last executing test programs:

1m12.004949644s ago: executing program 1 (id=6712):
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x17ef, 0x60fe, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x60, 0x0, [{{0x9, 0x4, 0x0, 0xff, 0xb, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0xb, 0x10, 0x1, {0x22, 0xb}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0x3, 0x4}}}}}]}}]}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000040)={0x1, 0x1, 0x6})

1m11.421137749s ago: executing program 1 (id=6718):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000240)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_RMFB(r1, 0xc00464af, &(0x7f00000002c0)=r3)

1m11.363220888s ago: executing program 1 (id=6720):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x38011, r1, 0x0)
r2 = syz_io_uring_setup(0x487, &(0x7f0000000240)={0x0, 0x59c4, 0x800, 0x1000, 0x5cc}, &(0x7f0000000300), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1)

1m11.215141667s ago: executing program 1 (id=6723):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x219d88b, 0x0)
umount2(&(0x7f0000000080)='./file0/file0\x00', 0x1)

1m11.140048772s ago: executing program 1 (id=6725):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x6, 0x8, 0x8, 0x40}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

1m10.634830636s ago: executing program 1 (id=6730):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mkdir(&(0x7f0000000180)='./file0/../file0/file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file4\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x4)

1m10.379207628s ago: executing program 32 (id=6730):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mkdir(&(0x7f0000000180)='./file0/../file0/file0\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file4\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x4)

22.491607267s ago: executing program 3 (id=7536):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x5, 0x1a2c42)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001ac0)={r0, 0x2000, {0x0, 0x0, 0x0, 0x0, 0x14a1ff, 0x0, 0x0, 0x1a, 0x1c, "3384020bbe82b398000000000000000000001d0ec0c1b4e9b1c4369d03740100ceaac594b3d6d741dd17c1c50d38ef2a565ef1e80000000058966500", "a9103939c787a16c1ca4f837026d1a8554feac911e1cd130e04d528539f3d3289737f0374c72a964a02447a75df8a6ca7f040000000000000072fd29f35239d2", "24431a1e77a68e174f00", [0x9, 0x400]}})
r2 = dup(r1)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r2, &(0x7f0000000080)={0x5, 0x10, 0xfa00, {0x0}}, 0x18)

22.440032914s ago: executing program 3 (id=7538):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x20)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x40800, 0x0)
lseek(r0, 0x101, 0x2)
getdents64(r0, 0x0, 0x0)

22.379029446s ago: executing program 3 (id=7540):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8101, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x3, 0xfffffffe, 0x0, "0062ba7d82000000000000000000f7fffeff00"})
r1 = syz_open_pts(r0, 0x8182)
dup3(r1, r0, 0x0)
pselect6(0x900, 0x0, 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)

22.272612466s ago: executing program 3 (id=7544):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x2d, 0x1001, r0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f00000002c0)=0x20)

22.17023692s ago: executing program 3 (id=7545):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x5, 0x8, 0xf}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x8002, 0x0, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000840)={r1}, 0xc)

21.756069736s ago: executing program 3 (id=7549):
r0 = epoll_create1(0x80000)
r1 = epoll_create1(0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000001c0))

21.523553623s ago: executing program 33 (id=7549):
r0 = epoll_create1(0x80000)
r1 = epoll_create1(0x0)
r2 = fcntl$dupfd(r0, 0x406, r0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000001c0))

4.109488686s ago: executing program 6 (id=7839):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = syz_io_uring_setup(0x2f90, &(0x7f0000000180)={0x0, 0xc383, 0x3010, 0x2, 0x200004}, &(0x7f0000000100), &(0x7f0000000140))
r1 = epoll_create(0xaf2)
epoll_pwait2(r1, &(0x7f0000000280)=[{}], 0x1, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0xe000200f})

3.816024671s ago: executing program 2 (id=7842):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000280)={{0x12, 0x1, 0x141, 0xf2, 0xc5, 0x96, 0x20, 0x16d0, 0x10b8, 0xde8e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x2, 0x0, 0x83, 0xec, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0x2, 0x0, 0xa}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0x84, &(0x7f00000009c0)=ANY=[@ANYBLOB='@0\f'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000880)={0x2c, &(0x7f0000000640)={0x40, 0x12, 0x29, "436655104e7e54c46de2faf6c30b4c6e371bbabe1d142fa39c83b9bf3f31f3d26920ecfc447567b821"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000300)={0x1c, &(0x7f00000001c0)=ANY=[@ANYBLOB="200628"], 0x0, 0x0})

3.706038105s ago: executing program 6 (id=7843):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
connect$inet6(r0, &(0x7f0000002140)={0xa, 0x4e25, 0x1, @mcast2, 0x7}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000)=0x5, 0x4)

3.250927863s ago: executing program 6 (id=7849):
symlinkat(&(0x7f0000002740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000880)='./file0\x00')
r0 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0xdcb8, 0x10, 0x1, 0x89}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x77, 0x10000})
io_uring_enter(r0, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

3.123250114s ago: executing program 4 (id=7851):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x5, &(0x7f0000002480))
syz_clone3(&(0x7f000000dd80)={0x100000, 0x0, 0x0, 0x0, {0x13}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pause()
syz_clone3(&(0x7f000000dd80)={0xa04400, 0x0, 0x0, 0x0, {0x12}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000001, 0x31, 0xffffffffffffffff, 0x0)

2.855319098s ago: executing program 6 (id=7852):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c80)={0x2c, 0xa, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24048014}, 0x4000)

2.765453147s ago: executing program 6 (id=7853):
r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a0003010000000904000000010100000a24010000000201020c24020800000000000800000524050000082407000000009ef6230700000000a3a82f07070d240701060000fd800000001a4824030000000001"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, 0x0, &(0x7f0000007680)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x180c}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000180)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1401}}}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000980)={0x20, 0xe, 0x2, "8c12"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000000)={0x84, &(0x7f00000000c0)={0x60, 0xf, 0x37, "5990c33b78d354a8f5be6ab7c84822120ba2c2ecba9b2d8ae1288ec8470ee2c06c6bf55149290fc014458d2a762c31c32e4177e1a08b50"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.223368103s ago: executing program 4 (id=7854):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup(r1)
writev(r2, &(0x7f0000001540)=[{&(0x7f0000000300)="5d1b72799ce84b64a8d251a116e20eda4fe07c9d97d223fcabfec942e9097e1287759fc5480a62b8a8964c711bdb3263cfee", 0x32}, {&(0x7f0000000400)="a4f9c75ce5faec13c7683334664a337a96cb0e15869ff47948e2d3594a99b77ada08c33e25dee70fd4aa06e7663286e33ee5544f8287f4577dab231ca2f9635713b099aed18da796c0c2d2f5c2a13fb24f72ce76f6c3d888d0ff8a67b8355ab3af729ef04c4837ea8dc9d9cf13281d299dc99c28460f7667e6dfcd93f00c43eff02fdb05f72385a74755e3307d03b5e31b52a1ccb5d2bbb9d2f0b0aa7550cadcc26627156f87bb44bf5ff1667183fd654da1e2b35196d1d0651d831e5530e2f0386bc8c63ff1cd71c65d7583eb0228a0b0f4996b15716f0c862617133a64d22606296e7f73b17c319bdb0280bc1f28f00a48d5838acc30182c95d0083c1b1dccd5320c847051fa3d57c75b1b5628248e9834f5283ccb2eb6d013b7e97225a01f82e4c384d33c69d77755b1c340f8da44e87f13a1cb7ef779f68aee5034b7207b675fc76839475d3dc2661bd54cbf57b1535c7e4b7062a315beb469c505882c23adb120810ecc6f895720e498c98adadde8993edba182e68b62498afdee239e22207c3cc5e208a1d519793638d565fcf8f1fdc560909802ee3c8a479dd1c64ca94e36d74ad83ecd32eec2f93fd70d2c789e8aa8a58afcff177434956089fdcf88024edc97158c8d91b313a88e2973b32b65158a2f832b4515c2ba79f5242a3bcc63757e4d86fda87b9fa6179a9b2bed13f6a96d7d9ce87dcf53a08dd646f50d9dedce522de5217af2ae9d3a5c324e1c94ac1863177b824d15705c72a1d31568d8d9f7ea9bf06a8e0c8e0371d35becc2896be68d95d574534be552a5923fde8fac67e42b116b0d6801f7081263f0f9002ade20075eb4aa62386f253609655c4dfcab1bb963465d766a7ef1e9d00f3902c2eebbc6a6210246b76b2b7a2f318104b5e6acd863b98891bb366931f0307406dd0875cbbf4dd6601e813d96d83238bd0fa88aab97ed382ec2b00e7f093f10799c1b1cacce0eb1c69d32782ab27532c0dbea3d7bf5edc2e68ce14d04a889a6276d529f7722a68bf4747181a7999a6d62a35a411a815209d28c6aa5ebf6f8d90d561f0541341f42b67b6c50508dea6608b07a1dbedd04572d3c2e4506ff59445b5a3ecf82a4c4b6f1df0f31bc8f8c153f54ff74dfa20849f31473e5e05da4fbb619cd7262000d60771432a516ac372e12c8b2d966014752a6ef27e8d261b168cf9af53d68b5de9b269496c8114e7e0ec5d65deba477afafe7ba00ca418c3289eae530a144f52e7413477e35db5cf6b05884a7b1409ae38adabe0d1deebb280bc5ec35f94ea4e1b102874625ba65a850f06d3cd0dd0506aa1322859c12e2988aea106b27d61bfa914eed771ad485916b33274d3b9ebb9b7d3a1ebe1710f33c4f0fa97528181c78d34e49d66b4af2cc27c948e98e65592b48600deea7b97cfe976653a020a1aa1955f70f16b243bcbd45825c8cf6501972ec74a43d6690289a16dea63a23c248d9036fa171c3a690fd29cc5da91a6797315148a5f3b8c0e6023f40a46989a363ce4e5eb6ceecda0488dfc81a8e4cc0e8fdb5dc17ba4a3fb1d725420871205602e9c421fa8fb5be1957be05bc68486b4ed7588ed532d024439c9ba271efc1031ff9fdc55716726c15a19a62c4dd1b3d3460bd81a24aef083748b839c36b3447160f36d6c010b2af2e9ab7b82dd1600ab9b249b3fa905888aa5fa87bcf8d432e92af69e38347bba6773ee586962c248a1c7871fbccdf61ebe3be942e21e314e2bfbee135a649394641744105f5564d8cd2a5098f84b2075c7b67d205d1bdb54eb2308b66e24a8480ecb5bba60fde4bb78fe34817a81e96bb83cc37e19e7839c55fca388aa61d6718055a5bf2c9e4b619af0ac09050ef766c2f3624961efc203d0e2225c6b9269a515b5465e39ae5830bf66ca1dac95bb9e3d3de9636e720cf80df2ab43149670bd72917dfd5bc252ffe5b5a17014f3f95b4185db219448bebed2f05c8389d06ee60b058dbefa1e6ce630c68ed11383df6d0101158b330373f1b4a95d7d1b448609c40655a80ec9cd1368f68b525fea8e21461976952ae6a3916e855d8de49c2a1a607b8247fd8ba32bbdd429623e34d8947d80129cbb737711ab9908cb87902babde1941619d6d323aec54a99a042c438f46e4d3a2d3aeea4f26d83a791d5a96d6c04cb584042a19bba545c44adec7f5d6718769fcc1236b467b12031358ec3f21b4def005e2fda16f560dc055648bd2e5b5555690467f2fcd29183580966bb3a683856006c80ad617a68568332b461e01650f2bab983bb872e254b64b0f07b9f76a11861f2c3de70e9f3cc9f596eaff8347140f68610e0e778d75fc9b87313e525b2412a0fc35ef3821e814d6e2c56c7d462f09880582a8931325ac7a3e02417fb58f0d972427cf728190071ee8cfe88117365a862f20cf3d4205489afb4b366fb6b1f9c25bbf7d587ed41e3ae101ae7e543a25a966e99bd51b4da07ee3a56b99ee97364eea8d275a67a76112f02690bf10599cdda840b1b39befc2159b0f574678e260667ff9bf85ea4b736a1212e3217cbad4627ce85d02e69bd40c7f5a725d4a5fefc36f837c0d1e0221cfe14f0aed6d9e21d224144bdd6b44211aba0820470d0965a5f5ab57ecf779a12ddbc6e17b5d00b5cd22a35fb13abf3bd667d38e1cccc0b98c997cf7216126d620dcf86372243d8fa006afda3cfb42c564676d6c8fd8ecc32bf6ac6f9978297ef1aa7e97f145cd6d8490be49c01a543470795c6a82228c7d33366dc36809ed33490fe9a08ebd9ee27c09211fdd752cd32ba5697d5b229533b6588210a4e2e3755d9ee4a687e591d39e1b0a6e4058db67981b5ff7a983d1f92fc7d3cfdc9baa1ec3f2b3026caaf41279425e8edbf3b5248c67763054b57601ab9775641aaa273221f019309d5fef778b5d239b1e1b47d958064c3d53ad0f02c1fe20040ad7000e123157eeffdd6cfc9b36e6a517a626cdb9600cfad8f6af0fbf4f565f282204de2546fd97673bd0ac4954dffa7eb531e2ce88729da1c80294b9e74c5ef5070efa1a9e5daa0fa436cd7abff4c36243744a3f1d0c1a2851143362ada81f303acb9839f04a4311e52f8d199b167988a1adba156d6e152b76b5d4359f66d5e04582976fb6875ddf814e28157eeed0b5bcb0384250c9d10a9043be1ea9e02faf0a3f226a16a4ecb47f21fda4b456f99e2aef8f0c9ecd4701ac0832cfc40a4290286da25a5d87cd3dd88d6a0ea27076e2f248144cd64432c7fba88b469111d1007c0ac41d4c4ff7579b100c30cc66a2a61ff2b23d7d2678e74f59b1d34aca8c19f22972ba69b4ba819dc2b879ab8a052f58877ef1b7acf1dd9703abd7286e310ccf0749cdeff0bc1b32938ca80ff109fb17f41a6924ae340059ac472c430465d4ba38ac04d16b941a6c9c7501a2444f3590db0b696510aaf46f840a2d0e2c01d16475342b8e27e977c672f65786e9757a746be652321091402b4ac572c4e2f3610252db85dc4ee9622c2c72f6d8ef28109f8158ff3344a42aa04adac192761041dc92e1053ab44c05481fe3b4ce842d2ae1dfa389d77324c5a1425de45123f061c7a9d1398b26be8cdf199cc38e0dca5cf45cde1ba6c819efca55c0a06c75d870d02581243676c2f056ee149467a0ef463d4f267986c9ab29eccec654b2ed1b95998540512213ae6e8912e7ccdda90ad4e559c19e0a516e3e6386e2704d7b66a0c9675b71a4ca099cd1b97cee35a73a34b1f383a14410557191443f242d640bb4125a160a72553b93ffd137945fde22811c8390a2411ecf31197f6e6331b65f1635aefd4cb1540078515c2f3103a343a7f8323e94387900e026c62235bdd611a78f52812d4fc987dd20d7941a52bf61b8a2e51163f869f0a174c0e65a3337e42f2f99abe74ced5448516dc58ab655d863c616c20e1144ec9d197b82815cddb467f68a0993d41a9519e53e6be90acaac921f71bf4e9790423542a35f2c3a63fe1fdf8bbc94a2f4a7ab3df26b4f9f4d2b95210867d1fe1781633404fcce84975ff9855fb94d2e737e1a4bda737abbbc8b46752881ef1e69255a66bbe2abc72049234297a41f15c79f36cbdd8594e0b45e58e8ddb421b5e78205355cf00df006a7b63f8600cfe14b67f0819d750b9ad01a1ba6d4878330fb4c8aeda1a4725eebe814aa9f3dfa670ba05d03c1e909ed36d5a7adb490a4e9a321a78bfd3347af44a012af42001e94f4844373b37e2226c7c129ab99bba5cb83d9d17967f3d72ec8841bf14ef9f2df9c746d4de9c298ae726d850a3af310f7e7e1b3dc5b8ac3a6b8374ce8fa3240260acca3000fd3097ad25838c3dcdc4ba4656ab054bab120dc0e3baee4fb078b9d71027e61b59a281b52749da1287affe9472f47e608b3fdb5af9ef828021da2963a1cc97317c9cb42b1b241d928e980b043392f6c99cec49eac2e42e056520d05dcf5f464038f60b9917d3d7020b35ae72fa7699c9c7df21ac9353e8e6a01faa888e7e8e359f157beef4cd50565ff97998c6544cf57f227e8a665a3a0f725a9a6df59c59dc57e822b69c0cd7e6c3d385bc53a03d3f642367553e79f1f0926456ef34ff35108eb68fee979520632e3443efa662587a2d79b96228be373b1a43e0b0717c9b2b10c53b55149a09f81f13b019edd9ddcac4d044efd989323f787b465086033000b9c9e76fa503f8f179e7ac926eaf379323590df8c89d79b450a2c153c328b87f8d503d03dc6de93f65efff59e12873f581fcd500f7194274d1fb7ed3d9f70a5ab837a539e13551eea003ee772c73644f5a916990719b8cbd2bcbdab556d2e5dc882c99f4b3e3dc4afa4e9ad48023897b32fb9c4a7a15cb93cc5565f8ecae56bf7dc1d3f365e5646f64bf00229fc1bfde01885ef1ee8c234bea31e0b07a6a12f32d2ade473eceadc22d64412cc39c081707135a2648d0355228b430ffb0c05e1699b32fad3acc07cc32aec3cf10885505116eb6f969fb8e816f2c48f96eaf7b30cbe626ba04e22b7fb44d5395781f56b67236b3f9d75f44fdd8c5836a1ebd16fc5a63a4b24953647b4ac616796bffc3043533bd3270d0f718f36336f5d6a5ea6e7546c58a0a6257146fad5afef1dbbf38bd003dc6459b82d8de92e9c79fb606101e0be3fcd948bdf1a5e17afcee17bdc307f3a229adafc5f513a3639b425d746280f23f8f14fdd85a81e61231615c1d90ee96ec7cafa2328cc3b326abfb663ee21eb4b0c49354275343caead7ed6b0ee1ff591bcce3e76685498d22a2ef36f33b7ab6b37a150b1fb1e4f63614437134aedf7614a02c6dd412e3fec1108b09dd400e12ac72fa20d24187d7272b75498926f5ba5fc20023b2a7ecdc37514d9ebdf51b8c5cabc7b952ed7ae9c50e4ebba4fa5349718d153ef29eda4ebb4932d2fcad9e94ec4f06ae4607d15d82d70b5cfd7a20c2b8e22c3b43f7e0a0b64a79a00f51bac42155c89033254c3652dc572f2018e82ea9ed48429d7158505dcc7b8c06d0fef85552604f93a1ec8fabd6a07c80cbe063fabc860b88356dec3101ff1f18768cef63482da5a13fdcc035d14a79f098bb8eea072d8db228fc4339d65919dbabe12b9ac8ea99e2987cc20c08d46e5cc0def4b5a8ded5c8f94fc19ec4cff7c6c718a592fd0234d6068938054f1554864ecde4462415a2c94b7dbfab8ce6294dbcdb786bc88308b7ce617dd2423414850f3cab5d2687c5b49e96ecd014d9cb0907e7c8adc4a864931767ecffd6120c7cbf7d797d4b38ea053c1f5a99407961aed1243190b05bc20120021c7a7ee63aea03c1f9bb35", 0x1000}, {&(0x7f0000000380)='n', 0x1}, {&(0x7f0000001400)="32976972962d506ff3ae340876a5a370c6d3cfa620bf71be8a505611a3529530c18cd25febff0fe8add074c152beace5d6ecd1427906b1f22cb1a54c6c6670f9ca94b679db2e84154410eb87d2fc84669c00c3244daa4a21d31824be", 0x5c}, {&(0x7f00000021c0)="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", 0xffffff67}, {&(0x7f0000001500)="f75a82a0306ed5019342"}], 0x5)
setsockopt(r2, 0x1, 0x20, &(0x7f0000000340)="b5057018", 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)

2.002951886s ago: executing program 4 (id=7855):
syz_open_dev$video(&(0x7f0000000000), 0x7fff, 0x40800)
r0 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0xbc14, 0x800, 0x8000, 0x40024e}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd_index=0x3, 0xffffffffffffffff, &(0x7f0000000580)=""/207, 0xcf, 0x2, 0x1})
io_uring_enter(r0, 0x627, 0x4c1, 0x43, 0x0, 0x30)

1.924132528s ago: executing program 0 (id=7856):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mlockall(0x3)
fstat(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setreuid(0x0, r1)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4000, 0x0, &(0x7f0000ff9000/0x4000)=nil)

1.544786817s ago: executing program 2 (id=7857):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = io_uring_setup(0xab1, &(0x7f0000000080)={0x0, 0xdf4, 0x1, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

1.081075875s ago: executing program 0 (id=7859):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_POWER_SAVE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x88c0)

1.079465197s ago: executing program 4 (id=7860):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x6, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
iopl(0x3)

959.044625ms ago: executing program 0 (id=7861):
openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x8001)
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x800, 0xffffffff, 0xbfdffffc}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x47f6, 0x0, 0x2, 0x0, 0x300)

798.765683ms ago: executing program 5 (id=7862):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[], 0xc3ca)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
connect$tipc(r0, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x4}}, 0x10)

706.41144ms ago: executing program 5 (id=7863):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f00000005c0)={0x1c, r1, 0x1c3a4bfd1a5064e7, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4054}, 0x8000000)

698.19544ms ago: executing program 2 (id=7864):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="05000000050000000200000007"], 0x50)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000003000000000000000040000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000a6007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000500000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r1, r0}, 0xc)

570.513526ms ago: executing program 5 (id=7865):
r0 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, 0x0, 0x26, 0x0, 0x0, 0x206}, 0x28)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r1, &(0x7f0000000000)="fa", 0xfffffdef)

569.296889ms ago: executing program 2 (id=7866):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000100), 0x24, 0x0)
mkdir(&(0x7f0000000180)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

557.41485ms ago: executing program 6 (id=7867):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8900, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

450.610144ms ago: executing program 0 (id=7868):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_DEL_MPATH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, r2, 0x1, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x24000004)

348.62214ms ago: executing program 2 (id=7869):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000740)={0x48, 0x2, r1, 0x0, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f00000007c0)={0x28, 0x7, r1, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1004000})
ioctl$IOMMU_TEST_OP_MD_CHECK_MAP(r0, 0x3ba0, &(0x7f0000000800)={0x48, 0x3, r2, 0x0, 0x1004000, 0x1000, &(0x7f0000ffc000)})

331.866371ms ago: executing program 0 (id=7870):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = syz_io_uring_setup(0x275c, &(0x7f00000011c0)={0x0, 0x5bce, 0x100, 0xffffffff, 0x10e}, &(0x7f0000001140), &(0x7f0000001180))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000002300)=[{&(0x7f0000000140)=""/4096, 0x1000}], 0x3100)
munlockall()
madvise(&(0x7f0000003000/0x1000)=nil, 0x7f7884acbfff, 0x14)

309.457301ms ago: executing program 5 (id=7871):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x10)
fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)

177.545377ms ago: executing program 4 (id=7872):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x4, 0x1}, 0xe)
setrlimit(0x2, &(0x7f00000000c0)={0x2000000, 0xffffffffffffffff})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000100), 0x4)

168.11937ms ago: executing program 5 (id=7873):
openat$kvm(0xffffff9c, 0x0, 0x800, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x6, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x53, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x1e)

163.775256ms ago: executing program 2 (id=7874):
socket$inet(0x2, 0x2, 0x0)
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newlink={0x20, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0xc15}}, 0x20}, 0x1, 0x0, 0x0, 0x28001}, 0x8000)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
syz_emit_ethernet(0x4e, &(0x7f0000000040)={@multicast, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a9646", 0x18, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e1e, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x10, 0x0, 0x0, 0x0, {[@window={0x3, 0x3}]}}}}}}}}, 0x0)

42.900696ms ago: executing program 0 (id=7875):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001280)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES32], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00220f0000005b574e69622bf85eda07b3"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f00000002c0)={0x3, 0x100, 0x0, 0x6, 0x0, 0xa02})

42.68913ms ago: executing program 4 (id=7876):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x44, r2, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

0s ago: executing program 5 (id=7877):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = socket$kcm(0x2, 0x3, 0x2)
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8916, &(0x7f0000000040)={'wlan1\x00', @random="0200ac7f7f00"})
ioctl$SIOCSIFHWADDR(r0, 0x8916, &(0x7f0000000040)={'veth0_to_bond\x00', @random="0200ac7f7f00"})

kernel console output (not intermixed with test programs):

: syz.1.5897 (19023): Using mlock ulimits for SHM_HUGETLB is obsolete
[  350.549979][   T29] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[  350.709041][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  350.709066][   T30] audit: type=1400 audit(1771525942.190:758): avc:  denied  { getopt } for  pid=19079 comm="syz.4.5922" lport=36407 faddr=255.255.255.254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  350.721022][   T29] usb 3-1: Using ep0 maxpacket: 32
[  350.750961][   T29] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  350.759420][   T29] usb 3-1: config 0 has no interface number 0
[  350.767655][   T29] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  350.776887][   T29] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  350.785305][   T29] usb 3-1: Product: syz
[  350.790297][   T29] usb 3-1: Manufacturer: syz
[  350.794899][   T29] usb 3-1: SerialNumber: syz
[  350.801265][   T29] usb 3-1: config 0 descriptor??
[  350.809277][   T29] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  351.004880][T19054] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  351.014859][T19054] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  351.027548][   T29] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  351.040537][   T29] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  351.435154][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  351.443021][   T24] usb 3-1: USB disconnect, device number 50
[  351.465868][   T24] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  351.480779][   T24] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  351.502195][   T24] quatech2 3-1:0.51: device disconnected
[  352.752875][T19152] netlink: 'syz.3.5949': attribute type 3 has an invalid length.
[  352.861994][T19154] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  352.970787][   T30] audit: type=1400 audit(1771525944.562:759): avc:  denied  { watch } for  pid=19157 comm="syz.2.5952" path="/1175/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  353.005989][   T30] audit: type=1400 audit(1771525944.562:760): avc:  denied  { watch_sb watch_reads } for  pid=19157 comm="syz.2.5952" path="/1175/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1
[  353.168162][T19172] netlink: 'syz.3.5956': attribute type 1 has an invalid length.
[  353.198186][T19172] netlink: 16150 bytes leftover after parsing attributes in process `syz.3.5956'.
[  353.637763][   T30] audit: type=1800 audit(1771525945.276:761): pid=19183 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.5962" name="nullb0" dev="tmpfs" ino=2259 res=0 errno=0
[  354.076931][   T30] audit: type=1400 audit(1771525945.738:762): avc:  denied  { mounton } for  pid=19210 comm="syz.1.5975" path="/1297/file0" dev="tmpfs" ino=6607 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  354.150480][T19217] netlink: 'syz.1.5975': attribute type 8 has an invalid length.
[  354.363977][   T30] audit: type=1400 audit(1771525946.022:763): avc:  denied  { read } for  pid=19231 comm="syz.3.5983" path="socket:[59930]" dev="sockfs" ino=59930 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1
[  354.406606][   T30] audit: type=1400 audit(1771525946.074:764): avc:  denied  { listen } for  pid=19233 comm="syz.1.5984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  354.553344][   T30] audit: type=1400 audit(1771525946.232:765): avc:  denied  { ioctl } for  pid=19244 comm="syz.2.5989" path="socket:[59952]" dev="sockfs" ino=59952 ioctlcmd=0x89e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  355.479872][   T30] audit: type=1400 audit(1771525947.208:766): avc:  denied  { remount } for  pid=19292 comm="syz.0.6010" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  355.559685][T19298] binder: 19296:19298 ioctl c0306201 200000000040 returned -14
[  355.708259][   T24] kernel read not supported for file /vcs (pid: 24 comm: kworker/1:0)
[  356.146775][   T30] audit: type=1326 audit(1771525947.901:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19326 comm="syz.4.6026" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f755b19c629 code=0x0
[  356.251201][T19334] batman_adv: batadv0: Removing interface: macvlan1
[  356.407994][    T9] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[  356.561741][    T9] usb 3-1: Using ep0 maxpacket: 32
[  356.578428][    T9] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  356.594483][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.609006][   T30] audit: type=1326 audit(1771525948.384:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19349 comm="syz.1.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac9f79c629 code=0x7ffc0000
[  356.636145][    T9] usb 3-1: config 0 descriptor??
[  356.643996][   T30] audit: type=1326 audit(1771525948.394:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19349 comm="syz.1.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac9f79c629 code=0x7ffc0000
[  356.672849][   T30] audit: type=1326 audit(1771525948.394:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19349 comm="syz.1.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac9f79c629 code=0x7ffc0000
[  356.696984][   T30] audit: type=1326 audit(1771525948.394:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19349 comm="syz.1.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac9f79c629 code=0x7ffc0000
[  356.721288][   T30] audit: type=1326 audit(1771525948.394:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19349 comm="syz.1.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac9f79c629 code=0x7ffc0000
[  356.747017][   T30] audit: type=1326 audit(1771525948.394:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19349 comm="syz.1.6036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac9f79c629 code=0x7ffc0000
[  356.829815][   T30] audit: type=1400 audit(1771525948.625:774): avc:  denied  { watch_sb } for  pid=19359 comm="syz.1.6041" path="/1315" dev="tmpfs" ino=6693 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  356.871283][    T9] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  356.888925][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  356.899838][    T9] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  356.907198][    T9] usb 3-1: media controller created
[  356.933438][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  357.171546][T19379] input: syz1 as /devices/virtual/input/input42
[  357.656455][    T9] az6027: usb out operation failed. (-71)
[  357.662348][    T9] stb0899_attach: Driver disabled by Kconfig
[  357.669190][    T9] az6027: no front-end attached
[  357.669190][    T9] 
[  357.677505][    T9] az6027: usb out operation failed. (-71)
[  357.683242][    T9] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  357.700335][    T9] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input43
[  357.751780][    T9] dvb-usb: schedule remote query interval to 400 msecs.
[  357.768586][    T9] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  357.805807][    T9] usb 3-1: USB disconnect, device number 51
[  357.864062][    T9] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  358.414570][    T9] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[  358.565313][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  358.576541][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  358.582079][T19456] netlink: 276 bytes leftover after parsing attributes in process `syz.3.6085'.
[  358.597397][    T9] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  358.600317][T19456] netlink: 276 bytes leftover after parsing attributes in process `syz.3.6085'.
[  358.607102][    T9] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  358.623912][    T9] usb 3-1: Manufacturer: syz
[  358.630824][    T9] usb 3-1: config 0 descriptor??
[  358.646433][   T29] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[  358.790011][   T29] usb 5-1: Using ep0 maxpacket: 32
[  358.796551][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  358.807539][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  358.817666][   T29] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  358.827061][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.838368][   T29] usb 5-1: config 0 descriptor??
[  359.251067][   T29] savu 0003:1E7D:2D5A.0035: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[  359.498416][ T1568] usb 5-1: USB disconnect, device number 59
[  359.615893][    T9] uclogic 0003:256C:006D.0034: failed retrieving string descriptor #100: -71
[  359.624988][    T9] uclogic 0003:256C:006D.0034: failed retrieving pen parameters: -71
[  359.633263][    T9] uclogic 0003:256C:006D.0034: failed probing pen v1 parameters: -71
[  359.641537][    T9] uclogic 0003:256C:006D.0034: failed probing parameters: -71
[  359.649160][    T9] uclogic 0003:256C:006D.0034: probe with driver uclogic failed with error -71
[  359.665272][    T9] usb 3-1: USB disconnect, device number 52
[  359.868229][T19478] fuse: Bad value for 'fd'
[  360.320787][T19504] syzkaller1: entered promiscuous mode
[  360.372795][T19504] syzkaller1: entered allmulticast mode
[  360.575502][T19512] SELinux: failed to load policy
[  360.857107][T19541] syzkaller1: entered promiscuous mode
[  360.862748][T19541] syzkaller1: entered allmulticast mode
[  361.275769][T19562] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6135'.
[  361.549493][   T12] Bluetooth: (null): Invalid header checksum
[  361.650486][ T1087] Bluetooth: (null): Too short H5 packet
[  361.659725][ T1087] Bluetooth: (null): Invalid header checksum
[  362.624362][T19645] netlink: 64 bytes leftover after parsing attributes in process `syz.3.6170'.
[  362.771083][   T29] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[  362.855717][T19657] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  362.902652][T19659] netlink: 'syz.4.6179': attribute type 29 has an invalid length.
[  362.911997][T19659] netlink: 'syz.4.6179': attribute type 29 has an invalid length.
[  362.921049][T19659] netlink: 500 bytes leftover after parsing attributes in process `syz.4.6179'.
[  362.931530][   T29] usb 3-1: config index 0 descriptor too short (expected 45, got 36)
[  362.940451][   T29] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  362.952219][   T29] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  362.968553][   T29] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  362.980048][   T29] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  362.993566][   T29] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  363.003352][   T29] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.029370][   T29] usb 3-1: config 0 descriptor??
[  363.035028][T19635] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  363.438144][   T29] plantronics 0003:047F:FFFF.0036: reserved main item tag 0xd
[  363.438516][ T1568] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  363.460183][   T29] plantronics 0003:047F:FFFF.0036: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  363.591555][ T1568] usb 5-1: Using ep0 maxpacket: 32
[  363.600863][ T1568] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  363.619255][ T1568] usb 5-1: config 0 has no interfaces?
[  363.626509][ T1568] usb 5-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[  363.641206][ T1568] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  363.649384][ T1568] usb 5-1: Product: syz
[  363.653542][ T1568] usb 5-1: Manufacturer: syz
[  363.658305][ T1568] usb 5-1: SerialNumber: syz
[  363.665631][ T1568] usb 5-1: config 0 descriptor??
[  363.735911][   T29] usb 3-1: USB disconnect, device number 53
[  363.889685][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  363.896595][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  363.989771][   T29] usb 5-1: USB disconnect, device number 60
[  364.204885][T19703] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6198'.
[  364.213976][T19703] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6198'.
[  364.518724][T19719] raw_sendmsg: syz.3.6203 forgot to set AF_INET. Fix it!
[  365.361494][T19755] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  365.663487][   T30] audit: type=1400 audit(1771525957.895:775): avc:  denied  { write } for  pid=19770 comm="syz.1.6227" path="socket:[62147]" dev="sockfs" ino=62147 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  366.009810][    T9] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[  366.162048][    T9] usb 5-1: Using ep0 maxpacket: 32
[  366.188522][    T9] usb 5-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  366.222089][    T9] usb 5-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  366.261774][    T9] usb 5-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  366.288671][    T9] usb 5-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  366.317403][    T9] usb 5-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  366.326964][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.342152][    T9] usb 5-1: Product: syz
[  366.346595][    T9] usb 5-1: Manufacturer: syz
[  366.351244][    T9] usb 5-1: SerialNumber: syz
[  366.366484][    C0] imon 5-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  366.376843][    T9] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:155.0/input/input45
[  366.561704][    T9] imon:send_packet: packet tx failed (-71)
[  366.581198][    T9] imon 5-1:155.0: panel buttons/knobs setup failed
[  366.589515][ T1568] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[  366.597193][    T9] imon 5-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  366.605661][    T9]  (id 0x00)
[  366.650345][    T9] rc_core: IR keymap rc-imon-pad not found
[  366.656194][    T9] Registered IR keymap rc-empty
[  366.661676][    T9] imon 5-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  366.672847][    T9] imon 5-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  366.683991][    T9] imon:send_packet: packet tx failed (-71)
[  366.705128][    T9] imon 5-1:155.0: remote input dev register failed
[  366.712455][    T9] imon 5-1:155.0: imon_init_intf0: rc device setup failed
[  366.746299][    T9] imon 5-1:155.0: unable to initialize intf0, err 0
[  366.762965][ T1568] usb 3-1: Using ep0 maxpacket: 32
[  366.770729][    T9] imon:imon_probe: failed to initialize context!
[  366.779114][    T9] imon 5-1:155.0: unable to register, err -19
[  366.786553][ T1568] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  366.800624][ T1568] usb 3-1: config 0 has no interface number 0
[  366.807068][    T9] usb 5-1: USB disconnect, device number 61
[  366.808379][T19814] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6245'.
[  366.827116][ T1568] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  366.846180][ T1568] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.859014][ T1568] usb 3-1: Product: syz
[  366.863187][ T1568] usb 3-1: Manufacturer: syz
[  366.868733][ T1568] usb 3-1: SerialNumber: syz
[  366.883673][ T1568] usb 3-1: config 0 descriptor??
[  366.895934][ T1568] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  366.945157][T19818] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.6249'.
[  367.012917][T19822] netlink: 7 bytes leftover after parsing attributes in process `syz.3.6250'.
[  367.091906][ T1568] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  367.111033][ T1568] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  367.304493][T19838] netlink: 360 bytes leftover after parsing attributes in process `syz.1.6258'.
[  367.475041][    C0] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  367.486628][    T9] usb 3-1: USB disconnect, device number 54
[  367.502947][    T9] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  367.536396][    T9] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  367.560100][    T9] quatech2 3-1:0.51: device disconnected
[  367.711031][ T1568] IPVS: starting estimator thread 0...
[  367.753505][   T30] audit: type=1400 audit(1771525960.099:776): avc:  denied  { remount } for  pid=19860 comm="syz.1.6269" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  367.810269][T19864] IPVS: using max 45 ests per chain, 108000 per kthread
[  370.449349][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  370.619124][T19985] netlink: 360 bytes leftover after parsing attributes in process `syz.2.6320'.
[  370.637881][T19987] netlink: 165 bytes leftover after parsing attributes in process `syz.3.6321'.
[  370.735282][T19991] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6323'.
[  370.820183][   T29] usb 5-1: new low-speed USB device number 62 using dummy_hcd
[  370.991749][   T29] usb 5-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 10
[  371.020017][   T29] usb 5-1: config 32 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 255, setting to 8
[  371.035013][   T29] usb 5-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  371.062293][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.074050][T19980] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  371.169100][T20012] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6331'.
[  371.181807][T20012] netlink: 'syz.3.6331': attribute type 30 has an invalid length.
[  371.210890][ T1087] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  371.211234][T20012] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6331'.
[  371.289124][T19980] netlink: 'syz.4.6318': attribute type 1 has an invalid length.
[  371.324959][T19980] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6318'.
[  371.372720][   T29] usb 5-1: string descriptor 0 read error: -71
[  371.389525][   T29] hub 5-1:32.0: USB hub found
[  371.403894][   T29] hub 5-1:32.0: config failed, can't read hub descriptor (err -22)
[  371.447231][   T30] audit: type=1326 audit(1771525964.967:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20027 comm="syz.0.6340" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fac5a99c629 code=0x0
[  371.519856][   T29] usb 5-1: USB disconnect, device number 62
[  372.253045][T20051] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  372.262598][    T9] IPVS: starting estimator thread 0...
[  372.382602][T20058] IPVS: using max 42 ests per chain, 100800 per kthread
[  372.462266][   T30] audit: type=1800 audit(1771525966.038:778): pid=20070 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6355" name="nullb0" dev="tmpfs" ino=2259 res=0 errno=0
[  372.549430][T20072] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6356'.
[  372.670246][   T30] audit: type=1400 audit(1771525966.258:779): avc:  denied  { write } for  pid=20080 comm="syz.4.6360" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  372.955836][T20092] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  373.125352][    T9] usb 5-1: new low-speed USB device number 63 using dummy_hcd
[  373.269743][    T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  373.286285][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  373.298136][    T9] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  373.310360][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  373.321860][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  373.333911][    T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  373.343720][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  373.353034][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  373.364579][    T9] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  373.376984][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  373.388405][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  373.400688][    T9] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  373.408353][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  373.420059][    T9] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  373.432019][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  373.443507][    T9] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  373.457066][    T9] usb 5-1: string descriptor 0 read error: -22
[  373.463480][    T9] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  373.472830][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.489444][    T9] adutux 5-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  373.692138][T20090] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  373.702726][T20090] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  373.712090][    T9] usb 5-1: USB disconnect, device number 63
[  373.881331][T20124] netlink: 'syz.3.6378': attribute type 29 has an invalid length.
[  373.890798][T20124] netlink: 'syz.3.6378': attribute type 29 has an invalid length.
[  373.917385][T20124] netlink: 500 bytes leftover after parsing attributes in process `syz.3.6378'.
[  374.066829][T20138] dummy0: entered allmulticast mode
[  374.088972][T20136] dummy0: left allmulticast mode
[  374.404291][   T30] audit: type=1326 audit(1771525968.075:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20142 comm="syz.1.6388" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fac9f79c629 code=0x0
[  374.917439][T20177] ptrace attach of "./syz-executor exec"[20178] was attempted by "./syz-executor exec"[20177]
[  375.211623][ T5865] IPVS: starting estimator thread 0...
[  375.215216][T20182] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  375.317439][T20184] IPVS: using max 43 ests per chain, 103200 per kthread
[  375.345267][T20186] support for cryptoloop has been removed.  Use dm-crypt instead.
[  375.788202][T20210] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6418'.
[  375.891006][T20210] bond0: (slave bond_slave_1): Releasing backup interface
[  376.136050][T20221] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6422'.
[  376.232678][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  376.402584][    T9] usb 5-1: new high-speed USB device number 64 using dummy_hcd
[  376.574773][    T9] usb 5-1: Using ep0 maxpacket: 32
[  376.590939][    T9] usb 5-1: config 2 has an invalid interface number: 88 but max is 0
[  376.611902][    T9] usb 5-1: config 2 has no interface number 0
[  376.618067][    T9] usb 5-1: config 2 interface 88 altsetting 7 bulk endpoint 0x6 has invalid maxpacket 256
[  376.640121][    T9] usb 5-1: config 2 interface 88 has no altsetting 0
[  376.675057][    T9] usb 5-1: New USB device found, idVendor=0557, idProduct=2009, bcdDevice=c7.1e
[  376.684410][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.696719][   T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  376.712024][    T9] usb 5-1: Product: syz
[  376.716208][    T9] usb 5-1: Manufacturer: syz
[  376.738682][    T9] usb 5-1: SerialNumber: syz
[  376.769183][T20223] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  376.986919][T20223] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  377.785536][    T9] asix 5-1:2.88 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  377.797176][    T9] asix 5-1:2.88 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0080: ffffffb9
[  377.810959][    T9] asix 5-1:2.88: probe with driver asix failed with error -71
[  377.830569][    T9] usb 5-1: USB disconnect, device number 64
[  377.857784][T20292] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  377.934227][   T30] audit: type=1400 audit(1771525971.770:781): avc:  denied  { ioctl } for  pid=20295 comm="syz.0.6455" path="socket:[63280]" dev="sockfs" ino=63280 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  377.993534][ T5984] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[  378.166769][ T5984] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  378.177767][ T5984] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  378.187777][ T5984] usb 3-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  378.196831][ T5984] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.211232][ T5984] usb 3-1: config 0 descriptor??
[  378.890096][T20342] process '/newroot/1565/file0' started with executable stack
[  379.134543][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  379.189029][    T9] usb 3-1: USB disconnect, device number 55
[  379.333518][T20371] overlayfs: failed to clone upperpath
[  379.513577][   T30] audit: type=1400 audit(1771525973.439:782): avc:  denied  { accept } for  pid=20380 comm="syz.1.6492" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  379.747668][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  379.757149][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  379.765816][ T5984] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  379.774373][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  379.831882][T20409] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6506'.
[  379.853415][T20409] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6506'.
[  380.068132][T20424] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6511'.
[  380.194435][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  380.336949][T20441] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6519'.
[  380.736873][ T5984] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  380.956113][   T30] audit: type=1326 audit(1771525974.930:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20475 comm="syz.4.6534" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f755b19c629 code=0x0
[  381.234850][T20504] netlink: 4768 bytes leftover after parsing attributes in process `syz.1.6544'.
[  381.260018][T20504] netlink: 4768 bytes leftover after parsing attributes in process `syz.1.6544'.
[  381.533147][T20503] gfs2: gfs2 mount does not exist
[  381.572191][T20524] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  381.578734][T20524] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  381.601927][T20524] vhci_hcd vhci_hcd.0: Device attached
[  381.720860][ T5984] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  381.822911][    T9] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  381.860760][ T5980] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[  382.027540][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  382.036854][ T5980] usb 3-1: config 0 has no interfaces?
[  382.045515][ T5980] usb 3-1: New USB device found, idVendor=0df6, idProduct=0056, bcdDevice=a0.b5
[  382.067829][ T5980] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.089045][ T5980] usb 3-1: config 0 descriptor??
[  382.175709][ T1143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  382.231837][   T30] audit: type=1400 audit(1771525976.284:784): avc:  denied  { read } for  pid=20554 comm="syz.3.6569" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1
[  382.307691][T20527] usb 37-1: recv xbuf, 0
[  382.312112][ T5980] usb 3-1: string descriptor 0 read error: -71
[  382.346804][T19644] vhci_hcd vhci_hcd.2: stop threads
[  382.352039][T19644] vhci_hcd vhci_hcd.2: release socket
[  382.358366][ T5980] usb 3-1: USB disconnect, device number 56
[  382.374127][T19644] vhci_hcd vhci_hcd.2: disconnect device
[  382.403786][    T9] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  382.708390][ T5984] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  383.013003][ T5984] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[  383.089807][ T5865] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[  383.098434][ T1568] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  383.166064][ T5984] usb 5-1: Using ep0 maxpacket: 8
[  383.180035][ T5984] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  383.191909][ T5984] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  383.204093][ T5984] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  383.221627][ T5984] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  383.232393][ T5984] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  383.248019][ T5984] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  383.259413][ T5984] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  383.286923][ T5865] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  383.302234][ T5865] usb 3-1: config 0 interface 0 has no altsetting 0
[  383.310640][ T5865] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  383.320028][ T5865] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  383.328293][ T5865] usb 3-1: Product: syz
[  383.332519][ T5865] usb 3-1: Manufacturer: syz
[  383.338277][ T5865] usb 3-1: SerialNumber: syz
[  383.344763][ T5865] usb 3-1: config 0 descriptor??
[  383.354314][ T5865] usb 3-1: selecting invalid altsetting 0
[  383.467672][ T5984] usb 5-1: usb_control_msg returned -32
[  383.473820][ T5984] usbtmc 5-1:16.0: can't read capabilities
[  383.547883][ T5865] usb 3-1: USB disconnect, device number 57
[  383.708758][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  383.807532][T20586] usbtmc 5-1:16.0: INITIATE_ABORT_BULK_OUT returned 0
[  384.002092][ T5865] usb 5-1: USB disconnect, device number 65
[  384.020503][T20588] netlink: 212916 bytes leftover after parsing attributes in process `syz.1.6592'.
[  384.083933][T20593] ������: renamed from wg2 (while UP)
[  384.505305][T20615] 9pnet: p9_errstr2errno: server reported unknown error 0x000
[  384.693598][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  384.921110][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  385.076418][T20651] loop8: detected capacity change from 0 to 8
[  385.086720][T13396] Dev loop8: unable to read RDB block 8
[  385.092856][T13396]  loop8: unable to read partition table
[  385.098804][T13396] loop8: partition table beyond EOD, truncated
[  385.110863][T20651] Dev loop8: unable to read RDB block 8
[  385.119975][T20651]  loop8: unable to read partition table
[  385.125812][T20651] loop8: partition table beyond EOD, truncated
[  385.135394][T20651] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[  385.232650][T19644] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  385.241296][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  385.294430][T20661] netlink: 532 bytes leftover after parsing attributes in process `syz.3.6615'.
[  385.667319][ T5813] Bluetooth: hci1: unexpected event for opcode 0x080d
[  386.184994][ T5984] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[  386.359592][ T5984] usb 3-1: config 0 interface 0 altsetting 251 has an endpoint descriptor with address 0x24, changing to 0x4
[  386.403873][ T5984] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x4 has an invalid bInterval 0, changing to 7
[  386.432212][ T5984] usb 3-1: config 0 interface 0 has no altsetting 0
[  386.433653][   T30] audit: type=1400 audit(1771525980.693:785): avc:  denied  { create } for  pid=20701 comm="syz.4.6633" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=blk_file permissive=1
[  386.463771][ T5984] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  386.510686][ T5984] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  386.522153][ T5984] usb 3-1: Product: syz
[  386.532516][ T5984] usb 3-1: Manufacturer: syz
[  386.540198][ T5984] usb 3-1: SerialNumber: syz
[  386.559369][ T5984] usb 3-1: config 0 descriptor??
[  386.579942][ T5984] usb 3-1: selecting invalid altsetting 0
[  386.848964][T20711] loop8: detected capacity change from 0 to 7
[  386.867679][T20711] Dev loop8: unable to read RDB block 7
[  386.885118][T20711]  loop8: unable to read partition table
[  386.912836][T20711] loop8: partition table beyond EOD, truncated
[  386.929334][T20711] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[  387.056170][   T29] usb 3-1: USB disconnect, device number 58
[  387.137073][   T30] audit: type=1400 audit(1771525981.439:786): avc:  denied  { add_name } for  pid=20718 comm="syz.1.6642" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  387.140645][   T30] audit: type=1400 audit(1771525981.449:787): avc:  denied  { create } for  pid=20718 comm="syz.1.6642" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  387.278001][T20724] netlink: 212348 bytes leftover after parsing attributes in process `syz.1.6643'.
[  387.406325][T20729] syzkaller1: entered promiscuous mode
[  387.422128][T20729] syzkaller1: entered allmulticast mode
[  387.843391][ T5865] net_ratelimit: 3 callbacks suppressed
[  387.843407][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  387.861248][ T1143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  387.883531][T20743] netlink: 212348 bytes leftover after parsing attributes in process `syz.1.6652'.
[  387.922603][T20743] netlink: ct family unspecified
[  388.100958][    T9] usb 5-1: new high-speed USB device number 66 using dummy_hcd
[  388.133997][T20755] syzkaller1: entered promiscuous mode
[  388.151108][T20755] syzkaller1: entered allmulticast mode
[  388.170545][T20757] netlink: 566 bytes leftover after parsing attributes in process `syz.0.6660'.
[  388.255291][    T9] usb 5-1: config 1 has an invalid interface number: 7 but max is 0
[  388.263748][    T9] usb 5-1: config 1 has no interface number 0
[  388.282565][    T9] usb 5-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[  388.327953][    T9] usb 5-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  388.355263][    T9] usb 5-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  388.389266][    T9] usb 5-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  388.398882][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  388.416939][    T9] usb 5-1: Product: syz
[  388.442548][    T9] usb 5-1: Manufacturer: syz
[  388.447176][    T9] usb 5-1: SerialNumber: syz
[  388.463930][T20737] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  388.560056][   T30] audit: type=1326 audit(1771525982.929:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20777 comm="syz.2.6669" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f323319c629 code=0x0
[  388.678827][T20737] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  388.919211][    T9] sierra_net 5-1:1.7 wwan0: register 'sierra_net' at usb-dummy_hcd.4-1, Sierra Wireless USB-to-WWAN Modem, 00:00:00:00:02:07
[  389.533448][    T9] usb 5-1: USB disconnect, device number 66
[  389.563702][    T9] sierra_net 5-1:1.7 wwan0: unregister 'sierra_net' usb-dummy_hcd.4-1, Sierra Wireless USB-to-WWAN Modem
[  389.762028][    T9] sierra_net 5-1:1.7 wwan0 (unregistered): usb_control_msg failed, status -19
[  389.947103][   T30] audit: type=1400 audit(1771525984.389:789): avc:  denied  { read } for  pid=20830 comm="syz.2.6688" path="socket:[66352]" dev="sockfs" ino=66352 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  390.227970][T20848] syzkaller1: entered promiscuous mode
[  390.234239][T20848] syzkaller1: entered allmulticast mode
[  390.605102][T20870] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6704'.
[  390.643773][T20870] netlink: 'syz.0.6704': attribute type 7 has an invalid length.
[  390.661466][T20870] netlink: 'syz.0.6704': attribute type 8 has an invalid length.
[  390.670765][T20870] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6704'.
[  390.710743][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  391.073585][ T5865] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[  391.227016][ T5865] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  391.249579][ T5865] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  391.262686][ T5865] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  391.277923][ T5865] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  391.288699][ T5865] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  391.297872][ T5865] usb 3-1: Product: syz
[  391.302632][ T5865] usb 3-1: Manufacturer: syz
[  391.307232][ T5865] usb 3-1: SerialNumber: syz
[  391.574491][ T5865] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 59 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  391.608328][T20927] netlink: 400 bytes leftover after parsing attributes in process `syz.4.6722'.
[  391.794263][ T5865] usb 3-1: USB disconnect, device number 59
[  391.807119][ T5865] usblp0: removed
[  391.930789][    T9] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[  392.119778][    T9] usb 5-1: Using ep0 maxpacket: 32
[  392.126395][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  392.148776][    T9] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  392.167474][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  392.175559][    T9] usb 5-1: Product: syz
[  392.186605][    T9] usb 5-1: Manufacturer: syz
[  392.191229][    T9] usb 5-1: SerialNumber: syz
[  392.211136][    T9] usb 5-1: config 0 descriptor??
[  392.279230][   T30] audit: type=1400 audit(1771525986.835:790): avc:  denied  { read } for  pid=20939 comm="syz.0.6729" name="snapshot" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  392.650602][    T9] gs_usb 5-1:0.0: Configuring for 242 interfaces
[  392.782916][T19644] bridge_slave_1: left allmulticast mode
[  392.797819][T19644] bridge_slave_1: left promiscuous mode
[  392.805646][T19644] bridge0: port 2(bridge_slave_1) entered disabled state
[  392.832741][T19644] bridge_slave_0: left allmulticast mode
[  392.839027][T19644] bridge_slave_0: left promiscuous mode
[  392.849380][T19644] bridge0: port 1(bridge_slave_0) entered disabled state
[  393.116179][T19644] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  393.130796][T19644] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  393.149490][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  393.162698][T19644] bond0 (unregistering): Released all slaves
[  393.235476][    T9] gs_usb 5-1:0.0: Couldn't get bit timing const for channel 1 (-EPROTO)
[  393.340483][    T9] gs_usb 5-1:0.0: probe with driver gs_usb failed with error -71
[  393.359979][    T9] usb 5-1: USB disconnect, device number 67
[  393.598745][    T9] libceph: connect (1)[c::]:6789 error -22
[  393.608860][ T1035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  393.610965][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  393.632770][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  393.643879][T20580] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  393.663831][T19644] hsr_slave_0: left promiscuous mode
[  393.671199][T20988] ceph: No mds server is up or the cluster is laggy
[  393.679770][T19644] hsr_slave_1: left promiscuous mode
[  393.685582][    T9] libceph: connect (1)[c::]:6789 error -22
[  393.693371][T19644] batman_adv: batadv0: Removing interface: batadv_slave_0
[  393.701824][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  393.726574][T19644] batman_adv: batadv0: Removing interface: batadv_slave_1
[  394.117066][T19644] dummy0 (unregistering): left allmulticast mode
[  394.301410][T20940] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  394.308453][ T5813] Bluetooth: hci0: command 0x0406 tx timeout
[  394.443353][T19644] IPVS: stop unused estimator thread 0...
[  394.455585][   T30] audit: type=1400 audit(1771525989.113:791): avc:  denied  { mount } for  pid=21031 comm="syz.3.6754" name="/" dev="autofs" ino=66705 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  394.554638][T21037] netlink: 'syz.3.6755': attribute type 83 has an invalid length.
[  395.097030][T20940] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  395.115278][T20940] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  395.124114][T20940] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  395.136137][T20940] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  395.144175][T20940] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  395.153043][T20940] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  395.160359][T20940] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  395.219245][   T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  395.231366][   T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  395.242024][   T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  395.263982][   T51] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  395.273802][   T51] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  395.295097][   T30] audit: type=1400 audit(1771525990.005:792): avc:  denied  { mounton } for  pid=20947 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  395.593386][T20947] chnl_net:caif_netlink_parms(): no params data found
[  395.780585][T20947] bridge0: port 1(bridge_slave_0) entered blocking state
[  395.796264][T20947] bridge0: port 1(bridge_slave_0) entered disabled state
[  395.805488][T20947] bridge_slave_0: entered allmulticast mode
[  395.812989][T20947] bridge_slave_0: entered promiscuous mode
[  395.824142][T20947] bridge0: port 2(bridge_slave_1) entered blocking state
[  395.831816][T20947] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.840199][T20947] bridge_slave_1: entered allmulticast mode
[  395.847675][T20947] bridge_slave_1: entered promiscuous mode
[  395.878503][T20947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  395.890547][T20947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  395.922797][T20947] team0: Port device team_slave_0 added
[  395.969053][T20947] team0: Port device team_slave_1 added
[  396.062999][T20947] batman_adv: batadv0: Adding interface: batadv_slave_0
[  396.073368][T20947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  396.100716][   T30] audit: type=1326 audit(1771525990.824:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21112 comm="syz.3.6774" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f051a99c629 code=0x0
[  396.131321][T20947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  396.143763][T20947] batman_adv: batadv0: Adding interface: batadv_slave_1
[  396.160311][T20947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  396.244105][T20947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  396.282080][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  396.305444][   T29] libceph: connect (1)[c::]:6789 error -101
[  396.311843][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  396.354119][T20947] hsr_slave_0: entered promiscuous mode
[  396.369136][T20947] hsr_slave_1: entered promiscuous mode
[  396.379206][T20947] debugfs: 'hsr0' already exists in 'hsr'
[  396.392366][T20947] Cannot create hsr debugfs directory
[  396.516443][ T5865] kernel write not supported for file bpf-prog (pid: 5865 comm: kworker/0:4)
[  396.568252][   T29] libceph: connect (1)[c::]:6789 error -101
[  396.574428][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  396.707966][T20947] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  396.718949][T20947] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  396.731367][T20947] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  396.742379][T20947] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  396.838037][T20947] 8021q: adding VLAN 0 to HW filter on device bond0
[  396.855120][T21115] ceph: No mds server is up or the cluster is laggy
[  396.859946][T20947] 8021q: adding VLAN 0 to HW filter on device team0
[  396.877690][T19644] bridge0: port 1(bridge_slave_0) entered blocking state
[  396.884833][T19644] bridge0: port 1(bridge_slave_0) entered forwarding state
[  396.910833][T19644] bridge0: port 2(bridge_slave_1) entered blocking state
[  396.918009][T19644] bridge0: port 2(bridge_slave_1) entered forwarding state
[  397.035649][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  397.111193][   T51] Bluetooth: hci4: command 0x0406 tx timeout
[  397.117302][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  397.263400][   T51] Bluetooth: hci2: command tx timeout
[  397.309479][T20947] 8021q: adding VLAN 0 to HW filter on device batadv0
[  397.633590][T20947] veth0_vlan: entered promiscuous mode
[  397.646804][T20947] veth1_vlan: entered promiscuous mode
[  397.684197][T20947] veth0_macvtap: entered promiscuous mode
[  397.694622][T20947] veth1_macvtap: entered promiscuous mode
[  397.721946][T20947] batman_adv: batadv0: Interface activated: batadv_slave_0
[  397.733152][T20947] batman_adv: batadv0: Interface activated: batadv_slave_1
[  397.767524][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  397.778169][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  397.786961][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  397.810721][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.254107][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  398.260178][T21117] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  398.298342][   T30] audit: type=1400 audit(1771525993.154:794): avc:  denied  { create } for  pid=21177 comm="syz.3.6792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  398.341295][   T30] audit: type=1400 audit(1771525993.186:795): avc:  denied  { sys_admin } for  pid=21177 comm="syz.3.6792" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  398.636081][T19644] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  398.702399][T21194] netlink: 92 bytes leftover after parsing attributes in process `syz.4.6797'.
[  398.985773][T21117] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  398.993281][T21117] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  399.001258][T21117] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  399.016707][T21117] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  399.027495][T21117] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  399.038616][T21117] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  399.082739][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  399.103596][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  399.190716][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  399.200839][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  399.232616][   T30] audit: type=1400 audit(1771525994.120:796): avc:  denied  { mounton } for  pid=20947 comm="syz-executor" path="/root/syzkaller.LkU6xR/syz-tmp" dev="sda1" ino=2047 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  399.274540][   T30] audit: type=1400 audit(1771525994.131:797): avc:  denied  { mounton } for  pid=20947 comm="syz-executor" path="/root/syzkaller.LkU6xR/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=68724 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  399.407469][   T30] audit: type=1400 audit(1771525994.309:798): avc:  denied  { bind } for  pid=21222 comm="syz.3.6812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  399.503456][   T30] audit: type=1400 audit(1771525994.372:799): avc:  denied  { mounton } for  pid=20947 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2786 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  399.576231][   T30] audit: type=1400 audit(1771525994.372:800): avc:  denied  { mounton } for  pid=20947 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  399.968096][T21258] TCP: tcp_parse_options: Illegal window scaling value 16 > 14 received
[  400.235202][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  400.612236][T21289] netlink: 'syz.5.6838': attribute type 1 has an invalid length.
[  400.621249][T21289] netlink: 'syz.5.6838': attribute type 2 has an invalid length.
[  400.921379][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  400.921606][ T5813] Bluetooth: hci4: command 0x0406 tx timeout
[  400.997218][ T5813] Bluetooth: hci2: command 0x040f tx timeout
[  401.064427][    T9] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  401.121425][ T5865] usb 3-1: new high-speed USB device number 60 using dummy_hcd
[  401.206884][    T9] usb 6-1: Using ep0 maxpacket: 16
[  401.218569][    T9] usb 6-1: config 1 has an invalid interface number: 105 but max is 0
[  401.228631][    T9] usb 6-1: config 1 has no interface number 0
[  401.234794][    T9] usb 6-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  401.246223][    T9] usb 6-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  401.257732][    T9] usb 6-1: config 1 interface 105 has no altsetting 0
[  401.268420][    T9] usb 6-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  401.278261][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  401.292782][    T9] usb 6-1: Product: syz
[  401.298321][ T5865] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  401.310976][    T9] usb 6-1: Manufacturer: syz
[  401.315825][ T5865] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  401.331516][    T9] usb 6-1: SerialNumber: syz
[  401.341360][ T5865] usb 3-1: config 0 descriptor??
[  401.348498][T21302] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  401.359731][T21302] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  401.366827][ T5865] cp210x 3-1:0.0: cp210x converter detected
[  401.573183][    C1] sd 0:0:1:0: [sda] tag#8675 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  401.583653][    C1] sd 0:0:1:0: [sda] tag#8675 CDB: Read(6) 08 00 00 00 00 00
[  401.738683][ T5865] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[  401.764195][T21302] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  401.771747][T21302] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  401.820230][T21340] batadv_slave_1: entered promiscuous mode
[  401.827339][T21339] batadv_slave_1: left promiscuous mode
[  401.952065][ T5865] usb 3-1: cp210x converter now attached to ttyUSB0
[  402.141016][ T5865] usb 3-1: USB disconnect, device number 60
[  402.165206][ T5865] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  402.187353][ T5865] cp210x 3-1:0.0: device disconnected
[  402.299456][T21352] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6864'.
[  402.372345][    T9] aqc111 6-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[  402.388830][    T9] aqc111 6-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[  402.411225][    T9] aqc111 6-1:1.105 eth5: register 'aqc111' at usb-dummy_hcd.5-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, ce:5c:d7:b5:24:54
[  402.427841][    T9] usb 6-1: USB disconnect, device number 2
[  402.442211][    T9] aqc111 6-1:1.105 eth5: unregister 'aqc111' usb-dummy_hcd.5-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[  402.494761][    T9] aqc111 6-1:1.105 eth5 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[  402.509685][    T9] aqc111 6-1:1.105 eth5 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[  402.520787][    T9] aqc111 6-1:1.105 eth5 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[  402.695595][T21365] netlink: 'syz.2.6871': attribute type 11 has an invalid length.
[  402.978612][ T5813] Bluetooth: hci2: command 0x040f tx timeout
[  403.171911][T21388] syzkaller1: entered promiscuous mode
[  403.185568][T21388] syzkaller1: entered allmulticast mode
[  403.560181][    T9] usb 5-1: new high-speed USB device number 68 using dummy_hcd
[  403.722138][    T9] usb 5-1: Using ep0 maxpacket: 32
[  403.744867][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  403.768993][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  403.781315][    T9] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  403.806745][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  403.829195][    T9] usb 5-1: config 0 descriptor??
[  403.946327][T21424] netlink: 'syz.5.6896': attribute type 4 has an invalid length.
[  403.956372][T21424] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6896'.
[  404.123179][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  404.238260][    T9] ft260 0003:0403:6030.0038: unknown main item tag 0x0
[  404.247235][    T9] ft260 0003:0403:6030.0038: unknown main item tag 0x0
[  404.388457][ T5984] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[  404.425809][    T9] ft260 0003:0403:6030.0038: chip code: 0000 0000
[  404.531618][ T5984] usb 3-1: Using ep0 maxpacket: 32
[  404.538104][ T5984] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  404.549555][ T5984] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  404.559488][ T5984] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  404.568796][ T5984] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  404.581069][ T5984] usb 3-1: config 0 descriptor??
[  404.838375][ T5865] usb 5-1: USB disconnect, device number 68
[  404.853254][T21454] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6908'.
[  404.870251][T21454] bond0: ARP target 8.4.0.0 is already present
[  404.877669][T21454] bond0: option arp_ip_target: invalid value (1032)
[  404.960016][ T5819] Bluetooth: hci2: command 0x040f tx timeout
[  405.009284][ T5984] savu 0003:1E7D:2D5A.0039: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  405.027602][T21461] netlink: 'syz.0.6909': attribute type 4 has an invalid length.
[  405.038432][ T5813] Bluetooth: hci1: command 0x0406 tx timeout
[  405.067014][T21461] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6909'.
[  405.259200][ T5984] usb 3-1: USB disconnect, device number 61
[  405.315557][T21477] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6913'.
[  405.340607][T21476] syzkaller1: entered promiscuous mode
[  405.363930][T21476] syzkaller1: entered allmulticast mode
[  405.385279][T21476] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 324
[  405.751361][   T30] audit: type=1400 audit(1771526000.975:801): avc:  denied  { relabelfrom } for  pid=21493 comm="syz.4.6917" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  405.799961][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  405.821453][   T30] audit: type=1400 audit(1771526000.986:802): avc:  denied  { relabelto } for  pid=21493 comm="syz.4.6917" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  406.018032][T21508] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  406.027428][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  406.085700][T21511] gretap0: entered promiscuous mode
[  406.789449][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  406.942365][   T51] Bluetooth: hci2: command 0x040f tx timeout
[  407.007022][   T30] audit: type=1326 audit(1771526002.298:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21562 comm="syz.5.6940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa81ab9c629 code=0x7ffc0000
[  407.095956][   T30] audit: type=1326 audit(1771526002.298:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21562 comm="syz.5.6940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fa81ab9c629 code=0x7ffc0000
[  407.211089][   T30] audit: type=1400 audit(1771526002.298:805): avc:  denied  { kexec_image_load } for  pid=21562 comm="syz.5.6940" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  407.301377][   T30] audit: type=1326 audit(1771526002.298:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21562 comm="syz.5.6940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa81ab9c629 code=0x7ffc0000
[  407.395398][   T30] audit: type=1326 audit(1771526002.298:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21562 comm="syz.5.6940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa81ab9c629 code=0x7ffc0000
[  407.466527][   T30] audit: type=1326 audit(1771526002.319:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21562 comm="syz.5.6940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7fa81ab9c629 code=0x7ffc0000
[  407.494462][T21587] gretap0: entered promiscuous mode
[  407.512586][   T30] audit: type=1326 audit(1771526002.319:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21562 comm="syz.5.6940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa81ab9c629 code=0x7ffc0000
[  407.579062][   T30] audit: type=1326 audit(1771526002.319:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21562 comm="syz.5.6940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa81ab9c629 code=0x7ffc0000
[  407.699789][T21605] netlink: 'syz.5.6955': attribute type 39 has an invalid length.
[  407.714538][ T5984] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  407.796206][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  407.805523][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  407.820730][  T791] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[  407.994127][  T791] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  408.014234][  T791] usb 3-1: New USB device found, idVendor=5543, idProduct=0781, bcdDevice= 0.00
[  408.034794][  T791] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.036265][T21623] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6960'.
[  408.059726][  T791] usb 3-1: config 0 descriptor??
[  408.477554][  T791] uclogic 0003:5543:0781.003A: unbalanced collection at end of report description
[  408.511901][  T791] uclogic 0003:5543:0781.003A: parse failed
[  408.523381][  T791] uclogic 0003:5543:0781.003A: probe with driver uclogic failed with error -22
[  408.688395][ T5865] usb 3-1: USB disconnect, device number 62
[  408.817569][T21652] overlayfs: failed to clone upperpath
[  408.923611][   T51] Bluetooth: hci2: command 0x040f tx timeout
[  409.001732][  T791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  409.442403][T21679] netlink: 'syz.4.6983': attribute type 39 has an invalid length.
[  409.610409][ T5984] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  409.952968][ T5984] kernel write not supported for file /uinput (pid: 5984 comm: kworker/1:8)
[  410.350233][   T51] Bluetooth: hci2: unexpected event for opcode 0x0406
[  410.533291][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  410.533307][   T30] audit: type=1400 audit(1771526005.993:812): avc:  denied  { append } for  pid=21730 comm="syz.5.7005" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  410.570938][T21735] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  410.612371][   T30] audit: type=1400 audit(1771526006.056:813): avc:  denied  { accept } for  pid=21731 comm="syz.2.7007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  410.828233][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  411.088399][T21759] delete_channel: no stack
[  411.104459][   T30] audit: type=1400 audit(1771526006.602:814): avc:  denied  { setopt } for  pid=21758 comm="syz.0.7019" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  411.142626][   T29] usb 5-1: new high-speed USB device number 69 using dummy_hcd
[  411.325060][   T29] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  411.357097][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  411.383329][   T29] usb 5-1: config 0 descriptor??
[  411.402755][   T29] cp210x 5-1:0.0: cp210x converter detected
[  411.792529][   T29] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32
[  412.003894][   T29] usb 5-1: cp210x converter now attached to ttyUSB0
[  412.200132][   T29] usb 5-1: USB disconnect, device number 69
[  412.218908][   T29] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  412.239902][   T29] cp210x 5-1:0.0: device disconnected
[  412.867141][T21820] netlink: 212324 bytes leftover after parsing attributes in process `syz.2.7046'.
[  413.133226][    T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  413.300498][    T9] usb 6-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  413.309692][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  413.334301][    T9] usb 6-1: config 0 descriptor??
[  413.537314][    T9] udl 6-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  413.757657][    T9] [drm] Initialized udl 0.0.1 for 6-1:0.0 on minor 2
[  413.776456][    T9] [drm] Initialized udl on minor 2
[  413.878434][   T29] usb 5-1: new high-speed USB device number 70 using dummy_hcd
[  413.890394][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  413.899817][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  413.923778][    T9] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  413.944774][    T9] udl 6-1:0.0: [drm] Cannot find any crtc or sizes
[  413.952648][T20580] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  413.960633][T20580] udl 6-1:0.0: [drm] Cannot find any crtc or sizes
[  413.970351][    T9] usb 6-1: USB disconnect, device number 3
[  414.048946][   T29] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  414.065449][   T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.093680][   T29] usb 5-1: Product: syz
[  414.103563][   T29] usb 5-1: Manufacturer: syz
[  414.122346][   T29] usb 5-1: SerialNumber: syz
[  414.447811][T20580] usb 3-1: new full-speed USB device number 63 using dummy_hcd
[  414.570845][T21880] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7073'.
[  414.601525][T20580] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  414.611719][T20580] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  414.637931][T20580] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  414.662304][T20580] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  414.722060][   T29] (unnamed net_device) (uninitialized): Assigned a random MAC address: 7a:1e:6f:ed:fe:1a
[  414.774687][   T29] rtl8150 5-1:1.0: eth5: rtl8150 is detected
[  414.842996][T21887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  414.852372][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  414.879468][T20580] usb 3-1: usb_control_msg returned -32
[  414.905260][T20580] usbtmc 3-1:16.0: can't read capabilities
[  415.098623][   T29] kernel read not supported for file /video7 (pid: 29 comm: kworker/1:1)
[  415.460175][T21926] netlink: 212324 bytes leftover after parsing attributes in process `syz.0.7087'.
[  415.572538][    C0] usb 5-1: Rx status -71
[  415.572738][ T5984] usb 5-1: USB disconnect, device number 70
[  415.576854][    C0] usb 5-1: eth5: intr status -71
[  415.594801][ T5475] usb 5-1: device reset failed
[  415.631031][   T29] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  415.814787][   T29] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  415.826383][   T29] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  415.841653][   T29] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  415.851588][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  415.860212][   T29] usb 6-1: Product: syz
[  415.865179][   T29] usb 6-1: Manufacturer: syz
[  415.870203][   T29] usb 6-1: SerialNumber: syz
[  415.885574][   T29] cdc_mbim 6-1:1.0: skipping garbage
[  416.702076][   T30] audit: type=1400 audit(1771526012.471:815): avc:  denied  { remount } for  pid=21972 comm="syz.4.7103" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=filesystem permissive=1
[  416.853619][   T29] cdc_mbim 6-1:1.0: bind() failure
[  416.865058][   T29] usbtest 6-1:1.1: probe with driver usbtest failed with error -71
[  416.877946][   T29] usb 6-1: USB disconnect, device number 4
[  417.098392][   T29] usb 3-1: USB disconnect, device number 63
[  417.491882][   T30] audit: type=1400 audit(1771526013.300:816): avc:  denied  { read } for  pid=22017 comm="syz.3.7122" path="socket:[71527]" dev="sockfs" ino=71527 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  417.581425][   T29] usb 3-1: new high-speed USB device number 64 using dummy_hcd
[  417.744376][T20580] delete_channel: no stack
[  417.762337][   T29] usb 3-1: Using ep0 maxpacket: 8
[  417.775093][   T30] audit: type=1400 audit(1771526013.604:817): avc:  denied  { setattr } for  pid=22028 comm="syz.3.7127" name="/" dev="configfs" ino=1085 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  417.808806][   T29] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  417.831136][   T29] usb 3-1: config 179 has no interface number 0
[  417.854879][   T29] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  417.887216][   T29] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  417.919112][   T29] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  417.952045][   T29] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  417.994154][   T29] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  418.017378][T22037] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7131'.
[  418.030278][   T29] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  418.039960][T22037] netlink: 'syz.3.7131': attribute type 30 has an invalid length.
[  418.048038][   T29] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  418.064196][T22000] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  418.128554][T22037] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7131'.
[  418.143910][T22037] netlink: 'syz.3.7131': attribute type 30 has an invalid length.
[  418.304513][T22000] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  418.323487][T22000] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  418.540964][   T29] usb 3-1: USB disconnect, device number 64
[  418.547029][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  418.547080][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  418.762716][ T5984] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  418.968481][T22072] netlink: 212368 bytes leftover after parsing attributes in process `syz.4.7147'.
[  419.064601][T22078] overlayfs: failed to clone upperpath
[  419.157347][T22077] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  419.427482][T22096] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7159'.
[  419.436757][T22096] netlink: 'syz.3.7159': attribute type 20 has an invalid length.
[  419.451619][T22096] netlink: 'syz.3.7159': attribute type 29 has an invalid length.
[  419.466562][T22096] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7159'.
[  419.864631][   T30] audit: type=1400 audit(1771526015.799:818): avc:  denied  { setopt } for  pid=22111 comm="syz.2.7165" lport=37092 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  419.958138][T22116] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  420.582089][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  420.590354][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  420.614536][T22155] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7185'.
[  420.654776][T22155] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7185'.
[  420.699309][T22155] geneve2: entered promiscuous mode
[  420.708919][T22155] geneve2: entered allmulticast mode
[  420.963083][ T5984] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  421.021670][T22173] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7195'.
[  421.119015][ T5984] usb 6-1: Using ep0 maxpacket: 32
[  421.130904][T22181] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  421.153895][ T5984] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  421.171044][ T5984] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  421.180631][ T5984] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.191519][ T5984] usb 6-1: Product: syz
[  421.196159][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  421.196353][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  421.235086][ T5984] usb 6-1: Manufacturer: syz
[  421.241235][ T5984] usb 6-1: SerialNumber: syz
[  421.934636][   T24] usb 3-1: new high-speed USB device number 65 using dummy_hcd
[  422.107962][   T24] usb 3-1: config index 0 descriptor too short (expected 39, got 27)
[  422.118278][   T24] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  422.129713][   T24] usb 3-1: config 0 interface 0 has no altsetting 0
[  422.139703][   T24] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  422.149059][   T24] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  422.157321][   T24] usb 3-1: Product: syz
[  422.161555][   T24] usb 3-1: Manufacturer: syz
[  422.167722][   T24] usb 3-1: SerialNumber: syz
[  422.184132][   T24] usb 3-1: config 0 descriptor??
[  422.191113][   T24] hub 3-1:0.0: bad descriptor, ignoring hub
[  422.203640][   T24] hub 3-1:0.0: probe with driver hub failed with error -5
[  422.295483][ T5984] cdc_ncm 6-1:1.0: failed to get mac address
[  422.302216][ T5984] cdc_ncm 6-1:1.0: bind() failure
[  422.314610][   T24] usb 3-1: selecting invalid altsetting 0
[  422.329249][ T5984] cdc_ncm 6-1:1.1: probe with driver cdc_ncm failed with error -71
[  422.347807][ T5984] cdc_mbim 6-1:1.1: probe with driver cdc_mbim failed with error -71
[  422.369309][ T5984] usbtest 6-1:1.1: probe with driver usbtest failed with error -71
[  422.422831][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  422.435229][ T5984] usb 6-1: USB disconnect, device number 5
[  422.470850][   T24] usb 3-1: USB disconnect, device number 65
[  422.544062][ T5812] udevd[5812]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  422.953900][   T24] usb 3-1: new high-speed USB device number 66 using dummy_hcd
[  423.126768][   T24] usb 3-1: config index 0 descriptor too short (expected 39, got 27)
[  423.135147][   T24] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  423.145205][   T24] usb 3-1: config 0 interface 0 has no altsetting 0
[  423.153527][   T24] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  423.163560][   T24] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  423.171980][   T24] usb 3-1: Product: syz
[  423.176638][   T24] usb 3-1: Manufacturer: syz
[  423.181240][   T24] usb 3-1: SerialNumber: syz
[  423.187809][   T24] usb 3-1: config 0 descriptor??
[  423.194304][   T24] hub 3-1:0.0: bad descriptor, ignoring hub
[  423.200420][   T24] hub 3-1:0.0: probe with driver hub failed with error -5
[  423.209579][   T24] usb 3-1: selecting invalid altsetting 0
[  423.296985][ T5984] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  423.429305][T22248] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7229'.
[  423.453472][T22248] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7229'.
[  423.489475][ T5984] usb 6-1: config index 0 descriptor too short (expected 45, got 36)
[  423.504231][ T5984] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  423.518189][ T5984] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  423.530094][   T24] usb 3-1: USB disconnect, device number 66
[  423.539032][ T5984] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  423.573784][ T5984] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  423.585722][ T5984] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.618708][ T5984] usb 6-1: config 0 descriptor??
[  423.630854][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  423.887529][   T24] usb 5-1: new high-speed USB device number 71 using dummy_hcd
[  423.895186][   T30] audit: type=1400 audit(1771526020.029:819): avc:  denied  { append } for  pid=22264 comm="syz.0.7237" name="demux0" dev="devtmpfs" ino=929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1
[  423.994310][T22268] macvlan5: entered promiscuous mode
[  424.011045][T22268] macvlan6: entered promiscuous mode
[  424.023629][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.033116][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.041249][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.049395][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.056799][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.066189][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.075828][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.083957][   T24] usb 5-1: Using ep0 maxpacket: 32
[  424.090006][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.098178][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.106573][   T24] usb 5-1: config 0 has an invalid interface number: 67 but max is 0
[  424.114689][   T24] usb 5-1: config 0 has no interface number 0
[  424.131278][ T5984] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  424.141602][   T24] usb 5-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  424.156198][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  424.167996][ T5984] plantronics 0003:047F:FFFF.003B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  424.187678][   T24] usb 5-1: Product: syz
[  424.194518][   T24] usb 5-1: Manufacturer: syz
[  424.199142][   T24] usb 5-1: SerialNumber: syz
[  424.218742][   T24] usb 5-1: config 0 descriptor??
[  424.270731][T20580] usb 6-1: USB disconnect, device number 6
[  424.295524][T22274] fido_id[22274]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  424.695371][T22287] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7246'.
[  424.708170][T22287] bridge0: left allmulticast mode
[  424.714579][T22287] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7246'.
[  425.086203][T22302] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7252'.
[  425.224387][   T24] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000034: -71
[  425.241737][   T24] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_DATA
[  425.254389][   T24] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  425.280678][   T24] smsc95xx 5-1:0.67: probe with driver smsc95xx failed with error -71
[  425.296016][   T24] usb 5-1: USB disconnect, device number 71
[  425.403157][T20580] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  425.459533][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  425.468302][    T9] usb 3-1: new high-speed USB device number 67 using dummy_hcd
[  425.556513][T20580] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  425.568390][T20580] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  425.579750][T20580] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  425.591129][T20580] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  425.606246][T20580] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  425.615979][T20580] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  425.625569][T20580] usb 6-1: config 0 descriptor??
[  425.631085][T22305] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  425.638427][    T9] usb 3-1: Using ep0 maxpacket: 16
[  425.648757][    T9] usb 3-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  425.657995][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  425.666044][    T9] usb 3-1: Product: syz
[  425.670311][    T9] usb 3-1: Manufacturer: syz
[  425.674904][    T9] usb 3-1: SerialNumber: syz
[  425.681307][    T9] usb 3-1: config 0 descriptor??
[  425.924882][   T30] audit: type=1326 audit(1771526022.150:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22328 comm="syz.4.7264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f755b19c629 code=0x7fc00000
[  426.028789][T20580] plantronics 0003:047F:FFFF.003C: ignoring exceeding usage max
[  426.044970][T20580] plantronics 0003:047F:FFFF.003C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  426.070360][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  426.072315][    T9] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  426.092651][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  426.114878][    T9] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  426.135473][    T9] usb 3-1: media controller created
[  426.152469][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  426.557993][   T30] audit: type=1326 audit(1771526022.822:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22328 comm="syz.4.7264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f755b13da19 code=0x7fc00000
[  426.680089][    T9] zl10353_read_register: readreg error (reg=127, ret==0)
[  426.687471][T22307] dtv5100: wlen = 0, aborting.
[  426.692749][    T9] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  426.708739][    T9] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  426.722607][    T9] usb 3-1: USB disconnect, device number 67
[  426.798602][T22362] erspan0: entered promiscuous mode
[  426.800106][    T9] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  426.824354][T22362] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7278'.
[  427.291259][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.299586][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.314159][ T5865] usb 6-1: USB disconnect, device number 7
[  427.424694][   T30] audit: type=1400 audit(1771526023.725:822): avc:  denied  { bind } for  pid=22392 comm="syz.2.7291" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  427.585234][   T29] usb 5-1: new high-speed USB device number 72 using dummy_hcd
[  427.745547][   T29] usb 5-1: Using ep0 maxpacket: 16
[  427.752374][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  427.776748][   T29] usb 5-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  427.787211][   T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  427.797968][   T29] usb 5-1: config 0 descriptor??
[  427.895440][T22414] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.905493][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  428.231400][   T29] usbhid 5-1:0.0: can't add hid device: -71
[  428.242903][   T29] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  428.269523][   T29] usb 5-1: USB disconnect, device number 72
[  428.270287][T22432] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7309'.
[  428.356042][T22440] netlink: 'syz.2.7310': attribute type 1 has an invalid length.
[  429.546056][   T29] usb 3-1: new high-speed USB device number 68 using dummy_hcd
[  429.707940][   T29] usb 3-1: Using ep0 maxpacket: 8
[  429.716003][   T29] usb 3-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  429.726494][   T29] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  429.745782][   T29] usb 3-1: Product: syz
[  429.749979][   T29] usb 3-1: Manufacturer: syz
[  429.754576][   T29] usb 3-1: SerialNumber: syz
[  429.765005][   T24] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  429.775177][   T29] usb 3-1: config 0 descriptor??
[  429.785969][   T29] gspca_main: se401-2.14.0 probing 047d:5003
[  429.929513][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  429.943061][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  429.954453][   T24] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  429.964218][   T24] usb 6-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  429.972497][   T24] usb 6-1: Manufacturer: syz
[  429.980069][   T24] usb 6-1: config 0 descriptor??
[  430.168683][   T29] gspca_se401: Frame size: 3x0 bayer
[  430.174249][   T29] gspca_se401: Frame size: 0x0 1/16th janggu
[  430.180378][   T29] gspca_se401: Frame size: 0x0 1/16th janggu
[  430.362618][   T29] input: se401 as /devices/platform/dummy_hcd.2/usb3/3-1/input/input48
[  430.396142][   T29] usb 3-1: USB disconnect, device number 68
[  430.544275][T22518] netlink: 'syz.4.7347': attribute type 1 has an invalid length.
[  430.555670][T22518] netlink: 'syz.4.7347': attribute type 3 has an invalid length.
[  430.563563][T22518] netlink: 'syz.4.7347': attribute type 8 has an invalid length.
[  430.572846][T22518] netlink: 172 bytes leftover after parsing attributes in process `syz.4.7347'.
[  430.582368][T22518] NCSI netlink: No device for ifindex 131092
[  430.780266][   T24] uclogic 0003:256C:006D.003D: failed retrieving string descriptor #100: -71
[  430.801799][   T24] uclogic 0003:256C:006D.003D: failed retrieving pen parameters: -71
[  430.815714][   T24] uclogic 0003:256C:006D.003D: failed probing pen v1 parameters: -71
[  430.826319][   T24] uclogic 0003:256C:006D.003D: failed probing parameters: -71
[  430.834092][   T24] uclogic 0003:256C:006D.003D: probe with driver uclogic failed with error -71
[  430.847723][   T24] usb 6-1: USB disconnect, device number 8
[  431.106985][   T30] audit: type=1400 audit(1771526027.598:823): avc:  denied  { read } for  pid=22551 comm="syz.4.7364" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  431.589904][   T30] audit: type=1326 audit(1771526028.102:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22562 comm="syz.0.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5a99c629 code=0x7ffc0000
[  431.689324][   T30] audit: type=1326 audit(1771526028.102:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22562 comm="syz.0.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fac5a99c629 code=0x7ffc0000
[  431.765258][   T30] audit: type=1326 audit(1771526028.102:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22562 comm="syz.0.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5a99c629 code=0x7ffc0000
[  431.839553][   T30] audit: type=1326 audit(1771526028.102:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22562 comm="syz.0.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5a99c629 code=0x7ffc0000
[  431.961077][T22581] tipc: Cannot configure node identity twice
[  432.263924][T22596] netlink: 40 bytes leftover after parsing attributes in process `syz.3.7382'.
[  433.286602][T22641] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7399'.
[  433.296399][T22641] chnl_net:caif_netlink_parms(): no params data found
[  433.636028][ T5865] hid_parser_main: 5 callbacks suppressed
[  433.636047][ T5865] hid-generic 0000:0000:0000.003E: unknown main item tag 0x0
[  433.656337][ T5865] hid-generic 0000:0000:0000.003E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  433.994189][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  434.002491][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  434.604212][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  434.612508][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  434.652979][   T30] audit: type=1400 audit(1771526031.325:828): avc:  denied  { read write } for  pid=22692 comm="syz.2.7423" name="nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  434.720448][T22697] syzkaller1: entered promiscuous mode
[  434.728807][   T30] audit: type=1400 audit(1771526031.325:829): avc:  denied  { open } for  pid=22692 comm="syz.2.7423" path="/dev/nvram" dev="devtmpfs" ino=623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  434.757588][T22699] netlink: 'syz.3.7426': attribute type 1 has an invalid length.
[  434.768934][T22697] syzkaller1: entered allmulticast mode
[  434.778152][T22699] netlink: 88 bytes leftover after parsing attributes in process `syz.3.7426'.
[  434.794447][T22699] netlink: 1 bytes leftover after parsing attributes in process `syz.3.7426'.
[  434.803316][T22699] netlink: 'syz.3.7426': attribute type 1 has an invalid length.
[  434.815989][T22699] netlink: 634 bytes leftover after parsing attributes in process `syz.3.7426'.
[  435.068150][T22717] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  435.186554][T22717] batman_adv: batadv0: Removing interface: batadv_slave_1
[  435.227934][  T791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  435.371934][T22733] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow
[  435.451731][ T5865] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  435.508314][T22742] syzkaller1: entered promiscuous mode
[  435.514032][T22742] syzkaller1: entered allmulticast mode
[  435.635161][ T5865] usb 6-1: Using ep0 maxpacket: 16
[  435.672422][ T5865] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  435.699301][ T5865] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  435.732788][ T5865] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= f.89
[  435.745762][ T5865] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  435.756112][ T5865] usb 6-1: SerialNumber: syz
[  435.779071][ T5865] usb 6-1: 0:2 : does not exist
[  435.918381][T22768] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7458'.
[  435.989662][ T5865] usb 6-1: 5:0: failed to get current value for ch 0 (-22)
[  436.017537][ T5865] usb 6-1: 5:0: cannot get min/max values for control 3 (id 5)
[  436.049656][ T5865] usb 6-1: 5:0: cannot get min/max values for control 3 (id 5)
[  436.084767][T22775] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7461'.
[  436.090759][ T5865] usb 6-1: USB disconnect, device number 9
[  436.109123][    T9] usb 5-1: new high-speed USB device number 73 using dummy_hcd
[  436.117651][T22775] netlink: 'syz.2.7461': attribute type 20 has an invalid length.
[  436.135937][T22775] netlink: 'syz.2.7461': attribute type 21 has an invalid length.
[  436.162729][T22780] netlink: 48 bytes leftover after parsing attributes in process `syz.0.7462'.
[  436.271103][    T9] usb 5-1: Using ep0 maxpacket: 32
[  436.287879][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  436.308518][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  436.321476][    T9] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  436.354985][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.377569][    T9] usb 5-1: config 0 descriptor??
[  436.386114][    T9] hub 5-1:0.0: USB hub found
[  436.580697][    T9] hub 5-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  436.647252][T22804] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7482'.
[  436.689936][T22804] bridge_slave_1: left promiscuous mode
[  436.704314][T22804] bridge0: port 2(bridge_slave_1) entered disabled state
[  436.721344][T22804] bridge_slave_0: left allmulticast mode
[  436.738972][T22804] bridge_slave_0: left promiscuous mode
[  436.744869][T22804] bridge0: port 1(bridge_slave_0) entered disabled state
[  436.974570][   T30] audit: type=1326 audit(1771526033.750:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22813 comm="syz.0.7477" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fac5a99c629 code=0x0
[  436.975727][    T9] hid-generic 0003:046D:C31C.003F: unknown main item tag 0x0
[  437.039922][    T9] hid-generic 0003:046D:C31C.003F: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.4-1/input0
[  437.161899][T22820] netlink: 'syz.0.7478': attribute type 4 has an invalid length.
[  437.204554][T22820] netlink: 4168 bytes leftover after parsing attributes in process `syz.0.7478'.
[  437.414119][T22825] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.425434][T22825] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.435314][T22825] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.447875][T22825] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.459931][T22825] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.551998][T22833] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7485'.
[  437.569872][ T5865] usb 5-1: USB disconnect, device number 73
[  438.053715][T22863] netlink: 'syz.5.7498': attribute type 29 has an invalid length.
[  438.080812][T22863] netlink: 'syz.5.7498': attribute type 29 has an invalid length.
[  438.092873][T22863] __nla_validate_parse: 1 callbacks suppressed
[  438.092893][T22863] netlink: 500 bytes leftover after parsing attributes in process `syz.5.7498'.
[  438.110568][T22863] unsupported nla_type 58
[  438.453452][T22880] syzkaller1: entered promiscuous mode
[  438.459046][T22880] syzkaller1: entered allmulticast mode
[  438.508546][   T30] audit: type=1400 audit(1771526035.367:831): avc:  denied  { relabelfrom } for  pid=22881 comm="syz.3.7507" name="" dev="pipefs" ino=76078 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  438.557425][   T29] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  438.728609][   T29] usb 6-1: Using ep0 maxpacket: 32
[  438.735270][   T29] usb 6-1: config 0 has an invalid interface number: 67 but max is 0
[  438.743786][   T29] usb 6-1: config 0 has no interface number 0
[  438.756636][   T29] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  438.766068][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  438.774764][   T29] usb 6-1: Product: syz
[  438.779436][   T29] usb 6-1: Manufacturer: syz
[  438.784030][   T29] usb 6-1: SerialNumber: syz
[  438.796059][   T29] usb 6-1: config 0 descriptor??
[  439.261811][   T24] usb 5-1: new high-speed USB device number 74 using dummy_hcd
[  439.435408][   T24] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  439.447532][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  439.459155][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  439.471829][   T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  439.488010][   T24] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  439.503887][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.515352][   T24] usb 5-1: config 0 descriptor??
[  439.522167][T22914] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  439.579206][   T29] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): EEPROM read operation timeout
[  439.771055][   T29] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  439.787424][   T29] smsc95xx 6-1:0.67: probe with driver smsc95xx failed with error -71
[  439.819887][   T29] usb 6-1: USB disconnect, device number 10
[  439.925045][   T24] plantronics 0003:047F:FFFF.0040: ignoring exceeding usage max
[  439.942180][   T24] plantronics 0003:047F:FFFF.0040: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  440.705153][    T9] net_ratelimit: 1 callbacks suppressed
[  440.705171][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  440.719077][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  441.245055][ T1087] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  441.260911][ T1087] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.396886][ T1087] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  441.443457][ T1087] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.536787][ T5813] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  441.553056][ T5813] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  441.564094][ T5813] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  441.574008][ T5813] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  441.594611][ T5813] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  441.638806][ T1087] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  441.694557][ T1087] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.840973][ T1087] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  441.859067][ T1087] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.946494][ T5865] usb 5-1: USB disconnect, device number 74
[  442.307966][ T1087] bridge_slave_1: left allmulticast mode
[  442.339144][ T1087] bridge_slave_1: left promiscuous mode
[  442.368193][ T1087] bridge0: port 2(bridge_slave_1) entered disabled state
[  442.375908][T23015] input: syz0 as /devices/virtual/input/input49
[  442.454731][ T1087] bridge_slave_0: left allmulticast mode
[  442.460457][ T1087] bridge_slave_0: left promiscuous mode
[  442.480989][ T1087] bridge0: port 1(bridge_slave_0) entered disabled state
[  442.546408][   T30] audit: type=1326 audit(1771526039.608:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.575778][   T30] audit: type=1326 audit(1771526039.608:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.601721][   T30] audit: type=1326 audit(1771526039.640:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.632372][   T30] audit: type=1326 audit(1771526039.640:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.679334][   T30] audit: type=1326 audit(1771526039.640:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.725975][   T30] audit: type=1326 audit(1771526039.640:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.776989][   T30] audit: type=1326 audit(1771526039.640:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.835662][   T30] audit: type=1326 audit(1771526039.640:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.909899][   T30] audit: type=1326 audit(1771526039.640:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  442.968998][   T30] audit: type=1326 audit(1771526039.640:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23027 comm="syz.2.7570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7f323319c629 code=0x7ffc0000
[  443.297587][T23061] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.7578'.
[  443.353572][ T1087] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  443.369803][ T1087] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  443.384163][ T1087] bond0 (unregistering): Released all slaves
[  443.534167][ T1087] tipc: Left network mode
[  443.596284][   T51] Bluetooth: hci4: command tx timeout
[  443.657820][T23076] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  443.700246][T22986] chnl_net:caif_netlink_parms(): no params data found
[  443.852117][ T1087] IPVS: stopping backup sync thread 7784 ...
[  443.930092][  T791] usb 5-1: new high-speed USB device number 75 using dummy_hcd
[  444.032434][T22986] bridge0: port 1(bridge_slave_0) entered blocking state
[  444.059340][T22986] bridge0: port 1(bridge_slave_0) entered disabled state
[  444.101940][T22986] bridge_slave_0: entered allmulticast mode
[  444.109261][T22986] bridge_slave_0: entered promiscuous mode
[  444.119971][  T791] usb 5-1: Using ep0 maxpacket: 32
[  444.126734][  T791] usb 5-1: config 0 has an invalid interface number: 172 but max is 0
[  444.144111][  T791] usb 5-1: config 0 has no interface number 0
[  444.169806][T22986] bridge0: port 2(bridge_slave_1) entered blocking state
[  444.176918][T22986] bridge0: port 2(bridge_slave_1) entered disabled state
[  444.185726][  T791] usb 5-1: config 0 interface 172 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  444.216469][T22986] bridge_slave_1: entered allmulticast mode
[  444.218785][  T791] usb 5-1: config 0 interface 172 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  444.234582][T22986] bridge_slave_1: entered promiscuous mode
[  444.280650][  T791] usb 5-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[  444.303993][  T791] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  444.326355][  T791] usb 5-1: Product: syz
[  444.357971][  T791] usb 5-1: Manufacturer: syz
[  444.362804][   T29] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  444.386711][  T791] usb 5-1: SerialNumber: syz
[  444.412582][  T791] usb 5-1: config 0 descriptor??
[  444.430811][  T791] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[  444.504388][T22986] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  444.722888][T22986] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  444.918210][T22986] team0: Port device team_slave_0 added
[  444.960908][T22986] team0: Port device team_slave_1 added
[  445.093074][ T1087] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  445.100580][ T1087] batman_adv: batadv0: Removing interface: batadv_slave_0
[  445.200514][ T1087] dummy0: left promiscuous mode
[  445.208985][  T791] input: gspca_pac7302 as /devices/platform/dummy_hcd.4/usb5/5-1/input/input50
[  445.220780][T23135] input: syz0 as /devices/virtual/input/input51
[  445.229408][ T1087] hsr0: left allmulticast mode
[  445.234333][ T1087] veth1_macvtap: left promiscuous mode
[  445.258235][ T1087] veth0_macvtap: left promiscuous mode
[  445.283213][ T1087] veth1_vlan: left promiscuous mode
[  445.297486][ T1087] veth0_vlan: left promiscuous mode
[  445.483959][   T24] usb 5-1: USB disconnect, device number 75
[  445.580391][   T51] Bluetooth: hci4: command tx timeout
[  445.649629][ T1087] pim6reg (unregistering): left allmulticast mode
[  446.029315][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.044307][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.052637][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.084528][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.110169][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.127727][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.158327][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.179807][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.192065][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.201018][T23166] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  446.289184][T22986] batman_adv: batadv0: Adding interface: batadv_slave_0
[  446.297775][T22986] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  446.325164][T22986] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  446.342993][T22986] batman_adv: batadv0: Adding interface: batadv_slave_1
[  446.369748][T22986] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  446.421928][T23175] input: syz1 as /devices/virtual/input/input52
[  446.450574][T22986] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  446.570502][T23181] input: syz0 as /devices/virtual/input/input53
[  446.571778][T22986] hsr_slave_0: entered promiscuous mode
[  446.602235][T22986] hsr_slave_1: entered promiscuous mode
[  446.631282][T22986] debugfs: 'hsr0' already exists in 'hsr'
[  446.639451][T22986] Cannot create hsr debugfs directory
[  446.647533][T23183] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7619'.
[  446.957435][ T1087] IPVS: stop unused estimator thread 0...
[  447.558985][   T51] Bluetooth: hci4: command tx timeout
[  447.593128][T22986] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  447.703105][T22986] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  447.752206][T22986] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  447.815459][T22986] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  448.124668][T22986] 8021q: adding VLAN 0 to HW filter on device bond0
[  448.185589][T22986] 8021q: adding VLAN 0 to HW filter on device team0
[  448.245784][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.252944][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  448.296941][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.304132][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  448.675887][ T5865] hid-generic 0005:0006:5508.0041: hidraw0: BLUETOOTH HID vc3.36 Device [syz0] on aa:aa:aa:aa:aa:aa
[  448.736347][T22986] 8021q: adding VLAN 0 to HW filter on device batadv0
[  448.808182][T23281] fido_id[23281]: Failed to open report descriptor at '/sys/devices/virtual/bluetooth/hci4/hci4:200/report_descriptor': No such file or directory
[  449.263204][T22986] veth0_vlan: entered promiscuous mode
[  449.335448][T22986] veth1_vlan: entered promiscuous mode
[  449.380410][T22986] veth0_macvtap: entered promiscuous mode
[  449.391753][T22986] veth1_macvtap: entered promiscuous mode
[  449.405905][T23315] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7659'.
[  449.423022][T22986] batman_adv: batadv0: Interface activated: batadv_slave_0
[  449.440997][T22986] batman_adv: batadv0: Interface activated: batadv_slave_1
[  449.488656][   T36] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  449.512037][   T36] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  449.531290][   T36] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  449.551623][   T51] Bluetooth: hci4: command tx timeout
[  449.560397][   T36] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  449.671135][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  449.687972][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  449.735499][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  449.753859][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  450.359122][T23353] pim6reg1: entered promiscuous mode
[  450.368744][T23353] pim6reg1: entered allmulticast mode
[  450.737007][   T51] Bluetooth: hci3: unexpected event 0x03 length: 1 < 11
[  450.835369][   T29] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  450.888502][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  450.888522][   T30] audit: type=1400 audit(1771526048.363:845): avc:  denied  { read } for  pid=23388 comm="syz.2.7692" name="btrfs-control" dev="devtmpfs" ino=1316 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  450.961949][   T30] audit: type=1400 audit(1771526048.363:846): avc:  denied  { open } for  pid=23388 comm="syz.2.7692" path="/dev/btrfs-control" dev="devtmpfs" ino=1316 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  451.032476][   T30] audit: type=1400 audit(1771526048.405:847): avc:  denied  { ioctl } for  pid=23388 comm="syz.2.7692" path="/dev/btrfs-control" dev="devtmpfs" ino=1316 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  451.058892][   T29] usb 6-1: Using ep0 maxpacket: 32
[  451.078256][   T29] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  451.089115][   T29] usb 6-1: config 0 has no interface number 0
[  451.102356][   T29] usb 6-1: config 0 interface 12 has no altsetting 0
[  451.127518][   T29] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  451.139868][   T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  451.154709][   T29] usb 6-1: Product: syz
[  451.158900][   T29] usb 6-1: Manufacturer: syz
[  451.164136][   T29] usb 6-1: SerialNumber: syz
[  451.180758][   T29] usb 6-1: config 0 descriptor??
[  451.320526][T23414] netlink: 'syz.0.7702': attribute type 13 has an invalid length.
[  451.339971][T23414] netlink: 'syz.0.7702': attribute type 17 has an invalid length.
[  451.340916][T23413] vcan0: tx drop: invalid da for name 0x0000000000000002
[  451.406069][T23419] netlink: 204 bytes leftover after parsing attributes in process `syz.4.7706'.
[  451.518167][T23414] net_ratelimit: 18 callbacks suppressed
[  451.518173][T23414] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  451.676654][   T24] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  452.152391][   T29] f81534 6-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  452.168875][   T29] f81534 6-1:0.12: f81534_find_config_idx: read failed: -71
[  452.177177][   T29] f81534 6-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  452.198068][   T29] f81534 6-1:0.12: probe with driver f81534 failed with error -71
[  452.216822][   T29] usb 6-1: USB disconnect, device number 11
[  452.951685][T23484] netlink: 203340 bytes leftover after parsing attributes in process `syz.2.7734'.
[  453.514231][T23504] Process accounting resumed
[  453.819698][T23522] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  453.831541][T23522] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  453.840427][T23522] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  453.853063][T23521] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  453.869607][T23521] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  454.113272][ T5865] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  454.121618][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  454.335396][T23551] sock: sock_set_timeout: `syz.5.7766' (pid 23551) tries to set negative timeout
[  454.382602][T23553] netlink: 44 bytes leftover after parsing attributes in process `syz.5.7767'.
[  454.392335][T23553] netlink: 43 bytes leftover after parsing attributes in process `syz.5.7767'.
[  454.401558][T23553] netlink: 'syz.5.7767': attribute type 5 has an invalid length.
[  454.411029][T23553] netlink: 43 bytes leftover after parsing attributes in process `syz.5.7767'.
[  455.273697][T23605] sch_tbf: burst 480 is lower than device lo mtu (65550) !
[  455.342840][   T10] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  455.493338][   T10] usb 6-1: Using ep0 maxpacket: 32
[  455.500093][   T10] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  455.510787][   T10] usb 6-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  455.522730][   T10] usb 6-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  455.533949][   T10] usb 6-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  455.548795][   T10] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  455.558763][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  455.566846][   T10] usb 6-1: Product: syz
[  455.571192][   T10] usb 6-1: Manufacturer: syz
[  455.575768][   T10] usb 6-1: SerialNumber: syz
[  455.586415][    C0] imon 6-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  455.597417][   T10] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:155.0/input/input54
[  455.799309][   T10] imon 6-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  455.808072][   T10]  (id 0x00)
[  455.859516][  T791] hid-generic 0005:0006:5508.0042: hidraw0: BLUETOOTH HID vc3.36 Device [syz0] on aa:aa:aa:aa:aa:aa
[  455.879523][   T10] rc_core: IR keymap rc-imon-pad not found
[  455.894804][   T10] Registered IR keymap rc-empty
[  455.912036][   T10] imon 6-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  455.935977][   T10] imon 6-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  455.937918][T23614] fido_id[23614]: Failed to open report descriptor at '/sys/devices/virtual/bluetooth/hci4/hci4:200/report_descriptor': No such file or directory
[  456.001568][   T10] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:155.0/rc/rc0
[  456.034300][   T10] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:155.0/rc/rc0/input55
[  456.077823][   T10] imon 6-1:155.0: iMON device (15c2:ffdc, intf0) on usb<6:12> initialized
[  456.282046][T23594] imon:display_open: display port is already open
[  456.307959][   T10] usb 6-1: USB disconnect, device number 12
[  456.530642][T23627] netlink: 64138 bytes leftover after parsing attributes in process `syz.2.7796'.
[  456.800378][T23643] overlayfs: failed lookup in lower (newroot/1214, name='file0', err=-40): overlapping layers
[  457.016856][T23650] netdevsim netdevsim0 netdevsim0: left allmulticast mode
[  457.165717][  T791] net_ratelimit: 1 callbacks suppressed
[  457.165733][  T791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  457.573829][T23672] xt_hashlimit: size too large, truncated to 1048576
[  457.596277][T23674] loop8: detected capacity change from 0 to 8
[  457.638333][T23674] Dev loop8: unable to read RDB block 8
[  457.651762][T23674]  loop8: unable to read partition table
[  457.674043][T23674] loop8: partition table beyond EOD, truncated
[  457.715140][T23674] loop_reread_partitions: partition scan of loop8 (�被x�^>�� �) failed (rc=-5)
[  458.860187][   T30] audit: type=1326 audit(1771526056.730:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb03e79c629 code=0x7ffc0000
[  458.985117][   T30] audit: type=1326 audit(1771526056.762:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb03e79c629 code=0x7ffc0000
[  459.009790][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  459.036084][T23742] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 8, id = 0
[  459.036342][T23741] IPVS: stopping backup sync thread 23742 ...
[  459.104399][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  459.174466][   T30] audit: type=1326 audit(1771526056.783:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fb03e79c629 code=0x7ffc0000
[  459.299458][   T30] audit: type=1326 audit(1771526056.793:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb03e79c392 code=0x7ffc0000
[  459.351189][  T791] usb 3-1: new high-speed USB device number 69 using dummy_hcd
[  459.412674][   T30] audit: type=1326 audit(1771526056.793:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb03e79c392 code=0x7ffc0000
[  459.519262][   T30] audit: type=1326 audit(1771526056.793:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb03e79c629 code=0x7ffc0000
[  459.544246][  T791] usb 3-1: Using ep0 maxpacket: 32
[  459.563889][  T791] usb 3-1: config 0 interface 0 has no altsetting 0
[  459.576136][   T30] audit: type=1326 audit(1771526056.793:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb03e79c629 code=0x7ffc0000
[  459.606937][  T791] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  459.618253][  T791] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  459.626345][  T791] usb 3-1: Product: syz
[  459.636739][  T791] usb 3-1: Manufacturer: syz
[  459.651719][   T30] audit: type=1326 audit(1771526056.814:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fb03e79c629 code=0x7ffc0000
[  459.702402][  T791] usb 3-1: SerialNumber: syz
[  459.715566][  T791] usb 3-1: config 0 descriptor??
[  459.760496][   T30] audit: type=1326 audit(1771526056.814:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb03e79c629 code=0x7ffc0000
[  459.760862][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  459.856638][   T30] audit: type=1326 audit(1771526056.814:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23736 comm="syz.6.7839" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb03e79c629 code=0x7ffc0000
[  460.164159][  T791] gs_usb 3-1:0.0: Configuring for 1 interfaces
[  460.389482][ T5865] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  460.532367][ T5865] usb 7-1: Using ep0 maxpacket: 16
[  460.539011][ T5865] usb 7-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  460.547922][ T5865] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  460.558128][ T5865] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  460.577572][ T5865] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  460.610965][ T5865] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  460.651419][ T5865] usb 7-1: Product: syz
[  460.655632][ T5865] usb 7-1: Manufacturer: syz
[  460.677505][ T5865] usb 7-1: SerialNumber: syz
[  460.788318][    T9] usb 3-1: USB disconnect, device number 69
[  460.828781][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  460.837118][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  461.092966][ T5865] usb 7-1: 0:2 : does not exist
[  461.442501][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  461.450841][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  461.673559][ T5865] usb 7-1: 1:0: failed to get current value for ch 0 (-22)
[  461.800204][ T5865] usb 7-1: USB disconnect, device number 2
[  461.814264][T23831] Set syz1 is full, maxelem 1029 reached
[  461.882247][T13396] udevd[13396]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  462.591673][T23854] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  462.766871][T23860] xt_hashlimit: size too large, truncated to 1048576
[  462.867677][T23869] ------------[ cut here ]------------
[  462.874180][T23869] intf 08:02:11:00:00:00 [link=0]: bad STA 08:02:11:00:00:01 bandwidth 20 MHz (0) > channel config 10 MHz (7)
[  462.886352][T23869] WARNING: drivers/net/wireless/virtual/mac80211_hwsim.c:2693 at mac80211_hwsim_sta_rc_update+0x5db/0x840, CPU#0: syz.4.7876/23869
[  462.899926][T23869] Modules linked in:
[  462.904812][T23869] CPU: 0 UID: 0 PID: 23869 Comm: syz.4.7876 Tainted: G             L      syzkaller #0 PREEMPT(full) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  462.915968][T23869] Tainted: [L]=SOFTLOCKUP
[  462.921011][T23869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  462.931670][T23869] RIP: 0010:mac80211_hwsim_sta_rc_update+0x5fd/0x840
[  462.939521][T23869] Code: 00 48 8d 3d f5 dc c0 09 48 8b 4c 24 10 48 8b 44 24 20 89 da 44 8b 89 c0 01 00 00 55 48 8d b0 72 05 00 00 41 57 44 8b 44 24 14 <67> 48 0f b9 3a 58 5a e9 3c fc ff ff e8 12 92 e3 fa e8 7d 75 6a 04
[  462.959320][T23869] RSP: 0018:ffffc9001c24f120 EFLAGS: 00010246
[  462.965632][T23869] RAX: ffff88805df3aa90 RBX: 0000000000000000 RCX: ffff88806b324ec0
[  462.974535][T23869] RDX: 0000000000000000 RSI: ffff88805df3b002 RDI: ffffffff90e5e6b0
[  462.982864][T23869] RBP: 0000000000000007 R08: 0000000000000014 R09: 0000000000000000
[  462.990916][T23869] R10: 0000000000000007 R11: 0000000000000000 R12: dffffc0000000000
[  463.000080][T23869] R13: ffff88806b325090 R14: ffff88805df73100 R15: 000000000000000a
[  463.008066][T23869] FS:  00007f755bff46c0(0000) GS:ffff888124348000(0000) knlGS:0000000000000000
[  463.017133][T23869] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  463.023752][T23869] CR2: 000055558980ca28 CR3: 0000000036e5d000 CR4: 00000000003526f0
[  463.031833][T23869] Call Trace:
[  463.035107][T23869]  <TASK>
[  463.038106][T23869]  ? __pfx_mac80211_hwsim_sta_add+0x10/0x10
[  463.044025][T23869]  mac80211_hwsim_sta_add+0xc9/0x290
[  463.049645][T23869]  drv_sta_state+0x887/0x1960
[  463.054348][T23869]  sta_info_insert_rcu+0x170b/0x2fa0
[  463.059703][T23869]  sta_info_insert+0x16/0xd0
[  463.064301][T23869]  ieee80211_add_station+0x471/0x6d0
[  463.070145][T23869]  nl80211_new_station+0x145b/0x1dd0
[  463.075729][T23869]  ? __pfx_nl80211_new_station+0x10/0x10
[  463.081449][T23869]  ? nl80211_pre_doit+0x19a/0xae0
[  463.086544][T23869]  genl_family_rcv_msg_doit+0x214/0x300
[  463.092112][T23869]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  463.098333][T23869]  ? bpf_lsm_capable+0x9/0x10
[  463.103019][T23869]  ? security_capable+0x80/0x260
[  463.108062][T23869]  ? ns_capable+0xd2/0xf0
[  463.112400][T23869]  genl_rcv_msg+0x560/0x800
[  463.116954][T23869]  ? __pfx_genl_rcv_msg+0x10/0x10
[  463.121988][T23869]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  463.127452][T23869]  ? __pfx_nl80211_new_station+0x10/0x10
[  463.133116][T23869]  ? __pfx_nl80211_post_doit+0x10/0x10
[  463.138686][T23869]  netlink_rcv_skb+0x159/0x420
[  463.143530][T23869]  ? __pfx_genl_rcv_msg+0x10/0x10
[  463.148564][T23869]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  463.153915][T23869]  ? netlink_deliver_tap+0x1ae/0xcc0
[  463.159212][T23869]  genl_rcv+0x28/0x40
[  463.163614][T23869]  netlink_unicast+0x5aa/0x870
[  463.168385][T23869]  ? __pfx_netlink_unicast+0x10/0x10
[  463.173979][T23869]  netlink_sendmsg+0x8b0/0xda0
[  463.178775][T23869]  ? __pfx_netlink_sendmsg+0x10/0x10
[  463.184787][T23869]  ? PageHuge+0x170/0x180
[  463.189137][T23869]  ____sys_sendmsg+0xa54/0xc30
[  463.194096][T23869]  ? __pfx_____sys_sendmsg+0x10/0x10
[  463.199393][T23869]  ? __pfx_futex_wake_mark+0x10/0x10
[  463.204737][T23869]  ___sys_sendmsg+0x190/0x1e0
[  463.209517][T23869]  ? __pfx____sys_sendmsg+0x10/0x10
[  463.214751][T23869]  __sys_sendmsg+0x170/0x220
[  463.219438][T23869]  ? __pfx___sys_sendmsg+0x10/0x10
[  463.224549][T23869]  ? __x64_sys_futex+0x34f/0x4d0
[  463.229539][T23869]  do_syscall_64+0x106/0xf80
[  463.234130][T23869]  ? clear_bhb_loop+0x40/0x90
[  463.238871][T23869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.244760][T23869] RIP: 0033:0x7f755b19c629
[  463.249212][T23869] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  463.270580][T23869] RSP: 002b:00007f755bff4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  463.279978][T23869] RAX: ffffffffffffffda RBX: 00007f755b415fa0 RCX: 00007f755b19c629
[  463.288025][T23869] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000005
[  463.296058][T23869] RBP: 00007f755b232b39 R08: 0000000000000000 R09: 0000000000000000
[  463.304037][T23869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  463.312187][T23869] R13: 00007f755b416038 R14: 00007f755b415fa0 R15: 00007ffc24a8cd88
[  463.320204][T23869]  </TASK>
[  463.323223][T23869] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  463.330505][T23869] CPU: 0 UID: 0 PID: 23869 Comm: syz.4.7876 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  463.341451][T23869] Tainted: [L]=SOFTLOCKUP
[  463.345778][T23869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  463.355837][T23869] Call Trace:
[  463.359120][T23869]  <TASK>
[  463.362051][T23869]  dump_stack_lvl+0x100/0x190
[  463.366745][T23869]  vpanic+0x552/0x970
[  463.370725][T23869]  ? __pfx_vpanic+0x10/0x10
[  463.375219][T23869]  panic+0xd1/0xe0
[  463.378922][T23869]  ? __pfx_panic+0x10/0x10
[  463.383327][T23869]  check_panic_on_warn.cold+0x19/0x34
[  463.388681][T23869]  ? mac80211_hwsim_sta_rc_update+0x5db/0x840
[  463.394736][T23869]  __warn.cold+0x191/0x348
[  463.399136][T23869]  __report_bug+0x296/0x3d0
[  463.403618][T23869]  ? mac80211_hwsim_sta_rc_update+0x5db/0x840
[  463.409685][T23869]  ? __pfx___report_bug+0x10/0x10
[  463.414728][T23869]  ? finish_task_switch.isra.0+0x205/0xb80
[  463.420544][T23869]  ? trace_sched_exit_tp+0x13a/0x180
[  463.425823][T23869]  report_bug_entry+0xe1/0x290
[  463.430582][T23869]  ? mac80211_hwsim_sta_rc_update+0x5fd/0x840
[  463.436649][T23869]  handle_bug+0x1c9/0x2a0
[  463.440962][T23869]  exc_invalid_op+0x17/0x50
[  463.445449][T23869]  asm_exc_invalid_op+0x1a/0x20
[  463.450280][T23869] RIP: 0010:mac80211_hwsim_sta_rc_update+0x5fd/0x840
[  463.456946][T23869] Code: 00 48 8d 3d f5 dc c0 09 48 8b 4c 24 10 48 8b 44 24 20 89 da 44 8b 89 c0 01 00 00 55 48 8d b0 72 05 00 00 41 57 44 8b 44 24 14 <67> 48 0f b9 3a 58 5a e9 3c fc ff ff e8 12 92 e3 fa e8 7d 75 6a 04
[  463.476536][T23869] RSP: 0018:ffffc9001c24f120 EFLAGS: 00010246
[  463.482583][T23869] RAX: ffff88805df3aa90 RBX: 0000000000000000 RCX: ffff88806b324ec0
[  463.490536][T23869] RDX: 0000000000000000 RSI: ffff88805df3b002 RDI: ffffffff90e5e6b0
[  463.498496][T23869] RBP: 0000000000000007 R08: 0000000000000014 R09: 0000000000000000
[  463.506445][T23869] R10: 0000000000000007 R11: 0000000000000000 R12: dffffc0000000000
[  463.514393][T23869] R13: ffff88806b325090 R14: ffff88805df73100 R15: 000000000000000a
[  463.522361][T23869]  ? __pfx_mac80211_hwsim_sta_add+0x10/0x10
[  463.528249][T23869]  mac80211_hwsim_sta_add+0xc9/0x290
[  463.533537][T23869]  drv_sta_state+0x887/0x1960
[  463.538210][T23869]  sta_info_insert_rcu+0x170b/0x2fa0
[  463.543491][T23869]  sta_info_insert+0x16/0xd0
[  463.548070][T23869]  ieee80211_add_station+0x471/0x6d0
[  463.553350][T23869]  nl80211_new_station+0x145b/0x1dd0
[  463.558629][T23869]  ? __pfx_nl80211_new_station+0x10/0x10
[  463.564268][T23869]  ? nl80211_pre_doit+0x19a/0xae0
[  463.569284][T23869]  genl_family_rcv_msg_doit+0x214/0x300
[  463.574820][T23869]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  463.580878][T23869]  ? bpf_lsm_capable+0x9/0x10
[  463.585535][T23869]  ? security_capable+0x80/0x260
[  463.590466][T23869]  ? ns_capable+0xd2/0xf0
[  463.594778][T23869]  genl_rcv_msg+0x560/0x800
[  463.599269][T23869]  ? __pfx_genl_rcv_msg+0x10/0x10
[  463.604278][T23869]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  463.609638][T23869]  ? __pfx_nl80211_new_station+0x10/0x10
[  463.615249][T23869]  ? __pfx_nl80211_post_doit+0x10/0x10
[  463.620701][T23869]  netlink_rcv_skb+0x159/0x420
[  463.625448][T23869]  ? __pfx_genl_rcv_msg+0x10/0x10
[  463.630455][T23869]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  463.635731][T23869]  ? netlink_deliver_tap+0x1ae/0xcc0
[  463.640997][T23869]  genl_rcv+0x28/0x40
[  463.644961][T23869]  netlink_unicast+0x5aa/0x870
[  463.649710][T23869]  ? __pfx_netlink_unicast+0x10/0x10
[  463.654984][T23869]  netlink_sendmsg+0x8b0/0xda0
[  463.659735][T23869]  ? __pfx_netlink_sendmsg+0x10/0x10
[  463.665014][T23869]  ? PageHuge+0x170/0x180
[  463.669355][T23869]  ____sys_sendmsg+0xa54/0xc30
[  463.674116][T23869]  ? __pfx_____sys_sendmsg+0x10/0x10
[  463.679395][T23869]  ? __pfx_futex_wake_mark+0x10/0x10
[  463.684669][T23869]  ___sys_sendmsg+0x190/0x1e0
[  463.689340][T23869]  ? __pfx____sys_sendmsg+0x10/0x10
[  463.694553][T23869]  __sys_sendmsg+0x170/0x220
[  463.699124][T23869]  ? __pfx___sys_sendmsg+0x10/0x10
[  463.704223][T23869]  ? __x64_sys_futex+0x34f/0x4d0
[  463.709151][T23869]  do_syscall_64+0x106/0xf80
[  463.713723][T23869]  ? clear_bhb_loop+0x40/0x90
[  463.718396][T23869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  463.724277][T23869] RIP: 0033:0x7f755b19c629
[  463.728693][T23869] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  463.748284][T23869] RSP: 002b:00007f755bff4028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  463.756689][T23869] RAX: ffffffffffffffda RBX: 00007f755b415fa0 RCX: 00007f755b19c629
[  463.764652][T23869] RDX: 0000000000000000 RSI: 0000200000001080 RDI: 0000000000000005
[  463.772609][T23869] RBP: 00007f755b232b39 R08: 0000000000000000 R09: 0000000000000000
[  463.780560][T23869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  463.788512][T23869] R13: 00007f755b416038 R14: 00007f755b415fa0 R15: 00007ffc24a8cd88
[  463.796481][T23869]  </TASK>
[  463.799768][T23869] Kernel Offset: disabled
[  463.804081][T23869] Rebooting in 86400 seconds..