last executing test programs:

17m25.483246028s ago: executing program 32 (id=5984):
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0xfffffffe, 0x1, 0x1, 0x0, 0x0, 0x0)

11m13.578830062s ago: executing program 1 (id=11974):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="a0000000", @ANYRES16=r2, @ANYBLOB="010026bd7000fbdbdf253b00000008000300", @ANYRES32=r1, @ANYBLOB="8100330050100f0508021100000108021100000008021100000135000800000000000000010000080102368904"], 0xa0}, 0x1, 0x0, 0x0, 0x88d0}, 0x0)

11m13.435542636s ago: executing program 1 (id=11976):
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000180)={'ip6gre0\x00', 0x0, 0x4, 0x2, 0x6, 0x9, 0x4b, @local, @empty, 0x8, 0x8000, 0x0, 0xffffff30}})
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)=ANY=[@ANYBLOB="e0000002ac1414aa0100000002"], 0x18)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x10, 0x2, 0x0, @empty, @multicast1}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2, 0x7}}}}}, 0x0)

11m13.402805761s ago: executing program 1 (id=11977):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41)
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(r1, 0x40146f2c, &(0x7f00000000c0)={0x1, 0x0, 0x3, 0x13, 0x4})
ioctl$DVB_DEMUX_DMX_REMOVE_PID(r1, 0x40026f34, &(0x7f0000000040)=0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

11m13.327180306s ago: executing program 1 (id=11979):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(&(0x7f0000000280)='./file0/../file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x28a5291, 0x0)

11m13.292480757s ago: executing program 1 (id=11980):
openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r0], 0x54}, 0x1, 0x0, 0x0, 0x81}, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

11m12.564948333s ago: executing program 1 (id=11985):
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00')

11m12.35148874s ago: executing program 33 (id=11985):
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00')

9m10.181431777s ago: executing program 0 (id=13263):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2, 0x3, 0xff)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="030000000400000004000000b5"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x0, 0xf, 0x0, &(0x7f0000000180)="c1dfb080cd21d308098ee68886dd96", 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

9m9.725652462s ago: executing program 0 (id=13267):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r1 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r1, 0x105, 0x10000839, r0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
readv(r1, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/176, 0xb0}], 0x1)

9m9.39985966s ago: executing program 0 (id=13270):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="4800000010001fff000000008100000000000000", @ANYRES32=0x0, @ANYBLOB="00000000003f0000200012800b00010067656e657665000010000280060005004e24000004000e0008000a00", @ANYRES32=r2], 0x48}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000)

9m8.98561968s ago: executing program 0 (id=13276):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x2a05404, 0x0)
chdir(&(0x7f0000000080)='./file0/../file0\x00')
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2925099, 0x0)
umount2(&(0x7f0000000240)='./file0/../file0\x00', 0x2)

9m8.834509033s ago: executing program 0 (id=13279):
pipe2(&(0x7f0000000580)={<r0=>0xffffffffffffffff}, 0x0)
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r1, 0x410, &(0x7f00000001c0)={0x1, 0x1, 0x1, 0xfffe})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000180)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

9m7.380712009s ago: executing program 0 (id=13298):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)

9m7.104598747s ago: executing program 34 (id=13298):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r3}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)

6m24.214773638s ago: executing program 4 (id=14096):
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000400)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x110, 0x80, 0x46, 0x2, 0x8, 0x7}, 0xf, &(0x7f0000000180)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0xd, 0x41, 0x5, 0x75}]}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8000000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6m22.191913395s ago: executing program 4 (id=14100):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, &(0x7f0000000240)={0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x3, 'sed\x00', 0x8, 0x7, 0x6e}, 0x2c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)=ANY=[@ANYBLOB="540000001000ffff27bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="137c03002b1a08002c0012800e00010069703667726574617000000018000280140007000000000000000000000000000000000108000d00"], 0x54}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)

6m20.829008671s ago: executing program 4 (id=14103):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=@newqdisc={0x84, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x54, 0x2, {{0x100, 0x3, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x211}, @TCA_NETEM_SLOT={0x2c, 0xc, {0xfffffffffffffff4, 0x2, 0x8, 0x4, 0x5, 0x7}}]}}}]}, 0x84}, 0x1, 0x0, 0x0, 0xc04c001}, 0x20000804)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

6m17.248471668s ago: executing program 4 (id=14106):
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x88000000000007, 0x3)
r0 = io_uring_setup(0x3635, &(0x7f0000000180)={0x0, 0x2c3f, 0x0, 0x21, 0xab})
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
r2 = socket(0x28, 0x5, 0x0)
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r3, 0x4)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvfrom$inet_nvme(r2, 0x0, 0x0, 0x40000002, 0x0, 0x0)
setsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000280)={0x1, 0xe}, 0x8)
close_range(r0, 0xffffffffffffffff, 0x0)

6m14.722471295s ago: executing program 4 (id=14112):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
io_uring_setup(0x1b7b, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x3, &(0x7f0000001300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x94)

6m12.11141303s ago: executing program 4 (id=14114):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ppoll(&(0x7f0000000100)=[{r2, 0x3328}, {r1, 0x4236}], 0x2, 0x0, 0x0, 0x0)
unshare(0x22020400)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000001480)={0x0, 0x0, 0x0}, 0x100)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

5m56.96896306s ago: executing program 35 (id=14114):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
ppoll(&(0x7f0000000100)=[{r2, 0x3328}, {r1, 0x4236}], 0x2, 0x0, 0x0, 0x0)
unshare(0x22020400)
close(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
recvmsg(r2, &(0x7f0000001480)={0x0, 0x0, 0x0}, 0x100)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

5m51.367108705s ago: executing program 6 (id=14149):
socket(0x10, 0x803, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r3, 0x40044145, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f00000007c0)={0xa, 0x2, 0x0, @empty, 0x80000001}, 0x1c)

5m48.808097833s ago: executing program 6 (id=14152):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f00000004c0)=0x9c35)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000140)=0x200000000)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000000)=""/144, 0x90}], 0x1, 0x5, 0x2, 0x1)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x40014)
socket$nl_generic(0x10, 0x3, 0x10)

5m45.360560365s ago: executing program 2 (id=14156):
prlimit64(0x0, 0xe, &(0x7f0000000480)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x1}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(r4, &(0x7f0000000140)='personality\x00')
preadv(r5, 0x0, 0x0, 0x0, 0x400)

5m44.270203229s ago: executing program 2 (id=14157):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000240)={0xa, 0x6e23, 0x2, @mcast1, 0x9}, 0x1c)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

5m44.179982662s ago: executing program 6 (id=14159):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$kcm(0x29, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, 0x0)

5m42.787952306s ago: executing program 6 (id=14162):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20)

5m41.366454281s ago: executing program 2 (id=14163):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2280, 0x0)
r0 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r2 = io_uring_setup(0x24d2, &(0x7f0000000040)={0x0, 0xc8e2, 0xc000, 0xfffffffe, 0x20002f5})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xffff}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40085}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f0000000000)=0x6, 0x4)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_MMIO(r0, 0x20, &(0x7f0000000100)="64be365de974de7ab149b947a8218d12625b0c29c0496e90", 0x0, 0x18)
syz_memcpy_off$KVM_EXIT_MMIO(r0, 0x20, &(0x7f00000004c0)="9266b709b6a124c788f903c38e5f6f0102c2de5d1cb867eb", 0x0, 0x18)
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffb000/0x1000)=nil, 0x1000}})

5m39.937106578s ago: executing program 2 (id=14165):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = fsopen(&(0x7f0000000000)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000080)='source', &(0x7f00000019c0)='//\xf2/\x06\b///o/\xea\x95\x9a/\x00bb\x8a\x80\x91\xdf\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6h\xd1\x1d\xac\xaa\xfb\xc7Y\xcd\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc50\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\x05\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1oO\xe4\x99\xd6\xed\x83\xb0\x18q\xb9\xda\xf1kk\xb0N\xe69D\x12\x1f\x96\x85y\xe1\xf6\x83\x81\xc1\xcb\x169\xa5A%\xcb\n\xaby\x9f\x97\xde\xcf\x14\x0f\xffl\xb0e\xa2m\xb3\x8fsI\xc8v<\x8a\\7\xbaA\xef\x92\x98K\xfd\xaa\xdb', 0x0)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x4)
fcntl$notify(r5, 0x402, 0x8000003d)
close_range(r4, r5, 0x0)

5m38.527561369s ago: executing program 2 (id=14167):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x20980, 0x0)
pread64(r0, &(0x7f0000000000)=""/149, 0x95, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_emit_ethernet(0x87, &(0x7f0000000180)=ANY=[], 0x0)
r4 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000040)=0x7d)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

5m37.545599035s ago: executing program 6 (id=14169):
r0 = io_uring_setup(0x650b, &(0x7f0000000180)={0x0, 0x2c3f, 0x0, 0x21, 0xab})
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
r2 = socket(0x28, 0x5, 0x0)
r3 = socket(0x28, 0x5, 0x0)
r4 = fsopen(&(0x7f0000000080)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0x18)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r3, 0x4)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvfrom$inet_nvme(r2, 0x0, 0x0, 0x40000002, 0x0, 0x0)
setsockopt$sock_linger(r2, 0x1, 0xd, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

5m36.682013442s ago: executing program 2 (id=14171):
socket$can_raw(0x1d, 0x3, 0x1)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000180), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x239, &(0x7f00000002c0)={0x0, 0x98d, 0x10100, 0x3, 0x2cc}, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {0x90c0}, 0x1})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
openat$cgroup_type(r6, &(0x7f0000000140), 0x2, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000c40), 0x12)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_ro(r8, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r9, &(0x7f0000000200)=0x1, 0x12)

5m35.419904248s ago: executing program 6 (id=14173):
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000100)={0x48})
ioctl$IOMMU_HWPT_ALLOC$TEST(r0, 0x3b89, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005500)={0x1c, 0x43, 0x107, 0xfffffffe, 0x25dfdbfc, {0x1, 0x7c}, [@nested={0x4, 0x145}, @nested={0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc004}, 0xc000)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000001a40)=""/102392, 0x18ff8)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f00000000c0)=0x58, 0x5)

5m20.935708112s ago: executing program 36 (id=14171):
socket$can_raw(0x1d, 0x3, 0x1)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x1a, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000180), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x239, &(0x7f00000002c0)={0x0, 0x98d, 0x10100, 0x3, 0x2cc}, &(0x7f00000001c0)=<r4=>0x0, &(0x7f0000000080)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {0x90c0}, 0x1})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz1\x00', 0x200002, 0x0)
openat$cgroup_type(r6, &(0x7f0000000140), 0x2, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000c40), 0x12)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_ro(r8, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r9, &(0x7f0000000200)=0x1, 0x12)

5m20.189319038s ago: executing program 37 (id=14173):
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000100)={0x48})
ioctl$IOMMU_HWPT_ALLOC$TEST(r0, 0x3b89, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005500)={0x1c, 0x43, 0x107, 0xfffffffe, 0x25dfdbfc, {0x1, 0x7c}, [@nested={0x4, 0x145}, @nested={0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc004}, 0xc000)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000001a40)=""/102392, 0x18ff8)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f00000000c0)=0x58, 0x5)

3.872468091s ago: executing program 8 (id=15054):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'geneve0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="5800000010000300"/20, @ANYRES32=r1, @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c00028005000400010000001c001a8018000a80140007"], 0x58}, 0x1, 0x2}, 0x80)

3.647243855s ago: executing program 8 (id=15057):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={<r1=>0xffffffffffffffff}, 0x13f, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f00000001c0)={0x18, 0x110, 0xfa00, {r1, 0x7fffffff, 0x12, 0x0, 0x0, @in6={0xa, 0x4e22, 0x100, @private1, 0xf5}, @in6={0xa, 0x4e24, 0x401, @local, 0x4}}}, 0x118)

3.516138567s ago: executing program 8 (id=15059):
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000040)="1400000052004f030e789e7e27286d000a4149f3", 0x14)
recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)

3.372851294s ago: executing program 8 (id=15061):
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x2)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = memfd_create(&(0x7f0000000800)='\xff\x00l\x1e\xa0</\x00\x8eO4._\x14zC\x8a\xe8\xe0u\xe0\xff\xf1\xb2\xfd\xf6nz\x05-]\xc2Vk\xaeky\xd3\x83\xe2\xc7\xd3\xe6M^\x98ox\x14\t\xe9Q1\x1dK\x9a\x045\xd37\xb22\xfdD(\xd2\xdd \xa0\xff\x0f\x00\x00\x00\x00\x00\x00v\n\xd8?]k\x14N\x18\xf4\xc2j\xed6g\xfd\xd2\xd4\xe3\x1f\xa6 \xa0\x8d\xb5\x9aE<2`]<\x8cR\xd69\x0fO\xbf\xc3\xbd\xb0\x96\x90\x91k\x86\x1a\x10\xd2\xf5\x8b\xfc\x83P\xf4\xd0[\x12\xf5+\x1aS\x02/Yx\xf2jJb\x97\x9c/\x1f5i\xc6\x861\x9a\xff\xc3\xe7\xbfU\xd5\xac\xccB=\x8f\xfd\x84\xeepQ\x93nn\x0f\xc6\xa9?\xad\x8b~\xd66hv\xd3$\x13s\xa0\xbfi\xfaFS\xa9=Xe\xf8tI\x15\x882\x8b\x8e-X\xb8\xf2\x9du\x15S^\xec\xce\xfa\x87$S\x9f\xe7Ed\n\x84\\ u\xd2\x16\xc1\xa5\xa0\xaa\xe8.i\xc8\x0e\vt\xe2\xf1lA\x93\xdd\xce\x8f$\x06v\xbe\xe7\x95nN\xc5\xaa\x1ev\xc6P\x9c\\G&y\x8bYA\xc3}\xd9\x86[\xb2\xf3\x0f\x90%\xcb\x81\xe8\xea\xbcs\x95\xe9\x8eXH\x19m\xdfOY\xf1E9-\xc8\xe7\x13^+(\x034\x82\xafiOO\x14\x8f^\x8c\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00#\xb9F,e\xfa\xd7\xa2\xeb\xb1\xc9\xbe#\x92\xf3\x19\xe6\x83(\xfe\xf8i\xb9\xc1\xa0w\xea\xbf\xe5\x8d\xe9\x14\x130\xc3\xa5|/_\t\x98\xc3\xa7\x95!\xdf*\a\xd7\xfcv|\xb3Zc\xcf~\xf6\xe2\xa86Q\x9a$\x80\x85\x8b\t\xbf\xe6(\x12\xe0\xe1e\x81x]a\x145\xa7\xd2\n\x11h\xb9\xf5g\xc4%&\xbaRy\x8f\x85Q\xb9W\xe5\x06\xe2\xb3ryk}\x86\xc6\x04\x03i\x10\xa8\xc4\xcd`\xb8\xcfT))\xb7\x15\b%\xc8uC(C\x01\x1by\xbf \x10\xe8k\xea\x80\xd0P|\x11\xe5\xb9\x1d^\x92j\xb0\xa7\x1d', 0x7)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xa, 0x4d091, r4, 0x4000000)
fcntl$addseals(r4, 0x409, 0x2)
setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x0)
socket$kcm(0x2, 0x2, 0x73)
r5 = openat$udambuf(0xffffff9c, 0x0, 0x2)
ioctl$UDMABUF_CREATE(r5, 0x40187542, &(0x7f0000000040)={r4, 0x0, 0x0, 0x1000000})

2.897728312s ago: executing program 5 (id=15070):
r0 = add_key$user(&(0x7f0000002100), &(0x7f0000002180)={'syz', 0x1}, &(0x7f0000000280)='b', 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000040), &(0x7f0000002340)={'syz', 0x3}, &(0x7f0000000100)="370c099069effa43de3e1404db09b4ce1ef77bde4b371532dd16447c1b13403656c86711f6e750026f23029a50d44299c7bf5c78dc5efae2d041016160e8bef7b30c05e298aa9572540dd950307987eef2115e1bcf512bea3410ca5a9e9f827e4b13490dbbd4fc5a45e0738b959acafd2c12863045265bcbc2c9426ac3f614746b436fe86a72dc642dd67d970604a69b4f22cd0076beedc18056ab4bea4c825b69a7a77adcd5488684872b1bb9eb84586549e11b080468668e8fd0e52ce0705a", 0xc0, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r0, r1, r0}, &(0x7f0000000540)=""/185, 0xb9, 0x0)

2.753148113s ago: executing program 5 (id=15073):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000e00)={0x700, 0x2, &(0x7f0000000300)=[0x0, 0x0], &(0x7f0000000400), &(0x7f0000000d80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000dc0)=[0xfffffffffffffffc, 0x9], 0x0, 0x80})
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
move_pages(0x0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil], &(0x7f0000002640)=[0x1], &(0x7f0000000000), 0x0)
r4 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r4, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r4, 0x2)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, '\x00', "5171bb671465593497418688ac0c0000ca2faed000", '\x00\x00=*', "1202000000040030"}, 0x38)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e21, 0xfffffffe, @ipv4={'\x00', '\xff\xff', @multicast2}, 0xfffffffe}, 0x1c)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$usbfs(0xffffffffffffffff, &(0x7f0000000340)=""/132, 0x84)

2.171482944s ago: executing program 9 (id=15080):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x48001, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_X86_SET_MSR_FILTER(r1, 0x4188aec6, &(0x7f0000001b00)={0x1, [{0x3, 0x3008, 0x18, &(0x7f0000000680)="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"}, {0x2, 0x0, 0x800, 0x0}, {0x3, 0x0, 0xf208, 0x0}, {0x3, 0x0, 0xc0, 0x0}, {0x2, 0x0, 0x7, 0x0}, {0x3, 0x0, 0x4, 0x0}, {0x2, 0x0, 0x40, 0x0}, {0x1, 0x0, 0x4, 0x0}, {0x2, 0x0, 0xd752, 0x0}, {0x0, 0x0, 0x3, 0x0}, {0x2, 0x0, 0x6, 0x0}, {0x3, 0x0, 0x100, 0x0}, {0x5, 0x0, 0x1, 0x0}, {0x1, 0x0, 0x6, 0x0}, {0x0, 0x0, 0x400, 0x0}, {0x1, 0x0, 0x7ff, 0x0}]})

1.943120214s ago: executing program 9 (id=15081):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000380)=""/258, 0x102}], 0x1, 0x40008, 0x0, 0x25)

1.820996068s ago: executing program 9 (id=15083):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000440), r0)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="07ef28bd7000fbf4df2508"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x45080)

1.619181199s ago: executing program 3 (id=15084):
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setresuid(0x0, 0xee00, 0x0)
syz_clone3(&(0x7f0000001280)={0x104100280, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, &(0x7f0000001240)=[0x0], 0x1}, 0x58)

1.619056543s ago: executing program 9 (id=15085):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0500000003000000fd0900008400000091"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000100)={r0, 0x0, 0x0}, 0x20)

1.44786598s ago: executing program 9 (id=15087):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace(0x10, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000580)={0x201, 0x1, &(0x7f0000000180)=[r2], &(0x7f0000000400), 0x0, &(0x7f0000000340), 0x0, 0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000d40)={&(0x7f0000000cc0), 0x0, 0x0, 0x0, 0xfbfbfbfb})
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000e00)={0x700, 0x2, &(0x7f0000000300)=[0x0, 0x0], &(0x7f0000000400), &(0x7f0000000d80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000dc0)=[0xfffffffffffffffc, 0x9], 0x0, 0x80})
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
move_pages(0x0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil], &(0x7f0000002640)=[0x1], &(0x7f0000000000), 0x0)
ptrace$pokeuser(0x6, 0x0, 0x388, 0x41d9fda7)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r3, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r3, 0x2)
close_range(0xffffffffffffffff, r3, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, '\x00', "5171bb671465593497418688ac0c0000ca2faed000", '\x00\x00=*', "1202000000040030"}, 0x38)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e21, 0xfffffffe, @ipv4={'\x00', '\xff\xff', @multicast2}, 0xfffffffe}, 0x1c)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000140)=0x1)
read$usbfs(0xffffffffffffffff, &(0x7f0000000340)=""/132, 0x84)

1.267717092s ago: executing program 9 (id=15089):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet6(0xa, 0x3, 0x7)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x10, 0x701, 0x0, 0xffffffff, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x14\x00'}]}, 0x1c}}, 0x20008080)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xcd9}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0x10, 0x3, 0x0)
r6 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x42242, 0x73)
socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000002140)=ANY=[@ANYBLOB="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"/2734], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
write(0xffffffffffffffff, &(0x7f00000002c0)="0e0100120f0a00110001926c000000002e0c7000f5fe00", 0x17)
pwritev(r6, &(0x7f0000000400)=[{0x0}], 0x1, 0xffffff01, 0xa)

1.190897421s ago: executing program 3 (id=15090):
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000080)={0x8, @raw_data="4e93eac7e957bfbcdaf4e758acf5e6afdd20398cd745ea44d17f2c78cf959f558e71ddce06383095ad262848e9010bc6fe3ece518619e9e2ba74f11691c411384f9ec9aba8060478534d9e0cd0e19ff3fb88614c0a1de5aef2be0a215c6440119b96b0ed5b06da9a9edcaab9911bfb4c5891e067b587f931c53f9ad177e9b486f5e9770e943feb8425821b53e77e8994557adc9fce3fe7acb9eb1e46b449b314b2542702d7cd94c7e2f251dec554f9dcba88c73c9487c396ab0b77cee0d9e3a521567e228aead0c1"})
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x61637876)

1.091102566s ago: executing program 7 (id=15091):
setuid(0xee00)
r0 = getpgid(0x0)
setpriority(0x0, r0, 0x80069c)

1.00040465s ago: executing program 7 (id=15092):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_DIRENT(r0, &(0x7f0000002180)=ANY=[@ANYBLOB="10010000", @ANYRES64=r1], 0x110)

999.085761ms ago: executing program 5 (id=15093):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_DYNSET_OP={0x8}, @NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_DYNSET_FLAGS={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_DYNSET_SREG_KEY={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}}, 0x0)

958.352681ms ago: executing program 3 (id=15094):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x300, 0xfc}, 0x1c)
setsockopt$packet_int(r0, 0x107, 0xe, &(0x7f0000000080)=0x2, 0x4)

826.442787ms ago: executing program 7 (id=15095):
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x82, 0x3, 0x0, 0x717e387b, 0x40, "1ae34e0626788a22b2fb12dab240794233a5bd", 0x4, 0x2})
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_mptcp_buf(r0, 0x11c, 0x3, &(0x7f0000000040)=""/185, &(0x7f0000000140)=0xb9)

754.787047ms ago: executing program 5 (id=15096):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000009c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x3c, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}]}]}, @NFT_MSG_DELSETELEM={0x14, 0xe, 0xa, 0x201, 0x0, 0x0, {0xa}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

651.036583ms ago: executing program 7 (id=15097):
r0 = socket(0x40000000015, 0x5, 0x0)
unshare(0x6020400)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e21, 0x6, @ipv4={'\x00', '\xff\xff', @multicast1}, 0xe73a}, 0x1c)

629.139561ms ago: executing program 3 (id=15098):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet(r1, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_buf(r2, 0x6, 0x21, 0x0, &(0x7f0000000580))
request_key(&(0x7f0000000340)='user\x00', &(0x7f0000000380)={'syz', 0x3}, &(0x7f00000003c0)='q\xa9', 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000000080), 0x0, 0x2, 0x0)
process_vm_writev(0x0, &(0x7f0000000240)=[{0x0}, {0x0}, {&(0x7f0000000400)=""/150, 0x96}], 0x3, 0x0, 0x0, 0x0)
setsockopt$inet_int(r3, 0x0, 0x19, 0x0, 0x0)

618.423753ms ago: executing program 8 (id=15099):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace(0x10, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000580)={0x201, 0x1, &(0x7f0000000180)=[r2], &(0x7f0000000400), 0x0, &(0x7f0000000340), 0x0, 0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000d40)={&(0x7f0000000cc0), 0x0, 0x0, 0x0, 0xfbfbfbfb})
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000e00)={0x700, 0x2, &(0x7f0000000300)=[0x0, 0x0], &(0x7f0000000400), &(0x7f0000000d80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000dc0)=[0xfffffffffffffffc, 0x9], 0x0, 0x80})
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
move_pages(0x0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil], &(0x7f0000002640)=[0x1], &(0x7f0000000000), 0x0)
ptrace$pokeuser(0x6, 0x0, 0x388, 0x41d9fda7)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r3, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r3, 0x2)
close_range(0xffffffffffffffff, r3, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, '\x00', "5171bb671465593497418688ac0c0000ca2faed000", '\x00\x00=*', "1202000000040030"}, 0x38)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e21, 0xfffffffe, @ipv4={'\x00', '\xff\xff', @multicast2}, 0xfffffffe}, 0x1c)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000140)=0x1)
read$usbfs(0xffffffffffffffff, &(0x7f0000000340)=""/132, 0x84)

479.182289ms ago: executing program 7 (id=15100):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000300)={0x0, [[0x9ef8, 0x0, 0xfffffff7, 0x0, 0x5, 0x0, 0x20000], [0x10000], [0x7, 0xb, 0x0, 0x0, 0x0, 0x0, 0x8]], '\x00', [{0xffffffff}, {0x3, 0x10}, {}, {0x1, 0x80000000, 0x0, 0x0, 0x1}, {0x5f1b, 0x0, 0x0, 0x1, 0x1}, {0x0, 0x5f, 0x1}, {}, {0x0, 0xf5f}, {0x0, 0x3}, {0x0, 0xfffffffe}, {0x0, 0x1}, {0x100}], '\x00', 0x1000})

431.458599ms ago: executing program 5 (id=15101):
r0 = syz_io_uring_setup(0x22bf, &(0x7f00000012c0)={0x0, 0x1d2b, 0x13500, 0x2}, &(0x7f0000000200), &(0x7f0000000480))
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[], 0x18}}, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x21, &(0x7f0000000440), 0x1)

163.020907ms ago: executing program 3 (id=15102):
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000040)={0x0, 0x0, "d607f8f9951e76c13f64323723e7eecdf40c363423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f001d34c09f39c3539e4f8d3ee0878ae95bc7f52363c468b257ff3e24852548deb01efd54f11ed2c41d078b9cf1fc8f72566153c97e4af37017ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3b90400000000000000c279f03558083906666827d61dcc3a633bffff250b5a293e3877adc1660edbc9a0307a25720a170e7f5670e419dc44febf7ddc73fd4a5a0b6c28665f7f46c7084e17c809268103a2584ab40a68e528329d97afc3612e325c1eb4a3ab2e156a97444800", "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"})
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r0, &(0x7f00000004c0)={{0x6, @rose, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)

99.456002ms ago: executing program 7 (id=15103):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(0xffffffffffffffff, 0xc02064b6, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000e00)={0x700, 0x2, &(0x7f0000000300)=[0x0, 0x0], &(0x7f0000000400), &(0x7f0000000d80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000dc0)=[0xfffffffffffffffc, 0x9], 0x0, 0x80})
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
move_pages(0x0, 0x2, &(0x7f0000000080)=[&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil], &(0x7f0000002640)=[0x1], &(0x7f0000000000), 0x0)
r4 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r4, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r4, 0x2)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, '\x00', "5171bb671465593497418688ac0c0000ca2faed000", '\x00\x00=*', "1202000000040030"}, 0x38)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e21, 0xfffffffe, @ipv4={'\x00', '\xff\xff', @multicast2}, 0xfffffffe}, 0x1c)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$usbfs(0xffffffffffffffff, &(0x7f0000000340)=""/132, 0x84)

1.112392ms ago: executing program 3 (id=15104):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'bond0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000010025bd7000fadbdf2500000000", @ANYRES32=r1, @ANYBLOB="138000002b9201002400128009000100626f6e6400000000140002800800", @ANYRES32=r0], 0x44}, 0x1, 0x0, 0x0, 0x240448f0}, 0x4000)

395.04µs ago: executing program 5 (id=15105):
r0 = socket$netlink(0x10, 0x3, 0x0)
unshare(0x22020600)
recvmmsg(r0, 0x0, 0x0, 0x10000, &(0x7f0000004840)={0x0, 0x3938700})

0s ago: executing program 8 (id=15106):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x5, 0x10}, 0xc)
r2 = dup(r0)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2d}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c)
pipe2$9p(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a)
splice(r3, 0x0, r0, 0x0, 0xffff, 0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
write$P9_RLINK(r2, &(0x7f0000000140)={0x7, 0x47, 0x2}, 0x7)

kernel console output (not intermixed with test programs):

netlink: 4 bytes leftover after parsing attributes in process `syz.4.12980'.
[  896.027928][T11683] veth1_macvtap: left promiscuous mode
[  896.449889][T11683] veth1_macvtap: entered promiscuous mode
[  896.549357][T11706] netlink: 76 bytes leftover after parsing attributes in process `syz.2.13006'.
[  896.776901][T11717] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  896.776920][T11717] IPv6: NLM_F_CREATE should be set when creating new route
[  897.054157][T11718] sctp: sctp_transport_update_pmtu: Reported pmtu 68 too low, using default minimum of 512
[  897.153597][T11738] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13014'.
[  897.326351][T11749] gretap0: entered promiscuous mode
[  897.347945][T11751] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13019'.
[  899.248005][T25699] usb 3-1: new high-speed USB device number 95 using dummy_hcd
[  899.351669][T11857] binder: 11856:11857 ioctl c0306201 200000000640 returned -22
[  899.417817][T25699] usb 3-1: Using ep0 maxpacket: 8
[  899.423693][T25699] usb 3-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  899.423725][T25699] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  899.423746][T25699] usb 3-1: Product: syz
[  899.423760][T25699] usb 3-1: Manufacturer: syz
[  899.423775][T25699] usb 3-1: SerialNumber: syz
[  899.468591][T25699] usb 3-1: config 0 descriptor??
[  899.487438][T25699] gspca_main: sonixj-2.14.0 probing 0c45:613a
[  900.622440][T11886] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13065'.
[  900.700234][ T7239] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  900.700592][T11886] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13065'.
[  900.712228][ T7239] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  900.730353][ T7239] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  900.730398][ T7239] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  900.734419][ T5879] libceph: connect (1)[c::]:6789 error -101
[  900.735514][ T5879] libceph: mon0 (1)[c::]:6789 connect error
[  900.764294][ T5879] libceph: connect (1)[c::]:6789 error -101
[  900.764486][ T5879] libceph: mon0 (1)[c::]:6789 connect error
[  900.804207][T11891] ceph: No mds server is up or the cluster is laggy
[  901.008068][T25699] gspca_sonixj: i2c_w8 err -71
[  901.098060][T25699] sonixj 3-1:0.0: probe with driver sonixj failed with error -71
[  901.103374][T25699] usb 3-1: USB disconnect, device number 95
[  903.242447][T12000] overlayfs: upper fs does not support file handles, falling back to index=off.
[  903.404541][T12005] evm: overlay not supported
[  903.964703][T12027] bridge0: entered promiscuous mode
[  903.964729][T12027] bridge0: entered allmulticast mode
[  904.003899][T12027] team0: Port device bridge0 added
[  904.077559][T12033] bond0: (slave syz_tun): Releasing backup interface
[  904.228429][T12033] bond0: (slave bond_slave_0): Releasing backup interface
[  904.310339][T12033] bond0: (slave bond_slave_1): Releasing backup interface
[  904.435671][T12033] team0: Port device team_slave_0 removed
[  904.550330][T12033] team0: Port device team_slave_1 removed
[  904.550796][T12033] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  904.848372][T12064] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13119'.
[  905.151835][T12064] 8021q: adding VLAN 0 to HW filter on device bond4
[  906.278484][T12109] kvm: Disabled LAPIC found during irq injection
[  906.491704][T12121] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13128'.
[  906.622675][T12121] team1: entered promiscuous mode
[  906.622703][T12121] team1: entered allmulticast mode
[  906.623224][T12121] 8021q: adding VLAN 0 to HW filter on device team1
[  907.299923][T12175] netlink: 212360 bytes leftover after parsing attributes in process `syz.4.13136'.
[  911.043131][T12320] 9pnet: p9_errstr2errno: server reported unknown error 0x00000
[  911.401914][ T5783] kernel read not supported for file bpf-prog (pid: 5783 comm: kworker/0:3)
[  911.601791][T12348] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  912.068862][T12369] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13196'.
[  912.068893][T12369] netlink: 24 bytes leftover after parsing attributes in process `syz.2.13196'.
[  912.079385][T12366] delete_channel: no stack
[  912.317448][T12383] VFS: Mount too revealing
[  912.645320][T12405] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13207'.
[  915.260913][T12470] ip6gre1: entered allmulticast mode
[  915.445371][T12477] overlayfs: failed to clone upperpath
[  915.616296][T12490] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13235'.
[  915.616346][T12490] netlink: 12 bytes leftover after parsing attributes in process `syz.5.13235'.
[  915.649590][T12491] netlink: 212360 bytes leftover after parsing attributes in process `syz.4.13236'.
[  915.799135][ T7246] af_packet: tpacket_rcv: packet too big, clamped from 60 to 4294967286. macoff=82
[  915.995523][T12500] bridge0: port 1(syz_tun) entered blocking state
[  916.035763][T12500] bridge0: port 1(syz_tun) entered disabled state
[  916.065239][T12500] syz_tun: entered allmulticast mode
[  916.073803][T12500] syz_tun: entered promiscuous mode
[  917.582455][T12516] 9p: Bad value for 'rfdno'
[  917.751360][   T37] audit: type=1326 audit(2000000627.481:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  917.773357][   T37] audit: type=1326 audit(2000000627.481:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  917.773403][   T37] audit: type=1326 audit(2000000627.481:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  917.773439][   T37] audit: type=1326 audit(2000000627.481:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4c2a2fc84e code=0x7ffc0000
[  917.773476][   T37] audit: type=1326 audit(2000000627.481:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  917.773510][   T37] audit: type=1326 audit(2000000627.481:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  917.773545][   T37] audit: type=1326 audit(2000000627.481:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  917.773580][   T37] audit: type=1326 audit(2000000627.481:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  917.773615][   T37] audit: type=1326 audit(2000000627.501:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  917.773649][   T37] audit: type=1326 audit(2000000627.501:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12517 comm="syz.5.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[  918.367868][ T5879] usb 3-1: new high-speed USB device number 96 using dummy_hcd
[  918.534962][ T5879] usb 3-1: Using ep0 maxpacket: 32
[  918.536958][ T5879] usb 3-1: config 0 has an invalid interface number: 188 but max is 0
[  918.536983][ T5879] usb 3-1: config 0 has no interface number 0
[  918.537026][ T5879] usb 3-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  918.578777][ T5879] usb 3-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  918.578809][ T5879] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  918.578830][ T5879] usb 3-1: Product: syz
[  918.578844][ T5879] usb 3-1: Manufacturer: syz
[  918.578858][ T5879] usb 3-1: SerialNumber: syz
[  918.591315][ T5879] usb 3-1: config 0 descriptor??
[  918.608724][T12524] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  918.816790][T12524] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  920.061070][ T5879] asix 3-1:0.188 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  920.061100][ T5879] asix 3-1:0.188 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9
[  920.080360][ T5879] asix 3-1:0.188: probe with driver asix failed with error -71
[  920.098459][ T5879] usb 3-1: USB disconnect, device number 96
[  920.430314][ T7228] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  920.526129][T12587] netlink: 'syz.0.13270': attribute type 1 has an invalid length.
[  920.728421][T12593] bond2: (slave geneve3): making interface the new active one
[  920.736492][T12593] bond2: (slave geneve3): Enslaving as an active interface with an up link
[  920.737448][ T1332] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20004 - 0
[  920.737491][ T1332] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20004 - 0
[  920.737523][ T1332] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20004 - 0
[  920.737552][ T1332] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20004 - 0
[  921.687084][T12674] netlink: 212360 bytes leftover after parsing attributes in process `syz.6.13289'.
[  922.496294][T12709] netlink: 'syz.4.13300': attribute type 12 has an invalid length.
[  922.577777][ T5879] usb 3-1: new high-speed USB device number 97 using dummy_hcd
[  922.727782][ T5879] usb 3-1: Using ep0 maxpacket: 32
[  922.736632][ T5879] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  922.736668][ T5879] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  922.736767][ T5879] usb 3-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  922.736792][ T5879] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  922.757536][ T5879] usb 3-1: config 0 descriptor??
[  923.059561][ T5798] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  923.077767][ T5798] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  923.078771][ T5798] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  923.089388][ T5798] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  923.091715][ T5798] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  923.236980][ T5879] ft260 0003:0403:6030.0075: unknown main item tag 0x0
[  923.237018][ T5879] ft260 0003:0403:6030.0075: unknown main item tag 0x0
[  923.403283][ T5879] ft260 0003:0403:6030.0075: chip code: 0000 0000
[  923.607917][ T5879] ft260 0003:0403:6030.0075: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.2-1/input0
[  923.808985][ T5879] ft260 0003:0403:6030.0075: failed to retrieve status: -32, no wakeup
[  923.938755][T12723] chnl_net:caif_netlink_parms(): no params data found
[  924.037410][ T5783] usb 3-1: USB disconnect, device number 97
[  924.228049][T25699] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  924.285474][T12723] bridge0: port 1(bridge_slave_0) entered blocking state
[  924.286060][T12723] bridge0: port 1(bridge_slave_0) entered disabled state
[  924.286257][T12723] bridge_slave_0: entered allmulticast mode
[  924.295197][T12723] bridge_slave_0: entered promiscuous mode
[  924.305065][T12723] bridge0: port 2(bridge_slave_1) entered blocking state
[  924.305553][T12723] bridge0: port 2(bridge_slave_1) entered disabled state
[  924.305803][T12723] bridge_slave_1: entered allmulticast mode
[  924.309277][T12723] bridge_slave_1: entered promiscuous mode
[  924.388079][T25699] usb 7-1: Using ep0 maxpacket: 32
[  924.396421][T25699] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  924.396453][T25699] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  924.396491][T25699] usb 7-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  924.396515][T25699] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  924.460361][T25699] usb 7-1: config 0 descriptor??
[  924.568030][T12723] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  924.574540][T12723] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  924.668592][T12808] atm:do_vcc_ioctl: ATM_SETSC is obsolete; used by syz.6.13313:12808
[  924.671640][T25699] usbhid 7-1:0.0: can't add hid device: -71
[  924.671746][T25699] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  924.708236][T25699] usb 7-1: USB disconnect, device number 7
[  924.925223][T12723] team0: Port device team_slave_0 added
[  924.941040][T12723] team0: Port device team_slave_1 added
[  925.122753][T12723] batman_adv: batadv0: Adding interface: batadv_slave_0
[  925.122770][T12723] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  925.122798][T12723] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  925.126520][T12723] batman_adv: batadv0: Adding interface: batadv_slave_1
[  925.126535][T12723] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  925.126562][T12723] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  925.238011][ T5798] Bluetooth: hci0: command tx timeout
[  925.432960][T12723] hsr_slave_0: entered promiscuous mode
[  925.434164][T12723] hsr_slave_1: entered promiscuous mode
[  925.440474][T12723] debugfs: 'hsr0' already exists in 'hsr'
[  925.440502][T12723] Cannot create hsr debugfs directory
[  926.268079][T13088] netlink: 12 bytes leftover after parsing attributes in process `syz.6.13335'.
[  926.683894][T12723] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  926.774502][T12723] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  926.888911][T12723] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  926.927191][T12723] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  927.317989][ T5798] Bluetooth: hci0: command tx timeout
[  927.374227][T12723] 8021q: adding VLAN 0 to HW filter on device bond0
[  927.403085][T12723] 8021q: adding VLAN 0 to HW filter on device team0
[  927.419746][ T1332] bridge0: port 1(bridge_slave_0) entered blocking state
[  927.419870][ T1332] bridge0: port 1(bridge_slave_0) entered forwarding state
[  927.447610][  T159] bridge0: port 2(bridge_slave_1) entered blocking state
[  927.448324][  T159] bridge0: port 2(bridge_slave_1) entered forwarding state
[  927.587905][ T5870] usb 3-1: new high-speed USB device number 98 using dummy_hcd
[  927.741217][ T5870] usb 3-1: Using ep0 maxpacket: 32
[  927.743382][ T5870] usb 3-1: config 2 has an invalid interface number: 88 but max is 0
[  927.743410][ T5870] usb 3-1: config 2 has no interface number 0
[  927.743455][ T5870] usb 3-1: config 2 interface 88 altsetting 7 bulk endpoint 0x6 has invalid maxpacket 256
[  927.743482][ T5870] usb 3-1: config 2 interface 88 has no altsetting 0
[  927.746511][ T5870] usb 3-1: New USB device found, idVendor=0557, idProduct=2009, bcdDevice=c7.1e
[  927.746540][ T5870] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  927.746561][ T5870] usb 3-1: Product: syz
[  927.746576][ T5870] usb 3-1: Manufacturer: syz
[  927.746590][ T5870] usb 3-1: SerialNumber: syz
[  927.772253][T13119] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  928.000234][T13119] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  928.421035][T12723] 8021q: adding VLAN 0 to HW filter on device batadv0
[  928.501778][T13139] cgroup: Name too long
[  928.558993][T13142] netlink: 'syz.4.13345': attribute type 1 has an invalid length.
[  928.613880][T13142] 8021q: adding VLAN 0 to HW filter on device bond8
[  928.714873][T13142] bond8: option packets_per_slave: mode dependency failed, not supported in mode balance-alb(6)
[  929.228806][ T5870] asix 3-1:2.88 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  929.228836][ T5870] asix 3-1:2.88 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  929.229144][ T5870] asix 3-1:2.88: probe with driver asix failed with error -71
[  929.285145][ T5870] usb 3-1: USB disconnect, device number 98
[  929.315768][T12571] udevd[12571]: setting owner of /dev/bus/usb/003/098 to uid=0, gid=0 failed: No such file or directory
[  929.397958][ T5798] Bluetooth: hci0: command tx timeout
[  929.473581][T12723] veth0_vlan: entered promiscuous mode
[  929.543475][T12723] veth1_vlan: entered promiscuous mode
[  929.629523][T12723] veth0_macvtap: entered promiscuous mode
[  929.640417][T12723] veth1_macvtap: entered promiscuous mode
[  929.695681][T12723] batman_adv: batadv0: Interface activated: batadv_slave_0
[  929.730860][T12723] batman_adv: batadv0: Interface activated: batadv_slave_1
[  929.768006][ T3006] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  929.770269][ T3006] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  929.771342][ T3006] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  929.771628][ T3006] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  930.270788][ T3006] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  930.270809][ T3006] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  930.344800][ T7224] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  930.344815][ T7224] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  931.163411][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  931.163509][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  931.478390][ T5798] Bluetooth: hci0: command tx timeout
[  932.288547][T13264] netlink: 'syz.6.13364': attribute type 4 has an invalid length.
[  932.348225][T13267] netlink: 'syz.6.13364': attribute type 4 has an invalid length.
[  932.564308][T13276] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13367'.
[  935.629337][  T807] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  935.805182][  T807] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  935.805210][  T807] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  935.807219][  T807] usb 8-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  935.807249][  T807] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  935.807269][  T807] usb 8-1: SerialNumber: syz
[  936.205429][  T807] usb 8-1: 0:2 : does not exist
[  936.472178][  T807] usb 8-1: USB disconnect, device number 2
[  936.584495][T12571] udevd[12571]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  937.224965][T13418] trusted_key: encrypted_key: insufficient parameters specified
[  938.469025][T13446] overlayfs: failed to clone upperpath
[  939.802585][T13482] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  940.071691][   T37] kauditd_printk_skb: 21 callbacks suppressed
[  940.071710][   T37] audit: type=1326 audit(2000000649.801:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13476 comm="syz.6.13428" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fee262fbf79 code=0x0
[  941.531836][T13530] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13446'.
[  941.542838][    T0] NOHZ tick-stop error: local softirq work is pending, handler #41!!!
[  941.617809][ T5879] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  941.767980][ T5879] usb 7-1: Using ep0 maxpacket: 32
[  941.770464][ T5879] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  941.770494][ T5879] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  941.770611][ T5879] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  941.770671][ T5879] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  941.770694][ T5879] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  941.770717][ T5879] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  941.770762][ T5879] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  941.770799][ T5879] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  941.872459][ T5879] usb 7-1: config 0 descriptor??
[  942.139624][ T5879] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 8 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  942.206827][ T5879] usb 7-1: USB disconnect, device number 8
[  942.221586][ T5879] usblp0: removed
[  942.727778][ T5879] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  942.877807][ T5879] usb 7-1: Using ep0 maxpacket: 32
[  942.880382][ T5879] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  942.880420][ T5879] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  942.880442][ T5879] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  942.880500][ T5879] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  942.880521][ T5879] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  942.880545][ T5879] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  942.880584][ T5879] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  942.880607][ T5879] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  942.969866][ T5879] usb 7-1: config 0 descriptor??
[  943.200626][ T5879] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  943.258011][  T807] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  943.415928][  T807] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  943.415956][  T807] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  943.441893][  T807] usb 8-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  943.441925][  T807] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  943.441946][  T807] usb 8-1: SerialNumber: syz
[  943.681497][ T5879] usb 7-1: USB disconnect, device number 9
[  943.708330][T13575] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(7)
[  943.708359][T13575] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  943.718499][ T5879] usblp0: removed
[  943.805868][T13575] vhci_hcd vhci_hcd.0: Device attached
[  943.851563][T13604] vhci_hcd vhci_hcd.0: port 0 already used
[  943.854518][T13599] vhci_hcd: connection closed
[  943.859636][ T3006] vhci_hcd vhci_hcd.7: stop threads
[  943.859658][ T3006] vhci_hcd vhci_hcd.7: release socket
[  943.859694][ T3006] vhci_hcd vhci_hcd.7: disconnect device
[  943.886335][T13610] overlayfs: failed to clone lowerpath
[  943.899111][  T807] usb 8-1: 0:2 : does not exist
[  944.048164][  T807] usb 8-1: USB disconnect, device number 3
[  944.112717][T12571] udevd[12571]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  944.478205][T13648] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13470'.
[  947.244892][T13737] Bluetooth: MGMT ver 1.23
[  947.244931][T13737] Bluetooth: hci0: invalid length 0, exp 1 for type 31
[  947.470813][ T5879] IPVS: starting estimator thread 0...
[  947.588224][T13752] IPVS: using max 10 ests per chain, 24000 per kthread
[  947.963149][T13762] overlayfs: failed to clone upperpath
[  948.660478][T13772] overlayfs: failed to clone upperpath
[  949.113022][T13790] overlayfs: failed to clone upperpath
[  950.702057][T13852] netlink: 'syz.6.13532': attribute type 1 has an invalid length.
[  950.702088][T13852] netlink: 'syz.6.13532': attribute type 4 has an invalid length.
[  950.702102][T13852] netlink: 9462 bytes leftover after parsing attributes in process `syz.6.13532'.
[  951.358755][ T4479] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  952.517861][ T5798] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  954.328197][T13966] overlayfs: failed to clone upperpath
[  955.421138][T14007] overlayfs: failed to clone lowerpath
[  955.609406][T14015] syzkaller0: entered promiscuous mode
[  956.096882][T14053] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13590'.
[  956.096901][T14053] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13590'.
[  956.096932][T14053] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13590'.
[  956.637705][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  956.882614][T14078] overlayfs: failed to clone upperpath
[  958.374198][T14118] overlayfs: failed to clone upperpath
[  959.207694][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  962.008091][T14205] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  962.544844][ T5877] IPVS: starting estimator thread 0...
[  962.625777][T14238] overlayfs: failed to clone upperpath
[  962.633517][T14235] IPVS: using max 11 ests per chain, 26400 per kthread
[  963.177253][T14258] tipc: Failed to remove unknown binding: 66,0,0/0:3936969508/3936969509
[  964.437445][T14298] fuse: Bad value for 'fd'
[  965.071319][ T5798] Bluetooth: hci5: unexpected event for opcode 0x1003
[  965.154606][T14314] FAT-fs (loop11): unable to read boot sector
[  968.178783][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  968.178812][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  969.083415][ T5798] Bluetooth: hci1: command 0x0406 tx timeout
[  969.083931][ T5798] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  969.086062][ T5798] Bluetooth: hci5: Injecting HCI hardware error event
[  969.099601][ T5798] Bluetooth: hci5: hardware error 0x00
[  971.157975][ T5798] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  972.665573][T14457] overlayfs: failed to clone upperpath
[  973.466330][   T37] audit: type=1804 audit(2000000683.171:1254): pid=14496 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.13737" name="/newroot/2859/bus/file1" dev="overlay" ino=14613 res=1 errno=0
[  973.472969][T14505] overlayfs: failed to clone lowerpath
[  973.516013][T14505] overlayfs: failed to clone upperpath
[  974.315050][T14548] netlink: 84 bytes leftover after parsing attributes in process `syz.2.13749'.
[  975.488450][ T5870] usb 3-1: new high-speed USB device number 99 using dummy_hcd
[  975.541947][T14584] overlayfs: failed to clone lowerpath
[  975.652418][ T5870] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  975.652447][ T5870] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  975.654444][ T5870] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  975.654473][ T5870] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  975.654494][ T5870] usb 3-1: SerialNumber: syz
[  975.744537][T14590] binder: 14588:14590 ioctl c0306201 2000000003c0 returned -14
[  975.981847][ T5870] usb 3-1: 0:2 : does not exist
[  976.021101][T14605] overlayfs: failed to clone upperpath
[  976.100907][ T5870] usb 3-1: USB disconnect, device number 99
[  976.176563][T14471] udevd[14471]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  977.334376][ T5798] Bluetooth: hci0: unexpected event 0x03 length: 1 < 11
[  979.770354][T14683] overlayfs: failed to clone upperpath
[  979.773462][   T37] audit: type=1326 audit(2000000689.501:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14680 comm="syz.7.13786" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f87e923bf79 code=0x0
[  979.832309][T14686] binder: 14684:14686 ioctl c0306201 2000000003c0 returned -14
[  979.932189][T14691] input: syz1 as /devices/virtual/input/input79
[  980.090755][T14702] netlink: 'syz.5.13793': attribute type 13 has an invalid length.
[  980.596197][T14702] bridge0: port 2(bridge_slave_1) entered disabled state
[  980.603298][T14702] bridge0: port 1(bridge_slave_0) entered disabled state
[  980.608369][T14719] netlink: 'syz.7.13798': attribute type 39 has an invalid length.
[  981.631183][T14702] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  981.724882][T14702] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  982.382218][   T75] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  983.383235][T14702] batman_adv: batadv0: Interface deactivated: gretap1
[  984.079977][T14844] netlink: 'syz.5.13807': attribute type 13 has an invalid length.
[  984.184285][ T7228] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  984.371478][ T7228] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  984.372659][ T7228] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  984.372703][ T7228] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  986.430696][T14972] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13826'.
[  986.725952][T14972] syz_tun (unregistering): left allmulticast mode
[  986.725986][T14972] syz_tun (unregistering): left promiscuous mode
[  986.726107][T14972] bridge0: port 1(syz_tun) entered disabled state
[  988.322156][T15005] io-wq is not configured for unbound workers
[  988.527167][T15013] bridge2: entered promiscuous mode
[  989.179239][T15026] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13842'.
[  992.230718][   T37] audit: type=1804 audit(2000000701.961:1256): pid=15066 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.4.13851" name="file0" dev="tmpfs" ino=15037 res=1 errno=0
[  992.310907][T15066] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -17959, delta: 1
[  992.310927][T15066] ref_ctr increment failed for inode: 0x3abd offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888033945940
[  992.341527][T15061] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -17959, delta: -1
[  992.341563][T15061] ref_ctr decrement failed for inode: 0x3abd offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888033945940
[  992.341898][T15061] uprobe: syz.4.13851:15061 failed to unregister, leaking uprobe
[  992.606912][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  992.607008][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  996.074963][T15130] netlink: 32 bytes leftover after parsing attributes in process `syz.5.13872'.
[  996.077019][T15130] netlink: 32 bytes leftover after parsing attributes in process `syz.5.13872'.
[ 1002.043995][T15180] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13888'.
[ 1002.311100][T15183] binder: 15181:15183 ioctl c0306201 2000000003c0 returned -14
[ 1003.999283][T15197] tipc: Failed to remove unknown binding: 66,0,0/0:950468351/950468353
[ 1003.999323][T15197] tipc: Failed to remove unknown binding: 66,0,0/0:950468351/950468352
[ 1003.999952][T15197] tipc: Failed to remove unknown binding: 66,0,0/0:950468351/950468353
[ 1003.999992][T15197] tipc: Failed to remove unknown binding: 66,0,0/0:950468351/950468352
[ 1006.447866][T15259] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13913'.
[ 1006.609200][T15259] bridge4: port 1(veth3) entered blocking state
[ 1006.614632][T15259] bridge4: port 1(veth3) entered disabled state
[ 1006.614905][T15259] veth3: entered allmulticast mode
[ 1006.645078][T15259] veth3: entered promiscuous mode
[ 1006.692259][T15273] bridge4: port 2(veth0_to_bond) entered blocking state
[ 1006.692375][T15273] bridge4: port 2(veth0_to_bond) entered disabled state
[ 1006.692567][T15273] veth0_to_bond: entered allmulticast mode
[ 1006.750250][T15273] veth0_to_bond: entered promiscuous mode
[ 1008.002278][T15287] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13918'.
[ 1008.513238][T15287] batadv_slave_1 (unregistering): left allmulticast mode
[ 1008.515218][T15287] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1012.702114][T15351] binder: BINDER_SET_CONTEXT_MGR already set
[ 1012.702131][T15351] binder: 15350:15351 ioctl 4018620d 200000000100 returned -16
[ 1012.728912][T15351] binder: BINDER_SET_CONTEXT_MGR already set
[ 1012.728929][T15351] binder: 15350:15351 ioctl 4018620d 200000004a80 returned -16
[ 1021.183604][T15428] binder: BINDER_SET_CONTEXT_MGR already set
[ 1021.183616][T15428] binder: 15426:15428 ioctl 4018620d 200000000480 returned -16
[ 1021.203585][T15428] binder: BINDER_SET_CONTEXT_MGR already set
[ 1021.203599][T15428] binder: 15426:15428 ioctl 4018620d 200000004a80 returned -16
[ 1026.287882][ T5783] usb 3-1: new high-speed USB device number 100 using dummy_hcd
[ 1027.169212][ T5783] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1027.169280][ T5783] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1027.169305][ T5783] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1027.207247][ T5783] usb 3-1: config 0 descriptor??
[ 1027.249550][ T5783] pwc: Askey VC010 type 2 USB webcam detected.
[ 1027.625952][ T5783] pwc: recv_control_msg error -32 req 02 val 2b00
[ 1027.626932][ T5783] pwc: recv_control_msg error -32 req 02 val 2700
[ 1027.627577][ T5783] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1027.673221][ T5783] pwc: recv_control_msg error -32 req 04 val 1000
[ 1028.283449][ T5783] pwc: recv_control_msg error -32 req 04 val 1300
[ 1028.284304][ T5783] pwc: recv_control_msg error -32 req 04 val 1400
[ 1028.285126][ T5783] pwc: recv_control_msg error -32 req 02 val 2000
[ 1028.319104][ T5783] pwc: recv_control_msg error -32 req 02 val 2100
[ 1028.337189][ T5783] pwc: recv_control_msg error -32 req 04 val 1500
[ 1028.349573][ T5783] pwc: recv_control_msg error -32 req 02 val 2500
[ 1028.551618][ T5783] pwc: recv_control_msg error -71 req 02 val 2600
[ 1028.552139][ T5783] pwc: recv_control_msg error -71 req 02 val 2900
[ 1028.552588][ T5783] pwc: recv_control_msg error -71 req 02 val 2800
[ 1028.553218][ T5783] pwc: recv_control_msg error -71 req 04 val 1100
[ 1028.554251][ T5783] pwc: recv_control_msg error -71 req 04 val 1200
[ 1028.599529][ T5783] pwc: Registered as video103.
[ 1028.602857][ T5783] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input80
[ 1028.788051][ T5783] usb 3-1: USB disconnect, device number 100
[ 1039.580955][T15587] overlayfs: failed to clone upperpath
[ 1046.634156][ T5805] Bluetooth: hci0: command 0x0406 tx timeout
[ 1046.736646][T15656] netlink: 16 bytes leftover after parsing attributes in process `syz.5.14015'.
[ 1046.736666][T15656] openvswitch: netlink: Flow actions attr not present in new flow.
[ 1055.152372][   T37] audit: type=1326 audit(2000000763.991:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15716 comm="syz.6.14031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee262fbf79 code=0x7ffc0000
[ 1055.152423][   T37] audit: type=1326 audit(2000000764.001:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15716 comm="syz.6.14031" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee262fbf79 code=0x7ffc0000
[ 1055.158360][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1055.158419][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1059.769239][T15779] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14047'.
[ 1063.920263][T15819] overlayfs: failed to clone upperpath
[ 1087.733640][T15991] IPVS: set_ctl: invalid protocol: 0 172.30.1.5:20003
[ 1088.904431][T15993] ip6gretap2: default qdisc (pfifo_fast) fail, fallback to noqueue
[ 1090.949914][T16006] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1094.181035][   T37] audit: type=1326 audit(2000000803.911:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16031 comm="syz.2.14109" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6c66b5bf79 code=0x0
[ 1099.516727][T16063] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1111.493779][T16131] vxcan1: entered promiscuous mode
[ 1112.886275][T16141] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1112.887325][T16141] syzkaller0: entered promiscuous mode
[ 1112.887348][T16141] syzkaller0: entered allmulticast mode
[ 1113.186371][T16149] tipc: Resetting bearer <eth:syzkaller0>
[ 1113.349884][T16139] tipc: Resetting bearer <eth:syzkaller0>
[ 1113.528113][T14400] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1113.558589][T14400] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1113.582055][T14400] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1114.435444][T14400] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1114.436337][T14400] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1115.999543][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.999611][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.128511][T16139] tipc: Disabling bearer <eth:syzkaller0>
[ 1116.533149][T14400] Bluetooth: hci2: command tx timeout
[ 1118.076317][ T7228] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1118.660346][T14400] Bluetooth: hci2: command tx timeout
[ 1118.673441][ T7228] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1119.892705][T16237] netlink: 'syz.2.14150': attribute type 1 has an invalid length.
[ 1120.678032][T14400] Bluetooth: hci2: command tx timeout
[ 1121.025868][T16237] gretap4: entered promiscuous mode
[ 1121.031526][T16237] bond5: (slave gretap4): making interface the new active one
[ 1121.032466][T16237] bond5: (slave gretap4): Enslaving as an active interface with an up link
[ 1122.693669][ T7228] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1122.757877][T14400] Bluetooth: hci2: command tx timeout
[ 1123.020479][ T7228] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1125.815631][T16152] chnl_net:caif_netlink_parms(): no params data found
[ 1130.056185][T16363] bond0: (slave vxlan0): Enslaving as an active interface with an up link
[ 1130.957750][ T1332] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1132.238461][ T1332] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1132.308840][ T1332] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1132.763809][ T1332] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1132.764061][T16152] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1132.764178][T16152] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1132.764355][T16152] bridge_slave_0: entered allmulticast mode
[ 1132.801466][T16152] bridge_slave_0: entered promiscuous mode
[ 1132.900744][T16152] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1132.900951][T16152] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1132.901139][T16152] bridge_slave_1: entered allmulticast mode
[ 1132.904034][T16152] bridge_slave_1: entered promiscuous mode
[ 1133.054838][T16152] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1133.064689][T16152] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1141.956045][T16513] ceph: No mds server is up or the cluster is laggy
[ 1147.320223][ T7228] bond7 (unregistering): (slave geneve2): Releasing active interface
[ 1149.287623][ T5798] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1149.312227][ T5798] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1149.312666][ T5798] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1149.342548][ T5798] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1149.343259][ T5798] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1149.570473][ T7228] team0: Port device bridge0 removed
[ 1150.805957][ T5798] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1150.836284][ T5798] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1150.836700][ T5798] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1150.855177][ T5798] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1151.025703][ T5798] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1151.999620][T16573] netlink: 60 bytes leftover after parsing attributes in process `syz.7.14189'.
[ 1152.007817][ T5798] Bluetooth: hci3: command tx timeout
[ 1154.849889][T14400] Bluetooth: hci3: command tx timeout
[ 1154.849962][T14400] Bluetooth: hci6: command tx timeout
[ 1157.317644][ T5798] Bluetooth: hci6: command tx timeout
[ 1157.317683][ T5798] Bluetooth: hci3: command tx timeout
[ 1159.512451][ T5798] Bluetooth: hci6: command tx timeout
[ 1159.512684][T14400] Bluetooth: hci3: command tx timeout
[ 1159.535267][ T7228] bond0 (unregistering): Released all slaves
[ 1159.733721][ T7228] bond1 (unregistering): Released all slaves
[ 1161.820961][T14400] Bluetooth: hci6: command tx timeout
[ 1163.180073][T16620] orangefs_mount: mount request failed with -4
[ 1167.923762][ T7228] bond2 (unregistering): Released all slaves
[ 1167.964467][ T7228] bond3 (unregistering): Released all slaves
[ 1168.024970][ T7228] bond4 (unregistering): Released all slaves
[ 1168.051776][ T7228] bond5 (unregistering): Released all slaves
[ 1171.857221][T16669] CIFS: Unable to determine destination address
[ 1173.819282][ T7228] bond6 (unregistering): Released all slaves
[ 1176.380906][ T5798] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1176.411207][ T5798] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1176.412799][ T5798] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1176.466793][ T5798] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1176.478737][ T5798] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1177.874519][   T37] audit: type=1326 audit(2000000885.981:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1177.874571][   T37] audit: type=1326 audit(2000000885.981:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1177.874620][   T37] audit: type=1326 audit(2000000885.981:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1177.875198][   T37] audit: type=1326 audit(2000000885.981:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1177.875248][   T37] audit: type=1326 audit(2000000885.981:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1177.875347][   T37] audit: type=1326 audit(2000000885.981:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1177.876118][   T37] audit: type=1326 audit(2000000885.981:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1177.876166][   T37] audit: type=1326 audit(2000000885.981:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1177.876208][   T37] audit: type=1326 audit(2000000885.981:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16702 comm="syz.7.14223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1178.947643][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1178.947727][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.957001][ T5798] Bluetooth: hci7: command tx timeout
[ 1180.159358][ T7228] bond7 (unregistering): Released all slaves
[ 1182.397525][ T5798] Bluetooth: hci7: command tx timeout
[ 1184.575407][ T5798] Bluetooth: hci7: command tx timeout
[ 1186.776585][ T7228] bond8 (unregistering): Released all slaves
[ 1187.223553][ T5798] Bluetooth: hci7: command tx timeout
[ 1187.413717][   T37] audit: type=1326 audit(2000000894.447:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16743 comm="syz.7.14236" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x0
[ 1191.270036][ T7228] IPVS: stopping master sync thread 19292 ...
[ 1208.796013][   T37] audit: type=1326 audit(2000000914.520:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796080][   T37] audit: type=1326 audit(2000000914.520:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796112][   T37] audit: type=1326 audit(2000000914.623:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796142][   T37] audit: type=1326 audit(2000000914.623:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796171][   T37] audit: type=1326 audit(2000000914.623:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796203][   T37] audit: type=1326 audit(2000000914.726:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796237][   T37] audit: type=1326 audit(2000000914.726:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796270][   T37] audit: type=1326 audit(2000000914.726:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796305][   T37] audit: type=1326 audit(2000000914.820:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1208.796341][   T37] audit: type=1326 audit(2000000914.820:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16969 comm="syz.7.14260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1209.801435][T16688] chnl_net:caif_netlink_parms(): no params data found
[ 1210.013765][T16563] chnl_net:caif_netlink_parms(): no params data found
[ 1210.229106][T16549] chnl_net:caif_netlink_parms(): no params data found
[ 1210.645688][ T7228] hsr_slave_0: left promiscuous mode
[ 1210.859412][ T7228] hsr_slave_1: left promiscuous mode
[ 1211.060950][T17085] 9pnet_fd: p9_fd_create_tcp (17085): problem connecting socket to 127.0.0.1
[ 1213.330597][T14400] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1213.385408][T14400] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1213.402680][T14400] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1213.445415][T14400] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1213.446149][T14400] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1213.788090][ T5798] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1213.866053][ T5798] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1213.866494][ T5798] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1213.867598][ T5798] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1213.869070][ T5798] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1215.792141][T14400] Bluetooth: hci1: command tx timeout
[ 1216.129933][T14400] Bluetooth: hci2: command tx timeout
[ 1217.573729][T16688] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1217.573857][T16688] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1217.574112][T16688] bridge_slave_0: entered allmulticast mode
[ 1217.609923][T16688] bridge_slave_0: entered promiscuous mode
[ 1217.629232][T16688] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1217.629424][T16688] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1217.629671][T16688] bridge_slave_1: entered allmulticast mode
[ 1217.659238][T16688] bridge_slave_1: entered promiscuous mode
[ 1217.891735][T16688] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1217.902332][T16688] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1218.011507][T14400] Bluetooth: hci1: command tx timeout
[ 1218.049109][T16688] team0: Port device team_slave_0 added
[ 1218.064864][T16688] team0: Port device team_slave_1 added
[ 1218.162096][T16688] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1218.162108][T16688] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1218.162123][T16688] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1218.195701][T16688] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1218.195713][T16688] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1218.195729][T16688] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1218.353566][T14400] Bluetooth: hci2: command tx timeout
[ 1219.364256][T16688] hsr_slave_0: entered promiscuous mode
[ 1219.365098][T16688] hsr_slave_1: entered promiscuous mode
[ 1219.365747][T16688] debugfs: 'hsr0' already exists in 'hsr'
[ 1219.365764][T16688] Cannot create hsr debugfs directory
[ 1219.522791][ T7228] IPVS: stop unused estimator thread 0...
[ 1219.608524][T17147] chnl_net:caif_netlink_parms(): no params data found
[ 1219.800565][T17154] chnl_net:caif_netlink_parms(): no params data found
[ 1220.240721][T14400] Bluetooth: hci1: command tx timeout
[ 1220.535051][T17147] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1220.535181][T17147] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1220.535434][T17147] bridge_slave_0: entered allmulticast mode
[ 1220.538628][T17147] bridge_slave_0: entered promiscuous mode
[ 1220.577148][T14400] Bluetooth: hci2: command tx timeout
[ 1220.591974][T17147] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1220.592088][T17147] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1220.592353][T17147] bridge_slave_1: entered allmulticast mode
[ 1220.594910][T17147] bridge_slave_1: entered promiscuous mode
[ 1220.751382][ T7228] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1220.751418][ T7228] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1220.979485][T17147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1221.217402][ T7228] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1221.217439][ T7228] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.266054][T17147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1221.266290][T17154] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1221.266472][T17154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1221.266662][T17154] bridge_slave_0: entered allmulticast mode
[ 1221.269337][T17154] bridge_slave_0: entered promiscuous mode
[ 1221.341546][T17154] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1221.341616][T17154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1221.341746][T17154] bridge_slave_1: entered allmulticast mode
[ 1221.343262][T17154] bridge_slave_1: entered promiscuous mode
[ 1221.461637][T17147] team0: Port device team_slave_0 added
[ 1221.562602][ T7228] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1221.562625][ T7228] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.620008][T17147] team0: Port device team_slave_1 added
[ 1221.800607][T17154] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1221.802244][T16688] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1222.165559][ T7228] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1222.165582][ T7228] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1222.215287][T17154] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1222.215837][T16688] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1222.269833][T17147] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1222.269846][T17147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1222.269860][T17147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1222.288908][T16688] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1222.356193][T17147] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1222.356205][T17147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1222.356220][T17147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1222.411895][T16688] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1222.458200][T17154] team0: Port device team_slave_0 added
[ 1222.469357][T14400] Bluetooth: hci1: command tx timeout
[ 1222.492363][T17154] team0: Port device team_slave_1 added
[ 1222.609385][T17154] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1222.609398][T17154] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1222.609413][T17154] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1222.614163][T17154] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1222.614177][T17154] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1222.614197][T17154] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1222.731265][T17147] hsr_slave_0: entered promiscuous mode
[ 1222.732106][T17147] hsr_slave_1: entered promiscuous mode
[ 1222.732672][T17147] debugfs: 'hsr0' already exists in 'hsr'
[ 1222.732688][T17147] Cannot create hsr debugfs directory
[ 1222.803194][T14400] Bluetooth: hci2: command tx timeout
[ 1223.072607][T17154] hsr_slave_0: entered promiscuous mode
[ 1223.073538][T17154] hsr_slave_1: entered promiscuous mode
[ 1223.074096][T17154] debugfs: 'hsr0' already exists in 'hsr'
[ 1223.074118][T17154] Cannot create hsr debugfs directory
[ 1223.416179][ T7228] netdevsim netdevsim6 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1223.416202][ T7228] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1223.771631][ T7228] netdevsim netdevsim6 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1223.771653][ T7228] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.097963][ T7228] netdevsim netdevsim6 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1224.097987][ T7228] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.417371][ T7228] netdevsim netdevsim6 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1224.417393][ T7228] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.659391][T17147] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1224.710628][T17147] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1225.264492][T17147] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1225.307885][T16688] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1225.323927][T17147] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1225.507239][T16688] 8021q: adding VLAN 0 to HW filter on device team0
[ 1225.517605][T21458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1225.517796][T21458] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1225.553870][T21458] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1225.553950][T21458] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1225.568542][ T7228] bridge_slave_1: left allmulticast mode
[ 1225.588184][ T7228] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1225.656912][ T7228] bridge_slave_0: left allmulticast mode
[ 1225.656934][ T7228] bridge_slave_0: left promiscuous mode
[ 1225.657101][ T7228] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1225.757989][ T7228] veth0_to_bond: left allmulticast mode
[ 1225.758010][ T7228] veth0_to_bond: left promiscuous mode
[ 1225.758150][ T7228] bridge4: port 2(veth0_to_bond) entered disabled state
[ 1225.839073][ T7228] veth3: left allmulticast mode
[ 1225.839094][ T7228] veth3: left promiscuous mode
[ 1225.839250][ T7228] bridge4: port 1(veth3) entered disabled state
[ 1225.914718][ T7228] bridge_slave_1: left allmulticast mode
[ 1225.914739][ T7228] bridge_slave_1: left promiscuous mode
[ 1225.914892][ T7228] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1225.987750][ T7228] bridge_slave_0: left allmulticast mode
[ 1225.987773][ T7228] bridge_slave_0: left promiscuous mode
[ 1225.987930][ T7228] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1226.056806][ T7228] bridge_slave_1: left allmulticast mode
[ 1226.056828][ T7228] bridge_slave_1: left promiscuous mode
[ 1226.056974][ T7228] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1226.147820][ T7228] bridge_slave_0: left allmulticast mode
[ 1226.147840][ T7228] bridge_slave_0: left promiscuous mode
[ 1226.148002][ T7228] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1226.915125][ T7228] bond0 (unregistering): Released all slaves
[ 1227.040279][ T7228] bond0 (unregistering): Released all slaves
[ 1228.319402][ T7228] bond2 (unregistering): (slave gretap2): Releasing active interface
[ 1228.424868][ T7228] bond5 (unregistering): (slave gretap4): Releasing active interface
[ 1229.194916][ T7228] bridge0 (unregistering): left allmulticast mode
[ 1230.424777][ T7228] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1230.489303][ T7228] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1230.552095][ T7228] bond0 (unregistering): (slave dummy0): Releasing backup interface
[ 1230.644975][ T7228] bond0 (unregistering): Released all slaves
[ 1230.655635][ T7228] bond1 (unregistering): Released all slaves
[ 1231.699702][ T7228] bond2 (unregistering): Released all slaves
[ 1232.734309][ T7228] bond3 (unregistering): Released all slaves
[ 1233.707516][ T7228] bond4 (unregistering): Released all slaves
[ 1233.718214][ T7228] bond5 (unregistering): Released all slaves
[ 1235.441479][ T7228] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1235.505752][ T7228] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1235.525157][ T7228] bond0 (unregistering): Released all slaves
[ 1235.662605][ T7228] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1235.747895][ T7228] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1235.846150][ T7228] bond0 (unregistering): Released all slaves
[ 1236.854549][ T7228] tipc: Disabling bearer <ib:wg1>
[ 1237.009589][ T7228] tipc: Disabling bearer <udp:syz2>
[ 1237.009787][ T7228] tipc: Left network mode
[ 1237.721145][T17147] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1237.816976][ T7228] IPVS: stopping backup sync thread 11854 ...
[ 1238.092789][T17147] 8021q: adding VLAN 0 to HW filter on device team0
[ 1238.141357][T21458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1238.147920][T21458] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1238.358440][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1238.361218][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1238.541513][T16688] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1238.681078][T17154] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1238.724519][T17154] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1238.795452][    T9] kworker/0:0 (9) used greatest stack depth: 15544 bytes left
[ 1238.796806][T17154] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1239.020375][ T7228] mac80211_hwsim hwsim8 wlan1 (unregistering): left promiscuous mode
[ 1239.271209][ T5798] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1239.296071][T17154] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1239.305098][ T5798] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1239.305451][ T5798] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1239.306790][ T5798] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1239.324182][ T5798] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1241.349867][ T7228] hsr_slave_0: left promiscuous mode
[ 1241.393302][ T7228] hsr_slave_1: left promiscuous mode
[ 1241.499784][ T7228] hsr_slave_0: left promiscuous mode
[ 1241.531144][T14400] Bluetooth: hci3: command tx timeout
[ 1241.547280][ T7228] hsr_slave_1: left promiscuous mode
[ 1241.547929][ T7228] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1241.547945][ T7228] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1241.586078][ T7228] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1241.586106][ T7228] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1241.680209][ T7228] macvlan0: left allmulticast mode
[ 1241.755423][ T7228] veth0_macvtap: left promiscuous mode
[ 1241.755675][ T7228] veth1_vlan: left promiscuous mode
[ 1241.755870][ T7228] veth0_vlan: left promiscuous mode
[ 1243.754499][T14400] Bluetooth: hci3: command tx timeout
[ 1244.273069][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1244.273130][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1244.771711][ T7228] team_slave_1 (unregistering): left allmulticast mode
[ 1244.814113][ T7228] team0 (unregistering): Port device team_slave_1 removed
[ 1244.984303][ T7228] team_slave_0 (unregistering): left allmulticast mode
[ 1245.017167][ T7228] team0 (unregistering): Port device team_slave_0 removed
[ 1245.978197][T14400] Bluetooth: hci3: command tx timeout
[ 1248.206436][T14400] Bluetooth: hci3: command tx timeout
[ 1251.015997][ T7228] team0 (unregistering): Port device team_slave_1 removed
[ 1251.302744][ T7228] team0 (unregistering): Port device team_slave_0 removed
[ 1254.566107][T17147] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1254.747991][T18041] chnl_net:caif_netlink_parms(): no params data found
[ 1254.789449][T17154] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1255.068542][T17154] 8021q: adding VLAN 0 to HW filter on device team0
[ 1255.112338][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1255.112458][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1255.142698][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1255.142774][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1255.195665][T18041] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1255.195743][T18041] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1255.195863][T18041] bridge_slave_0: entered allmulticast mode
[ 1255.197276][T18041] bridge_slave_0: entered promiscuous mode
[ 1255.240570][T18041] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1255.240710][T18041] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1255.240945][T18041] bridge_slave_1: entered allmulticast mode
[ 1255.243376][T18041] bridge_slave_1: entered promiscuous mode
[ 1255.444845][T18041] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1255.453534][T18041] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1255.682097][T18041] team0: Port device team_slave_0 added
[ 1255.744929][T18041] team0: Port device team_slave_1 added
[ 1255.868026][T18041] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1255.868044][T18041] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1255.868070][T18041] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1255.876685][T18041] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1255.876701][T18041] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1255.876739][T18041] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1256.036014][T17147] veth0_vlan: entered promiscuous mode
[ 1256.217201][T18041] hsr_slave_0: entered promiscuous mode
[ 1256.218529][T18041] hsr_slave_1: entered promiscuous mode
[ 1256.219399][T18041] debugfs: 'hsr0' already exists in 'hsr'
[ 1256.219425][T18041] Cannot create hsr debugfs directory
[ 1256.262653][T17147] veth1_vlan: entered promiscuous mode
[ 1256.976737][T17154] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1257.491007][T17147] veth0_macvtap: entered promiscuous mode
[ 1257.510184][T17147] veth1_macvtap: entered promiscuous mode
[ 1257.948446][T17147] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1257.970620][T17147] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1258.339922][T16276] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1258.341731][T16276] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1258.343021][T16276] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1258.346445][T16276] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1258.693043][T17154] veth0_vlan: entered promiscuous mode
[ 1258.890180][T17154] veth1_vlan: entered promiscuous mode
[ 1259.249135][ T4479] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1259.249156][ T4479] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1259.545090][ T4479] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1259.545110][ T4479] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1259.617221][ T7228] IPVS: stop unused estimator thread 0...
[ 1259.636039][T18041] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1259.701611][T17154] veth0_macvtap: entered promiscuous mode
[ 1259.712630][T18041] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1259.776004][T17154] veth1_macvtap: entered promiscuous mode
[ 1259.803117][T18041] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1259.869122][T18041] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1264.398995][T17154] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1264.467383][T17154] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1264.491653][T16276] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1264.516812][T16276] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1264.581287][T16276] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1265.398691][ T4479] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.764759][ T1332] bridge_slave_1: left allmulticast mode
[ 1268.764789][ T1332] bridge_slave_1: left promiscuous mode
[ 1268.948930][ T1332] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1269.659207][ T1332] bridge_slave_0: left allmulticast mode
[ 1269.659240][ T1332] bridge_slave_0: left promiscuous mode
[ 1269.659483][ T1332] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1277.148090][T18555] netlink: 12 bytes leftover after parsing attributes in process `syz.7.14277'.
[ 1278.098075][ T5798] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1278.116451][ T5798] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1278.119879][ T5798] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1278.122102][ T5798] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1278.122752][ T5798] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1278.360630][ T1332] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1278.425987][ T1332] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1278.447849][ T1332] bond0 (unregistering): Released all slaves
[ 1279.988469][  T807] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1280.230720][  T807] usb 10-1: Using ep0 maxpacket: 8
[ 1280.359042][T14400] Bluetooth: hci4: command tx timeout
[ 1280.381170][  T807] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1280.402147][  T807] usb 10-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1280.402180][  T807] usb 10-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1280.402201][  T807] usb 10-1: Product: syz
[ 1280.402215][  T807] usb 10-1: Manufacturer: syz
[ 1280.402229][  T807] usb 10-1: SerialNumber: syz
[ 1281.378932][  T807] usb 10-1: Invalid connection information received from device
[ 1282.417497][ T1332] hsr_slave_0: left promiscuous mode
[ 1282.583052][T14400] Bluetooth: hci4: command tx timeout
[ 1282.717055][ T1332] hsr_slave_1: left promiscuous mode
[ 1282.719010][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1282.761343][T16771] usb 10-1: USB disconnect, device number 2
[ 1282.803488][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1284.821549][T14400] Bluetooth: hci4: command tx timeout
[ 1287.359214][T14400] Bluetooth: hci4: command tx timeout
[ 1292.920473][   T37] kauditd_printk_skb: 14 callbacks suppressed
[ 1292.920495][   T37] audit: type=1326 audit(2000000993.505:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920544][   T37] audit: type=1326 audit(2000000993.515:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920582][   T37] audit: type=1326 audit(2000000993.515:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920620][   T37] audit: type=1326 audit(2000000993.515:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920742][   T37] audit: type=1326 audit(2000000993.515:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920780][   T37] audit: type=1326 audit(2000000993.515:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920818][   T37] audit: type=1326 audit(2000000993.515:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920855][   T37] audit: type=1326 audit(2000000993.515:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920893][   T37] audit: type=1326 audit(2000000993.515:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1292.920930][   T37] audit: type=1326 audit(2000000993.515:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18699 comm="syz.5.14295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1298.672960][ T1332] team0 (unregistering): Port device team_slave_1 removed
[ 1299.005771][T18738] hfs: can't find a HFS filesystem on dev nbd9
[ 1299.538417][ T1332] team0 (unregistering): Port device team_slave_0 removed
[ 1302.691767][  T807] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[ 1303.335928][  T807] usb 10-1: config 83 contains an unexpected descriptor of type 0x2, skipping
[ 1303.335959][  T807] usb 10-1: config 83 has an invalid interface number: 121 but max is 3
[ 1303.335981][  T807] usb 10-1: config 83 has an invalid interface number: 37 but max is 3
[ 1303.335996][  T807] usb 10-1: config 83 has an invalid descriptor of length 0, skipping remainder of the config
[ 1303.336006][  T807] usb 10-1: config 83 has 3 interfaces, different from the descriptor's value: 4
[ 1303.336017][  T807] usb 10-1: config 83 has no interface number 1
[ 1303.336025][  T807] usb 10-1: config 83 has no interface number 2
[ 1303.336083][  T807] usb 10-1: config 83 interface 0 altsetting 164 has an invalid descriptor for endpoint zero, skipping
[ 1303.336095][  T807] usb 10-1: config 83 interface 0 altsetting 164 has a duplicate endpoint with address 0x5, skipping
[ 1303.336107][  T807] usb 10-1: config 83 interface 0 altsetting 164 has an invalid descriptor for endpoint zero, skipping
[ 1303.336117][  T807] usb 10-1: config 83 interface 0 altsetting 164 has an invalid descriptor for endpoint zero, skipping
[ 1303.336129][  T807] usb 10-1: config 83 interface 0 altsetting 164 has 9 endpoint descriptors, different from the interface descriptor's value: 14
[ 1303.336151][  T807] usb 10-1: config 83 interface 37 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 13
[ 1303.336165][  T807] usb 10-1: config 83 interface 0 has no altsetting 0
[ 1303.336175][  T807] usb 10-1: config 83 interface 121 has no altsetting 0
[ 1303.336184][  T807] usb 10-1: config 83 interface 37 has no altsetting 0
[ 1303.338456][  T807] usb 10-1: New USB device found, idVendor=1519, idProduct=0452, bcdDevice=9b.7d
[ 1303.338484][  T807] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1303.338496][  T807] usb 10-1: Product: syz
[ 1303.338504][  T807] usb 10-1: Manufacturer: syz
[ 1303.338512][  T807] usb 10-1: SerialNumber: syz
[ 1303.800306][  T807] cdc_acm 10-1:83.0: skipping garbage
[ 1303.800328][  T807] cdc_acm 10-1:83.0: skipping garbage
[ 1303.800351][  T807] cdc_acm 10-1:83.0: skipping garbage
[ 1303.800364][  T807] cdc_acm 10-1:83.0: skipping garbage
[ 1303.800376][  T807] cdc_acm 10-1:83.0: skipping garbage
[ 1303.909764][  T807] usb 10-1: USB disconnect, device number 3
[ 1304.240286][ T5798] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1304.285547][ T5798] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1304.285941][ T5798] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1304.292827][ T5798] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1304.295000][ T5798] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1306.130787][T18827] netlink: 12 bytes leftover after parsing attributes in process `syz.9.14320'.
[ 1306.137052][T18827] SQUASHFS error: Failed to read block 0x0: -5
[ 1306.555963][T14400] Bluetooth: hci2: command tx timeout
[ 1308.751340][T18857] netlink: 64 bytes leftover after parsing attributes in process `syz.5.14329'.
[ 1309.181508][T14400] Bluetooth: hci2: command tx timeout
[ 1310.008105][T18869] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[ 1310.034430][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1310.034498][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1311.360434][T18560] chnl_net:caif_netlink_parms(): no params data found
[ 1311.415950][T14400] Bluetooth: hci2: command tx timeout
[ 1311.725427][T16771] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[ 1312.278452][T16771] usb 10-1: Using ep0 maxpacket: 32
[ 1312.307419][T16771] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1312.413779][T16771] usb 10-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[ 1312.414847][T16771] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1312.414871][T16771] usb 10-1: Product: syz
[ 1312.414885][T16771] usb 10-1: Manufacturer: syz
[ 1312.414901][T16771] usb 10-1: SerialNumber: syz
[ 1312.936541][T16771] usb 10-1: config 0 descriptor??
[ 1312.942312][T16771] cdc_ether 10-1:0.0: skipping garbage
[ 1312.942335][T16771] usb 10-1: bad CDC descriptors
[ 1312.947290][T16771] usb 10-1: unsupported MDLM descriptors
[ 1313.185943][T18560] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1313.186072][T18560] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1313.186316][T18560] bridge_slave_0: entered allmulticast mode
[ 1313.188958][T18560] bridge_slave_0: entered promiscuous mode
[ 1313.390257][T18560] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1313.390381][T18560] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1313.390642][T18560] bridge_slave_1: entered allmulticast mode
[ 1313.398975][T18560] bridge_slave_1: entered promiscuous mode
[ 1313.406140][T16771] usb 10-1: USB disconnect, device number 4
[ 1313.630635][T14400] Bluetooth: hci2: command tx timeout
[ 1314.831791][T18560] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1314.840815][T18809] chnl_net:caif_netlink_parms(): no params data found
[ 1314.907190][T18560] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1316.866095][T14400] Bluetooth: hci0: unexpected event for opcode 0x204e
[ 1316.902529][T18560] team0: Port device team_slave_0 added
[ 1316.969749][T18560] team0: Port device team_slave_1 added
[ 1317.015716][T14400] Bluetooth: hci1: Ignoring connect complete event for invalid link type
[ 1319.643686][T18560] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1319.643698][T18560] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1319.643713][T18560] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1319.722666][T18560] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1319.722678][T18560] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1319.722694][T18560] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1321.596019][T18809] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1321.596145][T18809] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1321.596385][T18809] bridge_slave_0: entered allmulticast mode
[ 1321.616360][T18809] bridge_slave_0: entered promiscuous mode
[ 1321.691876][T18809] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1321.692001][T18809] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1321.692247][T18809] bridge_slave_1: entered allmulticast mode
[ 1321.695011][T18809] bridge_slave_1: entered promiscuous mode
[ 1321.922328][T18560] hsr_slave_0: entered promiscuous mode
[ 1321.961672][T18560] hsr_slave_1: entered promiscuous mode
[ 1321.962555][T18560] debugfs: 'hsr0' already exists in 'hsr'
[ 1321.962578][T18560] Cannot create hsr debugfs directory
[ 1322.835630][T18809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1323.018660][T18809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1323.036339][T19346] trusted_key: encrypted_key: master key parameter '2' is invalid
[ 1324.378971][T18809] team0: Port device team_slave_0 added
[ 1324.920200][T18809] team0: Port device team_slave_1 added
[ 1325.441997][T18809] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1325.442009][T18809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1325.442024][T18809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1325.571021][T18809] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1325.571033][T18809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1325.571049][T18809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1326.020017][T19505] MTD: Couldn't look up './cgroup': -15
[ 1327.186501][ T1332] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1327.488239][T18809] hsr_slave_0: entered promiscuous mode
[ 1327.488982][T18809] hsr_slave_1: entered promiscuous mode
[ 1327.489467][T18809] debugfs: 'hsr0' already exists in 'hsr'
[ 1327.489482][T18809] Cannot create hsr debugfs directory
[ 1328.163246][ T1332] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1329.337174][T19588] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1329.723603][ T1332] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1330.200808][ T1332] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1330.230806][T16771] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[ 1330.405232][T16771] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1330.407852][T16771] usb 10-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1330.407871][T16771] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1330.407882][T16771] usb 10-1: Product: syz
[ 1330.407890][T16771] usb 10-1: Manufacturer: syz
[ 1330.407897][T16771] usb 10-1: SerialNumber: syz
[ 1330.411203][T16771] usb 10-1: config 0 descriptor??
[ 1330.484155][T16771] CoreChips 10-1:0.0: probe with driver CoreChips failed with error -22
[ 1330.717130][ T5877] usb 10-1: USB disconnect, device number 5
[ 1331.089331][T19681] netlink: 4 bytes leftover after parsing attributes in process `syz.7.14403'.
[ 1331.362709][T19694] netlink: 260 bytes leftover after parsing attributes in process `syz.9.14406'.
[ 1331.535291][ T1332] bridge_slave_1: left allmulticast mode
[ 1331.535320][ T1332] bridge_slave_1: left promiscuous mode
[ 1331.535562][ T1332] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1331.655307][ T1332] bridge_slave_0: left allmulticast mode
[ 1331.655339][ T1332] bridge_slave_0: left promiscuous mode
[ 1331.655594][ T1332] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1332.728552][ T1332] bridge_slave_1: left allmulticast mode
[ 1332.728583][ T1332] bridge_slave_1: left promiscuous mode
[ 1332.728856][ T1332] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1332.819485][ T1332] bridge_slave_0: left allmulticast mode
[ 1332.819515][ T1332] bridge_slave_0: left promiscuous mode
[ 1332.819755][ T1332] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1332.916793][T19723] netlink: 'syz.7.14412': attribute type 7 has an invalid length.
[ 1336.278616][T19764] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid
[ 1337.127048][ T1332] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1337.992938][ T1332] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1338.141620][ T1332] bond0 (unregistering): Released all slaves
[ 1340.890439][ T1332] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1340.975867][ T1332] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1340.999365][ T1332] bond0 (unregistering): Released all slaves
[ 1341.045232][T19710] netlink: 8 bytes leftover after parsing attributes in process `syz.9.14410'.
[ 1341.045260][T19710] netlink: 4 bytes leftover after parsing attributes in process `syz.9.14410'.
[ 1341.045398][T19710] netlink: 8 bytes leftover after parsing attributes in process `syz.9.14410'.
[ 1341.045407][T19710] netlink: 4 bytes leftover after parsing attributes in process `syz.9.14410'.
[ 1341.045417][T19710] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1342.712021][ T5798] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1342.744391][ T5798] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1342.744916][ T5798] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1342.746001][ T5798] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1342.747240][ T5798] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1343.139631][ T1332] hsr_slave_0: left promiscuous mode
[ 1343.205231][ T1332] hsr_slave_1: left promiscuous mode
[ 1343.206179][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1343.280564][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1343.479411][ T1332] hsr_slave_0: left promiscuous mode
[ 1343.629276][ T1332] hsr_slave_1: left promiscuous mode
[ 1343.630227][ T1332] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1343.630253][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1343.682999][ T1332] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1343.683027][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1344.854213][T19907] netlink: 92 bytes leftover after parsing attributes in process `syz.5.14455'.
[ 1344.854242][T19907] netlink: 92 bytes leftover after parsing attributes in process `syz.5.14455'.
[ 1345.015896][ T5798] Bluetooth: hci3: command tx timeout
[ 1345.040762][ T1332] veth1_macvtap: left promiscuous mode
[ 1345.040865][ T1332] veth0_macvtap: left promiscuous mode
[ 1345.041132][ T1332] veth1_vlan: left promiscuous mode
[ 1345.041294][ T1332] veth0_vlan: left promiscuous mode
[ 1345.106584][ T5798] Bluetooth: hci1: command 0x0406 tx timeout
[ 1347.598875][T14400] Bluetooth: hci3: command tx timeout
[ 1347.620807][ T1332] team0 (unregistering): Port device team_slave_1 removed
[ 1347.956581][ T1332] team0 (unregistering): Port device team_slave_0 removed
[ 1350.024505][ T5798] Bluetooth: hci3: command tx timeout
[ 1352.199986][ T5798] Bluetooth: hci3: command tx timeout
[ 1354.628031][ T1332] team0 (unregistering): Port device team_slave_1 removed
[ 1354.926909][ T1332] team0 (unregistering): Port device team_slave_0 removed
[ 1357.559243][T20024] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14496'.
[ 1359.725219][T19851] chnl_net:caif_netlink_parms(): no params data found
[ 1364.131122][T20220] netlink: 64 bytes leftover after parsing attributes in process `syz.9.14514'.
[ 1364.456300][T19851] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1364.456426][T19851] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1364.456671][T19851] bridge_slave_0: entered allmulticast mode
[ 1364.459441][T19851] bridge_slave_0: entered promiscuous mode
[ 1364.526705][T19851] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1364.526826][T19851] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1364.527072][T19851] bridge_slave_1: entered allmulticast mode
[ 1364.549285][T19851] bridge_slave_1: entered promiscuous mode
[ 1366.700133][T19851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1366.718938][T19851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1367.029861][T20299] netlink: 20 bytes leftover after parsing attributes in process `syz.5.14528'.
[ 1367.029891][T20299] netlink: 64 bytes leftover after parsing attributes in process `syz.5.14528'.
[ 1367.029908][T20299] netlink: 20 bytes leftover after parsing attributes in process `syz.5.14528'.
[ 1367.137556][T19851] team0: Port device team_slave_0 added
[ 1367.139979][T19851] team0: Port device team_slave_1 added
[ 1367.595358][T20319] netlink: 40 bytes leftover after parsing attributes in process `syz.9.14522'.
[ 1367.627892][T19851] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1367.627911][T19851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1367.627936][T19851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1367.630204][T19851] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1367.630218][T19851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1367.630244][T19851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1368.196271][T19851] hsr_slave_0: entered promiscuous mode
[ 1368.210903][T19851] hsr_slave_1: entered promiscuous mode
[ 1368.211796][T19851] debugfs: 'hsr0' already exists in 'hsr'
[ 1368.211820][T19851] Cannot create hsr debugfs directory
[ 1369.198743][T20425] netlink: 596 bytes leftover after parsing attributes in process `syz.9.14536'.
[ 1369.640399][T14400] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1369.662250][T14400] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1369.738531][T14400] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1369.756772][T14400] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1369.757489][T14400] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1369.864498][T20450] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14539'.
[ 1370.011058][T20460] overlayfs: missing 'lowerdir'
[ 1370.107221][ T1332] bridge_slave_1: left allmulticast mode
[ 1370.107252][ T1332] bridge_slave_1: left promiscuous mode
[ 1370.107508][ T1332] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1370.188222][ T1332] bridge_slave_0: left allmulticast mode
[ 1370.188251][ T1332] bridge_slave_0: left promiscuous mode
[ 1370.188504][ T1332] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1371.956232][T14400] Bluetooth: hci4: command tx timeout
[ 1372.023580][ T1332] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1372.111759][T20492] netlink: 16 bytes leftover after parsing attributes in process `syz.9.14551'.
[ 1372.151293][ T1332] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1372.248015][ T1332] bond0 (unregistering): Released all slaves
[ 1373.325058][T20568] netlink: 8 bytes leftover after parsing attributes in process `syz.9.14560'.
[ 1374.182795][T14400] Bluetooth: hci4: command tx timeout
[ 1375.366586][ T1332] hsr_slave_0: left promiscuous mode
[ 1375.454706][ T1332] hsr_slave_1: left promiscuous mode
[ 1375.455686][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1375.495574][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1375.644076][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1375.644144][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1375.727110][T20601] netlink: 12 bytes leftover after parsing attributes in process `syz.9.14568'.
[ 1376.428267][T14400] Bluetooth: hci4: command tx timeout
[ 1378.640226][T14400] Bluetooth: hci4: command tx timeout
[ 1381.979305][ T1332] team0 (unregistering): Port device team_slave_1 removed
[ 1383.453027][ T1332] team0 (unregistering): Port device team_slave_0 removed
[ 1385.654891][   T37] kauditd_printk_skb: 13 callbacks suppressed
[ 1385.654909][   T37] audit: type=1326 audit(2000001080.348:1317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20721 comm="syz.5.14588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1385.654948][   T37] audit: type=1326 audit(2000001080.348:1318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20721 comm="syz.5.14588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1385.775106][   T37] audit: type=1326 audit(2000001080.451:1319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20721 comm="syz.5.14588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1385.775154][   T37] audit: type=1326 audit(2000001080.451:1320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20721 comm="syz.5.14588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1385.775191][   T37] audit: type=1326 audit(2000001080.451:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20721 comm="syz.5.14588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1386.703593][T19851] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1387.950806][T19851] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1388.116502][T19851] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1389.340075][T19851] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1389.859380][T20434] chnl_net:caif_netlink_parms(): no params data found
[ 1391.637582][T20434] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1391.637704][T20434] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1391.637953][T20434] bridge_slave_0: entered allmulticast mode
[ 1391.668462][T20434] bridge_slave_0: entered promiscuous mode
[ 1391.694320][T20434] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1391.694450][T20434] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1391.694700][T20434] bridge_slave_1: entered allmulticast mode
[ 1391.703285][T20434] bridge_slave_1: entered promiscuous mode
[ 1392.101356][T20434] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1392.929023][T20434] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1394.233262][T20972] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1394.464392][T20434] team0: Port device team_slave_0 added
[ 1394.483137][T20434] team0: Port device team_slave_1 added
[ 1394.591779][T21006] netlink: 'syz.5.14621': attribute type 1 has an invalid length.
[ 1394.591803][T21006] netlink: 4 bytes leftover after parsing attributes in process `syz.5.14621'.
[ 1394.762616][T19851] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1394.779871][T20434] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1394.779887][T20434] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1394.779913][T20434] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1394.847118][T21026] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14624'.
[ 1394.913755][T20434] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1394.913772][T20434] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1394.913799][T20434] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1394.985444][T21026] bond2: entered allmulticast mode
[ 1394.985866][T21026] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1395.147079][T16771] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[ 1395.215132][T21085] netlink: 600 bytes leftover after parsing attributes in process `syz.7.14629'.
[ 1395.338764][T16771] usb 10-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[ 1395.338797][T16771] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1395.338817][T16771] usb 10-1: Product: syz
[ 1395.338832][T16771] usb 10-1: Manufacturer: syz
[ 1395.338846][T16771] usb 10-1: SerialNumber: syz
[ 1395.384883][T16771] usb 10-1: config 0 descriptor??
[ 1395.412423][T16771] gspca_main: sunplus-2.14.0 probing 055f:c230
[ 1395.418955][T21085] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1395.419404][T21085] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[ 1395.481080][T20434] hsr_slave_0: entered promiscuous mode
[ 1395.482340][T20434] hsr_slave_1: entered promiscuous mode
[ 1395.483252][T20434] debugfs: 'hsr0' already exists in 'hsr'
[ 1395.483276][T20434] Cannot create hsr debugfs directory
[ 1395.516348][T19851] 8021q: adding VLAN 0 to HW filter on device team0
[ 1395.676721][T21108] netlink: 20 bytes leftover after parsing attributes in process `syz.7.14634'.
[ 1395.872976][T18475] usb 10-1: USB disconnect, device number 6
[ 1395.971345][  T159] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1395.971480][  T159] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1396.088826][  T159] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1396.088953][  T159] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1397.500251][ T1332] bridge_slave_1: left allmulticast mode
[ 1397.500282][ T1332] bridge_slave_1: left promiscuous mode
[ 1397.500532][ T1332] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1397.655543][ T1332] bridge_slave_0: left allmulticast mode
[ 1397.655571][ T1332] bridge_slave_0: left promiscuous mode
[ 1397.655812][ T1332] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1397.685417][T21250] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14651'.
[ 1399.017034][ T1332] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1399.122075][ T1332] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1399.188407][ T1332] bond0 (unregistering): Released all slaves
[ 1399.584268][T21290] delete_channel: no stack
[ 1399.851378][T21305] netlink: 24 bytes leftover after parsing attributes in process `syz.7.14675'.
[ 1399.892350][ T1332] hsr_slave_0: left promiscuous mode
[ 1399.933872][ T1332] hsr_slave_1: left promiscuous mode
[ 1399.934816][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1399.988204][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1404.275002][ T1332] team0 (unregistering): Port device team_slave_1 removed
[ 1404.448938][ T1332] team0 (unregistering): Port device team_slave_0 removed
[ 1405.454667][T14400] Bluetooth: hci0: Unable to find connection for big 0x00
[ 1415.078483][ T5798] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1415.122766][ T5798] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1415.134332][ T5798] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1415.139609][ T5798] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1415.140269][ T5798] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1415.453427][T21416] netlink: 104 bytes leftover after parsing attributes in process `syz.7.14704'.
[ 1415.868812][T21436] netlink: 'syz.7.14706': attribute type 6 has an invalid length.
[ 1415.868835][T21436] netlink: 24 bytes leftover after parsing attributes in process `syz.7.14706'.
[ 1417.374830][T14400] Bluetooth: hci2: command tx timeout
[ 1417.840035][T20434] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1418.045593][T20434] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1418.112454][T20434] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1419.766865][T14400] Bluetooth: hci2: command tx timeout
[ 1419.892540][T20434] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1421.992671][T14400] Bluetooth: hci2: command tx timeout
[ 1424.079311][T21397] chnl_net:caif_netlink_parms(): no params data found
[ 1424.691100][T21679] tipc: Started in network mode
[ 1424.691137][T21679] tipc: Node identity ff020000000000000000000000000001, cluster identity 4711
[ 1424.691191][T21679] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1424.858748][T21397] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1424.858940][T21397] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1424.859141][T21397] bridge_slave_0: entered allmulticast mode
[ 1424.862701][T21397] bridge_slave_0: entered promiscuous mode
[ 1424.924304][T21397] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1424.924403][T21397] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1424.924647][T21397] bridge_slave_1: entered allmulticast mode
[ 1424.940125][T21397] bridge_slave_1: entered promiscuous mode
[ 1425.152872][T14400] Bluetooth: hci2: command tx timeout
[ 1425.223117][T21397] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1425.325787][T21397] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1425.535910][T21397] team0: Port device team_slave_0 added
[ 1425.627865][T21397] team0: Port device team_slave_1 added
[ 1425.676292][ T1332] bridge_slave_1: left allmulticast mode
[ 1425.676320][ T1332] bridge_slave_1: left promiscuous mode
[ 1425.680181][ T1332] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1425.753320][ T1332] bridge_slave_0: left allmulticast mode
[ 1425.753351][ T1332] bridge_slave_0: left promiscuous mode
[ 1425.753686][ T1332] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1428.483753][   T37] audit: type=1326 audit(2000001120.402:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21859 comm="syz.7.14791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1428.486917][   T37] audit: type=1326 audit(2000001120.402:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21859 comm="syz.7.14791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1428.486965][   T37] audit: type=1326 audit(2000001120.402:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21859 comm="syz.7.14791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1428.487002][   T37] audit: type=1326 audit(2000001120.402:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21859 comm="syz.7.14791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1428.487040][   T37] audit: type=1326 audit(2000001120.402:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21859 comm="syz.7.14791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1428.487428][   T37] audit: type=1326 audit(2000001120.402:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21859 comm="syz.7.14791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1428.487654][   T37] audit: type=1326 audit(2000001120.402:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21859 comm="syz.7.14791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1428.489953][   T37] audit: type=1326 audit(2000001120.402:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21859 comm="syz.7.14791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87e923bf79 code=0x7ffc0000
[ 1428.919465][ T1332] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1429.657417][ T1332] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1429.924148][ T1332] bond0 (unregistering): Released all slaves
[ 1429.968070][T21397] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1429.968087][T21397] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1429.968112][T21397] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1430.201724][T21397] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1430.201743][T21397] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1430.201846][T21397] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1430.644090][ T1332] hsr_slave_0: left promiscuous mode
[ 1430.658540][ T1332] hsr_slave_1: left promiscuous mode
[ 1430.659440][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1430.722962][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1431.811226][T18475] kernel read not supported for file /comedi3 (pid: 18475 comm: kworker/0:1)
[ 1432.508157][  T970] usb 10-1: new full-speed USB device number 7 using dummy_hcd
[ 1432.530016][ T1332] team0 (unregistering): Port device team_slave_1 removed
[ 1432.674026][  T970] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1432.674056][  T970] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1432.674076][  T970] usb 10-1: config 1 has no interface number 0
[ 1432.674117][  T970] usb 10-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1432.674132][  T970] usb 10-1: config 1 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1432.674147][  T970] usb 10-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[ 1432.674164][  T970] usb 10-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[ 1432.674178][  T970] usb 10-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1432.676274][  T970] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1432.676298][  T970] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1432.676309][  T970] usb 10-1: Product: syz
[ 1432.676316][  T970] usb 10-1: Manufacturer: syz
[ 1432.676324][  T970] usb 10-1: SerialNumber: syz
[ 1432.793948][T21956] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1432.968782][ T1332] team0 (unregistering): Port device team_slave_0 removed
[ 1433.015857][T21956] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1433.242503][T21956] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1433.457421][  T970] cdc_ncm 10-1:1.1: failed GET_NTB_PARAMETERS
[ 1433.457465][  T970] cdc_ncm 10-1:1.1: bind() failure
[ 1433.478748][  T970] usb 10-1: USB disconnect, device number 7
[ 1433.922730][ T5798] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1433.927448][ T5798] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1433.927813][ T5798] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1433.929492][ T5798] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1433.951506][ T5798] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1436.181070][T21397] hsr_slave_0: entered promiscuous mode
[ 1436.185600][T14400] Bluetooth: hci3: command tx timeout
[ 1436.210756][T21397] hsr_slave_1: entered promiscuous mode
[ 1436.211672][T21397] debugfs: 'hsr0' already exists in 'hsr'
[ 1436.211692][T21397] Cannot create hsr debugfs directory
[ 1437.524538][T22084] xt_nfacct: accounting object `\�$�9Z�M#���mU�|�^c�\F9YⳈ���' does not exist
[ 1438.257125][T22128] vivid-000: disconnect
[ 1438.287642][T22123] vivid-000: reconnect
[ 1438.410582][T14400] Bluetooth: hci3: command tx timeout
[ 1438.520619][T22137] netlink: 4 bytes leftover after parsing attributes in process `syz.9.14853'.
[ 1440.315281][T21984] chnl_net:caif_netlink_parms(): no params data found
[ 1440.633240][T14400] Bluetooth: hci3: command tx timeout
[ 1441.046473][T22293] netlink: 56 bytes leftover after parsing attributes in process `syz.9.14876'.
[ 1441.323981][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1441.324049][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1442.421074][T21984] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1442.421262][T21984] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1442.421501][T21984] bridge_slave_0: entered allmulticast mode
[ 1442.454417][T21984] bridge_slave_0: entered promiscuous mode
[ 1442.828727][T21984] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1442.828892][T21984] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1442.829135][T21984] bridge_slave_1: entered allmulticast mode
[ 1442.839278][T21984] bridge_slave_1: entered promiscuous mode
[ 1442.856525][T14400] Bluetooth: hci3: command tx timeout
[ 1443.259670][T22439] netlink: 'syz.9.14904': attribute type 1 has an invalid length.
[ 1443.308754][T21984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1443.323829][T21984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1443.722024][T22455] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[ 1443.745718][T21984] team0: Port device team_slave_0 added
[ 1443.767621][T21984] team0: Port device team_slave_1 added
[ 1444.432198][T21984] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1444.432224][T21984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1444.432248][T21984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1444.498306][T21984] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1444.498323][T21984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1444.498350][T21984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1444.546353][T21397] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1444.656997][T21397] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1444.743365][T21397] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1444.921650][T21397] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1445.235117][ T1332] bridge_slave_1: left allmulticast mode
[ 1445.235147][ T1332] bridge_slave_1: left promiscuous mode
[ 1445.235388][ T1332] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1445.321770][ T1332] bridge_slave_0: left allmulticast mode
[ 1445.321800][ T1332] bridge_slave_0: left promiscuous mode
[ 1445.322074][ T1332] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1447.037908][ T1332] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1447.122522][ T1332] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1447.188517][ T1332] bond0 (unregistering): Released all slaves
[ 1447.261789][T21984] hsr_slave_0: entered promiscuous mode
[ 1447.263115][T21984] hsr_slave_1: entered promiscuous mode
[ 1447.265525][T21984] debugfs: 'hsr0' already exists in 'hsr'
[ 1447.265549][T21984] Cannot create hsr debugfs directory
[ 1447.862882][ T1332] hsr_slave_0: left promiscuous mode
[ 1447.881806][ T1332] hsr_slave_1: left promiscuous mode
[ 1447.882538][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1447.903080][T17919] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1447.924803][ T1332] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1448.073787][T17919] usb 10-1: Using ep0 maxpacket: 32
[ 1448.075814][T17919] usb 10-1: config 4 has an invalid interface number: 128 but max is 0
[ 1448.075840][T17919] usb 10-1: config 4 has no interface number 0
[ 1448.075889][T17919] usb 10-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1448.075916][T17919] usb 10-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1448.075954][T17919] usb 10-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1448.075978][T17919] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1448.187540][T17919] hub 10-1:4.128: USB hub found
[ 1448.422061][T17919] hub 10-1:4.128: 2 ports detected
[ 1448.422119][T17919] hub 10-1:4.128: Using single TT (err -22)
[ 1448.648352][T17919] hub 10-1:4.128: hub_hub_status failed (err = -71)
[ 1448.648380][T17919] hub 10-1:4.128: config failed, can't get hub status (err -71)
[ 1448.698574][T17919] usb 10-1: USB disconnect, device number 8
[ 1448.933877][ T1332] team0 (unregistering): Port device team_slave_1 removed
[ 1449.261546][ T1332] team0 (unregistering): Port device team_slave_0 removed
[ 1449.861512][T25699] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[ 1450.162417][T25699] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1450.162470][T25699] usb 10-1: New USB device found, idVendor=172f, idProduct=0032, bcdDevice= 0.00
[ 1450.162493][T25699] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1450.166480][T25699] usb 10-1: config 0 descriptor??
[ 1451.056923][   T37] audit: type=1326 audit(2000001141.523:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22647 comm="syz.7.14937" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f87e923bf79 code=0x0
[ 1451.350385][T25699] waltop 0003:172F:0032.0076: item fetching failed at offset 5/7
[ 1451.350804][T25699] waltop 0003:172F:0032.0076: probe with driver waltop failed with error -22
[ 1451.553399][  T970] usb 10-1: USB disconnect, device number 9
[ 1452.048819][   T37] audit: type=1326 audit(2000001142.440:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22715 comm="syz.5.14941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1452.048867][   T37] audit: type=1326 audit(2000001142.440:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22715 comm="syz.5.14941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1452.048978][   T37] audit: type=1326 audit(2000001142.440:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22715 comm="syz.5.14941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1452.049088][   T37] audit: type=1326 audit(2000001142.440:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22715 comm="syz.5.14941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1452.049291][   T37] audit: type=1326 audit(2000001142.440:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22715 comm="syz.5.14941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1452.049464][   T37] audit: type=1326 audit(2000001142.440:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22715 comm="syz.5.14941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1452.049561][   T37] audit: type=1326 audit(2000001142.440:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22715 comm="syz.5.14941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1452.049923][   T37] audit: type=1326 audit(2000001142.440:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22715 comm="syz.5.14941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c2a33bf79 code=0x7ffc0000
[ 1452.567285][T21397] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1452.992112][T22744] netlink: 8 bytes leftover after parsing attributes in process `syz.9.14947'.
[ 1452.992136][T22744] netlink: 4 bytes leftover after parsing attributes in process `syz.9.14947'.
[ 1453.087062][T21397] 8021q: adding VLAN 0 to HW filter on device team0
[ 1453.294911][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1453.295063][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1453.451877][ T7228] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1453.452021][ T7228] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1454.875728][T21984] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1454.982660][T21397] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1454.983090][T21984] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1455.047861][T21984] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1455.097180][T21984] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1455.649987][T21397] veth0_vlan: entered promiscuous mode
[ 1455.751948][T21397] veth1_vlan: entered promiscuous mode
[ 1456.484404][T21984] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1456.556819][T21397] veth0_macvtap: entered promiscuous mode
[ 1456.603789][T21397] veth1_macvtap: entered promiscuous mode
[ 1456.662229][T21984] 8021q: adding VLAN 0 to HW filter on device team0
[ 1456.736991][ T1332] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1456.737123][ T1332] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1456.760331][T21397] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1456.762307][T18767] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1456.768292][T18767] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1456.802521][T21397] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1456.807750][  T970] usb 10-1: new low-speed USB device number 10 using dummy_hcd
[ 1456.856648][ T1332] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1456.857861][ T1332] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1456.858097][ T1332] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1456.858306][ T1332] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1456.998501][  T970] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[ 1456.998553][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 1456.998580][  T970] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1456.998605][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1456.998629][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 1457.001659][  T970] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[ 1457.001712][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 1457.001739][  T970] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1457.001763][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1457.001788][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 1457.008840][  T970] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[ 1457.008891][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[ 1457.008918][  T970] usb 10-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1457.008942][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1457.008969][  T970] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 1457.031397][  T970] usb 10-1: string descriptor 0 read error: -22
[ 1457.031541][  T970] usb 10-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1457.031565][  T970] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1457.137637][  T970] adutux 10-1:168.0: ADU100  now attached to /dev/usb/adutux0
[ 1457.366555][T16771] usb 10-1: USB disconnect, device number 10
[ 1457.748571][ T7224] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1457.748592][ T7224] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1457.968475][T16276] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1457.968497][T16276] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1458.498570][T21984] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1458.724425][T22946] netlink: 'syz.5.14988': attribute type 29 has an invalid length.
[ 1458.726175][T22946] netlink: 'syz.5.14988': attribute type 29 has an invalid length.
[ 1459.897678][T21984] veth0_vlan: entered promiscuous mode
[ 1459.916039][T21984] veth1_vlan: entered promiscuous mode
[ 1460.076459][T21984] veth0_macvtap: entered promiscuous mode
[ 1460.113463][T21984] veth1_macvtap: entered promiscuous mode
[ 1460.133196][T22983] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14997'.
[ 1460.364276][T22983] bond3 (unregistering): Released all slaves
[ 1460.645409][T21984] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1460.764751][T21984] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1460.811827][   T13] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1460.818123][   T13] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1460.832085][   T13] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1460.842970][   T13] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1462.802895][ T7246] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1462.802918][ T7246] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1463.114071][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1463.114093][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1463.169341][T18473] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 1463.357953][T18473] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1463.357982][T18473] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1463.358017][T18473] usb 10-1: config 1 interface 0 altsetting 0 has an invalid endpoint descriptor of length 3, skipping
[ 1463.358040][T18473] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1463.359224][T18473] usb 10-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1463.359250][T18473] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1463.359269][T18473] usb 10-1: SerialNumber: syz
[ 1463.696300][T18473] usb 10-1: 0:2 : does not exist
[ 1463.696401][T18473] usb 10-1: unit 5 not found!
[ 1463.856958][T18473] usb 10-1: USB disconnect, device number 11
[ 1463.941850][T23146] kvm: kvm [23133]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x4911
[ 1463.941929][T23146] kvm: kvm [23133]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[ 1463.943023][T23146] kvm: kvm [23133]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x392f
[ 1463.943793][T23146] kvm: kvm [23133]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x61e8
[ 1463.973016][T23085] udevd[23085]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1464.011143][T23146] kvm: kvm [23133]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x2196
[ 1464.011224][T23146] kvm: kvm [23133]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[ 1464.744428][T23177] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1465.003422][T23206] netlink: 12 bytes leftover after parsing attributes in process `syz.9.15032'.
[ 1469.822575][T23416] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15104'.
[ 1469.875723][T23422]  slab mnt_cache start ffff88801dab7340 pointer offset 184 size 352
[ 1469.875766][T23422] list_add corruption. next->prev should be prev (ffff888028b59e78), but was ffff88801dab73f8. (next=ffff88801dab73f8).
[ 1469.876264][T23422] ------------[ cut here ]------------
[ 1469.876275][T23422] kernel BUG at lib/list_debug.c:31!
[ 1469.876320][T23422] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[ 1469.876350][T23422] CPU: 1 UID: 0 PID: 23422 Comm: syz.5.15105 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1469.876379][T23422] Tainted: [L]=SOFTLOCKUP
[ 1469.876387][T23422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 1469.876401][T23422] RIP: 0010:__list_add_valid_or_report+0xf4/0x130
[ 1469.876432][T23422] Code: d4 68 fd 42 80 7c 2d 00 00 74 08 4c 89 e7 e8 53 9d 89 fd 48 8b 53 08 48 c7 c7 60 17 86 8b 4c 89 f6 48 89 d9 e8 6d ca 88 fc 90 <0f> 0b 4c 89 f7 e8 d2 d3 68 fd 43 80 3c 2c 00 74 08 4c 89 f7 e8 23
[ 1469.876451][T23422] RSP: 0018:ffffc9000db27b28 EFLAGS: 00010246
[ 1469.876468][T23422] RAX: 0000000000000075 RBX: ffff88801dab73f8 RCX: 329ed193a6415600
[ 1469.876484][T23422] RDX: ffffc9001dbc1000 RSI: 0000000000000c0b RDI: 0000000000000c0c
[ 1469.876499][T23422] RBP: 1ffff11003b56e80 R08: 0000000000000000 R09: 0000000000000000
[ 1469.876513][T23422] R10: dffffc0000000000 R11: ffffed1017124923 R12: ffff88801dab7400
[ 1469.876527][T23422] R13: dffffc0000000000 R14: ffff888028b59e78 R15: ffff888028b59238
[ 1469.876541][T23422] FS:  00007f4c285966c0(0000) GS:ffff888126695000(0000) knlGS:0000000000000000
[ 1469.876558][T23422] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1469.876572][T23422] CR2: 00002000001e6030 CR3: 0000000033600000 CR4: 00000000003526f0
[ 1469.876589][T23422] DR0: 0000000000000000 DR1: 0000000000009000 DR2: 0000000000000000
[ 1469.876602][T23422] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1469.876615][T23422] Call Trace:
[ 1469.876628][T23422]  <TASK>
[ 1469.876639][T23422]  clone_mnt+0x447/0x9a0
[ 1469.876663][T23422]  copy_tree+0xde/0x930
[ 1469.876684][T23422]  ? rwbase_write_lock+0x568/0x730
[ 1469.876718][T23422]  copy_mnt_ns+0x24d/0x990
[ 1469.876741][T23422]  ? trace_kmem_cache_alloc+0x1f/0xb0
[ 1469.876758][T23422]  ? kmem_cache_alloc_noprof+0x388/0x680
[ 1469.876777][T23422]  ? create_new_namespaces+0x33/0x6a0
[ 1469.876800][T23422]  create_new_namespaces+0xcf/0x6a0
[ 1469.876822][T23422]  ? bpf_lsm_capable+0x9/0x20
[ 1469.876848][T23422]  ? security_capable+0x7e/0x2c0
[ 1469.876872][T23422]  unshare_nsproxy_namespaces+0x11a/0x160
[ 1469.876897][T23422]  ksys_unshare+0x4f4/0x900
[ 1469.876926][T23422]  ? __pfx_ksys_unshare+0x10/0x10
[ 1469.876952][T23422]  ? rcu_is_watching+0x15/0xb0
[ 1469.876983][T23422]  __x64_sys_unshare+0x38/0x50
[ 1469.877008][T23422]  do_syscall_64+0x14d/0xf80
[ 1469.877032][T23422]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.877051][T23422]  ? trace_irq_disable+0x37/0x100
[ 1469.877077][T23422]  ? clear_bhb_loop+0x40/0x90
[ 1469.877099][T23422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.877118][T23422] RIP: 0033:0x7f4c2a33bf79
[ 1469.877136][T23422] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1469.877153][T23422] RSP: 002b:00007f4c28596028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[ 1469.877172][T23422] RAX: ffffffffffffffda RBX: 00007f4c2a5b5fa0 RCX: 00007f4c2a33bf79
[ 1469.877187][T23422] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022020600
[ 1469.877200][T23422] RBP: 00007f4c2a3d27e0 R08: 0000000000000000 R09: 0000000000000000
[ 1469.877214][T23422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1469.877227][T23422] R13: 00007f4c2a5b6038 R14: 00007f4c2a5b5fa0 R15: 00007ffeb54b7368
[ 1469.877248][T23422]  </TASK>
[ 1469.877254][T23422] Modules linked in:
[ 1469.877273][T23422] ---[ end trace 0000000000000000 ]---
[ 1469.877284][T23422] RIP: 0010:__list_add_valid_or_report+0xf4/0x130
[ 1469.877308][T23422] Code: d4 68 fd 42 80 7c 2d 00 00 74 08 4c 89 e7 e8 53 9d 89 fd 48 8b 53 08 48 c7 c7 60 17 86 8b 4c 89 f6 48 89 d9 e8 6d ca 88 fc 90 <0f> 0b 4c 89 f7 e8 d2 d3 68 fd 43 80 3c 2c 00 74 08 4c 89 f7 e8 23
[ 1469.877325][T23422] RSP: 0018:ffffc9000db27b28 EFLAGS: 00010246
[ 1469.877343][T23422] RAX: 0000000000000075 RBX: ffff88801dab73f8 RCX: 329ed193a6415600
[ 1469.877356][T23422] RDX: ffffc9001dbc1000 RSI: 0000000000000c0b RDI: 0000000000000c0c
[ 1469.877369][T23422] RBP: 1ffff11003b56e80 R08: 0000000000000000 R09: 0000000000000000
[ 1469.877381][T23422] R10: dffffc0000000000 R11: ffffed1017124923 R12: ffff88801dab7400
[ 1469.877394][T23422] R13: dffffc0000000000 R14: ffff888028b59e78 R15: ffff888028b59238
[ 1469.877408][T23422] FS:  00007f4c285966c0(0000) GS:ffff888126695000(0000) knlGS:0000000000000000
[ 1469.877423][T23422] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1469.877438][T23422] CR2: 00002000001e6030 CR3: 0000000033600000 CR4: 00000000003526f0
[ 1469.877457][T23422] DR0: 0000000000000000 DR1: 0000000000009000 DR2: 0000000000000000
[ 1469.877470][T23422] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1469.877491][T23422] Kernel panic - not syncing: Fatal exception
[ 1469.877826][T23422] Kernel Offset: disabled