last executing test programs:

13m3.030109826s ago: executing program 3 (id=16059):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001e000101"], 0x14}}, 0x0)

13m2.932954143s ago: executing program 3 (id=16062):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r0 = timerfd_create(0x0, 0x0)
timerfd_gettime(r0, &(0x7f0000000780))

13m2.846068327s ago: executing program 3 (id=16065):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
r0 = socket(0x15, 0x5, 0x0)
connect$unix(r0, &(0x7f0000000080)=@abs={0xa}, 0x6e)

13m2.684776231s ago: executing program 3 (id=16071):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
ioprio_set$uid(0x3, r1, 0x0)

13m2.520259245s ago: executing program 3 (id=16076):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)

13m2.369293572s ago: executing program 3 (id=16080):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8}}]}, 0x38}}, 0x0)

12m46.269321518s ago: executing program 32 (id=16080):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8}}]}, 0x38}}, 0x0)

9m3.604681802s ago: executing program 0 (id=21853):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540))
socket$nl_generic(0x10, 0x3, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025", 0x1d}], 0x1)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000140)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d24070000030769dc000049c40c240000e9fffff5ffffffff0924031300010005024524", @ANYRES8=r0, @ANYBLOB="05"], 0x0)

9m0.288379545s ago: executing program 0 (id=21941):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="400000001000010400"/20, @ANYRES32=r1, @ANYBLOB="000000000000000014004000000001"], 0x40}}, 0x0)
r2 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000000)='z', 0x10a7a, 0x800, 0x0, 0x4b6ae4f95a5de35b)

9m0.075253217s ago: executing program 0 (id=21948):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xf}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
syz_emit_ethernet(0x86, &(0x7f0000000080)={@broadcast, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @rand_addr=0x64010101, @multicast1}, {0xfffd, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x2, 0x3, "1204000000f2aa1d1e0d494f6c4903de8a08e2328997b8ac46b04400", "a04027fa124125c63a5b0e4412c6ab5c", {"4186dbba08364dba146d6e8dda52d97b", "ff027abe261f352c54d03f15919eb36c"}}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f00000000c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0xfe, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@window={0x3, 0x3, 0x5e}]}}}}}}}, 0x0)

8m59.843722877s ago: executing program 0 (id=21954):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)

8m59.553308691s ago: executing program 0 (id=21961):
open(&(0x7f00000000c0)='./file0\x00', 0x108242, 0x78e22799f4a46f8e)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x80)
fcntl$notify(r0, 0x402, 0x8000002f)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x4)

8m58.628413505s ago: executing program 0 (id=21982):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000002c0)={0x0, 0x0, 0x1, 'M'}, 0x9)

8m58.261829515s ago: executing program 33 (id=21982):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000002c0)={0x0, 0x0, 0x1, 'M'}, 0x9)

5m45.749222538s ago: executing program 5 (id=26096):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000000c0)=0x3)
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000100)={0xb6, 0x0, 0x7})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m44.412853861s ago: executing program 5 (id=26128):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000280)='2', 0x1, 0x24010045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bic', 0x5a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
shutdown(r0, 0x1)

5m43.328258916s ago: executing program 5 (id=26150):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2673004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

5m42.6027375s ago: executing program 5 (id=26166):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
mount$bind(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x10a78c0, 0x0)

5m42.483749846s ago: executing program 5 (id=26169):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002b80)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000040)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
bpf$BPF_BTF_LOAD(0x25, &(0x7f0000000040)={0x0, 0x0}, 0x28)

5m41.744281599s ago: executing program 5 (id=26186):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f00003a1000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000000)="9a01000000f800b8d58800000f23d00f21f8351000000d0f23f864640f79ea66baf80cb8c85f5480ef66bafc0cecc4c2adac17b9550200000f320f2860c7c4e11751df0f2e2d00000080b9800000c00f3235008000000f30", 0x58}], 0x1, 0x4a, 0x0, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000080)={0x40003, 0x0, {[0xffffffffffffffff, 0x0, 0x8, 0xfffffffdefffff16, 0x3, 0x10, 0x4, 0x4]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m41.380838385s ago: executing program 34 (id=26186):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f00003a1000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000000)="9a01000000f800b8d58800000f23d00f21f8351000000d0f23f864640f79ea66baf80cb8c85f5480ef66bafc0cecc4c2adac17b9550200000f320f2860c7c4e11751df0f2e2d00000080b9800000c00f3235008000000f30", 0x58}], 0x1, 0x4a, 0x0, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000080)={0x40003, 0x0, {[0xffffffffffffffff, 0x0, 0x8, 0xfffffffdefffff16, 0x3, 0x10, 0x4, 0x4]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4m48.37083074s ago: executing program 6 (id=26981):
execve(0x0, &(0x7f0000000ac0)={[&(0x7f0000000180)='\x7f\xbf\xc3\x7f\xa5a\xd6A*c\x9b\xd8R\xf02b\xefA|uiWb\x8f\xee\x1c\xc5\xdb^\x11\x16h\x83\x94y<yN\xfbXh[\xe9\xf0\x99\xad\xdc;p\x98R\a\xb1\x9d^\x0f\x121\xb3\xab7P\xd6\xcb\x06\xfe2~W\xd9\xad\x80\xd9!\x89%\xb80\xa3l;\x1eK\x90\x15\xc6\x11A\xfc\x7f\xc6\xed\xe7\xa3\x9f\xb4\xce\"\xef\xa8\x86F\x15\xb9\rj\f\xafa\xb0}\xde\'E\x84\xb2bO\xd2\xd4\x85F\xde1e\xe0\xf2\xa0/\xd3<\xda\xfe\x04,\xfa\x97\xb6\xf4\xcf\x0el\xf2\xbd\x18\x88\xd7\x02\xce\x99\x1f\xadj\x89\xd9\xb7\xae9\xb0\xb0{n.\xd7\x87C\x0eh|KZG\x108l\n\xcd\xe9\x04\xafM\xbf\x83#>\x89\xf1Y{\x87\xd5\xf3\xccMr\xc5\xbdT\x9e\xc4\x84\x06\xcd\x8b\xcd\t\x01']}, 0x0)
r0 = syz_io_uring_setup(0x23b, &(0x7f0000000480)={0x0, 0x8901, 0x80, 0x1, 0x2cf}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000600)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
sendmsg$rds(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440), 0x0, 0x0, 0x0, 0x20000800}, 0x4000008)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}, 0x5, 0x12, 0x0, 0x3}, 0x9c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2007, @fd, 0x800, 0x0, 0x0, 0x18, 0x0, {0x2}})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

4m47.972815171s ago: executing program 6 (id=26984):
fsopen(&(0x7f00000002c0)='gfs2\x00', 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000500)={0x2, 0x0, @ioapic={0x10000, 0x1, 0x401, 0x7fffffff, 0x0, [{0x7, 0x10, 0xff, '\x00', 0x38}, {0x4, 0xfe, 0x7c, '\x00', 0x31}, {0x5, 0xb3, 0x1, '\x00', 0xd}, {0x5, 0x9, 0x10, '\x00', 0x6}, {0x5, 0x7f, 0x6, '\x00', 0x79}, {0x7, 0x80, 0x0, '\x00', 0x6}, {0x6, 0x8, 0x1, '\x00', 0x45}, {0x52, 0x9, 0x3, '\x00', 0x9}, {0x40, 0x2, 0x73, '\x00', 0xff}, {0x1, 0xb6, 0x89, '\x00', 0x80}, {0x6, 0x8, 0xa0, '\x00', 0x1}, {0x1, 0x1, 0x7, '\x00', 0x4}, {0x8, 0xc, 0x5, '\x00', 0x8}, {0xd, 0x10, 0x8c, '\x00', 0x4}, {0x0, 0xc0, 0x7, '\x00', 0x3}, {0x8, 0x2, 0xf6, '\x00', 0x2}, {0x7, 0x6, 0x8, '\x00', 0x5}, {0x9, 0x40, 0xfa, '\x00', 0x5}, {0x1, 0x3, 0x6, '\x00', 0x6}, {0xf8, 0x8, 0xa, '\x00', 0xf8}, {0x8, 0x1, 0xcc, '\x00', 0xf7}, {0x6, 0x6, 0xfe, '\x00', 0xa}, {0xff, 0x0, 0x3, '\x00', 0x7}, {0x16, 0x89, 0x4, '\x00', 0xff}]}})
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{0x40000070, 0x0, 0x400006}]})

4m47.1985393s ago: executing program 6 (id=26994):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
umount2(&(0x7f0000000040)='./file0\x00', 0xb)

4m45.614156684s ago: executing program 6 (id=27003):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x2a05004, 0x0)

4m45.33472515s ago: executing program 6 (id=27009):
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4d8, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xa0, 0x8, [{{0x9, 0x4, 0x0, 0xfe, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0xffff, 0xfd, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x3, 0x0, 0xfd}}}}}]}}]}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x101441)
r0 = open(&(0x7f0000000380)='./bus\x00', 0x40, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x84)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000240)=ANY=[@ANYBLOB='+\x00\x00\x00', @ANYRES32=r0], 0x2b)
sendfile(r2, r0, 0x0, 0x4000000053d2)

4m44.44732121s ago: executing program 6 (id=27024):
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000340)={<r1=>r0})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000240)={<r2=>r1})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000040))
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000000000000850000006d00000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000580)="d8001c00180081064e81f782db44fd56170d12a0b9b545c7", 0x18}], 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e3, &(0x7f0000000180)={r0, r5})

4m43.965602224s ago: executing program 35 (id=27024):
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000340)={<r1=>r0})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000240)={<r2=>r1})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000040))
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000000000000850000006d00000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000580)="d8001c00180081064e81f782db44fd56170d12a0b9b545c7", 0x18}], 0x1}, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e3, &(0x7f0000000180)={r0, r5})

2.270575212s ago: executing program 7 (id=30110):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={0x64, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xffff}]}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x64}}, 0x0)

2.083187242s ago: executing program 7 (id=30117):
r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x200000000000, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f00000000c0)={0x0, 0x0, {0x0, 0x0, 0x300f, 0x0, 0x3, 0x7, 0x3, 0x300}})

2.008921858s ago: executing program 8 (id=30118):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000140)=@ethtool_cmd={0xb, 0x0, 0x8, 0x4, 0x5, 0xd, 0x6, 0x7, 0x3, 0x50, 0xf, 0xfffffff9, 0x222, 0x0, 0xa, 0xb701, [0xcf, 0x59c]}})

1.921632638s ago: executing program 7 (id=30122):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000440)={@dev={0xac, 0x14, 0x14, 0x2c}, @empty}, 0xc)

1.874419028s ago: executing program 8 (id=30124):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001b80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8003}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x9c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x74, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x3c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0xf}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_BITWISE_XOR={0x4}, @NFTA_BITWISE_MASK={0xc, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "acbb"}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x110}}, 0x0)

1.858031963s ago: executing program 1 (id=30125):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)=@newtaction={0x894, 0x30, 0xffff, 0x0, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0xff, 0xc, 0x624b, 0x100, 0xffff, 0x7cf0, 0xfffffffe, 0x4, 0x9, 0x2, 0x8, 0x7fffffff, 0xfffffff9, 0xe, 0x6, 0x8, 0x7, 0x2, 0x2, 0x74, 0x59bd, 0x8, 0x0, 0x10, 0x62e, 0x8000, 0x5, 0xd3, 0x7, 0xec11, 0xe, 0x2, 0x1, 0x4, 0xe, 0x4, 0x9, 0x1, 0x7, 0x3000, 0x43b2, 0x0, 0x9, 0x4b8ed944, 0x9, 0xa, 0x3, 0x7f, 0xfffffffb, 0x6, 0x2, 0xb, 0x81, 0x0, 0x7fff, 0x5, 0x17b2083b, 0x7, 0x3, 0x8a, 0x3, 0x8, 0x2, 0x0, 0xe, 0x7, 0x9, 0x7ffffffe, 0x1, 0x4, 0x9, 0x3, 0x101, 0x4, 0xe, 0x5, 0x0, 0x6, 0xffff, 0x4, 0xf, 0x1, 0x7, 0x10001, 0x7, 0x9, 0x9, 0x0, 0x3e3, 0x2, 0x6c, 0xffff8001, 0x6, 0xf16, 0x6f41, 0xf, 0x5542ebd1, 0x3, 0x81, 0x0, 0x5, 0xfff, 0x7, 0x2, 0xfffffffd, 0x3, 0x1, 0x6b3, 0xffff, 0x0, 0x8, 0x7, 0x2, 0x80000000, 0x2, 0x5, 0x9, 0xdf, 0x0, 0x8, 0x9a8, 0x1, 0x6, 0x5000000, 0xf1e, 0x4, 0x5, 0x5, 0x1000, 0x1, 0xe5, 0x8000, 0xee33, 0x5, 0x8, 0x7fff, 0x9, 0x60, 0x7f, 0xa5, 0x5b3d, 0x8, 0xfffffff9, 0xb14, 0x9, 0x5, 0x0, 0x5, 0xa15c, 0x8, 0x91f, 0xc1, 0x5, 0x3ff, 0x4, 0x14d, 0x6, 0x7ff, 0x5, 0x3, 0x7, 0xfffffff9, 0x8, 0x6, 0x80000001, 0xd, 0x4, 0x10001, 0x0, 0x0, 0x8, 0x3, 0xff, 0x64, 0x401, 0x2, 0x7f8e8029, 0x5, 0x6, 0x1ff, 0x1, 0x5, 0x0, 0x0, 0x1, 0x7, 0x401, 0xa, 0xf, 0xa, 0xfffffffc, 0x6c, 0x102, 0x2, 0x872, 0x78, 0x81, 0x20000, 0x1, 0x1, 0x9, 0x101, 0x81, 0x2, 0x8, 0x8001, 0xa, 0x7, 0x40, 0x5, 0x1, 0x5, 0x80, 0xfffffffb, 0x7, 0x4, 0x1ff, 0xce0, 0x99fa, 0x6, 0x4, 0xa, 0x9, 0x4, 0xfffffffc, 0x8, 0xd, 0xc5, 0x1000, 0x7, 0x4, 0x2, 0x101, 0x1, 0x6, 0x4, 0x2, 0xffff2001, 0x1, 0x7d96, 0xfe000000, 0x175, 0x5, 0x400, 0x40000000, 0x2300000, 0x4, 0x2, 0x5, 0x3, 0x1, 0x101, 0x4, 0x0, 0x2, 0x6]}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x8c1, 0x3, 0x4, 0x0, 0x2, 0x2, 0x5, 0x5, 0xfffffaf1, 0x9, 0x84, 0x4, 0x2b, 0x3, 0x10, 0x5, 0x10000, 0x3ec0, 0x6, 0x8, 0x7f0, 0x2, 0x40, 0x7, 0x1f, 0x8000, 0x80000000, 0x6, 0x2, 0x5, 0x4, 0x38d, 0x4e, 0x401, 0x7, 0x8, 0xfffffff9, 0x6, 0xf76, 0xfff, 0x2, 0x5, 0x5, 0x5, 0x7800000, 0x8, 0x0, 0x8, 0x3, 0x3, 0x68a0, 0x9, 0x8000, 0x1, 0xcb3, 0x5, 0xe7, 0x786, 0x3, 0x7, 0x3, 0x3, 0x6, 0x8120, 0xfffffff1, 0x6, 0x4, 0x0, 0x1, 0xcdc1, 0x7, 0x1ff, 0xb, 0x0, 0x8, 0x1, 0x1, 0x81, 0x1, 0x8000, 0x3ff, 0x9, 0x7, 0x6, 0x2, 0x56b8, 0x7, 0x7, 0x7, 0xfff, 0xc, 0x40, 0x6, 0x2, 0xe5, 0x7, 0xa, 0x72, 0x9, 0x1, 0x3, 0x2, 0xffffffff, 0xfffffffa, 0x1000, 0x5ead, 0x5, 0x100, 0x200, 0x6, 0x8b12, 0x7, 0x81, 0x5, 0x0, 0x7, 0x401, 0x3f, 0x7f, 0x7ffc, 0x7, 0x9, 0x80000000, 0x15ae, 0x1, 0x0, 0x31, 0x2, 0x3, 0x2, 0x5, 0x4, 0xcf11, 0x278e, 0x7fffffff, 0xd7c8, 0x1, 0x8, 0x1, 0xee, 0x3, 0xff, 0x8, 0x101, 0x7f, 0x2, 0x5f6d, 0x0, 0x2, 0x400, 0x6, 0x9, 0xfffffe01, 0x3, 0xbde, 0x9, 0x2, 0x0, 0xd, 0x1, 0x2, 0x2, 0x5, 0x6, 0x3, 0x0, 0x6, 0xafd, 0x2, 0x5, 0xe4, 0x7fd, 0x9, 0x200, 0xfffffc00, 0xc, 0x9, 0x0, 0x5, 0x6, 0x1, 0x4, 0x1, 0x2, 0x8, 0x4, 0x1c, 0x7, 0x7, 0x96, 0x7, 0x3, 0x80, 0x1, 0x8, 0x10000, 0x0, 0x2, 0x10000, 0x80, 0x1000, 0x1, 0x401, 0x3082, 0x7, 0x4d51, 0x200, 0x2, 0x2, 0x1, 0xfffffffa, 0xea97, 0x6, 0x90b, 0x7fffffff, 0x1, 0x10, 0x6, 0x7, 0x0, 0x2, 0x6, 0x2c48d9e9, 0x9, 0x3, 0x0, 0x1, 0x7, 0x6, 0x2, 0xffffffff, 0xc, 0xeb82, 0x8, 0xfff, 0x6, 0x1c00, 0x1, 0x1, 0x1, 0xfffffc01, 0x4a0, 0x80000001, 0x8, 0x4, 0x800000, 0x2, 0x3ff, 0xa735, 0x3, 0x80000001, 0x6, 0x4a, 0x58, 0x2, 0x8]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x7}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x2, 0x9, 0x5, 0x6, {0x6, 0x1, 0x200, 0x7, 0x2, 0x2}, {0xe, 0x0, 0x1ff, 0x2, 0x7fff, 0x3}, 0x7, 0x400, 0xd}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x894}}, 0x0)

1.772137729s ago: executing program 4 (id=30127):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)

1.763168084s ago: executing program 1 (id=30128):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0x1, 0x0, 0x7fffffff}]})
io_cancel(0x0, 0x0, 0x0)

1.742689579s ago: executing program 7 (id=30129):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x75, 0x101140)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000040)={0x0, 0x20363159, 0xf00, 0x870, 0x3, @stepwise={{0x1ff, 0x401}, {0x20007, 0xfffffffd}, {0x7ff, 0x81}}})

1.639986468s ago: executing program 2 (id=30130):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6(0xa, 0x802, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r0}, 0x18)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
socket$rxrpc(0x21, 0x2, 0xa)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)

1.63790612s ago: executing program 8 (id=30131):
r0 = openat$binfmt_register(0xffffff9c, &(0x7f00000001c0), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f00000004c0)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, '#%\\h*@#Lw\x9e5\x9f6k\x886\xafm\xa0\b\x81\xdc\xd1\x8f\x93r2\x0eeu}\xf7\"\xbd&-~\xea(J\xee\'X\x9a\xd4\xfeI6\xd9\x1b\xc8\x14.\xfa\xb8\x03\x16\x96\x11\xa8\x90{G\xe2\xf1u\xd1\xca\x8a>\xc3\x84\xd3\xcf\xa7\x1f\xc1\xbd\x12\xd0\x1e\x98\xce+\x12\xaex{\x91\xc7bw\xcaC\xe1/\x19\xfei\xf0\xa2\x9c3\xee/\xcf\xdew \x1c\xc7=\xfb\xb8\x88\x132?\xbf\xb2\x93B\x01\'#\xc0v\xces\xa4\x13\xb1\x14\x89\xa0\x14P\x97\x81%)\xa1\x0e)2a2\xa2\xef\f\xef\x8a\x95\xdd\xac\xab\xff#T}`\x88r\xb3\xd8\x19\x06\xde\xb7\xf0GR.?i|\xafhs\x1d\xdc\x12\x85!\xaaqg\x10\xec\x1b\xcb\xfc6\xba\xde44m\x96+\r\xb4\x9a\xe8V1\x82\xce\xdd\xddx\xe7H\xa3N\x92\xdb\xaa\xdbe\xc1\x05P\b<\x1e\xd6\x92\x8c\xaa\xbe\xda\\|\xcf\xaf$.\x10\x8d\x9aie\xa1W\x1e\xd2L\xfa\xcc\xfb\xc2\x90\x99\xa9\x9f\xcd\xfasX\x9d\xbb\x8f\x1a', 0x3a, '#%\\h*@#Lw\x9e5\x9f6k\x886\xafm\xa0\b\x81\xdc\xd1\x8f\x93r2\x0eeu}\xf7\"\xbd&-~\xeahJ\xee\'X\x9a\xd4\xfeI6\xd9\x1b\xc8\x14.\xfa\xb8\x03\x16\x96\x11\xa8\x90{\xc5\xe2\xf1u\xd1\xca\x8a>\xc3\x84\xd3\xcf\xa7\x1f\xc1\xb5\x12\xd0\x1e\x98\xce+\x12\xaex{\x91\xc7bw\xcaC\xe1/\x19\xfei\xf0\xa2\x9c3\xee/\xcf\xdew \x1c\xc7=\xfb\xb8\x88\x132\xf9\xbf7K\x8d\x16\xa6\xbf4\v\xces\xa4\x13\xb1\x14\x89\xa0\x14P\x97\x81%)\xa1\x0e)2a2\xa2\xef\f\xef\x8a\x95\xdd\xac\xab\xff#T}`\x88r\xb3\xd8\x19\x06\xde\xb7\xf0GR.?i|\xafhs\x1d\xdc\x12\x85!\xaaqg\x10\xec\x1b\xcb\xfc6\xba\xde\x13\xdf\xc6Z+\r\xb4\x9a\xe8V1\x82\xce\xdd\xddx\xe7H\xa3N\x92\xdb\xaa\xdbe\xc1\x05P\b<\x1e\xd6\x92\x89\xaa\xbe\xda\\|\xcf\xaf$.\x10\x8d\x9aie\xd3W\x1e\xd2L\xfa\xcc\xfb\xc2\x90\x99\xa9\x9f\xcd\xfasX\x9d\xbb\x8f\x1a', 0x3a, './file0'}, 0x237)

1.637759023s ago: executing program 4 (id=30132):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xe, 0x0, 0x0)

1.618715508s ago: executing program 1 (id=30133):
r0 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000006c0)={0x2, 0xf, 0x4, 0xff81, 0x3f00, 0x5, 0x0})

1.617930106s ago: executing program 7 (id=30134):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x149, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4}, 0x50)

1.555170591s ago: executing program 2 (id=30135):
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec0012100001400a0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x4000010)

1.488387184s ago: executing program 8 (id=30136):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x40d, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_NET_NS_PID={0x8}]}, 0x3c}}, 0x0)

1.4881214s ago: executing program 4 (id=30137):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x6, &(0x7f0000000140)={0x24, {{0x29, 0x0, 0x5000000, @private2, 0x40}}}, 0x88)

1.477745949s ago: executing program 1 (id=30138):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x28, 0x3, 0x8, 0x101, 0x0, 0x0, {0x2, 0x0, 0x3}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_REPLIED={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x24801}, 0x0)

1.437834312s ago: executing program 7 (id=30139):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000000101010200000000000000000a0000000c0019800800020005000000380002802c00018014000300"], 0x58}}, 0x0)

1.372458403s ago: executing program 2 (id=30140):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="d40000000209050500000000000000000000000908000340000000010c0004800800014000000007ac0002002c00018014000300fe88000000000000000000000000000114000400fe88028005000100110000000c000280050001"], 0xd4}, 0x1, 0x0, 0x0, 0x20008000}, 0x4000000)

1.372337271s ago: executing program 4 (id=30141):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r0, 0x4b71, 0x0)

1.352883503s ago: executing program 8 (id=30142):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/ip_mr_cache\x00')
preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000300)=""/111, 0x6f}], 0x1, 0xe, 0x1)

1.300655962s ago: executing program 2 (id=30143):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000040)={0x24, @short={0x2, 0x1, 0xaaa2}}, 0x14)

1.244820143s ago: executing program 1 (id=30144):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f00000008c0)=@newtaction={0x488, 0x30, 0x12f, 0x0, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0xff, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x6}}}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x0, 0x3}}}}]}]}, 0x488}}, 0x0)

1.22469318s ago: executing program 1 (id=30145):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6(0xa, 0x802, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r0}, 0x18)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
socket$rxrpc(0x21, 0x2, 0xa)
bind$netlink(0xffffffffffffffff, &(0x7f0000000200)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
connect$inet6(r2, 0x0, 0x0)

1.183629294s ago: executing program 4 (id=30146):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)={0x90, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2, 0x0, 0xffff}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x2, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_MASTER={0x2c, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x93}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @rand_addr=0x64010102}}}]}]}, 0x90}}, 0x0)

1.116558994s ago: executing program 8 (id=30147):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bind$netlink(r0, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x1e}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4, 0x2}, {}, 0x0, 0x6e6bb9, 0x1}, {{@in=@broadcast, 0xfffffffc, 0x32}, 0x0, @in=@empty, 0x0, 0x0, 0x2, 0x7, 0x200}}, 0xe8)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

1.116386399s ago: executing program 2 (id=30148):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="8c0000000001010400000000ffffff8802000000240001801400018008000100ac1414bb08000200ac1414bb0c00028005000100000000002400028014000180080001000000004008000200ac1414bb0c0002800500010000000000080007400000000028000680080002007f000001080001"], 0x8c}, 0x1, 0x600000000000000, 0x0, 0x40}, 0x0)

74.115746ms ago: executing program 2 (id=30149):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000001e40)=@newnexthop={0x3c, 0x68, 0x1, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x4}, [@NHA_GROUP={0x24, 0x2, [{0x0, 0x7}, {0x1, 0xab}, {0x2, 0x3}, {0x2, 0xe}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x81}, 0x20000000)

0s ago: executing program 4 (id=30150):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="600000000206030000000000000000000000000705000100070000000900020073797a210000000014000780080013000000000008001240000000000500050002000000050004000100000012000300686173683a6e65742c706f7274"], 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)

kernel console output (not intermixed with test programs):

, bcdDevice=2e.04
[ 1032.802921][T13052] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1032.802939][T13052] usb 7-1: Product: syz
[ 1032.802953][T13052] usb 7-1: Manufacturer: syz
[ 1032.802966][T13052] usb 7-1: SerialNumber: syz
[ 1032.831379][T13052] usb 7-1: config 0 descriptor??
[ 1033.357538][T13052] usb 7-1: USB disconnect, device number 8
[ 1034.143128][ T5937] Bluetooth: hci0: command 0x041b tx timeout
[ 1036.364108][ T5939] Bluetooth: hci0: command 0x041b tx timeout
[ 1036.835074][T28781] trusted_key: syz.1.23387 sent an empty control message without MSG_MORE.
[ 1037.011126][T28795] netlink: 8 bytes leftover after parsing attributes in process `syz.1.23390'.
[ 1037.136618][T28798] netlink: 24 bytes leftover after parsing attributes in process `syz.6.23392'.
[ 1037.136646][T28798] netlink: 48 bytes leftover after parsing attributes in process `syz.6.23392'.
[ 1037.516970][ T6169] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[ 1037.611113][T28839] overlayfs: "xino" feature enabled using 3 upper inode bits.
[ 1037.690470][ T6169] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1037.690502][ T6169] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1037.691699][ T6169] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1037.691724][ T6169] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1037.691743][ T6169] usb 2-1: Manufacturer: syz
[ 1037.696791][ T6169] usb 2-1: config 0 descriptor??
[ 1038.168494][T28839] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[ 1038.195966][T28839] overlayfs: failed to look up (tracing) for ino (-66)
[ 1038.789361][ T6169] uclogic 0003:256C:006D.002E: failed retrieving string descriptor #100: -71
[ 1038.789423][ T6169] uclogic 0003:256C:006D.002E: failed retrieving pen parameters: -71
[ 1038.789441][ T6169] uclogic 0003:256C:006D.002E: failed probing pen v1 parameters: -71
[ 1038.789502][ T6169] uclogic 0003:256C:006D.002E: failed probing parameters: -71
[ 1038.789604][ T6169] uclogic 0003:256C:006D.002E: probe with driver uclogic failed with error -71
[ 1038.845994][ T6169] usb 2-1: USB disconnect, device number 30
[ 1039.671809][T28951] netlink: 'syz.6.23437': attribute type 27 has an invalid length.
[ 1040.067776][T28967] netlink: 16 bytes leftover after parsing attributes in process `syz.5.23444'.
[ 1040.067802][T28967] netlink: 16 bytes leftover after parsing attributes in process `syz.5.23444'.
[ 1040.444194][T28951] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1040.464211][T28951] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1040.882692][T29010] loop9: detected capacity change from 0 to 7
[ 1040.885974][T29010] Dev loop9: unable to read RDB block 7
[ 1040.886018][T29010]  loop9: unable to read partition table
[ 1040.886230][T29010] loop9: partition table beyond EOD, truncated
[ 1040.886267][T29010] loop_reread_partitions: partition scan of loop9 (�被x������ ) failed (rc=-5)
[ 1041.442685][T28951] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1041.474502][T28951] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1043.369810][ T1517] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.370026][ T1517] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.370065][ T1517] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.370099][ T1517] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.688576][   T37] audit: type=1400 audit(3837.511:759): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=29184 comm="syz.1.23541" daddr=fe80::36 dest=19998
[ 1044.851834][   T37] audit: type=1400 audit(3838.596:760): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=29256 comm="syz.6.23575" daddr=fe80::aa dest=20000
[ 1046.171680][   T37] audit: type=1326 audit(3839.839:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29348 comm="syz.6.23615" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f02cfb6f749 code=0x0
[ 1046.672529][ T6169] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[ 1046.832081][ T6169] usb 2-1: Using ep0 maxpacket: 16
[ 1046.854028][ T6169] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[ 1046.854059][ T6169] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1046.854078][ T6169] usb 2-1: Product: syz
[ 1046.854093][ T6169] usb 2-1: Manufacturer: syz
[ 1046.854107][ T6169] usb 2-1: SerialNumber: syz
[ 1046.903057][ T6169] usb 2-1: config 0 descriptor??
[ 1046.918070][ T6169] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected
[ 1046.924199][ T6169] usb 2-1: Detected FT232H
[ 1047.168052][ T6169] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[ 1047.273821][T29410] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[ 1047.579669][ T1320] ieee802154 phy0 wpan0: encryption failed: -22
[ 1047.579762][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[ 1047.609024][ T6169] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1047.816828][ T6169] usb 2-1: USB disconnect, device number 31
[ 1047.988222][ T6169] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1047.989166][ T6169] ftdi_sio 2-1:0.0: device disconnected
[ 1049.302665][ T6169] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[ 1049.465478][ T6169] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1049.465510][ T6169] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[ 1049.465549][ T6169] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1049.465635][ T6169] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1049.465676][ T6169] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1049.465697][ T6169] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1049.556802][ T6169] usb 2-1: config 0 descriptor??
[ 1049.557685][T29514] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1050.003979][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004019][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004046][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004072][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004098][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004123][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004149][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004175][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004201][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.004227][ T6169] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[ 1050.150534][ T6169] plantronics 0003:047F:FFFF.002F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[ 1050.302510][ T6081] usb 2-1: USB disconnect, device number 32
[ 1050.344734][T29587] fido_id[29587]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[ 1051.694602][T29677] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1052.115656][ T6081] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[ 1052.286687][ T6081] usb 2-1: Using ep0 maxpacket: 8
[ 1052.289256][ T6081] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1052.289318][ T6081] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1052.289341][ T6081] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1052.289362][ T6081] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1052.289384][ T6081] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1052.289425][ T6081] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1052.289458][ T6081] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1052.508405][T29727] netlink: 24 bytes leftover after parsing attributes in process `syz.6.23760'.
[ 1052.685589][ T5937] Bluetooth: hci0: link tx timeout
[ 1052.686127][ T5937] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1053.153224][T29771] usbtmc 2-1:16.0: simple usb_control_msg returned 0
[ 1053.286433][T29783] netlink: 112 bytes leftover after parsing attributes in process `syz.5.23780'.
[ 1053.366995][ T6081] usb 2-1: USB disconnect, device number 33
[ 1054.340108][ T6081] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[ 1054.509472][ T6081] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1054.509503][ T6081] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1054.509522][ T6081] usb 2-1: Product: syz
[ 1054.509536][ T6081] usb 2-1: Manufacturer: syz
[ 1054.509551][ T6081] usb 2-1: SerialNumber: syz
[ 1054.844333][ T5937] Bluetooth: hci0: command 0x041b tx timeout
[ 1055.617338][ T6081] cdc_ncm 2-1:1.0: MAC-Address: 42:42:42:42:42:42
[ 1055.617381][ T6081] cdc_ncm 2-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[ 1055.617398][ T6081] cdc_ncm 2-1:1.0: setting rx_max = 2048
[ 1055.833100][ T6081] cdc_ncm 2-1:1.0: setting tx_max = 184
[ 1055.954428][ T6081] cdc_ncm 2-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.1-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[ 1056.008786][ T6081] usb 2-1: USB disconnect, device number 34
[ 1056.015525][ T6081] cdc_ncm 2-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.1-1, CDC NCM (NO ZLP)
[ 1057.923061][ T6169] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[ 1058.085693][ T6169] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1058.085737][ T6169] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1058.088693][ T6169] usb 6-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce
[ 1058.088720][ T6169] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1058.088739][ T6169] usb 6-1: Product: syz
[ 1058.088754][ T6169] usb 6-1: Manufacturer: syz
[ 1058.088769][ T6169] usb 6-1: SerialNumber: syz
[ 1058.149257][ T6169] usb 6-1: config 0 descriptor??
[ 1058.157413][ T6169] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state.
[ 1058.183269][ T6169] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1058.184196][ T6169] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0)
[ 1058.184251][ T6169] usb 6-1: media controller created
[ 1058.227893][ T6169] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1058.348495][ T6169] DVB: Unable to find symbol tda10046_attach()
[ 1058.348514][ T6169] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0'
[ 1058.348544][ T6169] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected.
[ 1059.474570][ T6169] dvb_usb_m920x 6-1:0.0: probe with driver dvb_usb_m920x failed with error -71
[ 1059.488205][   T37] audit: type=1326 audit(3852.293:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30085 comm="syz.6.23898" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f02cfb6f749 code=0x0
[ 1059.522015][ T6169] usb 6-1: USB disconnect, device number 24
[ 1064.226930][T30309] loop8: detected capacity change from 0 to 7
[ 1064.257340][T30309]  loop8: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[ 1064.257382][T30309] loop8: partition table partially beyond EOD, truncated
[ 1064.257701][T30309] loop8: p1 size 3651402975 extends beyond EOD, truncated
[ 1064.267162][T30309] loop8: p2 start 956478 is beyond EOD, truncated
[ 1064.389597][T26849] udevd[26849]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[ 1064.585792][T30329] netlink: 'syz.1.23999': attribute type 1 has an invalid length.
[ 1064.651710][T30329] bond2: entered promiscuous mode
[ 1064.652135][T30329] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1064.781036][T30351] bond2: (slave bridge5): making interface the new active one
[ 1064.781085][T30351] bridge5: entered promiscuous mode
[ 1064.796274][T30351] bond2: (slave bridge5): Enslaving as an active interface with an up link
[ 1065.131821][ T6169] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[ 1065.292212][ T6169] usb 7-1: Using ep0 maxpacket: 16
[ 1065.294732][ T6169] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1065.294761][ T6169] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1065.294799][ T6169] usb 7-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 1065.294821][ T6169] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1065.299767][ T6169] usb 7-1: config 0 descriptor??
[ 1065.485924][ T1229] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[ 1065.644931][ T1229] usb 6-1: Using ep0 maxpacket: 16
[ 1065.652337][ T1229] usb 6-1: config 0 has an invalid interface number: 98 but max is 0
[ 1065.652364][ T1229] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1065.652383][ T1229] usb 6-1: config 0 has no interface number 0
[ 1065.652440][ T1229] usb 6-1: config 0 interface 98 altsetting 2 bulk endpoint 0x8 has invalid maxpacket 16
[ 1065.652465][ T1229] usb 6-1: config 0 interface 98 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[ 1065.652486][ T1229] usb 6-1: config 0 interface 98 has no altsetting 0
[ 1065.656314][ T1229] usb 6-1: New USB device found, idVendor=0846, idProduct=1040, bcdDevice=d0.c9
[ 1065.656343][ T1229] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1065.656363][ T1229] usb 6-1: Product: syz
[ 1065.656377][ T1229] usb 6-1: Manufacturer: syz
[ 1065.656399][ T1229] usb 6-1: SerialNumber: syz
[ 1065.670413][ T1229] usb 6-1: config 0 descriptor??
[ 1065.696716][T30405] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1065.733359][T30405] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1065.797082][ T6169] hid_parser_main: 5 callbacks suppressed
[ 1065.797105][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797134][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797161][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797186][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797212][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797238][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797264][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797290][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797314][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.797340][ T6169] apple 0003:05AC:024B.0030: unknown main item tag 0x0
[ 1065.883127][ T6169] apple 0003:05AC:024B.0030: hidraw0: USB HID v0.00 Device [HID 05ac:024b] on usb-dummy_hcd.6-1/input0
[ 1065.958452][T30405] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1065.959011][T30405] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1066.049157][ T6077] usb 7-1: USB disconnect, device number 9
[ 1066.096829][T30450] fido_id[30450]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/7-1/report_descriptor': No such file or directory
[ 1066.650623][ T6169] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1066.815917][ T6169] usb 2-1: Using ep0 maxpacket: 16
[ 1066.821914][ T6169] usb 2-1: config 0 has an invalid interface descriptor of length 8, skipping
[ 1066.821938][ T6169] usb 2-1: config 0 descriptor has 1 excess byte, ignoring
[ 1066.821956][ T6169] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1066.859066][ T6169] usb 2-1: New USB device found, idVendor=17ef, idProduct=720c, bcdDevice=51.90
[ 1066.859095][ T6169] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1066.859115][ T6169] usb 2-1: Product: syz
[ 1066.859129][ T6169] usb 2-1: Manufacturer: syz
[ 1066.859143][ T6169] usb 2-1: SerialNumber: syz
[ 1066.916842][ T6169] r8152-cfgselector 2-1: Unknown version 0x0000
[ 1066.916867][ T6169] r8152-cfgselector 2-1: config 0 descriptor??
[ 1067.039973][ T1229] asix 6-1:0.98 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1067.040234][ T1229] asix 6-1:0.98: probe with driver asix failed with error -71
[ 1067.057073][ T1229] usb 6-1: USB disconnect, device number 25
[ 1067.153426][ T6077] r8152-cfgselector 2-1: USB disconnect, device number 35
[ 1068.564372][ T6077] libceph: connect (1)[c::]:6789 error -101
[ 1068.576894][ T6077] libceph: mon0 (1)[c::]:6789 connect error
[ 1068.590929][T30595] ceph: No mds server is up or the cluster is laggy
[ 1068.594616][ T6077] libceph: connect (1)[c::]:6789 error -101
[ 1068.594797][ T6077] libceph: mon0 (1)[c::]:6789 connect error
[ 1068.887416][ T6077] libceph: connect (1)[c::]:6789 error -101
[ 1068.887601][ T6077] libceph: mon0 (1)[c::]:6789 connect error
[ 1069.833844][T30657] netlink: 16178 bytes leftover after parsing attributes in process `syz.6.24107'.
[ 1076.650248][ T6169] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[ 1076.735520][T31030] netlink: 'syz.1.24269': attribute type 9 has an invalid length.
[ 1076.735542][T31030] netlink: 'syz.1.24269': attribute type 11 has an invalid length.
[ 1076.735557][T31030] netlink: 'syz.1.24269': attribute type 12 has an invalid length.
[ 1076.735574][T31030] netlink: 210020 bytes leftover after parsing attributes in process `syz.1.24269'.
[ 1076.810656][ T6169] usb 6-1: Using ep0 maxpacket: 16
[ 1076.812700][ T6169] usb 6-1: config 0 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1076.812730][ T6169] usb 6-1: config 0 interface 0 altsetting 255 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1076.812751][ T6169] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1076.812780][ T6169] usb 6-1: New USB device found, idVendor=056e, idProduct=00fc, bcdDevice= 0.00
[ 1076.812802][ T6169] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1076.817714][ T6169] usb 6-1: config 0 descriptor??
[ 1077.262389][ T6169] elecom 0003:056E:00FC.0031: unbalanced collection at end of report description
[ 1077.263276][ T6169] elecom 0003:056E:00FC.0031: probe with driver elecom failed with error -22
[ 1077.480524][ T6169] usb 6-1: USB disconnect, device number 26
[ 1077.712128][T31086] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[ 1077.990250][T31102] netlink: 20 bytes leftover after parsing attributes in process `syz.6.24296'.
[ 1078.012129][T31102] ip6gre1: entered promiscuous mode
[ 1078.012154][T31102] ip6gre1: entered allmulticast mode
[ 1078.340185][ T1229] usb 6-1: new full-speed USB device number 27 using dummy_hcd
[ 1078.502820][ T1229] usb 6-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1078.502850][ T1229] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1078.507994][ T1229] usb 6-1: config 0 descriptor??
[ 1078.984131][   T37] audit: type=1400 audit(3870.516:763): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=31149 comm="syz.1.24314" dest=20004
[ 1079.830469][ T1229] pegasus 6-1:0.0: can't reset MAC
[ 1079.830829][ T1229] pegasus 6-1:0.0: probe with driver pegasus failed with error -5
[ 1079.847296][ T1229] usb 6-1: USB disconnect, device number 27
[ 1081.903771][ T1229] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[ 1082.027681][T31300] netlink: 104 bytes leftover after parsing attributes in process `syz.6.24380'.
[ 1082.065901][ T1229] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1082.065950][ T1229] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1082.065975][ T1229] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1082.065996][ T1229] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1082.067601][ T1229] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1082.067628][ T1229] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1082.067646][ T1229] usb 2-1: Manufacturer: syz
[ 1082.085342][ T1229] usb 2-1: config 0 descriptor??
[ 1082.538655][ T1229] hid_parser_main: 52 callbacks suppressed
[ 1082.538680][ T1229] appleir 0003:05AC:8243.0032: unknown main item tag 0x0
[ 1082.589070][ T1229] appleir 0003:05AC:8243.0032: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[ 1083.750078][   T37] audit: type=1400 audit(3874.967:764): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=31377 comm="syz.5.24411"
[ 1084.212358][ T6169] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[ 1084.372447][ T6169] usb 7-1: Using ep0 maxpacket: 8
[ 1084.376675][ T6169] usb 7-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[ 1084.376704][ T6169] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1084.376725][ T6169] usb 7-1: Product: syz
[ 1084.376738][ T6169] usb 7-1: Manufacturer: syz
[ 1084.376753][ T6169] usb 7-1: SerialNumber: syz
[ 1084.382130][ T6169] usb 7-1: config 0 descriptor??
[ 1084.439002][ T6169] gspca_main: sq905-2.14.0 probing 2770:9120
[ 1085.163753][ T1229] usb 2-1: reset high-speed USB device number 36 using dummy_hcd
[ 1085.358502][ T1229] usb 2-1: device firmware changed
[ 1085.387885][ T6081] usb 2-1: USB disconnect, device number 36
[ 1085.489991][ T6169] gspca_sq905: sq905_read_data: usb_control_msg failed (-71)
[ 1085.490150][ T6169] sq905 7-1:0.0: probe with driver sq905 failed with error -71
[ 1085.514603][ T6169] usb 7-1: USB disconnect, device number 10
[ 1085.580730][ T6081] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[ 1085.761384][ T6081] usb 2-1: config 0 has no interfaces?
[ 1085.761423][ T6081] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1085.761447][ T6081] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1085.772299][ T6081] usb 2-1: config 0 descriptor??
[ 1086.002497][T31526] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[ 1086.084045][ T6169] usb 2-1: USB disconnect, device number 37
[ 1088.687344][T31704] netlink: 'syz.1.24531': attribute type 1 has an invalid length.
[ 1088.884018][   T37] audit: type=1326 audit(3879.773:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.908128][   T37] audit: type=1326 audit(3879.801:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.913199][   T37] audit: type=1326 audit(3879.801:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.917361][   T37] audit: type=1326 audit(3879.801:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.917411][   T37] audit: type=1326 audit(3879.801:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.920905][   T37] audit: type=1326 audit(3879.810:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.922603][   T37] audit: type=1326 audit(3879.810:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.922653][   T37] audit: type=1326 audit(3879.810:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.922694][   T37] audit: type=1326 audit(3879.810:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1088.922735][   T37] audit: type=1326 audit(3879.810:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31713 comm="syz.1.24536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1090.116956][T14227] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[ 1090.278962][T14227] usb 6-1: Using ep0 maxpacket: 32
[ 1090.282717][T14227] usb 6-1: config 0 has an invalid interface number: 188 but max is 0
[ 1090.282744][T14227] usb 6-1: config 0 has no interface number 0
[ 1090.282791][T14227] usb 6-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[ 1090.316185][T14227] usb 6-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[ 1090.316214][T14227] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1090.316234][T14227] usb 6-1: Product: syz
[ 1090.316249][T14227] usb 6-1: Manufacturer: syz
[ 1090.316264][T14227] usb 6-1: SerialNumber: syz
[ 1090.370387][T14227] usb 6-1: config 0 descriptor??
[ 1090.372189][T31760] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1090.596235][T31760] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1091.467620][T14227] asix 6-1:0.188 (unnamed net_device) (uninitialized): invalid PHY address: 236
[ 1091.685492][ T1229] usb 6-1: USB disconnect, device number 28
[ 1091.930410][T31873] batadv_slave_1: entered promiscuous mode
[ 1091.981729][T31866] batadv_slave_1: left promiscuous mode
[ 1092.782498][ T1229] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[ 1092.987084][ T1229] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1092.987142][ T1229] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1092.988328][ T1229] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1092.988353][ T1229] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1092.988373][ T1229] usb 2-1: Manufacturer: syz
[ 1093.008201][ T1229] usb 2-1: config 0 descriptor??
[ 1093.305250][ T1229] rc_core: IR keymap rc-hauppauge not found
[ 1093.305272][ T1229] Registered IR keymap rc-empty
[ 1093.307740][ T1229] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[ 1093.325478][ T1229] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input68
[ 1093.339657][    C0] igorplugusb 2-1:0.0: Error: urb status = -32
[ 1093.563861][T14227] usb 2-1: USB disconnect, device number 38
[ 1094.179989][T31997] syz_tun: entered allmulticast mode
[ 1094.211390][T31997] dvmrp8: entered allmulticast mode
[ 1094.216451][T31994] syz_tun: left allmulticast mode
[ 1094.254484][   T37] kauditd_printk_skb: 49 callbacks suppressed
[ 1094.254502][   T37] audit: type=1400 audit(3884.794:824): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=32001 comm="syz.1.24631"
[ 1095.121064][ T6081] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[ 1095.292123][ T6081] usb 2-1: Using ep0 maxpacket: 16
[ 1095.294501][ T6081] usb 2-1: config 0 has an invalid interface number: 120 but max is 0
[ 1095.294525][ T6081] usb 2-1: config 0 has no interface number 0
[ 1095.294569][ T6081] usb 2-1: config 0 interface 120 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1095.294592][ T6081] usb 2-1: config 0 interface 120 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 1095.298614][ T6081] usb 2-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=ac.13
[ 1095.298649][ T6081] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1095.298670][ T6081] usb 2-1: Product: syz
[ 1095.298683][ T6081] usb 2-1: Manufacturer: syz
[ 1095.298698][ T6081] usb 2-1: SerialNumber: syz
[ 1095.304859][ T6081] usb 2-1: config 0 descriptor??
[ 1095.640500][ T6081] msi2500 2-1:0.120: Registered as swradio24
[ 1095.640522][ T6081] msi2500 2-1:0.120: SDR API is still slightly experimental and functionality changes may follow
[ 1095.667686][ T6081] usb 2-1: USB disconnect, device number 39
[ 1097.761506][T32240] Invalid ELF header magic: != ELF
[ 1097.783997][T32242] netlink: 8 bytes leftover after parsing attributes in process `syz.5.24729'.
[ 1097.874438][T32246] mac80211_hwsim hwsim3 
: renamed from wlan1 (while UP)
[ 1100.544100][T32378] netlink: 24 bytes leftover after parsing attributes in process `syz.5.24793'.
[ 1102.757288][ T5939] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1103.136946][T32555] netlink: 8 bytes leftover after parsing attributes in process `syz.6.24873'.
[ 1103.136984][T32555] netlink: 20 bytes leftover after parsing attributes in process `syz.6.24873'.
[ 1103.179236][T32555] geneve2: entered promiscuous mode
[ 1103.179263][T32555] geneve2: entered allmulticast mode
[ 1103.180946][T26439] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1103.181196][T26439] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1103.181235][T26439] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1103.181270][T26439] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1103.290075][T32564] loop9: detected capacity change from 0 to 7
[ 1103.307958][T32564] Dev loop9: unable to read RDB block 7
[ 1103.308005][T32564]  loop9: unable to read partition table
[ 1103.308182][T32564] loop9: partition table beyond EOD, truncated
[ 1103.308209][T32564] loop_reread_partitions: partition scan of loop9 (�被x������ ) failed (rc=-5)
[ 1103.541851][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880335ef000: rx timeout, send abort
[ 1104.079694][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880335ef000: abort rx timeout. Force session deactivation
[ 1104.088500][T32605] netlink: 'syz.1.24893': attribute type 12 has an invalid length.
[ 1104.096652][   T37] audit: type=1400 audit(3894.004:825): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=32604 comm="syz.1.24893" daddr=::ffff:0.0.0.0 dest=20002
[ 1107.701513][  T338] input: syz0 as /devices/virtual/input/input69
[ 1109.500441][   T37] audit: type=1400 audit(3899.053:826): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=429 comm="syz.5.25027" daddr=::ffff:0.0.0.0 dest=20000
[ 1109.870589][  T449] netlink: 'syz.5.25034': attribute type 4 has an invalid length.
[ 1109.950608][  T454] netlink: 'syz.5.25034': attribute type 4 has an invalid length.
[ 1111.559419][ T1229] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[ 1111.719786][ T1229] usb 2-1: Using ep0 maxpacket: 16
[ 1111.724241][ T1229] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1111.724273][ T1229] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1111.724310][ T1229] usb 2-1: New USB device found, idVendor=1038, idProduct=12c2, bcdDevice= 0.00
[ 1111.724332][ T1229] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1111.777114][ T1229] usb 2-1: config 0 descriptor??
[ 1112.230573][ T1229] steelseries 0003:1038:12C2.0033: unknown main item tag 0x0
[ 1112.230610][ T1229] steelseries 0003:1038:12C2.0033: unknown main item tag 0x0
[ 1112.230745][ T1229] steelseries 0003:1038:12C2.0033: unknown main item tag 0x0
[ 1112.230773][ T1229] steelseries 0003:1038:12C2.0033: unknown main item tag 0x0
[ 1112.230799][ T1229] steelseries 0003:1038:12C2.0033: unknown main item tag 0x0
[ 1112.442011][ T1229] usb 2-1: USB disconnect, device number 40
[ 1112.744111][  T631] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1113.281420][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[ 1113.286479][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[ 1115.335529][   T37] audit: type=1400 audit(3904.513:827): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=752 comm="syz.5.25168" daddr=fc02::
[ 1115.640244][  T772] loop8: detected capacity change from 0 to 7
[ 1115.662724][  T772] Dev loop8: unable to read RDB block 7
[ 1115.662769][  T772]  loop8: unable to read partition table
[ 1115.662974][  T772] loop8: partition table beyond EOD, truncated
[ 1115.663783][  T772] loop_reread_partitions: partition scan of loop8 (�被x������ ) failed (rc=-5)
[ 1116.051764][   T37] audit: type=1326 audit(3905.168:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=785 comm="syz.5.25183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e519af749 code=0x7fc00000
[ 1116.678770][   T37] audit: type=1326 audit(3905.757:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=785 comm="syz.5.25183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5e519af749 code=0x7fc00000
[ 1116.726416][  T837] input: syz0 as /devices/virtual/input/input70
[ 1118.535209][   T37] audit: type=1400 audit(3907.496:830): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=938 comm="syz.6.25239" daddr=::ffff:172.20.20.57 dest=20001
[ 1119.144323][  T987] Invalid ELF header magic: != ELF
[ 1119.610155][   T37] audit: type=1400 audit(3908.496:831): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="veth1" object="_" requested=w pid=1015 comm="syz.1.25271" saddr=fc01::1 daddr=fe80::aa dest=20002
[ 1119.735337][   T37] audit: type=1326 audit(3908.618:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1027 comm="syz.1.25276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1119.735603][   T37] audit: type=1326 audit(3908.618:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1027 comm="syz.1.25276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1119.739857][   T37] audit: type=1326 audit(3908.618:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1027 comm="syz.1.25276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1119.739908][   T37] audit: type=1326 audit(3908.618:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1027 comm="syz.1.25276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1119.739951][   T37] audit: type=1326 audit(3908.618:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1027 comm="syz.1.25276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1119.892812][ T1039] netlink: 40 bytes leftover after parsing attributes in process `syz.6.25278'.
[ 1120.266109][ T1077] netlink: 4 bytes leftover after parsing attributes in process `syz.6.25288'.
[ 1120.266206][ T1077] netlink: 'syz.6.25288': attribute type 11 has an invalid length.
[ 1120.266222][ T1077] netlink: 'syz.6.25288': attribute type 14 has an invalid length.
[ 1120.508167][ T1077] vxlan0: entered promiscuous mode
[ 1120.619418][  T169] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1120.620632][  T169] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1120.620672][  T169] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1120.620715][  T169] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1122.691247][ T1208] fuse: root generation should be zero
[ 1123.131960][ T1259] netlink: 20 bytes leftover after parsing attributes in process `syz.6.25361'.
[ 1123.185023][ T6169] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[ 1123.348165][ T6169] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1123.348198][ T6169] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1123.349381][ T6169] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1123.349406][ T6169] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1123.349426][ T6169] usb 2-1: Manufacturer: syz
[ 1123.403562][ T6169] usb 2-1: config 0 descriptor??
[ 1124.323220][ T6169] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0034/input/input73
[ 1124.414005][ T6169] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0034/input/input74
[ 1124.494057][ T6169] input: syz Touch Strip as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0034/input/input75
[ 1124.526351][ T6169] input: syz Dial as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0034/input/input76
[ 1124.577215][ T6169] uclogic 0003:256C:006D.0034: input,hidraw0: USB HID v0.00 Keypad [syz] on usb-dummy_hcd.1-1/input0
[ 1124.597483][ T6169] usb 2-1: USB disconnect, device number 41
[ 1124.922300][ T6081] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[ 1125.085515][ T1368] fido_id[1368]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[ 1125.129320][ T6081] usb 6-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1125.129349][ T6081] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1125.129368][ T6081] usb 6-1: Product: syz
[ 1125.129383][ T6081] usb 6-1: Manufacturer: syz
[ 1125.129396][ T6081] usb 6-1: SerialNumber: syz
[ 1125.668896][ T6081] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[ 1125.668958][ T6081] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE
[ 1126.325208][ T6081] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000000. ret = -EPROTO
[ 1126.325269][ T6081] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1126.333011][ T6081] lan78xx 6-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1126.384513][ T6081] lan78xx 6-1:1.0: probe with driver lan78xx failed with error -71
[ 1126.416808][ T6081] usb 6-1: USB disconnect, device number 29
[ 1126.521990][ T1229] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[ 1126.694448][ T1229] usb 7-1: Using ep0 maxpacket: 8
[ 1126.697832][ T1229] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1126.697860][ T1229] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1126.697884][ T1229] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1126.697906][ T1229] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1126.697947][ T1229] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1126.697970][ T1229] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1126.971389][ T1229] usb 7-1: GET_CAPABILITIES returned 0
[ 1126.971438][ T1229] usbtmc 7-1:16.0: can't read capabilities
[ 1127.193666][ T1229] usb 7-1: USB disconnect, device number 11
[ 1127.527298][ T6081] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[ 1127.700472][ T6081] usb 6-1: config 0 has no interfaces?
[ 1127.700510][ T6081] usb 6-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[ 1127.700532][ T6081] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1127.711839][ T6081] usb 6-1: config 0 descriptor??
[ 1128.029060][ T6081] usb 6-1: USB disconnect, device number 30
[ 1130.158588][   T37] kauditd_printk_skb: 19 callbacks suppressed
[ 1130.158606][   T37] audit: type=1400 audit(3918.370:856): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=1669 comm="syz.5.25507" dest=20001
[ 1130.658181][ T1697] netlink: 12 bytes leftover after parsing attributes in process `syz.6.25518'.
[ 1130.798063][   T37] audit: type=1326 audit(3918.959:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1704 comm="syz.6.25521" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f02cfb6f749 code=0x0
[ 1131.593536][ T1756] tipc: New replicast peer: 0.0.0.0
[ 1131.595618][ T1756] tipc: Enabled bearer <udp:syz2>, priority 17
[ 1131.842291][ T1775] input: syz1 as /devices/virtual/input/input77
[ 1132.311378][ T1800] overlayfs: failed to get inode (-116)
[ 1132.312312][ T1800] overlayfs: failed to get inode (-116)
[ 1132.651554][ T1832] vivid-000: disconnect
[ 1133.087790][ T1823] vivid-000: reconnect
[ 1133.089175][ T1229] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[ 1133.257374][ T1229] usb 6-1: Using ep0 maxpacket: 8
[ 1133.267128][ T1229] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1133.267158][ T1229] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1133.267177][ T1229] usb 6-1: Product: syz
[ 1133.267191][ T1229] usb 6-1: Manufacturer: syz
[ 1133.267205][ T1229] usb 6-1: SerialNumber: syz
[ 1133.279114][ T1229] usb 6-1: config 0 descriptor??
[ 1133.519106][ T1229] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1133.832513][ T1886] netlink: 8 bytes leftover after parsing attributes in process `syz.6.25598'.
[ 1134.808314][ T1229] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1134.827008][ T1229] usb 6-1: USB disconnect, device number 31
[ 1138.366085][   T37] audit: type=1326 audit(3926.037:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2080 comm="syz.1.25682" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x0
[ 1138.667802][ T2105] netlink: 12 bytes leftover after parsing attributes in process `syz.6.25693'.
[ 1140.587092][ T2205] tipc: Started in network mode
[ 1140.587123][ T2205] tipc: Node identity ac14140f, cluster identity 4711
[ 1140.587451][ T2205] tipc: New replicast peer: 255.255.255.255
[ 1140.589905][ T2205] tipc: Enabled bearer <udp:syz2>, priority 17
[ 1141.797098][T13052] tipc: Node number set to 2886997007
[ 1141.997958][T13052] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[ 1142.172134][T13052] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1142.172161][T13052] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1142.173394][T13052] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1142.173421][T13052] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1142.173441][T13052] usb 2-1: SerialNumber: syz
[ 1142.243884][  T807] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 1142.404324][  T807] usb 7-1: Using ep0 maxpacket: 32
[ 1142.409116][  T807] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1142.409147][  T807] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1142.409185][  T807] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1142.409207][  T807] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1142.421566][T13052] usb 2-1: 0:2 : does not exist
[ 1142.464961][T13052] usb 2-1: USB disconnect, device number 42
[ 1142.479819][  T807] usb 7-1: config 0 descriptor??
[ 1142.484532][  T807] hub 7-1:0.0: USB hub found
[ 1142.687395][ T2314] udevd[2314]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1142.725942][  T807] hub 7-1:0.0: 1 port detected
[ 1143.231349][   T37] audit: type=1400 audit(3930.590:859): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=2353 comm="syz.1.25791" daddr=2001::1 dest=20003
[ 1143.231822][   T37] audit: type=1400 audit(3930.590:860): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=2353 comm="syz.1.25791" daddr=2001::2 dest=20003
[ 1143.372183][  T807] hub 7-1:0.0: activate --> -90
[ 1143.676390][   T37] audit: type=1400 audit(3931.002:861): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=2373 comm="syz.5.25799" daddr=::ac14:1414
[ 1144.016655][T13052] usb 7-1: USB disconnect, device number 12
[ 1144.029173][  T807] hub 7-1:0.0: hub_ext_port_status failed (err = -71)
[ 1144.045262][  T807] usb 7-1-port1: attempt power cycle
[ 1145.025219][T13052] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[ 1145.188003][T13052] usb 7-1: config 0 has an invalid interface number: 85 but max is 0
[ 1145.188032][T13052] usb 7-1: config 0 has no interface number 0
[ 1145.188076][T13052] usb 7-1: config 0 interface 85 has no altsetting 0
[ 1145.188109][T13052] usb 7-1: New USB device found, idVendor=0bfd, idProduct=0018, bcdDevice=6a.19
[ 1145.188132][T13052] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1145.194436][T13052] usb 7-1: config 0 descriptor??
[ 1146.227424][T13052] usb 7-1: string descriptor 0 read error: -71
[ 1146.228791][T13052] kvaser_usb 7-1:0.85: error -ENODEV: Cannot get usb endpoint(s)
[ 1146.250485][T13052] usb 7-1: USB disconnect, device number 17
[ 1146.618156][T13052] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[ 1146.666410][   T37] audit: type=1400 audit(3933.797:862): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=2577 comm="syz.1.25871" daddr=2001::2 dest=19996
[ 1146.666851][   T37] audit: type=1400 audit(3933.797:863): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=2577 comm="syz.1.25871" daddr=2001::
[ 1146.791676][T13052] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1146.791736][T13052] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1146.794514][T13052] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1146.794541][T13052] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1146.794561][T13052] usb 6-1: Manufacturer: syz
[ 1146.809544][T13052] usb 6-1: config 0 descriptor??
[ 1146.920101][T13052] rc_core: IR keymap rc-hauppauge not found
[ 1146.920123][T13052] Registered IR keymap rc-empty
[ 1146.922657][T13052] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[ 1146.943552][T13052] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input78
[ 1147.095428][    C0] igorplugusb 6-1:0.0: Error: urb status = -32
[ 1147.122263][  T807] usb 6-1: USB disconnect, device number 32
[ 1147.731105][   T37] audit: type=1400 audit(3934.798:864): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=2672 comm="syz.6.25894" dest=20001
[ 1149.131501][T13052] usb 6-1: new high-speed USB device number 33 using dummy_hcd
[ 1149.299831][T13052] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1149.299866][T13052] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1149.299904][T13052] usb 6-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[ 1149.299927][T13052] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1149.315761][T13052] usb 6-1: config 0 descriptor??
[ 1150.188297][T13052] hid-led 0003:27B8:01ED.0035: hidraw0: USB HID v0.00 Device [HID 27b8:01ed] on usb-dummy_hcd.5-1/input0
[ 1150.263725][T13052] hid-led 0003:27B8:01ED.0035: ThingM blink(1) initialized
[ 1150.402099][ T1454] usb 6-1: USB disconnect, device number 33
[ 1150.593868][ T2885] fido_id[2885]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[ 1152.067208][   T37] audit: type=1400 audit(3938.846:865): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=2999 comm="syz.6.25991" daddr=fe80::bb dest=20003
[ 1153.432455][ T3074] loop2: detected capacity change from 0 to 7
[ 1153.455193][ T5941] Dev loop2: unable to read RDB block 7
[ 1153.455225][ T5941]  loop2: AHDI p2 p3
[ 1153.455255][ T5941] loop2: partition table partially beyond EOD, truncated
[ 1153.455564][ T5941] loop2: p3 start 335544320 is beyond EOD, truncated
[ 1153.467889][ T3074] Dev loop2: unable to read RDB block 7
[ 1153.467917][ T3074]  loop2: AHDI p2 p3
[ 1153.467944][ T3074] loop2: partition table partially beyond EOD, truncated
[ 1153.470986][ T3074] loop2: p3 start 335544320 is beyond EOD, truncated
[ 1154.498656][   T37] audit: type=1326 audit(3941.118:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3121 comm="syz.1.26033" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x0
[ 1155.997994][ T1229] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 1156.178756][ T1229] usb 7-1: Using ep0 maxpacket: 8
[ 1156.185188][ T1229] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[ 1156.185245][ T1229] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1156.185276][ T1229] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1156.185300][ T1229] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1156.185322][ T1229] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1156.185364][ T1229] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1156.185386][ T1229] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1156.416695][ T3231] netlink: 'syz.1.26069': attribute type 9 has an invalid length.
[ 1156.416717][ T3231] netlink: 'syz.1.26069': attribute type 11 has an invalid length.
[ 1156.416731][ T3231] netlink: 'syz.1.26069': attribute type 12 has an invalid length.
[ 1156.416747][ T3231] netlink: 210020 bytes leftover after parsing attributes in process `syz.1.26069'.
[ 1156.417384][ T3231] netlink: 4 bytes leftover after parsing attributes in process `syz.1.26069'.
[ 1156.481990][ T1229] usb 7-1: usb_control_msg returned -32
[ 1156.482040][ T1229] usbtmc 7-1:16.0: can't read capabilities
[ 1157.258377][ T3287] usbtmc 7-1:16.0: usb_clear_halt returned -32
[ 1157.471004][  T807] usb 7-1: USB disconnect, device number 18
[ 1162.240480][ T3447] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1162.249249][ T5939] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1162.271752][ T5939] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1162.290322][ T5939] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1162.292730][ T5939] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1162.294627][ T5939] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1163.177693][ T3447] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1163.722609][ T3447] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1164.198958][ T3447] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1164.532731][ T5937] Bluetooth: hci2: command tx timeout
[ 1164.900951][ T3577] chnl_net:caif_netlink_parms(): no params data found
[ 1166.578234][   T37] audit: type=1400 audit(3952.422:867): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=3908 comm="syz.6.26267" daddr=fc01::1 dest=20001
[ 1166.757987][ T5937] Bluetooth: hci2: command tx timeout
[ 1167.613624][ T3447] dvmrp8 (unregistering): left allmulticast mode
[ 1168.257082][ T3447] bond0 (unregistering): Released all slaves
[ 1168.983841][ T5937] Bluetooth: hci2: command tx timeout
[ 1169.718060][ T3447] bond1 (unregistering): Released all slaves
[ 1169.746993][ T3447] bond2 (unregistering): Released all slaves
[ 1170.343801][ T3577] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1170.351146][ T3577] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1170.351414][ T3577] bridge_slave_0: entered allmulticast mode
[ 1170.354025][ T3577] bridge_slave_0: entered promiscuous mode
[ 1170.392491][ T3577] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1170.392950][ T3577] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1170.393188][ T3577] bridge_slave_1: entered allmulticast mode
[ 1170.416741][ T3577] bridge_slave_1: entered promiscuous mode
[ 1170.607865][ T1229] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 1170.784819][ T1229] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1170.784854][ T1229] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1170.784893][ T1229] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1170.784915][ T1229] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1170.791971][ T4127] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1170.836744][ T1229] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1171.110595][ T1229] usb 7-1: USB disconnect, device number 19
[ 1171.206535][ T5937] Bluetooth: hci2: command tx timeout
[ 1171.452642][ T3577] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1171.456871][ T3577] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1172.524444][ T3577] team0: Port device team_slave_0 added
[ 1172.644013][ T3577] team0: Port device team_slave_1 added
[ 1172.829795][ T3447] hsr_slave_0: left promiscuous mode
[ 1172.900649][ T3447] hsr_slave_1: left promiscuous mode
[ 1173.080517][ T3447] veth1_macvtap: left promiscuous mode
[ 1173.080619][ T3447] veth0_macvtap: left promiscuous mode
[ 1173.080786][ T3447] veth1_vlan: left promiscuous mode
[ 1173.080959][ T3447] veth0_vlan: left promiscuous mode
[ 1176.880277][ T6169] IPVS: starting estimator thread 0...
[ 1177.001155][ T4493] IPVS: using max 11 ests per chain, 26400 per kthread
[ 1177.370836][ T6169] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 1177.557312][ T6169] usb 7-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[ 1177.557342][ T6169] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1177.557361][ T6169] usb 7-1: Product: syz
[ 1177.557373][ T6169] usb 7-1: Manufacturer: syz
[ 1177.557386][ T6169] usb 7-1: SerialNumber: syz
[ 1177.598535][ T6169] usb 7-1: config 0 descriptor??
[ 1177.607052][ T6169] i2c-tiny-usb 7-1:0.0: version 6d.cc found at bus 007 address 020
[ 1178.051347][ T6169]  (null): failure reading functionality
[ 1178.070101][ T6169] i2c i2c-3: failure reading functionality
[ 1178.083822][ T6169] i2c i2c-3: connected i2c-tiny-usb device
[ 1179.033691][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[ 1180.298741][ T1454] usb 7-1: USB disconnect, device number 20
[ 1183.094887][ T3577] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1183.094904][ T3577] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1183.094929][ T3577] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1183.097604][ T3577] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1183.097619][ T3577] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1183.097646][ T3577] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1184.177841][ T3577] hsr_slave_0: entered promiscuous mode
[ 1184.220765][ T3577] hsr_slave_1: entered promiscuous mode
[ 1184.746505][T14227] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[ 1184.930631][T14227] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1184.930694][T14227] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1184.930720][T14227] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1184.930742][T14227] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1184.932314][T14227] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1184.932342][T14227] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1184.932369][T14227] usb 2-1: Manufacturer: syz
[ 1184.937805][T14227] usb 2-1: config 0 descriptor??
[ 1185.446329][T14227] appleir 0003:05AC:8243.0036: unknown main item tag 0x0
[ 1185.486145][T14227] appleir 0003:05AC:8243.0036: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[ 1185.734182][T14227] usb 2-1: USB disconnect, device number 43
[ 1186.412853][ T5002] fido_id[5002]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[ 1187.739606][ T3577] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1187.806215][ T3577] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1187.856518][ T3577] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1187.923059][ T3577] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1188.393140][ T3577] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1188.480748][ T3577] 8021q: adding VLAN 0 to HW filter on device team0
[ 1188.494218][ T3115] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1188.505870][ T3115] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1188.557608][T30348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1188.561643][T30348] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1191.452296][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1191.452326][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1191.880106][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1191.987060][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1192.539774][ T3577] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1194.216849][ T3577] veth0_vlan: entered promiscuous mode
[ 1194.289667][ T3577] veth1_vlan: entered promiscuous mode
[ 1194.567134][ T3577] veth0_macvtap: entered promiscuous mode
[ 1194.724146][ T3577] veth1_macvtap: entered promiscuous mode
[ 1195.403232][ T3577] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1195.461415][ T3577] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1195.517123][T26439] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.519429][T26439] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.519509][T26439] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1195.519544][T26439] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1196.180283][ T3482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1196.180305][ T3482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1196.486162][ T3482] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1196.486184][ T3482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1197.186002][ T5411] tmpfs: Bad value for 'nr_inodes'
[ 1198.220400][   T37] audit: type=1400 audit(3981.996:868): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=5474 comm="syz.1.26712" daddr=::ffff:172.20.20.18 dest=20000
[ 1198.500646][T13052] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[ 1198.682943][T13052] usb 2-1: Using ep0 maxpacket: 32
[ 1198.685266][T13052] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1198.685300][T13052] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0
[ 1198.688112][T13052] usb 2-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[ 1198.688141][T13052] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1198.688160][T13052] usb 2-1: Product: syz
[ 1198.688174][T13052] usb 2-1: Manufacturer: syz
[ 1198.688186][T13052] usb 2-1: SerialNumber: syz
[ 1198.700452][T13052] usb 2-1: config 0 descriptor??
[ 1198.711037][T13052] usb 2-1: no audio or video endpoints found
[ 1198.961006][T13052] usb 2-1: USB disconnect, device number 44
[ 1199.591551][T13052] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 1199.773288][T13052] usb 7-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[ 1199.773318][T13052] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1199.773337][T13052] usb 7-1: Product: syz
[ 1199.773352][T13052] usb 7-1: Manufacturer: syz
[ 1199.773365][T13052] usb 7-1: SerialNumber: syz
[ 1199.793220][T13052] usb 7-1: config 0 descriptor??
[ 1200.041924][T13052] hso 7-1:0.0: Failed to find INT IN ep
[ 1200.042476][T13052] usb-storage 7-1:0.0: USB Mass Storage device detected
[ 1200.341523][T14227] usb 7-1: USB disconnect, device number 21
[ 1200.525665][   T37] audit: type=1800 audit(3984.147:869): pid=5583 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.26750" name="/" dev="fuse" ino=9 res=0 errno=0
[ 1202.786430][ T5736] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[ 1207.973365][   T37] audit: type=1804 audit(3991.075:870): pid=5979 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.6.26892" name="/newroot/400/file0" dev="fuse" ino=1 res=1 errno=0
[ 1208.104771][ T1454] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[ 1208.298542][ T1454] usb 2-1: Using ep0 maxpacket: 32
[ 1208.300801][ T1454] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1208.300830][ T1454] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1208.300865][ T1454] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[ 1208.300887][ T1454] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1208.306092][ T1454] usb 2-1: config 0 descriptor??
[ 1208.809320][ T1454] ft260 0003:0403:6030.0037: unknown main item tag 0x0
[ 1208.809352][ T1454] ft260 0003:0403:6030.0037: unknown main item tag 0x0
[ 1209.031271][ T1454] ft260 0003:0403:6030.0037: chip code: 6424 8183
[ 1209.099338][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[ 1209.258724][ T1454] ft260 0003:0403:6030.0037: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.1-1/input0
[ 1209.580766][ T1454] ft260 0003:0403:6030.0037: failed to retrieve status: -32, no wakeup
[ 1209.838182][ T4814] usb 2-1: USB disconnect, device number 45
[ 1217.707516][   T37] audit: type=1400 audit(4001.206:871): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=6354 comm="syz.7.27002" dest=20000
[ 1218.827225][ T6416] binder: BINDER_SET_CONTEXT_MGR already set
[ 1218.827242][ T6416] binder: 6415:6416 ioctl 4018620d 200000000040 returned -16
[ 1219.177492][ T3561] netdevsim netdevsim6 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1219.177515][ T3561] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.367640][   T37] audit: type=1400 audit(4002.777:872): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=6435 comm="syz.1.27030" daddr=fc01::
[ 1220.585582][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1220.639805][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1220.652328][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1220.653742][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1220.672073][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1220.839459][ T3561] netdevsim netdevsim6 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1220.839496][ T3561] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.407568][ T3561] netdevsim netdevsim6 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1221.407617][ T3561] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.832374][ T3561] netdevsim netdevsim6 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1221.832411][ T3561] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1222.115299][ T6524] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1222.922568][ T5939] Bluetooth: hci0: command tx timeout
[ 1223.003100][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1223.667475][ T6451] chnl_net:caif_netlink_parms(): no params data found
[ 1224.120006][ T3561] bridge_slave_1: left allmulticast mode
[ 1224.120035][ T3561] bridge_slave_1: left promiscuous mode
[ 1224.120269][ T3561] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1224.238582][ T3561] bridge_slave_0: left allmulticast mode
[ 1224.238609][ T3561] bridge_slave_0: left promiscuous mode
[ 1224.263747][ T3561] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1224.767367][ T6708] evm: overlay not supported
[ 1225.195750][ T5939] Bluetooth: hci0: command tx timeout
[ 1227.420324][ T5939] Bluetooth: hci0: command tx timeout
[ 1228.950719][ T3561] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1229.037528][ T3561] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1229.645113][ T5939] Bluetooth: hci0: command tx timeout
[ 1229.672566][ T3561] bond0 (unregistering): Released all slaves
[ 1230.223627][ T3561] tipc: Disabling bearer <udp:syz2>
[ 1230.228052][ T3561] tipc: Left network mode
[ 1230.364473][ T6451] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1230.364595][ T6451] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1230.364781][ T6451] bridge_slave_0: entered allmulticast mode
[ 1230.366908][ T6451] bridge_slave_0: entered promiscuous mode
[ 1230.470661][ T6451] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1230.470924][ T6451] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1230.471153][ T6451] bridge_slave_1: entered allmulticast mode
[ 1230.589946][ T6451] bridge_slave_1: entered promiscuous mode
[ 1230.596690][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1230.596717][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1230.600471][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1231.291913][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1231.797098][ T6451] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1231.818166][ T6451] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1232.824933][ T6451] team0: Port device team_slave_0 added
[ 1232.879584][ T6451] team0: Port device team_slave_1 added
[ 1233.156032][ T3561] hsr_slave_0: left promiscuous mode
[ 1233.206519][ T3561] hsr_slave_1: left promiscuous mode
[ 1233.207509][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1233.249681][ T3561] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1234.320876][ T7172] netlink: 148 bytes leftover after parsing attributes in process `syz.7.27234'.
[ 1234.320949][ T7172] netlink: 116 bytes leftover after parsing attributes in process `syz.7.27234'.
[ 1234.320964][ T7172] netlink: 32 bytes leftover after parsing attributes in process `syz.7.27234'.
[ 1236.049465][   T37] audit: type=1400 audit(4018.373:873): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=7227 comm="syz.7.27259" daddr=fc00::5 dest=20001
[ 1236.766839][ T7254] netlink: 'syz.1.27271': attribute type 11 has an invalid length.
[ 1239.339271][ T3561] team0 (unregistering): Port device team_slave_1 removed
[ 1239.699924][ T3561] team0 (unregistering): Port device team_slave_0 removed
[ 1244.301974][ T6451] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1244.301992][ T6451] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1244.302019][ T6451] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1244.708939][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[ 1244.728888][ T6451] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1244.728901][ T6451] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1244.728916][ T6451] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1246.230032][ T7694] netlink: 12 bytes leftover after parsing attributes in process `syz.7.27461'.
[ 1247.079774][ T6451] hsr_slave_0: entered promiscuous mode
[ 1247.081086][ T6451] hsr_slave_1: entered promiscuous mode
[ 1247.082072][ T6451] debugfs: 'hsr0' already exists in 'hsr'
[ 1247.082098][ T6451] Cannot create hsr debugfs directory
[ 1247.409686][ T6081] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[ 1247.580739][ T6081] usb 2-1: Using ep0 maxpacket: 8
[ 1247.582917][ T6081] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[ 1247.582943][ T6081] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1247.679647][ T6081] pvrusb2: Hardware description: Terratec Grabster AV400
[ 1247.679666][ T6081] pvrusb2: **********
[ 1247.679673][ T6081] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[ 1247.679686][ T6081] pvrusb2: Important functionality might not be entirely working.
[ 1247.679696][ T6081] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[ 1247.679709][ T6081] pvrusb2: **********
[ 1247.877422][ T2360] pvrusb2: Invalid write control endpoint
[ 1247.990279][ T3561] IPVS: stop unused estimator thread 0...
[ 1248.109543][ T2360] pvrusb2: Invalid write control endpoint
[ 1248.109559][ T2360] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[ 1248.109569][ T2360] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[ 1248.109578][ T2360] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[ 1248.109588][ T2360] pvrusb2: Device being rendered inoperable
[ 1248.109663][ T2360] cx25840 3-0044: Unable to detect h/w, assuming cx23887
[ 1248.109719][ T2360] cx25840 3-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_b)
[ 1248.181329][ T2360] pvrusb2: Attached sub-driver cx25840
[ 1248.181344][ T2360] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[ 1248.181361][ T2360] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[ 1248.199143][ T6081] usb 2-1: USB disconnect, device number 46
[ 1248.702115][ T6451] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1248.792134][ T6451] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1248.875773][ T6451] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1248.948217][ T6451] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1249.386737][ T7893] faux_driver vgem: [drm] Unknown color mode 127; guessing buffer size.
[ 1251.871759][ T6451] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1251.992649][ T6451] 8021q: adding VLAN 0 to HW filter on device team0
[ 1252.040185][ T3447] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1252.040342][ T3447] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1252.123037][T26439] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1252.123248][T26439] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1253.804681][ T6451] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1257.262448][ T6451] veth0_vlan: entered promiscuous mode
[ 1257.286584][ T6451] veth1_vlan: entered promiscuous mode
[ 1257.422155][ T6451] veth0_macvtap: entered promiscuous mode
[ 1257.443000][ T6451] veth1_macvtap: entered promiscuous mode
[ 1257.479889][ T6451] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1257.521386][ T6451] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1257.564804][T24567] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1257.570028][T24567] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1257.572063][T24567] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1257.572102][T24567] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1258.377995][T30348] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1258.378016][T30348] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1258.495290][T26439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1258.495313][T26439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1274.312280][ T5939] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[ 1274.312312][ T5939] CPU: 1 UID: 0 PID: 5939 Comm: kworker/u9:4 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1274.312342][ T5939] Tainted: [L]=SOFTLOCKUP
[ 1274.312350][ T5939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1274.312365][ T5939] Workqueue: hci0 hci_rx_work
[ 1274.312390][ T5939] Call Trace:
[ 1274.312409][ T5939]  <TASK>
[ 1274.312418][ T5939]  dump_stack_lvl+0xe8/0x150
[ 1274.312449][ T5939]  sysfs_create_dir_ns+0x259/0x280
[ 1274.312478][ T5939]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1274.312506][ T5939]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 1274.312538][ T5939]  ? rt_spin_unlock+0x161/0x200
[ 1274.312568][ T5939]  kobject_add_internal+0x6b1/0xcd0
[ 1274.312600][ T5939]  kobject_add+0x155/0x220
[ 1274.312628][ T5939]  ? __pfx_kobject_add+0x10/0x10
[ 1274.312657][ T5939]  ? get_device_parent+0x370/0x3a0
[ 1274.312684][ T5939]  device_add+0x408/0xb80
[ 1274.312710][ T5939]  hci_conn_add_sysfs+0xd5/0x210
[ 1274.312742][ T5939]  le_conn_complete_evt+0xf1d/0x1420
[ 1274.312777][ T5939]  ? __pfx_le_conn_complete_evt+0x10/0x10
[ 1274.312802][ T5939]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1274.312823][ T5939]  ? lockdep_hardirqs_on+0x7b/0x110
[ 1274.312846][ T5939]  ? skb_pull_data+0xfb/0x200
[ 1274.312878][ T5939]  hci_le_conn_complete_evt+0x187/0x480
[ 1274.312911][ T5939]  hci_event_packet+0x78f/0x1260
[ 1274.312942][ T5939]  ? __pfx_hci_le_meta_evt+0x10/0x10
[ 1274.312968][ T5939]  ? __pfx_hci_event_packet+0x10/0x10
[ 1274.312993][ T5939]  ? rt_spin_unlock+0x150/0x200
[ 1274.313028][ T5939]  ? hci_send_to_monitor+0xe2/0x590
[ 1274.313058][ T5939]  hci_rx_work+0x3ee/0x1060
[ 1274.313086][ T5939]  ? process_scheduled_works+0x9ef/0x1770
[ 1274.313111][ T5939]  process_scheduled_works+0xad1/0x1770
[ 1274.313166][ T5939]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1274.313186][ T5939]  ? do_raw_spin_lock+0x121/0x290
[ 1274.313227][ T5939]  worker_thread+0x8a0/0xda0
[ 1274.313278][ T5939]  kthread+0x711/0x8a0
[ 1274.313309][ T5939]  ? __pfx_worker_thread+0x10/0x10
[ 1274.313331][ T5939]  ? __pfx_kthread+0x10/0x10
[ 1274.313355][ T5939]  ? rt_spin_unlock+0x150/0x200
[ 1274.313385][ T5939]  ? rt_spin_unlock+0x161/0x200
[ 1274.313414][ T5939]  ? __pfx_kthread+0x10/0x10
[ 1274.313442][ T5939]  ret_from_fork+0x510/0xa50
[ 1274.313468][ T5939]  ? __pfx_ret_from_fork+0x10/0x10
[ 1274.313488][ T5939]  ? __switch_to+0xc9e/0x1480
[ 1274.313522][ T5939]  ? __pfx_kthread+0x10/0x10
[ 1274.313550][ T5939]  ret_from_fork_asm+0x1a/0x30
[ 1274.313596][ T5939]  </TASK>
[ 1274.313628][ T5939] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1274.313674][ T5939] Bluetooth: hci0: failed to register connection device
[ 1274.345920][   T37] audit: type=1326 audit(4054.183:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8386 comm="syz.8.27671" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x0
[ 1276.603631][   T37] audit: type=1804 audit(4056.278:875): pid=8418 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.8.27682" name="/newroot/8/file0" dev="fuse" ino=1 res=1 errno=0
[ 1281.420825][ T5939] Bluetooth: hci0: command 0x0406 tx timeout
[ 1285.680824][ T8640] netlink: 12 bytes leftover after parsing attributes in process `syz.1.27753'.
[ 1292.550824][   T37] audit: type=1400 audit(4071.200:876): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=8703 comm="syz.8.27778" daddr=::ffff:172.20.20.20 dest=20001
[ 1293.726609][ T8726] netlink: 12 bytes leftover after parsing attributes in process `syz.8.27783'.
[ 1293.752007][   T37] audit: type=1326 audit(4072.294:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1293.752063][   T37] audit: type=1326 audit(4072.303:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1293.752087][   T37] audit: type=1326 audit(4072.303:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1293.752110][   T37] audit: type=1326 audit(4072.303:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1293.752132][   T37] audit: type=1326 audit(4072.303:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1293.752155][   T37] audit: type=1326 audit(4072.303:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1293.752177][   T37] audit: type=1326 audit(4072.303:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1293.752200][   T37] audit: type=1326 audit(4072.313:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1293.752224][   T37] audit: type=1326 audit(4072.313:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8713 comm="syz.8.27783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1296.422823][ T5937] Bluetooth: hci2: command 0x0406 tx timeout
[ 1304.529661][   T37] kauditd_printk_skb: 3 callbacks suppressed
[ 1304.529679][   T37] audit: type=1400 audit(4082.401:889): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=8878 comm="syz.1.27838" daddr=fc01::
[ 1310.620299][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[ 1314.435087][ T9009] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1317.732827][ T5939] Bluetooth: hci0: unexpected event for opcode 0x2016
[ 1323.133900][   T37] audit: type=1400 audit(4099.325:890): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=9104 comm="syz.1.27918" daddr=fe80::aa
[ 1323.676233][   T37] audit: type=1400 audit(4100.297:891): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=9123 comm="syz.1.27928" daddr=::ffff:172.20.20.20 dest=20001
[ 1329.763934][ T9193] netlink: 12 bytes leftover after parsing attributes in process `syz.8.27949'.
[ 1341.927554][ T9375] kvm: kvm [9368]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xc500
[ 1341.927668][ T9375] kvm: kvm [9368]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[ 1346.247939][   T37] audit: type=1326 audit(4121.176:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.248213][   T37] audit: type=1326 audit(4121.185:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.248421][   T37] audit: type=1326 audit(4121.185:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.248635][   T37] audit: type=1326 audit(4121.204:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.248801][   T37] audit: type=1326 audit(4121.204:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.248846][   T37] audit: type=1326 audit(4121.213:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.249083][   T37] audit: type=1326 audit(4121.213:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.249264][   T37] audit: type=1326 audit(4121.223:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.249482][   T37] audit: type=1326 audit(4121.223:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1346.249648][   T37] audit: type=1326 audit(4121.223:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9442 comm="syz.8.28047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1358.150945][ T5937] Bluetooth: hci0: command 0x0406 tx timeout
[ 1361.516668][ T5371] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1361.677058][ T5371] usb 9-1: Using ep0 maxpacket: 32
[ 1361.679426][ T5371] usb 9-1: config 0 has an invalid interface number: 240 but max is 0
[ 1361.679452][ T5371] usb 9-1: config 0 has no interface number 0
[ 1361.679494][ T5371] usb 9-1: config 0 interface 240 has no altsetting 0
[ 1361.682625][ T5371] usb 9-1: New USB device found, idVendor=78c9, idProduct=823d, bcdDevice=be.d4
[ 1361.682653][ T5371] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1361.682674][ T5371] usb 9-1: Product: syz
[ 1361.682688][ T5371] usb 9-1: Manufacturer: syz
[ 1361.682703][ T5371] usb 9-1: SerialNumber: syz
[ 1361.716242][ T5371] usb 9-1: config 0 descriptor??
[ 1361.722560][ T5371] usb 9-1: bad CDC descriptors
[ 1363.721235][ T9523] usb 9-1: USB disconnect, device number 2
[ 1368.637290][   T37] kauditd_printk_skb: 10 callbacks suppressed
[ 1368.637341][   T37] audit: type=1400 audit(4142.335:912): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=9721 comm="syz.1.28121" daddr=::ffff:172.20.20.20 dest=20001
[ 1376.576055][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[ 1387.141953][ T5939] Bluetooth: hci2: unexpected event for opcode 0x2016
[ 1389.812528][   T37] audit: type=1400 audit(4162.138:913): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=9957 comm="syz.8.28220" daddr=fe80::bb dest=20002
[ 1400.268500][   T37] audit: type=1400 audit(4171.918:914): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=10038 comm="syz.8.28230" daddr=::ffff:172.20.20.20 dest=20001
[ 1401.431479][ T5371] IPVS: starting estimator thread 0...
[ 1401.560684][T10057] IPVS: using max 8 ests per chain, 19200 per kthread
[ 1402.971580][ T6081] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1403.185130][ T6081] usb 9-1: Using ep0 maxpacket: 8
[ 1403.198563][ T6081] usb 9-1: config 0 has no interfaces?
[ 1403.236860][ T6081] usb 9-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[ 1403.236890][ T6081] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1403.236908][ T6081] usb 9-1: Product: syz
[ 1403.236922][ T6081] usb 9-1: Manufacturer: syz
[ 1403.236937][ T6081] usb 9-1: SerialNumber: syz
[ 1403.275034][ T6081] usb 9-1: config 0 descriptor??
[ 1406.097526][ T6284] usb 9-1: USB disconnect, device number 3
[ 1409.894016][T10172] netlink: 260 bytes leftover after parsing attributes in process `syz.7.28295'.
[ 1410.048320][   T37] audit: type=1400 audit(4181.063:915): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=10149 comm="syz.8.28285" daddr=fe88::109 dest=20000
[ 1422.995440][   T37] audit: type=1400 audit(4191.778:916): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=10284 comm="syz.1.28337" dest=20000
[ 1428.102123][T10396] netlink: 107460 bytes leftover after parsing attributes in process `syz.1.28382'.
[ 1432.842739][   T37] audit: type=1400 audit(4202.371:917): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=10458 comm="syz.8.28407" daddr=::ffff:172.20.20.20 dest=20001
[ 1434.640194][   T37] audit: type=1400 audit(4204.064:918): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=10501 comm="syz.8.28425" daddr=::ffff:172.20.20.20 dest=20001
[ 1436.763354][T13052] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1436.928317][T13052] usb 9-1: Using ep0 maxpacket: 8
[ 1436.947840][T13052] usb 9-1: New USB device found, idVendor=0421, idProduct=798f, bcdDevice=86.54
[ 1436.947859][T13052] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1436.947871][T13052] usb 9-1: Product: syz
[ 1436.947879][T13052] usb 9-1: Manufacturer: syz
[ 1436.947887][T13052] usb 9-1: SerialNumber: syz
[ 1436.996367][T13052] usb 9-1: config 0 descriptor??
[ 1437.024693][T13052] cdc_phonet 9-1:0.0: skipping garbage
[ 1437.024718][T13052] cdc_phonet 9-1:0.0: probe with driver cdc_phonet failed with error -22
[ 1437.239022][T13052] usb 9-1: USB disconnect, device number 4
[ 1438.522030][ T5371] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[ 1438.683420][ T5371] usb 9-1: Using ep0 maxpacket: 8
[ 1438.701014][ T5371] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1438.723369][ T5371] usb 9-1: New USB device found, idVendor=22b8, idProduct=6425, bcdDevice=d3.6c
[ 1438.723392][ T5371] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1438.723409][ T5371] usb 9-1: Product: syz
[ 1438.723417][ T5371] usb 9-1: Manufacturer: syz
[ 1438.723425][ T5371] usb 9-1: SerialNumber: syz
[ 1438.771726][ T5371] usb 9-1: config 0 descriptor??
[ 1438.830995][ T5371] usb 9-1: bad CDC descriptors
[ 1438.907936][ T5371] usb 9-1: unsupported MDLM descriptors
[ 1438.908606][ T5371] cdc_acm 9-1:0.0: Zero length descriptor references
[ 1438.908639][ T5371] cdc_acm 9-1:0.0: probe with driver cdc_acm failed with error -22
[ 1439.059503][T13052] usb 9-1: USB disconnect, device number 5
[ 1440.703816][ T9213] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1440.870547][ T9213] usb 9-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1440.870606][ T9213] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1440.870629][ T9213] usb 9-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1440.870671][ T9213] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1440.870694][ T9213] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1440.934179][ T9213] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[ 1440.993574][ T9213] snd-usb-audio 9-1:27.0: probe with driver snd-usb-audio failed with error -2
[ 1440.997736][T10408] udevd[10408]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1441.207173][ T6081] usb 9-1: USB disconnect, device number 6
[ 1441.367050][ T1454] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[ 1441.538017][ T1454] usb 2-1: Using ep0 maxpacket: 8
[ 1441.539903][ T1454] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1441.539973][ T1454] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1441.542759][ T1454] usb 2-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.10
[ 1441.542785][ T1454] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1441.542804][ T1454] usb 2-1: Product: syz
[ 1441.542817][ T1454] usb 2-1: Manufacturer: syz
[ 1441.542830][ T1454] usb 2-1: SerialNumber: syz
[ 1441.558457][ T1454] usb 2-1: config 0 descriptor??
[ 1441.617619][ T1454] radioshark2 2-1:0.0: Invalid radioSHARK2 device
[ 1441.617656][ T1454] radioshark2 2-1:0.0: probe with driver radioshark2 failed with error -22
[ 1441.618172][ T1454] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1441.825271][ T9213] usb 2-1: USB disconnect, device number 47
[ 1441.843871][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[ 1442.410275][ T5939] Bluetooth: hci0: unexpected event for opcode 0x2016
[ 1443.056793][ T9213] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[ 1443.164749][   T37] audit: type=1400 audit(4212.030:919): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=10867 comm="syz.8.28565" daddr=::ffff:172.20.20.20 dest=20001
[ 1443.507726][ T9213] usb 2-1: config 0 has an invalid interface number: 64 but max is 0
[ 1443.507786][ T9213] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1443.507839][ T9213] usb 2-1: config 0 has no interface number 0
[ 1444.020805][ T9213] usb 2-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[ 1444.020836][ T9213] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1444.020856][ T9213] usb 2-1: Product: syz
[ 1444.020871][ T9213] usb 2-1: Manufacturer: syz
[ 1444.020885][ T9213] usb 2-1: SerialNumber: syz
[ 1444.030589][ T9213] usb 2-1: config 0 descriptor??
[ 1444.078711][ T9213] uvcvideo 2-1:0.64: Found UVC 0.00 device syz (046d:0823)
[ 1444.078745][ T9213] uvcvideo 2-1:0.64: No valid video chain found.
[ 1444.280704][ T1454] usb 2-1: USB disconnect, device number 48
[ 1445.142426][ T9213] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[ 1445.302789][ T9213] usb 9-1: Using ep0 maxpacket: 32
[ 1445.305142][ T9213] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1445.305177][ T9213] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[ 1445.305201][ T9213] usb 9-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[ 1445.307939][ T9213] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1445.307966][ T9213] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1445.307985][ T9213] usb 9-1: SerialNumber: syz
[ 1445.382719][T10943] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22
[ 1445.398438][ T9213] cdc_acm 9-1:1.0: Control and data interfaces are not separated!
[ 1445.612847][ T1454] usb 2-1: new low-speed USB device number 49 using dummy_hcd
[ 1445.634682][ T9213] cdc_acm 9-1:1.0: ttyACM0: USB ACM device
[ 1445.657798][ T9213] usb 9-1: USB disconnect, device number 7
[ 1445.786778][ T1454] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1445.790573][ T1454] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1445.790627][ T1454] usb 2-1: config 1 interface 0 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1445.790653][ T1454] usb 2-1: config 1 interface 0 has no altsetting 0
[ 1445.796316][ T1454] usb 2-1: string descriptor 0 read error: -22
[ 1445.796456][ T1454] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1445.796479][ T1454] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1445.857612][ T1454] usb 2-1: bad CDC descriptors
[ 1446.054733][ T1454] usb 2-1: USB disconnect, device number 49
[ 1446.981824][ T9213] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[ 1447.143631][ T9213] usb 2-1: too many configurations: 9, using maximum allowed: 8
[ 1447.148686][ T9213] usb 2-1: config 64 has 1 interface, different from the descriptor's value: 9
[ 1447.148745][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1447.148772][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[ 1447.148795][ T9213] usb 2-1: config 64 interface 0 has no altsetting 0
[ 1447.150293][ T9213] usb 2-1: config 64 has 1 interface, different from the descriptor's value: 9
[ 1447.150347][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1447.150373][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[ 1447.150394][ T9213] usb 2-1: config 64 interface 0 has no altsetting 0
[ 1447.151514][ T9213] usb 2-1: config 64 has 1 interface, different from the descriptor's value: 9
[ 1447.151568][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1447.151594][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[ 1447.151614][ T9213] usb 2-1: config 64 interface 0 has no altsetting 0
[ 1447.152713][ T9213] usb 2-1: config 64 has 1 interface, different from the descriptor's value: 9
[ 1447.152767][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1447.185097][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[ 1447.185126][ T9213] usb 2-1: config 64 interface 0 has no altsetting 0
[ 1448.576041][ T9213] usb 2-1: config 64 has 1 interface, different from the descriptor's value: 9
[ 1448.576099][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1448.576125][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[ 1448.576148][ T9213] usb 2-1: config 64 interface 0 has no altsetting 0
[ 1448.577305][ T9213] usb 2-1: config 64 has 1 interface, different from the descriptor's value: 9
[ 1448.577359][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1448.577386][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[ 1448.577408][ T9213] usb 2-1: config 64 interface 0 has no altsetting 0
[ 1448.578568][ T9213] usb 2-1: config 64 has 1 interface, different from the descriptor's value: 9
[ 1448.578620][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1448.578646][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[ 1448.578668][ T9213] usb 2-1: config 64 interface 0 has no altsetting 0
[ 1448.579814][ T9213] usb 2-1: config 64 has 1 interface, different from the descriptor's value: 9
[ 1448.579864][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1448.579898][ T9213] usb 2-1: config 64 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[ 1448.579919][ T9213] usb 2-1: config 64 interface 0 has no altsetting 0
[ 1448.628903][ T9213] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[ 1448.628932][ T9213] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[ 1448.628952][ T9213] usb 2-1: Product: syz
[ 1448.628966][ T9213] usb 2-1: Manufacturer: syz
[ 1448.628981][ T9213] usb 2-1: SerialNumber: syz
[ 1448.846787][ T9213] yurex 2-1:64.0: Could not submitting URB
[ 1448.846982][ T9213] yurex 2-1:64.0: probe with driver yurex failed with error -5
[ 1449.100194][ T1454] usb 2-1: USB disconnect, device number 50
[ 1449.409688][ T8312] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[ 1449.593820][ T8312] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[ 1449.593851][ T8312] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[ 1449.593882][ T8312] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1449.596412][ T8312] usb 9-1: New USB device found, idVendor=07c9, idProduct=0012, bcdDevice=c2.f4
[ 1449.596439][ T8312] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1449.596457][ T8312] usb 9-1: Product: syz
[ 1449.596470][ T8312] usb 9-1: Manufacturer: syz
[ 1449.596482][ T8312] usb 9-1: SerialNumber: syz
[ 1449.610527][ T8312] usb 9-1: config 0 descriptor??
[ 1449.859441][ T8312] usb 9-1: USB disconnect, device number 8
[ 1450.874964][ T8312] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1450.973549][ T9692] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[ 1451.035303][ T8312] usb 9-1: Using ep0 maxpacket: 32
[ 1451.037961][ T8312] usb 9-1: config 0 has an invalid interface number: 176 but max is 0
[ 1451.037987][ T8312] usb 9-1: config 0 has no interface number 0
[ 1451.040824][ T8312] usb 9-1: New USB device found, idVendor=1a0a, idProduct=0108, bcdDevice=ef.d2
[ 1451.040851][ T8312] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1451.040870][ T8312] usb 9-1: Product: syz
[ 1451.040883][ T8312] usb 9-1: Manufacturer: syz
[ 1451.040897][ T8312] usb 9-1: SerialNumber: syz
[ 1451.051889][ T8312] usb 9-1: config 0 descriptor??
[ 1451.153616][ T9692] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1451.154838][ T9692] usb 2-1: config 64 has an invalid interface number: 22 but max is 0
[ 1451.154862][ T9692] usb 2-1: config 64 has no interface number 0
[ 1451.154894][ T9692] usb 2-1: config 64 interface 22 has no altsetting 0
[ 1451.155814][ T8312] usb_ehset_test 9-1:0.176: probe with driver usb_ehset_test failed with error -32
[ 1451.162779][ T9692] usb 2-1: New USB device found, idVendor=084f, idProduct=0001, bcdDevice=94.0f
[ 1451.162816][ T9692] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1451.162836][ T9692] usb 2-1: Product: syz
[ 1451.162850][ T9692] usb 2-1: Manufacturer: syz
[ 1451.162865][ T9692] usb 2-1: SerialNumber: syz
[ 1451.357221][ T8312] usb 9-1: USB disconnect, device number 9
[ 1451.469903][ T9692] empeg 2-1:64.22: empeg converter detected
[ 1451.469968][ T9692] usb 2-1: active config #64 != 1 ??
[ 1451.501177][ T9692] usb 2-1: USB disconnect, device number 51
[ 1452.575463][ T9213] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[ 1452.735891][ T9213] usb 2-1: Using ep0 maxpacket: 16
[ 1452.755086][ T9213] usb 2-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[ 1452.755116][ T9213] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1452.755137][ T9213] usb 2-1: Product: syz
[ 1452.755152][ T9213] usb 2-1: Manufacturer: syz
[ 1452.755166][ T9213] usb 2-1: SerialNumber: syz
[ 1452.821618][ T9213] usb 2-1: config 0 descriptor??
[ 1452.894118][T11431] netlink: 'syz.7.28793': attribute type 3 has an invalid length.
[ 1453.555848][T14227] usb 2-1: USB disconnect, device number 52
[ 1454.024085][ T5939] Bluetooth: hci0: unexpected subevent 0x10 length: 28 > 2
[ 1454.535333][ T9692] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[ 1454.725123][ T9692] usb 2-1: Using ep0 maxpacket: 8
[ 1454.735464][ T9692] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1454.753233][ T9692] usb 2-1: config 7 has an invalid interface number: 59 but max is 0
[ 1454.753259][ T9692] usb 2-1: config 7 has no interface number 0
[ 1454.753302][ T9692] usb 2-1: config 7 interface 59 has no altsetting 0
[ 1454.783974][ T9692] usb 2-1: New USB device found, idVendor=0d46, idProduct=0078, bcdDevice=cc.70
[ 1454.784003][ T9692] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1454.784023][ T9692] usb 2-1: Product: syz
[ 1454.784038][ T9692] usb 2-1: Manufacturer: syz
[ 1454.784053][ T9692] usb 2-1: SerialNumber: syz
[ 1454.967714][T11533] netlink: 4 bytes leftover after parsing attributes in process `syz.8.28838'.
[ 1455.052716][ T9692] kobil_sct 2-1:7.59: KOBIL USB smart card terminal converter detected
[ 1455.076492][ T9692] usb 2-1: KOBIL USB smart card terminal converter now attached to ttyUSB0
[ 1455.096032][ T9692] usb 2-1: USB disconnect, device number 53
[ 1455.115276][ T9692] kobil ttyUSB0: KOBIL USB smart card terminal converter now disconnected from ttyUSB0
[ 1455.118010][ T9692] kobil_sct 2-1:7.59: device disconnected
[ 1455.139064][T10408] udevd[10408]: setting owner of /dev/bus/usb/002/053 to uid=0, gid=0 failed: No such file or directory
[ 1455.246170][T11560] syz.8.28845 (11560): /proc/11558/oom_adj is deprecated, please use /proc/11558/oom_score_adj instead.
[ 1455.611716][   T37] audit: type=1400 audit(4223.661:920): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=11574 comm="syz.7.28851" daddr=::ffff:172.20.20.20 dest=20001
[ 1456.783461][   T37] audit: type=1326 audit(4224.755:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1456.783727][   T37] audit: type=1326 audit(4224.755:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1456.784056][   T37] audit: type=1326 audit(4224.755:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1456.791617][   T37] audit: type=1326 audit(4224.755:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1456.792114][   T37] audit: type=1326 audit(4224.774:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1456.792160][   T37] audit: type=1326 audit(4224.774:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1456.792520][   T37] audit: type=1326 audit(4224.774:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1456.793114][   T37] audit: type=1326 audit(4224.774:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1456.793474][   T37] audit: type=1326 audit(4224.774:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11603 comm="syz.7.28865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fd0e169f749 code=0x7ffc0000
[ 1460.369727][T11786] netlink: 'syz.8.28950': attribute type 12 has an invalid length.
[ 1460.436390][ T8312] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 1460.598698][ T8312] usb 2-1: Using ep0 maxpacket: 8
[ 1460.602841][ T8312] usb 2-1: config 1 interface 0 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1460.602872][ T8312] usb 2-1: config 1 interface 0 has no altsetting 0
[ 1460.638055][ T8312] usb 2-1: New USB device found, idVendor=0b05, idProduct=184a, bcdDevice= 0.40
[ 1460.638085][ T8312] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1460.638136][ T8312] usb 2-1: Product: syz
[ 1460.638151][ T8312] usb 2-1: Manufacturer: syz
[ 1460.638165][ T8312] usb 2-1: SerialNumber: syz
[ 1460.939725][ T8312] usbhid 2-1:1.0: can't add hid device: -71
[ 1460.939844][ T8312] usbhid 2-1:1.0: probe with driver usbhid failed with error -71
[ 1460.969721][ T8312] usb 2-1: USB disconnect, device number 54
[ 1461.058560][T11832] netlink: 200 bytes leftover after parsing attributes in process `syz.7.28969'.
[ 1461.684832][T11873] netlink: 'syz.7.28989': attribute type 1 has an invalid length.
[ 1461.990631][T11892] netlink: 12 bytes leftover after parsing attributes in process `syz.8.28997'.
[ 1462.189613][T11902] netlink: 48 bytes leftover after parsing attributes in process `syz.8.29000'.
[ 1462.189642][T11902] netlink: 48 bytes leftover after parsing attributes in process `syz.8.29000'.
[ 1462.870414][   T37] kauditd_printk_skb: 1 callbacks suppressed
[ 1462.870431][   T37] audit: type=1326 audit(4230.449:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11943 comm="syz.1.29023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1462.870482][   T37] audit: type=1326 audit(4230.449:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11943 comm="syz.1.29023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1462.890816][   T37] audit: type=1326 audit(4230.468:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11943 comm="syz.1.29023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1462.891117][   T37] audit: type=1326 audit(4230.468:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11943 comm="syz.1.29023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1463.128562][T11960] tipc: Can't bind to reserved service type 2
[ 1463.846721][T12009] netlink: 28 bytes leftover after parsing attributes in process `syz.8.29055'.
[ 1465.344943][T12109] tmpfs: Bad value for 'mpol'
[ 1465.570325][ T5939] Bluetooth: hci2: unexpected event for opcode 0x1003
[ 1465.599888][T12127] dlm: no locking on control device
[ 1467.805404][ T9213] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[ 1467.830029][T12268] netlink: 8 bytes leftover after parsing attributes in process `syz.7.29178'.
[ 1467.968239][ T9213] usb 9-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1467.972773][ T9213] usb 9-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1467.972801][ T9213] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1467.972821][ T9213] usb 9-1: Product: syz
[ 1467.972836][ T9213] usb 9-1: Manufacturer: syz
[ 1467.972850][ T9213] usb 9-1: SerialNumber: syz
[ 1468.048652][T12273] bond3: entered allmulticast mode
[ 1468.049201][T12273] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1468.088488][ T9213] usb 9-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[ 1468.166776][T12319] comedi comedi0: aio_aio12_8: I/O port conflict (0xb02f,32)
[ 1468.487338][   T37] audit: type=1400 audit(4235.704:935): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=12331 comm="syz.1.29192" daddr=::ffff:172.20.20.20 dest=20001
[ 1468.504902][ T9213] usb 9-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1468.505397][ T9213] dvbdev: DVB: registering new adapter (774 Friio White ISDB-T USB2.0)
[ 1468.505445][ T9213] usb 9-1: media controller created
[ 1468.594294][T12343] netlink: 8 bytes leftover after parsing attributes in process `syz.7.29195'.
[ 1468.601081][ T9213] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1468.717960][T12349] netlink: 8 bytes leftover after parsing attributes in process `syz.1.29199'.
[ 1468.821130][T12357] openvswitch: netlink: Flow key attribute not present in set flow.
[ 1469.037862][ T9213] usb 9-1: USB disconnect, device number 10
[ 1469.276916][   T37] audit: type=1400 audit(4236.433:936): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=12377 comm="syz.7.29206" daddr=::ffff:172.20.20.20 dest=20001
[ 1469.901890][ T5939] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1469.902406][ T5939] Bluetooth: hci2: Injecting HCI hardware error event
[ 1469.908937][ T5937] Bluetooth: hci2: hardware error 0x00
[ 1470.698350][T12485] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1472.222717][ T5937] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1472.280044][T12563] veth2: entered promiscuous mode
[ 1472.280072][T12563] veth2: entered allmulticast mode
[ 1472.464385][T12588] ubi31: attaching mtd0
[ 1472.507214][T12588] ubi31: scanning is finished
[ 1472.507233][T12588] ubi31: empty MTD device detected
[ 1472.967276][T12588] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1472.967303][T12588] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1472.967320][T12588] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1472.967336][T12588] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1472.967353][T12588] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1472.967368][T12588] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1472.967384][T12588] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3225307323
[ 1472.967404][T12588] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1472.974447][T12612] ubi31: background thread "ubi_bgt31d" started, PID 12612
[ 1473.238756][T12627] openvswitch: netlink: Unexpected mask (mask=240, allowed=10048)
[ 1473.472808][T12636] netlink: 8 bytes leftover after parsing attributes in process `syz.1.29323'.
[ 1473.577010][T12644] netlink: 'syz.8.29327': attribute type 4 has an invalid length.
[ 1473.793969][   T37] audit: type=1400 audit(4240.660:937): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=12648 comm="syz.7.29330" daddr=::ffff:172.20.20.20 dest=20001
[ 1474.218771][T12664] netlink: 24 bytes leftover after parsing attributes in process `syz.8.29337'.
[ 1474.530863][T12672] netlink: 5 bytes leftover after parsing attributes in process `syz.8.29341'.
[ 1474.531250][T12672] 0�X��D: renamed from macvtap0 (while UP)
[ 1474.604035][T12672] 0�X��D: entered allmulticast mode
[ 1474.604059][T12672] veth0_macvtap: entered allmulticast mode
[ 1474.604647][T12672] A link change request failed with some changes committed already. Interface 
30�X��D may have been left with an inconsistent configuration, please check.
[ 1475.173728][   T37] audit: type=1400 audit(4241.950:938): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=12710 comm="syz.8.29360" daddr=fe80::aa dest=20004
[ 1475.179641][T12713] bridge6: the hash_elasticity option has been deprecated and is always 16
[ 1475.254863][T12721] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1475.464929][T12732] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 3, id = 0
[ 1475.548269][   T37] audit: type=1326 audit(4242.296:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12739 comm="syz.8.29372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1475.548325][   T37] audit: type=1326 audit(4242.296:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12739 comm="syz.8.29372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1475.601247][   T37] audit: type=1326 audit(4242.352:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12739 comm="syz.8.29372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1475.601372][   T37] audit: type=1326 audit(4242.352:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12739 comm="syz.8.29372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1475.601530][   T37] audit: type=1326 audit(4242.352:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12739 comm="syz.8.29372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1475.833652][T12757] netlink: 8 bytes leftover after parsing attributes in process `syz.1.29379'.
[ 1476.135949][T12777] libceph: resolve '
[ 1476.135949][T12777] -&���f�Y�ǝ�a���2i�' (ret=-3): failed
[ 1476.176920][   T37] audit: type=1400 audit(4242.885:944): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=12778 comm="syz.7.29390" daddr=fe80::
[ 1476.350120][T12789] netlink: 'syz.1.29394': attribute type 28 has an invalid length.
[ 1477.756412][   T37] audit: type=1400 audit(4244.371:945): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=12856 comm="syz.1.29427" daddr=::ffff:172.20.20.20 dest=20001
[ 1478.082037][   T37] audit: type=1400 audit(4244.671:946): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=12873 comm="syz.8.29436" daddr=::ac14:140c
[ 1478.675876][T12914] netlink: 'syz.1.29456': attribute type 4 has an invalid length.
[ 1478.754837][T12914] veth1_macvtap: left promiscuous mode
[ 1479.270665][T12949] binder: 12948:12949 ioctl c018620c 200000000040 returned -22
[ 1480.053936][T12999] netlink: 12 bytes leftover after parsing attributes in process `syz.8.29498'.
[ 1481.484553][ T9213] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[ 1481.644911][ T9213] usb 9-1: Using ep0 maxpacket: 8
[ 1481.646800][ T9213] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1481.646846][ T9213] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1481.649304][ T9213] usb 9-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[ 1481.649333][ T9213] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1481.649353][ T9213] usb 9-1: Product: syz
[ 1481.649367][ T9213] usb 9-1: Manufacturer: syz
[ 1481.649381][ T9213] usb 9-1: SerialNumber: syz
[ 1481.705373][ T9213] usb 9-1: config 0 descriptor??
[ 1481.725816][ T9213] snd_usb_toneport 9-1:0.0: Line 6 TonePort UX2 found
[ 1481.943451][ T9213] snd_usb_toneport 9-1:0.0: cannot get proper max packet size
[ 1481.943758][ T9213] snd_usb_toneport 9-1:0.0: Line 6 TonePort UX2 now disconnected
[ 1481.971641][ T9213] snd_usb_toneport 9-1:0.0: probe with driver snd_usb_toneport failed with error -22
[ 1482.076952][T13143] netlink: 24 bytes leftover after parsing attributes in process `syz.1.29562'.
[ 1482.076981][T13143] vlan0: entered promiscuous mode
[ 1482.076991][T13143] bridge0: entered promiscuous mode
[ 1482.173152][ T1454] usb 9-1: USB disconnect, device number 11
[ 1483.182881][   T37] audit: type=1326 audit(4249.439:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13222 comm="syz.8.29598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1483.186447][   T37] audit: type=1326 audit(4249.449:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13222 comm="syz.8.29598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1483.186748][   T37] audit: type=1326 audit(4249.449:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13222 comm="syz.8.29598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1483.186896][   T37] audit: type=1326 audit(4249.449:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13222 comm="syz.8.29598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1483.187027][   T37] audit: type=1326 audit(4249.449:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13222 comm="syz.8.29598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1484.778623][T13303] netlink: 7 bytes leftover after parsing attributes in process `syz.7.29634'.
[ 1485.870037][T13371] overlayfs: conflicting options: userxattr,redirect_dir=on
[ 1486.010629][T13381] netlink: 288 bytes leftover after parsing attributes in process `syz.1.29670'.
[ 1487.738480][T13472] binder: 13470:13472 ioctl c018620c 200000000240 returned -1
[ 1487.762824][T13474] openvswitch: netlink: Missing key (keys=40, expected=2000)
[ 1488.601772][T13532] netlink: 8 bytes leftover after parsing attributes in process `syz.8.29741'.
[ 1489.097119][T13569] netlink: 'syz.1.29757': attribute type 32 has an invalid length.
[ 1489.097143][T13569] netlink: 40 bytes leftover after parsing attributes in process `syz.1.29757'.
[ 1489.107060][ T6081] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[ 1489.287058][ T6081] usb 9-1: config 0 has an invalid interface number: 64 but max is 0
[ 1489.287085][ T6081] usb 9-1: config 0 has no interface number 0
[ 1489.289543][ T6081] usb 9-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[ 1489.289571][ T6081] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1489.289590][ T6081] usb 9-1: Product: syz
[ 1489.289604][ T6081] usb 9-1: Manufacturer: syz
[ 1489.289618][ T6081] usb 9-1: SerialNumber: syz
[ 1489.339824][ T6081] usb 9-1: config 0 descriptor??
[ 1489.480097][   T37] audit: type=1400 audit(4255.330:952): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=13591 comm="syz.7.29771" daddr=fe88::408
[ 1489.595259][ T6081] uvcvideo 9-1:0.64: Found Unit with invalid ID 0
[ 1489.595391][ T6081] uvcvideo 9-1:0.64: Found UVC 0.08 device syz (046d:0823)
[ 1489.595535][ T6081] uvcvideo 9-1:0.64: No valid video chain found.
[ 1489.658415][ T6081] usb 9-1: USB disconnect, device number 12
[ 1489.943272][T13627] netlink: 8 bytes leftover after parsing attributes in process `syz.1.29780'.
[ 1489.943303][T13627] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1490.618248][ T6169] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[ 1490.782180][ T6169] usb 2-1: Using ep0 maxpacket: 16
[ 1490.784249][ T6169] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1490.784280][ T6169] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1490.784303][ T6169] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1490.784334][ T6169] usb 2-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[ 1490.784356][ T6169] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1490.801872][ T6169] usb 2-1: config 0 descriptor??
[ 1490.867469][ T6169] usbhid 2-1:0.0: can't add hid device: -22
[ 1490.867536][ T6169] usbhid 2-1:0.0: probe with driver usbhid failed with error -22
[ 1491.100529][ T9692] usb 2-1: USB disconnect, device number 55
[ 1491.621491][   T37] audit: type=1400 audit(4257.331:953): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=13750 comm="syz.8.29832" daddr=fe80::aa dest=20001
[ 1492.282789][   T37] audit: type=1326 audit(4257.948:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13794 comm="syz.1.29852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1492.283196][   T37] audit: type=1326 audit(4257.948:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13794 comm="syz.1.29852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1492.287668][   T37] audit: type=1326 audit(4257.957:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13794 comm="syz.1.29852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1492.308257][   T37] audit: type=1326 audit(4257.976:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13794 comm="syz.1.29852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1492.308556][   T37] audit: type=1326 audit(4257.976:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13794 comm="syz.1.29852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1492.308908][   T37] audit: type=1326 audit(4257.976:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13794 comm="syz.1.29852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1492.309278][   T37] audit: type=1326 audit(4257.976:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13794 comm="syz.1.29852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1492.309773][   T37] audit: type=1326 audit(4257.976:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13794 comm="syz.1.29852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1493.512023][T13858] program syz.7.29881 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1493.694207][T13868] usb usb8: usbfs: process 13868 (syz.7.29887) did not claim interface 0 before use
[ 1494.486423][T13914] netlink: 8 bytes leftover after parsing attributes in process `syz.8.29910'.
[ 1494.856123][   T37] kauditd_printk_skb: 1 callbacks suppressed
[ 1494.856141][   T37] audit: type=1326 audit(4260.360:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13933 comm="syz.1.29919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1494.856419][   T37] audit: type=1326 audit(4260.360:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13933 comm="syz.1.29919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1494.860124][   T37] audit: type=1326 audit(4260.360:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13933 comm="syz.1.29919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04391bf749 code=0x7ffc0000
[ 1495.123970][T13948] overlay: ./file0 is not a directory
[ 1495.373841][   T37] audit: type=1400 audit(4260.837:966): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=13967 comm="syz.1.29936" daddr=fc00:: dest=20000
[ 1495.459949][T13971] affs: No valid root block on device nbd1
[ 1495.798398][   T37] audit: type=1326 audit(4261.239:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13991 comm="syz.8.29951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1495.802304][   T37] audit: type=1326 audit(4261.239:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13991 comm="syz.8.29951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1495.803657][   T37] audit: type=1400 audit(4261.239:969): lsm=SMACK fn=smk_ipv6_check action=denied subject="_" object="veth1" requested=w pid=13993 comm="syz.1.29952" dest=20001
[ 1495.804318][   T37] audit: type=1326 audit(4261.239:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13991 comm="syz.8.29951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1495.804456][   T37] audit: type=1326 audit(4261.239:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13991 comm="syz.8.29951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1495.804601][   T37] audit: type=1326 audit(4261.239:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13991 comm="syz.8.29951" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cfc60f749 code=0x7ffc0000
[ 1495.982509][T14003] openvswitch: netlink: Missing valid actions attribute.
[ 1495.982541][T14003] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1497.416461][T14103] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1497.811264][T14130] netlink: 20 bytes leftover after parsing attributes in process `syz.8.30016'.
[ 1497.857917][T14134] bridge7: entered promiscuous mode
[ 1498.483387][T14167] netlink: 'syz.1.30031': attribute type 21 has an invalid length.
[ 1498.483412][T14167] netlink: 128 bytes leftover after parsing attributes in process `syz.1.30031'.
[ 1498.483487][T14167] netlink: 'syz.1.30031': attribute type 5 has an invalid length.
[ 1498.483501][T14167] netlink: 3 bytes leftover after parsing attributes in process `syz.1.30031'.
[ 1498.572181][T14170] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check.
[ 1499.249417][ T9213] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[ 1499.356630][T14230] netlink: 168 bytes leftover after parsing attributes in process `syz.8.30061'.
[ 1499.420329][ T9213] usb 2-1: Using ep0 maxpacket: 8
[ 1499.422193][ T9213] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1499.423420][ T9213] usb 2-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[ 1499.423445][ T9213] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[ 1499.423465][ T9213] usb 2-1: SerialNumber: syz
[ 1499.439199][ T9213] usb 2-1: config 0 descriptor??
[ 1499.467437][ T9213] uvcvideo 2-1:0.0: Found UVC 0.00 device <unnamed> (05ac:8501)
[ 1499.467563][ T9213] uvcvideo 2-1:0.0: Failed to create links for entity 255
[ 1499.467579][ T9213] uvcvideo 2-1:0.0: Failed to register entities (-22).
[ 1499.691154][ T9213] usb 2-1: USB disconnect, device number 56
[ 1500.432370][T14310] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[ 1500.432399][T14310] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[ 1500.540320][T14310] bond0: (slave netdevsim0): Releasing backup interface
[ 1500.565822][T14310] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1500.877242][T14337] netlink: 6032 bytes leftover after parsing attributes in process `syz.8.30104'.
[ 1501.038559][T14349] netlink: 8 bytes leftover after parsing attributes in process `syz.1.30108'.
[ 1501.903511][T14408] netlink: 8 bytes leftover after parsing attributes in process `syz.7.30139'.
[ 1501.903533][T14408] netlink: 20 bytes leftover after parsing attributes in process `syz.7.30139'.
[ 1503.356149][ T6081] ------------[ cut here ]------------
[ 1503.356164][ T6081] faux_driver vkms: [drm] vblank wait timed out on crtc 0
[ 1503.356186][ T6081] WARNING: drivers/gpu/drm/drm_vblank.c:1318 at drm_wait_one_vblank+0x39a/0x5c0, CPU#0: kworker/0:6/6081
[ 1503.356238][ T6081] Modules linked in:
[ 1503.356260][ T6081] CPU: 0 UID: 0 PID: 6081 Comm: kworker/0:6 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1503.356288][ T6081] Tainted: [L]=SOFTLOCKUP
[ 1503.356295][ T6081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1503.356309][ T6081] Workqueue: events drm_fb_helper_damage_work
[ 1503.356333][ T6081] RIP: 0010:drm_wait_one_vblank+0x587/0x5c0
[ 1503.356356][ T6081] Code: 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 74 08 4c 89 ef e8 ba d4 f6 fc 4d 8b 7d 00 48 89 df 4c 89 e6 4c 89 fa 8b 4c 24 04 <67> 48 0f b9 3a e9 d5 fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f
[ 1503.356374][ T6081] RSP: 0018:ffffc9000561f860 EFLAGS: 00010246
[ 1503.356391][ T6081] RAX: 1ffff11004762e00 RBX: ffffffff8ee5b070 RCX: 0000000000000000
[ 1503.356406][ T6081] RDX: ffffffff8b569b80 RSI: ffffffff8b584ca0 RDI: ffffffff8ee5b070
[ 1503.356421][ T6081] RBP: ffffc9000561f948 R08: 0000000000000000 R09: 0000000000000000
[ 1503.356434][ T6081] R10: dffffc0000000000 R11: fffffbfff1db66ef R12: ffffffff8b584ca0
[ 1503.356450][ T6081] R13: ffff888023b17000 R14: 1ffff92000ac3f10 R15: ffffffff8b569b80
[ 1503.356466][ T6081] FS:  0000000000000000(0000) GS:ffff888126cef000(0000) knlGS:0000000000000000
[ 1503.356483][ T6081] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1503.356497][ T6081] CR2: 0000001b2e720000 CR3: 000000007e68e000 CR4: 00000000003526f0
[ 1503.356515][ T6081] Call Trace:
[ 1503.356524][ T6081]  <TASK>
[ 1503.356538][ T6081]  ? __pfx_drm_wait_one_vblank+0x10/0x10
[ 1503.356559][ T6081]  ? rt_spin_unlock+0x150/0x200
[ 1503.356585][ T6081]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1503.356616][ T6081]  ? rt_spin_unlock+0x161/0x200
[ 1503.356653][ T6081]  ? drm_vblank_get+0x147/0x260
[ 1503.356695][ T6081]  drm_client_modeset_wait_for_vblank+0xc5/0xf0
[ 1503.356728][ T6081]  drm_fb_helper_damage_work+0xc9/0x650
[ 1503.356753][ T6081]  ? process_scheduled_works+0x9ef/0x1770
[ 1503.356781][ T6081]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[ 1503.356809][ T6081]  ? process_scheduled_works+0x9ef/0x1770
[ 1503.356829][ T6081]  ? process_scheduled_works+0x9ef/0x1770
[ 1503.356853][ T6081]  process_scheduled_works+0xad1/0x1770
[ 1503.356907][ T6081]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1503.356927][ T6081]  ? do_raw_spin_lock+0x121/0x290
[ 1503.356966][ T6081]  worker_thread+0x8a0/0xda0
[ 1503.357004][ T6081]  ? __kthread_parkme+0x7b/0x200
[ 1503.357063][ T6081]  kthread+0x711/0x8a0
[ 1503.357093][ T6081]  ? __pfx_worker_thread+0x10/0x10
[ 1503.357115][ T6081]  ? __pfx_kthread+0x10/0x10
[ 1503.357137][ T6081]  ? rt_spin_unlock+0x150/0x200
[ 1503.357167][ T6081]  ? rt_spin_unlock+0x161/0x200
[ 1503.357188][ T6081]  ? __pfx_kthread+0x10/0x10
[ 1503.357223][ T6081]  ret_from_fork+0x510/0xa50
[ 1503.357248][ T6081]  ? __pfx_ret_from_fork+0x10/0x10
[ 1503.357268][ T6081]  ? __switch_to+0xc9e/0x1480
[ 1503.357301][ T6081]  ? __pfx_kthread+0x10/0x10
[ 1503.357328][ T6081]  ret_from_fork_asm+0x1a/0x30
[ 1503.357373][ T6081]  </TASK>
[ 1503.357395][ T6081] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1503.357413][ T6081] CPU: 0 UID: 0 PID: 6081 Comm: kworker/0:6 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1503.357439][ T6081] Tainted: [L]=SOFTLOCKUP
[ 1503.357447][ T6081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1503.357459][ T6081] Workqueue: events drm_fb_helper_damage_work
[ 1503.357481][ T6081] Call Trace:
[ 1503.357490][ T6081]  <TASK>
[ 1503.357499][ T6081]  vpanic+0x1e0/0x670
[ 1503.357529][ T6081]  panic+0xb9/0xc0
[ 1503.357551][ T6081]  ? __pfx_panic+0x10/0x10
[ 1503.357587][ T6081]  ? ret_from_fork_asm+0x1a/0x30
[ 1503.357619][ T6081]  __warn+0x317/0x4b0
[ 1503.357643][ T6081]  ? drm_wait_one_vblank+0x39a/0x5c0
[ 1503.357668][ T6081]  ? drm_wait_one_vblank+0x39a/0x5c0
[ 1503.357689][ T6081]  __report_bug+0x288/0x500
[ 1503.357718][ T6081]  ? drm_wait_one_vblank+0x39a/0x5c0
[ 1503.357747][ T6081]  ? __pfx___report_bug+0x10/0x10
[ 1503.357795][ T6081]  report_bug_entry+0x19a/0x290
[ 1503.357824][ T6081]  ? drm_wait_one_vblank+0x587/0x5c0
[ 1503.357843][ T6081]  ? drm_wait_one_vblank+0x58c/0x5c0
[ 1503.357863][ T6081]  handle_bug+0xca/0x200
[ 1503.357885][ T6081]  exc_invalid_op+0x1a/0x50
[ 1503.357907][ T6081]  asm_exc_invalid_op+0x1a/0x20
[ 1503.357926][ T6081] RIP: 0010:drm_wait_one_vblank+0x587/0x5c0
[ 1503.357946][ T6081] Code: 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 74 08 4c 89 ef e8 ba d4 f6 fc 4d 8b 7d 00 48 89 df 4c 89 e6 4c 89 fa 8b 4c 24 04 <67> 48 0f b9 3a e9 d5 fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f
[ 1503.357963][ T6081] RSP: 0018:ffffc9000561f860 EFLAGS: 00010246
[ 1503.357981][ T6081] RAX: 1ffff11004762e00 RBX: ffffffff8ee5b070 RCX: 0000000000000000
[ 1503.357995][ T6081] RDX: ffffffff8b569b80 RSI: ffffffff8b584ca0 RDI: ffffffff8ee5b070
[ 1503.358010][ T6081] RBP: ffffc9000561f948 R08: 0000000000000000 R09: 0000000000000000
[ 1503.358023][ T6081] R10: dffffc0000000000 R11: fffffbfff1db66ef R12: ffffffff8b584ca0
[ 1503.358039][ T6081] R13: ffff888023b17000 R14: 1ffff92000ac3f10 R15: ffffffff8b569b80
[ 1503.358079][ T6081]  ? __pfx_drm_wait_one_vblank+0x10/0x10
[ 1503.358099][ T6081]  ? rt_spin_unlock+0x150/0x200
[ 1503.358124][ T6081]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1503.358172][ T6081]  ? rt_spin_unlock+0x161/0x200
[ 1503.358212][ T6081]  ? drm_vblank_get+0x147/0x260
[ 1503.358235][ T6081]  drm_client_modeset_wait_for_vblank+0xc5/0xf0
[ 1503.358265][ T6081]  drm_fb_helper_damage_work+0xc9/0x650
[ 1503.358290][ T6081]  ? process_scheduled_works+0x9ef/0x1770
[ 1503.358318][ T6081]  ? __pfx_drm_fb_helper_damage_work+0x10/0x10
[ 1503.358345][ T6081]  ? process_scheduled_works+0x9ef/0x1770
[ 1503.358365][ T6081]  ? process_scheduled_works+0x9ef/0x1770
[ 1503.358388][ T6081]  process_scheduled_works+0xad1/0x1770
[ 1503.358441][ T6081]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1503.358460][ T6081]  ? do_raw_spin_lock+0x121/0x290
[ 1503.358501][ T6081]  worker_thread+0x8a0/0xda0
[ 1503.358537][ T6081]  ? __kthread_parkme+0x7b/0x200
[ 1503.358571][ T6081]  kthread+0x711/0x8a0
[ 1503.358600][ T6081]  ? __pfx_worker_thread+0x10/0x10
[ 1503.358622][ T6081]  ? __pfx_kthread+0x10/0x10
[ 1503.358643][ T6081]  ? rt_spin_unlock+0x150/0x200
[ 1503.358673][ T6081]  ? rt_spin_unlock+0x161/0x200
[ 1503.358709][ T6081]  ? __pfx_kthread+0x10/0x10
[ 1503.358736][ T6081]  ret_from_fork+0x510/0xa50
[ 1503.358764][ T6081]  ? __pfx_ret_from_fork+0x10/0x10
[ 1503.358783][ T6081]  ? __switch_to+0xc9e/0x1480
[ 1503.358815][ T6081]  ? __pfx_kthread+0x10/0x10
[ 1503.358842][ T6081]  ret_from_fork_asm+0x1a/0x30
[ 1503.358886][ T6081]  </TASK>
[ 1503.359382][ T6081] Kernel Offset: disabled