last executing test programs:

14.868628557s ago: executing program 2 (id=479):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
sendfile(0xffffffffffffffff, r2, 0x0, 0x40008)
r3 = openat$sw_sync_info(0xffffffffffffff9c, 0x0, 0x80002, 0x0)
setsockopt$MRT6_INIT(r3, 0x29, 0xc8, 0x0, 0x0)
r4 = signalfd4(r0, &(0x7f0000000080)={[0xc658]}, 0x8, 0x800)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f00000001c0)={0x79, 0x0, 0x2b})
sendmsg$key(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="02080000010000000000000100000000"], 0x18}}, 0x0)
io_setup(0x30, &(0x7f0000000600))
pipe2$9p(&(0x7f00000000c0), 0x4000)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0))
r5 = syz_open_dev$vim2m(&(0x7f0000000080), 0x6, 0x2)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x50, 0x10, 0x403, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x40}}]}]}, @IFLA_ALT_IFNAME={0x14, 0x35, 'ip_vti0\x00'}]}, 0x50}}, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000000)={0xc, 0x1, 0x2, "18000040000000f7c28dca4c2100000000000000000000048400", 0x50424752})
syz_io_uring_setup(0x241, &(0x7f0000000300)={0x0, 0xcdda, 0x8000, 0x1, 0x22f, 0x0, r5}, &(0x7f0000000380), &(0x7f00000003c0))
cachestat(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x0)

14.672786956s ago: executing program 3 (id=481):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x280142, 0x0)
dup(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
r3 = fsopen(&(0x7f0000000440)='nfsd\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

14.384199855s ago: executing program 1 (id=482):
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r1=>0x0})
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x28}, @val={0x8, 0x3, r1}, @void}}, ["", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000040}, 0x4)
getpriority(0x2, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x140, 0x82)
r3 = fanotify_init(0x4, 0x101801)
fanotify_mark(r3, 0x105, 0x40001032, r2, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x40, 0x14)
openat(0xffffffffffffff9c, 0x0, 0x281c2, 0x0)
syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
r4 = syz_open_dev$radio(&(0x7f0000001640), 0x0, 0x2)
syz_open_dev$radio(0x0, 0x0, 0x2)
preadv(r4, &(0x7f00000033c0)=[{&(0x7f0000000900)=""/223, 0xdf}], 0x1, 0x10006, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$key(0xf, 0x3, 0x2)
ioctl$sock_SIOCGIFCONF(r5, 0x8912, &(0x7f0000006000)=@req={0x28, &(0x7f0000005fc0)={'ip6gretap0\x00', @ifru_addrs=@nfc={0x27, 0x0, 0x0, 0x7}}})

12.988081456s ago: executing program 3 (id=484):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r4)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
r5 = socket$alg(0x26, 0x5, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000), 0x4)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0)
memfd_secret(0x0)
bpf$LINK_DETACH(0x22, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xf5ff, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001400000000114000000020a090100000000000000000000000014000000110001"], 0xd4}}, 0x0)

11.512134126s ago: executing program 0 (id=487):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000004780)={'syz_tun\x00', &(0x7f0000000300)=@ethtool_gstrings={0x1b, 0x6}})
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x10, &(0x7f0000000000)=ANY=[], 0x0, 0x3}, 0x94)
ioctl$VT_GETSTATE(0xffffffffffffffff, 0x5603, &(0x7f0000000000)={0xfff, 0xfffd, 0x8bc})

11.418000005s ago: executing program 4 (id=488):
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040), 0x6)
socket$unix(0x1, 0x1, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)

11.343802577s ago: executing program 1 (id=489):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
sched_setscheduler(0x0, 0x1, 0x0)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c0000001000030400000000fedbdf2500007400", @ANYRES32=r4, @ANYBLOB="00080000000000001c0012800b00010062726964676500000c00028006002700"], 0x3c}, 0x1, 0x1000000, 0x0, 0x800}, 0x0)

10.97796242s ago: executing program 0 (id=490):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680))
r1 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0, 0xffff1000})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = open(&(0x7f0000000180)='./file0\x00', 0x6440, 0x81)
mmap$snddsp(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x13, r2, 0xd000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
read$FUSE(0xffffffffffffffff, &(0x7f0000002500)={0x2020}, 0x2020)

10.871428449s ago: executing program 2 (id=491):
add_key$keyring(&(0x7f0000000380), 0x0, 0x0, 0x0, 0xfffffffffffffff9)
add_key$keyring(&(0x7f00000004c0), 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000002380)='net/ip_mr_cache\x00')
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0xfffffffc)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000000000000000010000001c000180060001000200000008000300"], 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x20, r7, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x20}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)

9.798412613s ago: executing program 2 (id=492):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x3, &(0x7f00000015c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

9.23951849s ago: executing program 3 (id=493):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r2, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000040)=0xabe)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_print_times', 0x169a82, 0x0)
sendfile(r3, r3, 0x0, 0x7)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000202, 0x0, 0x0)
munlockall()
madvise(&(0x7f0000597000/0x1000)=nil, 0x1000, 0x13)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0), 0x42782, 0x0)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000180))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x30, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0xffffffff]}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}]}]}, 0x30}}, 0x0)
faccessat(r4, &(0x7f0000000140)='./file0\x00', 0x102)
write$dsp(r5, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
close(r5)
fcntl$setsig(r4, 0xa, 0x21)
munlockall()
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

9.228639928s ago: executing program 4 (id=494):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680))
r1 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0, 0xffff1000})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = open(&(0x7f0000000180)='./file0\x00', 0x6440, 0x81)
mmap$snddsp(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x13, r2, 0xd000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
read$FUSE(0xffffffffffffffff, &(0x7f0000002500)={0x2020}, 0x2020)

8.738406848s ago: executing program 4 (id=495):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$sock(r2, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000040)=0xabe)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_print_times', 0x169a82, 0x0)
sendfile(r3, r3, 0x0, 0x7)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000202, 0x0, 0x0)
munlockall()
madvise(&(0x7f0000597000/0x1000)=nil, 0x1000, 0x13)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0), 0x42782, 0x0)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000180))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x30, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0xffffffff]}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}]}]}, 0x30}}, 0x0)
faccessat(r4, &(0x7f0000000140)='./file0\x00', 0x102)
write$dsp(r5, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
close(r5)
fcntl$setsig(r4, 0xa, 0x21)
munlockall()
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

8.391981948s ago: executing program 0 (id=496):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000015c0)={"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"})
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8)
r4 = dup(0xffffffffffffffff)
r5 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000013c0), 0x22000, 0x0)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000001980)=@urb_type_bulk={0x3, {0xf}, 0x80, 0xe3, 0x0, 0x0, 0x3, 0x3, 0x3, 0x8, 0x6, 0x0})
read$FUSE(r4, &(0x7f0000032680)={0x2020}, 0x2020)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=@newsa={0x104, 0x18, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2}, {0x0, 0x200000, 0x7}, {0x40000, 0x0, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, 0x0, 0x0)

6.407063949s ago: executing program 0 (id=497):
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r1=>0x0})
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x28}, @val={0x8, 0x3, r1}, @void}}, ["", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000040}, 0x4)
getpriority(0x2, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x140, 0x82)
r3 = fanotify_init(0x4, 0x101801)
fanotify_mark(r3, 0x105, 0x40001032, r2, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x40, 0x14)
openat(0xffffffffffffff9c, 0x0, 0x281c2, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000640)=ANY=[], 0x20)
r4 = syz_open_dev$radio(&(0x7f0000001640), 0x0, 0x2)
syz_open_dev$radio(0x0, 0x0, 0x2)
preadv(r4, &(0x7f00000033c0)=[{&(0x7f0000000900)=""/223, 0xdf}], 0x1, 0x10006, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$key(0xf, 0x3, 0x2)
ioctl$sock_SIOCGIFCONF(r5, 0x8912, &(0x7f0000006000)=@req={0x28, &(0x7f0000005fc0)={'ip6gretap0\x00', @ifru_addrs=@nfc={0x27, 0x0, 0x0, 0x7}}})

5.783353933s ago: executing program 2 (id=498):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)={'#! ', './file0', [{0x20, 'axA\x9b^\xfb^$\r\'uij\r\xd9\xef\xd2Et^Q\v\x9fOFL\x95`Z\xae\xc3a\xfe%\x94\x1a\xebt\xc6\x06\x8fD,\xf7\xae#\x80\x80\xdf\xa3\xcaO\xc6\x8a\x91\x90\xadR\aW\xe1\xf3n\xca\xa3\x8f\xd6F\x03\x0e\x9b\xe5yb\xfc\xa19wUs\x83\xf1{&\n\x1d\x8e\x82y\x1a.B\x0e\xea\x17\xc7\xe7H\xa9\xd4\x8e\xe7 gD\x89*\xb5c<d\x1f\\\x10$o\x93\x02\x9c@\x9ddt\x8c\x875\xf7@\x9aM\xa3j\xfa\x1f\xe5\x81\xc9u<\xf0?w8P>\xc5\x8a\xe6R\xe5YGq\xf5\xb6\x95\xbc\x112\x9bno\xc8\x06\xb6\b\xcc\x03{Sn\x94G\x01\xb4\xffJQ8t\x99vY\xaaf\xc7,\x9f\xbb\x15G\x1cr\x19\xef\xab\n\xa8\xbc\xbd\xa2E\x16\x1cm\xbd=\x98\x7fU\xcbg\x15%\x95\xb11\x017\x83*\x14\xcbt\xc2\xcb\x04\x1e~?\xb9j\x18\x96\x84EA\xeaB\a\x83\xba\xdco<\x00'/256}]}, 0x10c)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
ioctl$sock_netdev_private(0xffffffffffffffff, 0x8914, &(0x7f0000000000))
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r1, 0x890b, &(0x7f0000000380)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x6, @null, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r2, &(0x7f0000000040)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1, @default}, 0x1c)
connect$rose(r2, &(0x7f0000000100)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x0, [@null, @null, @null, @default, @bcast, @default]}, 0x40)
socket$nl_route(0x10, 0x3, 0x0)

5.654900157s ago: executing program 3 (id=499):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, &(0x7f00000001c0)={r3, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f00000002c0)={0x0, 0x0, 0x0, r4})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0xa0000, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r7, 0x4068aea3, &(0x7f0000000000)={0xbe, 0x0, 0x1})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f000001fc40)=[@text16={0x10, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0100000000000000064d564b"])
r8 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r8, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x2}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x0, 0xfffffffd, 0xffffffff}, 0x10}, 0x94)
sendto$inet6(r9, &(0x7f0000000340), 0x0, 0x10, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000c00)=ANY=[@ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x48)
r10 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r10, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @mcast2, 0x5}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x7, 0x6, 0x0, 0x1}, 0x50)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680))

5.45513049s ago: executing program 4 (id=500):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r2, 0xc02064b6, &(0x7f00000001c0)={r3, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f00000002c0)={0x0, 0x0, 0x0, r4})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0xa0000, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f000001fc40)=[@text16={0x10, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="0100000000000000064d564b"])
r8 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r8, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x2}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x0, 0xfffffffd, 0xffffffff}, 0x10}, 0x94)
sendto$inet6(r9, &(0x7f0000000340), 0x0, 0x10, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000c00)=ANY=[@ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x48)
r10 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r10, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @mcast2, 0x5}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x7, 0x6, 0x0, 0x1}, 0x50)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680))

5.350302774s ago: executing program 1 (id=501):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/disk', 0x21a02, 0x13a)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
socket$kcm(0x10, 0x5, 0x0)
mkdir(&(0x7f0000000200)='./bus\x00', 0x10)
r3 = syz_open_dev$video(&(0x7f0000000000), 0x101, 0xab02)
ioctl$VIDIOC_S_INPUT(r3, 0xc0045627, &(0x7f0000000180)=0x1)
ioctl$VIDIOC_S_CROP(r3, 0x4014563c, &(0x7f0000000040)={0x9, {0x40, 0x7, 0x101}})
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@bridge_newvlan={0x24, 0x70, 0x239, 0x70bd2e, 0x25dfdbfb, {0x7, 0x0, 0x0, r5}, [@BRIDGE_VLANDB_ENTRY={0xc, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_INFO={0x8, 0x1, {0x0, 0x1}}}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004840}, 0x0)

4.425617053s ago: executing program 1 (id=502):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000015c0)={"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"})
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8)
r4 = dup(0xffffffffffffffff)
r5 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000013c0), 0x22000, 0x0)
ioctl$USBDEVFS_SUBMITURB(r5, 0x8038550a, &(0x7f0000001980)=@urb_type_bulk={0x3, {0xf}, 0x80, 0xe3, 0x0, 0x0, 0x3, 0x3, 0x3, 0x8, 0x6, 0x0})
read$FUSE(r4, &(0x7f0000032680)={0x2020}, 0x2020)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=@newsa={0x104, 0x18, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2}, {0x0, 0x200000, 0x7}, {0x40000, 0x0, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
read$msr(0xffffffffffffffff, 0x0, 0x0)
gettid()

4.397620659s ago: executing program 2 (id=503):
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000600)=@urb_type_bulk={0x3, {0xf}, 0x4, 0x41, 0x0, 0x0, 0xfffffff8, 0x1, 0x0, 0x23, 0x4, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x20)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r1, &(0x7f0000000000)="3b000000010006", 0x7)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xc, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(0xffffffffffffffff, 0x3ba0, &(0x7f0000000180)={0x48, 0x7, 0xffffffffffffffff, 0x0, 0x10000, 0x0, 0x3, 0x2cecc, 0x7a8c3})
socket$nl_generic(0x10, 0x3, 0x10)

4.39345961s ago: executing program 0 (id=504):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r4)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
r5 = socket$alg(0x26, 0x5, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000), 0x4)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0)
memfd_secret(0x0)
bpf$LINK_DETACH(0x22, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xf5ff, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001400000000114000000020a090100000000000000000000000014000000110001"], 0xd4}}, 0x0)

3.312474929s ago: executing program 3 (id=505):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001680))
r1 = eventfd2(0x1, 0x1)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000001c0)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000001d00)=""/176, 0x0, 0xffff1000})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000000)={0x0, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = open(&(0x7f0000000180)='./file0\x00', 0x6440, 0x81)
mmap$snddsp(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x13, r2, 0xd000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
read$FUSE(0xffffffffffffffff, &(0x7f0000002500)={0x2020}, 0x2020)

2.478894807s ago: executing program 4 (id=506):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x6)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, 0x0, 0x4044080)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x2000000, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000004c0)={[], [{@fowner_lt}, {@appraise_type}, {@smackfshat={'smackfshat', 0x3d, 'sched_switch\x00'}}, {@fsuuid={'fsuuid', 0x3d, {[0x30, 0x65, 0x55, 0x31, 0x34, 0x30, 0x39, 0x39], 0x2d, [0x63, 0x33, 0x36, 0x33], 0x2d, [0x37, 0x6fedb0ad667a3716, 0x34, 0x4bbc10f19dea590f], 0x2d, [0x37, 0x66, 0x30, 0x39], 0x2d, [0x36, 0x65, 0x39, 0x32, 0x33, 0x62, 0x36, 0x33]}}}, {@appraise_type}, {@dont_hash}, {@euid_lt}, {@dont_hash}], 0x2f})
r5 = memfd_create(&(0x7f0000000840)='[\v\xdbX\xae[\x1a\xa9\x00\xc2\x9aml\r\xcf\xaa\x13\x99\x85B\xc3\x06<\xc2\xa9\xc3\xdb\x88\xee\x85md\xc8\x85HX\xa9%\f\x8fe\xe0\x00\x00\xa8\xfdn\xbe \a\x0e\xa3\xb9\x1d\x9dO\xbdj\x00\x00\xfb\xff\x00c\xb2\xc9\ap\xd0\xa2\x82\x1e\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcb\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2\xa75\x9d\xcb\x1e\x80\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x00uNh\xc5(\xbc\xf3\xac{\x04D2\xf2\xcd\xc2{E\xae\x89\xddI\xc8\xc6\xe9\xef\x98\xf0\x8b\xac\xa7R\x10\x011\x9fi\x00\x00\x00\x00\x00\x00\x00\x00\x002?D\x86\x14\xa52<\x87n\xf4\x04R\x15\t\xb8\xbeT\xb8\xe7K)\x1fP\xb6\xce8\xcc\xabe\xcb\xd0\xf9\xc9\xfe_\v\xaa#\x8f\x8asu\xb2\xfe\xc4\xbe\x03\xd3\x93E\x1d\xaf}\x9b\xac\xc2\x9a\xe6W\x92sD\fn\x9e\xc2s\xc6_4\f\xc1\x8b\x9a\xa4_\xad\x9b\xb9 \v\x0f{>\xdf^.\xb8\x96\x1d\x99vY\xa8\xfa\xd7i\x94i^;\xaa\xe7XA\xd2\xc5\x02\x12I\xbe\xd0Ksq\x96 \xbf\xed\x1c\x91\xeeN\xda&\xddtG\xc2\xa8j\xae\xac)\xfdNu\x19\x91\xa7z\x1b\x0e\xab\xd2k\x16\x87#\xf6p#\x8d\xdd?\x9fXV\x12\xa9\xc7v\x02\x98g:4\xb6\xcaY\xc2~k\xcb\xef]h/\xa2\xaf\xc4\xec\xdc\xd4H\xed\x94qNY\x85\x87&\xf1\xbb\f\x02\x0fo\xae\xf4\x19|\xc4\xfcL\xdb\x00\xedrK\x13\xb5J?s\x93\xe6\xda\xf0\xf3B\x8d\xb4\xd8>\x12\xb0\x8e\x8d\xdaQ\xa2\xd0\xbc\x92d\x9e^\xbc\xd5\x8aNf\xefa\v*\xb08\xfc\xd2\xa4\x11`\xae\x98\xcc\xe1\xea\xc2\x1dKR\x0e\x1cK\x86\v\xba\xdfz\xa8\xdf\xb6\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xef\xe9\xb3@\xe8\a0\x1e\xb8L\x83\xc4\xa8\xb2\xc1\xf8\xae\x1d\x198\x0f\xfa\t\x88+\xdc\xe1\x01@\xbd\x8ba\"|\x14\x1bF\x9b\xd3\xff7\a\x1c:U\xba\xf4\t\xdc\xef\xe3\x11\xdb^\xee\x8c0\xee\xde6:\x80t\xfb\xbc^K\xb4\x8c9\xb0\xec\x82\x127!\x0e\xa3\xc9\xe0\xea\xfa\x0f\xbb\x0e \xc3\xef\xb2<S\xd8\x11\x8b\x9a0\xea1\xde_\xcfW\xfa', 0x7)
fsetxattr$security_ima(r5, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB], 0xfe49, 0x0)
execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
r6 = socket$inet(0x2, 0x2, 0x1)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f00000000c0)='macvlan0\x00', 0x10)
sendmsg$inet(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4e21, @remote}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000200)='\b\x00', 0x2}, {&(0x7f0000000180)="d0849e99c27f53", 0x7}], 0x2, 0x0, 0x0, 0x60000000}, 0x20000004)
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_ifreq(r7, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x25, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)

2.462655149s ago: executing program 3 (id=507):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
socket$nl_audit(0x10, 0x3, 0x9)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x7, &(0x7f0000000600))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$kcm(0x10, 0x100000000002, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x38, 0xe, &(0x7f0000000980)=ANY=[@ANYBLOB="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"], 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000040)=r3, 0x4)
sendmsg$kcm(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000171300883795c04a31ba377a1b2cc32b38d3740000ffffffffff", 0x36}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0xffe4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x6, 0x1fc, &(0x7f0000000780)=ANY=[@ANYBLOB="12015002b8005108101407a0683e010203010902ea01030e00300309040309027f54cc00090502040004040403800109661bede31b6d40ffd5a6457d3483a7c64a2cf09c6b30e3afe9caf13ed9a2924ed053d2b4b24aedb4035d4212c8a5f7df3b67916187c245f81035efe9b53a8d79988d4b00a8aa5926f8b9103fd0e543cebd14ca5d0825146c7ff12ef0b8fe612538542d6f5c9fdc7894374795b8ccb6bdb303b42aa86746d3370ad7a31c090504104000050209072501830200040725018101070009045b060c317135060905051008000600d30725018002000009050610200080ff0407250101060200090500100004090401090504104000ab0005090505022000060d0d48007672bf7524ef90e0a086de3562bf356642bc0201de8fa807c3b757b1c182c0f4c59af7c59293e1bc41956912be0eafd96bdf03aa6117bc3e50fbee59a6e5dfc7206516e091fce94c0c778a134b5368d1af31d240535b0725018002010009050b08000401a9050725010332f60b0725010206ac15090502140000c7070e0905010400020805800905051000020802ae07250103fbff0009050010400008000309050c040002030d07410f8c1ea652c620acd24cbf2bfeb921dfc3f2c147f7c05a53e4f7db6742a64c76fe8d2f319387c80165b1ad6b9054e93ae7385d785e1c040f2c4e5c2388ef8791090509002000010802"], 0x0)
socket(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@bridge_getlink={0x28, 0x12, 0xdbf44c00c5896d57, 0x10, 0x0, {0x7, 0x0, 0x0, 0x0, 0x20000}, [@IFLA_EXT_MASK={0x8, 0x1d, 0xeca}]}, 0x28}}, 0x0)

2.268547537s ago: executing program 1 (id=508):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup/syz1\x00', 0x200002, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000003f00)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="1400000013000100000000000002000002000000"], 0x14}], 0x1}, 0x0)
r4 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000140)='_', 0x1, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
geteuid()
stat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000280))
r6 = add_key$user(&(0x7f0000006400), &(0x7f0000006c00)={'syz', 0x3}, &(0x7f0000000840)="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", 0x1c1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r4, r5, r6}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'sha256\x00'}})

1.51805687s ago: executing program 4 (id=509):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000240)=ANY=[])
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008c04"])
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./file1\x00', 0x13b)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r4 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(0xffffffffffffffff, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0x8a5, 0x93, 0x1, 0x1, 0xd59f80, 0x19ef, 0x6, 0xffff, 0x6, 0x3, 0x27ff, 0x87, 0x42, 0xbb6, 0x19, 0x8, {0x8, 0x802}, 0xd0, 0x7}})
write$FUSE_CREATE_OPEN(r4, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x4, 0x3, 0x5, 0x6, 0x3, 0x1, {0x0, 0x9, 0x20ff, 0x5, 0x89, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x3ff, 0x1}}, {0x0, 0x13}}}, 0xa0)
sendfile(r4, r4, &(0x7f0000000080), 0x7f03)

989.844938ms ago: executing program 2 (id=510):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000001680)={&(0x7f0000000680)=[0x100000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x70, 0x0, 0xf2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8f1, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x6d1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe02e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x9, 0xcf, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x4, 0x7, 0x800, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x413f, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4000000, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0xd, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x22, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x789], 0x1, 0x400})
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, 0x0)
write$rfkill(0xffffffffffffffff, &(0x7f0000000000)={0x3, 0x2, 0x0, 0x0, 0x1}, 0x8)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f00000013c0)={0xffffffffffffffff, 0xa, {0x0, 0x0, 0x0, 0x5, 0x8000, 0x0, 0x4, 0x1f, 0x10, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "143939c787a16c1ca43f80026d1a8554fe581b59dee430e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d200", "24431a1e77a68e17000000040008000000000000000000e5e900", [0x83]}})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

662.984853ms ago: executing program 1 (id=511):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
sched_setscheduler(0x0, 0x1, 0x0)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c0000001000030400000000fedbdf2500007400", @ANYRES32=r4, @ANYBLOB="00080000000000001c0012800b00010062726964676500000c00028006002700"], 0x3c}, 0x1, 0x1000000, 0x0, 0x800}, 0x0)

0s ago: executing program 0 (id=512):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1342, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
writev(r0, &(0x7f0000000380)=[{&(0x7f0000000100)="89e7ee0c7cdad9b4b47380c988cafbe863cac50580318bc98470cca6f706513d3664", 0x22}], 0x1)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.70' (ED25519) to the list of known hosts.
[   78.490447][ T5832] cgroup: Unknown subsys name 'net'
[   78.640736][ T5832] cgroup: Unknown subsys name 'cpuset'
[   78.649272][ T5832] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   80.107497][ T5832] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   82.577049][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   82.585540][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   82.598642][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   82.607251][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   82.615778][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   82.767615][ T5164] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   82.779311][ T5164] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   82.796687][ T5164] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   82.815568][ T5845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   82.823404][ T5845] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   82.847478][ T5845] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   82.869364][ T5855] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   82.877909][ T5855] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   82.885376][   T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   82.894599][ T5856] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   82.901871][   T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   82.910823][   T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   82.919940][ T5856] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   82.927885][ T5856] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   82.930875][   T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   82.966465][ T5845] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   82.976242][ T5845] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   82.984704][ T5845] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   82.999510][ T5845] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   83.014898][ T5845] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   83.320193][ T5842] chnl_net:caif_netlink_parms(): no params data found
[   83.634175][ T5847] chnl_net:caif_netlink_parms(): no params data found
[   83.670551][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.679120][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.686723][ T5842] bridge_slave_0: entered allmulticast mode
[   83.695089][ T5842] bridge_slave_0: entered promiscuous mode
[   83.706995][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.715041][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.722306][ T5842] bridge_slave_1: entered allmulticast mode
[   83.729560][ T5842] bridge_slave_1: entered promiscuous mode
[   83.770919][ T5853] chnl_net:caif_netlink_parms(): no params data found
[   83.856760][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   83.910457][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.017546][ T5842] team0: Port device team_slave_0 added
[   84.057418][ T5849] chnl_net:caif_netlink_parms(): no params data found
[   84.071856][ T5842] team0: Port device team_slave_1 added
[   84.141678][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.149602][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.156741][ T5847] bridge_slave_0: entered allmulticast mode
[   84.168448][ T5847] bridge_slave_0: entered promiscuous mode
[   84.210884][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.218942][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.226136][ T5847] bridge_slave_1: entered allmulticast mode
[   84.234241][ T5847] bridge_slave_1: entered promiscuous mode
[   84.267462][ T5857] chnl_net:caif_netlink_parms(): no params data found
[   84.278886][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.285945][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.313191][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.336429][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.343684][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.351150][ T5853] bridge_slave_0: entered allmulticast mode
[   84.358411][ T5853] bridge_slave_0: entered promiscuous mode
[   84.382675][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.389800][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.415716][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.446797][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.454636][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.462539][ T5853] bridge_slave_1: entered allmulticast mode
[   84.470583][ T5853] bridge_slave_1: entered promiscuous mode
[   84.549157][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.562081][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.637050][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.672250][ T5842] hsr_slave_0: entered promiscuous mode
[   84.681596][ T5842] hsr_slave_1: entered promiscuous mode
[   84.688146][ T5164] Bluetooth: hci0: command tx timeout
[   84.720216][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.742419][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.749911][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.757100][ T5849] bridge_slave_0: entered allmulticast mode
[   84.764920][ T5849] bridge_slave_0: entered promiscuous mode
[   84.785584][ T5847] team0: Port device team_slave_0 added
[   84.805262][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.813137][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.820539][ T5849] bridge_slave_1: entered allmulticast mode
[   84.828082][ T5849] bridge_slave_1: entered promiscuous mode
[   84.853503][ T5847] team0: Port device team_slave_1 added
[   84.873927][ T5853] team0: Port device team_slave_0 added
[   84.883313][ T5853] team0: Port device team_slave_1 added
[   84.921082][ T5164] Bluetooth: hci1: command tx timeout
[   84.983101][ T5857] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.990618][ T5857] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.997990][ T5164] Bluetooth: hci3: command tx timeout
[   85.003761][ T5857] bridge_slave_0: entered allmulticast mode
[   85.007763][ T5164] Bluetooth: hci2: command tx timeout
[   85.012287][ T5857] bridge_slave_0: entered promiscuous mode
[   85.028488][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.035503][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.062376][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.076208][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.083336][ T5164] Bluetooth: hci4: command tx timeout
[   85.083360][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.115711][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.144693][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.154737][ T5857] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.162549][ T5857] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.169860][ T5857] bridge_slave_1: entered allmulticast mode
[   85.176923][ T5857] bridge_slave_1: entered promiscuous mode
[   85.213023][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.220150][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.246289][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.258890][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.265976][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.292090][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.306742][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.387006][ T5857] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.439561][ T5847] hsr_slave_0: entered promiscuous mode
[   85.446350][ T5847] hsr_slave_1: entered promiscuous mode
[   85.454568][ T5847] debugfs: 'hsr0' already exists in 'hsr'
[   85.461349][ T5847] Cannot create hsr debugfs directory
[   85.470496][ T5849] team0: Port device team_slave_0 added
[   85.479045][ T5857] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.535587][ T5849] team0: Port device team_slave_1 added
[   85.586622][ T5853] hsr_slave_0: entered promiscuous mode
[   85.593454][ T5853] hsr_slave_1: entered promiscuous mode
[   85.601045][ T5853] debugfs: 'hsr0' already exists in 'hsr'
[   85.606847][ T5853] Cannot create hsr debugfs directory
[   85.678981][ T5857] team0: Port device team_slave_0 added
[   85.709540][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.719711][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.746454][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.760093][ T5857] team0: Port device team_slave_1 added
[   85.766731][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.773749][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.799837][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.904741][ T5857] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.911811][ T5857] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.938896][ T5857] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.985201][ T5857] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.992339][ T5857] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.018549][ T5857] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.107138][ T5849] hsr_slave_0: entered promiscuous mode
[   86.114170][ T5849] hsr_slave_1: entered promiscuous mode
[   86.121492][ T5849] debugfs: 'hsr0' already exists in 'hsr'
[   86.127342][ T5849] Cannot create hsr debugfs directory
[   86.201296][ T5842] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   86.245572][ T5842] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   86.274005][ T5857] hsr_slave_0: entered promiscuous mode
[   86.283531][ T5857] hsr_slave_1: entered promiscuous mode
[   86.290055][ T5857] debugfs: 'hsr0' already exists in 'hsr'
[   86.295805][ T5857] Cannot create hsr debugfs directory
[   86.338356][ T5842] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   86.351793][ T5842] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   86.626493][ T5847] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   86.666077][ T5847] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   86.676694][ T5847] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   86.692886][ T5847] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   86.757289][ T5164] Bluetooth: hci0: command tx timeout
[   86.800179][ T5853] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   86.840930][ T5853] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   86.855347][ T5853] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   86.869153][ T5853] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   86.955870][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.982384][ T5849] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   86.992798][ T5849] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   87.002878][ T5164] Bluetooth: hci1: command tx timeout
[   87.018607][ T5849] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   87.032332][ T5849] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   87.087608][ T5164] Bluetooth: hci2: command tx timeout
[   87.093060][ T5164] Bluetooth: hci3: command tx timeout
[   87.123010][ T5842] 8021q: adding VLAN 0 to HW filter on device team0
[   87.158494][ T5164] Bluetooth: hci4: command tx timeout
[   87.174778][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.182166][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.194056][ T5857] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   87.246901][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.254117][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.264907][ T5857] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   87.298695][ T5857] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   87.321665][ T5857] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   87.396276][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.463107][ T5847] 8021q: adding VLAN 0 to HW filter on device team0
[   87.515475][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.522695][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.561532][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.568797][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.641851][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.717062][ T5853] 8021q: adding VLAN 0 to HW filter on device team0
[   87.754588][ T1122] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.762010][ T1122] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.793354][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.816437][ T1122] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.823641][ T1122] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.927062][ T5849] 8021q: adding VLAN 0 to HW filter on device team0
[   87.982703][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.990010][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.012603][ T5857] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.045029][ T3582] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.052249][ T3582] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.153498][ T5857] 8021q: adding VLAN 0 to HW filter on device team0
[   88.185662][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.274319][ T3582] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.281574][ T3582] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.323971][ T1122] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.331278][ T1122] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.445677][ T5842] veth0_vlan: entered promiscuous mode
[   88.514383][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.572570][ T5842] veth1_vlan: entered promiscuous mode
[   88.587089][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.755614][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.780948][ T5842] veth0_macvtap: entered promiscuous mode
[   88.814948][ T5847] veth0_vlan: entered promiscuous mode
[   88.838859][ T5164] Bluetooth: hci0: command tx timeout
[   88.846672][ T5842] veth1_macvtap: entered promiscuous mode
[   88.899145][ T5853] veth0_vlan: entered promiscuous mode
[   88.930278][ T5847] veth1_vlan: entered promiscuous mode
[   88.945326][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.985780][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.024084][ T5853] veth1_vlan: entered promiscuous mode
[   89.032074][ T5849] veth0_vlan: entered promiscuous mode
[   89.043860][   T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.053959][   T49] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.077970][ T5164] Bluetooth: hci1: command tx timeout
[   89.095037][ T3582] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.115716][ T5849] veth1_vlan: entered promiscuous mode
[   89.124061][ T3582] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.165595][ T5845] Bluetooth: hci2: command tx timeout
[   89.172524][ T5164] Bluetooth: hci3: command tx timeout
[   89.189511][ T5857] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.215492][ T5847] veth0_macvtap: entered promiscuous mode
[   89.239300][ T5164] Bluetooth: hci4: command tx timeout
[   89.245947][ T5853] veth0_macvtap: entered promiscuous mode
[   89.266544][ T5849] veth0_macvtap: entered promiscuous mode
[   89.295472][ T5853] veth1_macvtap: entered promiscuous mode
[   89.324610][ T5847] veth1_macvtap: entered promiscuous mode
[   89.343877][ T5849] veth1_macvtap: entered promiscuous mode
[   89.396346][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.462174][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.475356][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.478716][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.491271][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.519544][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.533361][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.588993][ T1122] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.616159][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.626157][ T1122] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.658988][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.667077][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.687442][ T1122] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.714188][ T1122] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.723439][ T1122] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.772189][ T5959] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.785103][ T5959] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.812870][ T5959] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.828059][ T5959] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.864041][ T5842] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   89.871797][ T5959] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.890572][ T5959] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.934791][ T5959] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.981141][ T3582] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.008412][ T3582] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.043155][ T5961] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   90.056374][ T5857] veth0_vlan: entered promiscuous mode
[   90.172708][ T1122] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.275747][ T1122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.314206][ T5962] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   90.321566][ T5857] veth1_vlan: entered promiscuous mode
[   90.597604][ T3582] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.617927][ T3582] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.702839][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.715244][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.823579][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.848720][ T5857] veth0_macvtap: entered promiscuous mode
[   90.869293][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.922268][ T5164] Bluetooth: hci0: command tx timeout
[   90.941697][ T5959] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.950934][ T5857] veth1_macvtap: entered promiscuous mode
[   91.157765][ T5164] Bluetooth: hci1: command tx timeout
[   91.215821][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.237982][ T5164] Bluetooth: hci3: command tx timeout
[   91.243497][ T5845] Bluetooth: hci2: command tx timeout
[   91.458170][ T5845] Bluetooth: hci4: command tx timeout
[   91.497490][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.505825][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.516083][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   91.525123][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[   91.625388][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.625667][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   91.643164][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   91.727930][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   91.736344][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   91.876464][ T5959] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.941444][ T5968] bpq0: entered allmulticast mode
[   92.015514][ T5973] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[   92.528941][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.543618][   T43] cfg80211: failed to load regulatory.db
[   92.656487][ T5857] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.880350][   T59] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.924929][   T59] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.249111][   T36] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.260780][   T36] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.557620][ T5975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.572189][ T5975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.327846][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.374625][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.431541][ T5908] usb 1-1: new low-speed USB device number 2 using dummy_hcd
[   95.812149][ T5908] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[   95.832933][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   95.933663][ T5908] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   95.946556][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   95.958370][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   96.123056][ T5908] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[   96.230905][ T6010] process 'syz.4.5' launched '/dev/fd/6' with NULL argv: empty string added
[   96.751740][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   96.764361][ T5908] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   96.776116][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   96.788144][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   96.920071][ T5908] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[   96.976446][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[   97.025568][ T5908] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   97.046280][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[   97.120786][ T5908] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[   97.161652][ T5908] usb 1-1: string descriptor 0 read error: -22
[   97.226814][ T5908] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   97.859283][ T5908] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.949233][ T5908] usb 1-1: can't set config #168, error -71
[   97.987966][ T5908] usb 1-1: USB disconnect, device number 2
[  102.576899][ T6040] kthread_run failed with err -4
[  103.037443][   T10] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  103.264859][   T10] usb 3-1: device descriptor read/64, error -71
[  103.527503][   T43] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  103.677260][   T10] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  103.699847][ T6063] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  104.148237][   T10] usb 3-1: device descriptor read/64, error -71
[  104.174545][   T43] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  104.195539][   T43] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  104.235858][   T43] usb 4-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  104.257808][   T10] usb usb3-port1: attempt power cycle
[  104.332569][   T43] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.354272][   T43] usb 4-1: config 0 descriptor??
[  104.376439][   T43] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  104.388222][   T43] dvb-usb: bulk message failed: -22 (3/0)
[  104.448621][   T43] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  104.478991][   T43] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  104.501134][   T43] usb 4-1: media controller created
[  104.525437][   T43] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  105.031176][   T43] dvb-usb: bulk message failed: -22 (6/0)
[  105.044300][   T43] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  105.072677][   T10] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  105.082651][   T43] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input5
[  105.128111][   T10] usb 3-1: device descriptor read/8, error -71
[  105.236017][   T43] dvb-usb: schedule remote query interval to 150 msecs.
[  105.276836][   T43] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  105.377603][   T10] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  105.408254][   T10] usb 3-1: device descriptor read/8, error -71
[  105.430342][   T43] dvb-usb: bulk message failed: -22 (1/0)
[  105.465297][   T43] dvb-usb: error while querying for an remote control event.
[  105.527578][   T10] usb usb3-port1: unable to enumerate USB device
[  105.691170][   T43] dvb-usb: bulk message failed: -22 (1/0)
[  106.029960][   T43] dvb-usb: error while querying for an remote control event.
[  106.217956][ T5907] dvb-usb: bulk message failed: -22 (1/0)
[  106.225478][ T5907] dvb-usb: error while querying for an remote control event.
[  106.270865][ T6067] block nbd1: shutting down sockets
[  106.369538][   T10] usb 4-1: USB disconnect, device number 2
[  106.519672][ T6076] Zero length message leads to an empty skb
[  106.578687][   T10] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  106.822210][ T6080] syzkaller0: entered promiscuous mode
[  106.827883][ T6080] syzkaller0: entered allmulticast mode
[  107.343418][ T5947] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  107.568964][ T5947] usb 2-1: Using ep0 maxpacket: 8
[  107.585753][ T5947] usb 2-1: config index 0 descriptor too short (expected 28277, got 36)
[  107.595332][ T5947] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  107.639325][ T5947] usb 2-1: config 0 has no interfaces?
[  107.651922][ T5947] usb 2-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  107.796099][ T5947] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.938072][ T5947] usb 2-1: config 0 descriptor??
[  111.806108][   T43] usb 2-1: USB disconnect, device number 2
[  112.838502][   T43] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  112.849776][ T6111] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  113.040037][   T43] usb 2-1: config 0 has no interfaces?
[  113.056691][   T43] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  113.071872][   T43] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  113.088577][   T43] usb 2-1: Product: syz
[  113.099312][   T43] usb 2-1: Manufacturer: syz
[  113.104185][   T43] usb 2-1: SerialNumber: syz
[  113.140420][   T43] usb 2-1: config 0 descriptor??
[  114.139493][ T5908] usb 2-1: USB disconnect, device number 3
[  115.461855][ T6125] netlink: 24 bytes leftover after parsing attributes in process `syz.3.41'.
[  115.577905][   T30] audit: type=1800 audit(1754138549.450:2): pid=6122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=71 res=0 errno=0
[  115.604041][ T6127] netlink: 'syz.4.39': attribute type 10 has an invalid length.
[  116.215381][ T6127] 8021q: adding VLAN 0 to HW filter on device team0
[  116.330098][ T6136] syz.3.41: attempt to access beyond end of device
[  116.330098][ T6136] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0
[  116.558803][ T6136] gfs2: error -5 reading superblock
[  116.993246][ T6127] bond0: (slave team0): Enslaving as an active interface with an up link
[  117.237605][ T6134] netlink: 12 bytes leftover after parsing attributes in process `syz.3.41'.
[  117.693491][ T6154] netlink: 24 bytes leftover after parsing attributes in process `syz.4.45'.
[  117.722770][ T6154] netlink: 12 bytes leftover after parsing attributes in process `syz.4.45'.
[  117.758360][ T6154] syz.4.45: attempt to access beyond end of device
[  117.758360][ T6154] nbd4: rw=6144, sector=128, nr_sectors = 8 limit=0
[  117.897461][ T6154] gfs2: error -5 reading superblock
[  118.214894][ T6162] netlink: 24 bytes leftover after parsing attributes in process `syz.2.48'.
[  118.275020][ T6164] netlink: 32 bytes leftover after parsing attributes in process `syz.4.49'.
[  118.294153][ T6162] netlink: 12 bytes leftover after parsing attributes in process `syz.2.48'.
[  118.301381][ T6164] openvswitch: netlink: Flow actions attr not present in new flow.
[  119.142120][ T6162] syz.2.48: attempt to access beyond end of device
[  119.142120][ T6162] nbd2: rw=6144, sector=128, nr_sectors = 8 limit=0
[  119.148880][ T6166] bpq0: entered promiscuous mode
[  119.160979][ T6166] bpq0: left allmulticast mode
[  119.200465][ T6162] gfs2: error -5 reading superblock
[  119.248960][ T6168] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[  119.259755][ T6168] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  122.320714][ T6173] syzkaller0: entered promiscuous mode
[  122.332922][ T6173] syzkaller0: entered allmulticast mode
[  122.537266][ T5907] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  122.720308][ T5907] usb 2-1: config 0 has no interfaces?
[  122.735964][ T5907] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  122.751613][ T5907] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  122.777329][ T5908] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  122.777336][ T5907] usb 2-1: Product: syz
[  122.785098][ T5907] usb 2-1: Manufacturer: syz
[  122.799820][ T5907] usb 2-1: SerialNumber: syz
[  122.818839][ T5907] usb 2-1: config 0 descriptor??
[  123.017307][ T5908] usb 1-1: Using ep0 maxpacket: 32
[  123.030726][ T5908] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  123.071651][ T5908] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8 has invalid maxpacket 15072, setting to 64
[  123.119336][ T5908] usb 1-1: New USB device found, idVendor=ae6f, idProduct=79f4, bcdDevice=8f.99
[  123.143778][ T5908] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.160557][ T5908] usb 1-1: Product: syz
[  123.207355][ T5908] usb 1-1: Manufacturer: syz
[  123.212005][ T5908] usb 1-1: SerialNumber: syz
[  123.230491][ T5908] usb 1-1: config 0 descriptor??
[  123.288803][ T5947] usb 2-1: USB disconnect, device number 4
[  123.712279][ T6191] netlink: 'syz.3.55': attribute type 10 has an invalid length.
[  124.891043][   T43] usb 1-1: USB disconnect, device number 3
[  128.132263][ T6191] 8021q: adding VLAN 0 to HW filter on device team0
[  128.143118][ T6191] bond0: (slave team0): Enslaving as an active interface with an up link
[  128.530489][ T6224] netlink: 12 bytes leftover after parsing attributes in process `syz.2.60'.
[  128.888106][ T6221] netlink: 32 bytes leftover after parsing attributes in process `syz.3.62'.
[  128.897023][ T6221] openvswitch: netlink: Flow actions attr not present in new flow.
[  129.574206][ T6221] mac80211_hwsim hwsim7 wlan0: entered promiscuous mode
[  129.582083][ T6221] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  130.319511][ T6244] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.328026][ T6244] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.926468][ T6244] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  131.062760][ T6244] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  131.801239][ T6249] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.809873][ T6249] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.832481][ T3582] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  132.024660][ T5959] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  132.040013][ T5959] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  132.049196][ T5959] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  132.077382][   T10] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  132.222017][ T6260] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  132.373214][   T10] usb 2-1: config 0 has no interfaces?
[  132.382256][   T10] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  132.391711][   T10] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  132.400266][   T10] usb 2-1: Product: syz
[  132.405046][   T10] usb 2-1: Manufacturer: syz
[  132.409886][   T10] usb 2-1: SerialNumber: syz
[  132.431391][   T10] usb 2-1: config 0 descriptor??
[  133.013567][   T10] usb 2-1: USB disconnect, device number 5
[  133.117338][   T24] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  133.128008][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  133.134516][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  133.307787][   T24] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  133.384769][   T24] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  133.400899][   T24] usb 4-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  133.440362][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.503651][   T24] usb 4-1: config 0 descriptor??
[  133.527462][   T24] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  133.536570][   T24] dvb-usb: bulk message failed: -22 (3/0)
[  133.567572][   T24] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  133.600166][   T24] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  133.629401][   T24] usb 4-1: media controller created
[  133.664655][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  133.756762][   T30] audit: type=1800 audit(1754138567.710:3): pid=6274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=90 res=0 errno=0
[  134.040099][   T24] dvb-usb: bulk message failed: -22 (6/0)
[  134.106362][   T24] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  134.252302][   T24] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input6
[  134.267515][ T5908] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  134.324053][   T24] dvb-usb: schedule remote query interval to 150 msecs.
[  134.344859][   T24] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  134.501863][   T43] dvb-usb: bulk message failed: -22 (1/0)
[  134.571414][   T43] dvb-usb: error while querying for an remote control event.
[  134.647380][ T5908] usb 1-1: Using ep0 maxpacket: 8
[  134.719252][ T5908] usb 1-1: config index 0 descriptor too short (expected 28277, got 36)
[  134.750549][ T5908] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  134.811767][ T5908] usb 1-1: config 0 has no interfaces?
[  134.835766][ T5923] dvb-usb: bulk message failed: -22 (1/0)
[  134.856825][ T5908] usb 1-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  134.877036][ T5923] dvb-usb: error while querying for an remote control event.
[  135.002211][ T5908] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.038042][   T43] dvb-usb: bulk message failed: -22 (1/0)
[  135.045521][   T43] dvb-usb: error while querying for an remote control event.
[  135.249097][   T43] dvb-usb: bulk message failed: -22 (1/0)
[  135.267324][   T43] dvb-usb: error while querying for an remote control event.
[  135.298426][ T5908] usb 1-1: config 0 descriptor??
[  135.467447][   T43] dvb-usb: bulk message failed: -22 (1/0)
[  135.534556][   T43] dvb-usb: error while querying for an remote control event.
[  135.757400][   T43] dvb-usb: bulk message failed: -22 (1/0)
[  135.787312][   T43] dvb-usb: error while querying for an remote control event.
[  135.958003][ T5908] usb 4-1: USB disconnect, device number 3
[  136.077905][ T5908] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  136.405830][ T6296] netlink: 32 bytes leftover after parsing attributes in process `syz.3.75'.
[  136.424536][ T6296] openvswitch: netlink: Flow actions attr not present in new flow.
[  136.679530][ T6301] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  136.814632][ T6302] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  137.555153][ T5947] usb 1-1: USB disconnect, device number 4
[  137.677290][ T5908] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  137.815028][ T6313] binder: 6311:6313 ioctl 4018620d 0 returned -22
[  137.867576][ T6313] binder: 6311:6313 unknown command 0
[  137.873076][ T6313] binder: 6311:6313 ioctl c0306201 2000000003c0 returned -22
[  137.879141][ T5908] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  137.937945][ T5908] usb 5-1: config 0 interface 0 has no altsetting 0
[  137.947106][ T5908] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  137.963484][ T5908] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  137.977340][ T5908] usb 5-1: Product: syz
[  137.981560][ T5908] usb 5-1: Manufacturer: syz
[  137.994586][ T5908] usb 5-1: SerialNumber: syz
[  139.655920][ T5908] usb 5-1: config 0 descriptor??
[  139.688131][ T5908] usb 5-1: can't set config #0, error -71
[  139.860086][ T5908] usb 5-1: USB disconnect, device number 2
[  139.985533][ T6325] netlink: 24 bytes leftover after parsing attributes in process `syz.0.85'.
[  140.158908][ T6324] syz.0.85: attempt to access beyond end of device
[  140.158908][ T6324] nbd0: rw=6144, sector=128, nr_sectors = 8 limit=0
[  140.217619][ T6324] gfs2: error -5 reading superblock
[  140.253167][ T6329] netlink: 12 bytes leftover after parsing attributes in process `syz.0.85'.
[  144.251079][ T5908] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  144.437640][ T5908] usb 2-1: Using ep0 maxpacket: 8
[  144.463406][ T5908] usb 2-1: config index 0 descriptor too short (expected 28277, got 36)
[  144.540821][ T5908] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  144.579025][ T5908] usb 2-1: config 0 has no interfaces?
[  144.602160][ T5908] usb 2-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  145.061561][ T5908] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.118115][ T5908] usb 2-1: config 0 descriptor??
[  145.227337][ T6374] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  146.844028][ T5923] usb 2-1: USB disconnect, device number 6
[  148.003020][ T6388] syzkaller0: entered promiscuous mode
[  148.027367][ T6388] syzkaller0: entered allmulticast mode
[  149.911383][ T6415] netlink: 32 bytes leftover after parsing attributes in process `syz.4.105'.
[  149.936795][ T6415] openvswitch: netlink: Flow actions attr not present in new flow.
[  151.765064][ T6424] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  153.490359][ T6398] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.515303][ T6398] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.729772][ T6417] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  155.180169][   T49] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  155.220866][   T49] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  155.248905][   T49] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  155.261371][   T12] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  155.358091][ T5908] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  155.527736][ T5908] usb 5-1: Using ep0 maxpacket: 8
[  155.611632][ T5908] usb 5-1: config index 0 descriptor too short (expected 28277, got 36)
[  155.647437][ T5908] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.721233][ T5908] usb 5-1: config 0 has no interfaces?
[  155.763118][ T5908] usb 5-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  155.823051][ T5908] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.882764][ T5908] usb 5-1: config 0 descriptor??
[  157.157962][ T6466] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  157.409031][ T6472] openvswitch: netlink: Flow actions attr not present in new flow.
[  158.864721][   T43] usb 5-1: USB disconnect, device number 3
[  159.226936][ T6473] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[  159.288479][ T6473] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  159.802989][ T6482] syzkaller0: entered promiscuous mode
[  159.815710][ T6482] syzkaller0: entered allmulticast mode
[  163.369028][ T6514] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  164.368831][ T5923] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  164.786189][   T10] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  164.788938][ T5923] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  164.902569][ T5923] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  164.912408][ T5923] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  164.973981][ T6534] netlink: 'syz.2.135': attribute type 10 has an invalid length.
[  165.002064][ T6534] 8021q: adding VLAN 0 to HW filter on device team0
[  165.039798][ T6534] bond0: (slave team0): Enslaving as an active interface with an up link
[  165.340380][   T10] usb 4-1: Using ep0 maxpacket: 8
[  165.366615][ T5923] usb 5-1: Product: syz
[  165.416545][ T5923] usb 5-1: Manufacturer: syz
[  165.441931][ T5923] usb 5-1: SerialNumber: syz
[  165.768623][   T10] usb 4-1: config index 0 descriptor too short (expected 28277, got 36)
[  165.777634][ T5923] usb 5-1: config 0 descriptor??
[  165.782801][   T10] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  165.823231][   T10] usb 4-1: config 0 has no interfaces?
[  165.849196][   T10] usb 4-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  165.883908][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.046526][   T10] usb 4-1: config 0 descriptor??
[  166.883214][ T5923] snd-usb-audio 5-1:0.0: probe with driver snd-usb-audio failed with error -22
[  167.117466][ T5923] usb 5-1: USB disconnect, device number 4
[  167.291550][ T5846] udevd[5846]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  168.532738][ T5923] usb 4-1: USB disconnect, device number 4
[  171.014793][ T6577] syzkaller0: entered promiscuous mode
[  171.101322][ T6577] syzkaller0: entered allmulticast mode
[  171.913367][ T6591] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  172.439002][ T6597] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  174.541729][ T5923] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  174.735493][ T5923] usb 3-1: Using ep0 maxpacket: 8
[  174.746834][ T5923] usb 3-1: config index 0 descriptor too short (expected 28277, got 36)
[  174.772763][ T5923] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  174.791037][ T5923] usb 3-1: config 0 has no interfaces?
[  174.811054][ T5923] usb 3-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  174.841568][ T5923] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.886597][ T5923] usb 3-1: config 0 descriptor??
[  175.589265][ T6596] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.596773][ T6596] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.959164][ T6596] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  176.016209][ T6596] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  176.460712][   T59] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.472782][   T59] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.494287][   T59] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.522017][ T6000] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  178.165418][   T24] usb 3-1: USB disconnect, device number 6
[  178.833754][ T5947] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  179.039523][ T5947] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.063413][ T5947] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  179.094725][ T5947] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  179.698362][ T5947] usb 3-1: Product: syz
[  179.725087][ T5947] usb 3-1: Manufacturer: syz
[  179.732644][ T5947] usb 3-1: SerialNumber: syz
[  179.773464][ T5947] usb 3-1: config 0 descriptor??
[  179.827960][ T5947] snd-usb-audio 3-1:0.0: probe with driver snd-usb-audio failed with error -22
[  180.052384][ T5846] udevd[5846]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  180.313891][ T5923] usb 3-1: USB disconnect, device number 7
[  180.701753][ T6658] openvswitch: netlink: Flow actions attr not present in new flow.
[  180.893255][ T6660] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  182.787671][ T6669] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  184.015940][ T6673] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.023506][ T6673] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.392685][ T6673] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  184.424500][ T6673] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  184.577837][ T5947] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  184.632196][ T5975] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.647601][ T5975] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.675776][ T5975] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.714366][ T5975] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.826313][ T5947] usb 3-1: Using ep0 maxpacket: 8
[  184.854678][ T5947] usb 3-1: config index 0 descriptor too short (expected 28277, got 36)
[  184.865535][ T5947] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  184.933914][ T5947] usb 3-1: config 0 has no interfaces?
[  184.954771][ T5947] usb 3-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  184.992191][ T5947] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.153236][ T5947] usb 3-1: config 0 descriptor??
[  187.114976][ T5947] usb 3-1: USB disconnect, device number 8
[  187.394699][ T6713] openvswitch: netlink: Flow actions attr not present in new flow.
[  187.461614][ T6714] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode
[  187.470062][ T6714] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  189.617456][ T5923] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  189.789457][ T5923] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  189.819102][ T5923] usb 2-1: config 0 interface 0 altsetting 251 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  189.997278][ T5923] usb 2-1: config 0 interface 0 has no altsetting 0
[  190.028737][ T5923] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  190.039151][ T5923] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  190.087529][ T5923] usb 2-1: Product: syz
[  190.091745][ T5923] usb 2-1: Manufacturer: syz
[  190.096454][ T5923] usb 2-1: SerialNumber: syz
[  190.116328][ T5923] usb 2-1: config 0 descriptor??
[  191.076481][ T5923] snd-usb-audio 2-1:0.0: probe with driver snd-usb-audio failed with error -22
[  191.317402][ T6738] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  191.324222][ T5846] udevd[5846]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  191.460866][ T5947] usb 2-1: USB disconnect, device number 7
[  193.310545][ T6764] openvswitch: netlink: Flow actions attr not present in new flow.
[  193.406397][ T6765] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  194.447430][ T5908] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  194.529518][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  194.536013][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  194.777464][ T5908] usb 3-1: Using ep0 maxpacket: 8
[  194.800343][ T5908] usb 3-1: config index 0 descriptor too short (expected 28277, got 36)
[  194.829421][ T5908] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  195.404634][ T5908] usb 3-1: config 0 has no interfaces?
[  195.412284][ T5908] usb 3-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  195.433790][ T5908] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.502719][ T5908] usb 3-1: config 0 descriptor??
[  198.141150][ T6798] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  198.417868][ T5908] usb 3-1: USB disconnect, device number 9
[  199.155361][ T6813] openvswitch: netlink: Flow actions attr not present in new flow.
[  199.254335][ T6804] syzkaller0: entered promiscuous mode
[  199.260403][ T6804] syzkaller0: entered allmulticast mode
[  199.391568][ T6813] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  200.727391][ T5947] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  200.920678][ T5947] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  200.954301][ T5947] usb 1-1: config 0 interface 0 altsetting 251 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  201.078746][ T5947] usb 1-1: config 0 interface 0 has no altsetting 0
[  201.088488][ T5947] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  201.097688][ T5947] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  201.133126][ T5947] usb 1-1: Product: syz
[  201.137818][ T5947] usb 1-1: Manufacturer: syz
[  201.209153][ T5947] usb 1-1: SerialNumber: syz
[  201.392345][ T5947] usb 1-1: config 0 descriptor??
[  202.226471][ T5947] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -22
[  202.548555][ T5947] usb 1-1: USB disconnect, device number 5
[  202.602966][ T5846] udevd[5846]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  203.462419][ T6860] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  204.063633][ T5907] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  204.248592][ T5907] usb 4-1: Using ep0 maxpacket: 8
[  204.297748][ T5907] usb 4-1: config index 0 descriptor too short (expected 28277, got 36)
[  204.437446][ T5907] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  204.464294][ T5907] usb 4-1: config 0 has no interfaces?
[  204.485336][ T5907] usb 4-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  204.516462][ T5907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.576313][ T5907] usb 4-1: config 0 descriptor??
[  205.273624][ T6874] openvswitch: netlink: Flow actions attr not present in new flow.
[  206.485263][ T5908] usb 4-1: USB disconnect, device number 5
[  206.917375][ T6872] Bluetooth: hci1: command 0x0406 tx timeout
[  206.923979][ T6872] Bluetooth: hci0: command 0x0406 tx timeout
[  206.932476][ T5855] Bluetooth: hci3: command 0x0406 tx timeout
[  206.939007][ T5855] Bluetooth: hci2: command 0x0406 tx timeout
[  206.945782][ T5855] Bluetooth: hci4: command 0x0406 tx timeout
[  207.838450][ T6876] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  208.282136][ T6891] syzkaller0: entered promiscuous mode
[  208.287990][ T6891] syzkaller0: entered allmulticast mode
[  208.539487][ T6901] overlayfs: missing 'lowerdir'
[  210.399506][ T6912] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  211.096846][  T982] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  211.584846][  T982] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  211.621175][  T982] usb 4-1: config 0 interface 0 has no altsetting 0
[  211.649186][  T982] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  211.674506][ T5907] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  211.695801][   T10] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  211.705714][  T982] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  211.720087][  T982] usb 4-1: Product: syz
[  211.724631][  T982] usb 4-1: Manufacturer: syz
[  211.730249][  T982] usb 4-1: SerialNumber: syz
[  211.740167][  T982] usb 4-1: config 0 descriptor??
[  211.751874][  T982] usb 4-1: selecting invalid altsetting 0
[  211.887472][   T10] usb 5-1: Using ep0 maxpacket: 8
[  211.899146][   T10] usb 5-1: config index 0 descriptor too short (expected 28277, got 36)
[  211.908579][ T5907] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  211.913305][   T10] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  211.927282][ T5907] usb 3-1: config 0 interface 0 altsetting 251 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  211.976320][  T982] usb 4-1: USB disconnect, device number 6
[  211.995409][   T10] usb 5-1: config 0 has no interfaces?
[  212.025502][   T10] usb 5-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  212.041680][ T6027] udevd[6027]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  212.057698][ T5907] usb 3-1: config 0 interface 0 has no altsetting 0
[  212.069426][ T5907] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  212.078952][ T5907] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  212.088255][ T5907] usb 3-1: Product: syz
[  212.095896][ T5907] usb 3-1: Manufacturer: syz
[  212.102990][ T5907] usb 3-1: SerialNumber: syz
[  212.155442][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.188414][   T10] usb 5-1: config 0 descriptor??
[  212.271691][ T5907] usb 3-1: config 0 descriptor??
[  212.401748][ T5907] snd-usb-audio 3-1:0.0: probe with driver snd-usb-audio failed with error -22
[  212.654917][ T6931] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  212.660696][ T5846] udevd[5846]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  212.847327][   T10] usb 3-1: USB disconnect, device number 10
[  214.376945][ T5947] usb 5-1: USB disconnect, device number 5
[  215.804770][ T6935] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  215.972286][ T6955] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  216.097485][ T6962] overlayfs: missing 'lowerdir'
[  216.491442][ T6959] syzkaller0: entered promiscuous mode
[  216.499879][ T6959] syzkaller0: entered allmulticast mode
[  217.767431][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  217.967314][   T24] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  217.977533][   T24] usb 2-1: config 0 interface 0 has no altsetting 0
[  218.005394][   T24] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  218.027249][   T24] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  218.039975][   T24] usb 2-1: Product: syz
[  218.046121][   T24] usb 2-1: Manufacturer: syz
[  218.052414][   T24] usb 2-1: SerialNumber: syz
[  218.071500][   T24] usb 2-1: config 0 descriptor??
[  218.094000][   T24] usb 2-1: selecting invalid altsetting 0
[  218.517955][   T24] usb 2-1: USB disconnect, device number 8
[  218.721052][ T6025] udevd[6025]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  219.015744][ T6986] netlink: 24 bytes leftover after parsing attributes in process `syz.1.232'.
[  219.228552][ T6989] syz.1.232: attempt to access beyond end of device
[  219.228552][ T6989] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[  219.284004][ T6989] gfs2: error -5 reading superblock
[  220.482364][ T6997] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  222.299813][ T6988] netlink: 12 bytes leftover after parsing attributes in process `syz.1.232'.
[  222.368752][ T6998] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  222.410721][ T7007] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  224.358188][ T5907] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  224.554385][ T5907] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  224.566956][ T5907] usb 3-1: config 0 interface 0 has no altsetting 0
[  224.689142][ T5907] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  224.705710][ T5907] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  224.843929][ T5907] usb 3-1: Product: syz
[  224.849014][ T5907] usb 3-1: Manufacturer: syz
[  224.854577][ T5907] usb 3-1: SerialNumber: syz
[  224.880161][ T5907] usb 3-1: config 0 descriptor??
[  224.912291][ T5907] usb 3-1: selecting invalid altsetting 0
[  225.100779][ T5907] usb 3-1: USB disconnect, device number 11
[  225.980541][ T7055] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  226.090707][ T7057] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  226.661486][ T7064] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  227.025642][ T7065] syzkaller0: entered promiscuous mode
[  228.010275][ T7065] syzkaller0: entered allmulticast mode
[  229.907134][ T7082] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  231.138836][ T7089] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  231.984427][ T7102] overlayfs: missing 'lowerdir'
[  232.261268][ T7108] netlink: 24 bytes leftover after parsing attributes in process `syz.1.262'.
[  233.337661][ T7117] syz.1.262: attempt to access beyond end of device
[  233.337661][ T7117] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[  233.394940][ T7117] gfs2: error -5 reading superblock
[  236.804364][ T7114] netlink: 12 bytes leftover after parsing attributes in process `syz.1.262'.
[  239.874089][ T7153] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.881967][ T7153] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.263113][ T7153] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  240.362559][ T7153] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  240.889558][ T5975] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  240.907492][ T5975] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  241.140872][ T5975] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  241.160593][ T5975] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  243.158550][ T7177] syzkaller0: entered promiscuous mode
[  243.170377][ T7177] syzkaller0: entered allmulticast mode
[  246.472438][   T30] audit: type=1800 audit(1754138680.430:4): pid=7225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=320 res=0 errno=0
[  247.338813][ T7240] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  250.704010][ T7264] syzkaller0: entered promiscuous mode
[  250.709712][ T7264] syzkaller0: entered allmulticast mode
[  252.991704][ T7280] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  253.045898][ T7273] syzkaller0: entered promiscuous mode
[  253.055545][ T7273] syzkaller0: entered allmulticast mode
[  256.230573][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  256.250987][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  259.719115][ T5947] usb 1-1: new low-speed USB device number 6 using dummy_hcd
[  259.895202][ T5947] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  259.909012][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  259.920531][ T5947] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  259.933237][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  259.945085][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  259.959891][ T5947] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  259.967714][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  259.979725][ T5947] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  259.993289][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  260.005270][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  260.123990][ T5947] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  260.145363][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  260.174909][ T5947] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  260.599523][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  260.640332][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  260.658654][ T5947] usb 1-1: string descriptor 0 read error: -22
[  260.665106][ T5947] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  260.687569][ T5947] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.709796][ T5947] adutux 1-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  261.356571][ T5907] usb 1-1: USB disconnect, device number 6
[  261.501375][ T7339] syz.2.315 (7339) used greatest stack depth: 17880 bytes left
[  262.199339][ T7338] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  262.206045][ T7338] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  262.216762][ T7338] vhci_hcd vhci_hcd.0: Device attached
[  262.507394][ T5947] vhci_hcd: vhci_device speed not set
[  262.657401][ T5947] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  263.467736][ T7342] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(11)
[  263.474379][ T7342] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  263.483395][ T7342] vhci_hcd vhci_hcd.0: Device attached
[  263.697440][ T7354] vhci_hcd: connection reset by peer
[  263.723044][ T5975] vhci_hcd: stop threads
[  263.743674][ T7356] vhci_hcd: connection closed
[  263.744797][ T5975] vhci_hcd: release socket
[  263.809225][ T5975] vhci_hcd: disconnect device
[  263.836162][ T5975] vhci_hcd: stop threads
[  263.848157][ T5975] vhci_hcd: release socket
[  263.853627][ T5975] vhci_hcd: disconnect device
[  264.151448][ T5907] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  264.217273][   T24] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  264.327394][ T5907] usb 1-1: Using ep0 maxpacket: 32
[  264.674316][   T24] usb 2-1: config 0 interface 0 altsetting 251 has an invalid descriptor for endpoint zero, skipping
[  265.459437][ T5907] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[  265.703292][ T5907] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  265.714460][   T24] usb 2-1: config 0 interface 0 has no altsetting 0
[  265.724917][ T5907] usb 1-1: New USB device found, idVendor=ae6f, idProduct=79f4, bcdDevice=8f.99
[  265.734484][ T5907] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  265.742785][ T5907] usb 1-1: Product: syz
[  265.747247][   T24] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  265.757401][ T5907] usb 1-1: Manufacturer: syz
[  265.762253][ T5907] usb 1-1: SerialNumber: syz
[  265.769813][   T24] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  265.777396][ T7374] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  265.779211][ T5907] usb 1-1: config 0 descriptor??
[  265.791876][   T24] usb 2-1: Product: syz
[  265.814256][   T24] usb 2-1: Manufacturer: syz
[  265.819787][   T24] usb 2-1: SerialNumber: syz
[  265.833992][   T24] usb 2-1: config 0 descriptor??
[  265.879031][   T24] snd-usb-audio 2-1:0.0: probe with driver snd-usb-audio failed with error -22
[  265.974884][ T7374] syzkaller0: entered promiscuous mode
[  266.000747][ T7374] syzkaller0: entered allmulticast mode
[  266.041963][   T10] usb 1-1: USB disconnect, device number 7
[  266.577634][  T982] usb 2-1: USB disconnect, device number 9
[  267.382537][ T7399] netlink: 'syz.0.330': attribute type 10 has an invalid length.
[  268.591338][ T5947] vhci_hcd: vhci_device speed not set
[  268.847433][ T7406] netlink: 12 bytes leftover after parsing attributes in process `syz.2.332'.
[  271.569135][ T7399] 8021q: adding VLAN 0 to HW filter on device team0
[  271.620833][ T7399] bond0: (slave team0): Enslaving as an active interface with an up link
[  271.692695][ T7416] 8021q: adding VLAN 0 to HW filter on device bond0
[  271.705307][ T7416] bond0: (slave rose0): Enslaving as an active interface with an up link
[  272.446117][ T7437] Bluetooth: MGMT ver 1.23
[  272.713693][ T7448] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  272.747318][  T982] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  272.881707][ T7453] overlayfs: failed to resolve './file1': -2
[  272.980226][  T982] usb 4-1: config 0 interface 0 altsetting 251 has an invalid descriptor for endpoint zero, skipping
[  273.000709][  T982] usb 4-1: config 0 interface 0 has no altsetting 0
[  273.015238][  T982] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  273.049431][  T982] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  273.100801][  T982] usb 4-1: Product: syz
[  273.109238][  T982] usb 4-1: Manufacturer: syz
[  273.126426][  T982] usb 4-1: SerialNumber: syz
[  273.172078][  T982] usb 4-1: config 0 descriptor??
[  273.239969][  T982] snd-usb-audio 4-1:0.0: probe with driver snd-usb-audio failed with error -22
[  273.736260][  T982] usb 4-1: USB disconnect, device number 7
[  275.821556][ T7486] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  276.010853][ T7486] syzkaller0: entered promiscuous mode
[  276.016480][ T7486] syzkaller0: entered allmulticast mode
[  276.848077][ T7504] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  277.292479][ T7511] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  283.257337][   T24] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  283.428754][   T24] usb 1-1: config 0 interface 0 altsetting 251 has an invalid descriptor for endpoint zero, skipping
[  283.440478][   T24] usb 1-1: config 0 interface 0 has no altsetting 0
[  283.466179][   T24] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  283.475400][   T24] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  283.484065][   T24] usb 1-1: Product: syz
[  283.489407][   T24] usb 1-1: Manufacturer: syz
[  283.494045][   T24] usb 1-1: SerialNumber: syz
[  283.514056][   T24] usb 1-1: config 0 descriptor??
[  283.543025][   T24] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -22
[  283.885653][ T7514] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  283.926776][ T7514] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  283.973520][ T7514] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  284.087524][   T24] usb 1-1: USB disconnect, device number 8
[  284.514867][ T7584] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  288.227095][ T7609] loop3: detected capacity change from 0 to 1
[  288.298249][ T7609] Dev loop3: unable to read RDB block 1
[  288.347367][ T7609]  loop3: unable to read partition table
[  288.395256][ T7609] loop3: partition table beyond EOD, truncated
[  288.468829][ T7609] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  288.695456][ T7616] syz.0.374 uses obsolete (PF_INET,SOCK_PACKET)
[  289.910717][ T7626] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  290.028099][ T7630] syzkaller0: entered promiscuous mode
[  290.145191][ T7630] syzkaller0: entered allmulticast mode
[  293.810657][   T24] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  293.979501][   T24] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  294.165647][   T24] usb 2-1: config 0 interface 0 has no altsetting 0
[  294.210940][   T24] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  294.220331][   T24] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  294.228827][   T24] usb 2-1: Product: syz
[  294.233087][   T24] usb 2-1: Manufacturer: syz
[  294.237997][   T24] usb 2-1: SerialNumber: syz
[  294.255352][   T24] usb 2-1: config 0 descriptor??
[  294.279632][   T24] usb 2-1: selecting invalid altsetting 0
[  294.730213][  T982] usb 2-1: USB disconnect, device number 10
[  296.319937][ T7683] netlink: 'syz.0.391': attribute type 10 has an invalid length.
[  296.917375][   T24] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  297.081081][   T24] usb 5-1: New USB device found, idVendor=1b80, idProduct=e396, bcdDevice=a7.b1
[  297.137329][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.170116][   T24] usb 5-1: config 0 descriptor??
[  297.212433][   T24] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  297.230979][   T24] dvb_usb_af9015 5-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  298.239705][   T24] usb 5-1: USB disconnect, device number 6
[  300.003717][ T7707] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  300.068230][ T7707] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  302.880028][ T7741] netlink: 44 bytes leftover after parsing attributes in process `syz.3.403'.
[  303.057056][ T7741] openvswitch: netlink: Flow key attr not present in new flow.
[  303.144500][ T7742] bpq0: left promiscuous mode
[  303.149346][ T7742] bpq0: entered allmulticast mode
[  303.525004][ T7748] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  303.666387][ T7748] syzkaller0: entered promiscuous mode
[  303.672540][ T7748] syzkaller0: entered allmulticast mode
[  305.611626][ T7765] netlink: 'syz.1.407': attribute type 10 has an invalid length.
[  305.639703][ T7765] 8021q: adding VLAN 0 to HW filter on device team0
[  305.664589][ T7765] bond0: (slave team0): Enslaving as an active interface with an up link
[  306.177687][ T7772] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  308.908211][ T7791] netlink: 12 bytes leftover after parsing attributes in process `syz.4.414'.
[  309.607940][ T7795] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  309.614483][ T7795] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  309.623872][ T7795] vhci_hcd vhci_hcd.0: Device attached
[  309.701505][ T7795] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(10)
[  309.708241][ T7795] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  309.762426][ T7795] vhci_hcd vhci_hcd.0: Device attached
[  309.847429][   T24] vhci_hcd: vhci_device speed not set
[  309.919232][   T24] usb 41-1: new full-speed USB device number 3 using vhci_hcd
[  310.374447][ T7797] vhci_hcd: connection reset by peer
[  310.380803][ T7799] vhci_hcd: connection closed
[  310.381440][   T49] vhci_hcd: stop threads
[  310.392518][   T49] vhci_hcd: release socket
[  310.398097][   T49] vhci_hcd: disconnect device
[  310.405480][   T49] vhci_hcd: stop threads
[  310.416477][   T49] vhci_hcd: release socket
[  310.421152][   T49] vhci_hcd: disconnect device
[  310.963459][ T7772] bpq0: entered promiscuous mode
[  310.968603][ T7772] bpq0: left allmulticast mode
[  310.974365][ T7780] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  311.001978][ T7781] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[  311.077546][ T7781] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[  311.089951][ T7781] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  311.182372][ T7806] netlink: 24 bytes leftover after parsing attributes in process `syz.1.417'.
[  311.492823][ T7818] netlink: 12 bytes leftover after parsing attributes in process `syz.1.417'.
[  311.506517][ T7813] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  312.230510][ T7806] syz.1.417: attempt to access beyond end of device
[  312.230510][ T7806] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[  312.243985][ T7806] gfs2: error -5 reading superblock
[  312.495616][ T7830] netlink: 12 bytes leftover after parsing attributes in process `syz.4.421'.
[  312.794783][ T7831] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  312.801386][ T7831] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  312.818978][ T7831] vhci_hcd vhci_hcd.0: Device attached
[  313.136382][  T982] vhci_hcd: vhci_device speed not set
[  313.717518][  T982] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[  314.397233][ T7851] =======================================================
[  314.397233][ T7851] WARNING: The mand mount option has been deprecated and
[  314.397233][ T7851]          and is ignored by this kernel. Remove the mand
[  314.397233][ T7851]          option from the mount to silence this warning.
[  314.397233][ T7851] =======================================================
[  315.067368][ T5947] usb 1-1: new low-speed USB device number 9 using dummy_hcd
[  315.168464][   T24] vhci_hcd: vhci_device speed not set
[  315.466638][ T5947] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  315.483667][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  315.758685][ T5947] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  315.791873][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  315.883687][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  315.948729][ T5947] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  315.956190][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  315.987496][ T5947] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  316.022768][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  316.057963][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  316.085330][ T5947] usb 1-1: config 168 descriptor has 1 excess byte, ignoring
[  316.093792][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  316.149599][ T5947] usb 1-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  316.166541][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  316.186748][ T5947] usb 1-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  316.203950][ T5947] usb 1-1: string descriptor 0 read error: -22
[  316.211110][ T5947] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  316.226930][ T5947] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.311326][ T5947] adutux 1-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  316.486383][ T7833] vhci_hcd: connection reset by peer
[  316.534894][ T5947] usb 1-1: USB disconnect, device number 9
[  316.572028][   T12] vhci_hcd: stop threads
[  316.582680][   T12] vhci_hcd: release socket
[  316.590288][ T7874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.432'.
[  316.599964][   T12] vhci_hcd: disconnect device
[  316.604905][ T7874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.432'.
[  316.657349][ T7874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.432'.
[  317.401997][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  317.717438][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  318.207269][ T5947] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  318.358973][ T5947] usb 4-1: Using ep0 maxpacket: 32
[  318.373440][ T5947] usb 4-1: config 0 interface 0 has no altsetting 0
[  318.382632][ T5947] usb 4-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  318.399614][ T5947] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  318.409608][ T5947] usb 4-1: Product: syz
[  318.413909][ T5947] usb 4-1: Manufacturer: syz
[  318.421264][ T5947] usb 4-1: SerialNumber: syz
[  318.431252][ T5947] usb 4-1: config 0 descriptor??
[  318.439154][ T5947] gs_usb 4-1:0.0: Required endpoints not found
[  318.751773][ T7879] netlink: 8 bytes leftover after parsing attributes in process `syz.3.434'.
[  318.967780][  T982] vhci_hcd: vhci_device speed not set
[  318.997677][   T24] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  319.273686][ T5907] usb 4-1: USB disconnect, device number 8
[  319.423742][ T7899] netlink: 'syz.4.441': attribute type 12 has an invalid length.
[  319.445154][   T30] audit: type=1800 audit(1754138753.400:5): pid=7896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=476 res=0 errno=0
[  319.476739][   T24] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  319.493042][   T24] usb 3-1: config 0 interface 0 has no altsetting 0
[  319.523506][   T24] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  319.533145][   T24] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  319.541737][   T24] usb 3-1: Product: syz
[  319.546228][   T24] usb 3-1: Manufacturer: syz
[  319.566682][   T24] usb 3-1: SerialNumber: syz
[  319.616982][   T24] usb 3-1: config 0 descriptor??
[  319.656649][   T24] usb 3-1: selecting invalid altsetting 0
[  319.947508][ T5947] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  320.517915][ T5947] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  320.531179][ T5947] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  320.845220][ T5947] usb 5-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  320.865589][ T5947] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.034210][   T24] usb 3-1: USB disconnect, device number 12
[  321.102179][ T5947] usb 5-1: config 0 descriptor??
[  321.437285][   T24] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  322.169733][ T5947] usbhid 5-1:0.0: can't add hid device: -71
[  322.175793][ T5947] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  322.199820][ T5947] usb 5-1: USB disconnect, device number 7
[  322.297348][   T24] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  322.327330][   T24] usb 3-1: config 0 interface 0 has no altsetting 0
[  322.346324][   T24] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  322.387300][   T24] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  322.448972][   T24] usb 3-1: Product: syz
[  322.527068][   T24] usb 3-1: Manufacturer: syz
[  322.546781][   T24] usb 3-1: SerialNumber: syz
[  322.559102][   T24] usb 3-1: config 0 descriptor??
[  322.570314][   T24] usb 3-1: selecting invalid altsetting 0
[  322.877645][ T7939] netlink: 36 bytes leftover after parsing attributes in process `syz.4.451'.
[  323.806225][ T7944] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  323.939583][ T5947] usb 3-1: USB disconnect, device number 13
[  324.035134][ T7949] netlink: 36 bytes leftover after parsing attributes in process `syz.3.453'.
[  324.960130][ T7951] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  325.987362][   T30] audit: type=1800 audit(1754138759.940:6): pid=7957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=470 res=0 errno=0
[  326.771327][   T30] audit: type=1800 audit(1754138760.730:7): pid=7961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=476 res=0 errno=0
[  328.215445][ T7979] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  328.224782][ T7979] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  329.212539][ T7984] netlink: 44 bytes leftover after parsing attributes in process `syz.1.463'.
[  329.222672][ T7984] openvswitch: netlink: Flow key attr not present in new flow.
[  329.477036][ T7986] bpq0: left promiscuous mode
[  329.481939][ T7986] bpq0: entered allmulticast mode
[  330.269547][ T7990] netlink: 44 bytes leftover after parsing attributes in process `syz.2.464'.
[  330.297440][ T7990] openvswitch: netlink: Flow key attr not present in new flow.
[  331.765902][ T8000] netlink: 'syz.4.466': attribute type 10 has an invalid length.
[  333.097543][   T24] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  333.400452][   T24] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  333.414307][   T24] usb 1-1: config 0 interface 0 has no altsetting 0
[  333.426214][   T24] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  333.440833][   T24] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  333.468587][   T24] usb 1-1: Product: syz
[  333.477035][   T24] usb 1-1: Manufacturer: syz
[  333.494666][   T24] usb 1-1: SerialNumber: syz
[  333.521537][   T24] usb 1-1: config 0 descriptor??
[  333.560188][   T24] usb 1-1: selecting invalid altsetting 0
[  334.508213][   T24] usb 1-1: USB disconnect, device number 10
[  334.773535][ T8033] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(11)
[  334.780197][ T8033] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  334.802707][ T8033] vhci_hcd vhci_hcd.0: Device attached
[  334.836749][ T8030] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  334.843312][ T8030] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  334.851583][ T8030] vhci_hcd vhci_hcd.0: Device attached
[  335.117583][ T5947] usb 39-2: new low-speed USB device number 3 using vhci_hcd
[  335.181128][ T8041] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  335.223579][ T8041] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  335.382521][ T8034] vhci_hcd: connection reset by peer
[  335.393144][ T8035] vhci_hcd: connection closed
[  335.398354][   T13] vhci_hcd: stop threads
[  335.451503][   T13] vhci_hcd: release socket
[  335.527326][   T13] vhci_hcd: disconnect device
[  335.567875][   T13] vhci_hcd: stop threads
[  335.572493][   T13] vhci_hcd: release socket
[  335.577305][   T13] vhci_hcd: disconnect device
[  337.255472][ T8054] netlink: 12 bytes leftover after parsing attributes in process `syz.0.480'.
[  339.479160][ T8078] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  340.267392][ T5947] vhci_hcd: vhci_device speed not set
[  340.781211][   T30] audit: type=1800 audit(1754138774.740:8): pid=8093 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=489 res=0 errno=0
[  340.910269][ T8098] netlink: 8 bytes leftover after parsing attributes in process `syz.2.491'.
[  340.942460][ T8098] netlink: 8 bytes leftover after parsing attributes in process `syz.2.491'.
[  340.993822][ T8098] netlink: 8 bytes leftover after parsing attributes in process `syz.2.491'.
[  342.503389][   T30] audit: type=1800 audit(1754138776.460:9): pid=8105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=525 res=0 errno=0
[  343.887262][ T8120] netlink: 12 bytes leftover after parsing attributes in process `syz.0.496'.
[  347.560704][ T8149] netlink: 12 bytes leftover after parsing attributes in process `syz.1.502'.
[  348.380277][   T30] audit: type=1800 audit(1754138782.330:10): pid=8157 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm=77DEA305FF07 name="file0" dev="tmpfs" ino=517 res=0 errno=0
[  349.390314][ T8164] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  352.183459][ T8186] tipc: Started in network mode
[  352.197559][ T8186] tipc: Node identity f6f658b018a7, cluster identity 4711
[  352.216624][ T8186] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  352.284970][ T8185] tipc: Disabling bearer <eth:syzkaller0>
[  352.339933][ T5849] Oops: general protection fault, probably for non-canonical address 0xdffffc001fffe000: 0000 [#1] SMP KASAN PTI
[  352.351945][ T5849] KASAN: probably user-memory-access in range [0x00000000ffff0000-0x00000000ffff0007]
[  352.361509][ T5849] CPU: 0 UID: 0 PID: 5849 Comm: syz-executor Not tainted 6.16.0-next-20250731-syzkaller #0 PREEMPT(full) 
[  352.372780][ T5849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  352.382822][ T5849] RIP: 0010:percpu_ref_get_many+0x8d/0x140
[  352.388638][ T5849] Code: 01 48 c7 c7 60 4d 98 8b be 4b 03 00 00 48 c7 c2 a0 4d 98 8b e8 a4 c2 71 ff 49 bc 00 00 00 00 00 fc ff df 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 d4 4d f7 ff 49 8b 07 a8 03 75 62
[  352.408234][ T5849] RSP: 0018:ffffc90003f6fa40 EFLAGS: 00010006
[  352.414288][ T5849] RAX: 000000001fffe000 RBX: ffffffff822bc3e9 RCX: d274355739635b00
[  352.422246][ T5849] RDX: 0000000000000000 RSI: ffffffff8be340e0 RDI: ffffffff8be340a0
[  352.430296][ T5849] RBP: 0000000000000078 R08: 0000000000000000 R09: ffffffff822bc3e9
[  352.438310][ T5849] R10: dffffc0000000000 R11: fffffbfff1f44307 R12: dffffc0000000000
[  352.446335][ T5849] R13: ffff8880b863b500 R14: 0000000000000001 R15: 00000000ffff0000
[  352.454300][ T5849] FS:  000055555f66b500(0000) GS:ffff888125c43000(0000) knlGS:0000000000000000
[  352.463231][ T5849] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  352.469806][ T5849] CR2: 000000110c369a11 CR3: 0000000059472000 CR4: 00000000003526f0
[  352.477778][ T5849] Call Trace:
[  352.481104][ T5849]  <TASK>
[  352.484033][ T5849]  refill_obj_stock+0x254/0x850
[  352.488905][ T5849]  ? refill_obj_stock+0x116/0x850
[  352.493964][ T5849]  __memcg_slab_free_hook+0x127/0x3d0
[  352.499331][ T5849]  ? __dequeue_signal+0x487/0x5b0
[  352.504466][ T5849]  kmem_cache_free+0x223/0x400
[  352.509229][ T5849]  __dequeue_signal+0x487/0x5b0
[  352.514079][ T5849]  dequeue_signal+0x1a2/0x370
[  352.518772][ T5849]  get_signal+0x55f/0x1340
[  352.523301][ T5849]  arch_do_signal_or_restart+0x9a/0x750
[  352.528858][ T5849]  ? __pfx_get_timespec64+0x10/0x10
[  352.534059][ T5849]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  352.540348][ T5849]  ? exit_to_user_mode_loop+0x40/0x110
[  352.545804][ T5849]  exit_to_user_mode_loop+0x75/0x110
[  352.551090][ T5849]  do_syscall_64+0x2bd/0x3b0
[  352.555683][ T5849]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.561746][ T5849]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  352.567383][ T5849]  ? clear_bhb_loop+0x60/0xb0
[  352.572053][ T5849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.577971][ T5849] RIP: 0033:0x7f88571c1425
[  352.582389][ T5849] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 54 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f 55 ff ff 48 8b 04 24 48 83 c4 28 f7 d8
[  352.602163][ T5849] RSP: 002b:00007fff7650ace0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
[  352.610600][ T5849] RAX: fffffffffffffdfc RBX: 000000000000017c RCX: 00007f88571c1425
[  352.618747][ T5849] RDX: 00007fff7650ad20 RSI: 0000000000000000 RDI: 0000000000000000
[  352.626764][ T5849] RBP: 00007fff7650ad8c R08: 0000000000000000 R09: 0000000000000000
[  352.634757][ T5849] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000001388
[  352.642723][ T5849] R13: 00000000000927c0 R14: 0000000000055fdb R15: 00007fff7650ade0
[  352.650695][ T5849]  </TASK>
[  352.653740][ T5849] Modules linked in:
[  352.657655][ T5849] ---[ end trace 0000000000000000 ]---
[  352.663145][ T5849] RIP: 0010:percpu_ref_get_many+0x8d/0x140
[  352.668985][ T5849] Code: 01 48 c7 c7 60 4d 98 8b be 4b 03 00 00 48 c7 c2 a0 4d 98 8b e8 a4 c2 71 ff 49 bc 00 00 00 00 00 fc ff df 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 d4 4d f7 ff 49 8b 07 a8 03 75 62
[  352.688606][ T5849] RSP: 0018:ffffc90003f6fa40 EFLAGS: 00010006
[  352.694688][ T5849] RAX: 000000001fffe000 RBX: ffffffff822bc3e9 RCX: d274355739635b00
[  352.702868][ T5849] RDX: 0000000000000000 RSI: ffffffff8be340e0 RDI: ffffffff8be340a0
[  352.711036][ T5849] RBP: 0000000000000078 R08: 0000000000000000 R09: ffffffff822bc3e9
[  352.719171][ T5849] R10: dffffc0000000000 R11: fffffbfff1f44307 R12: dffffc0000000000
[  352.727160][ T5849] R13: ffff8880b863b500 R14: 0000000000000001 R15: 00000000ffff0000
[  352.735144][ T5849] FS:  000055555f66b500(0000) GS:ffff888125c43000(0000) knlGS:0000000000000000
[  352.744139][ T5849] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  352.750722][ T5849] CR2: 000000110c369a11 CR3: 0000000059472000 CR4: 00000000003526f0
[  352.758720][ T5849] Kernel panic - not syncing: Fatal exception
[  352.765186][ T5849] Kernel Offset: disabled
[  352.769512][ T5849] Rebooting in 86400 seconds..