last executing test programs:

24m36.786745083s ago: executing program 0 (id=20):
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffc000/0x3000)=nil)
madvise(&(0x7f0000ff7000/0x8000)=nil, 0x8000, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mknodat(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
r1 = syz_open_dev$evdev(0x0, 0x672, 0x200)
ioctl$EVIOCGMTSLOTS(r1, 0x8040450a, &(0x7f0000000100)=""/218)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
ioctl$TIOCSETD(r2, 0x5423, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x80c80, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x2200cd0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r3, &(0x7f0000006800)={0x2020}, 0x2020)
read$FUSE(r3, &(0x7f00000047c0)={0x2020}, 0x2020)

24m31.628220552s ago: executing program 0 (id=28):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
io_setup(0x3, &(0x7f00000000c0)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000200)=[0x0])
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000600)=ANY=[@ANYRES32=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
r4 = syz_open_pts(r1, 0x101140)
r5 = dup3(r4, r1, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000))

24m30.676272388s ago: executing program 0 (id=30):
prctl$PR_SCHED_CORE(0x3e, 0x4000001, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x9, 0xfffffffffffffffd, 0x2, 0x9})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
preadv(r4, &(0x7f00000002c0)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1, 0x35, 0x88)

24m29.364002156s ago: executing program 0 (id=33):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r0}, 0x10)
getegid()
socket(0x10, 0x3, 0x0)
r1 = openat$rtc(0xffffff9c, &(0x7f00000000c0), 0x141800, 0x0)
ioctl$RTC_RD_TIME(r1, 0x80247009, &(0x7f0000000300))
r2 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SG_IO(r2, 0x2285, 0x0)
writev(r2, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484ea0000000f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb067a0689fff2a41cfbf0e9d85e44", 0x2b}], 0x2)

24m28.039152484s ago: executing program 0 (id=35):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003140)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="08001a"], 0x18c0}}, 0x0)
r1 = openat$sndseq(0xffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f0000000140)={{0x0, 0x1}, {0xf}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_create(0x0, 0x0, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r3, r2, &(0x7f0000002080)=0x64, 0x21c)
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x30, 0x13, 0xa, 0x5, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x40004)

24m23.364664426s ago: executing program 0 (id=44):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000))
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
unlink(&(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
syz_usb_connect(0x3, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100001a77aa4094225b4210a2010203010902240001000000000904000002923350000905f402ff030000000905ba"], 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$tmpfs(0x0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1000810, 0x0)
gettid()
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r0], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xb, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r4, 0x2000000, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0x0, 0x6040000})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000004000)=@newtaction={0xe68, 0x30, 0x25, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x4}, [{}, {}, {}, {0x0, 0x0, 0x0, 0x4000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x8512}, {}, {0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x0, 0x40}, {}, {0x200000}, {}, {0x0, 0x5}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x10}, {}, {}, {}, {}, {0x0, 0x200}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x40000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6c}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {}, {}, {0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@gettaction={0x28, 0x32, 0x6dd711a25f4cb68b, 0x200, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}]}, 0x28}}, 0x0)

24m8.203670232s ago: executing program 32 (id=44):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000))
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
unlink(&(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
syz_usb_connect(0x3, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100001a77aa4094225b4210a2010203010902240001000000000904000002923350000905f402ff030000000905ba"], 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$tmpfs(0x0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1000810, 0x0)
gettid()
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r0], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xb, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r4, 0x2000000, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0x0, 0x6040000})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000004000)=@newtaction={0xe68, 0x30, 0x25, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x4}, [{}, {}, {}, {0x0, 0x0, 0x0, 0x4000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x8512}, {}, {0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x0, 0x40}, {}, {0x200000}, {}, {0x0, 0x5}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x10}, {}, {}, {}, {}, {0x0, 0x200}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x40000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6c}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {}, {}, {}, {0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@gettaction={0x28, 0x32, 0x6dd711a25f4cb68b, 0x200, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}]}, 0x28}}, 0x0)

24m1.70815289s ago: executing program 3 (id=76):
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0x60, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000080000008500000059"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000440)={r2, &(0x7f0000000680), &(0x7f0000000400)=@tcp6=r4, 0x2}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r3, 0x18000000000002a0, 0x5ee, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

24m0.944817977s ago: executing program 3 (id=79):
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffc000/0x3000)=nil)
madvise(&(0x7f0000ff7000/0x8000)=nil, 0x8000, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mknodat(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
r1 = syz_open_dev$evdev(0x0, 0x672, 0x200)
ioctl$EVIOCGMTSLOTS(r1, 0x8040450a, &(0x7f0000000100)=""/218)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
ioctl$TIOCSETD(r2, 0x5423, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x80c80, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000200)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x2200cd0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r3, &(0x7f0000006800)={0x2020}, 0x2020)
read$FUSE(r3, &(0x7f00000047c0)={0x2020}, 0x2020)

23m59.641494775s ago: executing program 3 (id=80):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f00000008c0)=""/31, 0x1f)

23m58.282285663s ago: executing program 3 (id=83):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_open_dev$vbi(0x0, 0x0, 0x2)
r4 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000400)={0xa00965, 0x2})
r5 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r5, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_S_INPUT(r3, 0xc0045627, 0x0)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r7, &(0x7f0000000000)={0x10, 0x0, 0x2ddfdbff, 0x2ffffffff}, 0xc)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r6, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x1802, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r8, 0x1, 0x70bd2c, 0x0, {0x1, 0x0, 0xffff}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}, 0x1, 0xff07}, 0x2000000)

23m57.957095496s ago: executing program 3 (id=84):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
unlink(&(0x7f0000000140)='./cgroup\x00')
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000780)=ANY=[@ANYBLOB="750a0000000000006111a4000000000018000000000000000000000000000000950000000000000014318aea72f69c22333a691e228d93954189d4ce08d5647026d230a16ddf566b44229de8ec1966a26c764e45053dbc4e0dcb1aff"], &(0x7f0000000000)='GPL\x00'}, 0x94)

23m56.855360697s ago: executing program 3 (id=86):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4008840)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000e40)=0x30, 0x2)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r3, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000001c0)="00940a37", 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a31000000000c00078008000640dbf5000011000300686173683a69702c6d61726b000000"], 0x58}, 0x1, 0x0, 0x0, 0x110}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
sendto$unix(0xffffffffffffffff, 0x0, 0x0, 0x800, 0x0, 0x0)

23m41.615189283s ago: executing program 33 (id=86):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4008840)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000e40)=0x30, 0x2)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r3, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f00000001c0)="00940a37", 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a31000000000c00078008000640dbf5000011000300686173683a69702c6d61726b000000"], 0x58}, 0x1, 0x0, 0x0, 0x110}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
sendto$unix(0xffffffffffffffff, 0x0, 0x0, 0x800, 0x0, 0x0)

18m22.733484038s ago: executing program 2 (id=607):
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000002c0)="df3b46a1330000000000000000000000000000f1bfb4aa068fc60c48ae2cd8ab1fcc903b7ebd3bf583aaa8d7c8db6df62ecfbbbf9d88e22299fc6bf8966fde2978d207040000001fc672f220fb612483c7392064f03ec88c0d80463164cc66bad573b1862f7e9dd8c88d2a5ad193407968b7cc9beb08c875", 0x78}], 0x1}, 0x40000)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2000, 0x2, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
setuid(0xee00)
sendmsg$nl_route_sched(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=@newtaction={0x14c, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x138, 0x1, [@m_tunnel_key={0x134, 0x1, 0x0, 0x0, {{0xf}, {0x50, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @ipv4={'\x00', '\xff\xff', @private}}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @remote}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8}]}, {0xb5, 0x6, "f8765c1ad1359afda271a9d82b0d2fed35a8d9f2e1cabd4b27cb890d67a3e9a69ce703deda5687c41cd3f38968f067b1fad627aac0dd3a204c45514545cb184d5bf83390ef714684c395af4bd8f6e3c1a7fc24ea3ea333c5e9e3f65156b03ed4ecdc27b044f1d41a6c02c7e4bcb1b4b9f3d2028c3aace1887aab67afe2620f9bc7adefd87bbf1509b763cda0cd7d9b83f2e5a930085279fb43a856395452c3995491598ae483874823054cc90ed0883d1b"}, {0xc}, {0xc}}}]}]}, 0x14c}}, 0x0)
epoll_pwait(r2, &(0x7f0000000440)=[{}, {}], 0x2, 0x8, &(0x7f0000000480)={[0x9]}, 0x8)
setgroups(0x1, &(0x7f0000000100)=[r1])
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r7)
sendmsg$NLBL_UNLABEL_C_STATICADD(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, r8, 0x201, 0x0, 0x0, {0x3, 0x0, 0x26}}, 0x14}, 0x8, 0x3000000000002}, 0x8000)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)
write$tun(r9, &(0x7f0000000300)=ANY=[@ANYBLOB="000086dd03000a000000140000006c07010033d43afffe800000000000000000000000000010ff02000000000000000000000000000189"], 0x340a)

18m21.255573644s ago: executing program 2 (id=609):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4)
r1 = socket$netlink(0x10, 0x3, 0x4)
write(r1, &(0x7f0000000040)="2700000014000707030e0000120f0a0011000100f5fe009d2fb112ff000000008a151f75080039", 0x27)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000000500)=ANY=[@ANYBLOB, @ANYRESHEX, @ANYBLOB="2c726f586846277852565a3030303074a4e62ca5c0ca4838e330303030303030303030303030343030303071b97365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
read$FUSE(0xffffffffffffffff, &(0x7f00000083c0)={0x2020}, 0x2020)
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x18)
getdents64(r2, 0x0, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f0000000b00)={0xa, 0xfdfe, 0x100007, @mcast1, 0xa}, 0x1c)
connect$pppl2tp(r3, &(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x5, 0x0, {0xa, 0x0, 0xf9d, @private2}}}, 0x32)
writev(r3, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x809, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
close(0x3)

18m21.012010562s ago: executing program 2 (id=610):
open(&(0x7f0000000140)='./file1\x00', 0x60142, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000002400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000010000', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000000200)={0x2020, 0x0, <r1=>0x0}, 0x2020)
open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000002300)={0x50, 0x0, r1, {0x7, 0x9, 0x0, 0x1030002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x6}}, 0x50)
read$FUSE(r0, &(0x7f00000065c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r2}, 0x10)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x20080, 0x0)

18m20.880558539s ago: executing program 2 (id=611):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000500)='sys_exit\x00', r0}, 0x10)
r1 = openat$rtc(0xffffff9c, &(0x7f00000000c0), 0x141800, 0x0)
ioctl$RTC_RD_TIME(r1, 0x80247009, &(0x7f0000000300))
r2 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SG_IO(r2, 0x2285, 0x0)
writev(r2, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484ea0000000f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb067a0689fff2a41cfbf0e9d85e44", 0x2b}], 0x2)

18m19.69617814s ago: executing program 2 (id=612):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
socket(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
sendmsg$NFNL_MSG_COMPAT_GET(0xffffffffffffffff, 0x0, 0x4814)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
timer_create(0x0, 0x0, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r2, r1, &(0x7f0000002080)=0x64, 0x21c)
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x28, 0x13, 0xa, 0x5, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x40040}, 0x40004)

18m19.586350201s ago: executing program 2 (id=614):
r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, &(0x7f0000000200)=ANY=[@ANYRESHEX=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x4}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x94)
syz_usb_control_io(r0, 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/comedi1\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
capset(0x0, &(0x7f0000000140))
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x44010)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000a40)={@map=0x1, 0x4, 0x1, 0x4, &(0x7f0000000940)=[0x0], 0x1, 0x0, &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000009c0)=[0x0, 0x0, 0x0], &(0x7f0000000a00)=[0x0, 0x0], <r5=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000480)={@fallback=r3, 0xffffffffffffffff, 0xb, 0x2, r1, @void, @value=r1, @void, @void, r5}, 0x20)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = dup(r6)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x7}], 0x1c)
sendmsg$inet6(r6, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)

18m4.096646138s ago: executing program 34 (id=614):
r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, &(0x7f0000000200)=ANY=[@ANYRESHEX=r0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x4}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x94)
syz_usb_control_io(r0, 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/comedi1\x00', 0x400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
capset(0x0, &(0x7f0000000140))
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x44010)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000a40)={@map=0x1, 0x4, 0x1, 0x4, &(0x7f0000000940)=[0x0], 0x1, 0x0, &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000009c0)=[0x0, 0x0, 0x0], &(0x7f0000000a00)=[0x0, 0x0], <r5=>0x0}, 0x40)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000480)={@fallback=r3, 0xffffffffffffffff, 0xb, 0x2, r1, @void, @value=r1, @void, @void, r5}, 0x20)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = dup(r6)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x7}], 0x1c)
sendmsg$inet6(r6, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)

3m8.688344004s ago: executing program 1 (id=1926):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x14, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x2, @loopback, 0xfffffffd}}, 0x0, 0x0, 0x500, 0x0, 0x54, 0xa}, 0x9c)

3m7.442227952s ago: executing program 1 (id=1928):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000000)=0x400000001, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x4e23, 0xa4e4, @remote, 0x3}, 0x1c)
sendmmsg(r0, &(0x7f00000029c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000100)="9e0984a0", 0x4}], 0x1}}], 0x1, 0x4010)

3m7.149321667s ago: executing program 1 (id=1930):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)=@newlink={0x34, 0x10, 0x1, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x1002, 0x9}, [@IFLA_GROUP={0x8, 0x1b, 0x1000}, @IFLA_IFALIASn={0x4}, @IFLA_TARGET_NETNSID={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x24040884}, 0x48001)
mlockall(0x7)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)

3m4.824203162s ago: executing program 1 (id=1932):
r0 = socket$tipc(0x1e, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$tipc(r0, &(0x7f0000003100)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000002f40)=[{{0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f00000002c0)="91199893b794f675ec88239fef317c764ee3a8ecbdc2a8c32d46f77944d1de9f924d05d3566b8eb8f5750393c669559d05543efa2927ef0d2b10e3d4f8541f34e1c7c8ca2d1e811f67f3dc50fdd469af72a49e684e28a364f5da124dff2b55a5536aa670b82da70bf0f19cd420371848ddc41d65649fde307c1971599f2fec84845e32bb2b6ebda099de12e8b64842024389524a1c5a97608000d1030d99e2a6e23a0bc8", 0xa4}, {&(0x7f0000000380)="11a68683394e1541cc444dff7adf30f079408cb066a6f8f4d33c4f11850de78c586d1a2ccff92e8e83fb82e447d9b88de42182e9e8c97415f41ef8a504215a2b2fdb1404c9659fdb988d0f527c3675cf2b", 0x51}, {&(0x7f0000000400)="875ad17d55c11f1ea6ec6cd17661afc73209e32142961e4660591bf3ca40d05a507ac0b0e71f7ed4c63f52a003cc8102f20dc6e33b5dc6de64ac815cf87867507cc072f0cb762aa5deb8731a699d3c7c69f85266ba51eb244f20129de491adaeb0c2d2eb13c1f215ddff92b05148f0ad513018b14798e45e55ecb916d4dd89f2df7e33c470998f325bf453f929d86196", 0x90}, {&(0x7f00000004c0)="1273dd9951adeaefffe3c4957c86dbff8693adf2202b620b3aec000cf330bb7249", 0x21}, {&(0x7f0000000500)="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", 0xba7}], 0x5}}], 0x300, 0x0)

3m0.106175283s ago: executing program 1 (id=1939):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000000)=0x400000001, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)
connect$inet6(r0, 0x0, 0x0)
sendmmsg(r0, &(0x7f00000029c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000100)="9e0984a0", 0x4}], 0x1}}], 0x1, 0x4010)

2m57.761236309s ago: executing program 1 (id=1942):
r0 = socket$tipc(0x1e, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usb_connect(0x3, 0x0, 0x0, 0x0)
connect$tipc(r0, &(0x7f0000003100)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000002f40)=[{{0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f00000002c0)="91199893b794f675ec88239fef317c764ee3a8ecbdc2a8c32d46f77944d1de9f924d05d3566b8eb8f5750393c669559d05543efa2927ef0d2b10e3d4f8541f34e1c7c8ca2d1e811f67f3dc50fdd469af72a49e684e28a364f5da124dff2b55a5536aa670b82da70bf0f19cd420371848ddc41d65649fde307c1971599f2fec84845e32bb2b6ebda099de12e8b64842024389524a1c5a97608000d1030d99e2a6e23a0bc8", 0xa4}, {&(0x7f0000000380)="11a68683394e1541cc444dff7adf30f079408cb066a6f8f4d33c4f11850de78c586d1a2ccff92e8e83fb82e447d9b88de42182e9e8c97415f41ef8a504215a2b2fdb1404c9659fdb988d0f527c3675cf2b", 0x51}, {&(0x7f0000000400)="875ad17d55c11f1ea6ec6cd17661afc73209e32142961e4660591bf3ca40d05a507ac0b0e71f7ed4c63f52a003cc8102f20dc6e33b5dc6de64ac815cf87867507cc072f0cb762aa5deb8731a699d3c7c69f85266ba51eb244f20129de491adaeb0c2d2eb13c1f215ddff92b05148f0ad513018b14798e45e55ecb916d4dd89f2df7e33c470998f325bf453f929d86196", 0x90}, {&(0x7f00000004c0)="1273dd9951adeaefffe3c4957c86dbff8693adf2202b620b3aec000cf330bb7249", 0x21}, {&(0x7f0000000500)="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", 0xba7}], 0x5}}], 0x300, 0x0)

45.440203252s ago: executing program 5 (id=2155):
getdents64(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
faccessat(0xffffffffffffffff, 0x0, 0x100)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000400)="3f4e55f1", 0x4)
sendto$unix(r4, 0x0, 0x0, 0x0, 0x0, 0x0)

44.707954282s ago: executing program 5 (id=2157):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$alg(0x26, 0x5, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000e40)=0x30, 0x2)

39.404066626s ago: executing program 5 (id=2159):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)=@newlink={0x34, 0x10, 0x1, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x1002, 0x9}, [@IFLA_GROUP={0x8, 0x1b, 0x1000}, @IFLA_IFALIASn={0x4}, @IFLA_TARGET_NETNSID={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x24040884}, 0x48001)
mlockall(0x7)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)

36.488278344s ago: executing program 5 (id=2163):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0xcd)
ioctl$SIOCAX25DELFWD(r0, 0x89eb, &(0x7f0000000040)={@bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}})

36.204222199s ago: executing program 5 (id=2164):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, 0x0)
setpgid(r0, r0)
setpgid(0x0, r0)
open(&(0x7f00000000c0)='./file0\x00', 0x2f6, 0x0)

36.012831477s ago: executing program 5 (id=2165):
socket(0x840000000002, 0x3, 0xff)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000)=<r2=>0x0)
bind$nfc_llcp(r0, &(0x7f0000001040)={0x27, r2, 0xffffffffffffffff, 0x5, 0x0, 0x0, "d92984bd1ca44c226af5160e961711a077609475b78411e88509de050000000000f2170e65e3f50327e422000000000000000000000200000000001900", 0x3c}, 0x60)
close(r1)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

20.776021401s ago: executing program 35 (id=2165):
socket(0x840000000002, 0x3, 0xff)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000)=<r2=>0x0)
bind$nfc_llcp(r0, &(0x7f0000001040)={0x27, r2, 0xffffffffffffffff, 0x5, 0x0, 0x0, "d92984bd1ca44c226af5160e961711a077609475b78411e88509de050000000000f2170e65e3f50327e422000000000000000000000200000000001900", 0x3c}, 0x60)
close(r1)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

12.568055938s ago: executing program 7 (id=2242):
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom1\x00')
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478e"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$mice(0xffffffffffffff9c, &(0x7f0000000100), 0x45040)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

12.191447606s ago: executing program 7 (id=2243):
syz_usb_connect(0x5, 0x8f, &(0x7f00000000c0)=ANY=[@ANYBLOB="12011001966d0f0887805a0a2c5f0102030109027d0002a200003f0904f604037e84e55b0a24010a00060201020c2408050600070d"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202})

10.790367016s ago: executing program 7 (id=2245):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x3})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000000)=0x4)
ioctl$PPPIOCSACTIVE(r1, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
read(r1, 0x0, 0x0)

6.756183004s ago: executing program 4 (id=2255):
r0 = openat$comedi(0xffffff9c, &(0x7f0000000440)='/dev/comedi2\x00', 0x101001, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)

6.697183333s ago: executing program 4 (id=2256):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x100000000, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x4, 0x2, 0x1})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='vegas', 0x5)
write$binfmt_script(r1, &(0x7f0000000200), 0xfffffd9d)

3.904767671s ago: executing program 4 (id=2257):
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom1\x00')
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478e"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x400000000000009, 0x7ffc, 0x80000001, 0x800000010000, 0x4, 0x4002004c2, 0x0, 0x654, 0x0, 0x3ffffc, 0xfffffffffffffffd, 0x7fffffff, 0x20000000009, 0xffff, 0xfffffffffffffff7], 0x100000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.846476043s ago: executing program 7 (id=2259):
socket$inet_sctp(0x2, 0x1, 0x84)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000480)='ns/uts\x00')
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x5, 0x3032, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a0300"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500c00108005400000060"], 0xfdef)

3.532280739s ago: executing program 6 (id=2261):
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000c40)={0x0, 0x0, 0x0}, 0x40000000)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)

3.410765859s ago: executing program 4 (id=2262):
syz_usb_connect(0x5, 0x8f, &(0x7f00000000c0)=ANY=[@ANYBLOB="12011001966d0f0887805a0a2c5f0102030109027d0002a200003f0904f604037e84e55b0a24010a00060201020c2408050600070d"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

3.245488003s ago: executing program 6 (id=2263):
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom1\x00')
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478e"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$mice(0xffffffffffffff9c, &(0x7f0000000100), 0x45040)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.735904812s ago: executing program 7 (id=2264):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sm3-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000640)=[{0x0, 0x0, &(0x7f0000000380)=[{0x0}, {0x0}, {&(0x7f0000000300)='l', 0x1}], 0x3}], 0x1, 0x0)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x11})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ff2000/0xe000)=nil, 0xe000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r2, 0xc020aa08, &(0x7f0000000100)={{&(0x7f0000ffb000/0x4000)=nil, 0x4000}, 0x1})
ioctl$UFFDIO_COPY(r2, 0xc028aa05, &(0x7f00000000c0)={&(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x2000, 0x2})
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=ANY=[@ANYBLOB="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"/280], 0x118}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r4 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000180)={0x0, &(0x7f0000000680)=[@cpuid={0x14, 0x18, {0x7, 0x99}}, @wr_drn={0x6e, 0x20, {0x0, 0x594}}, @uexit={0x0, 0x18, 0x3}, @wr_crn={0x46, 0x20, {0x8, 0x3}}, @uexit={0x0, 0x18, 0x4}, @wr_crn={0x46, 0x20, {0x4, 0x200000000000}}, @in_dx={0x82, 0x20, {0xb8e4, 0x7}}, @wrmsr={0x1e, 0x20, {0xb4c, 0x1}}, @in_dx={0x82, 0x20, {0x4374, 0x1}}, @wr_drn={0x6e, 0x20, {0x1, 0x8000}}, @in_dx={0x82, 0x20, {0xbc63}}, @out_dx={0xaa, 0x28, {0xb532, 0x1, 0xb949}}, @wr_drn={0x6e, 0x20, {0x6}}, @rdmsr={0x32, 0x18, {0xa7f}}, @set_irq_handler={0xbe, 0x20, {0x23}}, @uexit={0x0, 0x18, 0xffffffffffffffff}, @code={0xa, 0x5e, {"66ba420066b80b0066eff30fae3266430fc416ef400f08c744240000000000c744240241000000c7442406000000000f0114246a0f440f01ca66430f38825108c4633d6ccaccc403791d04bbe0"}}, @set_irq_handler={0xbe, 0x20, {0xc0}}, @uexit={0x0, 0x18, 0x7}, @set_irq_handler={0xbe, 0x20, {0x2b}}], 0x296})
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000940)={"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"})
r5 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r5, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
set_mempolicy(0x2, &(0x7f0000000080)=0x4716, 0x3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), r1)

2.715800063s ago: executing program 6 (id=2265):
syz_usb_connect(0x2, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000e1310a10f0031d58b7760102030109022400010000000009"], 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000000)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000780)={0x1, 0x1, &(0x7f0000000380)=""/240, &(0x7f0000000900)=""/103, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000980)=0x1)

2.067530544s ago: executing program 7 (id=2266):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="9f01000083667d1040206402d14e0102030109021b000100000000090400000190f19c000905f3ed"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000600)={0x84, &(0x7f0000000940)=ANY=[@ANYBLOB="400f01"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f00000005c0)={0x2c, &(0x7f0000000080)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000a00)={0x84, &(0x7f0000000b00)={0x20, 0xa}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)

1.286217278s ago: executing program 6 (id=2267):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000001c0)={0x48, r0, 0x801, 0x0, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x20, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "7ee5d52ffd"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}]}]}, 0x48}, 0x1, 0x1000000}, 0x40000)

996.119167ms ago: executing program 6 (id=2268):
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x16)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
pread64(r0, &(0x7f0000001300)=""/4118, 0x1016, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
set_robust_list(0x0, 0x0)
r1 = userfaultfd(0x80801)
personality(0x5400004)
mmap(&(0x7f0000787000/0x4000)=nil, 0x4000, 0xb, 0x30, 0xffffffffffffffff, 0x7dfff000)
ioctl$UFFDIO_API(r1, 0xc018aa3f, 0x0)
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa08, 0x0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)

272.255821ms ago: executing program 4 (id=2269):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, 0x0, 0x0)

128.613826ms ago: executing program 4 (id=2270):
unlinkat$binderfs_device(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom1\x00')
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478e"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x400000000000009, 0x7ffc, 0x80000001, 0x800000010000, 0x4, 0x4002004c2, 0x0, 0x654, 0x0, 0x3ffffc, 0xfffffffffffffffd, 0x7fffffff, 0x20000000009, 0xffff, 0xfffffffffffffff7], 0x100000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 6 (id=2271):
fsopen(&(0x7f0000000100)='udf\x00', 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
open(&(0x7f0000000280)='.\x00', 0x141080, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r1, &(0x7f0000000a80)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1}, 0x1c, 0x0}}], 0x1, 0x0)
sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, 0x0, 0x20000000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x41, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

 auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13447 comm="syz.1.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1160.335869][   T37] audit: type=1326 audit(1762616590.848:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13447 comm="syz.1.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1160.336845][   T37] audit: type=1326 audit(1762616590.848:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13447 comm="syz.1.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1160.336888][   T37] audit: type=1326 audit(1762616590.848:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13447 comm="syz.1.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1160.336930][   T37] audit: type=1326 audit(1762616590.848:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13447 comm="syz.1.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1160.336977][   T37] audit: type=1326 audit(1762616590.848:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13447 comm="syz.1.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1161.257483][T13347] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1161.257695][T13347] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1161.257928][T13347] bridge_slave_0: entered allmulticast mode
[ 1161.260666][T13347] bridge_slave_0: entered promiscuous mode
[ 1161.367505][T13347] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1161.367661][T13347] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1161.367866][T13347] bridge_slave_1: entered allmulticast mode
[ 1161.446800][T13347] bridge_slave_1: entered promiscuous mode
[ 1162.212843][T13347] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1162.515423][T13347] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1163.252563][T13347] team0: Port device team_slave_0 added
[ 1163.262904][T13178] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1163.380172][T13347] team0: Port device team_slave_1 added
[ 1163.381391][T13178] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1166.356137][T13480] 9pnet_virtio: no channels available for device syz
[ 1167.205869][T13178] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1167.835476][   T37] audit: type=1326 audit(1762616598.348:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.858055][   T37] audit: type=1326 audit(1762616598.348:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.858459][   T37] audit: type=1326 audit(1762616598.378:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.859152][   T37] audit: type=1326 audit(1762616598.378:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.859426][   T37] audit: type=1326 audit(1762616598.378:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.859833][   T37] audit: type=1326 audit(1762616598.378:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.861924][   T37] audit: type=1326 audit(1762616598.378:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.862454][   T37] audit: type=1326 audit(1762616598.378:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.864809][   T37] audit: type=1326 audit(1762616598.378:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.865080][   T37] audit: type=1326 audit(1762616598.378:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13485 comm="syz.1.1589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1167.984807][T13178] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1168.189992][T13347] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1168.190009][T13347] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1168.190036][T13347] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1168.490828][T13347] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1168.490842][T13347] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1168.490863][T13347] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1168.797990][T13117] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1168.799149][T10303] bridge_slave_1: left allmulticast mode
[ 1168.799165][T10303] bridge_slave_1: left promiscuous mode
[ 1168.799304][T10303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1168.868992][T10303] bridge_slave_0: left allmulticast mode
[ 1168.869011][T10303] bridge_slave_0: left promiscuous mode
[ 1168.869212][T10303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1169.448232][T13502] overlayfs: failed to clone upperpath
[ 1172.387134][T10303] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1172.477303][T10303] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1172.518527][T10303] bond0 (unregistering): Released all slaves
[ 1172.732748][T13347] hsr_slave_0: entered promiscuous mode
[ 1172.734118][T13347] hsr_slave_1: entered promiscuous mode
[ 1172.735086][T13347] debugfs: 'hsr0' already exists in 'hsr'
[ 1172.735109][T13347] Cannot create hsr debugfs directory
[ 1173.036709][T10303] hsr_slave_0: left promiscuous mode
[ 1173.056125][T10303] hsr_slave_1: left promiscuous mode
[ 1173.057116][T10303] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1173.107245][T10303] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1174.051436][ T5118] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1174.068481][ T5118] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1174.072272][ T5118] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1174.073990][ T5118] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1174.074778][ T5118] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1174.088463][T13538] overlayfs: failed to clone upperpath
[ 1176.026865][T10303] team0 (unregistering): Port device team_slave_1 removed
[ 1176.258485][ T5118] Bluetooth: hci4: command tx timeout
[ 1176.330801][T10303] team0 (unregistering): Port device team_slave_0 removed
[ 1177.299454][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.299525][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.309288][   T37] audit: type=1326 audit(1762616608.828:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.309557][   T37] audit: type=1326 audit(1762616608.828:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.310091][   T37] audit: type=1326 audit(1762616608.828:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.326021][ T5118] Bluetooth: hci4: command tx timeout
[ 1178.401141][   T37] audit: type=1326 audit(1762616608.888:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.401194][   T37] audit: type=1326 audit(1762616608.888:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.401242][   T37] audit: type=1326 audit(1762616608.888:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.401281][   T37] audit: type=1326 audit(1762616608.888:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.401324][   T37] audit: type=1326 audit(1762616608.888:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.401363][   T37] audit: type=1326 audit(1762616608.888:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1178.401403][   T37] audit: type=1326 audit(1762616608.888:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13570 comm="syz.1.1607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1180.406026][ T5118] Bluetooth: hci4: command tx timeout
[ 1181.482238][T13592] overlayfs: failed to resolve './file1': -2
[ 1182.382474][ T5808] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1182.401810][ T5808] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1182.403727][ T5808] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1182.405593][ T5808] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1182.429068][ T5808] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1182.486394][ T5808] Bluetooth: hci4: command tx timeout
[ 1183.819274][T13539] chnl_net:caif_netlink_parms(): no params data found
[ 1184.000985][T13624] overlayfs: failed to resolve './file1': -2
[ 1185.437646][ T5808] Bluetooth: hci2: command tx timeout
[ 1186.682852][T13539] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1186.682979][T13539] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1186.683087][T13539] bridge_slave_0: entered allmulticast mode
[ 1186.716165][T13539] bridge_slave_0: entered promiscuous mode
[ 1186.756478][T13539] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1186.756597][T13539] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1186.756760][T13539] bridge_slave_1: entered allmulticast mode
[ 1186.758320][T13539] bridge_slave_1: entered promiscuous mode
[ 1186.975118][   T37] kauditd_printk_skb: 12 callbacks suppressed
[ 1186.975134][   T37] audit: type=1326 audit(1762616617.488:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.008436][   T37] audit: type=1326 audit(1762616617.528:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.008471][   T37] audit: type=1326 audit(1762616617.528:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.008495][   T37] audit: type=1326 audit(1762616617.528:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.008520][   T37] audit: type=1326 audit(1762616617.528:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.008543][   T37] audit: type=1326 audit(1762616617.528:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.009689][   T37] audit: type=1326 audit(1762616617.528:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.013976][   T37] audit: type=1326 audit(1762616617.528:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.036243][   T37] audit: type=1326 audit(1762616617.528:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.197853][   T37] audit: type=1326 audit(1762616617.718:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13645 comm="syz.4.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1187.446715][ T5808] Bluetooth: hci2: command tx timeout
[ 1187.446910][T13347] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1187.673294][T13539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1187.786324][T13347] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1187.853722][T13539] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1187.915982][T13347] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1188.317774][T13347] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1188.666141][T13539] team0: Port device team_slave_0 added
[ 1188.670234][T13602] chnl_net:caif_netlink_parms(): no params data found
[ 1188.775840][T13539] team0: Port device team_slave_1 added
[ 1189.526694][ T5808] Bluetooth: hci2: command tx timeout
[ 1189.598045][T13539] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1189.598056][T13539] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1189.598071][T13539] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1189.712280][T13539] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1189.712291][T13539] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1189.712306][T13539] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1191.652407][ T5808] Bluetooth: hci2: command tx timeout
[ 1191.939224][T13539] hsr_slave_0: entered promiscuous mode
[ 1191.940643][T13539] hsr_slave_1: entered promiscuous mode
[ 1191.941619][T13539] debugfs: 'hsr0' already exists in 'hsr'
[ 1191.941643][T13539] Cannot create hsr debugfs directory
[ 1193.090093][T13602] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1193.090169][T13602] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1193.090335][T13602] bridge_slave_0: entered allmulticast mode
[ 1193.091889][T13602] bridge_slave_0: entered promiscuous mode
[ 1193.163819][T13602] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1193.163947][T13602] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1193.164078][T13602] bridge_slave_1: entered allmulticast mode
[ 1193.165674][T13602] bridge_slave_1: entered promiscuous mode
[ 1194.406945][T13697] netlink: 'syz.4.1633': attribute type 12 has an invalid length.
[ 1194.429475][T13602] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1194.460750][T13602] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1194.900555][T13602] team0: Port device team_slave_0 added
[ 1194.975501][T13602] team0: Port device team_slave_1 added
[ 1195.838235][T13710] netlink: 'syz.4.1637': attribute type 12 has an invalid length.
[ 1196.371289][T13602] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1196.371300][T13602] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1196.371315][T13602] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1196.499064][T13602] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1196.499075][T13602] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1196.499091][T13602] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1196.942701][T10303] bridge_slave_1: left allmulticast mode
[ 1196.942720][T10303] bridge_slave_1: left promiscuous mode
[ 1196.942896][T10303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1197.028887][T10303] bridge_slave_0: left allmulticast mode
[ 1197.028907][T10303] bridge_slave_0: left promiscuous mode
[ 1197.029131][T10303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1197.089700][T10303] bridge_slave_1: left allmulticast mode
[ 1197.089721][T10303] bridge_slave_1: left promiscuous mode
[ 1197.089870][T10303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1197.157199][T10303] bridge_slave_0: left allmulticast mode
[ 1197.157219][T10303] bridge_slave_0: left promiscuous mode
[ 1197.157372][T10303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1198.288306][T10303] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1198.378298][T10303] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1198.469126][T10303] bond0 (unregistering): Released all slaves
[ 1200.045119][T10303] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1200.116835][T10303] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1200.178119][T10303] bond0 (unregistering): Released all slaves
[ 1200.198294][T13717] netlink: 'syz.4.1638': attribute type 12 has an invalid length.
[ 1200.490178][T13602] hsr_slave_0: entered promiscuous mode
[ 1200.491069][T13602] hsr_slave_1: entered promiscuous mode
[ 1200.491710][T13602] debugfs: 'hsr0' already exists in 'hsr'
[ 1200.491725][T13602] Cannot create hsr debugfs directory
[ 1200.616137][T13723] netlink: 'syz.4.1640': attribute type 12 has an invalid length.
[ 1201.678946][T10303] hsr_slave_0: left promiscuous mode
[ 1201.716033][T10303] hsr_slave_1: left promiscuous mode
[ 1201.716872][T10303] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1201.765423][T10303] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1202.036865][T10303] hsr_slave_0: left promiscuous mode
[ 1202.066168][T10303] hsr_slave_1: left promiscuous mode
[ 1202.066876][T10303] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1202.098610][T10303] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1204.477600][T10303] team0 (unregistering): Port device team_slave_1 removed
[ 1204.616696][T10303] team0 (unregistering): Port device team_slave_0 removed
[ 1205.656884][T10303] team0 (unregistering): Port device team_slave_1 removed
[ 1205.777708][T10303] team0 (unregistering): Port device team_slave_0 removed
[ 1206.440291][T13752] netlink: 'syz.4.1647': attribute type 12 has an invalid length.
[ 1206.871907][   T37] kauditd_printk_skb: 1 callbacks suppressed
[ 1206.871924][   T37] audit: type=1326 audit(1762616637.388:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1206.871973][   T37] audit: type=1326 audit(1762616637.388:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1206.872014][   T37] audit: type=1326 audit(1762616637.388:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1206.872056][   T37] audit: type=1326 audit(1762616637.388:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1206.872097][   T37] audit: type=1326 audit(1762616637.388:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1206.872138][   T37] audit: type=1326 audit(1762616637.388:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1206.876467][   T37] audit: type=1326 audit(1762616637.388:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1207.066752][   T37] audit: type=1326 audit(1762616637.388:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1207.066796][   T37] audit: type=1326 audit(1762616637.588:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13753 comm="syz.1.1648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1207.518306][ T5118] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1207.600843][ T5118] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1207.618237][ T5118] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1207.620190][ T5118] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1207.621055][ T5118] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1207.923710][T13767] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1650'.
[ 1209.686892][ T5808] Bluetooth: hci5: command tx timeout
[ 1211.540382][T13764] chnl_net:caif_netlink_parms(): no params data found
[ 1211.770369][ T5808] Bluetooth: hci5: command tx timeout
[ 1212.160660][T13804] netlink: 'syz.4.1656': attribute type 12 has an invalid length.
[ 1212.670812][T13539] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1212.713399][T13764] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1212.713476][T13764] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1212.713623][T13764] bridge_slave_0: entered allmulticast mode
[ 1212.715222][T13764] bridge_slave_0: entered promiscuous mode
[ 1212.746058][T13539] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1212.820033][T13764] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1212.820153][T13764] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1212.820271][T13764] bridge_slave_1: entered allmulticast mode
[ 1212.822005][T13764] bridge_slave_1: entered promiscuous mode
[ 1212.882851][T13539] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1213.044765][T13539] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1213.177261][T13764] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1213.245833][T13764] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1213.849606][ T5808] Bluetooth: hci5: command tx timeout
[ 1213.884794][T13764] team0: Port device team_slave_0 added
[ 1214.003747][T13764] team0: Port device team_slave_1 added
[ 1214.266871][T13602] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1214.368522][T13602] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1214.558063][T13764] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1214.558080][T13764] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1214.558106][T13764] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1214.565284][T13602] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1214.642552][T13764] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1214.642570][T13764] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1214.642584][T13764] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1214.643271][T13602] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1215.098432][T13764] hsr_slave_0: entered promiscuous mode
[ 1215.099366][T13764] hsr_slave_1: entered promiscuous mode
[ 1215.099942][T13764] debugfs: 'hsr0' already exists in 'hsr'
[ 1215.099961][T13764] Cannot create hsr debugfs directory
[ 1215.719137][T10303] bridge_slave_1: left allmulticast mode
[ 1215.719167][T10303] bridge_slave_1: left promiscuous mode
[ 1215.719404][T10303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1215.777906][T10303] bridge_slave_0: left allmulticast mode
[ 1215.777934][T10303] bridge_slave_0: left promiscuous mode
[ 1215.778190][T10303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1215.937256][ T5808] Bluetooth: hci5: command tx timeout
[ 1216.887644][T10303] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1216.966841][T10303] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1217.027859][T10303] bond0 (unregistering): Released all slaves
[ 1217.166200][T13845] netlink: 'syz.1.1665': attribute type 12 has an invalid length.
[ 1217.531118][T10303] hsr_slave_0: left promiscuous mode
[ 1217.566134][T10303] hsr_slave_1: left promiscuous mode
[ 1217.566737][T10303] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1217.609908][T10303] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1218.577341][T10303] team0 (unregistering): Port device team_slave_1 removed
[ 1218.746613][T10303] team0 (unregistering): Port device team_slave_0 removed
[ 1220.090386][T13862] netlink: 212 bytes leftover after parsing attributes in process `syz.1.1670'.
[ 1220.090412][T13862] openvswitch: netlink: Flow key attr not present in new flow.
[ 1220.095459][T13539] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1220.140247][T13539] 8021q: adding VLAN 0 to HW filter on device team0
[ 1220.144509][T13602] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1220.190603][T10438] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1220.194384][T10438] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1220.197069][T10438] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1220.197203][T10438] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1220.827639][   T37] audit: type=1326 audit(1762616651.338:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.827692][   T37] audit: type=1326 audit(1762616651.338:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.827734][   T37] audit: type=1326 audit(1762616651.338:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.827775][   T37] audit: type=1326 audit(1762616651.338:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.827817][   T37] audit: type=1326 audit(1762616651.338:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.827866][   T37] audit: type=1326 audit(1762616651.338:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=315 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.827907][   T37] audit: type=1326 audit(1762616651.338:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.827949][   T37] audit: type=1326 audit(1762616651.338:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.827990][   T37] audit: type=1326 audit(1762616651.338:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1220.828031][   T37] audit: type=1326 audit(1762616651.338:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13863 comm="syz.4.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d333af6c9 code=0x7ffc0000
[ 1221.045839][T13602] 8021q: adding VLAN 0 to HW filter on device team0
[ 1221.078765][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1221.078986][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1221.307809][T12289] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1221.308142][T12289] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1222.539189][T13764] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1222.665359][T13764] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1222.768986][T13764] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1222.847596][T13764] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1223.153172][ T5808] Bluetooth: hci1: unexpected event 0x06 length: 4 > 3
[ 1223.223581][T13539] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1223.290124][T13602] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1223.378745][T13904] netlink: 'syz.1.1673': attribute type 12 has an invalid length.
[ 1224.025206][T13764] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1224.520586][T13764] 8021q: adding VLAN 0 to HW filter on device team0
[ 1224.618613][T10303] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1224.619099][T10303] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1224.733515][T12289] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1224.733751][T12289] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1225.278354][T13539] veth0_vlan: entered promiscuous mode
[ 1225.526668][T13539] veth1_vlan: entered promiscuous mode
[ 1225.580764][T13602] veth0_vlan: entered promiscuous mode
[ 1225.781361][T13602] veth1_vlan: entered promiscuous mode
[ 1225.953498][T13764] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1225.963222][T13539] veth0_macvtap: entered promiscuous mode
[ 1225.993439][T13539] veth1_macvtap: entered promiscuous mode
[ 1226.223554][T13602] veth0_macvtap: entered promiscuous mode
[ 1226.236310][T13602] veth1_macvtap: entered promiscuous mode
[ 1226.257347][T13539] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1226.360707][T13539] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1226.385125][T13602] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1226.404366][  T143] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.405796][  T143] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.407044][  T143] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.408899][  T143] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1226.487298][T13602] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1226.926270][T12287] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1227.971723][T12287] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1227.979674][T12287] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1227.980580][T12287] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1228.825463][  T143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1228.825485][  T143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1229.098554][T12289] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1229.098573][T12289] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1229.144756][T13764] veth0_vlan: entered promiscuous mode
[ 1229.307197][T13764] veth1_vlan: entered promiscuous mode
[ 1229.392561][T12287] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1229.392576][T12287] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1229.722682][T10438] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1229.722695][T10438] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1229.747355][T13764] veth0_macvtap: entered promiscuous mode
[ 1229.841025][T13764] veth1_macvtap: entered promiscuous mode
[ 1230.083748][T13764] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1230.169298][T13764] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1230.256064][ T1455] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1230.292613][ T1455] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1230.325506][ T1455] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1230.344665][ T1455] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1230.642372][T13963] netlink: 'syz.1.1681': attribute type 12 has an invalid length.
[ 1232.197121][  T143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1232.197140][  T143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1232.940120][ T1455] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1232.940134][ T1455] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1233.088261][   T37] kauditd_printk_skb: 10 callbacks suppressed
[ 1233.088277][   T37] audit: type=1326 audit(1762616663.608:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.088322][   T37] audit: type=1326 audit(1762616663.608:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.088359][   T37] audit: type=1326 audit(1762616663.608:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.088394][   T37] audit: type=1326 audit(1762616663.608:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.088431][   T37] audit: type=1326 audit(1762616663.608:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.095718][   T37] audit: type=1326 audit(1762616663.608:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.095765][   T37] audit: type=1326 audit(1762616663.608:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.259853][   T37] audit: type=1326 audit(1762616663.778:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.262151][   T37] audit: type=1326 audit(1762616663.778:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.262327][   T37] audit: type=1326 audit(1762616663.778:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13988 comm="syz.7.1688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1233.846530][T12129] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 1235.149434][T12129] usb 8-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.17
[ 1235.149468][T12129] usb 8-1: New USB device strings: Mfr=129, Product=2, SerialNumber=3
[ 1235.149488][T12129] usb 8-1: Product: syz
[ 1235.149503][T12129] usb 8-1: Manufacturer: syz
[ 1235.149518][T12129] usb 8-1: SerialNumber: syz
[ 1235.449169][T12129] usb 8-1: config 0 descriptor??
[ 1235.479392][T12129] ch341 8-1:0.0: ch341-uart converter detected
[ 1235.885085][T12129] usb 8-1: failed to receive control message: -121
[ 1235.885121][T12129] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -121
[ 1237.078113][T14007] netlink: 'syz.1.1692': attribute type 12 has an invalid length.
[ 1237.258951][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1237.975500][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1238.136272][   T37] kauditd_printk_skb: 45 callbacks suppressed
[ 1238.136290][   T37] audit: type=1326 audit(1762616668.648:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14006 comm="syz.6.1691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad73ddf6c9 code=0x7ffc0000
[ 1238.136336][   T37] audit: type=1326 audit(1762616668.648:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14006 comm="syz.6.1691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad73ddf6c9 code=0x7ffc0000
[ 1238.431164][ T5118] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1238.455701][ T5118] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1238.465213][ T5867] usb 8-1: USB disconnect, device number 2
[ 1238.487188][ T5118] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1238.495595][ T5118] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1238.503353][ T5867] ch341 8-1:0.0: device disconnected
[ 1238.518377][ T5118] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1238.733320][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.733392][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1240.635159][T14025] overlayfs: failed to resolve './file0': -2
[ 1240.746110][ T5118] Bluetooth: hci3: command tx timeout
[ 1242.232859][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1242.506198][T14049] netlink: 'syz.1.1698': attribute type 12 has an invalid length.
[ 1242.806255][ T5118] Bluetooth: hci3: command tx timeout
[ 1244.886020][ T5118] Bluetooth: hci3: command tx timeout
[ 1246.966183][ T5118] Bluetooth: hci3: command tx timeout
[ 1250.689684][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1252.010467][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1253.709060][T14084] netlink: 'syz.5.1703': attribute type 12 has an invalid length.
[ 1253.844181][T14017] chnl_net:caif_netlink_parms(): no params data found
[ 1254.885099][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1255.593267][T14017] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1255.670790][T14017] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1255.673209][T14017] bridge_slave_0: entered allmulticast mode
[ 1255.714359][T14017] bridge_slave_0: entered promiscuous mode
[ 1255.871849][T14017] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1255.871943][T14017] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1255.872111][T14017] bridge_slave_1: entered allmulticast mode
[ 1255.881357][T14017] bridge_slave_1: entered promiscuous mode
[ 1256.481919][T14017] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1256.505196][T14017] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1257.783518][T14017] team0: Port device team_slave_0 added
[ 1257.825499][T14017] team0: Port device team_slave_1 added
[ 1259.275167][   T37] audit: type=1326 audit(1762616689.548:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14121 comm="syz.5.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1259.275595][   T37] audit: type=1326 audit(1762616689.548:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14121 comm="syz.5.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1259.276326][   T37] audit: type=1326 audit(1762616689.558:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14121 comm="syz.5.1712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1259.415656][T14129] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/nullb0": -EINTR
[ 1259.995407][T14138] overlayfs: failed to resolve './file1': -2
[ 1260.171768][   T37] audit: type=1326 audit(1762616690.688:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14135 comm="syz.1.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1260.173393][   T37] audit: type=1326 audit(1762616690.688:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14135 comm="syz.1.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1260.175764][   T37] audit: type=1326 audit(1762616690.688:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14135 comm="syz.1.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1260.246199][   T37] audit: type=1326 audit(1762616690.758:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14135 comm="syz.1.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1260.246505][   T37] audit: type=1326 audit(1762616690.768:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14135 comm="syz.1.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1260.248505][   T37] audit: type=1326 audit(1762616690.768:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14135 comm="syz.1.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1260.248835][   T37] audit: type=1326 audit(1762616690.768:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14135 comm="syz.1.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1264.184780][T14170] netlink: 6068 bytes leftover after parsing attributes in process `syz.6.1723'.
[ 1265.229326][T14172] syz.6.1723 (14172): drop_caches: 2
[ 1266.294949][T14176] vivid-007: kernel_thread() failed
[ 1268.079697][   T13] bond0 (unregistering): Released all slaves
[ 1268.148660][T14017] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1268.148675][T14017] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1268.148701][T14017] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1268.220324][T14159] netlink: 'syz.5.1720': attribute type 12 has an invalid length.
[ 1268.221739][T14017] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1268.221751][T14017] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1268.221773][T14017] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1269.296647][   T13] tipc: Left network mode
[ 1269.419697][T14017] hsr_slave_0: entered promiscuous mode
[ 1269.420852][T14017] hsr_slave_1: entered promiscuous mode
[ 1269.421671][T14017] debugfs: 'hsr0' already exists in 'hsr'
[ 1269.454566][T14017] Cannot create hsr debugfs directory
[ 1271.254984][   T37] kauditd_printk_skb: 3 callbacks suppressed
[ 1271.255003][   T37] audit: type=1326 audit(1762616701.768:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14203 comm="syz.5.1731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1271.255556][   T37] audit: type=1326 audit(1762616701.768:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14203 comm="syz.5.1731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1271.459032][   T37] audit: type=1326 audit(1762616701.978:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14203 comm="syz.5.1731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1271.489420][   T37] audit: type=1326 audit(1762616702.008:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14203 comm="syz.5.1731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1271.523843][   T37] audit: type=1326 audit(1762616702.038:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14203 comm="syz.5.1731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1271.577434][   T37] audit: type=1326 audit(1762616702.038:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14203 comm="syz.5.1731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1271.577729][   T37] audit: type=1326 audit(1762616702.098:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14203 comm="syz.5.1731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1274.622982][   T13] hsr_slave_0: left promiscuous mode
[ 1274.636095][   T13] hsr_slave_1: left promiscuous mode
[ 1274.637195][   T13] batman_adv: batadv0: Interface deactivated: virt_wifi0
[ 1274.637219][   T13] batman_adv: batadv0: Removing interface: virt_wifi0
[ 1274.858935][   T13] veth1_macvtap: left promiscuous mode
[ 1274.859045][   T13] veth0_macvtap: left promiscuous mode
[ 1274.859316][   T13] veth1_vlan: left promiscuous mode
[ 1274.859499][   T13] veth0_vlan: left promiscuous mode
[ 1276.471318][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1276.541691][T14257] overlayfs: missing 'lowerdir'
[ 1276.720928][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1277.141446][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1277.195778][   T37] audit: type=1326 audit(1762616707.428:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14253 comm="syz.7.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1277.203870][   T37] audit: type=1326 audit(1762616707.428:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14253 comm="syz.7.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1277.204350][   T37] audit: type=1326 audit(1762616707.438:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14253 comm="syz.7.1741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1277.423027][T14259] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/nullb0": -EINTR
[ 1277.423971][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1277.606279][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1277.677617][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1278.063524][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1278.719199][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1279.126323][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1279.444201][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1281.959762][T14287] overlayfs: failed to resolve './file1': -2
[ 1284.256634][T14300] 9pnet_virtio: no channels available for device syz
[ 1284.327289][T14300] SQUASHFS error: Failed to read block 0x0: -5
[ 1285.392575][T14302] overlayfs: missing 'lowerdir'
[ 1289.914511][T14352] netlink: 'syz.6.1762': attribute type 12 has an invalid length.
[ 1291.033970][T14357] netlink: 6068 bytes leftover after parsing attributes in process `syz.5.1763'.
[ 1292.238171][T14359] syz.5.1763 (14359): drop_caches: 2
[ 1292.623438][T14017] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1292.730788][T14017] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1292.846963][T14017] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1292.955029][T14017] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1293.795388][T14017] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1294.337547][T14017] 8021q: adding VLAN 0 to HW filter on device team0
[ 1294.388780][  T143] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1294.390337][  T143] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1294.441605][  T143] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1294.442643][  T143] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1294.564263][T14017] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1294.564286][T14017] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1297.786027][ T5867] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[ 1297.988631][ T5867] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1297.988667][ T5867] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1297.988681][ T5867] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1297.993690][ T5867] usb 7-1: config 0 descriptor??
[ 1298.052651][ T5867] pwc: Askey VC010 type 2 USB webcam detected.
[ 1298.406090][ T5118] Bluetooth: hci4: command 0x0406 tx timeout
[ 1298.529886][T14408] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1298.530659][T14408] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1298.959192][ T5118] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1299.021162][ T5118] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1299.025655][ T5118] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1299.042477][ T5118] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1299.044108][ T5118] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1300.178301][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.178423][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1301.126060][ T5118] Bluetooth: hci1: command tx timeout
[ 1303.266132][ T5118] Bluetooth: hci1: command tx timeout
[ 1303.369944][ T5867] pwc: recv_control_msg error -110 req 02 val 2b00
[ 1303.370643][ T5867] pwc: recv_control_msg error -32 req 02 val 2700
[ 1303.371013][ T5867] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1303.372944][ T5867] pwc: recv_control_msg error -32 req 04 val 1000
[ 1303.373450][ T5867] pwc: recv_control_msg error -32 req 04 val 1300
[ 1303.373965][ T5867] pwc: recv_control_msg error -32 req 04 val 1400
[ 1303.374420][ T5867] pwc: recv_control_msg error -32 req 02 val 2000
[ 1303.374925][ T5867] pwc: recv_control_msg error -32 req 02 val 2100
[ 1303.375290][ T5867] pwc: recv_control_msg error -32 req 04 val 1500
[ 1303.375669][ T5867] pwc: recv_control_msg error -32 req 02 val 2500
[ 1303.376129][ T5867] pwc: recv_control_msg error -32 req 02 val 2400
[ 1303.376633][ T5867] pwc: recv_control_msg error -32 req 02 val 2600
[ 1303.377102][ T5867] pwc: recv_control_msg error -32 req 02 val 2900
[ 1303.377576][ T5867] pwc: recv_control_msg error -32 req 02 val 2800
[ 1303.378372][ T5867] pwc: recv_control_msg error -32 req 04 val 1100
[ 1303.378848][ T5867] pwc: recv_control_msg error -32 req 04 val 1200
[ 1303.558343][ T5867] pwc: Registered as video103.
[ 1303.672532][ T5867] input: PWC snapshot button as /devices/platform/dummy_hcd.6/usb7/7-1/input/input8
[ 1303.868182][ T5867] usb 7-1: USB disconnect, device number 2
[ 1303.920111][T14444] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1303.920960][T14444] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1304.443094][T14465] 9pnet_virtio: no channels available for device syz
[ 1305.377595][ T5808] Bluetooth: hci1: command tx timeout
[ 1306.020378][T14444] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1306.062130][T14444] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1306.955945][T14488] overlayfs: failed to resolve './file1': -2
[ 1307.379213][ T5808] Bluetooth: hci2: command 0x0406 tx timeout
[ 1307.446288][ T5118] Bluetooth: hci1: command tx timeout
[ 1307.858975][T14454] netlink: 'syz.1.1774': attribute type 12 has an invalid length.
[ 1307.883751][   T12] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.299580][   T12] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.495271][   T12] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.544056][   T12] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1310.615035][T14532] overlayfs: failed to resolve './file1': -2
[ 1313.149161][T14416] chnl_net:caif_netlink_parms(): no params data found
[ 1313.327922][ T9740] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[ 1313.476353][ T9740] usb 7-1: Using ep0 maxpacket: 32
[ 1313.480660][ T9740] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1313.480692][ T9740] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1313.480733][ T9740] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1313.480756][ T9740] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1313.512429][ T9740] usb 7-1: config 0 descriptor??
[ 1314.245676][T14583] netlink: 'syz.7.1797': attribute type 12 has an invalid length.
[ 1314.428134][ T9740] savu 0003:1E7D:2D5A.0003: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.6-1/input0
[ 1314.499596][ T9740] usb 7-1: USB disconnect, device number 3
[ 1314.870770][T14591] fido_id[14591]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[ 1315.118128][T14416] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1315.118458][T14416] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1315.118598][T14416] bridge_slave_0: entered allmulticast mode
[ 1315.124315][T14416] bridge_slave_0: entered promiscuous mode
[ 1315.165428][T14416] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1315.195200][T14416] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1315.195444][T14416] bridge_slave_1: entered allmulticast mode
[ 1315.226239][T14416] bridge_slave_1: entered promiscuous mode
[ 1315.228656][T12289] bridge_slave_1: left allmulticast mode
[ 1315.228673][T12289] bridge_slave_1: left promiscuous mode
[ 1315.228836][T12289] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1315.368269][T12289] bridge_slave_0: left allmulticast mode
[ 1315.368297][T12289] bridge_slave_0: left promiscuous mode
[ 1315.368545][T12289] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1321.367538][T12289] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1322.304331][T12289] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1322.513450][T12289] bond0 (unregistering): Released all slaves
[ 1322.911711][T14611] netlink: 'syz.1.1804': attribute type 12 has an invalid length.
[ 1323.178822][T14416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1323.189398][T14416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1323.202248][T14639] netlink: 6068 bytes leftover after parsing attributes in process `syz.6.1813'.
[ 1324.121291][   T37] audit: type=1326 audit(1762616754.578:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14644 comm="syz.7.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1324.121692][   T37] audit: type=1326 audit(1762616754.588:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14644 comm="syz.7.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1324.121976][   T37] audit: type=1326 audit(1762616754.598:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14644 comm="syz.7.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f516a29f6c9 code=0x7ffc0000
[ 1324.615744][T14648] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/nullb0": -EINTR
[ 1324.705764][T12289] hsr_slave_0: left promiscuous mode
[ 1324.802328][T14642] syz.6.1813 (14642): drop_caches: 2
[ 1324.816457][T12289] hsr_slave_1: left promiscuous mode
[ 1324.817442][T12289] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1324.852911][T12289] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1325.463901][T14654] 9pnet_virtio: no channels available for device syz
[ 1326.648795][   T37] audit: type=1326 audit(1762616757.168:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.5.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1326.649390][   T37] audit: type=1326 audit(1762616757.168:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.5.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1326.650184][   T37] audit: type=1326 audit(1762616757.168:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.5.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1326.650473][   T37] audit: type=1326 audit(1762616757.168:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.5.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1326.650937][   T37] audit: type=1326 audit(1762616757.168:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.5.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1326.667831][   T37] audit: type=1326 audit(1762616757.168:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.5.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1326.667891][   T37] audit: type=1326 audit(1762616757.168:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14655 comm="syz.5.1816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1327.275416][T14664] overlayfs: failed to resolve './file1': -2
[ 1328.277164][T12289] team0 (unregistering): Port device team_slave_1 removed
[ 1329.416600][T12289] team0 (unregistering): Port device team_slave_0 removed
[ 1332.447374][T14677] netlink: 'syz.5.1821': attribute type 12 has an invalid length.
[ 1333.029099][ T5118] Bluetooth: hci5: command 0x0406 tx timeout
[ 1333.318612][T14416] team0: Port device team_slave_0 added
[ 1333.322397][T14416] team0: Port device team_slave_1 added
[ 1335.369759][T14737] overlayfs: failed to resolve './file1': -2
[ 1336.646106][   T10] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[ 1337.393256][T14416] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1337.393273][T14416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1337.393300][T14416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1337.399502][   T10] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1337.399564][   T10] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1337.399589][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1337.406076][T14416] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1337.406090][T14416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1337.406116][T14416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1337.566539][   T10] usb 8-1: config 0 descriptor??
[ 1337.600491][   T10] pwc: Askey VC010 type 2 USB webcam detected.
[ 1339.037404][T14756] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1339.056886][T14756] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1341.725404][T14416] hsr_slave_0: entered promiscuous mode
[ 1341.729848][T14416] hsr_slave_1: entered promiscuous mode
[ 1342.871881][   T10] pwc: recv_control_msg error -110 req 02 val 2b00
[ 1342.881872][   T10] pwc: recv_control_msg error -32 req 02 val 2700
[ 1342.882477][   T10] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1342.882963][   T10] pwc: recv_control_msg error -32 req 04 val 1000
[ 1342.886023][   T10] pwc: recv_control_msg error -32 req 04 val 1300
[ 1342.886525][   T10] pwc: recv_control_msg error -32 req 04 val 1400
[ 1342.887091][   T10] pwc: recv_control_msg error -32 req 02 val 2000
[ 1342.896165][   T10] pwc: recv_control_msg error -32 req 02 val 2100
[ 1342.896671][   T10] pwc: recv_control_msg error -32 req 04 val 1500
[ 1342.897143][   T10] pwc: recv_control_msg error -32 req 02 val 2500
[ 1342.897628][   T10] pwc: recv_control_msg error -32 req 02 val 2400
[ 1342.899419][   T10] pwc: recv_control_msg error -32 req 02 val 2600
[ 1342.906644][   T10] pwc: recv_control_msg error -32 req 02 val 2900
[ 1342.909065][   T10] pwc: recv_control_msg error -32 req 02 val 2800
[ 1342.909764][   T10] pwc: recv_control_msg error -32 req 04 val 1100
[ 1342.916097][   T10] pwc: recv_control_msg error -32 req 04 val 1200
[ 1342.921648][   T10] pwc: Registered as video103.
[ 1342.925763][   T10] input: PWC snapshot button as /devices/platform/dummy_hcd.7/usb8/8-1/input/input9
[ 1343.289694][T14783] netlink: 'syz.5.1835': attribute type 12 has an invalid length.
[ 1346.139246][ T5808] Bluetooth: hci1: link tx timeout
[ 1346.139661][ T5808] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1348.028007][ T5818] usb 8-1: USB disconnect, device number 3
[ 1348.166795][ T5808] Bluetooth: hci1: command 0x0406 tx timeout
[ 1351.001902][T14829] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1351.003130][T14829] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1353.989870][T14829] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1354.046223][T14829] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1354.466237][ T9605] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1354.617930][ T9605] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1354.617997][ T9605] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1354.618019][ T9605] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1354.622958][ T9605] usb 6-1: config 0 descriptor??
[ 1354.669683][ T9605] pwc: Askey VC010 type 2 USB webcam detected.
[ 1355.040816][T14861] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1355.041825][T14861] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1355.545616][T14840] netlink: 'syz.6.1848': attribute type 12 has an invalid length.
[ 1355.561594][   T13] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1355.969091][T14870] netlink: 6068 bytes leftover after parsing attributes in process `syz.6.1855'.
[ 1356.334124][   T13] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1356.363538][T14873] syz.6.1855 (14873): drop_caches: 2
[ 1356.398781][T14873] syz.6.1855 (14873): drop_caches: 2
[ 1356.400792][   T13] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1356.432269][   T13] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1359.846361][ T9605] pwc: recv_control_msg error -110 req 02 val 2b00
[ 1359.846851][ T9605] pwc: recv_control_msg error -32 req 02 val 2700
[ 1359.847303][ T9605] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1359.847674][ T9605] pwc: recv_control_msg error -32 req 04 val 1000
[ 1359.848062][ T9605] pwc: recv_control_msg error -32 req 04 val 1300
[ 1359.848463][ T9605] pwc: recv_control_msg error -32 req 04 val 1400
[ 1359.848832][ T9605] pwc: recv_control_msg error -32 req 02 val 2000
[ 1359.849238][ T9605] pwc: recv_control_msg error -32 req 02 val 2100
[ 1359.849683][ T9605] pwc: recv_control_msg error -32 req 04 val 1500
[ 1359.850055][ T9605] pwc: recv_control_msg error -32 req 02 val 2500
[ 1359.850415][ T9605] pwc: recv_control_msg error -32 req 02 val 2400
[ 1359.850815][ T9605] pwc: recv_control_msg error -32 req 02 val 2600
[ 1359.851265][ T9605] pwc: recv_control_msg error -32 req 02 val 2900
[ 1359.851645][ T9605] pwc: recv_control_msg error -32 req 02 val 2800
[ 1359.852115][ T9605] pwc: recv_control_msg error -32 req 04 val 1100
[ 1359.852514][ T9605] pwc: recv_control_msg error -32 req 04 val 1200
[ 1359.980059][ T9605] pwc: Registered as video103.
[ 1359.981898][ T9605] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input10
[ 1361.108694][ T5808] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1361.111302][ T5808] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1361.112314][ T5808] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1361.113326][ T5808] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1361.113795][ T5808] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1361.538523][ T5867] usb 6-1: USB disconnect, device number 2
[ 1361.611049][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.611092][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1363.206094][ T5808] Bluetooth: hci3: command tx timeout
[ 1363.980669][T14936] netlink: 'syz.5.1864': attribute type 12 has an invalid length.
[ 1364.026566][   T12] bridge_slave_1: left allmulticast mode
[ 1364.026586][   T12] bridge_slave_1: left promiscuous mode
[ 1364.026744][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1364.451768][   T12] bridge_slave_0: left allmulticast mode
[ 1364.451787][   T12] bridge_slave_0: left promiscuous mode
[ 1364.451957][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1364.855266][   T37] kauditd_printk_skb: 2 callbacks suppressed
[ 1364.855289][   T37] audit: type=1326 audit(1762616795.368:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.855332][   T37] audit: type=1326 audit(1762616795.368:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.871900][   T37] audit: type=1326 audit(1762616795.388:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.871938][   T37] audit: type=1326 audit(1762616795.388:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.871960][   T37] audit: type=1326 audit(1762616795.388:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.871983][   T37] audit: type=1326 audit(1762616795.388:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.903094][   T37] audit: type=1326 audit(1762616795.418:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.903148][   T37] audit: type=1326 audit(1762616795.418:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.903188][   T37] audit: type=1326 audit(1762616795.418:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1364.903228][   T37] audit: type=1326 audit(1762616795.418:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14950 comm="syz.5.1867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7987bbf6c9 code=0x7ffc0000
[ 1365.306697][ T5808] Bluetooth: hci3: command tx timeout
[ 1367.389974][ T5808] Bluetooth: hci3: command tx timeout
[ 1367.422497][T14974] overlayfs: missing 'lowerdir'
[ 1367.828278][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1368.226754][T14986] SQUASHFS error: Failed to read block 0x0: -5
[ 1369.456213][ T5808] Bluetooth: hci3: command tx timeout
[ 1369.679682][T14991] syz.7.1875 (14991): drop_caches: 2
[ 1369.691163][T14991] syz.7.1875 (14991): drop_caches: 2
[ 1370.916677][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1371.223023][   T12] bond0 (unregistering): Released all slaves
[ 1371.282392][T14906] chnl_net:caif_netlink_parms(): no params data found
[ 1372.644457][T15011] netlink: 'syz.7.1881': attribute type 12 has an invalid length.
[ 1372.827762][T15018] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1372.827798][T15018] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1374.006037][   T12] hsr_slave_0: left promiscuous mode
[ 1374.475117][   T12] hsr_slave_1: left promiscuous mode
[ 1374.475789][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1374.558802][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1375.502285][   T37] kauditd_printk_skb: 31 callbacks suppressed
[ 1375.502338][   T37] audit: type=1326 audit(1762616806.018:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.502834][   T37] audit: type=1326 audit(1762616806.018:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.504759][   T37] audit: type=1326 audit(1762616806.018:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.582489][   T37] audit: type=1326 audit(1762616806.098:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.582524][   T37] audit: type=1326 audit(1762616806.098:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.586594][   T37] audit: type=1326 audit(1762616806.108:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.593501][   T37] audit: type=1326 audit(1762616806.108:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.593810][   T37] audit: type=1326 audit(1762616806.108:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.638324][   T37] audit: type=1326 audit(1762616806.158:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1375.638374][   T37] audit: type=1326 audit(1762616806.158:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15031 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1379.886260][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1379.940021][T15064] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1379.940082][T15064] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1381.258792][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1383.770897][T15078] netlink: 'syz.7.1897': attribute type 12 has an invalid length.
[ 1385.949867][T14906] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1385.949944][T14906] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1385.950066][T14906] bridge_slave_0: entered allmulticast mode
[ 1385.951712][T14906] bridge_slave_0: entered promiscuous mode
[ 1385.953897][T14906] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1385.954026][T14906] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1385.954171][T14906] bridge_slave_1: entered allmulticast mode
[ 1386.008329][T14906] bridge_slave_1: entered promiscuous mode
[ 1387.782872][T14906] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1387.785389][T14906] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1389.020694][T14906] team0: Port device team_slave_0 added
[ 1389.024898][T14906] team0: Port device team_slave_1 added
[ 1389.427512][T14906] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1389.427527][T14906] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1389.427550][T14906] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1389.498864][T14906] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1389.498881][T14906] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1389.498907][T14906] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1392.422111][T14906] hsr_slave_0: entered promiscuous mode
[ 1392.527153][T14906] hsr_slave_1: entered promiscuous mode
[ 1394.493421][   T37] kauditd_printk_skb: 1 callbacks suppressed
[ 1394.493462][   T37] audit: type=1326 audit(1762616824.928:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.493852][   T37] audit: type=1326 audit(1762616824.928:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.494564][   T37] audit: type=1326 audit(1762616824.938:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.494909][   T37] audit: type=1326 audit(1762616824.948:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.495367][   T37] audit: type=1326 audit(1762616824.948:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.496707][   T37] audit: type=1326 audit(1762616824.948:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=315 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.497601][   T37] audit: type=1326 audit(1762616824.958:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.497921][   T37] audit: type=1326 audit(1762616824.958:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.498205][   T37] audit: type=1326 audit(1762616824.958:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1394.498971][   T37] audit: type=1326 audit(1762616824.968:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15160 comm="syz.1.1921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b5b05f6c9 code=0x7ffc0000
[ 1395.396183][ T5867] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[ 1395.558656][ T5867] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1395.558715][ T5867] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1395.558738][ T5867] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1396.632636][ T5867] usb 8-1: config 0 descriptor??
[ 1396.660298][ T5867] pwc: Askey VC010 type 2 USB webcam detected.
[ 1396.728675][T14906] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1396.811841][T14906] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1396.873329][T14906] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1396.939385][T14906] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1397.065292][T15171] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1397.065756][T15171] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1397.535772][T14906] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1397.743892][T14906] 8021q: adding VLAN 0 to HW filter on device team0
[ 1397.778898][T12289] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1397.781823][T12289] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1398.012876][T12289] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1398.019043][T12289] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1399.647074][T14906] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1401.846326][ T5867] pwc: recv_control_msg error -110 req 02 val 2b00
[ 1401.846749][ T5867] pwc: recv_control_msg error -32 req 02 val 2700
[ 1401.847078][ T5867] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1401.847406][ T5867] pwc: recv_control_msg error -32 req 04 val 1000
[ 1401.847818][ T5867] pwc: recv_control_msg error -32 req 04 val 1300
[ 1401.848297][ T5867] pwc: recv_control_msg error -32 req 04 val 1400
[ 1401.848738][ T5867] pwc: recv_control_msg error -32 req 02 val 2000
[ 1401.849108][ T5867] pwc: recv_control_msg error -32 req 02 val 2100
[ 1401.849478][ T5867] pwc: recv_control_msg error -32 req 04 val 1500
[ 1401.849799][ T5867] pwc: recv_control_msg error -32 req 02 val 2500
[ 1401.850121][ T5867] pwc: recv_control_msg error -32 req 02 val 2400
[ 1401.853135][ T5867] pwc: recv_control_msg error -32 req 02 val 2600
[ 1401.855043][ T5867] pwc: recv_control_msg error -32 req 02 val 2900
[ 1401.855422][ T5867] pwc: recv_control_msg error -32 req 02 val 2800
[ 1401.857683][ T5867] pwc: recv_control_msg error -32 req 04 val 1100
[ 1401.858157][ T5867] pwc: recv_control_msg error -32 req 04 val 1200
[ 1402.156433][ T5867] pwc: Registered as video103.
[ 1402.159983][ T5867] input: PWC snapshot button as /devices/platform/dummy_hcd.7/usb8/8-1/input/input11
[ 1402.764615][T14906] veth0_vlan: entered promiscuous mode
[ 1402.821978][  T992] usb 8-1: USB disconnect, device number 4
[ 1402.950537][T14906] veth1_vlan: entered promiscuous mode
[ 1403.055835][T14906] veth0_macvtap: entered promiscuous mode
[ 1403.118615][T14906] veth1_macvtap: entered promiscuous mode
[ 1404.374409][T14906] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1405.532933][T14906] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1405.619018][ T1455] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1405.619068][ T1455] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1405.619102][ T1455] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1405.619137][ T1455] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1407.161140][T12289] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1407.161161][T12289] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1409.327815][   T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1409.327834][   T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1414.371526][ T5118] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1414.392426][ T5118] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1414.393889][ T5118] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1414.407431][ T5118] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1414.408740][ T5118] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1415.535632][T15298] netlink: 6068 bytes leftover after parsing attributes in process `syz.5.1950'.
[ 1415.591439][T15298] syz.5.1950 (15298): drop_caches: 2
[ 1415.593806][T15298] syz.5.1950 (15298): drop_caches: 2
[ 1415.744235][T15302] netlink: 'syz.7.1952': attribute type 12 has an invalid length.
[ 1415.920169][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1416.006580][ T9323] bond0: (slave syz_tun): Releasing backup interface
[ 1416.486070][ T5808] Bluetooth: hci1: command tx timeout
[ 1416.951921][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1417.137004][   T57] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1418.569423][ T5808] Bluetooth: hci1: command tx timeout
[ 1418.746372][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1419.405530][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1420.209047][   T57] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1420.651124][ T5808] Bluetooth: hci1: command tx timeout
[ 1420.937706][T15348] netlink: 6068 bytes leftover after parsing attributes in process `syz.6.1963'.
[ 1421.023173][   T57] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1421.159316][T15351] syz.6.1963 (15351): drop_caches: 2
[ 1421.160878][T15351] syz.6.1963 (15351): drop_caches: 2
[ 1422.543101][   T57] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1422.734200][ T5808] Bluetooth: hci1: command tx timeout
[ 1423.117252][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.118630][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.805681][T15287] chnl_net:caif_netlink_parms(): no params data found
[ 1442.766682][   T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1443.093055][   T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1443.109934][   T57] bond0 (unregistering): Released all slaves
[ 1444.518025][T15287] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1444.518287][T15287] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1444.518512][T15287] bridge_slave_0: entered allmulticast mode
[ 1444.525459][T15287] bridge_slave_0: entered promiscuous mode
[ 1444.554784][T15485] netlink: 'syz.6.2004': attribute type 12 has an invalid length.
[ 1444.676482][T15287] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1444.676560][T15287] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1444.676724][T15287] bridge_slave_1: entered allmulticast mode
[ 1444.686200][T15287] bridge_slave_1: entered promiscuous mode
[ 1446.453872][T15287] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1446.742566][   T57] hsr_slave_0: left promiscuous mode
[ 1446.931885][   T57] hsr_slave_1: left promiscuous mode
[ 1446.932830][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1446.932989][   T57] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1448.008718][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1448.008747][   T57] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1449.246022][   T57] veth1_macvtap: left promiscuous mode
[ 1449.246131][   T57] veth0_macvtap: left promiscuous mode
[ 1449.246409][   T57] veth1_vlan: left promiscuous mode
[ 1449.246586][   T57] veth0_vlan: left promiscuous mode
[ 1453.885758][T15573] overlayfs: missing 'lowerdir'
[ 1457.773141][T15590] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2031'.
[ 1458.047332][T15594] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2033'.
[ 1459.555603][T15601] netlink: 6068 bytes leftover after parsing attributes in process `syz.7.2035'.
[ 1459.688679][T15600] syz.7.2035 (15600): drop_caches: 2
[ 1459.691411][T15600] syz.7.2035 (15600): drop_caches: 2
[ 1460.207965][   T57] team0 (unregistering): Port device team_slave_1 removed
[ 1460.489913][   T57] team0 (unregistering): Port device team_slave_0 removed
[ 1462.233776][T15613] overlayfs: missing 'lowerdir'
[ 1465.500627][T15287] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1466.610164][T15287] team0: Port device team_slave_0 added
[ 1466.630732][T15287] team0: Port device team_slave_1 added
[ 1468.792711][T15653] overlayfs: missing 'lowerdir'
[ 1469.702329][T15287] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1469.702346][T15287] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1469.702371][T15287] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1469.721221][T15287] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1469.721237][T15287] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1469.721263][T15287] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1470.310969][T15661] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2052'.
[ 1470.420554][T15287] hsr_slave_0: entered promiscuous mode
[ 1470.421878][T15287] hsr_slave_1: entered promiscuous mode
[ 1470.425426][T15287] debugfs: 'hsr0' already exists in 'hsr'
[ 1470.425442][T15287] Cannot create hsr debugfs directory
[ 1474.076608][T15684] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[ 1474.076608][T15684]    program syz.5.2055 not setting count and/or reply_len properly
[ 1475.686074][ T5808] Bluetooth: hci1: link tx timeout
[ 1475.686387][ T5808] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1477.172309][ T5808] Bluetooth: hci1: link tx timeout
[ 1477.172328][ T5808] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 1477.628113][T15708] overlayfs: missing 'lowerdir'
[ 1478.013327][ T5808] Bluetooth: hci1: command 0x0406 tx timeout
[ 1481.661418][T15731] overlayfs: missing 'workdir'
[ 1482.358651][ T5808] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1482.361614][ T5808] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1482.380733][ T5808] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1482.382628][ T5808] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1482.383807][ T5808] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1482.579136][T15735] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2067'.
[ 1483.635357][ T1455] bridge_slave_1: left allmulticast mode
[ 1483.635376][ T1455] bridge_slave_1: left promiscuous mode
[ 1483.635539][ T1455] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1483.795484][ T1455] bridge_slave_0: left allmulticast mode
[ 1483.795503][ T1455] bridge_slave_0: left promiscuous mode
[ 1483.795695][ T1455] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1484.492525][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.492627][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.567655][ T5808] Bluetooth: hci0: command tx timeout
[ 1484.776584][ T1455] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1484.929729][ T1455] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1485.057402][ T1455] bond0 (unregistering): Released all slaves
[ 1485.596156][ T1455] hsr_slave_0: left promiscuous mode
[ 1485.636041][ T1455] hsr_slave_1: left promiscuous mode
[ 1485.636695][ T1455] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1485.692083][ T1455] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1487.280437][ T5808] Bluetooth: hci0: command tx timeout
[ 1489.299935][ T5808] Bluetooth: hci0: command tx timeout
[ 1489.506633][ T1455] team0 (unregistering): Port device team_slave_1 removed
[ 1489.807578][ T1455] team0 (unregistering): Port device team_slave_0 removed
[ 1491.386137][ T5808] Bluetooth: hci0: command tx timeout
[ 1491.579919][T15788] tipc: Started in network mode
[ 1491.579938][T15788] tipc: Node identity ac1414aa, cluster identity 4711
[ 1491.582372][T15788] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1491.949578][T15789] tipc: Enabled bearer <ib:wg1>, priority 0
[ 1492.682178][T15819] overlayfs: missing 'lowerdir'
[ 1493.316277][ T5975] tipc: Node number set to 2886997162
[ 1495.121871][T15727] chnl_net:caif_netlink_parms(): no params data found
[ 1496.986357][  T992] usb 8-1: new full-speed USB device number 5 using dummy_hcd
[ 1497.126123][ T5118] Bluetooth: hci3: command tx timeout
[ 1497.148744][  T992] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1497.148771][  T992] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1497.148826][  T992] usb 8-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[ 1497.148850][  T992] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1498.908292][  T992] usb 8-1: config 0 descriptor??
[ 1498.915067][  T992] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[ 1498.915117][  T992] dvb-usb: bulk message failed: -22 (3/0)
[ 1499.028856][  T992] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1499.055875][  T992] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[ 1499.056149][  T992] usb 8-1: media controller created
[ 1499.058779][  T992] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1499.305187][T15845] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2091'.
[ 1499.491920][  T992] dvb-usb: bulk message failed: -22 (6/0)
[ 1499.492041][  T992] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[ 1499.533221][  T992] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.7/usb8/8-1/input/input12
[ 1499.549986][  T992] dvb-usb: schedule remote query interval to 150 msecs.
[ 1499.550016][  T992] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[ 1499.577771][  T992] usb 8-1: USB disconnect, device number 5
[ 1499.786048][T15872] overlayfs: failed to resolve './file0': -2
[ 1499.997079][T15727] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1499.997189][T15727] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1499.997388][T15727] bridge_slave_0: entered allmulticast mode
[ 1500.013949][T15727] bridge_slave_0: entered promiscuous mode
[ 1500.026520][T15727] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1500.026647][T15727] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1500.026834][T15727] bridge_slave_1: entered allmulticast mode
[ 1500.029470][T15727] bridge_slave_1: entered promiscuous mode
[ 1500.236167][  T992] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[ 1501.929007][T15727] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1501.933243][T15727] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1502.891764][T15895] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[ 1502.891764][T15895]    program syz.4.2098 not setting count and/or reply_len properly
[ 1503.620386][T15727] team0: Port device team_slave_0 added
[ 1503.636087][T15727] team0: Port device team_slave_1 added
[ 1504.333227][T15727] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1504.333244][T15727] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1504.333269][T15727] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1504.341759][T15727] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1504.341843][T15727] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1504.341930][T15727] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1506.352969][T15727] hsr_slave_0: entered promiscuous mode
[ 1506.354351][T15727] hsr_slave_1: entered promiscuous mode
[ 1506.355314][T15727] debugfs: 'hsr0' already exists in 'hsr'
[ 1506.355338][T15727] Cannot create hsr debugfs directory
[ 1510.896791][T15955] overlayfs: failed to resolve './file0': -2
[ 1511.128568][T15939] netlink: 'syz.6.2111': attribute type 12 has an invalid length.
[ 1512.703638][ T5118] Bluetooth: hci3: command 0x0406 tx timeout
[ 1514.772986][T15727] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1514.871258][T15727] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1516.158665][T15727] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1516.726599][T15727] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1518.424695][T15727] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1518.426728][T16028] netlink: 'syz.5.2125': attribute type 12 has an invalid length.
[ 1518.759683][T16031] overlayfs: failed to resolve './file1': -2
[ 1519.656427][T15727] 8021q: adding VLAN 0 to HW filter on device team0
[ 1519.992639][T10438] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1519.992880][T10438] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1520.746750][T16041] fuse: Unknown parameter '0xffffffffffffffff'
[ 1521.062406][T10303] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1521.062623][T10303] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1523.782219][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1523.948760][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1524.941209][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1525.277266][T16083] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2136'.
[ 1525.461391][T15727] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1525.520199][T16085] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2138'.
[ 1526.148703][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1527.050341][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1527.327453][T15727] veth0_vlan: entered promiscuous mode
[ 1527.369162][T15727] veth1_vlan: entered promiscuous mode
[ 1527.651993][T15727] veth0_macvtap: entered promiscuous mode
[ 1527.718401][T15727] veth1_macvtap: entered promiscuous mode
[ 1527.960240][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1528.091303][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1528.764864][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1528.875403][T15727] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1528.984500][T15727] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1529.074790][T12294] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1529.075094][T12294] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1529.075371][T12294] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1529.137303][T12294] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1530.006041][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1530.060694][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1531.937090][T10438] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1531.937105][T10438] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1533.425603][ T1202] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1533.425624][ T1202] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1536.284075][T16174] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2151'.
[ 1537.548393][ T5118] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1537.553861][ T5118] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1537.573464][ T5118] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1537.576507][ T5118] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1537.577708][ T5118] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1539.691513][ T5118] Bluetooth: hci1: command tx timeout
[ 1541.776216][ T5118] Bluetooth: hci1: command tx timeout
[ 1543.846199][ T5118] Bluetooth: hci1: command tx timeout
[ 1545.927326][ T5118] Bluetooth: hci1: command tx timeout
[ 1545.931428][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 1545.931598][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.083186][T10303] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1547.731665][T10303] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1548.234907][T16232] syz.7.2162 (16232): drop_caches: 2
[ 1548.469009][T10303] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1549.138950][T10303] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1549.197065][T16264] binder: 16262:16264 ioctl c0046209 0 returned -22
[ 1549.197498][T16264] 9pnet: Unknown protocol version 9x2000
[ 1549.209119][T16264] fuse: Invalid rootmode
[ 1549.566770][T16260] can0: slcan on ptm0.
[ 1550.251601][T16280] warning: `syz.6.2172' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 1550.297573][T16259] can0 (unregistered): slcan off ptm0.
[ 1550.330046][T16181] chnl_net:caif_netlink_parms(): no params data found
[ 1550.590786][T16289] comedi comedi2: Minor 48 is invalid!
[ 1550.730841][T16293] netlink: 'syz.4.2177': attribute type 5 has an invalid length.
[ 1550.767833][T16296] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.2176'.
[ 1550.788704][T16291] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.2176'.
[ 1551.976055][T12129] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1552.136116][T12129] usb 8-1: Using ep0 maxpacket: 8
[ 1552.138551][T12129] usb 8-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1552.138588][T12129] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1552.138622][T12129] usb 8-1: New USB device found, idVendor=1532, idProduct=010d, bcdDevice= 0.00
[ 1552.138645][T12129] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1552.204566][T12129] usb 8-1: config 0 descriptor??
[ 1552.426278][T16181] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1552.426598][T16181] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1552.426796][T16181] bridge_slave_0: entered allmulticast mode
[ 1552.430341][T16181] bridge_slave_0: entered promiscuous mode
[ 1552.442560][T16181] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1552.442709][T16181] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1552.442905][T16181] bridge_slave_1: entered allmulticast mode
[ 1552.445660][T16181] bridge_slave_1: entered promiscuous mode
[ 1552.551919][T10303] bridge_slave_1: left allmulticast mode
[ 1552.551937][T10303] bridge_slave_1: left promiscuous mode
[ 1552.552154][T10303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1552.618310][T10303] bridge_slave_0: left allmulticast mode
[ 1552.618338][T10303] bridge_slave_0: left promiscuous mode
[ 1552.618555][T10303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1552.828960][T12129] razer 0003:1532:010D.0004: failed to enable macro keys: -71
[ 1552.834351][T12129] razer 0003:1532:010D.0004: hidraw0: USB HID v0.00 Device [HID 1532:010d] on usb-dummy_hcd.7-1/input0
[ 1552.863226][T12129] usb 8-1: USB disconnect, device number 6
[ 1552.963975][T16331] fido_id[16331]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[ 1553.500059][ T5808] Bluetooth: hci4: unexpected event for opcode 0x0c24
[ 1554.246144][ T5118] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 1554.696061][ T5975] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[ 1554.716868][T10303] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1554.776632][T10303] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1554.798954][T10303] bond0 (unregistering): Released all slaves
[ 1554.846086][ T5975] usb 7-1: Using ep0 maxpacket: 8
[ 1554.854763][ T5975] usb 7-1: config index 0 descriptor too short (expected 30, got 18)
[ 1554.896522][ T5975] usb 7-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[ 1554.896552][ T5975] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1554.896569][ T5975] usb 7-1: Product: syz
[ 1554.896582][ T5975] usb 7-1: Manufacturer: syz
[ 1554.896595][ T5975] usb 7-1: SerialNumber: syz
[ 1554.926649][ T5975] usb 7-1: config 0 descriptor??
[ 1554.976898][ T5975] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[ 1554.976964][ T5975] usb 7-1: setting power ON
[ 1554.977577][ T5975] dvb-usb: bulk message failed: -22 (2/0)
[ 1554.993013][ T5975] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1555.006767][ T5975] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[ 1555.006823][ T5975] usb 7-1: media controller created
[ 1555.041101][T16181] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1555.054697][ T5975] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1555.064224][T16181] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1555.129359][ T5975] usb 7-1: selecting invalid altsetting 6
[ 1555.129384][ T5975] usb 7-1: digital interface selection failed (-22)
[ 1555.129400][ T5975] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[ 1555.130650][ T5975] usb 7-1: setting power OFF
[ 1555.130850][ T5975] dvb-usb: bulk message failed: -22 (2/0)
[ 1555.130867][ T5975] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[ 1555.130878][ T5975] (NULL device *): no alternate interface
[ 1555.180889][T16341] dvb-usb: bulk message failed: -22 (3/0)
[ 1555.180913][T16341] cxusb: i2c rd: len=112 is too big!
[ 1555.180913][T16341] 
[ 1555.185850][T16341] dvb-usb: bulk message failed: -22 (4/0)
[ 1555.185870][T16341] cxusb: i2c read failed
[ 1555.245459][ T5975] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[ 1555.253110][ T5975] usb 7-1: USB disconnect, device number 4
[ 1555.555880][ T5118] Bluetooth: hci4: Malformed HCI Event: 0x22
[ 1555.720134][T16181] team0: Port device team_slave_0 added
[ 1555.769054][T16181] team0: Port device team_slave_1 added
[ 1556.124315][T16371] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2202'.
[ 1556.448790][T16181] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1556.448806][T16181] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1556.448831][T16181] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1556.497023][T16181] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1556.497040][T16181] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1556.497066][T16181] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1556.656145][T10303] hsr_slave_0: left promiscuous mode
[ 1556.676139][T10303] hsr_slave_1: left promiscuous mode
[ 1556.676923][T10303] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1556.676945][T10303] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1556.716916][T10303] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1556.716943][T10303] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1556.760019][ T5975] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[ 1556.822740][T10303] veth1_macvtap: left promiscuous mode
[ 1556.822851][T10303] veth0_macvtap: left promiscuous mode
[ 1556.823116][T10303] veth1_vlan: left promiscuous mode
[ 1556.823301][T10303] veth0_vlan: left promiscuous mode
[ 1556.923934][ T5975] usb 7-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1556.923964][ T5975] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1556.923985][ T5975] usb 7-1: Product: syz
[ 1556.923999][ T5975] usb 7-1: Manufacturer: syz
[ 1556.924014][ T5975] usb 7-1: SerialNumber: syz
[ 1557.388527][ T5975] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[ 1557.388592][ T5975] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE
[ 1558.821336][ T5975] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000400. ret = -EPROTO
[ 1558.821390][ T5975] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1558.881154][ T5975] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1559.010694][ T5975] lan78xx 7-1:1.0: probe with driver lan78xx failed with error -71
[ 1559.039350][ T5975] usb 7-1: USB disconnect, device number 5
[ 1560.876785][T10303] team0 (unregistering): Port device team_slave_1 removed
[ 1561.126224][T16375] Set syz1 is full, maxelem 65536 reached
[ 1561.176852][T10303] team0 (unregistering): Port device team_slave_0 removed
[ 1561.272036][T16395] netlink: 'syz.7.2210': attribute type 4 has an invalid length.
[ 1563.621325][T16386] syzkaller1: entered promiscuous mode
[ 1563.621360][T16386] syzkaller1: entered allmulticast mode
[ 1563.862990][T16400] random: crng reseeded on system resumption
[ 1564.407145][T16407] loop3: detected capacity change from 0 to 7
[ 1564.482836][ T5808] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1564.509026][ T5808] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1564.510315][ T5808] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1564.513692][ T5808] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1564.514446][ T5808] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1564.516469][T16407] Dev loop3: unable to read RDB block 7
[ 1564.516527][T16407]  loop3: unable to read partition table
[ 1564.519640][T16407] loop3: partition table beyond EOD, truncated
[ 1564.519680][T16407] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1564.761765][T16181] hsr_slave_0: entered promiscuous mode
[ 1564.763139][T16181] hsr_slave_1: entered promiscuous mode
[ 1564.764169][T16181] debugfs: 'hsr0' already exists in 'hsr'
[ 1564.764196][T16181] Cannot create hsr debugfs directory
[ 1564.999786][T16417] kvm: kvm [16415]: vcpu0, guest rIP: 0x1a3 Unhandled WRMSR(0xc2) = 0x8000
[ 1565.226051][ T9740] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[ 1565.417296][ T9740] usb 8-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1565.417327][ T9740] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1565.417348][ T9740] usb 8-1: Product: syz
[ 1565.417363][ T9740] usb 8-1: Manufacturer: syz
[ 1565.417377][ T9740] usb 8-1: SerialNumber: syz
[ 1565.886547][ T9740] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[ 1565.886600][ T9740] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE
[ 1566.727133][ T5118] Bluetooth: hci0: command tx timeout
[ 1567.047290][T16463] netlink: 'syz.4.2224': attribute type 10 has an invalid length.
[ 1567.047311][T16463] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2224'.
[ 1567.100670][T16463] batman_adv: batadv0: Adding interface: virt_wifi0
[ 1567.100690][T16463] batman_adv: batadv0: Interface activated: virt_wifi0
[ 1567.101726][ T9740] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000404. ret = -EPROTO
[ 1567.101779][ T9740] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1567.104162][ T9740] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1567.171280][ T9740] lan78xx 8-1:1.0: probe with driver lan78xx failed with error -71
[ 1567.213632][ T9740] usb 8-1: USB disconnect, device number 7
[ 1567.285098][T16467] loop3: detected capacity change from 0 to 7
[ 1567.303023][T16467] Dev loop3: unable to read RDB block 7
[ 1567.303066][T16467]  loop3: unable to read partition table
[ 1567.303290][T16467] loop3: partition table beyond EOD, truncated
[ 1567.303309][T16467] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[ 1567.966139][ T5975] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1568.141802][ T5975] usb 8-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1568.141834][ T5975] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1568.141861][ T5975] usb 8-1: Product: syz
[ 1568.141876][ T5975] usb 8-1: Manufacturer: syz
[ 1568.141891][ T5975] usb 8-1: SerialNumber: syz
[ 1568.579518][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[ 1568.579579][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE
[ 1568.806148][ T5118] Bluetooth: hci0: command tx timeout
[ 1569.010534][T16408] chnl_net:caif_netlink_parms(): no params data found
[ 1569.877611][T16408] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1569.877853][T16408] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1569.878187][T16408] bridge_slave_0: entered allmulticast mode
[ 1569.883211][T16408] bridge_slave_0: entered promiscuous mode
[ 1569.994495][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000040. ret = -EPROTO
[ 1569.998648][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPROTO
[ 1570.004583][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[ 1570.004639][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1570.054410][T16408] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1570.054545][T16408] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1570.054771][T16408] bridge_slave_1: entered allmulticast mode
[ 1570.072962][ T5975] lan78xx 8-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1570.082737][T16408] bridge_slave_1: entered promiscuous mode
[ 1570.093620][T16181] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1570.107990][ T5975] lan78xx 8-1:1.0: probe with driver lan78xx failed with error -71
[ 1570.128078][ T5975] usb 8-1: USB disconnect, device number 8
[ 1570.292657][T16181] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1570.408815][T16181] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1570.453521][T16408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1570.467809][T16181] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1570.506135][ T9740] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[ 1570.593566][T16408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1570.656007][ T9740] usb 7-1: Using ep0 maxpacket: 32
[ 1570.657982][ T9740] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1570.658001][ T9740] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59136, setting to 1024
[ 1570.658025][ T9740] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1570.658038][ T9740] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1570.661826][ T9740] usb 7-1: config 0 descriptor??
[ 1570.665003][T16492] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1570.727042][ T9740] hub 7-1:0.0: USB hub found
[ 1570.749472][T10303] bridge_slave_1: left allmulticast mode
[ 1570.749497][T10303] bridge_slave_1: left promiscuous mode
[ 1570.749718][T10303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1570.856080][ T5975] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[ 1570.873344][T10303] bridge_slave_0: left allmulticast mode
[ 1570.873372][T10303] bridge_slave_0: left promiscuous mode
[ 1570.873641][T10303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1570.874213][ T9740] hub 7-1:0.0: 1 port detected
[ 1570.915195][ T5118] Bluetooth: hci0: command tx timeout
[ 1571.006524][ T5975] usb 8-1: Using ep0 maxpacket: 8
[ 1571.008783][ T5975] usb 8-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[ 1571.008837][ T5975] usb 8-1: config 6 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1571.011912][ T5975] usb 8-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[ 1571.011939][ T5975] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1571.011959][ T5975] usb 8-1: Product: syz
[ 1571.011974][ T5975] usb 8-1: Manufacturer: syz
[ 1571.011989][ T5975] usb 8-1: SerialNumber: syz
[ 1571.108359][ T5975] hso 8-1:6.0: Can't find BULK IN endpoint
[ 1571.347314][ T5975] usb 8-1: USB disconnect, device number 9
[ 1572.209201][ T5975] usb 7-1: USB disconnect, device number 6
[ 1572.536061][ T5867] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1572.698791][ T5867] usb 8-1: Using ep0 maxpacket: 8
[ 1572.700782][ T5867] usb 8-1: config 162 has an invalid interface number: 246 but max is 1
[ 1572.700809][ T5867] usb 8-1: config 162 has an invalid descriptor of length 0, skipping remainder of the config
[ 1572.700829][ T5867] usb 8-1: config 162 has 1 interface, different from the descriptor's value: 2
[ 1572.700850][ T5867] usb 8-1: config 162 has no interface number 0
[ 1572.700879][ T5867] usb 8-1: config 162 interface 246 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1572.700894][ T5867] usb 8-1: config 162 interface 246 has no altsetting 0
[ 1572.703227][ T5867] usb 8-1: New USB device found, idVendor=8087, idProduct=0a5a, bcdDevice=5f.2c
[ 1572.703257][ T5867] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1572.703278][ T5867] usb 8-1: Product: syz
[ 1572.703289][ T5867] usb 8-1: Manufacturer: syz
[ 1572.703297][ T5867] usb 8-1: SerialNumber: syz
[ 1572.947118][ T5118] Bluetooth: hci5: unexpected event for opcode 0x2035
[ 1572.966207][ T5118] Bluetooth: hci0: command tx timeout
[ 1573.150467][ T5867] usb 8-1: USB disconnect, device number 10
[ 1573.153648][T10303] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1573.226725][T10303] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1573.247782][T10303] bond0 (unregistering): Released all slaves
[ 1573.411387][T16408] team0: Port device team_slave_0 added
[ 1573.418113][T16408] team0: Port device team_slave_1 added
[ 1573.937429][T16408] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1573.937444][T16408] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1573.937471][T16408] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1574.104442][T16408] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1574.104459][T16408] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1574.104484][T16408] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1574.157477][ T5867] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[ 1574.306015][ T5867] usb 7-1: Using ep0 maxpacket: 8
[ 1574.308232][ T5867] usb 7-1: config index 0 descriptor too short (expected 30, got 18)
[ 1574.310813][ T5867] usb 7-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[ 1574.310842][ T5867] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1574.310862][ T5867] usb 7-1: Product: syz
[ 1574.310878][ T5867] usb 7-1: Manufacturer: syz
[ 1574.310892][ T5867] usb 7-1: SerialNumber: syz
[ 1574.336072][ T5867] usb 7-1: config 0 descriptor??
[ 1574.374711][ T5867] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[ 1574.374823][ T5867] usb 7-1: setting power ON
[ 1574.374843][ T5867] dvb-usb: bulk message failed: -22 (2/0)
[ 1574.431000][T10303] hsr_slave_0: left promiscuous mode
[ 1574.438904][ T5867] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1574.440493][ T5867] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[ 1574.440555][ T5867] usb 7-1: media controller created
[ 1574.502156][T10303] hsr_slave_1: left promiscuous mode
[ 1574.504587][T10303] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1574.528854][T10303] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1574.573123][T16532] dvb-usb: bulk message failed: -22 (3/0)
[ 1574.573144][T16532] cxusb: i2c rd: len=112 is too big!
[ 1574.573144][T16532] 
[ 1574.722454][ T5867] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1574.740192][ T5867] usb 7-1: selecting invalid altsetting 6
[ 1574.740213][ T5867] usb 7-1: digital interface selection failed (-22)
[ 1574.740228][ T5867] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[ 1574.740913][ T5867] usb 7-1: setting power OFF
[ 1574.740925][ T5867] dvb-usb: bulk message failed: -22 (2/0)
[ 1574.740935][ T5867] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[ 1574.740942][ T5867] (NULL device *): no alternate interface
[ 1574.784549][ T5867] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[ 1574.796525][ T5867] usb 7-1: USB disconnect, device number 7
[ 1576.826586][T10303] team0 (unregistering): Port device team_slave_1 removed
[ 1576.966527][ T5118] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[ 1576.996207][ T5118] Bluetooth: hci5: Injecting HCI hardware error event
[ 1576.998494][ T5808] Bluetooth: hci5: hardware error 0x00
[ 1577.056489][T10303] team0 (unregistering): Port device team_slave_0 removed
[ 1579.137415][ T5808] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[ 1580.861632][T16408] hsr_slave_0: entered promiscuous mode
[ 1580.863219][T16408] hsr_slave_1: entered promiscuous mode
[ 1580.864222][T16408] debugfs: 'hsr0' already exists in 'hsr'
[ 1580.864245][T16408] Cannot create hsr debugfs directory
[ 1581.153337][T16571] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.2261'.
[ 1581.164289][T16567] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.2261'.
[ 1581.860757][T16592] netlink: 228 bytes leftover after parsing attributes in process `syz.7.2264'.
[ 1582.095581][T16585] mmap: syz.7.2264 (16585) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1582.106374][ T5975] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[ 1582.154946][T16181] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1582.182594][T16181] 8021q: adding VLAN 0 to HW filter on device team0
[ 1582.273216][ T5975] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1582.273244][ T5975] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1582.276364][ T5975] usb 7-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7
[ 1582.276400][ T5975] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1582.276420][ T5975] usb 7-1: Product: syz
[ 1582.276434][ T5975] usb 7-1: Manufacturer: syz
[ 1582.276448][ T5975] usb 7-1: SerialNumber: syz
[ 1582.304150][ T5975] usb 7-1: config 0 descriptor??
[ 1582.371224][T12289] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1582.371373][T12289] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1582.499537][T12293] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1582.499692][T12293] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1582.578701][ T5975] usb 7-1: USB disconnect, device number 8
[ 1582.656037][T12957] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[ 1582.674226][T16408] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1582.717428][T16408] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1582.771691][T16408] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1582.805159][T16408] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1582.816101][T12957] usb 8-1: Using ep0 maxpacket: 16
[ 1582.818663][T12957] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 1582.818694][T12957] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1582.821686][T12957] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1582.821712][T12957] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1582.821732][T12957] usb 8-1: Product: syz
[ 1582.821747][T12957] usb 8-1: Manufacturer: syz
[ 1582.821761][T12957] usb 8-1: SerialNumber: syz
[ 1582.894462][T12957] usb 8-1: config 0 descriptor??
[ 1582.905499][T12957] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1582.905529][T12957] em28xx 8-1:0.0: Audio interface 0 found (Vendor Class)
[ 1583.222343][T16408] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1583.280850][T16408] 8021q: adding VLAN 0 to HW filter on device team0
[ 1583.320685][T10438] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1583.320896][T10438] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1583.342487][T12293] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1583.342613][T12293] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1583.516778][T12957] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[ 1583.517493][T12957] em28xx 8-1:0.0: Config register raw data: 0xfffffffb
[ 1583.752333][T16181] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1583.912396][T16181] veth0_vlan: entered promiscuous mode
[ 1583.944080][T16181] veth1_vlan: entered promiscuous mode
[ 1584.034970][T16181] veth0_macvtap: entered promiscuous mode
[ 1584.062388][T16181] veth1_macvtap: entered promiscuous mode
[ 1584.125653][T12957] em28xx 8-1:0.0: Unknown AC97 audio processor detected!
[ 1584.126492][T12957] em28xx 8-1:0.0: couldn't setup AC97 register 2
[ 1584.127270][T12957] em28xx 8-1:0.0: couldn't setup AC97 register 4
[ 1584.128330][T12957] em28xx 8-1:0.0: couldn't setup AC97 register 6
[ 1584.154982][T16181] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1584.219879][T16181] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1584.262273][T12289] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1584.263927][T12289] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1584.268839][T12289] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1584.268882][T12289] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1584.452082][T16408] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1584.653943][ T5818] ------------[ cut here ]------------
[ 1584.653957][ T5818] kernel BUG at net/ipv6/route.c:1473!
[ 1584.678964][ T5818] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[ 1584.678994][ T5818] CPU: 1 UID: 0 PID: 5818 Comm: kworker/1:3 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1584.679020][ T5818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1584.679033][ T5818] Workqueue: wg-crypt-wg1 wg_packet_tx_worker
[ 1584.679060][ T5818] RIP: 0010:ip6_pol_route+0x117d/0x1180
[ 1584.679089][ T5818] Code: ab f8 e9 f4 fa ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fb ff ff 48 89 df e8 be 13 ab f8 e9 f6 fa ff ff e8 84 5b 49 f8 90 <0f> 0b 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e
[ 1584.679105][ T5818] RSP: 0018:ffffc90004d573c0 EFLAGS: 00010293
[ 1584.679120][ T5818] RAX: ffffffff8975649c RBX: ffff888126ef9000 RCX: ffff88802f041e00
[ 1584.679134][ T5818] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1584.679145][ T5818] RBP: ffffc90004d574d0 R08: ffffe8ffffd3c407 R09: 1ffffd1ffffa7880
[ 1584.679159][ T5818] R10: dffffc0000000000 R11: fffff91ffffa7881 R12: ffff88806566f140
[ 1584.679173][ T5818] R13: ffffffff89755482 R14: dffffc0000000000 R15: 0000607ed8e43400
[ 1584.679186][ T5818] FS:  0000000000000000(0000) GS:ffff888126ef9000(0000) knlGS:0000000000000000
[ 1584.679201][ T5818] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1584.679214][ T5818] CR2: 00007faa5d135b4c CR3: 000000005f8b2000 CR4: 00000000003526f0
[ 1584.679229][ T5818] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1584.679241][ T5818] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1584.679252][ T5818] Call Trace:
[ 1584.679259][ T5818]  <TASK>
[ 1584.679268][ T5818]  ? ip6_pol_route+0x162/0x1180
[ 1584.679294][ T5818]  ? __pfx_ip6_pol_route+0x10/0x10
[ 1584.679325][ T5818]  fib6_rule_lookup+0x1fc/0x6f0
[ 1584.679345][ T5818]  ? __pfx_ip6_pol_route_output+0x10/0x10
[ 1584.679362][ T5818]  ? __pfx_fib6_rule_lookup+0x10/0x10
[ 1584.679382][ T5818]  ? ip6_route_output_flags+0x2e/0x5d0
[ 1584.679403][ T5818]  ip6_route_output_flags+0x364/0x5d0
[ 1584.679419][ T5818]  ? ip6_route_output_flags+0x2e/0x5d0
[ 1584.679419][ T5818]  ? ip6_route_output_flags+0x2e/0x5d0
[ 1584.679436][ T5818]  ip6_dst_lookup_tail+0x299/0x1510
[ 1584.679459][ T5818]  ? __pfx_ip6_dst_lookup_tail+0x10/0x10
[ 1584.679484][ T5818]  ? __ipv6_chk_addr_and_flags+0x187/0x7f0
[ 1584.679507][ T5818]  ? __ipv6_chk_addr_and_flags+0x68f/0x7f0
[ 1584.679525][ T5818]  ? __ipv6_chk_addr_and_flags+0x187/0x7f0
[ 1584.679549][ T5818]  ip6_dst_lookup_flow+0x47/0xe0
[ 1584.679567][ T5818]  ? __pfx_ip6_dst_lookup_flow+0x10/0x10
[ 1584.679584][ T5818]  send6+0x4ce/0x8d0
[ 1584.679601][ T5818]  ? rt_read_lock+0x203/0x490
[ 1584.679621][ T5818]  ? send6+0x220/0x8d0
[ 1584.679641][ T5818]  ? __pfx_send6+0x10/0x10
[ 1584.679658][ T5818]  ? rcu_is_watching+0x15/0xb0
[ 1584.679679][ T5818]  ? wg_socket_send_skb_to_peer+0x59/0x200
[ 1584.679697][ T5818]  wg_socket_send_skb_to_peer+0x128/0x200
[ 1584.679719][ T5818]  wg_packet_tx_worker+0x1c8/0x7c0
[ 1584.679738][ T5818]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1584.679759][ T5818]  ? process_scheduled_works+0x9ef/0x17b0
[ 1584.679782][ T5818]  process_scheduled_works+0xae1/0x17b0
[ 1584.679813][ T5818]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1584.679840][ T5818]  worker_thread+0x8a0/0xda0
[ 1584.679861][ T5818]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1584.679887][ T5818]  ? __kthread_parkme+0x7b/0x200
[ 1584.679910][ T5818]  kthread+0x711/0x8a0
[ 1584.679935][ T5818]  ? __pfx_worker_thread+0x10/0x10
[ 1584.679955][ T5818]  ? __pfx_kthread+0x10/0x10
[ 1584.679975][ T5818]  ? rt_spin_unlock+0x150/0x200
[ 1584.679995][ T5818]  ? rt_spin_unlock+0x161/0x200
[ 1584.680012][ T5818]  ? __pfx_kthread+0x10/0x10
[ 1584.680035][ T5818]  ret_from_fork+0x4bc/0x870
[ 1584.680057][ T5818]  ? __pfx_ret_from_fork+0x10/0x10
[ 1584.680079][ T5818]  ? __switch_to_asm+0x39/0x70
[ 1584.680097][ T5818]  ? __switch_to_asm+0x33/0x70
[ 1584.680114][ T5818]  ? __pfx_kthread+0x10/0x10
[ 1584.680137][ T5818]  ret_from_fork_asm+0x1a/0x30
[ 1584.680162][ T5818]  </TASK>
[ 1584.680176][ T5818] Modules linked in:
[ 1584.680208][ T5818] ---[ end trace 0000000000000000 ]---
[ 1584.749829][T12957] em28xx 8-1:0.0: couldn't setup AC97 register 56
[ 1584.773469][T10303] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1584.773490][T10303] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1584.789115][T16181] ieee80211 phy24: Selected rate control algorithm 'minstrel_ht'
[ 1584.881181][ T5818] RIP: 0010:ip6_pol_route+0x117d/0x1180
[ 1584.881221][ T5818] Code: ab f8 e9 f4 fa ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fb ff ff 48 89 df e8 be 13 ab f8 e9 f6 fa ff ff e8 84 5b 49 f8 90 <0f> 0b 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e
[ 1584.881237][ T5818] RSP: 0018:ffffc90004d573c0 EFLAGS: 00010293
[ 1584.881255][ T5818] RAX: ffffffff8975649c RBX: ffff888126ef9000 RCX: ffff88802f041e00
[ 1584.881271][ T5818] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1584.881282][ T5818] RBP: ffffc90004d574d0 R08: ffffe8ffffd3c407 R09: 1ffffd1ffffa7880
[ 1584.881297][ T5818] R10: dffffc0000000000 R11: fffff91ffffa7881 R12: ffff88806566f140
[ 1584.881310][ T5818] R13: ffffffff89755482 R14: dffffc0000000000 R15: 0000607ed8e43400
[ 1584.881325][ T5818] FS:  0000000000000000(0000) GS:ffff888126ef9000(0000) knlGS:0000000000000000
[ 1584.881341][ T5818] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1584.881354][ T5818] CR2: 0000200000000100 CR3: 000000005f8b2000 CR4: 00000000003526f0
[ 1584.881371][ T5818] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1584.881382][ T5818] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1584.881406][ T5818] Kernel panic - not syncing: Fatal exception in interrupt
[ 1584.881661][ T5818] Kernel Offset: disabled