last executing test programs:

18.655961504s ago: executing program 1 (id=1404):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0xa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='contention_end\x00', r0, 0x0, 0xa575}, 0x18)
socket$inet6(0xa, 0x11, 0x7)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
arch_prctl$ARCH_SET_CPUID(0x1012, 0x0)
arch_prctl$ARCH_SET_CPUID(0x1012, 0x1)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000c80)={r4, 0x0, {0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200", [0xfffffffffffffffc, 0x10000]}})
r5 = dup(0xffffffffffffffff)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc2c45512, &(0x7f0000000500)={{0x8, 0x2, 0xfffffffd, 0xff, 'syz1\x00', 0x4}, 0x1, [0x56, 0x4, 0xa71, 0x4, 0x10004, 0x4, 0x0, 0xfffffff7, 0xfffffff8, 0x2, 0x0, 0x80000001, 0x3e, 0x10001, 0x1ff, 0x8, 0x70, 0xffff, 0x8, 0x7d0f, 0x6, 0xf, 0x9, 0xb, 0x8, 0x3, 0x6, 0x0, 0xfffffff7, 0x3, 0x1, 0x80, 0x2, 0x6, 0x9, 0x100000, 0x40c1f881, 0x29b0, 0x1, 0x1d, 0x6, 0x6, 0x4, 0x8, 0x6, 0x6, 0xfff, 0x2, 0x5, 0xe1, 0x6, 0x3b233bf5, 0x1a, 0x81, 0x9, 0x4, 0x9, 0x10001, 0xc, 0x10001, 0x7d60, 0x64c2, 0x1000, 0x6, 0x81, 0x6, 0xfffffff9, 0x80000000, 0xd8, 0x6, 0x1, 0x9, 0x1, 0x7, 0x4, 0x10000, 0x5, 0xffffffff, 0x1000, 0x8, 0xd49b, 0x7f, 0x3, 0x2, 0xffff8001, 0x7, 0x4, 0x2e8d, 0x6, 0x2, 0x5, 0x800, 0x3, 0x1f, 0xffff, 0x7, 0xa7d, 0xfff, 0x6, 0x2, 0x1, 0x5, 0x9f0, 0x4, 0x8, 0x80000000, 0x2b5d, 0x8, 0x8724, 0x800, 0xffffffba, 0x4, 0x7f, 0x10001, 0x2, 0x9, 0x9, 0x6, 0xff, 0xffff, 0x73af9db5, 0xa4c, 0x6, 0x9072ee6, 0x5, 0x3, 0x5, 0x9]})
write$UHID_INPUT(r5, &(0x7f0000001c00)={0x8, {"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", 0x1000}}, 0xfffffe38)
r6 = socket(0x8000000010, 0x2, 0x0)
write(r6, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9463cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
r7 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r7, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r7, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
syslog(0x9, 0x0, 0x0)

16.418574918s ago: executing program 1 (id=1406):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r1, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x3b, 0x0, &(0x7f0000000240), &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYRES8, @ANYRESHEX=r2], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f0000000640)="8e1d484ea0a00000f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb06980689fff2a41cfbf0e9d81e44c5421654481a8384a9e3606ac1f3b89845b7bbd71a53dcff6ad4d45bd9a79f775d0cc6577a3f26354c4616412cf24b379c7a10566bf81316a5dcb2f3f92ed707800600dde77413463687cbbd9c0d0748ff8e4e3dbe9cda84504ef9c69a2b83316390579966d71f19388403897f3b1e9db4ce9257850c299cefea", 0xa5}], 0x1)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r6, 0x405c5503, &(0x7f0000000280)={{0x5}, 'syz1\x00', 0x10})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, 0x0, 0x0)
ioctl$UI_DEV_CREATE(r6, 0x5501)
ioctl$UI_DEV_DESTROY(r6, 0x5502)
syz_emit_ethernet(0x33f, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @loopback}, 0xc)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/145, &(0x7f0000695ffc)=0x192)

12.757619074s ago: executing program 1 (id=1412):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r3, 0x0, 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r5, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x14, 0x4, 0x4, 0x9, 0x0, 0x1, 0x4}, 0x50)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r7, 0x0, 0x0)
r8 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r8, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_mreqsrc(r6, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

12.023610186s ago: executing program 2 (id=1415):
syz_open_dev$vim2m(&(0x7f0000000180), 0x6, 0x2)
mkdir(&(0x7f0000000400)='./file0\x00', 0x8)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x6, 0x7e000000, 0x3, 0x4, 0x1})
mkdir(&(0x7f0000000400)='./bus\x00', 0xc)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = creat(&(0x7f0000000440)='./file0/file0\x00', 0x188)
write$binfmt_script(r0, &(0x7f0000000280)={'#! ', './file0/file0', [{}, {0x20, ',\x98,$!'}, {0x20, 'E#\xf0\x1c\x1c\x15\x92\xe7#\xff\n!\xf7\xac3\xba>/\xd1&\xc1<\x02\xdf\xd3[\xfd\xe7\xb9\x1f`%\x17\b?\xac\xe4p\xbe\t\xfe\\\xf1\xb3d[y\x0f\xc5\xd5\xd7\xd7\n\x12\x91\x90\xa3/o\xaf\x94\xdc\x18_\x82\xd9\x05b\x8b/\xc84z\xc1A%:\xf8\xf9\xab\xdc\x1a+\xa1h\xd2\x89\xe0lLO\xa1\xab\a\xa8\xfax\x8c\x16J\xe2Ep'}]}, 0x80)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000100)='sys_exit\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ipv6_route\x00')
preadv(r2, &(0x7f0000000380)=[{&(0x7f00000001c0)=""/7, 0x7}], 0x1, 0xffffffbf, 0x0)

10.862884564s ago: executing program 2 (id=1418):
r0 = fsopen(&(0x7f0000000080)='adfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7f, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0xf0f01f})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x117, 0x117, 0x5, [@ptr, @type_tag={0xa, 0x0, 0x0, 0x12, 0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x1, 0x7}}, @enum64={0x6, 0x4, 0x0, 0x13, 0x1, 0x2, [{0xe, 0x0, 0x7e3}, {0xe, 0x4, 0x7fffffff}, {0x1, 0xaf14}, {0x10, 0x0, 0x6}]}, @datasec={0x7, 0x4, 0x0, 0xf, 0x3, [{0x4, 0x1, 0x10000}, {0x2, 0x62, 0x80000000}, {0x2, 0x6, 0x9}, {0x2, 0x2b}], "62679d"}, @enum={0xe, 0x3, 0x0, 0x6, 0x4, [{0x6, 0x80}, {0x6, 0x2}, {0x4, 0x9}]}, @struct={0x7, 0x5, 0x0, 0x4, 0x1, 0x9, [{0x8, 0x0, 0x6}, {0xc, 0x3, 0x9}, {0xb, 0x3, 0x5}, {0x6, 0x1, 0x1000}, {0xe, 0x4, 0x4}]}]}, {0x0, [0x2e, 0x5f, 0x61]}}, &(0x7f00000002c0)=""/125, 0x135, 0x7d, 0x0, 0x8}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00"/14], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa, 0xff0f}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x4}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000140)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000100), 0x12)

9.715475381s ago: executing program 2 (id=1421):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b7000000016d0cffbfa30000000000000703000020feffff720af0fff8ffffff71a4f0ff000000003704000000ffffffdd4005000000000034000000016d00007b130000000000001d440100000000007a0a00fe00ffffffdb03000040000000b5000000000000009500000000000000023bc065b70300c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e51815548000000000000000275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5"], 0x0}, 0x94)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000020305030000000000000000000016b9080001000157a292deef9f8de86e8a15a7ff2c2d063b47220b936ff5a5d38147d7c4517e32f0f41e824ab9179b314ce51833eac60de2f2fde5fd2334587e8a417aaaf106e152d7751e49a2356f47c7254d0860446ca8653d944a58b2a844012961abaea8f2b5b678f28e5e4f4e078812b9e2c23205fa4818486ccaee2fb5fe2ba117d0555629867d27aec10ce27306aec1fc74027d897fc880a6eb46e4ebb15fb06e5880159f719f6261480399"], 0x1c}}, 0x0)
write$tun(r0, &(0x7f0000000280)={@val={0x0, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0xb, 0x0, 0x0, 0x0, 0x4, {[@window={0xa, 0x3}, @timestamp={0x5, 0x2}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0x4e)

9.424152695s ago: executing program 1 (id=1423):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x80002, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f00000000c0)=0x3)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x2e0e, 0x0, 0x0, 0xffffffffffffffa2)
mkdirat(r1, 0x0, 0x0)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0xc01, 0x0)
write$rfkill(r3, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
syz_usb_connect(0x2, 0x24, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x4005)
r4 = dup(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r4, 0x0)
r5 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000080)='disBard', 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x13, 0x10, 0x2}, 0x48)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000c80)=ANY=[@ANYBLOB="1800000000000000000000000000181100000000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000005000000b7000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r8, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

9.036382992s ago: executing program 2 (id=1424):
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x418000)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a09040000010209"], 0x0)
syz_usb_connect$cdc_ecm(0x5, 0x14a, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x138, 0x1, 0x1, 0x8, 0xa0, 0x7d, [{{0x9, 0x4, 0x0, 0x7, 0x2, 0x2, 0x6, 0x0, 0x3, {{0xa, 0x24, 0x6, 0x0, 0x0, "a9a461ead7"}, {0x5, 0x24, 0x0, 0x4}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x2, 0x4, 0x2}, [@mdlm_detail={0xdf, 0x24, 0x13, 0x8, "2f8b1a85093da645fea237d069b518399aa6af5763081975188b1acfd8752c8c1b48f375c0052a1328d975a5050bbff6751112127ed69d77284ddbe54e2069a989ea12ea343972a17367e1ac9992bd9a87e08cc20d8234325212cff92b0e5008c07d610bf8d648a1c474c34ff0308b7aabb4b256ccab43e4dfa1d7f1bb3a97283362fa7965c4bbedcc4d1b305b0f7b03325d2da17b3ca6460a1f6e9dd328af20455814b02404446795406c92c0b1e6a3cf59f501e25d969765cbcb401929021da7119f4c4ffaef9f7c6064651cbb844d1157ff2c82e60840c25821"}, @mbim={0xc, 0x24, 0x1b, 0x0, 0x8, 0x2, 0x4, 0x4, 0x7f}, @acm={0x4, 0x24, 0x2, 0x4}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x400, 0x5, 0x9b, 0x8}}], {{0x9, 0x5, 0x82, 0x2, 0x3ff, 0xc, 0x3, 0xa1}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x3, 0x5, 0xfa}}}}}]}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x300, 0x0, 0x80, 0x0, 0x8, 0x5}, 0x24, &(0x7f0000000240)={0x5, 0xf, 0x24, 0x3, [@wireless={0xb, 0x10, 0x1, 0xc, 0xcb, 0x2, 0x0, 0xb7, 0x1}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xf, 0x2a, 0xf7, 0x3fd1}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x1, 0x9, 0xe}]}, 0x7, [{0x4, &(0x7f0000000280)=@string={0x4, 0x3, "7410"}}, {0x9c, &(0x7f00000002c0)=@string={0x9c, 0x3, "39860e9be62649b08b403eb10cba977694d9ee2024558f8dd27c1bc0e80a6a1b74d0ad762249c21f62c91d722920c6c86ee46b64b515d26fe2dec320dc5bf71944dc4be4d30e6be1d89ddc1e1373bbf0a2543f8e145e99c958833ddb3b194686c0749a3a7b22213dcab4d34a876413ae8b01cb89f4f6c17088c970714fd1546e4acf97a3cf67fbcdc3eca5a0eb555968fa10f4c9a91ed39dda57"}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x415}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0xf8ff}}, {0xdb, &(0x7f0000000400)=@string={0xdb, 0x3, "516413cfd45912a9e505f937e06507bff6c2e8f7a62eb45048c14b855a60ee1c524096dd22bd685827dfb4dabe748613f200ea17e62f56cc36c2c8aef64d0d6d7278cec0630bb8364c6bb7c68d887df2bb792d0364cfca27601178b2c55da075f37fc59e14fd04c628c5e843f1c22a8c8dacfb5914d7f83f0adca8a3a1e4d1a89da7f14a2d7395ae1ef62c534359e32b8e3ab47a5d8e70b478624e4e6a7dae022e8450d768f1bd6eac5b8aa71a672ed8514c0d4a03f83cba695ac845293185e89ce022e3a8ac070ff0e9cdc6ee58a5ef78d3b3b435704a54f6"}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x813}}, {0xfa, &(0x7f0000000540)=@string={0xfa, 0x3, "3304b5c91850a3f10019ccaa3484e7a6cd840e5faeff43ea3c55ab5468fb5af5f4ead4f47508d6ce1e6418e325effa12b6d0099173195a390cdb1651663707595199cb77f84d18fd5eed8303d4338044123038f10d51f2a51fc93a1e7908ae8664a6b5f7b9b6221a870e91ef4c0ff9150413c4afdf7a8c9f6b41876993115be6f365275be86bc025ee8be235c9edc2e22f7c69a9e3da50fbcf8a4e67bcb7c6dd94b0b2aa8cb69f97846ddc0dd11700dd94c5ecd8b6c33d5cbc85f058142a0a43d8f22ecf46885852f9de8ed03135348210eeff5955d2a53b325aa5e0e40ce483dedde65ddebfea5517a64c46d1a64a3d5879597d3139abed"}}]})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0xf38f3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$pptp(0xffffffffffffffff, &(0x7f0000000040)={0x18, 0x2, {0xfffc, @initdev={0xac, 0x1e, 0x5, 0x0}}}, 0x1e)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0)='xfs\x00', 0xa00000, &(0x7f0000000140)='grpquota')
socket$nl_route(0x10, 0x3, 0x0)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
socket(0x23, 0x2, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000030000000900010073797a300000000028000000000a01040000000000000000030000000900010073797a3000000000080002000000000130000000030a03000000000000000007030000000900030073797a30000000000900010073797a3000000000040004"], 0xa0}}, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

7.884969379s ago: executing program 3 (id=1427):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x28, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x84}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a5"], 0x0, 0x2}, 0x94)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000440)="1400000016000f63d25a80648c2566e506bce1e8", 0x14}], 0x1}, 0x0)
bind$bt_hci(r2, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r2, &(0x7f0000001080)=[{{&(0x7f00000003c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000440)="d7bea74daca063a4bb1dee509dc41e8c6913a4cc67e63c10b2611b1395de437dd9e35fef71bc778aa9bd60ec563c72b73fa21db2b6f1fcffaad955a1d80b78b4ca33d42fe2321924703c9f6c772e1f4fb4826671005ca2783ea1d7596beee312a9ba0406f76894258dd268a083a07708e8a5e515692c7d148fbf57bb04705ac2b9", 0x81}], 0x1, 0x0, 0x0, 0x20000000}}], 0x1, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, 0x0, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000000c0))
r4 = eventfd2(0x400017f, 0x80001)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r4})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000000400)=""/189, 0x0})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r4})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000080)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/4096, 0x1000})
io_uring_setup(0x5de1, &(0x7f0000000000)={0x0, 0x200046d4, 0x4, 0x1, 0x1e0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xa0000000})
connect$vsock_stream(r5, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
socket$packet(0x11, 0x2, 0x300)

7.472096905s ago: executing program 0 (id=1429):
r0 = fsopen(&(0x7f0000000080)='adfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7f, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0xf0f01f})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x117, 0x117, 0x5, [@ptr, @type_tag={0xa, 0x0, 0x0, 0x12, 0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x1, 0x7}}, @enum64={0x6, 0x4, 0x0, 0x13, 0x1, 0x2, [{0xe, 0x0, 0x7e3}, {0xe, 0x4, 0x7fffffff}, {0x1, 0xaf14}, {0x10, 0x0, 0x6}]}, @datasec={0x7, 0x4, 0x0, 0xf, 0x3, [{0x4, 0x1, 0x10000}, {0x2, 0x62, 0x80000000}, {0x2, 0x6, 0x9}, {0x2, 0x2b}], "62679d"}, @enum={0xe, 0x3, 0x0, 0x6, 0x4, [{0x6, 0x80}, {0x6, 0x2}, {0x4, 0x9}]}, @struct={0x7, 0x5, 0x0, 0x4, 0x1, 0x9, [{0x8, 0x0, 0x6}, {0xc, 0x3, 0x9}, {0xb, 0x3, 0x5}, {0x6, 0x1, 0x1000}, {0xe, 0x4, 0x4}]}]}, {0x0, [0x2e, 0x5f, 0x61]}}, &(0x7f00000002c0)=""/125, 0x135, 0x7d, 0x0, 0x8}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00"/14], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa, 0xff0f}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x4}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000140)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000100), 0x12)

6.572789129s ago: executing program 3 (id=1430):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd88500000004000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000005c0)='mm_migrate_pages\x00', r1, 0x0, 0x7ffc}, 0xf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000005c0)='mm_migrate_pages\x00', r0, 0x0, 0x7ffc}, 0xf)
mbind(&(0x7f0000126000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x2)

6.52288277s ago: executing program 1 (id=1431):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r3, 0x0, 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r5, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x14, 0x4, 0x4, 0x9, 0x0, 0x1, 0x4}, 0x50)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r7, &(0x7f0000000300), 0x0)
r8 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r8, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_mreqsrc(r6, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

6.163273255s ago: executing program 0 (id=1432):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x80146, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000140), 0x40200, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f00000001c0)={0x8, r0, 0x1})
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r1)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, 0x0, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000240)={0x0, 0x0, 0x0, {0x20, 0x1}, {0x47, 0x2}, @const={0x4, {0xff80, 0x61, 0x2, 0x7}}})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0)
syz_open_dev$vim2m(0x0, 0x7f, 0x2)
r2 = add_key$keyring(0x0, &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000200)={0x1, 0x0, @auto=[0x22, 0x1e]}, 0xa, r2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$KVM_CAP_MSR_PLATFORM_INFO(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x9f, 0x0, 0x1})
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x9, 0x0, 0x2043}}}, 0x7)

6.024334358s ago: executing program 0 (id=1433):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
socket(0x10, 0x803, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$vim2m_VIDIOC_G_FMT(0xffffffffffffffff, 0xc0cc5604, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
r4 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x14d002)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff})
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
ioctl$NBD_SET_SOCK(r4, 0xab00, r5)
ioctl$NBD_DO_IT(r4, 0xab03)
ioctl$NBD_CLEAR_SOCK(r4, 0xab04)
ioctl$sock_ifreq(r3, 0x89a2, &(0x7f0000000280)={'wg1\x00', @ifru_settings={0x43, 0x0, @sync=0x0}})

5.499548476s ago: executing program 3 (id=1434):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES64, @ANYBLOB="44a837b4012918a47d01872e42ba27df6f", @ANYRES16, @ANYRESDEC=r1, @ANYRESOCT=r0], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
fsopen(0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x3, &(0x7f0000000100)=[{0x81, 0x6, 0x1, 0xe7}, {0x2, 0xcc, 0x5, 0xd}, {0x11c, 0xf, 0x9e, 0xffffffff}]})
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, &(0x7f0000000180)=ANY=[], 0xb8)
semget$private(0x0, 0x4, 0x1a0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r6, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
writev(r6, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x437, 0x2, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_STATS_PER_PORT={0x5, 0x2d, 0x3}]}}}]}, 0x3c}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)

3.532749726s ago: executing program 3 (id=1435):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0xb, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, 0x18, &(0x7f00000002c0)={@ptr={0x70742a85, 0x0, 0x0, 0x0, 0x2, 0xe}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x1, 0x5}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x1, 0x37}}, &(0x7f0000000180)={0x0, 0x28, 0x50}}, 0x1000}], 0x0, 0x0, 0x0})

3.418406498s ago: executing program 0 (id=1436):
ioctl$CEC_DQEVENT(0xffffffffffffffff, 0xc0506107, 0x0)
socket$alg(0x26, 0x5, 0x0)
ustat(0x6, &(0x7f0000000080))
socket$inet6_sctp(0xa, 0x1, 0x84)
munmap(&(0x7f0000901000/0x3000)=nil, 0x3000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x40, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
gettid()
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, r6, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}]}, 0x1c}}, 0x0)
sendmsg$FOU_CMD_ADD(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00', @ANYRES16=r6, @ANYBLOB="09020000000000000000010000000500040002000000060001004e200000"], 0x24}}, 0x0)
sendmsg$FOU_CMD_DEL(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r6, 0x1, 0x2, 0x25dfdbfc, {}, [@FOU_ATTR_AF={0x5, 0x2, 0xa}]}, 0x1c}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x14, r8, 0x9c3fa077fa966179, 0x4, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x141040, 0x42)
mount(&(0x7f0000000000)=@sr0, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x100080f, 0x0)

3.052339973s ago: executing program 3 (id=1437):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000000)="c5", 0x1, 0x0, 0x0, 0x0)

1.078606183s ago: executing program 0 (id=1438):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x28, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x84}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a5"], 0x0, 0x2}, 0x94)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000440)="1400000016000f63d25a80648c2566e506bce1e8", 0x14}], 0x1}, 0x0)
bind$bt_hci(r2, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r2, &(0x7f0000001080)=[{{&(0x7f00000003c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000440)="d7bea74daca063a4bb1dee509dc41e8c6913a4cc67e63c10b2611b1395de437dd9e35fef71bc778aa9bd60ec563c72b73fa21db2b6f1fcffaad955a1d80b78b4ca33d42fe2321924703c9f6c772e1f4fb4826671005ca2783ea1d7596beee312a9ba0406f76894258dd268a083a07708e8a5e515692c7d148fbf57bb04705ac2b9", 0x81}], 0x1, 0x0, 0x0, 0x20000000}}], 0x1, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, 0x0, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000000c0))
r4 = eventfd2(0x400017f, 0x80001)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r4})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000000400)=""/189, 0x0})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r4})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000080)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000140)={@my=0x1})
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/4096, 0x1000})
io_uring_setup(0x5de1, &(0x7f0000000000)={0x0, 0x200046d4, 0x4, 0x1, 0x1e0})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0xa0000000})
connect$vsock_stream(r5, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
socket$packet(0x11, 0x2, 0x300)

920.464696ms ago: executing program 3 (id=1439):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x80002, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, &(0x7f00000000c0)=0x3)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x2e0e, 0x0, 0x0, 0xffffffffffffffa2)
mkdirat(r1, 0x0, 0x0)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0xc01, 0x0)
write$rfkill(r3, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
syz_usb_connect(0x2, 0x24, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x4005)
r4 = dup(0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r4, 0x0)
r5 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r5, 0x2, &(0x7f0000000080)='disBard', 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x13, 0x10, 0x2}, 0x48)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000c80)=ANY=[@ANYBLOB="1800000000000000000000000000181100000000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000005000000b7000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r8, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

812.164297ms ago: executing program 2 (id=1440):
r0 = fsopen(&(0x7f0000000080)='adfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7f, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0xf0f01f})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x117, 0x117, 0x5, [@ptr, @type_tag={0xa, 0x0, 0x0, 0x12, 0x2}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x1, 0x7}}, @enum64={0x6, 0x4, 0x0, 0x13, 0x1, 0x2, [{0xe, 0x0, 0x7e3}, {0xe, 0x4, 0x7fffffff}, {0x1, 0xaf14}, {0x10, 0x0, 0x6}]}, @datasec={0x7, 0x4, 0x0, 0xf, 0x3, [{0x4, 0x1, 0x10000}, {0x2, 0x62, 0x80000000}, {0x2, 0x6, 0x9}, {0x2, 0x2b}], "62679d"}, @enum={0xe, 0x3, 0x0, 0x6, 0x4, [{0x6, 0x80}, {0x6, 0x2}, {0x4, 0x9}]}, @struct={0x7, 0x5, 0x0, 0x4, 0x1, 0x9, [{0x8, 0x0, 0x6}, {0xc, 0x3, 0x9}, {0xb, 0x3, 0x5}, {0x6, 0x1, 0x1000}, {0xe, 0x4, 0x4}]}]}, {0x0, [0x2e, 0x5f, 0x61]}}, &(0x7f00000002c0)=""/125, 0x135, 0x7d, 0x0, 0x8}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00"/14], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa, 0xff0f}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x4}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000140)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000000100), 0x12)

739.397399ms ago: executing program 1 (id=1441):
r0 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$I2C_PEC(r0, 0x708, 0x2)
timer_create(0x1, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140), 0x315500, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8071, 0xffffffffffffffff, 0x172f7000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
r4 = eventfd2(0x2, 0x0)
write$eventfd(r4, &(0x7f0000000080)=0xfffffffffffffffe, 0x8)
write$eventfd(r4, &(0x7f0000000580), 0x8)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000000c0), 0x1048b, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x8}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1, 0x0, 0x8}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xf7}, 0x39)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x101800, 0x81)
fdatasync(r5)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000000)={0x1, 0x0, 0x1, 0x0})
r6 = dup(r0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000100)=ANY=[@ANYRES64=r6, @ANYRES64=r0, @ANYRES8, @ANYRES8=r6], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r7, 0x0, 0xe, 0x0, &(0x7f00000000c0)="4a50ae586c7c077f00eb2083524e", 0x0, 0x400004, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

354.089615ms ago: executing program 2 (id=1442):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd88500000004000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000005c0)='mm_migrate_pages\x00', r1, 0x0, 0x7ffc}, 0xf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000005c0)='mm_migrate_pages\x00', r0, 0x0, 0x7ffc}, 0xf)
mbind(&(0x7f0000126000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x2)

0s ago: executing program 0 (id=1443):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x98a4, 0x100, 0x4, 0x165}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x10, r5, 0x0, 0x0, 0x0, 0x60, 0x1, {0x1}})
io_uring_enter(r6, 0x3517, 0x173d, 0x42, 0x0, 0x0)
socket(0x5208fe9279a3abfb, 0x5, 0xfffffffe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x820061, &(0x7f0000000040)={[{@mode}]})
r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r1)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r9, @ANYBLOB="05000000000000000000220000000a0001007770616e310000001b605ab3df87942a5811f711753d9841487cde86d42b292e1b104a164561f453"], 0x20}}, 0x2000c094)
syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), r1)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@remote, 0xfffffffc, 0x0, 0x2, 0x3, 0xe2c3}, 0x20)
socket$vsock_stream(0x28, 0x1, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.15.212' (ED25519) to the list of known hosts.
[   82.947036][ T5761] cgroup: Unknown subsys name 'net'
[   83.113256][ T5761] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   84.959487][ T5761] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   86.791945][ T5783] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   86.800081][ T5777] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   86.801504][ T5775] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   86.811154][ T5777] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   86.823119][ T5783] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   86.823832][ T5777] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   86.839802][ T5775] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   86.841743][ T5777] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   86.849028][ T5775] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   86.855542][ T5777] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   86.869698][ T5783] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   86.879051][ T5783] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   86.883006][ T5777] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   86.886936][ T5783] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   86.897497][ T5777] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   86.904119][ T5787] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   86.922053][ T5777] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.927198][ T5787] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   86.932164][ T5777] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   86.945847][ T5787] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   86.946079][ T5777] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   86.968708][ T5787] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   86.985532][ T5787] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   87.001100][ T5787] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   87.551000][ T5771] chnl_net:caif_netlink_parms(): no params data found
[   87.770763][ T5770] chnl_net:caif_netlink_parms(): no params data found
[   87.897134][ T5772] chnl_net:caif_netlink_parms(): no params data found
[   87.911359][ T5782] chnl_net:caif_netlink_parms(): no params data found
[   87.967710][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.975713][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.984157][ T5771] bridge_slave_0: entered allmulticast mode
[   87.991809][ T5771] bridge_slave_0: entered promiscuous mode
[   88.037995][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.045927][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.054157][ T5771] bridge_slave_1: entered allmulticast mode
[   88.062358][ T5771] bridge_slave_1: entered promiscuous mode
[   88.164458][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.171718][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.180225][ T5770] bridge_slave_0: entered allmulticast mode
[   88.189210][ T5770] bridge_slave_0: entered promiscuous mode
[   88.204941][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.236007][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.244464][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.251988][ T5770] bridge_slave_1: entered allmulticast mode
[   88.259921][ T5770] bridge_slave_1: entered promiscuous mode
[   88.284780][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.327281][ T5772] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.336621][ T5772] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.345130][ T5772] bridge_slave_0: entered allmulticast mode
[   88.352277][ T5772] bridge_slave_0: entered promiscuous mode
[   88.402816][ T5772] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.410130][ T5772] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.419220][ T5772] bridge_slave_1: entered allmulticast mode
[   88.427979][ T5772] bridge_slave_1: entered promiscuous mode
[   88.450418][ T5782] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.458613][ T5782] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.467349][ T5782] bridge_slave_0: entered allmulticast mode
[   88.474899][ T5782] bridge_slave_0: entered promiscuous mode
[   88.483173][ T5782] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.490771][ T5782] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.498822][ T5782] bridge_slave_1: entered allmulticast mode
[   88.507367][ T5782] bridge_slave_1: entered promiscuous mode
[   88.517848][ T5771] team0: Port device team_slave_0 added
[   88.528224][ T5771] team0: Port device team_slave_1 added
[   88.554690][ T5770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.568824][ T5770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.677032][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.684753][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.714401][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.729187][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.737536][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.765323][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.781115][ T5772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.794726][ T5772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.807297][ T5770] team0: Port device team_slave_0 added
[   88.821418][ T5770] team0: Port device team_slave_1 added
[   88.830580][ T5782] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.844183][ T5782] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.965834][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.974212][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.983992][ T5787] Bluetooth: hci2: command tx timeout
[   89.001934][ T5770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.023265][ T5782] team0: Port device team_slave_0 added
[   89.044311][ T5772] team0: Port device team_slave_0 added
[   89.051439][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.058899][ T5787] Bluetooth: hci3: command tx timeout
[   89.064575][ T5775] Bluetooth: hci1: command tx timeout
[   89.064791][ T5787] Bluetooth: hci0: command tx timeout
[   89.077150][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.103532][ T5770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.122560][ T5782] team0: Port device team_slave_1 added
[   89.134366][ T5771] hsr_slave_0: entered promiscuous mode
[   89.141430][ T5771] hsr_slave_1: entered promiscuous mode
[   89.151102][ T5772] team0: Port device team_slave_1 added
[   89.228946][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.236377][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.262934][ T5772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.290275][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.297688][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.323987][ T5782] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.338321][ T5782] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.345919][ T5782] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.372445][ T5782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.398631][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.406081][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.433415][ T5772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.464467][ T5770] hsr_slave_0: entered promiscuous mode
[   89.471252][ T5770] hsr_slave_1: entered promiscuous mode
[   89.478583][ T5770] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   89.487067][ T5770] Cannot create hsr debugfs directory
[   89.653767][ T5772] hsr_slave_0: entered promiscuous mode
[   89.660718][ T5772] hsr_slave_1: entered promiscuous mode
[   89.668054][ T5772] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   89.677036][ T5772] Cannot create hsr debugfs directory
[   89.714341][ T5782] hsr_slave_0: entered promiscuous mode
[   89.725024][ T5782] hsr_slave_1: entered promiscuous mode
[   89.732095][ T5782] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   89.741019][ T5782] Cannot create hsr debugfs directory
[   90.145827][ T5771] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   90.159212][ T5771] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   90.171656][ T5771] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   90.184722][ T5771] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   90.275954][ T5770] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   90.294339][ T5770] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   90.328282][ T5770] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   90.340499][ T5770] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   90.457114][ T5772] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   90.469721][ T5772] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   90.483091][ T5772] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   90.500443][ T5772] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   90.565032][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.660541][ T5782] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   90.674972][ T5782] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   90.690103][ T5771] 8021q: adding VLAN 0 to HW filter on device team0
[   90.705969][ T5782] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   90.720390][ T1303] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.727932][ T1303] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.755707][ T5782] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   90.799967][ T3447] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.807745][ T3447] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.914820][ T5770] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.984342][ T5772] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.999215][ T5770] 8021q: adding VLAN 0 to HW filter on device team0
[   91.033483][ T1322] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.040674][ T1322] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.053349][ T5787] Bluetooth: hci2: command tx timeout
[   91.076991][ T3447] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.084247][ T3447] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.133673][ T5787] Bluetooth: hci0: command tx timeout
[   91.139290][ T5787] Bluetooth: hci1: command tx timeout
[   91.139695][   T50] Bluetooth: hci3: command tx timeout
[   91.159869][ T5772] 8021q: adding VLAN 0 to HW filter on device team0
[   91.226522][ T1303] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.235049][ T1303] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.263676][ T1303] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.271091][ T1303] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.322002][ T5782] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.448780][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.462467][ T5782] 8021q: adding VLAN 0 to HW filter on device team0
[   91.500748][ T1303] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.508234][ T1303] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.534596][ T1322] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.541802][ T1322] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.701733][ T5771] veth0_vlan: entered promiscuous mode
[   91.780868][ T5771] veth1_vlan: entered promiscuous mode
[   91.883133][ T5770] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.990936][ T5771] veth0_macvtap: entered promiscuous mode
[   92.005487][ T5771] veth1_macvtap: entered promiscuous mode
[   92.060744][ T5770] veth0_vlan: entered promiscuous mode
[   92.086901][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.115761][ T5772] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.149838][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.171154][ T5770] veth1_vlan: entered promiscuous mode
[   92.184676][ T5771] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.194464][ T5771] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.205557][ T5771] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.215394][ T5771] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.328490][ T5770] veth0_macvtap: entered promiscuous mode
[   92.358578][   T55] cfg80211: failed to load regulatory.db
[   92.373556][ T5770] veth1_macvtap: entered promiscuous mode
[   92.416728][ T5772] veth0_vlan: entered promiscuous mode
[   92.499414][ T5782] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.503898][ T3486] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.521071][ T3486] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.566845][ T5772] veth1_vlan: entered promiscuous mode
[   92.578505][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.595610][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.608536][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.647390][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.659080][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.671295][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.715582][ T3464] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.726833][ T3464] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.738762][ T5770] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.752625][ T5770] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.764328][ T5770] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.773518][ T5770] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.876125][ T5782] veth0_vlan: entered promiscuous mode
[   92.906713][ T5772] veth0_macvtap: entered promiscuous mode
[   92.948128][ T5782] veth1_vlan: entered promiscuous mode
[   93.011031][ T5772] veth1_macvtap: entered promiscuous mode
[   93.241937][ T5775] Bluetooth: hci2: command tx timeout
[   93.245380][   T50] Bluetooth: hci1: command tx timeout
[   93.247872][ T5787] Bluetooth: hci0: command tx timeout
[   93.253276][   T50] Bluetooth: hci3: command tx timeout
[   93.292099][ T3464] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.651739][ T3464] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.774839][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.786062][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.796600][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.807526][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.819961][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.832145][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.843055][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.856698][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.867814][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.879453][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.923067][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.949244][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.955575][ T5772] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.967339][ T5772] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.991634][ T5772] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.007995][ T5772] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.088036][ T5782] veth0_macvtap: entered promiscuous mode
[   94.112356][ T5782] veth1_macvtap: entered promiscuous mode
[   94.215008][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.230156][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.240469][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.252450][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.265259][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.278437][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.299232][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.388163][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.407585][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.420573][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.431874][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.444333][ T5782] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.455539][ T5782] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.481246][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.580452][ T5870] overlayfs: missing 'lowerdir'
[   94.659676][ T5876] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   94.896716][ T5782] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.941514][ T5782] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.952301][ T5782] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.961709][ T5782] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.293291][   T50] Bluetooth: hci3: command tx timeout
[   95.302998][ T5775] Bluetooth: hci2: command tx timeout
[   95.303117][   T50] Bluetooth: hci0: command tx timeout
[   95.308664][ T5775] Bluetooth: hci1: command tx timeout
[   95.455515][ T1322] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.481493][ T1322] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.685323][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.708628][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.722178][ T1322] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.737374][ T1322] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.859884][ T3486] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.874628][ T3486] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.893526][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   96.014782][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   96.103499][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   96.357479][ T5885] netlink: 56 bytes leftover after parsing attributes in process `syz.1.6'.
[   96.513728][ T5884] Zero length message leads to an empty skb
[   96.583526][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   96.608849][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   97.836057][ T5898] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.190593][ T5898] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.447521][ T5898] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.708957][ T5898] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.047917][ T5898] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.154886][ T5898] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.230978][ T5898] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.322131][ T5898] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.635727][ T5926] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   99.657431][ T5922] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16'.
[   99.678446][ T5922] netlink: set zone limit has 8 unknown bytes
[   99.824925][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   99.847072][ T5932] netlink: 'syz.0.12': attribute type 10 has an invalid length.
[   99.885832][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   99.945403][ T5932] batman_adv: batadv0: Adding interface: team0
[   99.952080][ T5932] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.003212][ T5932] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  100.013798][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  100.193305][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!!
[  102.282753][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  102.461152][ T5944] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[  102.937167][ T5944] 9pnet_virtio: no channels available for device syz
[  102.979842][ T5952] hub 6-0:1.0: USB hub found
[  103.003131][ T5953] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.25'.
[  103.009234][ T5952] hub 6-0:1.0: 1 port detected
[  103.623132][ T5789] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  103.861577][ T5789] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  103.943259][ T5789] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.968873][ T5789] usb 2-1: Product: syz
[  103.977574][ T5789] usb 2-1: Manufacturer: syz
[  104.032943][ T5789] usb 2-1: SerialNumber: syz
[  104.076164][ T5789] usb 2-1: config 0 descriptor??
[  105.136882][ T5976] syz.3.33[5976] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.137047][ T5976] syz.3.33[5976] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.425807][ T5976] trusted_key: encrypted_key: master key parameter 'c�Y�
�?(<��`Ͼ3Q�#�P��d' is invalid
[  106.248158][ T5972] sched: RT throttling activated
[  107.010029][ T5789] usb-storage 2-1:0.0: USB Mass Storage device detected
[  107.261933][ T5789] usb 2-1: USB disconnect, device number 2
[  109.935350][ T6027] block nbd3: shutting down sockets
[  112.320201][ T6064] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.61'.
[  112.957910][ T6069] netlink: 'syz.0.58': attribute type 4 has an invalid length.
[  113.213514][ T5777] Bluetooth: hci1: command 0x0406 tx timeout
[  113.244112][ T6074] netlink: 'syz.0.58': attribute type 4 has an invalid length.
[  113.407838][   T27] audit: type=1326 audit(3898335758.997:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  113.480502][   T27] audit: type=1326 audit(3898335759.007:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  113.691195][   T27] audit: type=1326 audit(3898335759.047:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  114.175890][   T27] audit: type=1326 audit(3898335759.047:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  114.322178][   T27] audit: type=1326 audit(3898335759.047:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  114.355672][   T27] audit: type=1326 audit(3898335759.047:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  114.449437][   T27] audit: type=1326 audit(3898335759.047:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  114.518501][   T27] audit: type=1326 audit(3898335759.047:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  114.631546][   T27] audit: type=1326 audit(3898335759.047:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f254258e929 code=0x7ffc0000
[  114.738595][   T27] audit: type=1326 audit(3898335759.067:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6084 comm="syz.3.65" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f25425858e7 code=0x7ffc0000
[  115.665224][ T6120] netlink: 'syz.1.74': attribute type 1 has an invalid length.
[  117.566704][ T6133] tty tty23: ldisc open failed (-12), clearing slot 22
[  118.835703][ T6159] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6159 comm: syz.1.82)
[  118.873819][   T27] kauditd_printk_skb: 59 callbacks suppressed
[  118.873940][   T27] audit: type=1800 audit(3898335764.457:71): pid=6159 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.82" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8161 res=0 errno=0
[  120.112202][ T6179] netlink: 20 bytes leftover after parsing attributes in process `syz.2.88'.
[  121.671256][ T6204] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  124.006109][ T6223] IPv6: NLM_F_REPLACE set, but no existing node found!
[  124.063980][ T6222] batadv1: entered promiscuous mode
[  126.010196][ T6235] fuse: Unknown parameter '0x0000000000000004'
[  126.996288][ T6246] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  127.455194][ T6255] block nbd1: shutting down sockets
[  128.262543][ T6279] netlink: 56 bytes leftover after parsing attributes in process `syz.3.113'.
[  133.323122][ T6305] 9pnet_virtio: no channels available for device syz
[  134.293811][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  134.300745][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  135.934890][ T6323] block nbd2: shutting down sockets
[  136.476595][ T6334] af_packet: tpacket_rcv: packet too big, clamped from 80 to 4294967272. macoff=96
[  136.953819][ T6348] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6348 comm: syz.2.130)
[  137.008892][   T27] audit: type=1800 audit(3898335782.577:72): pid=6348 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.130" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8584 res=0 errno=0
[  138.142153][ T1186] IPVS: starting estimator thread 0...
[  138.373358][ T6365] IPVS: using max 18 ests per chain, 43200 per kthread
[  139.830911][ T6377] netlink: 'syz.1.137': attribute type 4 has an invalid length.
[  139.999751][ T6382] netlink: 'syz.1.137': attribute type 4 has an invalid length.
[  140.145871][ T6384] netlink: 8 bytes leftover after parsing attributes in process `syz.2.136'.
[  140.155322][ T6384] netlink: 'syz.2.136': attribute type 5 has an invalid length.
[  140.164194][ T6384] netlink: 20 bytes leftover after parsing attributes in process `syz.2.136'.
[  140.317705][ T6384] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  140.348296][ T6384] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  140.357267][ T6384] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  140.366237][ T6384] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  140.382552][ T6384] geneve2: entered promiscuous mode
[  140.413961][ T6384] geneve2: entered allmulticast mode
[  140.588118][ T6389] overlayfs: missing 'lowerdir'
[  142.415102][ T6408] fuse: Unknown parameter 'fd0x0000000000000004'
[  144.473621][ T6424] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6424 comm: syz.0.153)
[  144.675634][   T27] audit: type=1800 audit(3898335790.087:73): pid=6424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.153" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8701 res=0 errno=0
[  144.910198][ T6429] netlink: 'syz.1.155': attribute type 4 has an invalid length.
[  144.936688][ T6429] netlink: 'syz.1.155': attribute type 4 has an invalid length.
[  147.374207][ T5777] Bluetooth: hci3: command tx timeout
[  147.600344][ T6461] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6461 comm: syz.0.164)
[  147.732847][   T27] audit: type=1800 audit(3898335793.217:74): pid=6461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.164" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8701 res=0 errno=0
[  147.764310][    C1] vkms_vblank_simulate: vblank timer overrun
[  148.537295][ T6464] netlink: 'syz.1.168': attribute type 4 has an invalid length.
[  148.572172][ T6464] netlink: 'syz.1.168': attribute type 4 has an invalid length.
[  150.425480][ T6487] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6487 comm: syz.0.175)
[  150.440019][   T27] audit: type=1800 audit(3898335796.037:75): pid=6487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.175" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8701 res=0 errno=0
[  150.471422][    C1] vkms_vblank_simulate: vblank timer overrun
[  151.923207][ T6515] hub 6-0:1.0: USB hub found
[  151.983198][ T6515] hub 6-0:1.0: 1 port detected
[  151.991746][ T6516] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6516 comm: syz.2.185)
[  152.186720][   T27] audit: type=1800 audit(3898335797.607:76): pid=6516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.185" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8584 res=0 errno=0
[  152.707374][ T6530] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  153.514825][ T6542] loop6: detected capacity change from 0 to 524287999
[  154.302702][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x84700 phys_seg 128 prio class 1
[  154.306848][ T3464] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 0
[  154.326529][    C1] I/O error, dev loop6, sector 1024 op 0x0:(READ) flags 0x84700 phys_seg 128 prio class 1
[  154.337381][    C1] I/O error, dev loop6, sector 2048 op 0x0:(READ) flags 0x80700 phys_seg 64 prio class 1
[  155.143119][ T5777] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  155.524159][ T6552] hub 6-0:1.0: USB hub found
[  155.530213][ T6552] hub 6-0:1.0: 1 port detected
[  155.641378][ T6550] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6550 comm: syz.1.198)
[  155.663576][   T27] audit: type=1800 audit(3898335801.257:77): pid=6550 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.198" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8161 res=0 errno=0
[  156.308762][ T6568] (syz.3.200,6568,1):dlmfs_mkdir:421 ERROR: invalid domain name for directory.
[  158.530196][ T6586] fuse: Bad value for 'fd'
[  158.722064][ T6588] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  161.035282][ T6617] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  163.939389][ T6655] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  164.067624][ T6653] netlink: 'syz.0.231': attribute type 4 has an invalid length.
[  164.198320][ T6654] netlink: 'syz.0.231': attribute type 4 has an invalid length.
[  164.338367][ T6658] netlink: 92 bytes leftover after parsing attributes in process `syz.2.234'.
[  166.961849][ T6667] trusted_key: encrypted_key: insufficient parameters specified
[  166.981517][ T6667] trusted_key: encrypted_key: insufficient parameters specified
[  167.889792][ T6691] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  168.590829][ T6703] syz.2.247 uses obsolete (PF_INET,SOCK_PACKET)
[  171.249007][ T6730] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  172.115600][ T6747] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6747 comm: syz.0.257)
[  172.178237][   T27] audit: type=1800 audit(3898335817.777:78): pid=6747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.257" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8701 res=0 errno=0
[  173.692423][ T6766] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  175.429723][ T6780] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 6780 comm: syz.2.269)
[  175.449893][   T27] audit: type=1800 audit(3898335821.047:79): pid=6780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.269" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8584 res=0 errno=0
[  176.673031][ T6800] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  177.153716][ T6808] block nbd2: shutting down sockets
[  177.393180][ T6818] 9pnet_virtio: no channels available for device syz
[  177.471028][ T6820] warning: `syz.3.281' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  177.700723][ T6825] fuse: Bad value for 'fd'
[  178.316307][ T6835] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  179.055396][ T6850] fuse: Bad value for 'fd'
[  179.427271][ T6862] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  179.763464][ T6856] block nbd0: shutting down sockets
[  181.863068][ T6895] overlayfs: missing 'lowerdir'
[  182.365515][ T6899] netlink: 'syz.0.303': attribute type 4 has an invalid length.
[  182.846482][ T6901] netlink: 'syz.0.303': attribute type 4 has an invalid length.
[  183.211773][ T6910] block nbd3: shutting down sockets
[  187.024308][ T6956] block nbd3: shutting down sockets
[  187.141739][ T6963] syz.2.323[6963] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  187.142503][ T6963] syz.2.323[6963] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  187.197978][ T6963] random: crng reseeded on system resumption
[  191.902219][ T6993] netlink: 51 bytes leftover after parsing attributes in process `syz.0.333'.
[  192.768158][ T7001] block nbd0: shutting down sockets
[  192.924641][ T7006] netlink: 28 bytes leftover after parsing attributes in process `syz.1.336'.
[  193.204661][ T7008] syzkaller0: entered promiscuous mode
[  193.246513][ T7008] syzkaller0: entered allmulticast mode
[  194.757952][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  194.764612][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  194.813904][ T7018] block nbd0: shutting down sockets
[  195.201783][ T7029] netlink: 12 bytes leftover after parsing attributes in process `syz.0.342'.
[  195.298045][ T7027] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  197.537796][ T7041] block nbd3: shutting down sockets
[  198.988932][ T7046] netlink: 28 bytes leftover after parsing attributes in process `syz.3.349'.
[  199.493192][ T7056] netlink: 12 bytes leftover after parsing attributes in process `syz.2.353'.
[  200.440635][ T7060] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  203.441858][ T7083] block nbd2: shutting down sockets
[  204.008518][ T7100] netlink: 28 bytes leftover after parsing attributes in process `syz.0.364'.
[  204.727499][ T7106] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  205.591434][ T7124] block nbd0: shutting down sockets
[  206.146140][ T7137] netlink: 4 bytes leftover after parsing attributes in process `syz.2.376'.
[  206.177428][ T7137] netlink: set zone limit has 8 unknown bytes
[  206.816849][ T7146] hub 6-0:1.0: USB hub found
[  206.825845][ T7146] hub 6-0:1.0: 1 port detected
[  206.891362][ T7146] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 7146 comm: syz.3.378)
[  206.908091][   T27] audit: type=1800 audit(3898335852.507:80): pid=7146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.378" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=10138 res=0 errno=0
[  207.552740][ T7129] netlink: 148 bytes leftover after parsing attributes in process `syz.1.373'.
[  207.838367][ T7142] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  208.208744][ T7158] 9pnet_fd: Insufficient options for proto=fd
[  208.642211][ T7174] netlink: 4 bytes leftover after parsing attributes in process `syz.3.388'.
[  208.658975][ T7174] netlink: set zone limit has 8 unknown bytes
[  210.376793][ T7214] netlink: 4 bytes leftover after parsing attributes in process `syz.3.405'.
[  210.385795][ T7214] netlink: set zone limit has 8 unknown bytes
[  212.174961][ T5787] Bluetooth: hci0: command 0x0406 tx timeout
[  212.181106][   T50] Bluetooth: hci2: command 0x0406 tx timeout
[  212.748036][ T7261] fuse: Bad value for 'group_id'
[  213.169251][ T7267] bridge_slave_0: left allmulticast mode
[  213.195670][ T7267] bridge_slave_0: left promiscuous mode
[  213.204407][ T7267] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.460003][ T7267] bridge_slave_1: left allmulticast mode
[  213.483550][ T7267] bridge_slave_1: left promiscuous mode
[  213.536042][ T7267] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.940950][ T7267] bond0: (slave bond_slave_0): Releasing backup interface
[  215.009494][ T7267] bond0: (slave bond_slave_1): Releasing backup interface
[  215.166347][ T7267] team0: Port device team_slave_0 removed
[  215.321667][ T7267] team0: Port device team_slave_1 removed
[  215.359550][ T7267] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  215.369956][ T7267] batman_adv: batadv0: Removing interface: batadv_slave_0
[  215.391700][ T7267] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  215.405928][ T7267] batman_adv: batadv0: Removing interface: batadv_slave_1
[  215.968780][ T7304] fuse: Bad value for 'group_id'
[  217.011124][ T7330] fuse: Bad value for 'group_id'
[  217.077591][ T7321] syzkaller0: entered promiscuous mode
[  217.090612][ T7321] syzkaller0: entered allmulticast mode
[  220.862480][ T7348] netlink: 'syz.2.448': attribute type 4 has an invalid length.
[  220.897761][ T7351] netlink: 'syz.2.448': attribute type 4 has an invalid length.
[  222.626582][ T7395] syzkaller0: entered promiscuous mode
[  222.645840][ T7395] syzkaller0: entered allmulticast mode
[  224.486109][ T7423] block nbd2: shutting down sockets
[  225.916729][ T7408] netlink: 'syz.1.464': attribute type 4 has an invalid length.
[  225.936732][ T7409] netlink: 'syz.1.464': attribute type 4 has an invalid length.
[  226.860721][ T7450] syzkaller0: entered promiscuous mode
[  226.875661][ T7450] syzkaller0: entered allmulticast mode
[  227.632445][ T7462] block nbd3: shutting down sockets
[  229.803178][ T7469] netlink: 'syz.0.484': attribute type 4 has an invalid length.
[  229.857465][ T7470] netlink: 'syz.0.484': attribute type 4 has an invalid length.
[  230.178756][ T7479] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  231.599216][ T7499] block nbd2: shutting down sockets
[  232.896508][ T7516] netlink: 'syz.2.498': attribute type 4 has an invalid length.
[  233.102343][ T7520] netlink: 'syz.2.498': attribute type 4 has an invalid length.
[  234.934423][ T7539] block nbd2: shutting down sockets
[  238.403192][ T7590] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  240.076754][ T7623] Driver unsupported XDP return value 0 on prog  (id 112) dev N/A, expect packet loss!
[  240.723069][ T7625] hub 6-0:1.0: USB hub found
[  240.730540][ T7625] hub 6-0:1.0: 1 port detected
[  240.748017][ T7625] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 7625 comm: syz.2.536)
[  240.763000][   T27] audit: type=1800 audit(3898335886.367:81): pid=7625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.536" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8584 res=0 errno=0
[  241.241866][ T7628] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  241.412531][ T7637] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  243.427940][ T7653] hub 6-0:1.0: USB hub found
[  243.433240][ T7653] hub 6-0:1.0: 1 port detected
[  243.442433][ T7653] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 7653 comm: syz.0.545)
[  243.457046][   T27] audit: type=1800 audit(3898335889.057:82): pid=7653 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.545" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8701 res=0 errno=0
[  243.766631][ T7651] netlink: 'syz.1.543': attribute type 4 has an invalid length.
[  243.852059][ T7654] netlink: 'syz.1.543': attribute type 4 has an invalid length.
[  243.932423][ T7660] 9pnet_virtio: no channels available for device syz
[  246.436008][ T7678] hub 6-0:1.0: USB hub found
[  246.440940][ T7678] hub 6-0:1.0: 1 port detected
[  246.449987][ T7678] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 7678 comm: syz.2.554)
[  246.482713][   T27] audit: type=1800 audit(3898335892.067:83): pid=7678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.554" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8584 res=0 errno=0
[  247.987920][ T7692] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  249.088843][   T27] audit: type=1326 audit(3898335894.687:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7719 comm="syz.3.569" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f254258e929 code=0x0
[  249.822310][ T7732] netlink: 32 bytes leftover after parsing attributes in process `syz.0.571'.
[  250.198173][ T7737] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  250.230618][ T7732] netlink: 32 bytes leftover after parsing attributes in process `syz.0.571'.
[  252.601375][ T7765] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  254.069718][ T7784] fuse: Bad value for 'user_id'
[  254.150102][ T7783] block device autoloading is deprecated and will be removed.
[  254.166852][ T7786] netlink: 8 bytes leftover after parsing attributes in process `syz.1.589'.
[  256.324838][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  256.331305][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  256.343172][ T7806] Bluetooth: MGMT ver 1.22
[  256.419149][ T7798] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  256.989453][ T7816] fuse: Bad value for 'user_id'
[  259.073057][ T7843] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  259.147951][ T7843] overlayfs: missing 'lowerdir'
[  259.411866][ T7846] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  261.227807][ T7862] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  261.740247][ T7870] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  261.946376][ T7876] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.222766][ T7876] O3�c��: renamed from bridge_slave_0
[  264.380026][ T7904] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  265.997308][ T5775] Bluetooth: unknown link type 9
[  266.002355][ T5775] Bluetooth: hci2: connection err: -111
[  266.095930][ T7927] netlink: 'syz.3.638': attribute type 3 has an invalid length.
[  266.118204][ T7927] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.638'.
[  266.235457][ T7930] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  266.242375][ T7930] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  266.252536][ T7930] vhci_hcd vhci_hcd.0: Device attached
[  266.449170][ T7931] vhci_hcd: connection closed
[  266.469232][  T138] vhci_hcd: stop threads
[  266.585880][  T138] vhci_hcd: release socket
[  266.715909][  T138] vhci_hcd: disconnect device
[  266.821994][ T7934] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  266.851435][ T5778] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  266.886808][ T5778] usb 37-1: enqueue for inactive port 0
[  266.972884][ T5778] vhci_hcd: vhci_device speed not set
[  267.086307][ T7940] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  270.921306][ T7961] hub 6-0:1.0: USB hub found
[  270.934482][ T7961] hub 6-0:1.0: 1 port detected
[  271.024493][ T7964] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 7964 comm: syz.3.649)
[  271.088104][   T27] audit: type=1800 audit(3898335916.647:85): pid=7964 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.649" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=10138 res=0 errno=0
[  271.887721][ T7968] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  272.027049][ T7970] netlink: 48 bytes leftover after parsing attributes in process `syz.0.652'.
[  272.446602][ T7971] syz.0.652[7971]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[  272.546011][ T7971] lo speed is unknown, defaulting to 1000
[  272.577928][ T7971] lo speed is unknown, defaulting to 1000
[  272.817127][ T7975] netlink: 56 bytes leftover after parsing attributes in process `syz.0.652'.
[  272.900450][ T7971] lo speed is unknown, defaulting to 1000
[  272.985442][ T7971] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  273.050925][ T7971] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  273.139728][ T7971] lo speed is unknown, defaulting to 1000
[  273.168641][ T7971] lo speed is unknown, defaulting to 1000
[  273.200016][ T7971] lo speed is unknown, defaulting to 1000
[  273.237955][ T7971] lo speed is unknown, defaulting to 1000
[  273.761534][ T7986] sp0: Synchronizing with TNC
[  274.222481][ T7993] netlink: 36 bytes leftover after parsing attributes in process `syz.0.658'.
[  274.482978][ T7992] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  275.541222][ T8015] netlink: 8 bytes leftover after parsing attributes in process `syz.3.667'.
[  276.324916][ T8020] hub 6-0:1.0: USB hub found
[  276.336325][ T8020] hub 6-0:1.0: 1 port detected
[  276.392756][ T8021] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 8021 comm: syz.3.668)
[  276.442881][   T27] audit: type=1800 audit(3898335922.017:86): pid=8021 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.668" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=10138 res=0 errno=0
[  278.352222][ T8031] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  279.736604][  T138] Bluetooth: hci4: Frame reassembly failed (-84)
[  279.794108][  T138] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 0
[  281.780311][ T5775] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  281.782969][ T5777] Bluetooth: hci4: command 0x1003 tx timeout
[  283.107895][ T8070] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  283.470544][ T8073] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  284.717729][   T59] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 1
[  286.732926][ T5775] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  288.925849][ T8138] netlink: 'syz.3.706': attribute type 4 has an invalid length.
[  289.533713][ T5775] Bluetooth: hci3: command 0x0406 tx timeout
[  289.692490][ T8144] netlink: 'syz.3.706': attribute type 4 has an invalid length.
[  290.741959][ T8159] trusted_key: encrypted_key: insufficient parameters specified
[  290.752553][ T8159] trusted_key: encrypted_key: insufficient parameters specified
[  291.961533][ T8172] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  293.889999][ T8183] lo speed is unknown, defaulting to 1000
[  294.412831][ T8183] netlink: 16 bytes leftover after parsing attributes in process `syz.1.723'.
[  295.356881][ T8205] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  297.079481][ T8229] 9pnet_virtio: no channels available for device syz
[  297.198658][ T8228] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  297.517755][ T8234] netlink: 16 bytes leftover after parsing attributes in process `syz.0.743'.
[  298.103835][ T8237] block nbd2: shutting down sockets
[  299.035717][ T8256] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  299.220255][ T8263] fuse: Unknown parameter 'use00000000000000000000'
[  299.878799][ T8279] block nbd0: shutting down sockets
[  300.605870][ T8292] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  301.063738][ T8299] fuse: Unknown parameter 'use00000000000000000000'
[  301.917934][ T8316] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  301.981663][ T8322] fuse: Unknown parameter 'user_i00000000000000000000'
[  302.064575][ T8313] binder: 8312:8313 ioctl 4008af14 2000000001c0 returned -22
[  302.709956][ T8342] fuse: Unknown parameter 'user_i00000000000000000000'
[  303.017033][ T8344] __sock_release: fasync list not empty!
[  303.092459][ T8351] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  303.981887][ T8365] fuse: Unknown parameter 'user_i00000000000000000000'
[  304.380760][ T8378] hub 6-0:1.0: USB hub found
[  304.403935][ T8378] hub 6-0:1.0: 1 port detected
[  304.510226][ T8383] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 8383 comm: syz.0.796)
[  304.544651][   T27] audit: type=1800 audit(3898335950.147:87): pid=8383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.796" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8701 res=0 errno=0
[  305.878920][ T8398] fuse: Unknown parameter 'user_id00000000000000000000'
[  305.990888][ T8399] netlink: 'syz.3.802': attribute type 4 has an invalid length.
[  306.304066][ T8403] netlink: 'syz.3.802': attribute type 4 has an invalid length.
[  308.023788][    T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  308.040270][ T8422] fuse: Unknown parameter 'user_id00000000000000000000'
[  308.074788][ T8423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.809'.
[  308.246734][    T9] usb 4-1: Using ep0 maxpacket: 8
[  308.261086][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  308.279122][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  308.298456][    T9] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  308.347389][    T9] usb 4-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  308.367414][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.418453][    T9] hub 4-1:1.0: bad descriptor, ignoring hub
[  308.424576][    T9] hub: probe of 4-1:1.0 failed with error -5
[  308.451606][    T9] cdc_wdm: probe of 4-1:1.0 failed with error -22
[  308.634746][ T8417] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  308.663247][ T8417] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  309.076586][ T8437] syz.3.811: attempt to access beyond end of device
[  309.076586][ T8437] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  309.093855][ T8437] XFS (nbd3): SB validate failed with error -5.
[  310.669965][ T5777] Bluetooth: hci0: unexpected event for opcode 0x200f
[  312.019135][ T8461] fuse: Unknown parameter 'user_id00000000000000000000'
[  312.839220][ T1186] usb 4-1: USB disconnect, device number 2
[  313.308087][ T8475] libceph: resolve '0' (ret=-3): failed
[  313.430726][ T8482] fuse: Bad value for 'fd'
[  313.712813][   T55] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  314.662682][   T55] usb 1-1: Using ep0 maxpacket: 32
[  314.670264][   T55] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[  314.683665][   T55] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  314.692383][   T55] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[  314.710193][   T55] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  314.720380][   T55] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  314.731410][   T55] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  314.753844][   T55] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  314.775982][   T55] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.796246][   T55] usb 1-1: config 0 descriptor??
[  315.025441][   T55] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  315.258085][   T55] usb 1-1: USB disconnect, device number 2
[  315.317672][   T55] usblp0: removed
[  316.526058][ T8512] fuse: Bad value for 'fd'
[  317.451362][ T8513] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.459222][ T8513] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.617756][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  317.625075][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  318.643355][ T8549] fuse: Bad value for 'fd'
[  318.759103][ T8513] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  318.811459][   T48] Bluetooth: hci4: Frame reassembly failed (-84)
[  318.828375][ T8513] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  318.840415][   T59] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 0
[  319.301475][ T8513] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  319.309997][ T8513] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  319.318885][ T8513] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  319.328040][ T8513] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  320.952413][ T5775] Bluetooth: hci4: command 0x1003 tx timeout
[  320.959405][ T5777] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  321.078801][ T8578] fuse: Unknown parameter '0x0000000000000003'
[  321.304650][ T8583] =======================================================
[  321.304650][ T8583] WARNING: The mand mount option has been deprecated and
[  321.304650][ T8583]          and is ignored by this kernel. Remove the mand
[  321.304650][ T8583]          option from the mount to silence this warning.
[  321.304650][ T8583] =======================================================
[  323.443017][ T8591] netlink: 'syz.3.862': attribute type 1 has an invalid length.
[  323.451215][ T8591] netlink: 'syz.3.862': attribute type 2 has an invalid length.
[  323.459524][ T8591] netlink: 3 bytes leftover after parsing attributes in process `syz.3.862'.
[  325.911199][   T33] Bluetooth: hci4: Frame reassembly failed (-84)
[  325.965768][  T138] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 0
[  326.579903][ T8619] fuse: Unknown parameter '0x0000000000000003'
[  327.028589][ T8625] netlink: 8 bytes leftover after parsing attributes in process `syz.3.873'.
[  327.933255][ T5775] Bluetooth: hci4: command 0x1003 tx timeout
[  327.940741][ T5777] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  328.994201][ T8643] netlink: 'syz.3.879': attribute type 4 has an invalid length.
[  329.056794][ T8643] netlink: 'syz.3.879': attribute type 4 has an invalid length.
[  329.162177][ T8652] netlink: 8 bytes leftover after parsing attributes in process `syz.0.882'.
[  330.092950][  T138] Bluetooth: hci4: Frame reassembly failed (-84)
[  330.115074][   T59] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 0
[  330.831621][ T8673] netlink: 8 bytes leftover after parsing attributes in process `syz.2.891'.
[  332.133215][ T5775] Bluetooth: hci4: command 0x1003 tx timeout
[  332.140316][ T5777] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  332.973732][ T8690] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  333.585480][ T8704] netlink: 24 bytes leftover after parsing attributes in process `syz.2.901'.
[  335.734845][ T8732] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  338.076694][ T8762] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  339.316134][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[  340.534191][ T8795] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  341.373506][ T5775] Bluetooth: hci4: command 0x1003 tx timeout
[  341.374235][ T5777] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  344.454057][   T48] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 0
[  344.479568][  T138] Bluetooth: hci4: Frame reassembly failed (-84)
[  345.125984][ T8834] binder: BINDER_SET_CONTEXT_MGR already set
[  345.196278][ T8834] binder: 8833:8834 ioctl 4018620d 200000000040 returned -16
[  346.338003][ T8845] ALSA: mixer_oss: invalid OSS volume '���'
[  346.492853][ T5777] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  347.759112][ T8856] lo speed is unknown, defaulting to 1000
[  348.818053][ T8862] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  350.866133][ T8884] binder: BINDER_SET_CONTEXT_MGR already set
[  350.872229][ T8884] binder: 8883:8884 ioctl 4018620d 200000000040 returned -16
[  351.198160][ T8889] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  353.978365][ T8910] netlink: 'syz.1.971': attribute type 4 has an invalid length.
[  354.793136][ T8924] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  354.892803][ T5777] Bluetooth: hci0: command 0x0406 tx timeout
[  356.419297][ T8928] syzkaller0: entered promiscuous mode
[  356.446376][ T8928] syzkaller0: entered allmulticast mode
[  358.037308][ T8945] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  358.613634][ T8953] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  362.417497][ T8980] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  363.666665][ T8977] binder: BINDER_SET_CONTEXT_MGR already set
[  363.682990][ T8977] binder: 8976:8977 ioctl 4018620d 200000000040 returned -16
[  363.999995][ T8991] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  365.649549][ T9004] syzkaller0: entered promiscuous mode
[  365.660090][ T9004] syzkaller0: entered allmulticast mode
[  369.484080][ T9024] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1009'.
[  369.956098][ T9032] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  371.223030][ T9055] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1015'.
[  371.242961][ T9055] netlink: set zone limit has 8 unknown bytes
[  371.754093][ T5820] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  371.963945][ T9068] syzkaller0: entered promiscuous mode
[  371.971480][ T9068] syzkaller0: entered allmulticast mode
[  371.977166][ T5820] usb 1-1: Using ep0 maxpacket: 8
[  371.995508][ T5820] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  372.015137][ T5820] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  372.032144][ T5820] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  372.073645][ T5820] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  372.128918][ T5820] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.194799][ T5820] hub 1-1:1.0: bad descriptor, ignoring hub
[  372.200799][ T5820] hub: probe of 1-1:1.0 failed with error -5
[  372.261823][ T5820] cdc_wdm: probe of 1-1:1.0 failed with error -22
[  372.417262][ T9072] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  372.639791][ T9065] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  372.751253][ T9065] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  373.225666][ T9081] syz.0.1018: attempt to access beyond end of device
[  373.225666][ T9081] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  373.240730][ T9081] XFS (nbd0): SB validate failed with error -5.
[  375.223598][ T5789] usb 1-1: USB disconnect, device number 3
[  375.396306][ T9106] capability: warning: `syz.1.1028' uses deprecated v2 capabilities in a way that may be insecure
[  375.410310][ T9106] overlayfs: failed to resolve './file1': -2
[  376.618841][ T9110] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1029'.
[  376.636317][ T9110] netlink: set zone limit has 8 unknown bytes
[  377.362652][ T9076] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1021'.
[  377.818489][ T9114] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  378.499904][ T9128] hub 6-0:1.0: USB hub found
[  378.514446][ T9128] hub 6-0:1.0: 1 port detected
[  378.652955][ T8542] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  378.872868][ T8542] usb 2-1: Using ep0 maxpacket: 8
[  378.890688][ T8542] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  378.956294][ T8542] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  378.992084][ T8542] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  379.019468][ T9139] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1038'.
[  379.028790][ T9139] netlink: set zone limit has 8 unknown bytes
[  379.063871][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  379.074222][ T8542] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  379.104021][ T8542] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  379.141250][ T8542] hub 2-1:1.0: bad descriptor, ignoring hub
[  379.150735][ T8542] hub: probe of 2-1:1.0 failed with error -5
[  379.193175][ T8542] cdc_wdm: probe of 2-1:1.0 failed with error -22
[  379.373258][ T9125] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  379.390467][ T9125] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  379.841375][ T9143] syz.1.1035: attempt to access beyond end of device
[  379.841375][ T9143] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  379.865336][ T9143] XFS (nbd1): SB validate failed with error -5.
[  380.141060][ T9149] syzkaller0: entered promiscuous mode
[  380.182376][ T9149] syzkaller0: entered allmulticast mode
[  380.920701][ T9158] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  382.242935][    T9] usb 2-1: USB disconnect, device number 3
[  384.037813][ T9179] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1049'.
[  384.048556][ T9179] netlink: set zone limit has 8 unknown bytes
[  384.735810][ T9189] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  385.516564][ T9201] syzkaller0: entered promiscuous mode
[  385.522121][ T9201] syzkaller0: entered allmulticast mode
[  387.447285][ T9211] hub 6-0:1.0: USB hub found
[  387.452293][ T9211] hub 6-0:1.0: 1 port detected
[  389.528326][ T9225] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  389.581124][ T9225] batman_adv: batadv0: Adding interface: ip6gretap1
[  389.602726][ T9225] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  389.645982][ T9225] batman_adv: batadv0: Interface activated: ip6gretap1
[  390.001030][ T9229] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  390.960629][ T9253] syzkaller0: entered promiscuous mode
[  390.985284][ T9253] syzkaller0: entered allmulticast mode
[  391.412219][ T9260] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  393.644323][ T9282] netlink: 'syz.1.1086': attribute type 4 has an invalid length.
[  393.949681][ T9285] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1089'.
[  394.033655][ T9290] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  395.206225][ T9293] syzkaller0: entered promiscuous mode
[  395.235928][ T9293] syzkaller0: entered allmulticast mode
[  395.951623][ T9310] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1100'.
[  396.974180][ T9317] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  400.745862][ T9340] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1109'.
[  400.814986][ T9342] random: crng reseeded on system resumption
[  400.895430][ T9347] overlayfs: failed to resolve './file1': -2
[  400.937439][ T9350] fuse: Bad value for 'fd'
[  402.418587][ T9364] syzkaller0: entered promiscuous mode
[  402.453350][ T9364] syzkaller0: entered allmulticast mode
[  403.570149][   T59] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 1
[  405.384581][ T9380] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1123'.
[  405.529910][ T9388] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  405.612800][ T5775] Bluetooth: hci4: command 0x1003 tx timeout
[  405.619335][ T5777] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  406.958736][ T9413] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1136'.
[  407.424641][ T9418] hub 9-0:1.0: USB hub found
[  407.432948][ T9418] hub 9-0:1.0: 1 port detected
[  408.316659][ T9422] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap2
[  410.077938][ T9442] syzkaller0: entered promiscuous mode
[  410.111805][ T9442] syzkaller0: entered allmulticast mode
[  411.434271][ T9445] process 'syz.1.1146' launched './file0' with NULL argv: empty string added
[  414.422280][ T9482] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  416.472414][ T9492] syzkaller0: entered promiscuous mode
[  416.496027][ T9492] syzkaller0: entered allmulticast mode
[  416.535497][ T9494] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1161'.
[  416.558091][ T9494] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1161'.
[  418.604204][ T9520] hub 6-0:1.0: USB hub found
[  418.624590][ T9520] hub 6-0:1.0: 1 port detected
[  418.929885][ T9515] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 9515 comm: syz.0.1168)
[  418.993769][   T27] audit: type=1800 audit(3898336064.567:88): pid=9515 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1168" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8701 res=0 errno=0
[  421.443297][ T9545] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1180'.
[  421.452250][ T9545] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1180'.
[  421.868809][ T9556] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1186'.
[  422.281338][ T9572] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1193'.
[  423.517113][ T9590] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1199'.
[  423.618813][ T9581] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  425.788569][ T9599] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1201'.
[  425.798195][ T9599] netlink: set zone limit has 8 unknown bytes
[  425.828196][ T9581] kvm: pic: non byte read
[  426.088522][ T9606] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1204'.
[  427.336710][ T9622] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1210'.
[  427.539861][ T9630] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1212'.
[  427.557273][ T9630] netlink: set zone limit has 8 unknown bytes
[  428.612923][ T9635] 9pnet_virtio: no channels available for device syz
[  429.705766][ T5777] Bluetooth: hci0: unexpected event for opcode 0x202a
[  431.175179][ T9661] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1224'.
[  431.292967][ T9665] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1225'.
[  431.336358][ T9665] netlink: set zone limit has 8 unknown bytes
[  431.422067][ T9668] kvm: pic: non byte read
[  431.448043][ T9668] kvm: pic: level sensitive irq not supported
[  431.448146][ T9668] kvm: pic: non byte read
[  431.482218][ T9668] kvm: pic: level sensitive irq not supported
[  431.482300][ T9668] kvm: pic: non byte read
[  431.543338][ T9668] kvm: pic: level sensitive irq not supported
[  431.543393][ T9668] kvm: pic: non byte read
[  431.601148][ T9668] kvm: pic: level sensitive irq not supported
[  431.601222][ T9668] kvm: pic: non byte read
[  431.655501][ T9668] kvm: pic: level sensitive irq not supported
[  431.655557][ T9668] kvm: pic: non byte read
[  431.715023][ T9668] kvm: pic: level sensitive irq not supported
[  431.715078][ T9668] kvm: pic: non byte read
[  432.134961][ T9684] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1235'.
[  433.607322][ T9707] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1244'.
[  433.616632][ T9707] netlink: set zone limit has 8 unknown bytes
[  433.923116][ T9717] overlayfs: failed to resolve './file1': -2
[  436.202151][ T5859] libceph: connect (1)[c::]:6789 error -101
[  436.352710][ T9747] ceph: No mds server is up or the cluster is laggy
[  436.422805][ T5859] libceph: mon0 (1)[c::]:6789 connect error
[  437.019844][ T9749] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  437.034614][ T9749] batman_adv: batadv0: Removing interface: ip6gretap1
[  437.332817][ T5859] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  437.552675][ T5859] usb 1-1: Using ep0 maxpacket: 8
[  437.564552][ T5859] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  437.592686][ T5859] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  437.601693][ T5859] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  437.663087][ T5859] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  437.672214][ T5859] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  437.758672][ T5859] hub 1-1:1.0: bad descriptor, ignoring hub
[  437.777105][ T5859] hub: probe of 1-1:1.0 failed with error -5
[  437.795041][ T5859] cdc_wdm: probe of 1-1:1.0 failed with error -22
[  437.943882][ T9759] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  437.966209][ T9759] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  439.257067][ T9769] syz.0.1260: attempt to access beyond end of device
[  439.257067][ T9769] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  439.270253][ T9769] XFS (nbd0): SB validate failed with error -5.
[  440.032877][   T55] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[  440.225240][   T55] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[  440.262278][   T55] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  440.267908][ T9791] overlayfs: failed to resolve './file1': -2
[  440.365874][   T55] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  440.377342][   T55] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[  440.413351][   T55] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  440.525842][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  440.577595][   T55] usb 3-1: config 0 interface 0 has no altsetting 0
[  440.588338][   T55] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  440.600043][   T55] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  440.608920][   T55] usb 3-1: Product: syz
[  440.613309][   T55] usb 3-1: Manufacturer: syz
[  440.618135][   T55] usb 3-1: SerialNumber: syz
[  440.633572][   T55] usb 3-1: config 0 descriptor??
[  440.801704][ T9765] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  440.847606][   T55] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  440.977430][   T55] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  441.244072][ T5778] usb 1-1: USB disconnect, device number 4
[  441.566912][ T9800] hub 6-0:1.0: USB hub found
[  441.588147][ T9800] hub 6-0:1.0: 1 port detected
[  442.630398][   T55] usb 3-1: USB disconnect, device number 2
[  442.714086][   T55] ldusb 3-1:0.0: LD USB Device #0 now disconnected
[  442.725358][ T9800] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 9800 comm: syz.3.1271)
[  442.740954][   T27] audit: type=1800 audit(3898336088.347:89): pid=9800 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1271" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=10138 res=0 errno=0
[  443.368757][ T9813] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  444.981425][ T9822] overlayfs: failed to resolve './file1': -2
[  445.392747][   T55] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  445.613434][   T55] usb 2-1: Using ep0 maxpacket: 8
[  445.650089][   T55] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  445.724550][   T55] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  445.788016][   T55] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  445.843926][   T55] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  445.883938][   T55] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  445.947353][   T55] hub 2-1:1.0: bad descriptor, ignoring hub
[  445.970565][   T55] hub: probe of 2-1:1.0 failed with error -5
[  445.998272][   T55] cdc_wdm: probe of 2-1:1.0 failed with error -22
[  446.160234][ T9825] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  446.199184][ T9825] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  447.763025][ T9847] syz.1.1280: attempt to access beyond end of device
[  447.763025][ T9847] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  448.120529][ T9847] XFS (nbd1): SB validate failed with error -5.
[  450.437949][ T9866] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  451.543007][ T8542] usb 2-1: USB disconnect, device number 4
[  451.638071][ T9870] overlayfs: failed to resolve './file1': -2
[  453.751430][ T9894] binder: 9893:9894 ioctl c0306201 2000000003c0 returned -14
[  454.582730][ T8542] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  454.762868][ T8542] usb 4-1: Using ep0 maxpacket: 8
[  454.773227][ T8542] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  454.786210][ T8542] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  454.819840][ T8542] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  454.899712][ T8542] usb 4-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  454.939626][ T9890] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  454.970698][ T8542] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  455.139439][ T8542] hub 4-1:1.0: bad descriptor, ignoring hub
[  455.156826][ T8542] hub: probe of 4-1:1.0 failed with error -5
[  455.198019][ T8542] cdc_wdm: probe of 4-1:1.0 failed with error -22
[  455.349254][ T9897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  455.370642][ T9897] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  455.745102][ T9906] syz.3.1302: attempt to access beyond end of device
[  455.745102][ T9906] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  455.759648][ T9906] XFS (nbd3): SB validate failed with error -5.
[  456.354706][ T9916] overlayfs: failed to resolve './file1': -2
[  458.546006][   T27] audit: type=1326 audit(3898336103.277:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.042662][   T27] audit: type=1326 audit(3898336103.277:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.134812][   T27] audit: type=1326 audit(3898336103.457:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.312599][   T27] audit: type=1326 audit(3898336103.457:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.412790][   T27] audit: type=1326 audit(3898336103.457:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.517690][   T27] audit: type=1326 audit(3898336103.597:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.641736][   T27] audit: type=1326 audit(3898336103.597:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.675016][ T9937] hub 6-0:1.0: USB hub found
[  459.692297][ T9937] hub 6-0:1.0: 1 port detected
[  459.698019][   T27] audit: type=1326 audit(3898336103.597:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.751070][ T9935] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 9935 comm: syz.2.1310)
[  459.761242][   T27] audit: type=1326 audit(3898336103.847:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  459.891170][   T27] audit: type=1326 audit(3898336103.847:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9918 comm="syz.0.1307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e1398e929 code=0x7ffc0000
[  460.003391][   T55] usb 4-1: USB disconnect, device number 3
[  460.081576][ T9940] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  460.088199][ T9940] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  460.129116][ T9940] vhci_hcd vhci_hcd.0: Device attached
[  460.402657][   T55] usb 35-1: new high-speed USB device number 2 using vhci_hcd
[  460.533203][ T9949] overlayfs: failed to resolve './file1': -2
[  460.773211][ T9941] vhci_hcd: connection reset by peer
[  460.789472][ T3447] vhci_hcd: stop threads
[  460.805428][ T3447] vhci_hcd: release socket
[  460.810137][ T3447] vhci_hcd: disconnect device
[  461.043001][ T9955] syzkaller0: left promiscuous mode
[  461.048638][ T9955] syzkaller0: left allmulticast mode
[  462.162834][ T9419] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  462.366945][ T9419] usb 3-1: Using ep0 maxpacket: 8
[  462.386005][ T9419] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  462.412331][ T9419] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  462.421661][ T9419] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  462.438601][ T9419] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  462.448701][ T9419] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.478460][ T9419] hub 3-1:1.0: bad descriptor, ignoring hub
[  462.484630][ T9419] hub: probe of 3-1:1.0 failed with error -5
[  462.508692][ T9419] cdc_wdm: probe of 3-1:1.0 failed with error -22
[  462.696652][ T9964] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  462.721439][ T9964] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  462.949541][ T9976] overlayfs: failed to resolve './file1': -2
[  464.132538][ T9978] syz.2.1321: attempt to access beyond end of device
[  464.132538][ T9978] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  464.145812][ T9978] XFS (nbd2): SB validate failed with error -5.
[  464.353027][ T9993] syzkaller0: left promiscuous mode
[  464.359240][ T9993] syzkaller0: left allmulticast mode
[  464.906649][T10002] hub 6-0:1.0: USB hub found
[  464.935676][T10002] hub 6-0:1.0: 1 port detected
[  465.063710][T10001] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 10001 comm: syz.3.1329)
[  465.171161][   T27] kauditd_printk_skb: 9 callbacks suppressed
[  465.171180][   T27] audit: type=1800 audit(3898336110.757:109): pid=10001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1329" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=10138 res=0 errno=0
[  465.632855][   T55] vhci_hcd: vhci_device speed not set
[  466.183031][ T8542] usb 3-1: USB disconnect, device number 3
[  466.215008][T10015] overlayfs: failed to resolve './file1': -2
[  467.599929][T10030] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  469.892637][ T8542] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  470.089363][ T8542] usb 1-1: Using ep0 maxpacket: 8
[  470.103250][ T8542] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  470.137206][ T8542] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  470.171578][ T8542] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  470.226318][ T8542] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  470.261510][ T8542] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  470.295624][ T8542] hub 1-1:1.0: bad descriptor, ignoring hub
[  470.340025][ T8542] hub: probe of 1-1:1.0 failed with error -5
[  470.419894][ T8542] cdc_wdm: probe of 1-1:1.0 failed with error -22
[  470.601667][T10047] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  470.802918][T10047] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  471.335028][T10061] binder: 10060:10061 ioctl c0306201 2000000003c0 returned -14
[  471.526793][T10066] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  472.530318][T10062] syz.0.1344: attempt to access beyond end of device
[  472.530318][T10062] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  472.560891][T10062] XFS (nbd0): SB validate failed with error -5.
[  473.468408][T10084] netlink: 'syz.1.1354': attribute type 4 has an invalid length.
[  474.963181][   T55] usb 1-1: USB disconnect, device number 5
[  475.353567][T10097] overlayfs: failed to resolve './file1': -2
[  476.174169][T10103] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  478.202788][ T9419] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  478.680019][ T9419] usb 2-1: Using ep0 maxpacket: 8
[  478.714878][ T9419] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  478.747273][ T9419] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  478.776992][ T9419] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  478.889070][T10124] netlink: 'syz.0.1369': attribute type 4 has an invalid length.
[  478.914604][ T9419] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  479.134952][ T9419] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.187022][ T9419] hub 2-1:1.0: bad descriptor, ignoring hub
[  479.298160][ T9419] hub: probe of 2-1:1.0 failed with error -5
[  479.331834][ T9419] cdc_wdm: probe of 2-1:1.0 failed with error -22
[  479.348411][T10126] overlayfs: failed to resolve './file1': -2
[  479.406235][T10116] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  479.468753][T10116] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  480.530421][T10135] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  481.802949][T10130] syz.1.1368: attempt to access beyond end of device
[  481.802949][T10130] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  481.855633][T10130] XFS (nbd1): SB validate failed with error -5.
[  482.477595][T10144] lo speed is unknown, defaulting to 1000
[  483.905272][ T5778] usb 2-1: USB disconnect, device number 5
[  483.964935][T10157] hub 6-0:1.0: USB hub found
[  484.054849][T10157] hub 6-0:1.0: 1 port detected
[  484.159213][T10157] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 10157 comm: syz.3.1376)
[  484.270770][   T27] audit: type=1800 audit(3898336129.857:110): pid=10157 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1376" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=10138 res=0 errno=0
[  484.893464][T10169] overlayfs: failed to resolve './file1': -2
[  486.412425][T10178] netlink: 'syz.2.1383': attribute type 4 has an invalid length.
[  486.684996][T10179] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1384'.
[  488.037104][ T8542] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  488.242666][ T8542] usb 1-1: Using ep0 maxpacket: 8
[  488.280346][ T8542] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  488.292717][ T8542] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  488.303018][ T8542] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  488.316721][ T8542] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  488.326493][ T8542] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.357349][ T8542] hub 1-1:1.0: bad descriptor, ignoring hub
[  488.372915][ T8542] hub: probe of 1-1:1.0 failed with error -5
[  488.413362][ T8542] cdc_wdm: probe of 1-1:1.0 failed with error -22
[  488.460393][T10198] netdevsim netdevsim2: Direct firmware load for ��0���Pq���D"�2�N�ktT�Wj��%�N�� failed with error -2
[  488.485854][T10198] netdevsim netdevsim2: Falling back to sysfs fallback for: ��0���Pq���D"�2�N�ktT�Wj��%�N��
[  488.561174][T10192] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  488.608375][T10204] overlayfs: failed to resolve './file1': -2
[  488.623094][T10192] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  489.579050][T10210] hub 6-0:1.0: USB hub found
[  489.586053][T10210] hub 6-0:1.0: 1 port detected
[  489.632167][T10210] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 10210 comm: syz.1.1393)
[  489.784722][   T27] audit: type=1800 audit(3898336135.247:111): pid=10210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1393" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8161 res=0 errno=0
[  489.939120][T10211] syz.0.1387: attempt to access beyond end of device
[  489.939120][T10211] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  489.968671][T10211] XFS (nbd0): SB validate failed with error -5.
[  490.072222][T10221] binder: 10218:10221 ioctl c0306201 2000000003c0 returned -14
[  491.398424][T10229] batman_adv: batadv0: Adding interface: dummy0
[  491.421695][T10229] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  491.598950][T10229] batman_adv: batadv0: Interface activated: dummy0
[  491.646442][T10230] batadv0: mtu less than device minimum
[  491.668041][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.681614][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.693873][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.706117][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.718920][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.731504][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.744419][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.756828][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  491.769601][T10230] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  492.811453][T10234] netlink: 'syz.1.1398': attribute type 4 has an invalid length.
[  492.983102][ T9419] usb 1-1: USB disconnect, device number 6
[  493.920716][T10246] netdevsim netdevsim2: Direct firmware load for ��0���Pq���D"�2�N�ktT�Wj��%�N�� failed with error -2
[  493.933087][T10246] netdevsim netdevsim2: Falling back to sysfs fallback for: ��0���Pq���D"�2�N�ktT�Wj��%�N��
[  494.091435][T10252] overlayfs: failed to resolve './file1': -2
[  496.384132][T10261] hub 6-0:1.0: USB hub found
[  496.407427][T10261] hub 6-0:1.0: 1 port detected
[  496.511994][T10261] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 10261 comm: syz.0.1405)
[  496.720924][   T27] audit: type=1800 audit(3898336142.307:112): pid=10261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1405" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=8701 res=0 errno=0
[  496.863003][   T55] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  496.872264][ T5841] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  497.013643][T10269] input: syz1 as /devices/virtual/input/input14
[  497.062610][   T55] usb 3-1: Using ep0 maxpacket: 8
[  497.068038][ T5841] usb 4-1: Using ep0 maxpacket: 8
[  497.077566][ T5841] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  497.091807][   T55] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  497.107195][ T5841] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  497.118354][   T55] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  497.154539][ T5841] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  497.175766][   T55] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  497.208370][ T5841] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  497.228864][   T55] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  497.282015][ T5841] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  497.301545][   T55] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  497.324971][ T5841] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  497.344674][   T55] hub 3-1:1.0: bad descriptor, ignoring hub
[  497.390872][   T55] hub: probe of 3-1:1.0 failed with error -5
[  497.418070][   T55] cdc_wdm: probe of 3-1:1.0 failed with error -22
[  497.565602][T10267] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  497.586610][T10267] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  497.621896][ T5841] usb 4-1: GET_CAPABILITIES returned 0
[  497.793029][ T5841] usbtmc 4-1:16.0: can't read capabilities
[  498.155413][ T5841] usb 4-1: USB disconnect, device number 4
[  498.317400][T10272] syz.2.1408: attempt to access beyond end of device
[  498.317400][T10272] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  498.362186][T10272] XFS (nbd2): SB validate failed with error -5.
[  500.280943][T10289] netlink: 'syz.1.1412': attribute type 4 has an invalid length.
[  500.592886][ T8542] usb 3-1: USB disconnect, device number 4
[  500.723407][T10298] overlayfs: failed to resolve './file1': -2
[  502.003170][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  504.179429][ T5841] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  504.392675][ T5841] usb 3-1: Using ep0 maxpacket: 8
[  504.435816][ T5841] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  504.476269][ T5841] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  504.551002][T10330] binder: 10329:10330 ioctl c0306201 2000000003c0 returned -14
[  504.561000][ T5841] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  504.628380][ T5841] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  504.667191][ T5841] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  504.748679][ T5841] hub 3-1:1.0: bad descriptor, ignoring hub
[  504.785082][ T5841] hub: probe of 3-1:1.0 failed with error -5
[  504.831082][ T5841] cdc_wdm: probe of 3-1:1.0 failed with error -22
[  504.931805][T10325] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  504.990276][T10325] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  505.925636][T10341] syz.2.1424: attempt to access beyond end of device
[  505.925636][T10341] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  505.944092][T10341] XFS (nbd2): SB validate failed with error -5.
[  506.478985][ T5777] Bluetooth: hci1: unexpected event for opcode 0x2043
[  506.572120][T10355] netlink: 'syz.1.1431': attribute type 4 has an invalid length.
[  506.927042][T10360] block nbd0: shutting down sockets
[  507.390607][T10362] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  509.232024][T10368] binder: 10367:10368 ioctl c0306201 2000000003c0 returned -14
[  510.495093][ T5777] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  510.507251][ T5777] Bluetooth: hci1: Injecting HCI hardware error event
[  510.517578][ T5777] Bluetooth: hci1: hardware error 0x00
[  511.396249][T10372] syz.0.1436 (10372) used greatest stack depth: 17960 bytes left
[  511.733695][ T9419] usb 3-1: USB disconnect, device number 5
[  513.133586][ T5777] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  513.757680][T10389] 9pnet_virtio: no channels available for device syz
[  619.762465][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  619.769487][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P59/1:b..l
[  619.777672][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=54537, q=115 ncpus=2)
[  619.785403][    C1] task:kworker/u4:4    state:R  running task     stack:20840 pid:59    ppid:2      flags:0x00004000
[  619.797267][    C1] Workqueue: bat_events batadv_nc_worker
[  619.802963][    C1] Call Trace:
[  619.806259][    C1]  <TASK>
[  619.809218][    C1]  __schedule+0x14e2/0x4580
[  619.813756][    C1]  ? mark_lock+0x41/0x320
[  619.818114][    C1]  ? asan.module_dtor+0x20/0x20
[  619.822994][    C1]  ? mark_lock+0x94/0x320
[  619.827346][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  619.833376][    C1]  ? preempt_schedule_irq+0xaa/0x140
[  619.838686][    C1]  preempt_schedule_irq+0xb5/0x140
[  619.843816][    C1]  ? preempt_schedule_notrace+0x110/0x110
[  619.849565][    C1]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  619.855388][    C1]  irqentry_exit+0x67/0x70
[  619.859816][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  619.865807][    C1] RIP: 0010:lock_acquire+0x1f2/0x410
[  619.871104][    C1] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f5 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 66 43 c7 44 3c 09 00 00 43 c6 44 3c 0b 00
[  619.890734][    C1] RSP: 0018:ffffc900015a7a40 EFLAGS: 00000206
[  619.896858][    C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 62869cf713665d00
[  619.904836][    C1] RDX: 0000000000000000 RSI: ffffffff8aaac440 RDI: ffffffff8afc6900
[  619.912821][    C1] RBP: ffffc900015a7b48 R08: dffffc0000000000 R09: 1ffffffff21b0aa4
[  619.920814][    C1] R10: dffffc0000000000 R11: fffffbfff21b0aa5 R12: 1ffff920002b4f54
[  619.928806][    C1] R13: ffffffff8cd2f760 R14: 0000000000000246 R15: dffffc0000000000
[  619.936825][    C1]  ? batadv_nc_worker+0xd2/0x610
[  619.941810][    C1]  ? read_lock_is_recursive+0x20/0x20
[  619.947244][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  619.954035][    C1]  ? batadv_nc_worker+0xd2/0x610
[  619.958998][    C1]  batadv_nc_worker+0xef/0x610
[  619.963800][    C1]  ? batadv_nc_worker+0xd2/0x610
[  619.968761][    C1]  ? process_scheduled_works+0x957/0x15b0
[  619.975015][    C1]  process_scheduled_works+0xa45/0x15b0
[  619.980803][    C1]  ? assign_work+0x400/0x400
[  619.985435][    C1]  ? assign_work+0x39e/0x400
[  619.990054][    C1]  worker_thread+0xa55/0xfc0
[  619.994661][    C1]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  620.000568][    C1]  ? _raw_spin_unlock+0x40/0x40
[  620.005430][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  620.011354][    C1]  kthread+0x2fa/0x390
[  620.015432][    C1]  ? pr_cont_work+0x560/0x560
[  620.020119][    C1]  ? kthread_blkcg+0xd0/0xd0
[  620.024717][    C1]  ret_from_fork+0x48/0x80
[  620.029145][    C1]  ? kthread_blkcg+0xd0/0xd0
[  620.033746][    C1]  ret_from_fork_asm+0x11/0x20
[  620.038536][    C1]  </TASK>
[  620.041561][    C1] rcu: rcu_preempt kthread starved for 10178 jiffies! g54537 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  620.052754][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  620.062724][    C1] rcu: RCU grace-period kthread stack dump:
[  620.068612][    C1] task:rcu_preempt     state:R  running task     stack:27152 pid:17    ppid:2      flags:0x00004000
[  620.079392][    C1] Call Trace:
[  620.082699][    C1]  <TASK>
[  620.085641][    C1]  __schedule+0x14e2/0x4580
[  620.090170][    C1]  ? asan.module_dtor+0x20/0x20
[  620.095034][    C1]  ? enqueue_timer+0x225/0x530
[  620.099807][    C1]  ? __mod_timer+0x984/0xdb0
[  620.104414][    C1]  schedule+0xbd/0x170
[  620.108494][    C1]  schedule_timeout+0x160/0x280
[  620.113360][    C1]  ? console_conditional_schedule+0x40/0x40
[  620.119276][    C1]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  620.125187][    C1]  ? update_process_times+0x1b0/0x1b0
[  620.130577][    C1]  ? prepare_to_swait_event+0x339/0x360
[  620.136133][    C1]  rcu_gp_fqs_loop+0x302/0x1560
[  620.140986][    C1]  ? rcu_gp_init+0x110e/0x1510
[  620.145767][    C1]  ? dyntick_save_progress_counter+0x2b0/0x2b0
[  620.151946][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  620.157182][    C1]  ? rcu_gp_init+0x1510/0x1510
[  620.162014][    C1]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  620.167948][    C1]  ? finish_swait+0xc7/0x1d0
[  620.172565][    C1]  rcu_gp_kthread+0x99/0x380
[  620.177179][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  620.182319][    C1]  ? __kthread_parkme+0x7a/0x1c0
[  620.187285][    C1]  ? __kthread_parkme+0x162/0x1c0
[  620.192348][    C1]  kthread+0x2fa/0x390
[  620.196431][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  620.201564][    C1]  ? kthread_blkcg+0xd0/0xd0
[  620.206163][    C1]  ret_from_fork+0x48/0x80
[  620.210613][    C1]  ? kthread_blkcg+0xd0/0xd0
[  620.215209][    C1]  ret_from_fork_asm+0x11/0x20
[  620.220001][    C1]  </TASK>
[  620.223029][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  620.229353][    C1] Sending NMI from CPU 1 to CPUs 0:
[  620.234595][    C0] NMI backtrace for cpu 0
[  620.234625][    C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.6.94-syzkaller #0
[  620.234640][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  620.234649][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  620.234672][    C0] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 63 f0 41 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56
[  620.234685][    C0] RSP: 0018:ffffffff8ca07d80 EFLAGS: 000002c2
[  620.234699][    C0] RAX: 92062587a5131f00 RBX: ffffffff81618a7b RCX: 92062587a5131f00
[  620.234711][    C0] RDX: 0000000000000001 RSI: ffffffff8aaab2c0 RDI: ffffffff8afc6900
[  620.234730][    C0] RBP: ffffffff8ca07eb8 R08: ffff8880b8e36d4b R09: 1ffff110171c6da9
[  620.234741][    C0] R10: dffffc0000000000 R11: ffffed10171c6daa R12: ffffffff8e49ab28
[  620.234753][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1952670
[  620.234763][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  620.234776][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  620.234787][    C0] CR2: 00007f53e8e22f98 CR3: 000000002f451000 CR4: 00000000003506f0
[  620.234800][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  620.234809][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  620.234818][    C0] Call Trace:
[  620.234826][    C0]  <TASK>
[  620.234831][    C0]  default_idle+0x13/0x20
[  620.234850][    C0]  default_idle_call+0x6c/0xa0
[  620.234870][    C0]  do_idle+0x1eb/0x510
[  620.234893][    C0]  ? idle_inject_timer_fn+0x60/0x60
[  620.234913][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  620.234938][    C0]  cpu_startup_entry+0x43/0x60
[  620.234958][    C0]  rest_init+0x2e2/0x300
[  620.234977][    C0]  ? time_init+0x40/0x40
[  620.234996][    C0]  arch_call_rest_init+0xe/0x10
[  620.235019][    C0]  start_kernel+0x459/0x4e0
[  620.235043][    C0]  x86_64_start_reservations+0x2a/0x30
[  620.235063][    C0]  x86_64_start_kernel+0x60/0x60
[  620.235081][    C0]  secondary_startup_64_no_verify+0x179/0x17b
[  620.235112][    C0]  </TASK>