326 audit(1757941233.550:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  930.506581][   T38] audit: type=1326 audit(1757941233.550:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  930.507286][   T38] audit: type=1326 audit(1757941233.550:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  930.507585][   T38] audit: type=1326 audit(1757941233.550:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  930.508028][   T38] audit: type=1326 audit(1757941233.550:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  930.508663][   T38] audit: type=1326 audit(1757941233.560:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f17f948d510 code=0x7ffc0000
[  930.509489][   T38] audit: type=1326 audit(1757941233.560:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  930.510373][   T38] audit: type=1326 audit(1757941233.560:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  930.510752][   T38] audit: type=1326 audit(1757941233.560:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17982 comm="syz.7.4317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f17f948eba9 code=0x7ffc0000
[  932.218441][ T5918] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  932.380551][ T5918] usb 9-1: config 0 has no interfaces?
[  932.385684][ T5918] usb 9-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  932.385714][ T5918] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  932.385735][ T5918] usb 9-1: Product: syz
[  932.385751][ T5918] usb 9-1: Manufacturer: syz
[  932.385766][ T5918] usb 9-1: SerialNumber: syz
[  932.392528][ T5918] usb 9-1: config 0 descriptor??
[  932.616003][T18000] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  932.617083][T18000] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  933.023075][T17844] veth0_vlan: entered promiscuous mode
[  933.055938][T17844] veth1_vlan: entered promiscuous mode
[  933.197543][T17844] veth0_macvtap: entered promiscuous mode
[  933.231792][T17844] veth1_macvtap: entered promiscuous mode
[  933.327024][T17844] batman_adv: batadv0: Interface activated: batadv_slave_0
[  933.380572][T17844] batman_adv: batadv0: Interface activated: batadv_slave_1
[  933.545977][T15377] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  933.628596][T15377] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  933.635045][T15377] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  933.778446][T14942] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  934.714237][T14942] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  934.714260][T14942] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  934.992471][T15377] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  934.992494][T15377] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  935.738325][T16426] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  935.936533][T16426] usb 10-1: Using ep0 maxpacket: 8
[  935.946881][T16426] usb 10-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  935.946913][T16426] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  935.984975][T16426] usb 10-1: config 0 descriptor??
[  936.206380][ T5848] usb 9-1: USB disconnect, device number 6
[  936.717453][    C0] vkms_vblank_simulate: vblank timer overrun
[  936.806364][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[  936.806447][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[  936.855112][    C0] vkms_vblank_simulate: vblank timer overrun
[  937.938696][T16426] asix 10-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0012: -71
[  937.939009][T16426] asix 10-1:0.0: probe with driver asix failed with error -71
[  937.987263][T16426] usb 10-1: USB disconnect, device number 2
[  938.434396][T18083] overlayfs: failed to clone upperpath
[  938.577274][   T38] kauditd_printk_skb: 2 callbacks suppressed
[  938.577293][   T38] audit: type=1804 audit(1757941241.620:592): pid=18089 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.7.4346" name="cgroup.controllers" dev="tmpfs" ino=2243 res=1 errno=0
[  938.577347][   T38] audit: type=1800 audit(1757941241.620:593): pid=18089 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.7.4346" name="cgroup.controllers" dev="tmpfs" ino=2243 res=0 errno=0
[  942.917387][T18138] overlayfs: failed to clone upperpath
[  943.908497][T18156] cgroup: fork rejected by pids controller in /syz1
[  945.356198][   T38] audit: type=1804 audit(1757941248.400:594): pid=18528 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.7.4377" name="bus" dev="ramfs" ino=70609 res=1 errno=0
[  945.364314][T18528] Invalid ELF header magic: != ELF
[  946.307141][T18539] 8021q: adding VLAN 0 to HW filter on device bond1
[  946.516385][T18544] bond1: (slave ip6gretap1): making interface the new active one
[  946.578536][T18544] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  950.028451][ T5932] usb 2-1: new high-speed USB device number 59 using dummy_hcd
[  950.143947][T18576] overlayfs: failed to clone upperpath
[  950.178711][ T5932] usb 2-1: Using ep0 maxpacket: 16
[  950.181651][ T5932] usb 2-1: config 0 interface 0 has no altsetting 0
[  950.181693][ T5932] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  950.181718][ T5932] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  950.199558][ T5932] usb 2-1: config 0 descriptor??
[  950.612305][ T5932] hid (null): global environment stack underflow
[  950.612340][ T5932] hid (null): global environment stack underflow
[  950.612369][ T5932] hid (null): report_id 0 is invalid
[  950.612521][ T5932] hid (null): global environment stack underflow
[  950.612549][ T5932] hid (null): report_id 0 is invalid
[  950.612576][ T5932] hid (null): report_id 0 is invalid
[  950.612605][ T5932] hid (null): global environment stack underflow
[  950.614387][ T5932] hid (null): global environment stack underflow
[  950.614410][ T5932] hid (null): report_id 0 is invalid
[  950.619811][ T5932] hid (null): global environment stack underflow
[  950.621580][ T5932] hid (null): unknown global tag 0xc
[  950.621602][ T5932] hid (null): report_id 25068 is invalid
[  950.621679][ T5932] hid (null): report_id 0 is invalid
[  950.621696][ T5932] hid (null): global environment stack overflow
[  950.631787][ T5932] hid (null): unknown global tag 0xc
[  950.631815][ T5932] hid (null): unknown global tag 0x58
[  950.935943][T16426] usb 2-1: USB disconnect, device number 59
[  952.405902][   T38] audit: type=1800 audit(1757941255.450:595): pid=18596 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.8.4396" name="/" dev="9p" ino=2 res=0 errno=0
[  952.692707][T18600] overlayfs: failed to clone upperpath
[  953.367454][T18604] netlink: 128 bytes leftover after parsing attributes in process `syz.7.4401'.
[  955.456806][T18626] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  958.288794][T18668] netlink: 'syz.2.4425': attribute type 4 has an invalid length.
[  958.388101][ T6082] lo speed is unknown, defaulting to 1000
[  958.388388][ T6082] syz2: Port: 1 Link DOWN
[  958.447265][T18671] netlink: 'syz.2.4425': attribute type 4 has an invalid length.
[  958.472078][ T6082] lo speed is unknown, defaulting to 1000
[  958.472108][ T6082] syz2: Port: 1 Link ACTIVE
[  958.582321][T18675] input: syz1 as /devices/virtual/input/input61
[  959.946938][T18694] netlink: 'syz.9.4435': attribute type 1 has an invalid length.
[  959.946961][T18694] netlink: 16150 bytes leftover after parsing attributes in process `syz.9.4435'.
[  961.998685][ T1084] page_pool_release_retry() stalled pool shutdown: id 59, 3329 inflight 544 sec
[  964.178087][    C0] vkms_vblank_simulate: vblank timer overrun
[  964.714173][T15378] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  965.109752][    C0] vkms_vblank_simulate: vblank timer overrun
[  966.130700][    C0] vkms_vblank_simulate: vblank timer overrun
[  966.380874][T18753] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4454'.
[  966.960433][ T5918] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  967.043254][T15378] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  967.117606][ T5918] usb 9-1: config 220 has an invalid interface number: 76 but max is 2
[  967.117637][ T5918] usb 9-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  967.117659][ T5918] usb 9-1: config 220 has no interface number 2
[  967.117738][ T5918] usb 9-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  967.117769][ T5918] usb 9-1: config 220 interface 0 has no altsetting 0
[  967.117789][ T5918] usb 9-1: config 220 interface 76 has no altsetting 0
[  967.117809][ T5918] usb 9-1: config 220 interface 1 has no altsetting 0
[  967.136682][T18759] syz_tun: entered promiscuous mode
[  967.137071][T18759] vlan2: entered promiscuous mode
[  967.160271][ T5918] usb 9-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  967.160304][ T5918] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  967.160326][ T5918] usb 9-1: Product: syz
[  967.160341][ T5918] usb 9-1: Manufacturer: syz
[  967.160356][ T5918] usb 9-1: SerialNumber: syz
[  967.530431][ T5918] usb 9-1: selecting invalid altsetting 0
[  967.530884][ T5918] usb 9-1: Found UVC 7.01 device syz (8086:0b07)
[  967.530907][ T5918] usb 9-1: No valid video chain found.
[  967.585669][    C0] vkms_vblank_simulate: vblank timer overrun
[  967.622507][ T5918] usb 9-1: selecting invalid altsetting 0
[  967.622542][ T5918] usbtest 9-1:220.1: probe with driver usbtest failed with error -22
[  967.653450][ T5918] usb 9-1: USB disconnect, device number 7
[  967.995622][    C0] vkms_vblank_simulate: vblank timer overrun
[  968.183965][T15378] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  969.013339][    C0] vkms_vblank_simulate: vblank timer overrun
[  969.247210][T15378] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  969.675063][T18776] netlink: 24 bytes leftover after parsing attributes in process `syz.8.4462'.
[  969.718850][T18778] netlink: 'syz.2.4463': attribute type 1 has an invalid length.
[  969.718873][T18778] netlink: 'syz.2.4463': attribute type 4 has an invalid length.
[  969.718885][T18778] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.4463'.
[  969.728780][T18778] netlink: 'syz.2.4463': attribute type 1 has an invalid length.
[  969.728805][T18778] netlink: 'syz.2.4463': attribute type 4 has an invalid length.
[  969.728821][T18778] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.4463'.
[  970.128816][    C0] vkms_vblank_simulate: vblank timer overrun
[  970.316457][    C0] vkms_vblank_simulate: vblank timer overrun
[  970.747489][    C0] vkms_vblank_simulate: vblank timer overrun
[  970.829681][   T38] audit: type=1326 audit(1757941273.510:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18781 comm="syz.1.4464" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5505d3eba9 code=0x0
[  971.330253][    C0] vkms_vblank_simulate: vblank timer overrun
[  971.425865][    C0] vkms_vblank_simulate: vblank timer overrun
[  972.074513][T18793] binder: 18792:18793 unknown command 0
[  972.074537][T18793] binder: 18792:18793 ioctl c0306201 200000000080 returned -22
[  974.331005][    C0] vkms_vblank_simulate: vblank timer overrun
[  975.228149][    C0] vkms_vblank_simulate: vblank timer overrun
[  975.290487][T11152] Bluetooth: hci4: link tx timeout
[  975.294213][T11152] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  975.321327][T16440] Bluetooth: hci4: link tx timeout
[  975.321349][T16440] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  975.340779][T16440] Bluetooth: hci4: link tx timeout
[  975.340802][T16440] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  975.354742][T16440] Bluetooth: hci4: link tx timeout
[  975.354762][T16440] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  976.099303][    C0] vkms_vblank_simulate: vblank timer overrun
[  976.347526][    C0] vkms_vblank_simulate: vblank timer overrun
[  976.811605][    C0] vkms_vblank_simulate: vblank timer overrun
[  977.148861][    C0] vkms_vblank_simulate: vblank timer overrun
[  977.348318][T16440] Bluetooth: hci4: command 0x0406 tx timeout
[  977.796756][    C0] vkms_vblank_simulate: vblank timer overrun
[  977.989610][    C0] vkms_vblank_simulate: vblank timer overrun
[  978.267628][    C0] vkms_vblank_simulate: vblank timer overrun
[  978.300322][    C0] vkms_vblank_simulate: vblank timer overrun
[  978.349091][    C0] vkms_vblank_simulate: vblank timer overrun
[  978.621640][T18841] binder: 18840:18841 unknown command 0
[  978.621663][T18841] binder: 18840:18841 ioctl c0306201 200000000080 returned -22
[  979.394709][    C0] vkms_vblank_simulate: vblank timer overrun
[  979.610674][    C0] vkms_vblank_simulate: vblank timer overrun
[  979.898683][    C0] vkms_vblank_simulate: vblank timer overrun
[  980.080966][    C0] vkms_vblank_simulate: vblank timer overrun
[  980.250273][    C0] vkms_vblank_simulate: vblank timer overrun
[  980.834789][   T38] audit: type=1326 audit(1757941283.880:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18849 comm="syz.2.4487" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x0
[  980.892718][    C0] vkms_vblank_simulate: vblank timer overrun
[  980.961757][    C0] vkms_vblank_simulate: vblank timer overrun
[  981.017779][    C0] vkms_vblank_simulate: vblank timer overrun
[  981.096714][    C0] vkms_vblank_simulate: vblank timer overrun
[  981.259127][    C0] vkms_vblank_simulate: vblank timer overrun
[  981.454572][T15378] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  981.529264][T15378] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  981.609118][T15378] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  981.663637][T15378] bond0 (unregistering): Released all slaves
[  981.713645][    C0] vkms_vblank_simulate: vblank timer overrun
[  981.820921][    C0] vkms_vblank_simulate: vblank timer overrun
[  981.997326][    C0] vkms_vblank_simulate: vblank timer overrun
[  982.043748][    C0] vkms_vblank_simulate: vblank timer overrun
[  982.260333][    C0] vkms_vblank_simulate: vblank timer overrun
[  982.324915][    C0] vkms_vblank_simulate: vblank timer overrun
[  982.527897][    C0] vkms_vblank_simulate: vblank timer overrun
[  982.643244][T15378] bond1 (unregistering): Released all slaves
[  982.780943][T18850] lo speed is unknown, defaulting to 1000
[  982.785185][T18850] lo speed is unknown, defaulting to 1000
[  982.858439][    C0] vkms_vblank_simulate: vblank timer overrun
[  982.974151][T15378] tipc: Left network mode
[  983.032862][    C0] vkms_vblank_simulate: vblank timer overrun
[  983.178846][    C0] vkms_vblank_simulate: vblank timer overrun
[  983.314069][    C0] vkms_vblank_simulate: vblank timer overrun
[  983.707092][T18895] overlayfs: failed to clone upperpath
[  983.888379][   T45] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  984.104426][   T45] usb 9-1: Using ep0 maxpacket: 16
[  984.107181][   T45] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  984.107232][   T45] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00
[  984.107258][   T45] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  984.122791][   T45] usb 9-1: config 0 descriptor??
[  984.610207][   T45] lua 0003:1E7D:2C2E.0035: global environment stack underflow
[  984.610229][   T45] lua 0003:1E7D:2C2E.0035: item 0 4 1 11 parsing failed
[  984.610977][   T45] lua 0003:1E7D:2C2E.0035: parse failed
[  984.611036][   T45] lua 0003:1E7D:2C2E.0035: probe with driver lua failed with error -22
[  984.803605][   T45] usb 9-1: USB disconnect, device number 8
[  985.746495][    C0] vkms_vblank_simulate: vblank timer overrun
[  986.198682][    C0] vkms_vblank_simulate: vblank timer overrun
[  986.976913][T15378] hsr_slave_0: left promiscuous mode
[  987.035270][T15378] hsr_slave_1: left promiscuous mode
[  987.036392][T15378] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  987.036424][T15378] batman_adv: batadv0: Removing interface: batadv_slave_0
[  987.294388][T18931] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4511'.
[  987.305196][T15378] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  987.305223][T15378] batman_adv: batadv0: Removing interface: batadv_slave_1
[  987.372982][T15378] batman_adv: batadv0: Removing interface: dummy0
[  987.920702][T15378] veth1_macvtap: left promiscuous mode
[  987.920833][T15378] veth0_macvtap: left promiscuous mode
[  987.921127][T15378] veth1_vlan: left promiscuous mode
[  987.921358][T15378] veth0_vlan: left promiscuous mode
[  990.267273][    C0] vkms_vblank_simulate: vblank timer overrun
[  990.482307][T16440] Bluetooth: hci4: command 0x0406 tx timeout
[  991.496348][    C0] vkms_vblank_simulate: vblank timer overrun
[  991.658291][    C0] vkms_vblank_simulate: vblank timer overrun
[  991.666646][T18953] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4520'.
[  991.716770][    C0] vkms_vblank_simulate: vblank timer overrun
[  991.993973][    C0] vkms_vblank_simulate: vblank timer overrun
[  992.171568][    C0] vkms_vblank_simulate: vblank timer overrun
[  992.340353][    C0] vkms_vblank_simulate: vblank timer overrun
[  992.545627][    C0] vkms_vblank_simulate: vblank timer overrun
[  992.581619][T18963] ref_ctr_offset mismatch. inode: 0x1416 offset: 0x0 ref_ctr_offset(old): 0x200000000100 ref_ctr_offset(new): 0x0
[  992.915348][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.062343][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.114810][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.197005][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.263158][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.316268][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.337521][T18965] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4525'.
[  993.582645][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.654291][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.780214][    C0] vkms_vblank_simulate: vblank timer overrun
[  993.944578][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.219477][T15378] team0 (unregistering): Port device team_slave_1 removed
[  994.318493][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.378905][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.450387][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.520670][T15378] team0 (unregistering): Port device team_slave_0 removed
[  994.558589][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.609020][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.694945][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.758825][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.917580][    C0] vkms_vblank_simulate: vblank timer overrun
[  994.991622][    C0] vkms_vblank_simulate: vblank timer overrun
[  995.109557][    C0] vkms_vblank_simulate: vblank timer overrun
[  995.259874][    C0] vkms_vblank_simulate: vblank timer overrun
[  995.306927][    C0] vkms_vblank_simulate: vblank timer overrun
[  995.366187][    C0] vkms_vblank_simulate: vblank timer overrun
[  995.561213][    C0] vkms_vblank_simulate: vblank timer overrun
[  995.694617][    C0] vkms_vblank_simulate: vblank timer overrun
[  995.814852][    C0] vkms_vblank_simulate: vblank timer overrun
[  995.999369][    C0] vkms_vblank_simulate: vblank timer overrun
[  996.557271][    C0] vkms_vblank_simulate: vblank timer overrun
[  996.608769][    C0] vkms_vblank_simulate: vblank timer overrun
[  996.676274][    C0] vkms_vblank_simulate: vblank timer overrun
[  996.913211][    C0] vkms_vblank_simulate: vblank timer overrun
[  997.506465][    C0] vkms_vblank_simulate: vblank timer overrun
[  997.773378][T18965] macvtap1: entered allmulticast mode
[  997.773406][T18965] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode
[  997.995609][T18971] binder: BINDER_SET_CONTEXT_MGR already set
[  997.995632][T18971] binder: 18970:18971 ioctl 4018620d 200000000040 returned -16
[  998.077925][    C0] vkms_vblank_simulate: vblank timer overrun
[  998.173061][    C0] vkms_vblank_simulate: vblank timer overrun
[  998.449838][    C0] vkms_vblank_simulate: vblank timer overrun
[  998.489357][    C0] vkms_vblank_simulate: vblank timer overrun
[  998.522828][    C0] vkms_vblank_simulate: vblank timer overrun
[  998.995888][    C0] vkms_vblank_simulate: vblank timer overrun
[  999.132318][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[  999.132401][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[  999.674469][T18997] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4537'.
[ 1000.067203][T19002] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4538'.
[ 1000.187350][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1000.338293][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1000.495626][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1000.543669][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1000.622162][T19012] overlayfs: failed to clone upperpath
[ 1000.804605][T15378] IPVS: stop unused estimator thread 0...
[ 1002.660072][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1004.925946][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1005.252677][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1005.354849][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1008.006067][T19062] netlink: 129704 bytes leftover after parsing attributes in process `syz.8.4555'.
[ 1010.988881][ T6080] usb 10-1: new full-speed USB device number 3 using dummy_hcd
[ 1011.157300][ T6080] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1011.157342][ T6080] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[ 1011.157361][ T6080] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1011.157377][ T6080] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1011.157407][ T6080] usb 10-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[ 1011.157424][ T6080] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1011.256514][ T6080] usb 10-1: config 0 descriptor??
[ 1011.267669][ T6080] gspca_main: spca561-2.14.0 probing abcd:cdee
[ 1011.699917][T19092] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4563'.
[ 1011.789205][ T6080] spca561 10-1:0.0: probe with driver spca561 failed with error -22
[ 1011.790410][ T6080] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[ 1011.790449][ T6080] usb 10-1: MIDIStreaming interface descriptor not found
[ 1012.055733][  T989] usb 10-1: USB disconnect, device number 3
[ 1012.302405][T19096] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4565'.
[ 1012.380748][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1012.572593][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1012.591719][T19099] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4566'.
[ 1012.591768][T19099] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4566'.
[ 1012.728291][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1013.253539][T19106] netlink: 'syz.2.4570': attribute type 1 has an invalid length.
[ 1013.354536][T19110] binder: 19109:19110 unknown command 0
[ 1013.354561][T19110] binder: 19109:19110 ioctl c0306201 200000000080 returned -22
[ 1013.497667][T19108] bond1: (slave bridge1): making interface the new active one
[ 1013.514955][T19108] bond1: (slave bridge1): Enslaving as an active interface with an up link
[ 1013.680496][T19106] bond1: (slave bridge2): Enslaving as an active interface with a down link
[ 1016.998825][T16440] Bluetooth: hci3: unexpected event for opcode 0x2012
[ 1018.010102][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1018.824912][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1020.969825][ T1084] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[ 1021.146041][ T1084] usb 10-1: config 0 has no interfaces?
[ 1021.151162][ T1084] usb 10-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 1021.151200][ T1084] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1021.151225][ T1084] usb 10-1: Product: syz
[ 1021.151242][ T1084] usb 10-1: Manufacturer: syz
[ 1021.151259][ T1084] usb 10-1: SerialNumber: syz
[ 1021.207277][ T1084] usb 10-1: config 0 descriptor??
[ 1021.458548][T19192] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1021.459049][T19192] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1022.198308][ T5918] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1022.238857][   T45] page_pool_release_retry() stalled pool shutdown: id 59, 3329 inflight 604 sec
[ 1022.348609][ T5918] usb 9-1: Using ep0 maxpacket: 16
[ 1022.352980][ T5918] usb 9-1: config 0 has an invalid interface number: 41 but max is 0
[ 1022.353010][ T5918] usb 9-1: config 0 has no interface number 0
[ 1022.353065][ T5918] usb 9-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[ 1022.353091][ T5918] usb 9-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[ 1022.353116][ T5918] usb 9-1: config 0 interface 41 has no altsetting 0
[ 1022.355759][ T5918] usb 9-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1022.355781][ T5918] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1022.355795][ T5918] usb 9-1: Product: syz
[ 1022.355805][ T5918] usb 9-1: Manufacturer: syz
[ 1022.355815][ T5918] usb 9-1: SerialNumber: syz
[ 1022.437388][ T5918] usb 9-1: config 0 descriptor??
[ 1022.438592][T19206] raw-gadget.2 gadget.8: fail, usb_ep_enable returned -22
[ 1022.438745][T19206] raw-gadget.2 gadget.8: fail, usb_ep_enable returned -22
[ 1022.700905][T19206] raw-gadget.2 gadget.8: fail, usb_ep_enable returned -22
[ 1022.701086][T19206] raw-gadget.2 gadget.8: fail, usb_ep_enable returned -22
[ 1023.318795][ T5918] CoreChips 9-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffe0
[ 1024.129409][T19240] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4610'.
[ 1024.142852][T19240] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4610'.
[ 1024.143273][T19240] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4610'.
[ 1024.144309][T19240] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4610'.
[ 1024.147089][T19240] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4610'.
[ 1024.564338][ T5918] CoreChips 9-1:0.41 (unnamed net_device) (uninitialized): Error reading RX_CTL register:ffffffb9
[ 1024.565037][ T5918] CoreChips 9-1:0.41 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0000:ffffffb9
[ 1024.565329][ T5918] CoreChips 9-1:0.41: probe with driver CoreChips failed with error -71
[ 1024.621144][ T5918] usb 9-1: USB disconnect, device number 9
[ 1024.999007][ T5918] usb 10-1: USB disconnect, device number 4
[ 1025.538771][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1025.811531][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1025.900009][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1026.018611][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1026.818578][  T989] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[ 1026.990642][  T989] usb 2-1: Using ep0 maxpacket: 16
[ 1026.993799][  T989] usb 2-1: config 0 has an invalid interface number: 251 but max is 0
[ 1026.993825][  T989] usb 2-1: config 0 has no interface number 0
[ 1026.993873][  T989] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[ 1026.993901][  T989] usb 2-1: config 0 interface 251 altsetting 0 endpoint 0x82 has invalid maxpacket 12336, setting to 1024
[ 1026.993927][  T989] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[ 1026.997595][  T989] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[ 1026.997626][  T989] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1026.997647][  T989] usb 2-1: Product: syz
[ 1026.997663][  T989] usb 2-1: Manufacturer: syz
[ 1026.997678][  T989] usb 2-1: SerialNumber: syz
[ 1027.106178][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1027.333330][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1028.043238][  T989] usb 2-1: config 0 descriptor??
[ 1028.124260][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1028.199201][T19273] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1028.199526][T19273] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1028.750573][  T989] asix 2-1:0.251: probe with driver asix failed with error -71
[ 1028.783831][  T989] usb 2-1: USB disconnect, device number 60
[ 1030.058295][ T5932] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[ 1030.218373][ T5932] usb 2-1: Using ep0 maxpacket: 8
[ 1030.220268][ T5932] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1030.220289][ T5932] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1030.224231][ T5932] usb 2-1: config 0 descriptor??
[ 1030.437388][ T5932] asix 2-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 1031.106173][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1032.918965][ T5932] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 1032.919188][ T5932] asix 2-1:0.0: probe with driver asix failed with error -71
[ 1032.925869][ T5932] usb 2-1: USB disconnect, device number 61
[ 1033.688032][T19317] netlink: 'syz.7.4636': attribute type 11 has an invalid length.
[ 1037.846862][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1037.928751][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1038.122776][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1038.213633][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1041.728282][   T38] audit: type=1800 audit(1757941344.770:598): pid=19374 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.4652" name="3" dev="overlay" ino=5278 res=0 errno=0
[ 1041.764083][T15370] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1041.764122][T15370] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1042.497935][T15370] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1042.497964][T15370] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.848965][T15370] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1043.849019][T15370] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1044.041168][T19389] netlink: 212408 bytes leftover after parsing attributes in process `syz.7.4658'.
[ 1044.041239][T19389] netlink: zone id is out of range
[ 1044.041277][T19389] netlink: get zone limit has 8 unknown bytes
[ 1044.984003][   T38] audit: type=1804 audit(1757941348.030:599): pid=19400 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.4663" name="file0" dev="ramfs" ino=74996 res=1 errno=0
[ 1045.290091][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1045.564520][T15370] team0: Port device netdevsim0 removed
[ 1045.583782][T15370] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1045.583825][T15370] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1045.683278][T19401] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[ 1045.717058][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1045.846389][T19413] binder: 19412:19413 ioctl c0306201 200000000080 returned -14
[ 1047.122698][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1047.475479][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1047.839936][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1050.047250][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1050.928507][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1052.862335][   T38] audit: type=1326 audit(1757941355.910:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19495 comm="syz.2.4693" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fba1828eba9 code=0x0
[ 1054.998350][T19516] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4701'.
[ 1055.194942][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1055.260292][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1055.310869][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1055.494252][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1055.836457][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1055.985600][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1056.045582][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1056.125537][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1056.322015][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1056.390910][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1057.089143][T15370] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1057.282227][T15370] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1057.342658][T15370] bond0 (unregistering): Released all slaves
[ 1057.686371][T15370] tipc: Left network mode
[ 1058.918992][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1059.059755][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1059.222649][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1059.322236][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1059.673775][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[ 1059.673878][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[ 1062.031873][T15370] hsr_slave_0: left promiscuous mode
[ 1062.074334][T15370] hsr_slave_1: left promiscuous mode
[ 1062.079338][T15370] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1062.137110][T15370] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1062.137145][T15370] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1062.467214][T15370] veth1_macvtap: left promiscuous mode
[ 1062.467338][T15370] veth0_macvtap: left promiscuous mode
[ 1062.467627][T15370] veth1_vlan: left promiscuous mode
[ 1062.467888][T15370] veth0_vlan: left promiscuous mode
[ 1062.580375][T19572] overlayfs: failed to clone upperpath
[ 1064.111635][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1064.191247][   T38] audit: type=1326 audit(1757941367.240:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19593 comm="syz.1.4728" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5505d3eba9 code=0x0
[ 1064.269533][T19597] overlayfs: failed to clone upperpath
[ 1064.618829][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1064.688102][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1064.804803][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1065.154353][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1065.336122][T19609] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4734'.
[ 1065.921103][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1066.359439][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1067.637042][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1067.979391][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1069.856113][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1070.845497][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1071.174006][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1071.284192][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1071.485317][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1071.789763][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1071.915265][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1071.988308][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1072.159254][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1072.241366][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1072.309005][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1072.379568][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1072.521138][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1072.714285][T19647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1072.765107][T15370] team0 (unregistering): Port device team_slave_1 removed
[ 1072.777710][T19647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1072.811298][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1072.874326][T19647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1072.976738][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.027192][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.124908][T15370] team0 (unregistering): Port device team_slave_0 removed
[ 1073.319522][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.376482][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.440896][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.619324][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.685316][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.809849][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.868285][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1073.936042][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1074.256177][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1074.504461][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1075.195569][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1075.922052][T19575] dummy0: entered promiscuous mode
[ 1075.922223][T19575] macsec1: entered allmulticast mode
[ 1075.922239][T19575] dummy0: entered allmulticast mode
[ 1075.949694][T19575] dummy0: left allmulticast mode
[ 1075.949849][T19575] dummy0: left promiscuous mode
[ 1076.536327][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1076.651479][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1076.758684][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1077.457437][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1077.854714][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1077.881408][T19673] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[ 1078.021765][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1078.089519][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1078.626499][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1078.917532][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1080.007111][T19693] netlink: 'syz.8.4759': attribute type 10 has an invalid length.
[ 1080.161809][T19693] team0: Port device dummy0 added
[ 1080.189289][T19695] netlink: 'syz.8.4759': attribute type 10 has an invalid length.
[ 1080.190597][T19695] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1080.284345][T19695] team0: Failed to send options change via netlink (err -105)
[ 1080.284591][T19695] team0: Failed to send port change of device dummy0 via netlink (err -105)
[ 1080.285020][T19695] team0: Port device dummy0 removed
[ 1080.329059][T19695] bond0: (slave dummy0): Enslaving as an active interface with an up link
[ 1080.942971][T15370] IPVS: stop unused estimator thread 0...
[ 1081.628364][  T989] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[ 1082.033107][  T989] usb 9-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1082.033141][  T989] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1082.033164][  T989] usb 9-1: Product: syz
[ 1082.033175][  T989] usb 9-1: Manufacturer: syz
[ 1082.033186][  T989] usb 9-1: SerialNumber: syz
[ 1082.338256][ T1084] page_pool_release_retry() stalled pool shutdown: id 59, 3329 inflight 664 sec
[ 1083.797384][  T989] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[ 1084.210286][  T989] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPROTO
[ 1084.210717][  T989] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[ 1084.210758][  T989] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1084.211327][  T989] lan78xx 9-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1084.321871][  T989] lan78xx 9-1:1.0: probe with driver lan78xx failed with error -71
[ 1084.423956][  T989] usb 9-1: USB disconnect, device number 10
[ 1091.227832][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1092.445655][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1092.447274][T16608] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[ 1092.618737][T16608] usb 2-1: Using ep0 maxpacket: 32
[ 1092.623164][T16608] usb 2-1: config 0 has an invalid interface number: 54 but max is 1
[ 1092.623201][T16608] usb 2-1: config 0 has an invalid interface number: 61 but max is 1
[ 1092.623222][T16608] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1092.623242][T16608] usb 2-1: config 0 has no interface number 0
[ 1092.623259][T16608] usb 2-1: config 0 has no interface number 1
[ 1092.623307][T16608] usb 2-1: too many endpoints for config 0 interface 54 altsetting 242: 79, using maximum allowed: 30
[ 1092.623349][T16608] usb 2-1: config 0 interface 54 altsetting 242 has 0 endpoint descriptors, different from the interface descriptor's value: 79
[ 1092.623378][T16608] usb 2-1: config 0 interface 54 has no altsetting 0
[ 1092.623398][T16608] usb 2-1: config 0 interface 61 has no altsetting 0
[ 1092.718222][T16608] usb 2-1: New USB device found, idVendor=05c6, idProduct=9001, bcdDevice=e9.5b
[ 1092.718255][T16608] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1092.718277][T16608] usb 2-1: Product: syz
[ 1092.718292][T16608] usb 2-1: Manufacturer: syz
[ 1092.718308][T16608] usb 2-1: SerialNumber: syz
[ 1092.766039][T16608] usb 2-1: config 0 descriptor??
[ 1093.160906][T16608] usb 2-1: unknown number of interfaces: 2
[ 1093.218824][T16608] usb 2-1: USB disconnect, device number 62
[ 1093.873503][T19798] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4794'.
[ 1094.597045][ T5848] hid-generic 0000:0004:0000.0036: unknown main item tag 0x0
[ 1094.597082][ T5848] hid-generic 0000:0004:0000.0036: unknown main item tag 0x0
[ 1094.597117][ T5848] hid-generic 0000:0004:0000.0036: unknown main item tag 0x0
[ 1094.849713][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1094.894486][ T5848] hid-generic 0000:0004:0000.0036: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1095.120116][T19817] hfs: can't find a HFS filesystem on dev nullb0
[ 1095.159463][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1095.430102][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1095.983098][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1096.118390][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1096.212179][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1096.298407][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1096.321572][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1096.538998][T19823] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4802'.
[ 1096.782209][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1096.858700][T19830] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4802'.
[ 1097.826121][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1097.977190][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1098.625678][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1098.661833][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1098.697554][T19850] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[ 1098.813941][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1099.052649][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1099.485097][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1099.567206][T19850] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1099.570640][T19850] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1099.712097][T19850] bridge0: entered allmulticast mode
[ 1100.007925][T11152] Bluetooth: hci3: unexpected event for opcode 0x0c05
[ 1100.257434][   T38] audit: type=1326 audit(1757941403.300:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.257568][   T38] audit: type=1326 audit(1757941403.300:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.258340][   T38] audit: type=1326 audit(1757941403.300:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.325347][   T38] audit: type=1326 audit(1757941403.310:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.325410][   T38] audit: type=1326 audit(1757941403.310:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.325458][   T38] audit: type=1326 audit(1757941403.310:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.325513][   T38] audit: type=1326 audit(1757941403.310:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.325560][   T38] audit: type=1326 audit(1757941403.310:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.325606][   T38] audit: type=1326 audit(1757941403.310:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1100.325652][   T38] audit: type=1326 audit(1757941403.310:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19868 comm="syz.8.4817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a822eba9 code=0x7ffc0000
[ 1102.268673][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1102.963020][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1103.511049][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1103.666630][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1105.003871][T19910] netdevsim netdevsim7 : renamed from netdevsim0
[ 1107.419755][ T5918] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[ 1107.576726][ T5918] usb 10-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1107.576758][ T5918] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1107.576780][ T5918] usb 10-1: Product: syz
[ 1107.576795][ T5918] usb 10-1: Manufacturer: syz
[ 1107.576810][ T5918] usb 10-1: SerialNumber: syz
[ 1108.379570][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1108.729558][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1110.159093][ T5918] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): EEPROM read operation timeout
[ 1110.359917][ T5918] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPROTO
[ 1110.360448][ T5918] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[ 1110.360511][ T5918] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1110.365759][ T5918] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1110.550681][ T5918] lan78xx 10-1:1.0: probe with driver lan78xx failed with error -71
[ 1110.600706][ T5918] usb 10-1: USB disconnect, device number 5
[ 1111.356925][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1111.862317][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1112.104779][T19986] overlayfs: failed to clone upperpath
[ 1113.932975][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1114.061722][T20010] JFS: charset not found
[ 1114.483192][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1114.983576][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1117.278926][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1119.468896][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1119.733551][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1119.975435][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1121.138982][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.139078][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[ 1121.319776][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1122.785303][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1122.898754][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1122.962204][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1122.993304][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1123.039150][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1123.086407][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1123.200338][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1123.464537][   T38] kauditd_printk_skb: 32 callbacks suppressed
[ 1123.464558][   T38] audit: type=1326 audit(1757941426.510:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.464611][   T38] audit: type=1326 audit(1757941426.510:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.526179][   T38] audit: type=1326 audit(1757941426.570:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.526264][   T38] audit: type=1326 audit(1757941426.570:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.526314][   T38] audit: type=1326 audit(1757941426.570:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.526362][   T38] audit: type=1326 audit(1757941426.570:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.526422][   T38] audit: type=1326 audit(1757941426.570:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.526471][   T38] audit: type=1326 audit(1757941426.570:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.526518][   T38] audit: type=1326 audit(1757941426.570:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1123.526565][   T38] audit: type=1326 audit(1757941426.570:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20083 comm="syz.9.4886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efd908beba9 code=0x7ffc0000
[ 1127.116327][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1127.499994][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1127.843442][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1128.007742][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1128.513200][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1128.664043][T20114] fuse: Bad value for 'fd'
[ 1128.857224][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1130.004823][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1131.334577][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1132.242828][T20144] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1132.250155][T20144] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1133.248984][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1134.304855][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1134.612201][T20154] 
[ 1134.612216][T20154] ============================================
[ 1134.612225][T20154] WARNING: possible recursive locking detected
[ 1134.612239][T20154] syzkaller #0 Not tainted
[ 1134.612251][T20154] --------------------------------------------
[ 1134.612258][T20154] syz.2.4906/20154 is trying to acquire lock:
[ 1134.612271][T20154] ffff8880213ea318 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#8){+...}-{3:3}, at: __dev_queue_xmit+0xd58/0x3b70
[ 1134.612350][T20154] 
[ 1134.612350][T20154] but task is already holding lock:
[ 1134.612357][T20154] ffff8880213ea318 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#8){+...}-{3:3}, at: __dev_queue_xmit+0xd58/0x3b70
[ 1134.612407][T20154] 
[ 1134.612407][T20154] other info that might help us debug this:
[ 1134.612414][T20154]  Possible unsafe locking scenario:
[ 1134.612414][T20154] 
[ 1134.612422][T20154]        CPU0
[ 1134.612427][T20154]        ----
[ 1134.612433][T20154]   lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#8);
[ 1134.612452][T20154]   lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#8);
[ 1134.612472][T20154] 
[ 1134.612472][T20154]  *** DEADLOCK ***
[ 1134.612472][T20154] 
[ 1134.612477][T20154]  May be due to missing lock nesting notation
[ 1134.612477][T20154] 
[ 1134.612485][T20154] 18 locks held by syz.2.4906/20154:
[ 1134.612497][T20154]  #0: ffff88814dd86ad0 (sk_lock-AF_INET6){+.+.}-{0:0}, at: sctp_sendmsg+0xb86/0x2590
[ 1134.612551][T20154]  #1: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: sctp_v6_xmit+0x60f/0x1300
[ 1134.612603][T20154]  #2: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: ip6_finish_output2+0x710/0x1720
[ 1134.612653][T20154]  #3: ffffffff8d84a960 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1134.612702][T20154]  #4: ffff8880b8923d90 ((softirq_ctrl.lock)){+.+.}-{3:3}, at: __local_bh_disable_ip+0x264/0x400
[ 1134.612750][T20154]  #5: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[ 1134.612797][T20154]  #6: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1134.612844][T20154]  #7: ffffffff8d9a8de0 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x26f/0x3b70
[ 1134.612888][T20154]  #8: ffff8880213ea318 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#8){+...}-{3:3}, at: __dev_queue_xmit+0xd58/0x3b70
[ 1134.613090][T20154]  #9: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_lock+0x1bb/0x2c0
[ 1134.613144][T20154]  #10: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: icmp6_send+0x1e9/0x1940
[ 1134.613199][T20154]  #11: ffffffff8d84a960 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1134.613251][T20154]  #12: ffff88802fa90c50 (k-slock-AF_INET6){+...}-{3:3}, at: icmp6_send+0xc5c/0x1940
[ 1134.613321][T20154]  #13: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: rt_spin_trylock+0xfa/0x180
[ 1134.613369][T20154]  #14: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: ip6_send_skb+0x10f/0x390
[ 1134.613418][T20154]  #15: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: ip6_finish_output2+0x710/0x1720
[ 1134.613467][T20154]  #16: ffffffff8d84a960 (local_bh){.+.+}-{1:3}, at: __local_bh_disable_ip+0xa1/0x400
[ 1134.613516][T20154]  #17: ffffffff8d9a8de0 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x26f/0x3b70
[ 1134.613560][T20154] 
[ 1134.613560][T20154] stack backtrace:
[ 1134.613575][T20154] CPU: 1 UID: 0 PID: 20154 Comm: syz.2.4906 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1134.613597][T20154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1134.613611][T20154] Call Trace:
[ 1134.613620][T20154]  <TASK>
[ 1134.613630][T20154]  dump_stack_lvl+0x189/0x250
[ 1134.613663][T20154]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1134.613692][T20154]  ? __pfx__printk+0x10/0x10
[ 1134.613715][T20154]  ? print_lock_name+0xde/0x100
[ 1134.613748][T20154]  print_deadlock_bug+0x28b/0x2a0
[ 1134.613780][T20154]  validate_chain+0x1a3f/0x2140
[ 1134.613813][T20154]  ? __bfs+0x151/0x2a0
[ 1134.613844][T20154]  ? check_path+0x21/0x40
[ 1134.613860][T20154]  ? check_noncircular+0xe0/0x160
[ 1134.613890][T20154]  ? __lock_acquire+0xab9/0xd20
[ 1134.613915][T20154]  __lock_acquire+0xab9/0xd20
[ 1134.613942][T20154]  ? __dev_queue_xmit+0xd58/0x3b70
[ 1134.613979][T20154]  lock_acquire+0x120/0x360
[ 1134.614003][T20154]  ? __dev_queue_xmit+0xd58/0x3b70
[ 1134.614028][T20154]  ? __lock_acquire+0xab9/0xd20
[ 1134.614055][T20154]  rt_spin_lock+0x88/0x2c0
[ 1134.614076][T20154]  ? __dev_queue_xmit+0xd58/0x3b70
[ 1134.614098][T20154]  ? __pfx_rt_spin_lock+0x10/0x10
[ 1134.614124][T20154]  __dev_queue_xmit+0xd58/0x3b70
[ 1134.614149][T20154]  ? __dev_queue_xmit+0x26f/0x3b70
[ 1134.614176][T20154]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1134.614196][T20154]  ? read_seqbegin+0x128/0x2e0
[ 1134.614220][T20154]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1134.614249][T20154]  ? read_seqbegin+0x27c/0x2e0
[ 1134.614285][T20154]  ? __pfx_read_seqbegin+0x10/0x10
[ 1134.614311][T20154]  ? ___neigh_create+0xf02/0x2360
[ 1134.614333][T20154]  ? ___neigh_create+0x1d71/0x2360
[ 1134.614367][T20154]  ? ip6_finish_output2+0x710/0x1720
[ 1134.614392][T20154]  ip6_finish_output2+0x1273/0x1720
[ 1134.614419][T20154]  ? ip6_finish_output2+0x710/0x1720
[ 1134.614445][T20154]  ? ip6_mtu+0x7d/0x3f0
[ 1134.614465][T20154]  ? __pfx_ip6_finish_output2+0x10/0x10
[ 1134.614490][T20154]  ? ip6_mtu+0x7d/0x3f0
[ 1134.614509][T20154]  ? ip6_mtu+0x321/0x3f0
[ 1134.614530][T20154]  ? ip6_finish_output+0x2ef/0x4e0
[ 1134.614550][T20154]  ? ip6_send_skb+0x10f/0x390
[ 1134.614573][T20154]  ip6_send_skb+0x1d5/0x390
[ 1134.614598][T20154]  icmp6_send+0x12c6/0x1940
[ 1134.614627][T20154]  ? icmp6_send+0x1e9/0x1940
[ 1134.614663][T20154]  ? __pfx_icmp6_send+0x10/0x10
[ 1134.614690][T20154]  ? __lock_acquire+0xab9/0xd20
[ 1134.614725][T20154]  ? ip6_neigh_lookup+0x14e/0x470
[ 1134.614758][T20154]  ? __ipv6_addr_type+0x10c/0x2f0
[ 1134.614784][T20154]  ? ip6_tnl_xmit_ctl+0x19f/0x660
[ 1134.614811][T20154]  ip6_link_failure+0x3b/0x4c0
[ 1134.614829][T20154]  ? __pfx_ip6_link_failure+0x10/0x10
[ 1134.614850][T20154]  ip6_tnl_xmit+0xe05/0x2b10
[ 1134.614877][T20154]  ? lockdep_unlock+0x89/0x120
[ 1134.614908][T20154]  ? __pfx_ip6_tnl_xmit+0x10/0x10
[ 1134.614938][T20154]  ? __pfx_make_kuid+0x10/0x10
[ 1134.614961][T20154]  ? iptunnel_handle_offloads+0x2fd/0x630
[ 1134.614992][T20154]  ip6_tnl_start_xmit+0xc1d/0x1150
[ 1134.615026][T20154]  ? __pfx_ip6_tnl_start_xmit+0x10/0x10
[ 1134.615053][T20154]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1134.615092][T20154]  dev_hard_start_xmit+0x2ed/0x870
[ 1134.615119][T20154]  sch_direct_xmit+0x241/0x4b0
[ 1134.615146][T20154]  ? __pfx_sch_direct_xmit+0x10/0x10
[ 1134.615186][T20154]  __dev_queue_xmit+0x19fc/0x3b70
[ 1134.615210][T20154]  ? __dev_queue_xmit+0x26f/0x3b70
[ 1134.615238][T20154]  ? __pfx___dev_queue_xmit+0x10/0x10
[ 1134.615264][T20154]  ? read_seqbegin+0x128/0x2e0
[ 1134.615287][T20154]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1134.615315][T20154]  ? read_seqbegin+0x27c/0x2e0
[ 1134.615340][T20154]  ? __pfx_read_seqbegin+0x10/0x10
[ 1134.615366][T20154]  ? ___neigh_create+0xf02/0x2360
[ 1134.615388][T20154]  ? ___neigh_create+0x1d71/0x2360
[ 1134.615420][T20154]  ? ip6_finish_output2+0x710/0x1720
[ 1134.615443][T20154]  ip6_finish_output2+0x1273/0x1720
[ 1134.615469][T20154]  ? ip6_finish_output2+0x710/0x1720
[ 1134.615497][T20154]  ? __pfx_ip6_finish_output2+0x10/0x10
[ 1134.615527][T20154]  ip6_fragment+0x1407/0x1e60
[ 1134.615557][T20154]  ? __pfx_ip6_finish_output2+0x10/0x10
[ 1134.615585][T20154]  ? __pfx_ip6_fragment+0x10/0x10
[ 1134.615608][T20154]  ? ip6_finish_output+0x219/0x4e0
[ 1134.615630][T20154]  ip6_xmit+0x107a/0x1840
[ 1134.615655][T20154]  ? __pfx_ip6_xmit+0x10/0x10
[ 1134.615678][T20154]  ? sctp_v6_xmit+0x60f/0x1300
[ 1134.615707][T20154]  ? sctp_v6_xmit+0x60f/0x1300
[ 1134.615732][T20154]  sctp_v6_xmit+0xa33/0x1300
[ 1134.615757][T20154]  ? __pfx_kernel_fpu_begin_mask+0x10/0x10
[ 1134.615782][T20154]  ? __pfx_sctp_v6_xmit+0x10/0x10
[ 1134.615808][T20154]  ? crc32c+0x7e/0x460
[ 1134.615829][T20154]  ? skb_crc32c+0x728/0x860
[ 1134.615852][T20154]  ? sctp_packet_transmit+0x14ed/0x2bb0
[ 1134.615871][T20154]  ? kmem_cache_free+0x195/0x510
[ 1134.615898][T20154]  sctp_packet_transmit+0x257e/0x2bb0
[ 1134.615932][T20154]  sctp_packet_singleton+0x233/0x330
[ 1134.615956][T20154]  ? __pfx_sctp_packet_singleton+0x10/0x10
[ 1134.615983][T20154]  ? sctp_outq_select_transport+0x462/0x570
[ 1134.616005][T20154]  ? sctp_transport_burst_limited+0x19c/0x280
[ 1134.616033][T20154]  sctp_outq_flush+0x4f0/0x3140
[ 1134.616053][T20154]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 1134.616084][T20154]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1134.616112][T20154]  ? rcu_is_watching+0x15/0xb0
[ 1134.616141][T20154]  ? __pfx_sctp_outq_flush+0x10/0x10
[ 1134.616165][T20154]  ? sctp_outq_tail+0x612/0x8c0
[ 1134.616185][T20154]  ? sctp_outq_uncork+0x4d/0xa0
[ 1134.616207][T20154]  sctp_do_sm+0x5332/0x5a20
[ 1134.616231][T20154]  ? sctp_stream_init_ext+0x57/0x180
[ 1134.616259][T20154]  ? sctp_sendmsg_to_asoc+0x12fd/0x1810
[ 1134.616289][T20154]  ? sctp_sendmsg+0x174f/0x2590
[ 1134.616315][T20154]  ? __sock_sendmsg+0x19c/0x270
[ 1134.616341][T20154]  ? __pfx_sctp_do_sm+0x10/0x10
[ 1134.616381][T20154]  ? __sk_mem_raise_allocated+0xb39/0x1360
[ 1134.616402][T20154]  ? __genradix_ptr+0x1e1/0x220
[ 1134.616429][T20154]  sctp_primitive_ASSOCIATE+0x95/0xc0
[ 1134.616450][T20154]  sctp_sendmsg_to_asoc+0x102d/0x1810
[ 1134.616482][T20154]  ? sctp_assoc_add_peer+0xcfa/0x13b0
[ 1134.616507][T20154]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[ 1134.616535][T20154]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[ 1134.616556][T20154]  ? lock_sock_nested+0x5f/0x130
[ 1134.616578][T20154]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[ 1134.616599][T20154]  ? security_sctp_bind_connect+0x7e/0x2e0
[ 1134.616624][T20154]  sctp_sendmsg+0x174f/0x2590
[ 1134.616658][T20154]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1134.616685][T20154]  ? __lock_acquire+0xab9/0xd20
[ 1134.616712][T20154]  ? irqentry_exit+0x74/0x90
[ 1134.616743][T20154]  ? __pfx_sctp_sendmsg+0x10/0x10
[ 1134.616770][T20154]  ? inet_sendmsg+0x2f4/0x370
[ 1134.616795][T20154]  __sock_sendmsg+0x19c/0x270
[ 1134.616818][T20154]  __sys_sendto+0x3c7/0x520
[ 1134.616847][T20154]  ? __pfx___sys_sendto+0x10/0x10
[ 1134.616873][T20154]  ? do_futex+0x395/0x420
[ 1134.616911][T20154]  ? rcu_is_watching+0x15/0xb0
[ 1134.616941][T20154]  __x64_sys_sendto+0xde/0x100
[ 1134.616971][T20154]  do_syscall_64+0xfa/0x3b0
[ 1134.616986][T20154]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1134.617014][T20154]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.617033][T20154]  ? clear_bhb_loop+0x60/0xb0
[ 1134.617053][T20154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1134.617072][T20154] RIP: 0033:0x7fba1828eba9
[ 1134.617091][T20154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1134.617110][T20154] RSP: 002b:00007fba164b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1134.617133][T20154] RAX: ffffffffffffffda RBX: 00007fba184d6180 RCX: 00007fba1828eba9
[ 1134.617149][T20154] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000005
[ 1134.617164][T20154] RBP: 00007fba18311e19 R08: 0000200000000080 R09: 000000000000001c
[ 1134.617180][T20154] R10: 0000000000000051 R11: 0000000000000246 R12: 0000000000000000
[ 1134.617194][T20154] R13: 00007fba184d6218 R14: 00007fba184d6180 R15: 00007fffa6f04cc8
[ 1134.617219][T20154]  </TASK>