last executing test programs:

8m50.565450725s ago: executing program 0 (id=678):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x800700, &(0x7f00000000c0)={[{@usrjquota}, {@block_validity}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}, {@noauto_da_alloc}, {@resgid}, {@quota}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@data_err_ignore}, {@grpjquota}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
chdir(&(0x7f0000000400)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x401c5820, &(0x7f0000000080)={@desc={0xd32780, 0x0, @desc2}})
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file5\x00', 0x401c2, 0x64)

8m47.443948215s ago: executing program 0 (id=685):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000400)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)
syz_emit_ethernet(0x11, &(0x7f00000003c0)={@local, @local, @void, {@llc_tr={0x11, {@llc={0x80, 0x1, "bc"}}}}}, 0x0)
mknod$loop(0x0, 0x6000, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c250000000000206ea37b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_vhci(&(0x7f0000000280)=@HCI_EVENT_PKT={0x4, @HCI_EV_VENDOR={{0xff, 0x1}, "02"}}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r0, 0x40047438, &(0x7f0000000180)=""/246)
writev(r0, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

8m46.952050881s ago: executing program 0 (id=688):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000000200), 0x1, 0x513, &(0x7f00000010c0)="$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")
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syslog(0x2, &(0x7f0000000740)=""/195, 0xc3)

8m44.315182224s ago: executing program 0 (id=694):
openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@norecovery}, {@grpquota}, {@debug}, {@nombcache}]}, 0xee, 0x4b6, &(0x7f0000000980)="$eJzs3DtsHEUfAPD/rt95fPH3feGRkIAhPCIgduw8SEFDBBIFSEhQBFEZx4lCnBjFRiKRBYYilCgSPaJEokeiggYBBUKihR5FQshNAtWi3ds1Z/vOz4vtcL+fdOeZ3T3PzM7O7Xj+dw6gbQ3kT0nEroj4JSL21LILDxio/bg9NzP259zMWBJZ9uofSXHcrbmZserQ6nU7a5ksi+jJkz0Nyr3+RsToxMT4lTI/NH3p7aGpq9eOXLg0en78/PjlkVOnjh872H1y5ESxP1tn+9LyZ96uW/vfmzyw78XXb7w8dubGm99/kdd3V7m/vh3rki2t4UDt7C72UP702IYK21Z+zJ92121IOpsfPLgJFWL1OiIi766uIpdER/TN79sTL3y4hVUD7rAsy7JG9+eou29nwL9UYnxDm6ru9fnfv9Vjc2Ye28Pvz0XEkTIzNzN2e779nfNrB12L/r5tpYGIODP716f5I1qxDgEAsIKv8/nP043mf2ncW3fcf8oYSn9E/Dci/hcR/4+IvRFxT0Rx7H0Rl+5fY/mLIyRL5z/pzXU1bJXy+d+zRWwrn+XVz//K2V9f9HeUud1F+7uScxcmxo+W5+RwdPXk+eFlyvjm+Z8/rtK9i/bVz//yR15+NRcs63Gzc9EC3dnR6dEikWXZ+xtt/wcR+ztrsb3bC+a/SVRhnCQi9kXE/nWWceHJzw8027dy+5exTJxptbLPIp6oxTZnR3bVzkPZSfNdldTHJ/siYj4+OfzMyZETQ70xMX50qLoqlvrhp+uvNCt/Q+1vgbz/d0Tj/i/1J70RU1evXSzitVNrL+P6rx/VjekF0eW8/emXEWu+/ruT14p0d7nt3dHp6SvDEd3JS0VQa8H2kX9eW+Wr4/P2Hz7UqP1p8R5X1fiBiMgv4oMR8WAZxM377uGIeCQiDi3T/u9OP/pWs33N+7/ZqnxrVUNo2f6P+v5fe6Lj4rdfNSt/oIxBRnkeGvf/8SJ1uNwy//63jNVWcD3nDAAAAO42afEZ+CQdnE+n6eBg7TP8e2NHOjE5Nf3Uucl3Lp+tfVa+P7rSaqVrT9166HC5NlzlRxblj5Xrxp909BX5wbHJibNb3XhoczubjP/cbx1bXTvgjmtBHA24Sxn/0L6Mf2hfxj+0L+Mf2lej8b/RLxYAdwf3f2hfxfh/fHarqwFsgdXc/5PZdBNqAmw2839oS02/G59u6Cv/TRNJq39hw0T1vxM2o6yVE9X/otj00vvW/KrT5SXRu/Kpi7TFdc7nl9uiv7ZZonNJX0RnS4voabhrC9+UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWujvAAAA//+qNMrw")
lsetxattr$system_posix_acl(0x0, &(0x7f0000000440)='system.posix_acl_default\x00', 0x0, 0x5c, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r0, &(0x7f0000000080), 0x208e24b)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)

8m42.238896526s ago: executing program 0 (id=704):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b70500000000000061103000000000000fa000000000000095000000000000"], &(0x7f00000002c0)='GPL\x00', 0x7, 0xbc, &(0x7f0000000300)=""/188, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000003c0), 0x8, 0x10, &(0x7f0000000080)={0x0, 0x0, 0x1}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

8m40.224456293s ago: executing program 0 (id=711):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r0=>0x0})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f00000000c0)={r0, 0x2, 0x6}, 0xfffffffffffffdd9)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000140)={r1, &(0x7f00000007c0), &(0x7f00000000c0)=""/79}, 0x20)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

8m39.98990249s ago: executing program 32 (id=711):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r0=>0x0})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f00000000c0)={r0, 0x2, 0x6}, 0xfffffffffffffdd9)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000140)={r1, &(0x7f00000007c0), &(0x7f00000000c0)=""/79}, 0x20)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'})

6m10.459602607s ago: executing program 3 (id=1530):
creat(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8000, 0x0, r2, 0x0, 0xe, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
dup2(r3, r0)
fdatasync(r3)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r5 = epoll_create1(0x0)
r6 = fcntl$dupfd(r5, 0x2, 0xffffffffffffffff)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000580)=ANY=[@ANYRES32=r6, @ANYRES32=r4, @ANYBLOB="11"], 0x14)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)

6m10.104723093s ago: executing program 3 (id=1535):
setsockopt$inet_MCAST_LEAVE_GROUP(0xffffffffffffffff, 0x0, 0x2d, 0x0, 0x0)
mkdir(0x0, 0x0)
setxattr(0x0, 0x0, 0x0, 0x0, 0x1)
syz_usb_connect$uac1(0x3, 0xac, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x9a, 0x3, 0x1, 0x5, 0x60, 0x4, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x9, 0x9e}, [@mixer_unit={0x5, 0x24, 0x4, 0x4, 0xa}, @output_terminal={0x9, 0x24, 0x3, 0x3, 0x307, 0x2, 0x6, 0x8}, @selector_unit={0xa, 0x24, 0x5, 0x4, 0x6, "e0f262295a"}, @mixer_unit={0xb, 0x24, 0x4, 0x3, 0x4, '\x00\x00\x00\x00\x00\x00'}, @processing_unit={0x9, 0x24, 0x7, 0x5, 0x3, 0x8, '\b9'}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0xf9, 0xff, 0x4, {0x7, 0x25, 0x1, 0x2, 0x1, 0xff}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x17, 0x6, 0x1}, @format_type_i_discrete={0x8, 0x24, 0x2, 0x1, 0x0, 0x12, 0x1, 0xfe}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x1, 0x3, 0x2, {0x7, 0x25, 0x1, 0x0, 0x6, 0x2}}}}}}}]}}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0})
syz_open_procfs(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)

6m6.623687467s ago: executing program 3 (id=1552):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r2, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6m6.301033921s ago: executing program 3 (id=1556):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000240)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xa1008a, &(0x7f00000003c0)=ANY=[], 0x21, 0x1517, &(0x7f0000001240)="$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")
mkdir(&(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x45)
creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4, 0x1)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x58)
r1 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x78)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = getuid()
lstat(&(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fchown(r1, r4, r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r6}, 0x18)
syz_clone(0xc3002000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000400)='./file1\x00', 0x200000, &(0x7f0000000200)={[{@oldalloc}, {@block_validity}]}, 0xdc, 0x59c, &(0x7f0000001600)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r7, &(0x7f0000000040)=""/41, 0x29)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.swap.events\x00', 0x275a, 0x0)
getdents64(r7, 0xfffffffffffffffe, 0x29)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan0\x00'})

6m3.907869685s ago: executing program 3 (id=1561):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000003380)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100feffffff040000004400000008000300", @ANYRES32, @ANYBLOB="2c00238006000100ce00000008000b0004000000050008000300000006001b00faff400006000a000500"], 0x48}}, 0x0)

6m3.083932275s ago: executing program 3 (id=1571):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r0, &(0x7f0000000000), 0x0}, 0x20)

6m2.800929816s ago: executing program 33 (id=1571):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r0, &(0x7f0000000000), 0x0}, 0x20)

5m18.972831433s ago: executing program 5 (id=1862):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000380)={0x0, 0x2, 0x0, 0x2})
unshare(0x20000400)
capset(0x0, &(0x7f0000000040)={0x200000, 0x200000, 0x4, 0x0, 0x0, 0xfffffffe})
fcntl$lock(r0, 0x6, &(0x7f0000000380)={0x0, 0x2, 0x10403, 0x2})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r1, &(0x7f0000000640)=[{&(0x7f0000000140)=""/134, 0x86}], 0x1, 0x0, 0x0)

5m18.755956859s ago: executing program 5 (id=1864):
sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x8005}, 0x20000000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/35, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000140)={'gre0\x00', 0x0})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

5m14.802700857s ago: executing program 5 (id=1875):
r0 = syz_clone(0xb00200, 0x0, 0x0, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x4, 0x0)
r1 = syz_open_procfs(r0, &(0x7f00000003c0)='syscall\x00')
r2 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r3, 0x0)
pread64(r1, &(0x7f0000000140)=""/15, 0xf, 0x4)

5m14.614720031s ago: executing program 5 (id=1879):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
setsockopt$inet6_int(r0, 0x29, 0x4a, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000080), 0x208e24b)
rmdir(&(0x7f0000000040)='./file0\x00')

5m14.132780476s ago: executing program 5 (id=1880):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f00000002c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3b}}}, 0x1c)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x20, r4, 0x1, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x48800}, 0x40000)

5m13.442327986s ago: executing program 5 (id=1883):
userfaultfd(0x80801)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000180)="5e73663bf4082f7c6cbecbf09d6dd7be5a06dfd64563f329c16f799d1836bfc45a7badc8faed24bb77c848723a43602d1fe0d236c062e105ec77ffd00fb243c3111dda42112650cc", 0x0, 0xfe2a)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
read$eventfd(r0, &(0x7f0000000080), 0x51)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup(r2)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x10c000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl2\x00', 0x0})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

5m13.298264037s ago: executing program 34 (id=1883):
userfaultfd(0x80801)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000180)="5e73663bf4082f7c6cbecbf09d6dd7be5a06dfd64563f329c16f799d1836bfc45a7badc8faed24bb77c848723a43602d1fe0d236c062e105ec77ffd00fb243c3111dda42112650cc", 0x0, 0xfe2a)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
read$eventfd(r0, &(0x7f0000000080), 0x51)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup(r2)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x10c000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl2\x00', 0x0})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

9.558155203s ago: executing program 2 (id=3502):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x34, 0x2, 0x3, "b7c239d709000000b585eeb90f444700e6ffffff00", 0x34363248})

9.239958016s ago: executing program 2 (id=3503):
rseq(0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={0x0}}, 0x0)
poll(0x0, 0x0, 0x100)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000002, 0x31, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r1, 0xc01064d1, &(0x7f0000000040)={0x0, 0x0, 0x0})
r2 = io_uring_setup(0x168f, &(0x7f0000000400)={0x0, 0x631d, 0x2, 0x2, 0x2d8})
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, &(0x7f0000002700)={0x119f, 0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000480)=""/264, 0xf9}, {&(0x7f00000015c0)=""/4096, 0x400400}, {&(0x7f0000002a00)=""/88, 0x8}], 0x0}, 0x20)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x80001, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r4, 0x4068aea3, &(0x7f0000000140)={0x8f, 0x0, 0xb})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r5, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x3, 0x2d, &(0x7f0000000800)={{0x12, 0x1, 0x300, 0x19, 0x2, 0x15, 0x8, 0x7fd, 0x1, 0x6ae5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x8, 0xa, 0x40, 0x6, [{{0x9, 0x4, 0x0, 0x7, 0x1, 0xa3, 0x5f, 0xc3, 0x3, [], [{{0x9, 0x5, 0x8, 0x3, 0x20, 0x6, 0x2, 0x4}}]}}]}}]}}, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0})

6.409798102s ago: executing program 4 (id=3522):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1)

6.238898464s ago: executing program 4 (id=3526):
openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
accept4(r2, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x4)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
pipe2(&(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000300)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r0, @ANYBLOB="05", @ANYRES64=r3, @ANYRES8, @ANYRES16=r1, @ANYRES16=r4], 0x0)

6.16396349s ago: executing program 2 (id=3527):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x8, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000940)={{r1}, 0x0, &(0x7f0000000900)=r0}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
ptrace$PTRACE_GETSIGMASK(0x420a, r2, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0xfe37, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000600)={'veth1_to_bridge\x00', <r5=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x0, 0x0, 0x0, 0x7fff, 0x6, &(0x7f00000005c0)=""/6, 0x41100, 0x40, '\x00', r5, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000740)=[{0x4, 0x3, 0x7, 0x9}, {0x4, 0x2, 0xc, 0x9}, {0x5, 0x2, 0x7, 0x4}], 0x10, 0x1, @void, @value}, 0x94)
semctl$IPC_INFO(0x0, 0x3, 0x3, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc4c85513, &(0x7f0000000040)={{0x2, 0x0, 0x0, 0x0, 'syz1\x00', 0x400}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x80000000000, 0x0, 0x40, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x8, 0x0, 0x401, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffff8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x342d, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x800000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x400000000001, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x200, 0x38000000000000, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4]})

5.182457482s ago: executing program 6 (id=3530):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r1 = io_uring_setup(0x191a, &(0x7f0000000080)={0x0, 0xace8, 0x0, 0x1, 0x35e})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

5.100876738s ago: executing program 2 (id=3532):
r0 = socket(0x840000000002, 0x3, 0xfa)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2b, &(0x7f0000000000)=0x803, 0x4)

4.673663259s ago: executing program 6 (id=3538):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000200)={0x32, 0x0, 0x1, 0x64}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000380)='kfree\x00'}, 0x10)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x141840, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080), 0x4a440, 0x0)
ioctl$ASHMEM_GET_NAME(r3, 0x81007702, &(0x7f0000000280)=""/99)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000000080095000040"])
ioctl$KVM_SET_TSC_KHZ(0xffffffffffffffff, 0xaea2, 0x4861019d)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
socket$packet(0x11, 0x3, 0x300)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r7, 0x560a, &(0x7f0000000300)={0x0, 0x0, 0x2c, 0x4, 0x104, 0x1})
io_setup(0x3, &(0x7f0000000180)=<r8=>0x0)
r9 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
io_submit(r8, 0x1, &(0x7f0000002340)=[&(0x7f0000000040)={0x0, 0x300, 0x0, 0x5, 0x0, r9, 0x0}])
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r1, 0x10000000)

4.603265514s ago: executing program 2 (id=3539):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r1, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)

4.602755374s ago: executing program 6 (id=3540):
r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006000000000000000000380000000000000000191bda00002000"], 0x69)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x54)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x84, &(0x7f0000000180)={r3, @in={{0x2, 0x0, @empty}}}, 0x90)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$drirender128(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

4.163130746s ago: executing program 1 (id=3541):
r0 = openat$drirender128(0xffffff9c, &(0x7f0000000000), 0x40800, 0x0)
pread64(r0, 0x0, 0x0, 0x1ff)

3.960063851s ago: executing program 1 (id=3542):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vxcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1, 0x0, {0x0, 0x0, 0x4}}, 0x18)
sendmsg$can_j1939(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x20008081}, 0x20000810)

3.940117393s ago: executing program 1 (id=3543):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x8, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000940)={{r1}, 0x0, &(0x7f0000000900)=r0}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
ptrace$PTRACE_GETSIGMASK(0x420a, r2, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0xfe37, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000600)={'veth1_to_bridge\x00', <r5=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x0, 0x0, 0x0, 0x7fff, 0x6, &(0x7f00000005c0)=""/6, 0x41100, 0x40, '\x00', r5, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000740)=[{0x4, 0x3, 0x7, 0x9}, {0x4, 0x2, 0xc, 0x9}, {0x5, 0x2, 0x7, 0x4}], 0x10, 0x1, @void, @value}, 0x94)
semctl$IPC_INFO(0x0, 0x3, 0x3, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc4c85513, &(0x7f0000000040)={{0x2, 0x0, 0x0, 0x0, 'syz1\x00', 0x400}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x80000000000, 0x0, 0x40, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x8, 0x0, 0x401, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffff8, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x342d, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x800000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x400000000001, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x200, 0x38000000000000, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4]})

3.42609846s ago: executing program 6 (id=3544):
r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x20101, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r4, 0xc2604110, &(0x7f0000000b40)={0x0, [[0x9ef8], [0x10000, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x40000], [0xb306, 0x0, 0xffffffff, 0x7]], '\x00', [{0xffffffff}, {0x6}, {0x0, 0x8}, {0x0, 0x80000000, 0x0, 0x0, 0x1}, {0x4, 0x0, 0x0, 0x1, 0x1}, {0x0, 0x5f, 0x1}, {0x1e7}, {0xef}, {0x0, 0x80000001}, {0x0, 0xfffffffe}, {0x80000}, {0x0, 0xfffffffd}], '\x00', 0x1000})
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b05, &(0x7f0000000040)={'wlan0\x00'})
ioctl(r5, 0x8b1b, &(0x7f0000000040))
ioctl$PPPIOCGIDLE(r0, 0x8010743f, &(0x7f0000000200))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x17, 0x8, 0x40, 0x42, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r6}, 0x38)

2.969954823s ago: executing program 4 (id=3546):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_clone(0xa9080, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

2.837842673s ago: executing program 1 (id=3547):
open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000003b40), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000003ac0)='./file0\x00', &(0x7f0000003b00), 0x8401, &(0x7f0000003b80)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}})
open$dir(&(0x7f0000000180)='./file0\x00', 0x7e, 0x0)

2.700110583s ago: executing program 1 (id=3548):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x1, 0x4, 0x101, 0x0, 0x0, {0x3, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x4048000}, 0x840)

2.593912681s ago: executing program 1 (id=3550):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000bc0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000380)={0x18, 0x0, 0x0, 0x0, &(0x7f0000000240), 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x5b03, 0x0)

2.507925777s ago: executing program 2 (id=3551):
r0 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000d00)=ANY=[@ANYBLOB="120100021982302013042360e5ec0102030109021b0001000060020904840001ee48b100090582"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)

2.46404273s ago: executing program 4 (id=3552):
openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
accept4(r2, 0x0, 0x0, 0x0)
socket(0xa, 0x3, 0x4)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000300), 0x4c142, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
pipe2(&(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000300)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r0, @ANYBLOB="05", @ANYRES64=r3, @ANYRES8, @ANYRES16=r1, @ANYRES16=r4], 0x0)

1.541310297s ago: executing program 7 (id=3559):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400000016001d0a"], 0x14}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000940), r3)

1.262410718s ago: executing program 6 (id=3560):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000003b000701000000000ce2aa66027c00000400000014000180066ea6d07128"], 0x2c}}, 0x0)

466.199106ms ago: executing program 6 (id=3561):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f00000001c0)={0x8000042}, 0x10)
ppoll(&(0x7f0000000000)=[{r1, 0x20}], 0x1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
futex(&(0x7f000000cffc)=0xf5000000, 0x4, 0x801, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000380)={0x1, 0x2000, 0x1})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000040)={0x0, 0x7000, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

437.402828ms ago: executing program 7 (id=3562):
r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000300)={0x2, 0x3, 0x4})
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000140)={0x5, 0x7, 0x1})
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r0, 0x4020565b, &(0x7f0000000000)={0x2, 0xa, 0x2})

388.879592ms ago: executing program 7 (id=3563):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x20000005})

278.226299ms ago: executing program 7 (id=3564):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0xda2, 0x8169, 0x6, 0x0, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f00000001c0)={0x15, 0x1, 0x3})
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r3, 0xc00464b4, &(0x7f0000000400)={r5})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000004c0)={0x49, 0x7fff, 0x4})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x8, 0x3})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000140)={0x4, 0xd8, 0x8})
close_range(r0, 0xffffffffffffffff, 0x0)

229.326573ms ago: executing program 7 (id=3565):
r0 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006000000000000000000380000000000000000191bda00002000"], 0x69)
close(r0)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x54)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x84, &(0x7f0000000180)={r2, @in={{0x2, 0x0, @empty}}}, 0x90)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$drirender128(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

211.452794ms ago: executing program 4 (id=3566):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000003c0)='{\f', 0x2}], 0x1, 0x0, 0x0, 0x20008040}, 0x20004011)
recvmsg$unix(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x10002)
sendmsg$inet(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="8b", 0x1}], 0x1}, 0x0)

85.176854ms ago: executing program 7 (id=3567):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21087c, &(0x7f0000000040)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x507, &(0x7f0000000ac0)="$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")
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b29, &(0x7f0000000040)={'wlan1\x00'})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000007c0)={0x14, 0x0, 0x400, 0x70bd26, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4008014)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x602, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a})
chdir(&(0x7f00000002c0)='mnt/encrypted_dir\x00')
symlink(&(0x7f0000000700)='./file0\x00', &(0x7f0000000780)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='mnt/encrypted_dir\x00', 0x420040, 0xdb)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @c}})
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, 0x0)
lstat(0x0, &(0x7f00000002c0))

0s ago: executing program 4 (id=3568):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x239, 0x0, &(0x7f00000002c0)=<r2=>0x0, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f00002b0000/0x2000)=nil, 0x2000, 0x0, 0x8010, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(r2, r3, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TCSETSW2(r4, 0x402c542c, &(0x7f0000000040)={0x1, 0x3, 0x81, 0x0, 0x3, "ad1b880cdc9bd88f571754546e9023b70a7ee6", 0x2, 0xe})
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000c000/0x18000)=nil, 0x0, 0x0, 0x41, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, 0x0, 0x0)
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
socket$alg(0x26, 0x5, 0x0)

kernel console output (not intermixed with test programs):

 in process `syz.7.2357'.
[  655.177500][ T4250] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  655.299816][ T3061] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  655.314018][ T3061] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  655.358999][T12194] device veth0_macvtap entered promiscuous mode
[  655.366286][ T4250] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  655.382536][ T4250] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  655.410660][T12194] device veth1_macvtap entered promiscuous mode
[  655.425195][ T4250] usb 2-1: Product: syz
[  655.436280][ T4250] usb 2-1: Manufacturer: syz
[  655.455582][ T4250] usb 2-1: SerialNumber: syz
[  655.476638][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  655.513625][ T4250] usb 2-1: config 0 descriptor??
[  655.549069][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.561908][T12403] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  655.573943][T12403] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  655.620889][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  655.671428][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.703255][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  655.734552][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.765851][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  655.821395][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.838278][T12403] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  655.852132][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  655.860278][T12403] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  655.894899][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.918921][T12194] batman_adv: batadv0: Interface activated: batadv_slave_0
[  655.936782][ T6929] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  655.955025][ T6929] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  655.976095][ T6929] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  655.995108][ T6929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  656.015437][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  656.051268][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  656.081517][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  656.104460][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  656.123503][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  656.146439][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  656.172188][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  656.192020][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  656.213794][T12194] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  656.239183][T12194] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  656.262935][T12194] batman_adv: batadv0: Interface activated: batadv_slave_1
[  656.274864][T12462] tipc: Started in network mode
[  656.279836][T12462] tipc: Node identity 36823e3da889, cluster identity 4711
[  656.317275][T12462] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  656.341505][ T4250] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  656.362170][ T4250] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71
[  656.404918][ T4250] asix: probe of 2-1:0.251 failed with error -71
[  656.414162][T12467] device syzkaller0 entered promiscuous mode
[  656.446016][ T4250] usb 2-1: USB disconnect, device number 34
[  656.496770][T12461] tipc: Resetting bearer <eth:syzkaller0>
[  656.619809][T12461] tipc: Disabling bearer <eth:syzkaller0>
[  656.727114][ T6929] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  656.746006][ T6929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  656.792583][T12194] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  656.831404][T12194] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  656.840217][T12194] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  656.891281][T12194] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  657.043544][ T6916] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  657.084890][ T6916] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  657.095465][T12502] loop7: detected capacity change from 0 to 128
[  657.126704][ T3061] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  657.138657][ T6929] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  657.151429][ T3061] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  657.243399][ T3061] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  657.273165][T12502] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  657.290752][T12502] ext4 filesystem being mounted at /68/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  657.418522][T12515] loop4: detected capacity change from 0 to 16
[  657.503883][T12515] erofs: (device loop4): mounted with root inode @ nid 36.
[  658.259701][T12519] crypto_alloc_aead failed rc=-4
[  658.404075][T12550] loop4: detected capacity change from 0 to 1024
[  658.575928][T12558] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2382'.
[  659.164364][ T4219] hfsplus: b-tree write err: -5, ino 4
[  659.180216][T12567] loop1: detected capacity change from 0 to 128
[  659.974464][T12574] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2388'.
[  660.084538][T12574] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  660.095246][T12574] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  660.266214][T12567] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  660.702035][T12572] loop7: detected capacity change from 0 to 16
[  660.731134][T12567] ext4 filesystem being mounted at /445/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  660.803977][T12572] erofs: (device loop7): mounted with root inode @ nid 36.
[  662.309204][T12597] loop7: detected capacity change from 0 to 1024
[  662.333872][T12601] loop1: detected capacity change from 0 to 512
[  662.510051][T12601] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  662.802231][T12601] ext4 filesystem being mounted at /447/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  662.954013][ T3061] hfsplus: b-tree write err: -5, ino 4
[  663.335880][T12614] loop4: detected capacity change from 0 to 16
[  663.451588][T12614] erofs: (device loop4): mounted with root inode @ nid 36.
[  664.195631][   T26] audit: type=1326 audit(1739563790.495:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12624 comm="syz.2.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff881b28de9 code=0x7ffc0000
[  664.223342][   T26] audit: type=1326 audit(1739563790.495:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12624 comm="syz.2.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff881b28de9 code=0x7ffc0000
[  664.227265][   T26] audit: type=1326 audit(1739563790.495:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12624 comm="syz.2.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff881b28de9 code=0x7ffc0000
[  664.230190][   T26] audit: type=1326 audit(1739563790.495:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12624 comm="syz.2.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff881b28de9 code=0x7ffc0000
[  664.234358][   T26] audit: type=1326 audit(1739563790.495:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12624 comm="syz.2.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff881b28de9 code=0x7ffc0000
[  664.235716][   T26] audit: type=1326 audit(1739563790.495:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12624 comm="syz.2.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff881b28de9 code=0x7ffc0000
[  664.238028][   T26] audit: type=1326 audit(1739563790.495:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12624 comm="syz.2.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff881b28de9 code=0x7ffc0000
[  664.240333][   T26] audit: type=1326 audit(1739563790.495:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12624 comm="syz.2.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff881b28de9 code=0x7ffc0000
[  664.311506][ T1325] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  664.973173][T12634] trusted_key: encrypted_key: insufficient parameters specified
[  665.281512][ T1325] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  665.281543][ T1325] usb 2-1: config 0 has no interfaces?
[  665.281569][ T1325] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  665.281596][ T1325] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.284788][ T1325] usb 2-1: config 0 descriptor??
[  665.574214][T12645] binder: 12641:12645 ioctl c0306201 0 returned -14
[  665.585484][T12645] loop4: detected capacity change from 0 to 1024
[  665.667040][T12645] hfsplus: invalid extent max_key_len 0
[  665.667302][T12645] hfsplus: failed to load extents file
[  665.954485][T12647] loop7: detected capacity change from 0 to 16
[  666.008883][T12647] erofs: (device loop7): mounted with root inode @ nid 36.
[  666.356460][T12658] trusted_key: encrypted_key: insufficient parameters specified
[  666.427115][T12663] loop4: detected capacity change from 0 to 512
[  666.457434][T12660] dccp_close: ABORT with 20 bytes unread
[  666.679150][T12663] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  666.692045][T12663] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  666.774703][ T1325] usb 2-1: USB disconnect, device number 35
[  667.818450][T12687] loop4: detected capacity change from 0 to 16
[  667.928460][T12687] erofs: (device loop4): mounted with root inode @ nid 36.
[  667.959140][T12689] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2429'.
[  668.032849][T12692] trusted_key: encrypted_key: insufficient parameters specified
[  668.695892][T12710] loop7: detected capacity change from 0 to 512
[  668.765259][T12714] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2440'.
[  668.862959][T12710] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  668.928131][T12710] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  669.040816][T12724] loop4: detected capacity change from 0 to 16
[  669.901552][T12724] erofs: (device loop4): mounted with root inode @ nid 36.
[  670.002460][T12732] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2446'.
[  670.027840][T12737] loop7: detected capacity change from 0 to 256
[  670.141708][T12735] trusted_key: encrypted_key: insufficient parameters specified
[  670.198944][T12739] loop4: detected capacity change from 0 to 512
[  670.353033][T12739] EXT4-fs (loop4): Ignoring removed orlov option
[  670.359443][T12739] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  670.447620][T12739] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #15: comm syz.4.2448: casefold flag without casefold feature
[  670.562403][T12739] EXT4-fs (loop4): Remounting filesystem read-only
[  670.591527][T12739] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.2448: couldn't read orphan inode 15 (err -117)
[  670.671165][T12768] trusted_key: encrypted_key: insufficient parameters specified
[  670.674729][T12739] EXT4-fs (loop4): Remounting filesystem read-only
[  670.695377][T12739] EXT4-fs (loop4): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback.
[  671.258212][T12787] loop7: detected capacity change from 0 to 16
[  671.351396][T12787] erofs: (device loop7): mounted with root inode @ nid 36.
[  671.542612][T12805] trusted_key: encrypted_key: insufficient parameters specified
[  671.666678][T12810] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2478'.
[  671.726832][T12810] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  672.077095][T12827] trusted_key: encrypted_key: insufficient parameters specified
[  672.197497][T12833] loop7: detected capacity change from 0 to 128
[  672.230350][T12835] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2490'.
[  672.278038][T12832] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2489'.
[  672.327963][T12833] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  672.348145][T12833] ext4 filesystem being mounted at /89/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  672.351437][ T1325] Bluetooth: hci0: command 0x0406 tx timeout
[  672.650181][T12853] netlink: 'syz.7.2495': attribute type 1 has an invalid length.
[  672.666103][T12853] netlink: 'syz.7.2495': attribute type 2 has an invalid length.
[  673.239662][T12866] loop4: detected capacity change from 0 to 64
[  673.253717][T12868] trusted_key: encrypted_key: insufficient parameters specified
[  673.358849][T12872] loop7: detected capacity change from 0 to 128
[  673.589231][T12872] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  673.611485][T12872] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  673.689011][T12881] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  673.702467][T12881] Error parsing options; rc = [-22]
[  673.968360][T12880] IPVS: Unknown mcast interface: macsec0
[  674.268020][T12886] loop1: detected capacity change from 0 to 16
[  674.365936][T12886] erofs: (device loop1): mounted with root inode @ nid 36.
[  675.613045][T12902] trusted_key: encrypted_key: insufficient parameters specified
[  675.872614][T12912] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2521'.
[  675.911386][T12912] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2521'.
[  676.092859][T12922] bridge0: port 2(bridge_slave_1) entered disabled state
[  676.102713][T12921] loop1: detected capacity change from 0 to 1024
[  676.149017][T12924] loop7: detected capacity change from 0 to 128
[  676.180010][T12926] trusted_key: encrypted_key: insufficient parameters specified
[  676.259517][T12924] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  676.281650][T12924] ext4 filesystem being mounted at /102/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  676.884708][T12949] loop4: detected capacity change from 0 to 512
[  677.151518][T12954] loop4: detected capacity change from 0 to 2048
[  677.333468][T12954] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  677.686962][T12963] trusted_key: encrypted_key: insufficient parameters specified
[  677.890489][T12974] loop4: detected capacity change from 0 to 128
[  677.995363][T12974] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  678.054355][T12974] ext4 filesystem being mounted at /32/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  678.074413][T12978] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2547'.
[  678.149792][    T7] hid (null): unknown global tag 0xe
[  678.618632][T12998] trusted_key: encrypted_key: insufficient parameters specified
[  678.839960][    T7] hid-generic 0005:046D:0A0F.0013: unknown global tag 0xe
[  678.862766][    T7] hid-generic 0005:046D:0A0F.0013: item 0 2 1 14 parsing failed
[  678.889398][    T7] hid-generic: probe of 0005:046D:0A0F.0013 failed with error -22
[  679.064577][T13016] loop4: detected capacity change from 0 to 512
[  679.326655][T13025] loop1: detected capacity change from 0 to 128
[  679.410336][T13028] loop4: detected capacity change from 0 to 2048
[  679.474209][T13025] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  679.547152][T13028] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  679.568928][T13025] ext4 filesystem being mounted at /470/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  680.048368][T13038] binder: 13037:13038 ioctl c0306201 0 returned -14
[  680.065785][T13038] loop1: detected capacity change from 0 to 1024
[  680.119179][T13038] hfsplus: invalid extent max_key_len 0
[  680.125014][T13038] hfsplus: failed to load extents file
[  680.169961][T13044] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2570'.
[  680.218856][T13038] loop1: detected capacity change from 0 to 2048
[  680.227712][T13038] binder: 13037:13038 ioctl c0046209 0 returned -22
[  680.801130][T13060] netlink: 'syz.6.2575': attribute type 1 has an invalid length.
[  680.924867][T13060] 8021q: adding VLAN 0 to HW filter on device bond1
[  681.008709][T13061] 8021q: adding VLAN 0 to HW filter on device bond1
[  681.026924][T13061] bond1: (slave ipip0): The slave device specified does not support setting the MAC address
[  681.051161][T13061] bond1: (slave ipip0): Error -95 calling set_mac_address
[  681.166497][T13067] bond1: (slave ip6erspan0): making interface the new active one
[  681.202921][T13067] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  681.261007][T13074] loop1: detected capacity change from 0 to 512
[  681.474934][T13078] loop1: detected capacity change from 0 to 2048
[  681.796840][T13078] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  682.071363][ T4265] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  682.522170][ T4265] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  682.534804][ T4265] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  682.592831][ T4265] usb 5-1: config 0 descriptor??
[  682.677711][T13113] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2589'.
[  682.688913][T13113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2589'.
[  682.698058][T13110] IPVS: set_ctl: invalid protocol: 58 224.0.0.2:20000
[  682.700209][ T4265] cp210x 5-1:0.0: cp210x converter detected
[  682.778619][T13115] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2593'.
[  682.918037][T13124] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2598'.
[  683.081955][ T4265] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: 0
[  683.271669][ T4210] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  683.291476][ T4265] cp210x 5-1:0.0: failed to get vendor val 0x370c size 73: -71
[  683.303740][ T4265] cp210x 5-1:0.0: GPIO initialisation failed: -71
[  683.329349][ T4265] usb 5-1: cp210x converter now attached to ttyUSB0
[  683.373768][ T4265] usb 5-1: USB disconnect, device number 11
[  683.417458][ T4265] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  683.453250][ T4265] cp210x 5-1:0.0: device disconnected
[  683.631333][    T7] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  683.872760][ T4210] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  683.901395][ T4210] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  683.991840][    T7] usb 8-1: Using ep0 maxpacket: 16
[  684.045843][T13145] loop4: detected capacity change from 0 to 128
[  684.121792][ T4210] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  684.135223][ T4210] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  684.144039][    T7] usb 8-1: config 0 has an invalid interface number: 251 but max is 0
[  684.166832][    T7] usb 8-1: config 0 has no interface number 0
[  684.192254][T13145] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  684.193637][ T4210] usb 2-1: Product: syz
[  684.208319][    T7] usb 8-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  684.219691][ T4210] usb 2-1: Manufacturer: syz
[  684.224726][    T7] usb 8-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  684.227685][T13145] ext4 filesystem being mounted at /38/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  684.237004][ T4210] usb 2-1: SerialNumber: syz
[  684.421650][    T7] usb 8-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  684.437239][    T7] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  684.451690][    T7] usb 8-1: Product: syz
[  684.456021][    T7] usb 8-1: Manufacturer: syz
[  684.460950][    T7] usb 8-1: SerialNumber: syz
[  684.490891][    T7] usb 8-1: config 0 descriptor??
[  684.509652][T13127] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  684.571687][T13133] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  684.587309][T13133] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  684.772121][T13145] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  684.833798][T13152] fscrypt: loop4: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  684.840607][T13133] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  684.870505][T13133] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  685.006836][ T4210] cdc_mbim 2-1:1.0: failed GET_NTB_PARAMETERS
[  685.019338][ T4210] cdc_mbim 2-1:1.0: bind() failure
[  685.049456][ T4210] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  685.064040][ T4210] cdc_ncm 2-1:1.1: bind() failure
[  685.695195][ T1426] ieee802154 phy0 wpan0: encryption failed: -22
[  685.714947][ T1426] ieee802154 phy1 wpan1: encryption failed: -22
[  685.771492][    T7] asix 8-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  685.787149][    T7] asix 8-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71
[  685.803685][    T7] asix: probe of 8-1:0.251 failed with error -71
[  685.828527][    T7] usb 8-1: USB disconnect, device number 7
[  686.010390][   T21] usb 2-1: USB disconnect, device number 36
[  689.230636][T13262] sch_tbf: burst 3 is lower than device lo mtu (65550) !
[  689.382904][T13266] kvm: pic: non byte read
[  689.395619][T13266] kvm: pic: level sensitive irq not supported
[  689.395788][T13266] kvm: pic: non byte read
[  689.414827][ T4250] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  689.882308][ T4250] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  689.914606][ T4250] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  689.953586][T13286] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.2655'.
[  690.022298][T13289] netlink: 176 bytes leftover after parsing attributes in process `syz.2.2656'.
[  690.059325][T13289] device ip6gretap0 entered promiscuous mode
[  690.080407][T13289] netlink: 176 bytes leftover after parsing attributes in process `syz.2.2656'.
[  690.121521][ T4250] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  690.143063][ T4250] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  690.174347][ T4250] usb 8-1: Product: syz
[  690.189866][ T4250] usb 8-1: Manufacturer: syz
[  690.206070][ T4250] usb 8-1: SerialNumber: syz
[  690.322551][   T26] audit: type=1326 audit(1739563816.635:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13290 comm="syz.4.2657" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x0
[  690.497549][T13253] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  691.021619][ T4250] cdc_mbim 8-1:1.0: failed GET_NTB_PARAMETERS
[  691.033240][ T4250] cdc_mbim 8-1:1.0: bind() failure
[  691.087985][ T4250] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  691.195909][ T4250] cdc_ncm 8-1:1.1: bind() failure
[  692.143623][ T1325] usb 8-1: USB disconnect, device number 8
[  692.501281][   T21] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  692.741301][   T21] usb 5-1: Using ep0 maxpacket: 32
[  693.022358][   T21] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  693.036902][   T21] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  693.058532][   T21] usb 5-1: Product: syz
[  693.068448][   T21] usb 5-1: Manufacturer: syz
[  693.078810][   T21] usb 5-1: SerialNumber: syz
[  693.106016][   T21] usb 5-1: config 0 descriptor??
[  693.193198][   T21] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  693.227332][T13334] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[  693.474854][T13344] trusted_key: encrypted_key: insufficient parameters specified
[  693.991372][ T4210] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  694.141378][   T21] gspca_stk1135: reg_w 0x5 err -71
[  694.149807][   T21] gspca_stk1135: serial bus timeout: status=0x00
[  694.161703][   T21] gspca_stk1135: Sensor write failed
[  694.170273][   T21] gspca_stk1135: serial bus timeout: status=0x00
[  694.182052][   T21] gspca_stk1135: Sensor write failed
[  694.191540][   T21] gspca_stk1135: serial bus timeout: status=0x00
[  694.204357][   T21] gspca_stk1135: Sensor read failed
[  694.214156][   T21] gspca_stk1135: serial bus timeout: status=0x00
[  694.226939][   T21] gspca_stk1135: Sensor read failed
[  694.239364][   T21] gspca_stk1135: Detected sensor type unknown (0x0)
[  694.252668][   T21] gspca_stk1135: serial bus timeout: status=0x00
[  694.265389][   T21] gspca_stk1135: Sensor read failed
[  694.275979][   T21] gspca_stk1135: serial bus timeout: status=0x00
[  694.288788][   T21] gspca_stk1135: Sensor read failed
[  694.294195][   T21] gspca_stk1135: serial bus timeout: status=0x00
[  694.300620][   T21] gspca_stk1135: Sensor write failed
[  694.306075][   T21] gspca_stk1135: serial bus timeout: status=0x00
[  694.312546][   T21] gspca_stk1135: Sensor write failed
[  694.317989][   T21] stk1135: probe of 5-1:0.0 failed with error -71
[  694.326978][   T21] usb 5-1: USB disconnect, device number 12
[  694.451663][ T4210] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  694.474001][ T4210] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  694.544431][T13360] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2683'.
[  694.668354][ T4210] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  694.698305][ T4210] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  694.706531][ T4210] usb 2-1: Product: syz
[  694.710874][ T4210] usb 2-1: Manufacturer: syz
[  694.731405][ T4210] usb 2-1: SerialNumber: syz
[  694.840727][T13368] loop4: detected capacity change from 0 to 128
[  695.012122][T13349] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  695.022068][T13368] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  695.045993][T13368] ext4 filesystem being mounted at /51/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  695.189931][T13368] fscrypt: loop4: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  695.209512][T13376] trusted_key: encrypted_key: insufficient parameters specified
[  695.291543][   T26] audit: type=1326 audit(1739563821.605:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13380 comm="syz.6.2690" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x0
[  695.501485][ T4210] cdc_mbim 2-1:1.0: failed GET_NTB_PARAMETERS
[  695.507895][ T4210] cdc_mbim 2-1:1.0: bind() failure
[  695.528651][ T4210] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  695.544840][ T4210] cdc_ncm 2-1:1.1: bind() failure
[  696.639987][ T1325] usb 2-1: USB disconnect, device number 37
[  696.714240][T13421] usb usb8: usbfs: interface 0 claimed by hub while 'syz.1.2706' resets device
[  696.989867][T13428] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2708'.
[  698.271687][ T4210] usb 2-1: new full-speed USB device number 38 using dummy_hcd
[  698.691498][ T4210] usb 2-1: config 0 has an invalid interface number: 50 but max is 0
[  698.704474][ T4210] usb 2-1: config 0 has no interface number 0
[  698.724761][ T4210] usb 2-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  698.772783][ T4210] usb 2-1: config 0 interface 50 altsetting 0 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  698.961664][ T4210] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  698.979434][ T4210] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  699.021406][ T4210] usb 2-1: Product: syz
[  699.025609][ T4210] usb 2-1: Manufacturer: syz
[  699.030581][ T4210] usb 2-1: SerialNumber: syz
[  699.053338][ T4210] usb 2-1: config 0 descriptor??
[  699.101589][T13454] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  699.142100][ T4210] yurex 2-1:0.50: USB YUREX device now attached to Yurex #0
[  699.361339][    C0] usb 2-1: yurex_control_callback - control failed: -2
[  699.369786][ T4210] usb 2-1: USB disconnect, device number 38
[  699.377746][ T4210] yurex 2-1:0.50: USB YUREX #0 now disconnected
[  700.051337][ T1325] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  701.073020][ T1325] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  701.105482][ T1325] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  701.174069][T13512] loop4: detected capacity change from 0 to 256
[  701.217410][ T1325] usb 8-1: config 0 descriptor??
[  701.282798][ T1325] cp210x 8-1:0.0: cp210x converter detected
[  701.511426][ T1325] cp210x 8-1:0.0: failed to get vendor val 0x370b size 1: -32
[  701.518973][ T1325] cp210x 8-1:0.0: querying part number failed
[  701.549782][ T1325] usb 8-1: cp210x converter now attached to ttyUSB0
[  702.804435][   T21] usb 8-1: USB disconnect, device number 9
[  702.832931][   T21] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  702.841106][   T21] cp210x 8-1:0.0: device disconnected
[  703.981089][T13548] loop1: detected capacity change from 0 to 1024
[  704.682355][    T9] hfsplus: b-tree write err: -5, ino 4
[  706.530186][T13595] loop4: detected capacity change from 0 to 256
[  707.091939][T13606] tipc: Started in network mode
[  707.107218][T13606] tipc: Node identity aaaaaaaaaa4, cluster identity 4711
[  707.144907][T13606] tipc: Enabled bearer <eth:geneve0>, priority 10
[  707.651464][T13614] binder: 13609:13614 ioctl c0306201 0 returned -14
[  707.902517][T13614] loop4: detected capacity change from 0 to 1024
[  708.105769][T13614] hfsplus: invalid extent max_key_len 0
[  708.111908][T13614] hfsplus: failed to load extents file
[  708.193536][ T4210] tipc: Node number set to 15379114
[  708.867984][T13628] loop1: detected capacity change from 0 to 256
[  709.710277][T13645] binder: 13640:13645 ioctl c0306201 0 returned -14
[  709.728062][T13645] loop1: detected capacity change from 0 to 1024
[  709.782277][T13645] hfsplus: invalid extent max_key_len 0
[  709.788139][T13645] hfsplus: failed to load extents file
[  709.993421][T13645] loop1: detected capacity change from 0 to 2048
[  710.477949][T13644] binder: 13640:13644 ioctl c0046209 0 returned -22
[  710.900128][T13658] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  710.930067][T13658] device batadv_slave_1 entered promiscuous mode
[  711.343715][   T21] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  711.721770][   T21] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  711.749968][   T21] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  711.812496][   T21] usb 2-1: config 0 descriptor??
[  711.883433][   T21] cp210x 2-1:0.0: cp210x converter detected
[  712.101789][   T21] cp210x 2-1:0.0: failed to get vendor val 0x370b size 1: 0
[  712.117143][   T21] cp210x 2-1:0.0: querying part number failed
[  712.142248][ T1325] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  712.160119][   T21] usb 2-1: cp210x converter now attached to ttyUSB0
[  712.401311][ T1325] usb 5-1: Using ep0 maxpacket: 16
[  712.522226][ T1325] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  712.566957][ T1325] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  712.751620][ T1325] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  712.768875][ T1325] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  712.784371][ T1325] usb 5-1: Product: syz
[  712.794494][ T1325] usb 5-1: Manufacturer: syz
[  712.799487][ T1325] usb 5-1: SerialNumber: syz
[  712.911305][ T4210] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  713.131482][ T1325] usb 5-1: 0:2 : does not exist
[  713.153859][ T1325] usb 5-1: USB disconnect, device number 13
[  713.291551][ T4210] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  713.303250][ T4210] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  713.318243][ T4210] usb 8-1: config 0 descriptor??
[  713.389896][ T4210] cp210x 8-1:0.0: cp210x converter detected
[  713.533487][T11289] udevd[11289]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  713.951727][ T4210] cp210x 8-1:0.0: failed to get vendor val 0x0010 size 3: -32
[  714.022907][ T4210] cp210x 8-1:0.0: GPIO initialisation failed: -524
[  714.108644][ T4210] usb 8-1: cp210x converter now attached to ttyUSB1
[  714.256149][ T4210] usb 8-1: USB disconnect, device number 10
[  714.317705][ T4210] cp210x ttyUSB1: cp210x converter now disconnected from ttyUSB1
[  714.349837][T13693] loop4: detected capacity change from 0 to 1024
[  714.371134][ T4210] cp210x 8-1:0.0: device disconnected
[  714.407946][ T4250] usb 2-1: USB disconnect, device number 39
[  714.432652][ T4250] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  714.462412][ T4250] cp210x 2-1:0.0: device disconnected
[  714.987479][ T4428] hfsplus: b-tree write err: -5, ino 4
[  715.250950][T13713] loop4: detected capacity change from 0 to 256
[  715.810195][T13719] trusted_key: encrypted_key: insufficient parameters specified
[  716.118600][T13723] loop4: detected capacity change from 0 to 128
[  716.319064][T13723] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  716.319176][T13723] ext4 filesystem being mounted at /79/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  716.538988][T13723] fscrypt: loop4: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  716.618462][T13735] device vxcan3 entered promiscuous mode
[  716.765583][T13740] loop7: detected capacity change from 0 to 512
[  716.878721][T13740] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  716.911627][T13740] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  721.009536][   T26] audit: type=1326 audit(1739563846.895:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.349801][   T26] audit: type=1326 audit(1739563846.895:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.377126][   T26] audit: type=1326 audit(1739563846.895:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.400051][   T26] audit: type=1326 audit(1739563846.905:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.423459][   T26] audit: type=1326 audit(1739563846.905:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.449469][   T26] audit: type=1326 audit(1739563846.905:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.474979][   T26] audit: type=1326 audit(1739563846.905:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.511280][   T26] audit: type=1326 audit(1739563846.905:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.638198][   T26] audit: type=1326 audit(1739563846.905:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  721.738623][   T26] audit: type=1326 audit(1739563847.255:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  722.067006][T13811] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  725.284478][T13847] device syzkaller0 entered promiscuous mode
[  725.500241][T13856] loop1: detected capacity change from 0 to 512
[  725.819294][T13867] loop1: detected capacity change from 0 to 2048
[  726.280291][   T26] kauditd_printk_skb: 13 callbacks suppressed
[  726.280312][   T26] audit: type=1326 audit(1739563852.445:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  726.519770][T13867] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  726.583747][   T26] audit: type=1326 audit(1739563852.445:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  726.800033][   T26] audit: type=1326 audit(1739563852.445:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  726.855390][   T26] audit: type=1326 audit(1739563852.445:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  726.959571][   T26] audit: type=1326 audit(1739563852.445:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  727.027867][   T26] audit: type=1326 audit(1739563852.445:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  727.381131][T13883] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2869'.
[  727.395776][T13883] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  727.405737][T13883] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  727.594546][   T26] audit: type=1326 audit(1739563852.445:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  727.980713][   T26] audit: type=1326 audit(1739563852.445:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  728.008520][   T26] audit: type=1326 audit(1739563852.445:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  728.071848][   T26] audit: type=1326 audit(1739563852.485:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13866 comm="syz.6.2866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  730.802480][ T1325] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  731.391647][ T1325] usb 5-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[  731.401384][ T1325] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  731.415025][ T1325] usb 5-1: config 0 descriptor??
[  731.471395][ T1325] usb 5-1: can't set config #0, error -71
[  731.481641][ T1325] usb 5-1: USB disconnect, device number 14
[  733.261906][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  733.262142][   T26] audit: type=1326 audit(1739563859.265:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.431313][   T26] audit: type=1326 audit(1739563859.265:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.454820][   T26] audit: type=1326 audit(1739563859.265:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.480848][   T26] audit: type=1326 audit(1739563859.265:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.503782][   T26] audit: type=1326 audit(1739563859.265:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.558058][   T26] audit: type=1326 audit(1739563859.265:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.606629][   T26] audit: type=1326 audit(1739563859.265:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.671445][   T26] audit: type=1326 audit(1739563859.275:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.697847][   T26] audit: type=1326 audit(1739563859.275:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  733.720749][   T26] audit: type=1326 audit(1739563859.315:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13937 comm="syz.6.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  736.716406][T13995] loop4: detected capacity change from 0 to 1024
[  736.879887][T13995] hfsplus: invalid extent max_key_len 0
[  736.886326][T13995] hfsplus: failed to load extents file
[  737.385135][T14001] netlink: 'syz.7.2908': attribute type 4 has an invalid length.
[  737.783347][T14015] loop7: detected capacity change from 0 to 64
[  738.752193][T14028] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2921'.
[  738.765679][T14028] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2921'.
[  738.779147][T14028] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2921'.
[  738.788698][T14028] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2921'.
[  738.981527][ T4210] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  739.050196][T14039] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  739.063482][T14039] Error parsing options; rc = [-22]
[  739.237703][T14039] vivid-005: kernel_thread() failed
[  739.371407][ T4210] usb 5-1: Using ep0 maxpacket: 8
[  739.658740][ T4210] usb 5-1: config 0 has an invalid interface number: 143 but max is 0
[  739.698677][ T4210] usb 5-1: config 0 has no interface number 0
[  739.728762][ T4210] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b
[  739.776800][ T4210] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  739.858404][ T4210] usb 5-1: config 0 descriptor??
[  740.151423][ T4210] viperboard 5-1:0.143: version 0.00 found at bus 005 address 015
[  741.331465][ T4210] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  741.341019][ T4210] viperboard-i2c: probe of viperboard-i2c.2.auto failed with error -5
[  741.391578][ T4210] usb 5-1: USB disconnect, device number 15
[  741.436191][T14070] loop1: detected capacity change from 0 to 128
[  741.544691][T14070] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  741.593230][T14070] ext4 filesystem being mounted at /524/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  741.630719][T14080] loop2: detected capacity change from 0 to 7
[  741.739986][T14080] Dev loop2: unable to read RDB block 7
[  741.771445][T14080]  loop2: unable to read partition table
[  741.788209][T14070] fscrypt: loop1: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  741.837267][T14080] loop2: partition table beyond EOD, truncated
[  741.843748][T14080] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  743.327599][T14121] device wlan1 entered promiscuous mode
[  743.359762][T14121] device wlan1 left promiscuous mode
[  744.656613][T14132] loop1: detected capacity change from 0 to 512
[  744.831770][T14140] loop7: detected capacity change from 0 to 512
[  744.922802][T14132] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  744.947982][T14132] ext4 filesystem being mounted at /527/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  745.067731][T14157] loop7: detected capacity change from 0 to 2048
[  745.142568][T14157] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  745.152550][T14132] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 3: comm syz.1.2957: bad entry in directory: directory entry overrun - offset=128, inode=18, rec_len=1920, size=2036 fake=0
[  747.085140][ T1426] ieee802154 phy0 wpan0: encryption failed: -22
[  747.093940][ T1426] ieee802154 phy1 wpan1: encryption failed: -22
[  747.707026][T14193] loop7: detected capacity change from 0 to 512
[  747.976187][ T6929] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  747.999699][T14193] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  748.072867][T14205] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2984'.
[  748.085692][T14193] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  748.165563][ T6929] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  748.268414][T14193] EXT4-fs error (device loop7): ext4_find_dest_de:2115: inode #2: block 3: comm syz.7.2981: bad entry in directory: directory entry overrun - offset=128, inode=18, rec_len=1920, size=2036 fake=0
[  748.268849][T14210] loop1: detected capacity change from 0 to 512
[  748.494522][ T6929] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  749.072809][ T6929] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  749.174973][T14217] loop1: detected capacity change from 0 to 2048
[  750.058866][T14217] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  750.201432][   T21] Bluetooth: hci4: command 0x0409 tx timeout
[  750.521293][ T4260] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  750.713199][T14207] chnl_net:caif_netlink_parms(): no params data found
[  750.771422][ T4260] usb 8-1: Using ep0 maxpacket: 16
[  750.891499][ T4260] usb 8-1: config 0 has an invalid interface number: 251 but max is 0
[  750.942901][ T4260] usb 8-1: config 0 has no interface number 0
[  750.968979][ T4260] usb 8-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  750.988844][ T4260] usb 8-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  751.049186][T14207] bridge0: port 1(bridge_slave_0) entered blocking state
[  751.062174][T14207] bridge0: port 1(bridge_slave_0) entered disabled state
[  751.072909][T14207] device bridge_slave_0 entered promiscuous mode
[  751.176071][T14207] bridge0: port 2(bridge_slave_1) entered blocking state
[  751.211551][ T4260] usb 8-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  751.229930][T14207] bridge0: port 2(bridge_slave_1) entered disabled state
[  751.247810][ T4260] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  751.261464][T14207] device bridge_slave_1 entered promiscuous mode
[  751.269294][ T4260] usb 8-1: Product: syz
[  751.279405][ T4260] usb 8-1: Manufacturer: syz
[  751.294109][ T4260] usb 8-1: SerialNumber: syz
[  751.323509][ T4260] usb 8-1: config 0 descriptor??
[  751.351569][T14241] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  751.386665][T14241] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  751.518590][T14207] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  751.559583][T14207] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  751.638029][T14207] team0: Port device team_slave_0 added
[  751.657427][T14241] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  751.671511][T14241] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  751.717822][T14207] team0: Port device team_slave_1 added
[  751.832472][T14207] batman_adv: batadv0: Adding interface: batadv_slave_0
[  751.849751][T14207] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  751.887900][T14207] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  751.903317][T14207] batman_adv: batadv0: Adding interface: batadv_slave_1
[  751.910449][T14207] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  751.940677][T14207] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  751.959819][ T4260] asix 8-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  751.998983][ T4260] asix 8-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71
[  752.009943][ T4260] asix: probe of 8-1:0.251 failed with error -5
[  752.212051][ T4260] usb 8-1: USB disconnect, device number 11
[  752.316360][ T1325] Bluetooth: hci4: command 0x041b tx timeout
[  752.883828][T14279] loop1: detected capacity change from 0 to 512
[  752.998195][T14207] device hsr_slave_0 entered promiscuous mode
[  753.031645][T14207] device hsr_slave_1 entered promiscuous mode
[  753.101302][T14207] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  753.110121][T14207] Cannot create hsr debugfs directory
[  753.110304][T14279] loop1: detected capacity change from 0 to 2048
[  753.263475][T14279] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  754.486345][ T4211] Bluetooth: hci4: command 0x040f tx timeout
[  754.937075][ T6929] device hsr_slave_0 left promiscuous mode
[  754.964379][T14314] trusted_key: encrypted_key: insufficient parameters specified
[  754.981567][ T6929] device hsr_slave_1 left promiscuous mode
[  755.030046][ T6929] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  755.046652][ T6929] batman_adv: batadv0: Removing interface: batadv_slave_0
[  755.062739][ T6929] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  755.070341][ T6929] batman_adv: batadv0: Removing interface: batadv_slave_1
[  755.086638][ T6929] device bridge_slave_1 left promiscuous mode
[  755.097301][ T6929] bridge0: port 2(bridge_slave_1) entered disabled state
[  755.120635][ T6929] device bridge_slave_0 left promiscuous mode
[  755.136462][ T6929] bridge0: port 1(bridge_slave_0) entered disabled state
[  755.168732][ T6929] device veth1_macvtap left promiscuous mode
[  755.183141][ T6929] device veth0_macvtap left promiscuous mode
[  755.189517][ T6929] device veth1_vlan left promiscuous mode
[  755.203118][ T6929] device veth0_vlan left promiscuous mode
[  755.672047][ T6929] team0 (unregistering): Port device team_slave_1 removed
[  755.705037][ T6929] team0 (unregistering): Port device team_slave_0 removed
[  755.745705][ T6929] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  755.769819][ T6929] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  755.920061][ T6929] bond0 (unregistering): Released all slaves
[  756.074027][T14302] netem: incorrect ge model size
[  756.080084][T14302] netem: change failed
[  756.511770][ T4211] Bluetooth: hci4: command 0x0419 tx timeout
[  756.541119][T14207] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  756.998961][T14207] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  757.063089][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  757.063104][   T26] audit: type=1326 audit(1739563883.375:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.095100][T14338] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3026'.
[  757.164131][T14207] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  757.176974][   T26] audit: type=1326 audit(1739563883.375:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.200481][   T26] audit: type=1326 audit(1739563883.405:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.238999][   T26] audit: type=1326 audit(1739563883.405:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.277285][T14207] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  757.296661][   T26] audit: type=1326 audit(1739563883.405:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.359214][   T26] audit: type=1326 audit(1739563883.425:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.445737][   T26] audit: type=1326 audit(1739563883.425:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.619070][   T26] audit: type=1326 audit(1739563883.425:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.742328][   T26] audit: type=1326 audit(1739563883.425:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.771349][   T26] audit: type=1326 audit(1739563883.465:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14330 comm="syz.1.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  757.820189][T14207] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  757.846527][T14207] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  757.882158][T14207] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  757.919773][T14207] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  758.007104][T14352] loop1: detected capacity change from 0 to 2048
[  758.170992][T14356] netlink: 'syz.4.3031': attribute type 3 has an invalid length.
[  758.201054][T14352] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  758.498663][T14207] 8021q: adding VLAN 0 to HW filter on device bond0
[  758.567865][ T6926] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  758.584115][ T6926] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  758.615621][T14207] 8021q: adding VLAN 0 to HW filter on device team0
[  758.618368][T14365] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  758.655182][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  758.666608][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  758.668252][T14365] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  758.676814][ T6445] bridge0: port 1(bridge_slave_0) entered blocking state
[  758.692260][ T6445] bridge0: port 1(bridge_slave_0) entered forwarding state
[  758.702173][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  758.755638][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  758.774877][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  758.818798][ T6445] bridge0: port 2(bridge_slave_1) entered blocking state
[  758.825965][ T6445] bridge0: port 2(bridge_slave_1) entered forwarding state
[  758.851096][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  758.861926][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  758.880351][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  758.905547][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  758.947512][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  758.959794][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  758.969413][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  759.012199][ T4710] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  759.023891][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  759.053925][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  759.073483][T14207] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  759.110543][T14207] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  759.160821][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  759.173541][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  759.226113][T14373] netlink: 'syz.1.3037': attribute type 12 has an invalid length.
[  759.241631][T14373] netlink: 'syz.1.3037': attribute type 29 has an invalid length.
[  759.261090][T14373] netlink: 148 bytes leftover after parsing attributes in process `syz.1.3037'.
[  759.277661][T14373] netlink: 'syz.1.3037': attribute type 1 has an invalid length.
[  759.285768][ T4710] usb 8-1: device descriptor read/64, error -71
[  759.293275][T14373] netlink: 'syz.1.3037': attribute type 2 has an invalid length.
[  759.331673][T14373] netlink: 39 bytes leftover after parsing attributes in process `syz.1.3037'.
[  759.530666][T14380] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check.
[  759.661348][ T4710] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  759.697776][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  759.723513][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  759.741884][T14207] 8021q: adding VLAN 0 to HW filter on device batadv0
[  759.893480][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  759.921260][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  759.962601][ T4710] usb 8-1: device descriptor read/64, error -71
[  760.001132][ T6926] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  760.023277][ T6926] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  760.063289][T14207] device veth0_vlan entered promiscuous mode
[  760.071566][ T6926] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  760.090788][ T6926] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  760.093268][ T4710] usb usb8-port1: attempt power cycle
[  760.164236][T14207] device veth1_vlan entered promiscuous mode
[  760.265229][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  760.285883][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  760.324755][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  760.357262][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  760.376589][T14207] device veth0_macvtap entered promiscuous mode
[  760.410258][T14207] device veth1_macvtap entered promiscuous mode
[  760.465796][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  760.484568][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  760.505737][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  760.519782][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  760.538348][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  760.550961][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  760.568499][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  760.609646][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  760.621355][ T4710] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  760.656130][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  760.698520][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  760.771390][T14207] batman_adv: batadv0: Interface activated: batadv_slave_0
[  760.781878][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  760.819396][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  760.834445][ T4710] usb 8-1: device descriptor read/8, error -71
[  760.865961][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  760.910191][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  760.934143][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  760.964159][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  760.984359][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  761.007488][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  761.043159][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  761.074433][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  761.101330][T14207] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  761.131348][T14207] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  761.131516][ T4710] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  761.181956][T14400] loop1: detected capacity change from 0 to 2048
[  761.183062][T14207] batman_adv: batadv0: Interface activated: batadv_slave_1
[  761.249049][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  761.271727][ T4710] usb 8-1: device descriptor read/8, error -71
[  761.288969][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  761.321957][T14400] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  761.364789][T14207] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  761.401728][ T4710] usb usb8-port1: unable to enumerate USB device
[  761.421708][T14207] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  761.443366][T14207] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  761.457089][T14207] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  761.662709][ T3061] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  761.692566][ T3061] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  761.793621][ T6923] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  761.826605][ T6923] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  761.876848][ T6923] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  761.948398][ T6923] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  762.218260][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  762.218278][   T26] audit: type=1326 audit(1739563888.525:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.305770][   T26] audit: type=1326 audit(1739563888.525:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.342654][   T26] audit: type=1326 audit(1739563888.555:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.380760][   T26] audit: type=1326 audit(1739563888.555:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.403170][    C1] vkms_vblank_simulate: vblank timer overrun
[  762.413907][   T26] audit: type=1326 audit(1739563888.555:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.428398][T14426] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3056'.
[  762.463624][   T26] audit: type=1326 audit(1739563888.555:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.505320][   T26] audit: type=1326 audit(1739563888.555:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.597067][   T26] audit: type=1326 audit(1739563888.555:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.690708][   T26] audit: type=1326 audit(1739563888.555:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.763840][   T26] audit: type=1326 audit(1739563888.595:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14416 comm="syz.1.3052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19833b5de9 code=0x7ffc0000
[  762.878513][T14440] loop2: detected capacity change from 0 to 512
[  763.197585][T14450] loop2: detected capacity change from 0 to 2048
[  763.296807][T14450] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  768.582639][ T6929] device hsr_slave_0 left promiscuous mode
[  768.592828][ T6929] device hsr_slave_1 left promiscuous mode
[  768.633793][ T6929] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  768.652444][ T6929] batman_adv: batadv0: Removing interface: batadv_slave_0
[  768.660488][ T6929] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  768.685658][ T6929] batman_adv: batadv0: Removing interface: batadv_slave_1
[  768.765496][ T6929] device bridge_slave_1 left promiscuous mode
[  768.779618][ T6929] bridge0: port 2(bridge_slave_1) entered disabled state
[  768.797423][ T6929] device bridge_slave_0 left promiscuous mode
[  768.806239][ T6929] bridge0: port 1(bridge_slave_0) entered disabled state
[  768.848299][ T6929] device veth1_vlan left promiscuous mode
[  768.854343][ T6929] device veth0_vlan left promiscuous mode
[  769.164782][T14490] loop7: detected capacity change from 0 to 8192
[  769.722148][T14490] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  769.892928][T14493] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3078'.
[  770.256853][T14496] loop4: detected capacity change from 0 to 512
[  770.543840][T14502] loop4: detected capacity change from 0 to 2048
[  770.669689][T14502] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  770.787131][ T6929] team0 (unregistering): Port device team_slave_1 removed
[  770.814910][ T6929] team0 (unregistering): Port device team_slave_0 removed
[  770.824669][T14492] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  770.842546][ T6929] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  770.880830][ T6929] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  771.101370][T14492] usb 2-1: Using ep0 maxpacket: 32
[  771.152344][ T6929] bond0 (unregistering): Released all slaves
[  771.322675][T14493] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  771.332383][T14493] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  771.591744][T14492] usb 2-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  771.600814][T14492] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  771.616332][T14492] usb 2-1: Product: syz
[  771.620645][T14492] usb 2-1: Manufacturer: syz
[  771.753534][T14492] usb 2-1: SerialNumber: syz
[  771.852983][T14492] usb 2-1: config 0 descriptor??
[  771.947315][T14492] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  773.241381][T14492] gspca_ov534_9: reg_w failed -71
[  773.247183][T14518] netlink: 'syz.7.3084': attribute type 8 has an invalid length.
[  773.475615][T14525] loop2: detected capacity change from 0 to 7
[  773.514168][T14525] Dev loop2: unable to read RDB block 7
[  773.531583][T14525]  loop2: unable to read partition table
[  773.550729][T14525] loop2: partition table beyond EOD, truncated
[  773.558544][T14525] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  773.801664][T14492] gspca_ov534_9: Unknown sensor 0000
[  773.801716][T14492] ov534_9: probe of 2-1:0.0 failed with error -22
[  773.858261][T14492] usb 2-1: USB disconnect, device number 40
[  773.992854][T14537] loop1: detected capacity change from 0 to 1024
[  775.160913][T14546] loop4: detected capacity change from 0 to 8192
[  775.401445][T14546] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  775.545920][T14549] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3095'.
[  775.550167][T14549] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  775.550485][T14549] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  776.093576][ T5537] hfsplus: b-tree write err: -5, ino 4
[  777.921850][   T23] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  778.125691][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  778.125706][   T26] audit: type=1326 audit(1739563904.435:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14589 comm="syz.6.3113" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc878da5de9 code=0x0
[  778.191448][   T23] usb 3-1: Using ep0 maxpacket: 16
[  778.314035][   T23] usb 3-1: config 0 has an invalid interface number: 251 but max is 0
[  778.332177][   T23] usb 3-1: config 0 has no interface number 0
[  778.355439][   T23] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  778.417438][   T23] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  778.651389][   T23] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  778.665103][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  778.710955][   T23] usb 3-1: Product: syz
[  778.724357][   T23] usb 3-1: Manufacturer: syz
[  778.733620][   T23] usb 3-1: SerialNumber: syz
[  778.750968][   T23] usb 3-1: config 0 descriptor??
[  778.803079][T14552] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  778.829561][T14552] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  779.031390][   T23] usb 3-1: can't set config #0, error -71
[  779.041663][   T23] usb 3-1: USB disconnect, device number 24
[  779.087503][T14611] loop1: detected capacity change from 0 to 64
[  779.930491][T14610] vivid-003: kernel_thread() failed
[  780.461378][ T7736] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  781.371049][T14671] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  781.551354][ T7736] usb 3-1: Using ep0 maxpacket: 16
[  781.691349][ T7736] usb 3-1: config 0 has an invalid interface number: 251 but max is 0
[  781.700744][ T7736] usb 3-1: config 0 has no interface number 0
[  781.707811][ T7736] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  781.719162][ T7736] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  781.891592][ T7736] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  781.914193][ T7736] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  781.922728][ T7736] usb 3-1: Product: syz
[  781.927004][ T7736] usb 3-1: Manufacturer: syz
[  781.932101][ T7736] usb 3-1: SerialNumber: syz
[  781.947402][ T7736] usb 3-1: config 0 descriptor??
[  781.971751][T14650] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  782.002815][T14650] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  782.243468][T14650] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  782.278929][T14650] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  782.551391][ T7736] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  782.576080][ T7736] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -61
[  782.588646][ T7736] asix: probe of 3-1:0.251 failed with error -5
[  782.764643][ T7736] usb 3-1: USB disconnect, device number 25
[  785.200801][T14714] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3155'.
[  785.213597][T14714] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  785.224037][T14714] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  785.966282][T14727] trusted_key: encrypted_key: insufficient parameters specified
[  786.153736][T14547] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  786.561306][T13910] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  786.567783][T14547] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  786.582841][T14547] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  786.687315][T14547] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  786.717449][T14547] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  786.726325][T14547] usb 8-1: Manufacturer: syz
[  786.739397][T14547] usb 8-1: config 0 descriptor??
[  786.811300][T13910] usb 3-1: Using ep0 maxpacket: 16
[  786.931440][T13910] usb 3-1: config 0 has an invalid interface number: 251 but max is 0
[  786.960258][T13910] usb 3-1: config 0 has no interface number 0
[  786.973745][T13910] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  787.017889][T13910] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  787.044171][T14547] rc_core: IR keymap rc-hauppauge not found
[  787.052026][T14547] Registered IR keymap rc-empty
[  787.062965][T14547] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/rc/rc0
[  787.074381][T14547] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/rc/rc0/input31
[  787.201647][    C1] igorplugusb 8-1:0.0: Error: urb status = -32
[  787.797098][T14547] usb 8-1: USB disconnect, device number 16
[  787.971460][T13910] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  787.990731][T13910] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  788.011270][T13910] usb 3-1: Product: syz
[  788.015475][T13910] usb 3-1: Manufacturer: syz
[  788.020084][T13910] usb 3-1: SerialNumber: syz
[  788.059283][T13910] usb 3-1: config 0 descriptor??
[  788.081573][T14739] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  788.088698][T14739] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  788.325711][T14739] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  788.361402][T14739] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  788.661500][T13910] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  788.705670][T13910] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -61
[  788.777137][T13910] asix: probe of 3-1:0.251 failed with error -5
[  788.986730][T13910] usb 3-1: USB disconnect, device number 26
[  789.512750][T14785] loop4: detected capacity change from 0 to 1024
[  790.437552][T14795] loop7: detected capacity change from 0 to 128
[  790.558508][ T5537] hfsplus: b-tree write err: -5, ino 4
[  790.618042][T14795] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  790.670116][T14795] ext4 filesystem being mounted at /221/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  790.949471][T14795] fscrypt: loop7: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  791.314000][T14810] netlink: 'syz.1.3187': attribute type 1 has an invalid length.
[  792.543519][ T6191] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  792.610989][T14829] loop1: detected capacity change from 0 to 1024
[  792.721282][ T4210] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  792.862873][ T6191] usb 3-1: Using ep0 maxpacket: 32
[  793.006465][ T6923] hfsplus: b-tree write err: -5, ino 4
[  793.043551][ T6191] usb 3-1: config 0 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  793.066989][ T6191] usb 3-1: config 0 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  793.085634][ T6191] usb 3-1: config 0 interface 0 has no altsetting 0
[  793.093061][ T6191] usb 3-1: New USB device found, idVendor=056e, idProduct=010d, bcdDevice= 0.00
[  793.102509][ T6191] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  793.141496][ T4210] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  793.179078][ T6191] usb 3-1: config 0 descriptor??
[  793.191695][ T4210] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  793.212211][ T4210] usb 8-1: New USB device found, idVendor=054c, idProduct=0268, bcdDevice= 0.00
[  793.234729][ T4210] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  793.267267][ T4210] usb 8-1: config 0 descriptor??
[  794.003411][ T4210] sony 0003:054C:0268.0014: unbalanced collection at end of report description
[  794.016287][ T4210] sony 0003:054C:0268.0014: parse failed
[  794.022974][ T4210] sony: probe of 0003:054C:0268.0014 failed with error -22
[  794.047870][ T4210] usb 8-1: USB disconnect, device number 17
[  794.086199][ T6191] usbhid 3-1:0.0: can't add hid device: -71
[  794.094212][ T6191] usbhid: probe of 3-1:0.0 failed with error -71
[  794.120158][ T6191] usb 3-1: USB disconnect, device number 27
[  795.481531][T14870] syz.2.3209 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  796.446405][T14883] input: syz0 as /devices/virtual/input/input32
[  797.351440][T14547] usb 3-1: new full-speed USB device number 28 using dummy_hcd
[  798.347100][T14547] usb 3-1: config index 0 descriptor too short (expected 31, got 27)
[  798.359946][T14547] usb 3-1: config 1 interface 0 has no altsetting 0
[  798.367340][T14919] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  798.385957][T14919] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  798.919860][T14547] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= b.72
[  798.929044][T14547] usb 3-1: New USB device strings: Mfr=28, Product=37, SerialNumber=3
[  798.938064][T14547] usb 3-1: Product: syz
[  799.036614][T14547] usb 3-1: Manufacturer: syz
[  799.041708][T14547] usb 3-1: SerialNumber: syz
[  800.595139][T14547] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 28 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  800.617507][T14547] usb 3-1: USB disconnect, device number 28
[  800.634514][T14547] usblp0: removed
[  800.714036][T14960] device vlan2 entered promiscuous mode
[  801.667765][T14979] loop4: detected capacity change from 0 to 128
[  801.840925][T14979] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  801.901394][T14979] ext4 filesystem being mounted at /178/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  804.267669][T15018] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3260'.
[  804.277432][T15018] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  804.286960][T15018] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  807.984939][   T26] audit: type=1326 audit(1739563934.295:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15011 comm="syz.4.3258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  808.060244][   T26] audit: type=1326 audit(1739563934.295:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15011 comm="syz.4.3258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  808.521745][ T1426] ieee802154 phy0 wpan0: encryption failed: -22
[  808.528092][ T1426] ieee802154 phy1 wpan1: encryption failed: -22
[  810.586428][T15065] loop1: detected capacity change from 0 to 128
[  810.831384][ T4260] Bluetooth: hci5: command 0x0406 tx timeout
[  810.838012][T15065] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  810.852073][T15065] ext4 filesystem being mounted at /588/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  811.167210][T15073] fscrypt: loop1: 2 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 13
[  812.683164][   T26] audit: type=1326 audit(1739563938.995:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15082 comm="syz.2.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  812.758495][   T26] audit: type=1326 audit(1739563939.015:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15082 comm="syz.2.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  812.866631][   T26] audit: type=1326 audit(1739563939.015:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15082 comm="syz.2.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  812.958558][   T26] audit: type=1326 audit(1739563939.015:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15082 comm="syz.2.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  813.028805][   T26] audit: type=1326 audit(1739563939.015:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15082 comm="syz.2.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  813.110210][   T26] audit: type=1326 audit(1739563939.025:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15082 comm="syz.2.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  813.216032][   T26] audit: type=1326 audit(1739563939.245:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15082 comm="syz.2.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  813.301256][   T26] audit: type=1326 audit(1739563939.245:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15082 comm="syz.2.3281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  814.072418][T15125] loop1: detected capacity change from 0 to 64
[  814.507276][T15133] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  814.520784][T15133] Error parsing options; rc = [-22]
[  815.571266][ T6191] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  816.121552][ T6191] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  816.161571][ T6191] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  816.221692][ T6191] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  816.352660][ T6191] usb 8-1: config 0 descriptor??
[  816.394053][ T6191] pwc: Askey VC010 type 2 USB webcam detected.
[  816.601461][ T6191] pwc: send_video_command error -71
[  816.606705][ T6191] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  816.647696][ T6191] Philips webcam: probe of 8-1:0.0 failed with error -71
[  816.697522][ T6191] usb 8-1: USB disconnect, device number 18
[  817.163056][ T6191] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  817.531412][ T6191] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  817.565749][ T6191] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  817.591280][ T6191] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  817.628810][ T6191] usb 8-1: config 0 descriptor??
[  817.673725][ T6191] pwc: Askey VC010 type 2 USB webcam detected.
[  818.179814][   T26] audit: type=1326 audit(1739563944.165:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  818.472433][T15179] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3312'.
[  818.523082][T15183] loop1: detected capacity change from 0 to 64
[  818.532954][   T26] audit: type=1326 audit(1739563944.165:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  818.609634][ T6191] pwc: send_video_command error -71
[  818.614927][ T6191] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  818.622550][ T6191] Philips webcam: probe of 8-1:0.0 failed with error -71
[  818.642658][ T6191] usb 8-1: USB disconnect, device number 19
[  818.684648][   T26] audit: type=1326 audit(1739563944.165:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  818.856225][   T26] audit: type=1326 audit(1739563944.165:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  818.983231][   T26] audit: type=1326 audit(1739563944.175:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  819.047084][T15195] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  819.060726][T15195] Error parsing options; rc = [-22]
[  819.512682][   T26] audit: type=1326 audit(1739563944.175:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  819.721351][   T26] audit: type=1326 audit(1739563944.175:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  819.841497][   T26] audit: type=1326 audit(1739563944.175:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  819.863955][   T26] audit: type=1326 audit(1739563944.175:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  819.897491][   T26] audit: type=1326 audit(1739563944.445:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15176 comm="syz.2.3313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91a7852de9 code=0x7ffc0000
[  822.102438][    T7] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  822.352085][    T7] usb 3-1: Using ep0 maxpacket: 32
[  824.390930][    T9] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  824.460342][T15247] chnl_net:caif_netlink_parms(): no params data found
[  824.521561][    T7] usb 3-1: New USB device found, idVendor=04f1, idProduct=1001, bcdDevice=19.63
[  824.521598][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  824.521621][    T7] usb 3-1: Product: syz
[  824.521639][    T7] usb 3-1: Manufacturer: syz
[  824.521656][    T7] usb 3-1: SerialNumber: syz
[  824.523646][    T7] usb 3-1: config 0 descriptor??
[  824.563614][    T7] gspca_main: 04f1:1001 too many config
[  824.922076][T15247] bridge0: port 1(bridge_slave_0) entered blocking state
[  824.923857][T15247] bridge0: port 1(bridge_slave_0) entered disabled state
[  824.925047][T15247] device bridge_slave_0 entered promiscuous mode
[  824.933523][T15247] bridge0: port 2(bridge_slave_1) entered blocking state
[  824.933969][T15247] bridge0: port 2(bridge_slave_1) entered disabled state
[  824.936984][ T4210] usb 3-1: USB disconnect, device number 29
[  824.947765][T15247] device bridge_slave_1 entered promiscuous mode
[  826.272112][    T9] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  826.324918][T15247] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  826.339313][T14547] Bluetooth: hci3: command 0x0409 tx timeout
[  826.360729][T15247] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  826.413536][    T9] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  826.451098][T15247] team0: Port device team_slave_0 added
[  826.484206][T15247] team0: Port device team_slave_1 added
[  826.548167][    T9] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  826.657247][ T4210] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  826.669966][T15247] batman_adv: batadv0: Adding interface: batadv_slave_0
[  826.689385][T15247] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  826.776173][T15247] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  826.929214][T15247] batman_adv: batadv0: Adding interface: batadv_slave_1
[  826.949664][T15247] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  827.741351][ T4210] usb 3-1: Using ep0 maxpacket: 8
[  827.750975][T15247] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  828.114209][ T4210] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  828.154770][ T4210] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  828.166386][ T4210] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  828.177341][ T4210] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  828.190875][ T4210] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  828.200247][ T4210] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  828.296555][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  828.296571][   T26] audit: type=1326 audit(1739563954.605:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.6.3355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  828.355237][T15247] device hsr_slave_0 entered promiscuous mode
[  828.395004][T15247] device hsr_slave_1 entered promiscuous mode
[  828.415848][   T26] audit: type=1326 audit(1739563954.635:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.6.3355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  828.418819][T15247] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  828.441468][T14547] Bluetooth: hci3: command 0x041b tx timeout
[  828.471521][ T4210] usb 3-1: GET_CAPABILITIES returned 0
[  828.481266][ T4210] usbtmc 3-1:16.0: can't read capabilities
[  828.518494][   T26] audit: type=1326 audit(1739563954.635:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.6.3355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  828.536116][T15247] Cannot create hsr debugfs directory
[  828.651450][   T26] audit: type=1326 audit(1739563954.635:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.6.3355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  828.684611][   T26] audit: type=1326 audit(1739563954.635:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.6.3355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  828.707277][   T26] audit: type=1326 audit(1739563954.635:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.6.3355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  828.805929][T14492] usb 3-1: USB disconnect, device number 30
[  828.846417][   T26] audit: type=1326 audit(1739563955.155:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.6.3355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  828.868816][    C1] vkms_vblank_simulate: vblank timer overrun
[  828.946326][   T26] audit: type=1326 audit(1739563955.155:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15309 comm="syz.6.3355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  828.968702][    C1] vkms_vblank_simulate: vblank timer overrun
[  829.035920][T15334] loop7: detected capacity change from 0 to 128
[  829.184628][T15334] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  829.226947][T15334] ext4 filesystem being mounted at /265/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  829.901276][    T7] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  830.178867][    T9] device hsr_slave_0 left promiscuous mode
[  830.184958][    T7] usb 5-1: Using ep0 maxpacket: 8
[  830.197655][    T9] device hsr_slave_1 left promiscuous mode
[  830.223482][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  830.240868][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  830.257503][T15358] netlink: 220 bytes leftover after parsing attributes in process `syz.6.3372'.
[  830.296218][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  830.311409][    T7] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x99, skipping
[  830.333655][    T9] device bridge_slave_1 left promiscuous mode
[  830.349894][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  830.359228][    T9] device bridge_slave_0 left promiscuous mode
[  830.370854][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  830.419877][    T9] device veth1_macvtap left promiscuous mode
[  830.426342][    T9] device veth0_macvtap left promiscuous mode
[  830.433041][    T9] device veth1_vlan left promiscuous mode
[  830.438952][    T9] device veth0_vlan left promiscuous mode
[  830.491487][    T7] usb 5-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  830.511799][ T1325] Bluetooth: hci3: command 0x040f tx timeout
[  830.591109][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  830.796028][    T7] usb 5-1: Product: syz
[  830.806869][    T7] usb 5-1: Manufacturer: syz
[  830.826348][    T7] usb 5-1: SerialNumber: syz
[  830.838108][    T7] usb 5-1: config 0 descriptor??
[  831.142799][    T7] streamzap 5-1:0.0: streamzap_probe: Unexpected desc.bNumEndpoints (0)
[  831.303456][    T9] team0 (unregistering): Port device team_slave_1 removed
[  831.336247][    T9] team0 (unregistering): Port device team_slave_0 removed
[  831.384763][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  831.436115][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  831.629061][    T9] bond0 (unregistering): Released all slaves
[  831.718614][T15362] tipc: Cannot configure node identity twice
[  831.882871][T15247] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  831.929743][T15247] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  831.973701][T15373] loop2: detected capacity change from 0 to 128
[  831.992002][T15370] device lo entered promiscuous mode
[  832.009709][T15370] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  832.028807][T15370] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  832.056021][T15370] device tunl0 entered promiscuous mode
[  832.084244][T15308] usb 5-1: USB disconnect, device number 16
[  832.090877][T15370] device gre0 entered promiscuous mode
[  832.095596][T15373] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  832.110539][T15370] device gretap0 entered promiscuous mode
[  832.117578][T15370] device erspan0 entered promiscuous mode
[  832.124794][T15370] device ip_vti0 entered promiscuous mode
[  832.139081][T15370] device ip6_vti0 entered promiscuous mode
[  832.146697][T15370] device sit0 entered promiscuous mode
[  832.155968][T15370] device ip6tnl0 entered promiscuous mode
[  832.163921][T15370] device ip6gre0 entered promiscuous mode
[  832.174013][T15370] device syz_tun entered promiscuous mode
[  832.180689][T15370] device ip6gretap0 entered promiscuous mode
[  832.181996][T15373] ext4 filesystem being mounted at /50/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  832.200656][T15370] device bridge0 entered promiscuous mode
[  832.207675][T15370] device bond0 entered promiscuous mode
[  832.213634][T15370] device bond_slave_0 entered promiscuous mode
[  832.223452][T15370] device bond_slave_1 entered promiscuous mode
[  832.232215][T15370] device team0 entered promiscuous mode
[  832.237970][T15370] device team_slave_0 entered promiscuous mode
[  832.246248][T15370] device team_slave_1 entered promiscuous mode
[  832.274268][T15370] device dummy0 entered promiscuous mode
[  832.280919][T15370] device nlmon0 entered promiscuous mode
[  832.297717][T15370] device caif0 entered promiscuous mode
[  832.313390][T15370] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  832.337904][T15247] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  832.345367][T15370] syz.7.3376 (15370) used greatest stack depth: 18968 bytes left
[  832.378024][T15247] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  832.597659][ T1325] Bluetooth: hci3: command 0x0419 tx timeout
[  832.608538][T15247] 8021q: adding VLAN 0 to HW filter on device bond0
[  832.638254][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  832.662031][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  832.710787][T15247] 8021q: adding VLAN 0 to HW filter on device team0
[  832.752787][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  832.783650][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  832.809251][ T6445] bridge0: port 1(bridge_slave_0) entered blocking state
[  832.816409][ T6445] bridge0: port 1(bridge_slave_0) entered forwarding state
[  832.860910][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  832.899277][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  832.936166][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  832.975143][ T6445] bridge0: port 2(bridge_slave_1) entered blocking state
[  832.982321][ T6445] bridge0: port 2(bridge_slave_1) entered forwarding state
[  833.039017][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  833.078009][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  833.334497][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  833.355468][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  833.554224][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  833.585933][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  833.629534][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  833.900513][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  833.917163][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  834.302529][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  834.336165][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  834.384157][T15247] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  834.631952][T15414] loop2: detected capacity change from 0 to 128
[  834.755005][T15414] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  834.795893][T15414] ext4 filesystem being mounted at /53/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  834.860549][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  834.879863][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  834.929133][T15424] device ip6gretap0 entered promiscuous mode
[  834.942487][T15424] device macsec1 entered promiscuous mode
[  834.967470][T15424] device ip6gretap0 left promiscuous mode
[  835.019381][T15247] 8021q: adding VLAN 0 to HW filter on device batadv0
[  835.103743][ T3061] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  835.118352][ T3061] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  835.198269][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  835.230624][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  835.257035][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  835.276219][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  835.304301][T15247] device veth0_vlan entered promiscuous mode
[  835.343788][T15247] device veth1_vlan entered promiscuous mode
[  835.469104][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  835.533819][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  835.559890][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  835.623212][ T6445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  835.667772][T15247] device veth0_macvtap entered promiscuous mode
[  835.699704][T15247] device veth1_macvtap entered promiscuous mode
[  835.706666][T15448] loop7: detected capacity change from 0 to 128
[  835.748948][T15448] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  835.762999][T15247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  835.775140][T15448] ext4 filesystem being mounted at /274/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  835.786406][T15247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  835.803803][T15247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  835.814809][T15247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  835.825064][T15247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  835.836035][T15247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  835.846337][T15247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  835.857570][T15247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  835.869463][T15247] batman_adv: batadv0: Interface activated: batadv_slave_0
[  835.879594][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  835.896693][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  835.923280][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  835.932892][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  835.943754][T15247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  835.971079][T15247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  835.992379][T15247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  836.015133][T15247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  836.029521][T15247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  836.062988][T15247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  836.090309][T15247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  836.137866][T15247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  836.168781][T15247] batman_adv: batadv0: Interface activated: batadv_slave_1
[  836.241051][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  836.265858][ T6913] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  836.300866][T15457] netlink: 44 bytes leftover after parsing attributes in process `syz.7.3400'.
[  836.340039][T15247] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  836.370050][T15247] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  836.378947][T15247] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  836.463683][T15247] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  836.767040][ T6913] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  836.807546][ T6913] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  836.848725][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  836.880565][   T26] audit: type=1326 audit(1739563963.185:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15459 comm="syz.4.3404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  836.920936][ T6445] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  836.949736][ T6445] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  836.956133][   T26] audit: type=1326 audit(1739563963.225:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15459 comm="syz.4.3404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa59f88ade9 code=0x7ffc0000
[  837.039581][ T4428] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  837.165621][T15475] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3410'.
[  838.289751][T15505] loop7: detected capacity change from 0 to 128
[  838.321407][ T4210] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  838.370829][T15505] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  838.391330][T15505] ext4 filesystem being mounted at /279/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  838.701555][ T4210] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  838.717238][ T4210] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  838.742041][ T4210] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  838.751129][ T4210] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  838.801648][T15488] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  839.935374][T15530] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  841.300814][ T4213] usb 2-1: USB disconnect, device number 41
[  841.371387][ T1325] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  842.673946][ T1325] usb 5-1: Using ep0 maxpacket: 8
[  842.811735][ T1325] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x99, skipping
[  843.102770][ T1325] usb 5-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  843.215661][ T1325] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  843.481415][ T1325] usb 5-1: Product: syz
[  843.485629][ T1325] usb 5-1: Manufacturer: syz
[  843.600648][ T1325] usb 5-1: SerialNumber: syz
[  843.620054][ T1325] usb 5-1: config 0 descriptor??
[  843.661389][ T1325] usb 5-1: can't set config #0, error -71
[  843.687797][ T1325] usb 5-1: USB disconnect, device number 17
[  843.871468][T15308] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  844.311692][ T1325] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  844.601537][ T1325] usb 2-1: Using ep0 maxpacket: 8
[  844.911236][T15308] usb 3-1: Using ep0 maxpacket: 16
[  845.001626][ T1325] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  845.004398][T15628] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3465'.
[  845.021079][ T1325] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  845.031503][T15308] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xF3, skipping
[  845.041216][ T1325] usb 2-1: Product: syz
[  845.046302][ T1325] usb 2-1: Manufacturer: syz
[  845.050911][ T1325] usb 2-1: SerialNumber: syz
[  845.080628][ T1325] usb 2-1: config 0 descriptor??
[  845.211389][T15308] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  845.223365][T15308] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  845.227622][   T26] audit: type=1800 audit(1739563971.525:261): pid=15637 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3469" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  845.231908][T15308] usb 3-1: Product: syz
[  845.260320][T15308] usb 3-1: Manufacturer: syz
[  845.270956][T15308] usb 3-1: SerialNumber: syz
[  845.293965][T15308] usb 3-1: config 0 descriptor??
[  845.381661][ T1325] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  847.021124][ T7736] usb 3-1: USB disconnect, device number 31
[  847.103706][T15661] IPVS: stopping backup sync thread 15664 ...
[  847.110280][T15664] IPVS: sync thread started: state = BACKUP, mcast_ifn = macvtap0, syncid = 2, id = 0
[  847.501418][ T7736] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  847.571461][ T1325] dvb_usb_rtl28xxu: probe of 2-1:0.0 failed with error -71
[  847.599047][ T1325] usb 2-1: USB disconnect, device number 42
[  847.861323][ T7736] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  847.870575][ T7736] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  847.888476][ T7736] usb 3-1: config 0 descriptor??
[  847.939637][ T7736] cp210x 3-1:0.0: cp210x converter detected
[  848.561435][ T4210] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  849.202113][ T4210] usb 5-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[  849.213790][ T4210] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  849.222372][ T4210] usb 5-1: Product: syz
[  849.226652][ T4210] usb 5-1: Manufacturer: syz
[  849.231405][ T7736] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[  849.239745][ T4210] usb 5-1: SerialNumber: syz
[  849.271382][ T7736] cp210x 3-1:0.0: failed to get vendor val 0x370c size 73: 0
[  849.277213][ T4210] usb 5-1: config 0 descriptor??
[  849.287696][ T7736] cp210x 3-1:0.0: GPIO initialisation failed: -5
[  849.360370][ T7736] usb 3-1: cp210x converter now attached to ttyUSB0
[  849.474515][ T4210] usb 3-1: USB disconnect, device number 32
[  849.522305][ T4210] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  849.542479][ T4210] cp210x 3-1:0.0: device disconnected
[  850.064533][T15715] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3496'.
[  851.737452][    T7] usb 5-1: USB disconnect, device number 18
[  852.241251][T14492] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  852.511459][ T4213] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  853.501392][T14492] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  853.521234][T14492] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  853.571298][ T4213] usb 3-1: Using ep0 maxpacket: 8
[  853.652504][T14492] usb 8-1: config 0 descriptor??
[  853.713175][T14492] cp210x 8-1:0.0: cp210x converter detected
[  853.757327][ T4213] usb 3-1: unable to get BOS descriptor or descriptor too short
[  853.851797][ T4213] usb 3-1: config 8 interface 0 has no altsetting 0
[  854.101607][ T4213] usb 3-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=6a.e5
[  854.113121][ T4213] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  854.147583][T14492] cp210x 8-1:0.0: failed to get vendor val 0x000e size 3: -32
[  854.161929][ T4213] usb 3-1: can't set config #8, error -71
[  854.169470][ T4213] usb 3-1: USB disconnect, device number 33
[  854.211417][T14492] cp210x 8-1:0.0: failed to get vendor val 0x370c size 73: 0
[  855.051878][T14492] cp210x 8-1:0.0: GPIO initialisation failed: -5
[  855.060971][T14492] usb 8-1: cp210x converter now attached to ttyUSB0
[  855.069979][T14492] usb 8-1: USB disconnect, device number 20
[  855.078638][T14492] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  855.087065][T14492] cp210x 8-1:0.0: device disconnected
[  855.135169][   T23] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  855.193876][T15812] device macsec1 entered promiscuous mode
[  855.561447][   T23] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  855.572429][   T23] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  855.681524][   T23] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  855.695484][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  855.717153][   T23] usb 5-1: SerialNumber: syz
[  856.030707][   T23] usb 5-1: 0:2 : does not exist
[  856.036009][   T23] usb 5-1: unit 255 not found!
[  856.059677][   T23] usb 5-1: USB disconnect, device number 19
[  856.359259][T15322] udevd[15322]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  857.901286][    T7] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  857.916081][   T26] audit: type=1326 audit(1739563984.225:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15838 comm="syz.6.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  857.950426][   T26] audit: type=1326 audit(1739563984.255:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15838 comm="syz.6.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  857.975554][   T26] audit: type=1326 audit(1739563984.255:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15838 comm="syz.6.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  857.991410][T15308] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  857.998928][   T23] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  858.013895][   T26] audit: type=1326 audit(1739563984.255:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15838 comm="syz.6.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  858.077678][   T26] audit: type=1326 audit(1739563984.255:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15838 comm="syz.6.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  858.141241][   T26] audit: type=1326 audit(1739563984.255:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15838 comm="syz.6.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  858.164148][    T7] usb 2-1: Using ep0 maxpacket: 8
[  858.211662][   T26] audit: type=1326 audit(1739563984.435:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15838 comm="syz.6.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  858.251462][   T26] audit: type=1326 audit(1739563984.435:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15838 comm="syz.6.3544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc878da5de9 code=0x7ffc0000
[  858.256505][T15872] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3558'.
[  858.291187][   T23] usb 3-1: Using ep0 maxpacket: 32
[  858.291690][    T7] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  858.311873][    T7] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  858.320369][T15872] loop7: detected capacity change from 0 to 512
[  858.331531][    T7] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  858.351816][    T7] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  858.371293][    T7] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  858.385672][    T7] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  858.399580][T15872] EXT4-fs (loop7): Ignoring removed orlov option
[  858.399582][T15308] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  858.399608][T15308] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  858.425209][T15872] EXT4-fs (loop7): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  858.437229][   T23] usb 3-1: config 0 has an invalid interface number: 132 but max is 0
[  858.437258][   T23] usb 3-1: config 0 has no interface number 0
[  858.437295][   T23] usb 3-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  858.462604][    T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  858.491048][T15872] EXT4-fs error (device loop7): ext4_orphan_get:1401: inode #15: comm syz.7.3558: casefold flag without casefold feature
[  858.504538][T15872] EXT4-fs (loop7): Remounting filesystem read-only
[  858.514266][T15872] EXT4-fs error (device loop7): ext4_orphan_get:1406: comm syz.7.3558: couldn't read orphan inode 15 (err -117)
[  858.527436][T15872] EXT4-fs (loop7): Remounting filesystem read-only
[  858.540298][T15872] EXT4-fs (loop7): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback.
[  858.571417][T15308] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  858.580769][T15308] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  858.591561][T15308] usb 5-1: SerialNumber: syz
[  858.651695][   T23] usb 3-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5
[  858.660832][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  858.675872][   T23] usb 3-1: Product: syz
[  858.680316][   T23] usb 3-1: Manufacturer: syz
[  858.687565][   T23] usb 3-1: SerialNumber: syz
[  858.699356][   T23] usb 3-1: config 0 descriptor??
[  858.737829][   T23] em28xx 3-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132)
[  858.758828][   T23] em28xx 3-1:0.132: Video interface 132 found:
[  858.905274][    T7] usb 2-1: usb_control_msg returned -32
[  858.911562][    T7] usbtmc 2-1:16.0: can't read capabilities
[  858.934161][T15308] usb 5-1: 0:2 : does not exist
[  858.939136][T15308] usb 5-1: unit 255 not found!
[  858.949092][T15879] openvswitch: netlink: Message has 16 unknown bytes.
[  858.964838][T15308] usb 5-1: USB disconnect, device number 20
[  859.171704][   T23] em28xx 3-1:0.132: unknown em28xx chip ID (0)
[  859.679028][   T23] em28xx 3-1:0.132: reading from i2c device at 0xa0 failed: couldn't get the received message from the bridge (error=-5)
[  859.701707][   T23] em28xx 3-1:0.132: board has no eeprom
[  859.871416][   T23] em28xx 3-1:0.132: Identified as Leadtek Winfast USB II (card=7)
[  859.882300][   T23] em28xx 3-1:0.132: analog set to bulk mode.
[  859.933459][   T23] em28xx 3-1:0.132: Registering V4L2 extension
[  860.055913][T15308] usb 3-1: USB disconnect, device number 34
[  860.068622][T15308] em28xx 3-1:0.132: Disconnecting em28xx
[  860.082009][   T23] em28xx 3-1:0.132: failed to trigger read from i2c address 0x4a (error=-5)
[  860.136803][T15900] loop7: detected capacity change from 0 to 128
[  860.187774][   T23] em28xx 3-1:0.132: Config register raw data: 0xffffffed
[  860.200656][   T23] em28xx 3-1:0.132: AC97 chip type couldn't be determined
[  860.211823][   T23] em28xx 3-1:0.132: No AC97 audio processor
[  860.281987][T15900] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  860.302059][   T23] usb 3-1: Decoder not found
[  860.309887][T15900] ext4 filesystem being mounted at /316/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  860.317145][   T23] em28xx 3-1:0.132: failed to create media graph
[  860.379900][   T23] em28xx 3-1:0.132: V4L2 device video103 deregistered
[  860.419387][   T23] em28xx 3-1:0.132: Remote control support is not available for this card.
[  860.420421][T15907] ==================================================================
[  860.436615][T15907] BUG: KASAN: use-after-free in v4l2_fh_open+0xc7/0x430
[  860.443590][T15907] Read of size 8 at addr ffff888072e88900 by task v4l_id/15907
[  860.451163][T15907] 
[  860.453514][T15907] CPU: 0 PID: 15907 Comm: v4l_id Not tainted 5.15.178-syzkaller #0
[  860.461419][T15907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  860.471480][T15907] Call Trace:
[  860.474774][T15907]  <TASK>
[  860.477721][T15907]  dump_stack_lvl+0x1e3/0x2d0
[  860.482427][T15907]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  860.488080][T15907]  ? _printk+0xd1/0x120
[  860.492265][T15907]  ? __wake_up_klogd+0xcc/0x100
[  860.497137][T15907]  ? panic+0x860/0x860
[  860.501223][T15907]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  860.506715][T15907]  print_address_description+0x63/0x3b0
[  860.512287][T15907]  ? v4l2_fh_open+0xc7/0x430
[  860.516903][T15907]  kasan_report+0x16b/0x1c0
[  860.521433][T15907]  ? v4l2_fh_open+0xc7/0x430
[  860.526055][T15907]  v4l2_fh_open+0xc7/0x430
[  860.530505][T15907]  em28xx_v4l2_open+0x15d/0xa10
[  860.535393][T15907]  v4l2_open+0x228/0x360
[  860.539665][T15907]  chrdev_open+0x54a/0x630
[  860.544187][T15907]  ? cd_forget+0x160/0x160
[  860.548627][T15907]  ? do_raw_spin_unlock+0x137/0x8b0
[  860.553846][T15907]  ? fsnotify_perm+0x47b/0x590
[  860.558634][T15907]  ? cd_forget+0x160/0x160
[  860.563075][T15907]  do_dentry_open+0x807/0xfb0
[  860.567876][T15907]  path_openat+0x2705/0x2f20
[  860.572639][T15907]  ? do_filp_open+0x460/0x460
[  860.577365][T15907]  do_filp_open+0x21c/0x460
[  860.581893][T15907]  ? vfs_tmpfile+0x2e0/0x2e0
[  860.586525][T15907]  ? _raw_spin_unlock+0x24/0x40
[  860.591405][T15907]  ? alloc_fd+0x598/0x630
[  860.595765][T15907]  do_sys_openat2+0x13b/0x4f0
[  860.600472][T15907]  ? do_sys_open+0x220/0x220
[  860.605108][T15907]  __x64_sys_openat+0x243/0x290
[  860.609983][T15907]  ? __ia32_sys_open+0x270/0x270
[  860.614943][T15907]  ? syscall_enter_from_user_mode+0x2e/0x240
[  860.620944][T15907]  ? lockdep_hardirqs_on+0x94/0x130
[  860.626165][T15907]  ? syscall_enter_from_user_mode+0x2e/0x240
[  860.632261][T15907]  do_syscall_64+0x3b/0xb0
[  860.636703][T15907]  ? clear_bhb_loop+0x15/0x70
[  860.641432][T15907]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  860.647350][T15907] RIP: 0033:0x7fee92eda9a4
[  860.651794][T15907] Code: 24 20 48 8d 44 24 30 48 89 44 24 28 64 8b 04 25 18 00 00 00 85 c0 75 2c 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 60 48 8b 15 55 a4 0d 00 f7 d8 64 89 02 48 83
[  860.671419][T15907] RSP: 002b:00007fff3dd3da40 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  860.679833][T15907] RAX: ffffffffffffffda RBX: 00007fff3dd3dc58 RCX: 00007fee92eda9a4
[  860.687825][T15907] RDX: 0000000000000000 RSI: 00007fff3dd3ef1c RDI: 00000000ffffff9c
[  860.695799][T15907] RBP: 00007fff3dd3ef1c R08: 0000000000000000 R09: 0000000000000000
[  860.703769][T15907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  860.711752][T15907] R13: 00007fff3dd3dc70 R14: 0000556122f15670 R15: 00007fee93323a80
[  860.719731][T15907]  </TASK>
[  860.722766][T15907] 
[  860.725085][T15907] The buggy address belongs to the page:
[  860.730715][T15907] page:ffffea0001cba200 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x72e88
[  860.740870][T15907] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  860.748007][T15907] raw: 00fff00000000000 ffffea0001621b08 ffff8880b8f409b0 0000000000000000
[  860.756592][T15907] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  860.765162][T15907] page dumped because: kasan: bad access detected
[  860.771582][T15907] page_owner tracks the page as freed
[  860.776944][T15907] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x140dc0(GFP_USER|__GFP_COMP|__GFP_ZERO), pid 23, ts 859978600365, free_ts 860419259237
[  860.792569][T15907]  get_page_from_freelist+0x3b78/0x3d40
[  860.798115][T15907]  __alloc_pages+0x272/0x700
[  860.802696][T15907]  kmalloc_order+0x41/0x150
[  860.807193][T15907]  kmalloc_order_trace+0x15/0xe0
[  860.812122][T15907]  em28xx_v4l2_init+0xe2/0x2d50
[  860.816969][T15907]  em28xx_init_extension+0x11b/0x1c0
[  860.822246][T15907]  process_one_work+0x8a1/0x10c0
[  860.827180][T15907]  worker_thread+0xaca/0x1280
[  860.831847][T15907]  kthread+0x3f6/0x4f0
[  860.835903][T15907]  ret_from_fork+0x1f/0x30
[  860.840309][T15907] page last free stack trace:
[  860.844964][T15907]  free_unref_page_prepare+0xc34/0xcf0
[  860.850419][T15907]  free_unref_page+0x95/0x2d0
[  860.855104][T15907]  free_nonslab_page+0xe4/0x150
[  860.859955][T15907]  kfree+0x1cf/0x270
[  860.863852][T15907]  em28xx_v4l2_init+0x15d7/0x2d50
[  860.868880][T15907]  em28xx_init_extension+0x11b/0x1c0
[  860.874164][T15907]  process_one_work+0x8a1/0x10c0
[  860.879102][T15907]  worker_thread+0xaca/0x1280
[  860.883783][T15907]  kthread+0x3f6/0x4f0
[  860.887842][T15907]  ret_from_fork+0x1f/0x30
[  860.892251][T15907] 
[  860.894571][T15907] Memory state around the buggy address:
[  860.900191][T15907]  ffff888072e88800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  860.908241][T15907]  ffff888072e88880: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  860.916391][T15907] >ffff888072e88900: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  860.924453][T15907]                    ^
[  860.928537][T15907]  ffff888072e88980: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  860.936623][T15907]  ffff888072e88a00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  860.944674][T15907] ==================================================================
[  860.952849][T15907] Disabling lock debugging due to kernel taint
[  860.969672][T15308] em28xx 3-1:0.132: Closing input extension
[  860.997314][T14492] usb 2-1: USB disconnect, device number 43
[  861.095857][T15907] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  861.103127][T15907] CPU: 1 PID: 15907 Comm: v4l_id Tainted: G    B             5.15.178-syzkaller #0
[  861.112455][T15907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  861.122537][T15907] Call Trace:
[  861.125813][T15907]  <TASK>
[  861.128739][T15907]  dump_stack_lvl+0x1e3/0x2d0
[  861.133432][T15907]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  861.139060][T15907]  ? panic+0x860/0x860
[  861.143138][T15907]  ? rcu_is_watching+0x11/0xa0
[  861.147906][T15907]  ? preempt_schedule_common+0xa6/0xd0
[  861.153370][T15907]  panic+0x318/0x860
[  861.157267][T15907]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  861.163416][T15907]  ? check_panic_on_warn+0x1d/0xa0
[  861.168565][T15907]  ? fb_is_primary_device+0xd0/0xd0
[  861.173788][T15907]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[  861.179775][T15907]  ? _raw_spin_unlock+0x40/0x40
[  861.184645][T15907]  check_panic_on_warn+0x7e/0xa0
[  861.189582][T15907]  ? v4l2_fh_open+0xc7/0x430
[  861.194172][T15907]  end_report+0x6d/0xf0
[  861.198323][T15907]  kasan_report+0x18e/0x1c0
[  861.202848][T15907]  ? v4l2_fh_open+0xc7/0x430
[  861.207452][T15907]  v4l2_fh_open+0xc7/0x430
[  861.211895][T15907]  em28xx_v4l2_open+0x15d/0xa10
[  861.216872][T15907]  v4l2_open+0x228/0x360
[  861.221166][T15907]  chrdev_open+0x54a/0x630
[  861.225598][T15907]  ? cd_forget+0x160/0x160
[  861.230016][T15907]  ? do_raw_spin_unlock+0x137/0x8b0
[  861.235217][T15907]  ? fsnotify_perm+0x47b/0x590
[  861.240002][T15907]  ? cd_forget+0x160/0x160
[  861.244417][T15907]  do_dentry_open+0x807/0xfb0
[  861.249124][T15907]  path_openat+0x2705/0x2f20
[  861.253735][T15907]  ? do_filp_open+0x460/0x460
[  861.258417][T15907]  do_filp_open+0x21c/0x460
[  861.262925][T15907]  ? vfs_tmpfile+0x2e0/0x2e0
[  861.267524][T15907]  ? _raw_spin_unlock+0x24/0x40
[  861.272399][T15907]  ? alloc_fd+0x598/0x630
[  861.276761][T15907]  do_sys_openat2+0x13b/0x4f0
[  861.281436][T15907]  ? do_sys_open+0x220/0x220
[  861.286023][T15907]  __x64_sys_openat+0x243/0x290
[  861.290869][T15907]  ? __ia32_sys_open+0x270/0x270
[  861.295804][T15907]  ? syscall_enter_from_user_mode+0x2e/0x240
[  861.301777][T15907]  ? lockdep_hardirqs_on+0x94/0x130
[  861.306981][T15907]  ? syscall_enter_from_user_mode+0x2e/0x240
[  861.312956][T15907]  do_syscall_64+0x3b/0xb0
[  861.317367][T15907]  ? clear_bhb_loop+0x15/0x70
[  861.322035][T15907]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  861.327926][T15907] RIP: 0033:0x7fee92eda9a4
[  861.332357][T15907] Code: 24 20 48 8d 44 24 30 48 89 44 24 28 64 8b 04 25 18 00 00 00 85 c0 75 2c 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 60 48 8b 15 55 a4 0d 00 f7 d8 64 89 02 48 83
[  861.351990][T15907] RSP: 002b:00007fff3dd3da40 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  861.360405][T15907] RAX: ffffffffffffffda RBX: 00007fff3dd3dc58 RCX: 00007fee92eda9a4
[  861.368398][T15907] RDX: 0000000000000000 RSI: 00007fff3dd3ef1c RDI: 00000000ffffff9c
[  861.376365][T15907] RBP: 00007fff3dd3ef1c R08: 0000000000000000 R09: 0000000000000000
[  861.384360][T15907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  861.392328][T15907] R13: 00007fff3dd3dc70 R14: 0000556122f15670 R15: 00007fee93323a80
[  861.400315][T15907]  </TASK>
[  861.403629][T15907] Kernel Offset: disabled
[  861.407977][T15907] Rebooting in 86400 seconds..