last executing test programs:

13.534661026s ago: executing program 1 (id=2711):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo\x00')
getdents64(r0, &(0x7f0000000080)=""/4096, 0x1000)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0)
setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000680)=0x1, 0x4)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f0000003a00)=[{{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, 0x0}, 0x1ae0}], 0x2, 0x60000100, 0x0)
write$binfmt_format(r0, &(0x7f0000000040)='-1\x00', 0x3)

13.534188391s ago: executing program 1 (id=2712):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
syz_emit_vhci(&(0x7f0000000180)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xc}, @hci_ev_le_remote_feat_complete={{}, {0xb8, 0xc9, "5f81d7ee2a5048dd"}}}}, 0xf)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
syz_emit_vhci(&(0x7f0000000740)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x1800010, &(0x7f00000001c0)='grpquota')
lchown(&(0x7f0000000080)='./file0\x00', 0xee00, 0xee00)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0, {0x7ff}}, './file0\x00'})
sendmsg$NFT_BATCH(r1, &(0x7f00000018c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_DELRULE={0x60, 0x8, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_RULE_COMPAT={0x3c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x200}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x21}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x8847}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x16}]}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}, @NFT_OBJECT_CT_HELPER=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_NEWSET={0x48, 0x9, 0xa, 0x0, 0x0, 0x0, {0x7, 0x0, 0x2}, [@NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x4}, @NFTA_SET_ID={0x8}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x3}, @NFTA_SET_ID={0x8}]}, @NFT_MSG_NEWSETELEM={0x12c, 0xc, 0xa, 0x300, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x5}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x7c, 0x3, 0x0, 0x1, [{0x68, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPR={0x64, 0x7, 0x0, 0x1, @log={{0x8}, @val={0x58, 0x2, 0x0, 0x1, [@NFTA_LOG_LEVEL={0x8, 0x5, 0x1, 0x0, 0x9}, @NFTA_LOG_LEVEL={0x8}, @NFTA_LOG_QTHRESHOLD={0x6, 0x4, 0x1, 0x0, 0x6}, @NFTA_LOG_FLAGS={0x8, 0x6, 0x1, 0x0, 0x20}, @NFTA_LOG_SNAPLEN={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x8000}, @NFTA_LOG_PREFIX={0x9, 0x2, 0x1, 0x0, '\xdc}}.\x00'}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x5}, @NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x99d}, @NFTA_LOG_QTHRESHOLD={0x6, 0x4, 0x1, 0x0, 0x4}]}}}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}]}]}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x64, 0x3, 0x0, 0x1, [{0x4}, {0x5c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_DATA={0x4}, @NFTA_SET_ELEM_USERDATA={0x48, 0x6, 0x1, 0x0, "0f2de6a5f83df49d997b9ff3a99b8a469996bfc51653b5304736025a753d1c456838565537e37150ce58279a9ff37ea78a492427dc7417cca86863d848e5f060d7bc18b1"}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}]}]}]}, @NFT_MSG_NEWFLOWTABLE={0x38, 0x16, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELCHAIN={0x50, 0x5, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x4}, @NFTA_CHAIN_COUNTERS={0x34, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x6}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x7dad}, @NFTA_COUNTER_PACKETS={0xc}]}]}, @NFT_MSG_NEWTABLE={0xffffffffffffff1c, 0x0, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_TABLE_USERDATA={0x71, 0x6, "9b07331854f35a79ea1037907427e2bf1901f76197424ddc8cfe8c3428e01e727f147ceed4cc311a08bf54f868a1d59e6bbe9f9489a666944cf636a2625f794a1a500642a357f0d28ac1bfa8e96980f315743e0666f986e8a5d3cc6cbb6af02c8ba01d1683a65554f49fcaf1a3"}, @NFTA_TABLE_USERDATA={0x15c, 0x6, "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"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x1c, 0x18, 0xa, 0x801, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x2}]}, @NFT_MSG_DELRULE={0xd8, 0x8, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @synproxy={{0xd}, @void}}, {0x10, 0x1, 0x0, 0x1, @objref={{0xb}, @void}}, {0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}]}, @NFTA_RULE_COMPAT={0x24, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x3b}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x6c}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x67}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT={0x4c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x5c}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x33}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x32}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0xff}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2b}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2b}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x52c}, 0x1, 0x0, 0x0, 0x4}, 0x40040)

13.449633308s ago: executing program 1 (id=2713):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000180)=ANY=[@ANYRES16=r0, @ANYBLOB="b3b2ea16f0fb6f861d263b425bc8f581f3bb1ec64c763fa6f7fe3ae4a7cf6cb8ce9f5519a8fe1b0f04eaae3359bae6e920f0198ef3146f0d846e900fbddd4b8e4292de01c1625bfe57bd92b619dc677d02f8ea667d3716e133bef29704c0f80bfe3821210bf87bd334147740597176937a034498683bc9521e32fe513563d2bc0bb117ae4e5905f026c27f2f628bbec3716a7036a12c3b90", @ANYRES8=r0], 0x58}}, 0x0)

13.44891054s ago: executing program 1 (id=2714):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x16c, 0x10, 0x713, 0x2, 0x25dfdbfc, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4e20, 0x0, 0x4e21, 0x202, 0x2, 0x20, 0x0, 0x6c, 0x0, 0xee00}, {@in6=@remote, 0xfc, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0x42}, {0x0, 0x0, 0xc, 0x8, 0x0, 0x0, 0x0, 0x543}, {0x4, 0x7fffffffffffffff, 0x0, 0xfffffffffffffffc}, {}, 0x70bd28, 0x3500, 0x2, 0x4, 0x0, 0x10}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "217d66d38547aa140db8a200000000c538c7cb7a"}}, @encap={0x1c, 0x4, {0x2d, 0x4e24, 0x4e24, @in6=@dev={0xfe, 0x80, '\x00', 0x2c}}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000000)=0xa0, 0x4)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40086602, &(0x7f0000000000))
symlinkat(&(0x7f0000000200)='./file0/file0\x00', r1, &(0x7f0000000240)='./file0\x00')
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x24, 0x20, 0x301, 0x70bd27, 0x25dfdbff, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e}, [@FRA_GENERIC_POLICY=@FRA_PRIORITY={0x8, 0x6, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000004780)={0xe, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r5}, &(0x7f0000000500), &(0x7f00000002c0)=r4}, 0x20)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000004000)={0x0, 0x0, &(0x7f0000003fc0)={&(0x7f0000003f80)=@newspdinfo={0x14, 0x28, 0x1}, 0x14}}, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)=ANY=[@ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r5}, &(0x7f00000006c0), &(0x7f0000000700)=r4}, 0x20)
getsockopt$SO_TIMESTAMP(r3, 0x1, 0x23, 0x0, &(0x7f0000000200))
r8 = fsopen(&(0x7f00000000c0)='hfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f0000000040)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYRES8=r8, @ANYRESOCT=r3, @ANYRES8=r8, @ANYRESHEX=r2, @ANYRESHEX=r8], 0x28}, 0x1, 0x0, 0x0, 0x80008d4}, 0xc0)

13.370534782s ago: executing program 1 (id=2715):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000040)='.pending_reads\x00', 0x181a00, 0x0)
ioctl$XFS_IOC_OPEN_BY_HANDLE(r0, 0xc038586b, &(0x7f0000000180)={r1, &(0x7f0000000080)='!\x00', 0x82, &(0x7f00000000c0)={@align, {0x7, 0x4f7, 0xffffffc6, 0x2}}, 0x8001, &(0x7f0000000100), &(0x7f0000000140)=0x4})
fcntl$setlease(r1, 0x400, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000001c0)=<r2=>0x0)
mq_notify(r1, &(0x7f0000000200)={0x0, 0x3c, 0x1, @tid=r2})
ioctl$USBDEVFS_RESETEP(r0, 0x80045503, &(0x7f0000000240)={0x7})
r3 = fcntl$getown(r0, 0x9)
ioctl$XFS_IOC_FD_TO_HANDLE(r1, 0xc038586a, &(0x7f0000000380)={<r4=>0xffffffffffffffff, &(0x7f0000000280)='&%)@.-\x00', 0x400000, &(0x7f00000002c0)={@_ha_fsid={[0x633e, 0x6]}, {0xfff7, 0x4263, 0xd093, 0x200}}, 0x2, &(0x7f0000000300), &(0x7f0000000340)=0x8000})
sendfile(r0, r4, 0x0, 0x9)
r5 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$HIDIOCGRAWNAME(r5, 0x80404804, &(0x7f0000000400))
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000440)={<r6=>r0})
getsockopt$bt_BT_POWER(r6, 0x112, 0x9, &(0x7f0000000480)=0x10, &(0x7f00000004c0)=0x1)
read$FUSE(r4, &(0x7f0000000500)={0x2020}, 0x2020)
bind$unix(r4, &(0x7f0000002540)=@file={0x0, './file0\x00'}, 0x6e)
fcntl$setlease(r4, 0x400, 0x2)
ioctl$XFS_IOC_FD_TO_HANDLE(r6, 0xc038586a, &(0x7f00000026c0)={<r7=>r6, &(0x7f00000025c0)='+\x00', 0xb8000, &(0x7f0000002600)={@align=0x3, {0x82b, 0xef6d, 0x2, 0x5b9b}}, 0x3d, &(0x7f0000002640)={@_ha_fsid}, &(0x7f0000002680)=0x3})
ioctl$IOMMU_VFIO_IOMMU_UNMAP_DMA(r7, 0x3b72, &(0x7f0000002700)={0x34, 0x5, 0x4, 0x5, "e3d24a1c78da637d115e3611b66648011dbf966e9e978651427b343f"})
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000002740)=0x1)
r8 = syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r8, &(0x7f0000002d40)={0x0, &(0x7f0000002780)=[@cpuid={0x64, 0x18, {0x3, 0x7}}, @nested_load_syzos={0x136, 0x108, {0x0, 0x6, [@rdmsr={0x66, 0x18, {0xa77}}, @uexit={0x0, 0x18, 0x53a}, @uexit={0x0, 0x18}, @nested_amd_set_intercept={0x181, 0x30, {0x2, 0x0, 0x9}}, @in_dx={0x69, 0x20, {0x98d, 0x2}}, @uexit={0x0, 0x18, 0x1ff}, @set_irq_handler={0xc8, 0x20, {0x9b, 0x401}}, @nested_create_vm={0x12d, 0x18, 0x3}]}}, @nested_amd_inject_event={0x180, 0x38, {0x3, 0x51, 0x1, 0x9, 0x2}}, @nested_amd_vmcb_write_mask={0x17c, 0x38, {0x2, @control_area=0x5, 0x7f, 0xffffffff80000001, 0x3}}, @nested_load_syzos={0x136, 0x38, {0x0, 0x7fff, [@cpuid={0x64, 0x18, {0xffffff5b, 0x8}}]}}, @in_dx={0x69, 0x20, {0x1b98, 0x1}}, @nested_amd_set_intercept={0x181, 0x30, {0x3, 0x6, 0x6af}}, @nested_vmlaunch={0x12f, 0x18}, @wr_drn={0x68, 0x20, {0x0, 0x7}}, @nested_amd_clgi={0x17f, 0x10}, @nested_amd_stgi={0x17e, 0x10}, @nested_amd_vmload={0x182, 0x18, 0x2}, @nested_amd_invlpga={0x17d, 0x20, {0x33371000, 0x7326}}, @in_dx={0x69, 0x20, {0x6fad, 0x5}}, @nested_amd_vmload={0x182, 0x18, 0x1}, @nested_amd_set_intercept={0x181, 0x30, {0x2, 0x7, 0x2114c4a5, 0x1}}, @nested_intel_vmwrite_mask={0x154, 0x38, {0x1, @ro_nat=0x640a, 0x8, 0x4, 0x6}}, @nested_amd_invlpga={0x17d, 0x20, {0xf000, 0xd04c}}, @nested_amd_vmload={0x182, 0x18}, @out_dx={0x6a, 0x28, {0x1332, 0x7, 0x2}}, @nested_vmresume={0x130, 0x18, 0x2}, @code={0xa, 0x5a, {"363e0f01cab9bd0200000f320f062e45f7e848b804000000000000000f23d00f21f835300000020f23f8420f1f006466400f700efdf30fc77720642e660f2fec64664b0f3a16789f44"}}, @set_irq_handler={0xc8, 0x20, {0x70}}, @nested_amd_invlpga={0x17d, 0x20, {0x62000, 0x5ee5}}, @in_dx={0x69, 0x20, {0x3ee8, 0x3}}, @nested_amd_stgi={0x17e, 0x10}, @uexit={0x0, 0x18, 0x2}, @nested_load_syzos={0x136, 0xa8, {0x0, 0xa97, [@out_dx={0x6a, 0x28, {0xffff, 0x6}}, @enable_nested={0x12c, 0x18}, @nested_amd_stgi={0x17e, 0x10}, @nested_intel_vmwrite_mask={0x154, 0x38, {0x3, @host32=0x4c00, 0x6, 0x40, 0xf4}}]}}, @nested_amd_vmload={0x182, 0x18, 0x1}, @nested_amd_invlpga={0x17d, 0x20, {0xc000, 0xf8cb}}], 0x582})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000002e80)={&(0x7f0000d85000/0x1000)=nil, &(0x7f0000fb0000/0x2000)=nil, &(0x7f0000f74000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000c21000/0x3000)=nil, &(0x7f0000fb4000/0x1000)=nil, &(0x7f0000eaf000/0x4000)=nil, &(0x7f0000e4c000/0x2000)=nil, &(0x7f0000c05000/0x3000)=nil, &(0x7f0000d13000/0x4000)=nil, &(0x7f0000cb2000/0x3000)=nil, &(0x7f0000002d80)="c0984ae2a56d2ab201dfeb91b024fc36024bcd94b90eb5ecbc0620addbb69b21256e7a932e9b3ddff2097b256c053994a9bb409e8d2fdeb71283ebd90e351c34351a6baf34aabf709910991b1cea05a0dc0bdb86b9df38c396a45f628020ca6171ba69f00005387da20a51fff3ba0e4076e3eae35122bd9dd1ee7c66d2e995a885db73cb6ac7a6ae4d7c24c27b8281a49dd29d85da09520af2a35bd26b32532c7fd7c2def0c15987ac79755d4938d9e5e12e02f440641ec913de331ccf7d4750755fc9a24b9a33507773fcbda9cc50a7b122db1e4e95", 0xd6, r7}, 0x68)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r1, &(0x7f0000003000)={&(0x7f0000002f00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000002fc0)={&(0x7f0000002f40)={0x60, 0x1409, 0x8, 0x70bd2b, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x4}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0x20048081)
fcntl$setown(r4, 0x8, r3)
mknodat(r4, &(0x7f0000003040)='./file0\x00', 0x10, 0xffffffff)
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f0000003080), 0x8002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r9, 0xc0189375, &(0x7f00000030c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
pipe(&(0x7f0000003100)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r10, &(0x7f0000003240)={&(0x7f0000003140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000003200)={&(0x7f0000003180)={0x80, 0x1405, 0x300, 0x70bd27, 0x25dfdbfd, "", [{{0x8}, {0x8, 0x3, 0x2}}, {{0x8}, {0x8, 0x3, 0x2}}, {{0x8, 0x1, 0x1}, {0x8, 0x3, 0x1}}, {{0x8, 0x1, 0x1}, {0x8, 0x3, 0x3}}, {{0x8, 0x1, 0x1}, {0x8, 0x3, 0x3}}, {{0x8}, {0x8, 0x3, 0x1}}, {{0x8, 0x1, 0x1}, {0x8, 0x3, 0x4}}]}, 0x80}, 0x1, 0x0, 0x0, 0x8800}, 0x0)

12.829040504s ago: executing program 1 (id=2724):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x14, 0x32, 0x20, 0x70bd25, 0x25dfdbde}, 0x14}, 0x1, 0x0, 0x0, 0x40006}, 0x4048801)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0x1, 0x70bd26, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async, rerun: 32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYRESDEC=0x0, @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async, rerun: 32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) (async)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x8, 0x0, 0xfffffffd}, 0x24)
write(r1, &(0x7f0000000100)="240000001a007f0214f9f407000904f702000000000000000002000008000f40fe00000e", 0x24) (async, rerun: 32)
bind$ax25(r1, &(0x7f00000001c0)={{0x3, @default, 0x6}, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48) (async, rerun: 32)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f00000000c0)={@remote, @local}, 0xc)

12.758219666s ago: executing program 32 (id=2724):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x14, 0x32, 0x20, 0x70bd25, 0x25dfdbde}, 0x14}, 0x1, 0x0, 0x0, 0x40006}, 0x4048801)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0x1, 0x70bd26, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async, rerun: 32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYRESDEC=0x0, @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0) (async, rerun: 32)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840) (async)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) (async)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x8, 0x0, 0xfffffffd}, 0x24)
write(r1, &(0x7f0000000100)="240000001a007f0214f9f407000904f702000000000000000002000008000f40fe00000e", 0x24) (async, rerun: 32)
bind$ax25(r1, &(0x7f00000001c0)={{0x3, @default, 0x6}, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48) (async, rerun: 32)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f00000000c0)={@remote, @local}, 0xc)

4.59615024s ago: executing program 0 (id=2831):
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x800, 0x0, <r0=>0xffffffffffffffff})
ioctl$HIDIOCGCOLLECTIONINFO(r0, 0xc0104811, &(0x7f0000000080)={0x8, 0xd0a, 0x0, 0x6})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0xe, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xe}, [@printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xffffffff}}, @func={0x85, 0x0, 0x1, 0x0, 0x5}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x3}]}, &(0x7f0000000140)='syzkaller\x00', 0x4, 0x21, &(0x7f0000000180)=""/33, 0x41100, 0x1, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000001c0)={0x2, 0x3}, 0x8, 0x10, &(0x7f0000000200)={0x2, 0x9, 0x80, 0x800}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000240)=[{0x3, 0x4, 0xd, 0x5}, {0x4, 0x2, 0xe, 0xb}, {0x2, 0x4, 0x0, 0x5}, {0x2, 0x5, 0x0, 0x5}], 0x10, 0xc3}, 0x94)
r2 = dup3(r0, r1, 0x0) (async)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340), 0x501000, 0x0)
ioctl$EVIOCGID(r2, 0x80084502, &(0x7f0000000380)=""/214) (async)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$TIPC_SRC_DROPPABLE(r4, 0x10f, 0x80, &(0x7f00000004c0)=0xe0, 0x4) (async)
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000500), 0x725080, 0x0)
ioctl$PAGEMAP_SCAN(r5, 0xc0606610, &(0x7f0000000600)={0x60, 0x2, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x6, &(0x7f0000000540)=[{0x10001, 0x5, 0xff}, {0x2, 0x6, 0x10}, {0x6935}, {0x40, 0x9, 0x81}, {0x7ff, 0x4, 0x937}, {0x3, 0x80000001, 0x6}], 0x6, 0xfffffffffffffffa, 0x20, 0x50, 0x11, 0x8}) (async)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000680)={0xf0, 0x360, 0xa0, 0x0, 0x8, 0xa, 0x10, 0x0, {0x4a, 0x5, 0x1}, {0x2f3d, 0x1}, {0x81, 0x5}, {0x80, 0xc80, 0x1}, 0x1, 0x80, 0xb, 0x1, 0x1, 0x5500, 0x101, 0x1, 0x61, 0x1, 0x9, 0x9, 0x1, 0x100, 0x2, 0x7}) (async)
tee(r0, r2, 0xffffffff, 0xb)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r6, 0x84, 0x7, &(0x7f0000000740)={0x80000000}, 0x4) (async)
r7 = openat$null(0xffffffffffffff9c, &(0x7f0000000780), 0x40080, 0x0)
ioctl$SNDRV_PCM_IOCTL_PAUSE(r7, 0x40044145, &(0x7f00000007c0)=0x2)
getsockopt$SO_J1939_SEND_PRIO(0xffffffffffffffff, 0x6b, 0x3, &(0x7f0000000800), &(0x7f0000000840)=0x4)
write$binfmt_script(r3, &(0x7f0000000880)={'#! ', './file0', [{}, {0x20, 'syzkaller\x00'}, {0x20, '\']\'\xb5'}, {0x20, '/dev/null\x00'}, {0x20, '^'}, {0x20, '/dev/hwrng\x00'}, {0x20, '\x00'}, {0x20, '#/$-,\\):#][:!-'}], 0xa, "08d432a1409af4f94edb3cc6844d10f7aea3a0413647c8b36d54afb840cdef05b9f6ab2712f474877bb8351c2a57a1400a6fa6f2aef1a0aab2ea47a42391c2e816a5f1b80980ba6f5b0a818d7991416691f017330705aa360636fd498ec332960b67dd4fea78ca91286a1c189c169239a31ad2d83a4aa3e7fcd9e3723056ea5e0f74d974633668fcb14fa319b42379cb8bb44f77cfabb6b496bdab7c677b14ee3b54877dbfdcd2a795d244726a201256ba2b8c500e5fcf9003c9e0821959c9bb24bdce665609bf516f5d7d6a7b920fd3a654fb91ce2c66fae2a76cfba5e0"}, 0x124)
mount$overlay(0x0, &(0x7f00000009c0)='./file0\x00', &(0x7f0000000a00), 0x100000, &(0x7f0000000a40)={[{@xino_auto}, {@redirect_dir_follow}, {@default_permissions}, {@nfs_export_off}, {@xino_on}, {@verity_off}, {@workdir={'workdir', 0x3d, './file0'}}, {@verity_require}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@uuid_auto}], [{@func={'func', 0x3d, 'FILE_MMAP'}}, {@subj_role={'subj_role', 0x3d, '*\\^,&-}(\':]'}}, {@context={'context', 0x3d, 'staff_u'}}, {@hash}]}) (async)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r6, 0x941c, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000b40)=<r8=>0x0)
fcntl$setown(r2, 0x8, r8)
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000c00)=[@text64={0x40, &(0x7f0000000b80)="66baa10066b8000066ef66baa100b00deeb9800000c00f3235004000000f300fc758664121cb660f38827ce5406767440f200566baf80cb8c9fc7388ef66bafc0cb089eef346a5f010be00800000", 0x4e}], 0x1, 0x41, &(0x7f0000000c40)=[@vmwrite={0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffff}], 0x1) (async)
ioctl$VT_SETMODE(r5, 0x5602, &(0x7f0000000c80)={0x0, 0x1, 0x1, 0x1, 0x800}) (async)
ioctl$KVM_GET_IRQCHIP(r7, 0xc208ae62, &(0x7f0000000cc0)={0x0, 0x0, @ioapic={0x60000, 0x0, 0x4, 0x8, 0x0, [{0x7, 0x8, 0x1, '\x00', 0xc}, {0x8, 0x7, 0x8, '\x00', 0x9}, {0x7, 0xff, 0x81, '\x00', 0x1}, {0x1d, 0xf1, 0x80, '\x00', 0xfd}, {0x10, 0xbc, 0x32, '\x00', 0x9}, {0xff, 0x4, 0x5, '\x00', 0x2e}, {0x32, 0x1, 0x2, '\x00', 0x86}, {0x9, 0x6, 0x6, '\x00', 0x9b}, {0x0, 0x40, 0x4, '\x00', 0x1}, {0x4, 0x2, 0x5, '\x00', 0x5}, {0x6, 0x80, 0x80, '\x00', 0x4}, {0x5, 0x4, 0xb, '\x00', 0x7}, {0x3, 0x6, 0x5, '\x00', 0x2}, {0x2, 0x8, 0x6, '\x00', 0x42}, {0xc, 0x24, 0x8, '\x00', 0xfd}, {0x9, 0x1, 0x9, '\x00', 0xe5}, {0xfd, 0x4, 0x8, '\x00', 0xb}, {0x7f, 0x5, 0x2, '\x00', 0x2}, {0xa, 0xc, 0x5, '\x00', 0x7a}, {0xf8, 0x3, 0x9, '\x00', 0x4}, {0x3, 0x1, 0x3, '\x00', 0x6f}, {0x0, 0xd, 0x2, '\x00', 0x6}, {0xff, 0xe, 0x3, '\x00', 0xc0}, {0x9, 0x6, 0x8, '\x00', 0x1}]}}) (async)
r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000f00)='/proc/sysvipc/msg\x00', 0x0, 0x0)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), r7) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000fc0)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r9, &(0x7f0000001140)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001100)={&(0x7f0000001000)={0xcc, r10, 0x0, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_DURATION={0x8}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x70}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x6}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xffff}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x1}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x6}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2e}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x96}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x21}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1685}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x93}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}], @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x21}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x8}]}, 0xcc}, 0x1, 0x0, 0x0, 0x94}, 0x6001) (async)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f00000011c0), &(0x7f0000001200)=0x4)

4.499954775s ago: executing program 0 (id=2833):
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, &(0x7f00000000c0)={0x14, &(0x7f0000000000)={0x20, 0x7, 0x6a, {0x6a, 0x24, "cf09be86fcc236706b9efad64a3603510d55c9ad0502493e9c949b57e1710d5c112db58421223240551dab4ee63f6a797ba46a0bbf8b5b2e2f85f299e4894b00529130ad8e762247473ae90b42a7636ddf67a410e1ab39ace26147ca9889ab1240158ebbf85aa1fe"}}, &(0x7f0000000080)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000003c0)={0x44, &(0x7f0000000100)={0x60, 0x10, 0xdf, "08534687800018c8d3d99d0efbe7f37daebcbeed2f5cafd2bf3665024d13316d5bc5a26b32f8abba627a3bc58e7812a5fa62111998a9ca642e2b344c5bda8dd90fef60c1453f09fd8d273ac2606a4deb04325d8dbd5f57d3e1b868514e55de0cf6b04bfe220e03604a9c9597978bbc3a695598357c54359b01061b89a68011d4b471654ca417c4df0b9e0f1dbecdd9a75e55ca744cf5e457b44edb749e4774e514d6960a076d042c0369b5c42532990d13de918902f68ae8a4df105027b92e57dab9d042c8a5b8d795908e839f9875d1f6436f5d03f9dcccfc5de8c2dd438b"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x5c}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0xe}, &(0x7f0000000280)={0x20, 0x80, 0x1c, {0x9, 0xcf0, 0xc, 0x40, 0x5, 0xad0, 0xe3b3, 0xffff03bd, 0xfffc, 0x40, 0x9, 0x5e74}}, &(0x7f00000002c0)={0x20, 0x85, 0x4, 0x8}, &(0x7f0000000300)={0x20, 0x83, 0x2}, &(0x7f0000000340)={0x20, 0x87, 0x2, 0x3}, &(0x7f0000000380)={0x20, 0x89, 0x2}})
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0xcd0)
write$char_usb(r0, &(0x7f0000000440)="4db792f63406cf7802391db5135ec27b6f15c0d781915d11f0a80578bc0731881eee865139724b28e8dc99f37aaa96aba83548b9562eb42ac1578a7b117bf10999bf8aee377b6cd3adceb0ce0a262b662ee786b6239f2f125b15020a884141bd1345", 0x62)
r1 = accept4$tipc(0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500)=0x10, 0x0)
ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000540)={{r0}, 0x7fffffffffffffff, 0x9, 0x3})
dup(r0)
r2 = syz_usb_connect$lan78xx(0x1, 0x3f, &(0x7f0000000580)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
syz_usb_control_io(r2, &(0x7f00000007c0)={0x2c, &(0x7f00000005c0)={0x40, 0x31, 0x7d, {0x7d, 0x30, "b4a2d0f573801fc8b94848ef5d63b7250077d1eaf842b67ac33c5700b1402510fbf0b2770077318a1ada8e67b09b1224d82df84700c3e5c9136458f967808a9609ca2d1993d96b55013f0fb2253d43985eedaff2cadbaf61e8ff51f9a93aaafae5d8178d99870ae82866d1e3a376a99a726aa7e73c7de3f87b6061"}}, &(0x7f0000000680)={0x0, 0x3, 0x6c, @string={0x6c, 0x3, "e59780a2e4580b138233be898c41e721ae5d5ccae34257ef9e96e4e7c76bf6bcd11119a6bbc2fdb9a4c01f7838648eaf4b9d0b8f5cca6393576dcc5894f5b6da669fde882f364fc66f23af54dce0e5354b1933276aa76c9bd5bc2eac2a7fd1b0b47e60681e62ff48cc7c"}}, &(0x7f0000000700)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f0000000740)={0x20, 0x29, 0xf, {0xf, 0x29, 0x4, 0x0, 0x8, 0x7, "e971720e", "02e91130"}}, &(0x7f0000000780)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x21, 0x3, 0x9, 0x0, 0x5, 0xfff7, 0xe5}}}, &(0x7f0000000c80)={0x84, &(0x7f0000000800)={0x40, 0xf, 0x93, "e3e44ed8bd81f01186bd45e9189c23047ed9871a66f021a9a95b4939058be39aaa889dab45c5e35721205f057fdfa3a8dfb40137911024d0efe2f4fc99ef1858db71e96805870684a44821805a326afe6f83258d4b125266cd74789b0e9dc8f002116ac2352d30f9e9e5d29db360c9a51471e46fdb222bd8be9025517c89290c942707a43d177ab9eae590e018807dd150cde1"}, &(0x7f00000008c0)={0x0, 0xa, 0x1, 0x46}, &(0x7f0000000900)={0x0, 0x8, 0x1}, &(0x7f0000000940)={0x20, 0x0, 0x4, {0x3, 0x2}}, &(0x7f0000000980)={0x20, 0x0, 0x8, {0x11c0, 0x2, [0xf0f0]}}, &(0x7f00000009c0)={0x40, 0x7, 0x2, 0x401}, &(0x7f0000000a00)={0x40, 0x9, 0x1, 0x2}, &(0x7f0000000a40)={0x40, 0xb, 0x2, "7491"}, &(0x7f0000000a80)={0x40, 0xf, 0x2, 0x1}, &(0x7f0000000ac0)={0x40, 0x13, 0x6, @local}, &(0x7f0000000b00)={0x40, 0x17, 0x6, @random="b1eb6451c096"}, &(0x7f0000000b40)={0x40, 0x19, 0x2, "71b9"}, &(0x7f0000000b80)={0x40, 0x1a, 0x2, 0x5c01}, &(0x7f0000000bc0)={0x40, 0x1c, 0x1, 0x2}, &(0x7f0000000c00)={0x40, 0x1e, 0x1, 0x7f}, &(0x7f0000000c40)={0x40, 0x21, 0x1, 0x8}})
ptrace$ARCH_MAP_VDSO_32(0x1e, 0xffffffffffffffff, 0x3, 0x2002)
r3 = syz_usb_connect$lan78xx(0x8, 0x3f, &(0x7f0000000d40)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000d80), 0x400, 0x0)
ioctl$SOUND_PCM_READ_CHANNELS(r4, 0x80045006, &(0x7f0000000dc0))
ioctl$NILFS_IOCTL_GET_SUINFO(r1, 0x80186e84, &(0x7f0000000e40)={&(0x7f0000000e00)=[{0x9, 0x8001}], 0x1, 0x10, 0x2, 0x2})
r5 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r6 = syz_usb_connect$cdc_ncm(0x0, 0x9e, &(0x7f0000000e80)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x8c, 0x2, 0x1, 0x1, 0x50, 0x1, "", {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "30096415c7c5"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x7, 0xfffb, 0x28b3, 0xd}, {0x6, 0x24, 0x1a, 0x6, 0x20}, [@call_mgmt={0x5, 0x24, 0x1, 0x1, 0x4}, @mbim={0xc, 0x24, 0x1b, 0xfffd, 0x9, 0x5, 0xbf, 0x6, 0x1}, @country_functional={0xe, 0x24, 0x7, 0x8, 0x4, [0x2, 0x1, 0x6, 0x5b]}, @network_terminal={0x7, 0x24, 0xa, 0x8, 0x9, 0x4, 0x1}, @acm={0x4, 0x24, 0x2, 0x7}]}, {{0x9, 0x5, 0x81, 0x3, 0x40, 0x83, 0x2, 0xc}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x40, 0x4, 0x0, 0x5}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0xa, 0xec, 0x4}}}}}}}]}}, &(0x7f0000001400)={0xa, &(0x7f0000000f40)={0xa, 0x6, 0x201, 0x7f, 0x9d, 0x7, 0x8, 0x7}, 0xc, &(0x7f0000000f80)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7, 0x10, 0x2, 0x1c, 0x8, 0x6, 0xfff}]}, 0x7, [{0x4, &(0x7f0000000fc0)=@lang_id={0x4, 0x3, 0x59}}, {0xb9, &(0x7f0000001000)=@string={0xb9, 0x3, "79294756adfdde98da63b0533c13ccc3862064291b25cd13313d80295083fc5284125c40759da9022b67bd116588544037868e69997b21ef9e4b92d68b597bf06725dceec6b5956e42d4530e680524fd20b696c721cb0dc71e48b3053802afdf070bad4f305963a585cdbfd89ebd2cb424dfac914a7d985c850ce2003f2b3319a6ecdcf1f9ac81ad43753f8f9ed0835b2ba2a677b09c3ab9de055a24c5db1ee66751cd31fa4b7c179f99d09ee3b6d7a95d72b27ca91f2c"}}, {0xbe, &(0x7f00000010c0)=@string={0xbe, 0x3, "bf14289c18e3912798ce07e55993ae1e53323c445b11a471105f8b38778f750cd7b4a027aff91c8c8e25421e44e6d59950b9dc746535afa905349946be56b13096ce841b500da3620b245e9bd95f66ae2fe272e7efc56f284ecd411c71313fc5fe1f420112e1ef75f7d90a03e16bd82b06595ae8121a4a871ac7b0ea625787287fffb417874275860c053a5bc191c7c60c4058c66d9c3dfb8b4adfd05393c7c41d552c9b27332891281de9e5b88d7b242859901ae072762065e0bdb2"}}, {0x4, &(0x7f0000001180)=@lang_id={0x4, 0x3, 0x2001}}, {0xab, &(0x7f00000011c0)=@string={0xab, 0x3, "a6d70e922dcb19d31d5e67a646b268adc60a4a2a47a3d284980a627a2d65f842dc113ee52a2c6d08be9fc9cc533333b3217f98b830e06efcf8c64c2878d743b59b162abe5ce4f9bcebf34bd88f3b2a4f5e6c47cb7e59f0d2f49ad18fbc30ee864ac8505ba74902c59aaaf9390bd1961cd0f5159ada347786abbb4b7f905999cb30d79cc72a92c32333f147b1cadae382b75a8f09a18e30ed69a2bc5891544cbf1be7c4f0fb59472074"}}, {0x94, &(0x7f0000001280)=@string={0x94, 0x3, "a9d915a97de1f4961e22e89a009695457448dd07fa917aaa9fb819652016c1ac84826b0ba73225c1118c99f6582145eda2af4096e394a8892877aab7431a003021ef22479752ad4eebfd16f60ea475ab55e29ef3cfb696028ac0dda1950810b171cd44153541a70e4ebab71eaf35f200c1a2cfd3a2f911dfdc121559ec19ca7f516218f972d960b038f38c5172a402cf0213"}}, {0xa4, &(0x7f0000001340)=@string={0xa4, 0x3, "c8119486f3c9b89eebe6a48b679448a8753cf5417fc8cef48a03c255d03b3a5e407700073348332a7060408b1929f14000f8e102e0caf5cebf152ab7fe6d9e260fe6574b16207b592f366802f63de35345e656299e3fc9b15bd967f3c714def25d1087e7c39b87f6ee94d5af5d638cf8247b33d0d696807d7cf24c59d231360c0736b46308be33514f71b9d97e8db100c514f15e0fca95b6e445c8d5900e6eb25683"}}]})
syz_usb_control_io$cdc_ncm(r6, &(0x7f00000015c0)={0x14, &(0x7f0000001480)={0x0, 0x6, 0xe4, {0xe4, 0x4, "a8ea7c423a433233d111bd8e2bb851cd69ef2214fdcf9367fce87aea7e46edec1765ca1407c4c8f90fb99b4146e269104c7fe5bb764bc62e3e0dce2e43f1b02fa5dd1d096ef71b7996418b9bf74996f18007759afd92e9e285b1de34ae85c3ce5eea74e0bc78f333313fa2dad54055c85edd30753a3c6c701bdb8664a5e44a849f3daaae57d65883672b67d66a2d66eac18094c221f249ddd87d055656f0545344dd6da4d106791d9e0d68a1af2ae01214928ba1409703b751345ba971b7015adb5e6d16b21e835bfa25b4e89f6d7ef86b808fba884e896829c847d0e73bae3b0ec4"}}, &(0x7f0000001580)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000001840)={0x44, &(0x7f0000001600)={0x0, 0x16, 0x78, "9101124681bf294b8cea9e7754e5b34a538ebcfc18580493ad5d73af2dba32c60e4eb2ce67e41c47dd4ff2b2254ada3a676a85b75a7217716ff679f5941dff0651377c8bc18c473404b7ebc002576f0306a4a02ba818fb06c521a177b76c685be6e9f81d3a8fe63dc12d9338e9e247ade78eacea46537588"}, &(0x7f0000001680)={0x0, 0xa, 0x1, 0x8}, &(0x7f00000016c0)={0x0, 0x8, 0x1, 0xff}, &(0x7f0000001700)={0x20, 0x80, 0x1c, {0x40, 0x21, 0x555, 0x4, 0x63d9, 0x2, 0x401, 0x8, 0x3, 0xfffc, 0x10, 0x1}}, &(0x7f0000001740)={0x20, 0x85, 0x4, 0x4}, &(0x7f0000001780)={0x20, 0x83, 0x2}, &(0x7f00000017c0)={0x20, 0x87, 0x2, 0x9}, &(0x7f0000001800)={0x20, 0x89, 0x2, 0x1}})
r7 = syz_open_dev$evdev(&(0x7f00000018c0), 0x100, 0x10000)
ioctl$EVIOCRMFF(r7, 0x40044581, &(0x7f0000001900))
r8 = syz_usb_connect$lan78xx(0x4, 0x3f, &(0x7f0000001940)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
syz_usb_control_io$lan78xx(r8, &(0x7f0000001a00)={0x14, &(0x7f0000001980)={0x20, 0x9, 0x33, {0x33, 0x8, "2b618b095c8fcb2fc1b43def79135bf9e9d9ade3f99bbbd529134c96ff20f63f09867b0fd1e7ee61d08961d743726a4244"}}, &(0x7f00000019c0)={0x0, 0x3, 0x16, @string={0x16, 0x3, "2ca4e37daa70b5835302625d071145632c32606d"}}}, &(0x7f0000001c00)={0x34, &(0x7f0000001a40)={0x40, 0x18, 0x53, "aab9d9ba7171503fe6bb24255d073a07fa4a5a2756f0e4a8c72d5234488bccc9886d3b2a1d4911ec1889f5b19c3dfb95c56c4922cfb20775fc111d94a1fab0ce22297b068b367bdcfb532bbad53292dd37d07e"}, &(0x7f0000001ac0)={0x0, 0xa, 0x1}, &(0x7f0000001b00)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000001b40)={0xc0, 0xa1, 0x4, 0xa3a6}, &(0x7f0000001b80)={0x40, 0xa0, 0x4, 0xb}, &(0x7f0000001bc0)={0xc0, 0xa2, 0x2f, "b3cf7612c8ecc2d1e2476b31e0572370401890de05db1e45470b91cba2c92eef3f6367490f2a8f589a3f929609e0fc"}})
syz_usb_control_io$lan78xx(0xffffffffffffffff, &(0x7f0000001cc0)={0x14, &(0x7f0000001c40)={0x40, 0x10, 0x21, {0x21, 0xd, "f504a959f689eb49537d4b1d66b8c1e442359715bca7024f9d7e349856eb29"}}, &(0x7f0000001c80)={0x0, 0x3, 0x28, @string={0x28, 0x3, "0d10e42e6f20f9d5eec1e1e9bf27f8a994e9c0a645fde81157ce293280bd9423155ff7319416"}}}, &(0x7f0000001e80)={0x34, &(0x7f0000001d00)={0x0, 0x13, 0x5, "c1fd1cd14b"}, &(0x7f0000001d40)={0x0, 0xa, 0x1, 0xa}, &(0x7f0000001d80)={0x0, 0x8, 0x1, 0xf}, &(0x7f0000001dc0)={0xc0, 0xa1, 0x4, 0xed}, &(0x7f0000001e00)={0x40, 0xa0, 0x4, 0x800}, &(0x7f0000001e40)={0xc0, 0xa2, 0x2f, "ef3fea88a485f15098853618cf545287e3fc463f5edf59cb7b30a69b14759e03dce09ef0133398cd2ac825176f6617"}})
ioctl$int_in(r5, 0x5452, &(0x7f0000001ec0)=0x7)
socket$inet_smc(0x2b, 0x1, 0x0)
r9 = gettid()
r10 = syz_open_procfs$namespace(r9, &(0x7f0000001f00)='ns/net\x00')
syz_usb_control_io(r6, &(0x7f0000002200)={0x2c, &(0x7f0000001f40)={0x20, 0x5, 0xdd, {0xdd, 0x8, "ba66d1441930c5076dfd069f6d798ff6a2f5f2f89290b75734c072bdd8b75f30682a74b0ceeeed60037775091d57d839190683d3f22ea6189b81bc5c7146c43c39e72a365a439499f8a11858f068c2524e58d3e934589edd719bf4708f6f6d6b3733054a099224c05de1499d80a52b27f348546d2eb3623b1abbb7ae6fb3d6f7ea1168674a4a5f2a505a80cafc5e83e49653e869d19e781fe90a60f759e519d1dbf04cd9f77392edea018c0395fbb269793c170ad662b9062f9a8f096785d45154ee3010742c2085ab3759f6d464d02061c98d6da7d8d368cdfce5"}}, &(0x7f0000002040)={0x0, 0x3, 0x56, @string={0x56, 0x3, "9b09e74f96c7b29d992a6b1309cf808e2e34abbbf2fa61c9c56708a534583327182f99d2d3a8634dfcb2eb938541a556f2381095656ef15126a06bd0dc79d25049b368fba80b81efd79fb6d12f257440e437a087"}}, &(0x7f00000020c0)={0x0, 0xf, 0xa2, {0x5, 0xf, 0xa2, 0x2, [@generic={0x96, 0x10, 0x0, "7b497a329761d9ce4cec5fa71287ff3a74b47c9d4f734584d3ed333734ae61d065b55872f8d80eef6ced91fbd19c47e260a4354b7d08d1b5b41ac5073b40276bee7fa43f65ba25ef98a571b1d07355720374751ea9bf5373e280c232f58ddbe08df2048f28d72bb3873747e2b4f5e0198c5fcec301a4a821a613ab7e25a1638d2d4680f7f1b71218939b10fa10a6248946d16d"}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x2, 0x4, 0x4}]}}, &(0x7f0000002180)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3, 0x0, 0x10, 0x1, "03993fe8", "bc8fb839"}}, &(0x7f00000021c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0xf, 0x18, 0x10, 0x2, 0x90, 0x9, 0x8}}}, &(0x7f00000026c0)={0x84, &(0x7f0000002240)={0x0, 0xe, 0x87, "8abbf9e760c9d1779273466dfb3246848a0bee632fdcc1cfc4e82b77d31d1efac24f1d5b2f1a4ee168a40b8c40eb39d7a228f0c707ab4b6b8a69c546a0ad03b8aa53a613c9cfaafc4bf7be16b8913a11589800a50786281258e9cc0833262d0e41b91aae3d5ca0540303e80cda21db8ae5f69e33dc4ad8795d2fca90f9d23c5244654e84c492d3"}, &(0x7f0000002300)={0x0, 0xa, 0x1, 0x6}, &(0x7f0000002340)={0x0, 0x8, 0x1, 0x1}, &(0x7f0000002380)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000023c0)={0x20, 0x0, 0x8, {0x80, 0x8, [0xf00]}}, &(0x7f0000002400)={0x40, 0x7, 0x2}, &(0x7f0000002440)={0x40, 0x9, 0x1}, &(0x7f0000002480)={0x40, 0xb, 0x2, "6888"}, &(0x7f00000024c0)={0x40, 0xf, 0x2, 0xfff7}, &(0x7f0000002500)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000002540)={0x40, 0x17, 0x6, @broadcast}, &(0x7f0000002580)={0x40, 0x19, 0x2, "ae8e"}, &(0x7f00000025c0)={0x40, 0x1a, 0x2, 0x4}, &(0x7f0000002600)={0x40, 0x1c, 0x1, 0x84}, &(0x7f0000002640)={0x40, 0x1e, 0x1, 0x2}, &(0x7f0000002680)={0x40, 0x21, 0x1, 0xa0}})
ioctl$XFS_IOC_GETPARENTS(r10, 0xc028583e, &(0x7f0000002880)={{[0x80000000, 0xffffffff, 0xb, 0x6]}, 0x0, 0x1, 0x10001, 0x0, &(0x7f0000002780)=[{{@align=0x4, {0x31d1, 0x1ff, 0x6, 0x7}}, 0x80, 0x0, '\xbb\xbb\xbb\xbb\xbb\xbb'}, {{@align=0x2, {0x9, 0x5, 0x401}}, 0x5, 0x0, '&\\\x00'}, {{@_ha_fsid={[0x7, 0x5]}, {0x7, 0x2, 0x0, 0x7ff}}, 0x200, 0x0, '*\\*^\x00'}, {{@align=0x6, {0x8, 0x6, 0xa, 0x71}}, 0x5, 0x0, '\xff\xff\xff\xff\xff\xff'}, {{@align, {0x10, 0x2, 0xfffeffff, 0x8f}}, 0x0, 0x0, ':@^![)%[^\x00'}, {{@align=0xff, {0x401, 0xfffc, 0x401, 0x9}}, 0x7, 0x0, '-@\x00'}]})
socket$inet(0x2, 0x5, 0xc4)
syz_usb_control_io$lan78xx(r3, &(0x7f0000002980)={0x14, &(0x7f00000028c0)={0x0, 0x23, 0x3f, {0x3f, 0xe, "e4315ef2bf16b4e1c29b4e8cbd320741b1a35e6caaee90e2b728b0c97802a6bc73a3afa087feede9304326e109e271179d09d586d5fb052bd75ee978bb"}}, &(0x7f0000002940)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x185e}}}, &(0x7f0000002c00)={0x34, &(0x7f00000029c0)={0x20, 0x10, 0xbc, "8fc2650c5bd39ed7a379e11d89cc44b63d9381724c7856183741f26d68f519a19bcc96a58f98c9046279287f298faa73994b19c97296516dd8fd279d81429049575a6ac513a15246f52a0dd5239780534d20febe9f1d13ff3263180dec3948a4805f71fcf3cb1790d9158cdc70db24e765b4020a6059e4bec49adea6950e596aee6848233a177a8770239bcf6e17465da3186622e3f5b8e330f1f17931c76cc21ebc7ff93a8f190e4870d5945a983cf517e878ceed0d38bcbfc94594"}, &(0x7f0000002ac0)={0x0, 0xa, 0x1, 0x6d}, &(0x7f0000002b00)={0x0, 0x8, 0x1, 0xa}, &(0x7f0000002b40)={0xc0, 0xa1, 0x4}, &(0x7f0000002b80)={0x40, 0xa0, 0x4, 0x400}, &(0x7f0000002bc0)={0xc0, 0xa2, 0x2f, "40e12cffaca39c75ad4fbd90118fdd3855fefa9e25c6145c02ea4d02c6f617839e13ad1d8f1f131ccd630502b17cc8"}})
ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000002c40)={'bridge_slave_1\x00', 0x8})

2.330485976s ago: executing program 4 (id=2853):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x0, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5c01000021000900000000000000000000000000000000000000ffffe0000001fe8000"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="faef520b097600000c0111"], 0x15c}}, 0x20008080)

2.328714417s ago: executing program 4 (id=2855):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newlink={0x38, 0x10, 0x437, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x308c3, 0xc4a48b7f26be2e0b}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @sit={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_FLAGS={0x6}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
getpeername$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000040)=0x14)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_pidfd_open(r1, 0x0)
process_mrelease(r2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1a, 0x4, 0x0, 0x1, 0x0, 0x1, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x50)
r3 = socket$kcm(0x23, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x1, 0xa, &(0x7f0000000180), 0x4)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x541b, &(0x7f0000000640))

2.234142676s ago: executing program 4 (id=2857):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
fadvise64(r2, 0x18, 0xfff4, 0x4)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x401, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0xe}, 0x0, 0x1}, 0xe)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000000)=[{0x28, 0x2, 0xfd, 0x5ae9}, {0x6, 0x0, 0x7, 0x7}]}, 0x10)
sendmmsg$inet(r0, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000a80)="2a73ed35", 0x732a}], 0x1}}], 0x400000000000292, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000002c00ef5f"], 0x14}, 0x1, 0x0, 0x0, 0x20008081}, 0x800)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=ANY=[@ANYBLOB="0b0000002100010006bd70000000000006000000000000000000000008000e0006000000"], 0x24}}, 0x20000000)
r6 = fsopen(&(0x7f0000000040)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000080)='iocharset', &(0x7f00000000c0)='%\x8bR\xafH\xd6e\x11\'\xec\xbb\xe3\xbd\xea\xb7q\x837\xff\xac\x1c\xba\xf0]\xcb\xa0/\x1f\x16\xcf\xe2\xb5\xfc\xeb1\x12\xfdC\xb8\xa0\x01\xa3~\x971W\x96\xec\xaf\x1c\x91\xeb\xa8e\xfe\t\x00xEA\x0f\x14\r\xae\xc1\xfe\x06\x12\beSb{~R\xf0\x06\xfb\x00\x00\xf92\xce\x81p\x1fC\n\x9f(\x00\xc5\x1d\x9c\xccCq\x06\x1b-\f\xc9\xd9+\xa4\x14\xd8\xf4\xef\xf5^\xbb\x06\xc92\x01\xd92\x14\xb8=\x03\x00\xd5M\x04\xf4{H\xd0\xc8v\x10\xe1R \x9a^\xdfqpc\x00\x00\x00\x00\x00\x00&>\x94\x882\x1c_j\x15{ \xf08\xdf\x84\xe64{4\x81\xba\xfc\x93\xf4\xd8\xb5\x04\xcb\x98\xd1QF\xe5\x1b\xb30x/\x86\x02\x1ct\xc7\x88\xd2\xce\xd5\x9e1\xef`\xad\x05\x11\xc9\xd8<\xc6~\x97\xd5\xde\xe3Eh\\\x84\x14\x9e\x81*\\\x16:O\b\xe0\x9b\x00\'\xe8!\x8c\xc3\x97\x8a\xcf\xfc\x8fe\xa6\x0f\x8b\x912c\x1b>8\xa3=\xab\xf1\xf5\r\xb6\f\xfcS9\xae.\x8b\xf3\xbc,?\xb2\x9aBDPY=r\xfa8I\x16\xa2\x18\xd4\xa5\x8b\xaf\xd1\x8a\xbb\x0e\x15O\xc9p@\xadaw\x84\xc9\xdd\x87a[\xdf', 0x0)
r7 = socket$netlink(0x10, 0x3, 0xe)
r8 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=ANY=[@ANYBLOB="4800000010000305fcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800b0001006d61637365630000100002800c0004000200000100c2800008000500", @ANYRES32=r9], 0x48}, 0x1, 0x0, 0x0, 0x8090}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r4)

2.137755562s ago: executing program 4 (id=2859):
prctl$PR_GET_SPECULATION_CTRL(0x35, 0x0, 0x10) (async)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00')
writev(r0, &(0x7f0000000240)=[{&(0x7f00000000c0)='\n', 0x1}], 0x1) (async)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
read$FUSE(r1, &(0x7f0000003240)={0x2020}, 0x2020)
r2 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x38e3964, [{{0x9, 0x2, 0x48}}]}}, 0x0) (async)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x2, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xf}, {0xffff, 0xffff}, {0xb}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x63}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24000801}, 0x400) (async)
syz_usb_control_io(r2, 0x0, 0x0) (async)
syz_usb_disconnect(r2)
syz_usb_connect$rtl8150(0x5, 0x3f, &(0x7f0000000ec0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xbda, 0x8150, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)

2.041984167s ago: executing program 4 (id=2862):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x40, 0x144, 0x5}, 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000003c0), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f00000001c0)=0x40)
prlimit64(0x0, 0x7, &(0x7f0000000000)={0x3, 0x3}, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000200), &(0x7f0000000280)=0xc)
faccessat2(r3, &(0x7f0000000040)='\x00', 0x1, 0x1300)
syz_kvm_setup_syzos_vm$x86(r3, &(0x7f0000bff000/0x400000)=nil)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x20400, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0x20, 0x0, 0x0, 0xfffff018}, {0x6, 0x0, 0xfc}]}, 0x10)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x9, 0x0, 0x7fff0000}]})
connect$netrom(r1, &(0x7f0000000440)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @null]}, 0x48)
close_range(r5, 0xffffffffffffffff, 0x0)

1.806198387s ago: executing program 4 (id=2865):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
socket(0x10, 0x80002, 0x0) (async)
socket(0x10, 0x80002, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0) (async)
syz_usb_control_io$hid(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f0000000840)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00220f000000540b4550182195f51584b3"], 0x0}, 0x0)
r3 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r3, 0x400c4807, &(0x7f00000000c0)={0x3, 0x100, 0x7})
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000001b00)={0x54, r1, 0xfe12482fe0801d67, 0x0, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xffffffffffffffcd, 0x8f, 0xfffffffffffffffa}, {0xc, 0x90, 0xfffffffffffffff8}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040010}, 0x44004) (async)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000001b00)={0x54, r1, 0xfe12482fe0801d67, 0x0, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xffffffffffffffcd, 0x8f, 0xfffffffffffffffa}, {0xc, 0x90, 0xfffffffffffffff8}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040010}, 0x44004)

1.293619597s ago: executing program 0 (id=2873):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x80f, 0x8) (async, rerun: 64)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1c, &(0x7f0000000200)={0x2, &(0x7f0000000000)=[{0x7}, {0x6, 0x8d, 0x0, 0x1}]}) (async, rerun: 64)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newlink={0x20, 0x10, 0x401, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, 0x0, 0x4288}}, 0x20}, 0x1, 0x0, 0x0, 0x24008008}, 0x26040090)

617.264957ms ago: executing program 2 (id=2882):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r4, 0x0, 0x80)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r6=>0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r8, 0x5, 0x3, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000009c0)={0x78, r8, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r9}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x43, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0xfffffffffffffffe, @random=0x4, 0x1, @val={0x0, 0x6, @default_ibss_ssid}, @val, @void, @val={0x4, 0x6, {0x3, 0x7, 0x5, 0x3}}, @void, @void, @void, @val={0x2a, 0x1, {0x1}}, @val={0x3c, 0x4, {0x0, 0x1, 0x84, 0x2}}, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SMPS_MODE={0x5}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NL80211_CMD_STOP_NAN(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r5, 0x1, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000800}, 0x4080)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xac, r5, 0x10, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2d}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x6e}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x32}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x39}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15e0}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xc}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x3}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x9}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x9}]}, 0xac}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r12=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x2c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r12}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x99}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, 0x0, 0x44000)

533.428077ms ago: executing program 3 (id=2883):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="58000000020601080000000000000000000000040900020073797a3100000000050004000000000011000300686173683a6e65742c6e6574000000000c000780080012400000000205000500020000000500010006"], 0x58}}, 0x0)
sendmmsg$inet(r1, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000400)="91f8a9849519def28691bbc4173c3d6f357d0272b7319130feaab952ac4703", 0x1f}, {&(0x7f0000000680)="44900000000056ee66c372f3105eb186dd8062fad2d5b5bfb0ba06f274a8d026bd209da8ffa6a26e3b3f8075704a9d0ef9aff7f1e7db24609f02d34e76992c9df9fe6888c6c9a4825c6223be6ac54536025af1dea54e527c68b0ff250261953f2da79a78104c2d9e7b16ed86b124945aa9ab7581ebd385fb61d442035db81e18c2d271d30d1a5fff9d3b1ce90b597992b2a4d541611ce77f58dce7c9500118229e7cdf4ca7f6adca92c73d97ce54164c1942b2568635bec8e020b41fb2f8000000000000000000000000000000001c8a9f7956583e26f6f0edc415851d0b8305fe66c2b7c114e3712d87744938848f24a13cb604000000000000000000000000000000c7aa5035887b20a6c23f1fc4af2990c07f784b985a3de7740bd33848702930760416dd3cc0cc7a30cda837d7ec4fdcf77f2fc74b7b2e4a93c742dfae5239c3ee6b7b8db4816bfa711ce2535c47cbc750be7939d75f1d22ace2ec7c80962fc5351b33d7c1aee965f2812d55520d63a4c856ad5ca6446bdd65ac36984231331ad19b7a76e7a955012f8c2a530da2202bc5c5a84683a1e573db9479d630ca2b6e48aaf378b8ad63ac0e", 0x1ab}, {&(0x7f00000003c0)="641a6a2b863c0dd898013a3f97a834ebb75a925ab48c844221841a232932fc2e37e327de21450df098c113e179a0", 0x2e}, {&(0x7f0000000840)="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", 0x139}], 0x4}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="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", 0x161}, {&(0x7f0000001300)="e0cda6472d1ccfb4d1d46bf348a3b7ff9e5b6b3e30ef2266c86a08", 0x1b}], 0x2}}], 0x2, 0x2090)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r1, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'virt_wifi0\x00', <r3=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0xa300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_PORT={0x6, 0x2, 0x1, 0x0, 0x4e23}]}}}, @IFLA_LINK={0x8, 0x5, r3}]}, 0x44}, 0x1, 0x0, 0x0, 0x24008000}, 0x0)

524.798884ms ago: executing program 2 (id=2884):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000040)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000000000000000020000000000000000001ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000c00000000000000000001000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000a000000000000feffffffff7f40000200000000000008000000000000000001000600000000004400050000000000000000000000ffff0a010101000000003c00000002000000ac1414aa0000000000000000000000000600000004"], 0xfc}}, 0x0)
r1 = socket$kcm(0x29, 0x0, 0x0)
sendmsg$kcm(r1, &(0x7f0000000440)={&(0x7f0000000140)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e22, @broadcast}, 0x0, 0x1, 0x4, 0x3}}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000280)="774639bb603355b8b8b1cf8cce34e5b58b7928037f20ba3d18c19fff82862d5f7fc994b344b9f74a99bbad0cf2a0757bed9ad911078a22c3c2f215ae1de7796382a61f3aca8507fc480a1a805ece799beb6f2834aa85809467838e7a2539bc342391f4dfe3bd2dfcd80f99bcd234404206b459d58166f5b9b9176050f08648a3053039124e5daab14f4aadb6f5a9bc0f36f5f86471667d89a31bb80e2d330685780578cdb9fd8602fb82194e5fb5410c7537f8088486d9527850b45d0de3457dd33c86b2fb5cb93bb7f8521d18d9702149fdbddadcdf4b0b38d24ce9bc19a6882ee93ce4858a5e8c59816a2290b649180bf07646c5c5a0", 0xf7}, {&(0x7f0000000380)="a98caba3bf3e10351ff06859c9c4390e3c39bd875520d996433891772a6dfce1bc7a4e3bf9fb49b88edcd692c6b38e905a9aa8a740de0906f6765b6df884a242405d991599a53d415841502290374f2918a73de15a08d9c353755562670fc975ba81c07cfb4b766370d494990ff4dbdd089eb45c110afa5ced79f0fc14d3628270f9", 0x82}], 0x2}, 0x8000)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r3 = socket(0xa, 0x3, 0xff)
sendmsg$inet6(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0xa, 0x2f, 0x4, @mcast2}, 0x1c, 0x0}, 0x922bac8556bdad8e)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000040)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000000000000000020000000000000000001ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000c00000000000000000001000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000a000000000000feffffffff7f40000200000000000008000000000000000001000600000000004400050000000000000000000000ffff0a010101000000003c00000002000000ac1414aa0000000000000000000000000600000004"], 0xfc}}, 0x0) (async)
socket$kcm(0x29, 0x0, 0x0) (async)
sendmsg$kcm(r1, &(0x7f0000000440)={&(0x7f0000000140)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e22, @broadcast}, 0x0, 0x1, 0x4, 0x3}}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000280)="774639bb603355b8b8b1cf8cce34e5b58b7928037f20ba3d18c19fff82862d5f7fc994b344b9f74a99bbad0cf2a0757bed9ad911078a22c3c2f215ae1de7796382a61f3aca8507fc480a1a805ece799beb6f2834aa85809467838e7a2539bc342391f4dfe3bd2dfcd80f99bcd234404206b459d58166f5b9b9176050f08648a3053039124e5daab14f4aadb6f5a9bc0f36f5f86471667d89a31bb80e2d330685780578cdb9fd8602fb82194e5fb5410c7537f8088486d9527850b45d0de3457dd33c86b2fb5cb93bb7f8521d18d9702149fdbddadcdf4b0b38d24ce9bc19a6882ee93ce4858a5e8c59816a2290b649180bf07646c5c5a0", 0xf7}, {&(0x7f0000000380)="a98caba3bf3e10351ff06859c9c4390e3c39bd875520d996433891772a6dfce1bc7a4e3bf9fb49b88edcd692c6b38e905a9aa8a740de0906f6765b6df884a242405d991599a53d415841502290374f2918a73de15a08d9c353755562670fc975ba81c07cfb4b766370d494990ff4dbdd089eb45c110afa5ced79f0fc14d3628270f9", 0x82}], 0x2}, 0x8000) (async)
socket$key(0xf, 0x3, 0x2) (async)
sendmsg$key(r2, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0) (async)
socket(0xa, 0x3, 0xff) (async)
sendmsg$inet6(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0xa, 0x2f, 0x4, @mcast2}, 0x1c, 0x0}, 0x922bac8556bdad8e) (async)

459.875105ms ago: executing program 3 (id=2885):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000200), 0x4)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
connect(r2, &(0x7f0000000000)=@un=@abs={0x0, 0x0, 0x4e21}, 0x80)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r3=>0x0})
r4 = syz_open_dev$cec(&(0x7f00000001c0), 0x0, 0x2400)
sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)="410f7f72ff1c0d1546e707c045094060eb1636f075bb1e658b4b29070d34ce9f336895ca08b2b83c0576f3fa4444d999b306115e9be660cd42654632e1d8d6002fbe62d60fe50159afa3f1c73b62032b6de9779d930a82f27dd91a9e64b073ff", 0x60}], 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x110}, 0x850)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
listxattr(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)
ioctl$CEC_DQEVENT(r4, 0xc0506107, &(0x7f0000000280))
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@bridge_newvlan={0x18, 0x70, 0x400, 0x70bd29, 0x25dfdbfb, {0x7, 0x0, 0x0, r3}}, 0x18}, 0x1, 0x0, 0x0, 0x800}, 0x1)

459.562616ms ago: executing program 3 (id=2886):
r0 = syz_socket_connect_nvme_tcp()
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0x3c, r0}, 0x68)
prlimit64(0x0, 0x6, &(0x7f0000000140)={0x0, 0x4}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="02080000040000000100000009000100000000", @ANYRES32, @ANYBLOB='\x00\x00'], 0x48)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x24004045)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x353, 0x6, 0x88c, 0x1, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x3, 0xe}, 0x50)
r2 = io_uring_setup(0x524, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000000)={'wlan1\x00', 0x0})
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)

332.022232ms ago: executing program 2 (id=2887):
r0 = syz_io_uring_setup(0x5bb8, &(0x7f0000000440)={0x0, 0xfffffff8, 0x10100, 0x4000005, 0x67}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000140)=@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}})
io_uring_enter(r0, 0x5b43, 0x0, 0x0, 0x0, 0x0)
socket(0x2, 0xa, 0x300)
r4 = socket(0x2c, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="110000000400000004000000ff"], 0x17)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r5, 0x0, &(0x7f0000000080)=@udp6=r4}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r5, 0x0, &(0x7f0000001500)=@tcp=r4}, 0x20)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'team_slave_0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000080000", @ANYBLOB='\x00'/19, @ANYRES32=0x0, @ANYBLOB="00000000000037f8000000000000000000000000f2645f89cf"], 0x50)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000700)="ef16", 0x0}, 0x50)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r8 = accept4(r7, 0x0, 0x0, 0x800)
sendmmsg$alg(r8, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r9, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r10, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r3, 0x84, 0x1c, &(0x7f0000000840), &(0x7f0000000880)=0x4)

329.72979ms ago: executing program 0 (id=2888):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0xff, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6(0xa, 0x80003, 0x1)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="340000001a00010024bd70000000000002201400fc0200070002000008000300", @ANYRES32=r3, @ANYBLOB="08000100c0000806080002007e"], 0x34}}, 0xea5bc50b6199d7fe)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x5, &(0x7f00000007c0)=@framed={{0x18, 0x2}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xa}]}, &(0x7f00000005c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000280)=ANY=[@ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000440)={r5, &(0x7f0000000440), &(0x7f0000000040)=@udp=r4}, 0x20)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x21)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0x101, 0x1}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x2003}, 0x94)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r4, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000800)=""/4096, 0x1000}], 0x1}, 0xb}], 0x12, 0x40000021, 0x0)
r8 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r8, &(0x7f0000000200)={&(0x7f0000001340)=@hci={0x1f, 0xdd86, 0x2c}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000080)='b', 0x28}], 0x1}, 0x0)
r9 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x5, '\x00', 0x0, r9, 0x5, 0x3, 0x5}, 0x50)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'geneve0\x00', <r10=>0x0})
sendto$packet(r0, &(0x7f00000002c0)="05031600d3fc140000004788031c09102c28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r10, 0x1, 0x0, 0x6, @multicast}, 0x14)

329.267173ms ago: executing program 3 (id=2889):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth0_virt_wifi\x00'})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000200001032abd7000ffdbdf2502000000ff0000ff00000000080018004e214e21"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x4040)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00'})
ioctl$BTRFS_IOC_QGROUP_LIMIT(r2, 0x8030942b, &(0x7f00000000c0)={0xffffffffffffffff, {0x10, 0x1, 0xb, 0xb3, 0x7}})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)

220.871356ms ago: executing program 3 (id=2890):
r0 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)={0x2f0, r0, 0x8, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xbb}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3f71}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}]}, @TIPC_NLA_LINK={0x5c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x17fa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe1b5}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x8000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xd}]}]}, @TIPC_NLA_MEDIA={0xd4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x401}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x85b}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x64}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_SOCK={0x5c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x890}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xb6}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}]}, @TIPC_NLA_BEARER={0xb8, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'caif0\x00'}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @loopback}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}]}]}, @TIPC_NLA_SOCK={0x18, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}]}, @TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x2f0}, 0x1, 0x0, 0x0, 0x800}, 0x20000004)
mount$9p_virtio(&(0x7f0000000000), &(0x7f00000001c0)='.\x00', &(0x7f0000000080), 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="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"])
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x1c, 0x4, 0x6, 0x801, 0x0, 0x0, {0x2, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc011}, 0x800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_FLUSH(r2, &(0x7f0000000900)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000640)={0x264, r0, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7f}, @TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xfffffff7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7f}]}, @TIPC_NLA_MEDIA={0x54, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1ff}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}]}, @TIPC_NLA_MEDIA={0x74, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9860}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf113}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x400000}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_LINK={0xcc, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x57}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}]}, @TIPC_NLA_NET={0x38, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x401}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffff7}]}]}, 0x264}, 0x1, 0x0, 0x0, 0xc000}, 0x894)

220.228787ms ago: executing program 3 (id=2891):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000040), 0x2000b, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f0000000100)={0x1, @raw_data="f210040fbc756187424138312bfac52370e3a80ce2d83cc3ab02a19ef300f39be6c49a56f6f1ab3326f93529c8638b6ca31251be3f023f281a3e60a98f4c6759800b8a4ee0d221fa1cc9d257fe8618afcaa64266e427705c1e60839bb4815a626ee41a04d3e7c4f5f0feb90ccb46897cec802a7807f971001d3c96939f554511221521bdaa90f4312622c36eb488a97ddb69f9718de293b79558e3b4c7ad8e9e0bb64f53c4ff85f1b0c84748007f3b54ff2b1dc14cbff1c832236c5f82dc31c725251361171e0159"}) (async, rerun: 64)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001a0001602bbd7000000000000a000000", @ANYRES32=0x0, @ANYBLOB="040000040800040044de0000"], 0x24}}, 0x0) (async, rerun: 64)
r2 = syz_open_procfs(0x0, &(0x7f00000026c0)='smaps_rollup\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0xa6426000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b000000007e5d00000080000000000000373bfe7b28", @ANYRES32, @ANYRESOCT=r2, @ANYRES32=0x0, @ANYRES32, @ANYRES8=r0], 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002780)={0x18, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003f80000850000008600000018010000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x11}, 0x94) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x7f83, 0x7}, 0x50) (async)
r5 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
r6 = dup(r5)
read(r6, &(0x7f0000000040), 0x0)
ioctl$VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000000000)={0xf0f046})
ioctl$TIOCGPGRP(r6, 0x540f, &(0x7f00000002c0)=<r7=>0x0) (async)
r8 = fcntl$getown(r5, 0x9) (async)
r9 = getpgid(0xffffffffffffffff) (async)
r10 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$sock_buf(r10, 0x1, 0x3d, 0x0, &(0x7f0000000100))
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000580)=<r11=>0x0)
r12 = getpid() (async)
syz_pidfd_open(r8, 0x0) (async)
read$FUSE(r6, &(0x7f00000005c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r13=>0x0}, 0x2020) (async, rerun: 32)
r14 = getpid() (rerun: 32)
syz_clone3(&(0x7f0000002640)={0x2000, &(0x7f00000000c0), &(0x7f0000000200), &(0x7f0000000240), {0xe}, &(0x7f0000000400)=""/103, 0x67, &(0x7f0000000480)=""/120, &(0x7f0000002600)=[r7, r8, 0x0, 0x0, r9, r11, r12, r13, r14], 0x9, {r2}}, 0x58) (async, rerun: 32)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) (async, rerun: 32)
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0) (async, rerun: 32)
r15 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) (rerun: 32)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={r15, &(0x7f0000000080), &(0x7f00000000c0)=""/102}, 0x20) (async)
timer_create(0x1, 0x0, &(0x7f0000000140)) (async)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)

70.923158ms ago: executing program 2 (id=2892):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000900)=ANY=[@ANYBLOB="8c0000001000370400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000006c0012800e00010069703665727370616e000000580002801400060020010000000000000000000000000002050016000100000014000700fc0200000000000000000000000000000400120005000800", @ANYRES32=0x0, @ANYBLOB="080004"], 0x8c}}, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=@newtaction={0x18c, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x178, 0x1, [@m_tunnel_key={0x12c, 0x1, 0x0, 0x0, {{0xf}, {0x20, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x20000000}, 0x2}}]}, {0xdf, 0x6, "d58aa12b8b018ffa28481c326a276673606d07f6d93f2dfb2ed9d19c23a3f5ce44055ff7c83d69800e45ffb8ce805a6fbe14e1fd5a0c75617939975e721aed993a2b29464d4bd8426566a70025bdba53a7d75d32bb05a16e2af82848b7d0bcde8bc02ed56cc831428df616ed41491f736b49cd085adba399a2a93dbcc64a81dc85ea189521464d29f6c722e2c2e1751d803332f20b3df06ba74634f7accfa74a94919d5a54aa601dee04de707f901a2d2ada6c84db99b327b059708a65cbc8bbfb092afe744584c5bf90acf06d7d13b1ef71553678081800000000"}, {0xc}, {0xc}}}, @m_ct={0x48, 0x2, 0x0, 0x0, {{0x7}, {0x20, 0x2, 0x0, 0x0, [@TCA_CT_ACTION={0x6, 0x3, 0x1}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @mcast2}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x18c}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r2=>0x0})
r3 = socket(0x10, 0x80002, 0x0)
r4 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r4, &(0x7f0000000000)={0x18, 0x2, {0x0, @empty}}, 0x1e)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000940)=ANY=[@ANYBLOB="4400000013002901800000000000000007000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a800800028004000500080000003e"], 0x44}}, 0x0)

70.601705ms ago: executing program 0 (id=2893):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001c00)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@local, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x10, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x9, 0x2, 0xfffffffffffffffd, 0xfffffffffffffffe}, {}, 0x0, 0x0, 0x1}}, 0xb8}}, 0x4000080)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1b, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000040000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000071000000850000005000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

70.404653ms ago: executing program 2 (id=2894):
r0 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000540)={0xffffffffffffffff, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, 0xc2, 0x8, 0x0, 0x0}}, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffc, 0x6, 0x3, @buffer={0x0, 0x1000, &(0x7f0000001d80)=""/4096}, &(0x7f0000000000)="a1f8a81b133d", 0x0, 0x0, 0x30, 0x0, 0x0})
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r1, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f0000002d80)={0x2500, 0x14, 0x10, 0x70bd26, 0x25dfdbfe, {0x1d, 0x2}, [@INET_DIAG_REQ_BYTECODE={0xf4, 0x1, "09ca3f8e94b0be2047c518d3e062a4078029ecb318de51ec3d502564a867fec8aafbc02f565c94f5160a5210ab66934643198b5c6512149373e0f1450de2c9e54827b49040ecd741abdfe780abb1c80f9d04d39d4aaa48e93691ea151da7feafabdce02bd037a2a9c0a2540e609b102e17e301754137e81e76b3fe0cc812e6d5391668e3404d6116bd2cf361604a7cc2f28352305e869da9ca46b597aba32f3df6fe4236874cf4043c4381570bbc29befadce209cb75472b695ed7f51c05f5f7631585ee8b501d819ff75cac65b85033176eabf66cf8a91660faff3225d8c7d23c40bb3c44244ba0025ac8c68ea365ac"}, @INET_DIAG_REQ_BYTECODE={0xed, 0x1, "fe68ff970a2e6968e74e76206f6cd552bb404d3cd4dfe12eb87122f5573513e83cc3cbd25a257e6bc0376df2d3228f90f6beab7e538f3de85be8b43a885c95bf695e9c482b516ab7ec4b3c99ee08b64af3d83b24af64039f2b51e117e52fa87943293f3e76b4c1990a7db068e705db0ecad4b98d0fb97943ccbc4d4513f072e487c5a11f14eb74ef2d7b892919b10c89e9a5f4f43cae4bca8e013ea43127f4aabd560bedb46f2575f14388679aec3bd61d1e3360e1a7d0983283ab240a108041bb4b9cc1dc48b4f7a595d60dd4d8ebc4cd44896e9c7c356d617ea9e57600b357227d12c7b55b652e63"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0x81, 0x1, "efec4b69348fe9cb3069fd7957c127fb59caf403aaeea0964fdebdf4c901e1ca3c54f6635a293269d84fcb00b273b861f095913af76ea47ecb34938b1c64ac3f6993e122cef755b9a38ccbb9c6660b7f7b971565483417361f247173561524a0295feb5ea59b2e12736ae99b6f815c34979384d0917c05a6af51469f1e"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0xd5, 0x1, "920fcfb99005d2a9c99ebbcf1d29e719e2d78226a9b970bd85f5152440261d681c59c2fc16c46bdab5a57222f77ed9a2d7c29e0b6d86170108d5a1399ee3587c8faddcad0819bfce311ce485f29b8ebfa827c0fc3602d90c88b799b9054bb2fb1ed1494285b0f0548ede14285e278916d9301545f6955c48f5ad21dd21a6899a3034e44b0ca362e2b436057392ae817d4910460d02275ee33a527d6c7b03cfcfc2cf6a781ffca069b1b0251b70434596807f9eb2b78051731d8a408378fe1f463a01a0e20ca01e32709e375f1fbd8cfddf"}, @INET_DIAG_REQ_BYTECODE={0xf7, 0x1, "94ff2d1be2e3e610e15c0175e3119ed00cc99b227349dc0575274841b220113bd450c61467af5009e8e25ef07c32fffdcee5309cd9b3bbf8b3a064558f46f97a714f43bbde1ab5cf243528f38b59206edf661d5d5ad333a2bfbda360de67e922d001b917d78849f5ebabf1f0c808ed0109b5311bab3c5e3bbb6d88caa215878641b3517c3ac3063a7fc3820b555f68f99a4b5b2826fa0b6ad57d960f0023961d8a89d81d3d431175ca3a757026afb5b16f8e5893f51b4f13e8567bf58cad0c3f5a5e4df2f365c4c709e3d59e0734d2d1a58f60a05e504a014c1d1f80fc2e745461009c104277132a704760e5d2f67673941dd8"}, @INET_DIAG_REQ_BYTECODE={0xa, 0x1, "5ec095724e11"}, @INET_DIAG_REQ_BYTECODE={0x9d, 0x1, "07a9e837593343e8191e7bb8e25db7b6b2f63f619e5fba1e21e71067639ce66714979a86dddf7a652ebd56a91203f5d9aee9744fe0b540295cd1573af9bfcc07fdaa55d8558a7f7313974458724c97678de2af26d66c2cd0fec8dfd97f5ff09561c9a8d7bda6279a43788c88fc0f9575c5d3c0a63800d35fe28d609a748f3544c6ea30ceca3c415ba8e7314fdf6f209a63ab1f1c5646a8b50f"}]}, 0x2500}, 0x1, 0x0, 0x0, 0x20000880}, 0x40008001)

275.423µs ago: executing program 2 (id=2895):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=@ipv6_delrule={0x30, 0x21, 0x1, 0x70bd29, 0x25dfdbfd, {0xa, 0x10, 0x0, 0x4, 0xfe, 0x0, 0x0, 0x0, 0xc}, [@FRA_DST={0x14, 0x1, @loopback}]}, 0x30}, 0x1, 0x0, 0x0, 0x8841}, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file2\x00', 0x24)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f0000000140)='./file0\x00')
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
removexattr(&(0x7f0000000200)='./bus\x00', &(0x7f0000000580)=ANY=[@ANYBLOB="73656375726974792e5b252700ed56fd1e53a48b232a7beae2542190a22568cee8724cbe19c0114894feffc3fadc72cf25fb372d025f8b01325330b385cd9fad9fa9eb60882f96e096afee5e7c23c84cd7ba78780d43e82a03dc47df6341cdda84691ce53b133a35d84cb33ccb62370f8bc496310e721d4681752c53c2a1212c8bb00071ab90a8c6d7a8209670345d9995b25f5a5a51f2b2c884ab3e8b0f4b10702012ee7828e02266c38036bdc663b8ec05d76b756edb487e58d4439eaaca69679a8980afe755cc32a78b98fd714c8bded71620ad7518d5102c62ce6928778945"])
r3 = socket(0x1a, 0x803, 0x8)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newqdisc={0x3c, 0x24, 0xe0b, 0xfefffffc, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_WASH={0x8, 0xd, 0x1}]}}]}, 0x3c}}, 0x0)
sendto$packet(r1, &(0x7f0000000080)="39c394e534ecf02e7e0e9ca208004b54", 0x10, 0x240000c4, &(0x7f0000000440)={0x11, 0x0, r4, 0x1, 0x95, 0x6, @broadcast}, 0x14)
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)=@getqdisc={0x30, 0x26, 0x800, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xfff1, 0x1}, {0x9, 0xffff}, {0xfff3, 0xb}}, [{0x4}, {0x4}, {0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000000)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/partitions\x00', 0x0, 0x0)
r5 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000140)=0xf)
read(r5, 0x0, 0x0)
openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xfc, 0x7fff0026}]})
r6 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r7 = fsmount(r6, 0x1, 0x0)
fchdir(r7)
r8 = fsopen(&(0x7f00000014c0)='proc\x00', 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x7, &(0x7f0000000280)=@framed={{0x18, 0x8, 0x0, 0x0, 0x8000}, [@map_fd={0x18, 0x6, 0x1, 0x0, r2}, @initr0, @exit]}, &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffbb}, 0x94)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000004c0)=@generic={&(0x7f0000000540)='./file1\x00', r9}, 0x18)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
fsmount(r8, 0x1, 0xa)

0s ago: executing program 0 (id=2896):
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x8000000000000001, 0x58000)
ioctl$EVIOCGRAB(r1, 0x40044590, &(0x7f00000000c0)=0x80000001)
ioctl$IOCTL_STOP_ACCEL_DEV(r0, 0x40096101, &(0x7f0000000800)={{}, 0xfe}) (async)
r2 = syz_io_uring_setup(0x3763, &(0x7f0000000500)={0x0, 0x72de, 0x800, 0x200000, 0x6}, &(0x7f0000000040), &(0x7f0000000100)) (async)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0x32, &(0x7f0000000f00), 0x4) (async)
fchdir(r0) (async)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r2, 0x2, &(0x7f0000002d40)={0x0, 0x0, 0x0, 0x0}, 0x20) (async)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)=[0xffffffffffffffff]}, 0x20) (async)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x6b142, 0x0)
bind$qrtr(r4, &(0x7f0000000140)={0x2a, 0x4, 0x4001}, 0xc)
r5 = syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
listen(r5, 0x8)
mount(&(0x7f0000000300)=@sg0, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0)='jfs\x00', 0x0, &(0x7f0000000000)='usrquota')

kernel console output (not intermixed with test programs):

as invalid maxpacket 16, setting to 8
[  210.493272][ T5938] usb 5-1: config 9 interface 243 altsetting 86 has a duplicate endpoint with address 0xF, skipping
[  210.498144][ T5938] usb 5-1: config 9 interface 243 altsetting 86 endpoint 0xC has invalid maxpacket 512, setting to 8
[  210.501587][ T5938] usb 5-1: config 9 interface 243 altsetting 86 has a duplicate endpoint with address 0xC, skipping
[  210.505211][ T5938] usb 5-1: config 9 interface 243 altsetting 86 endpoint 0xE has invalid maxpacket 1023, setting to 8
[  210.508916][ T5938] usb 5-1: config 9 interface 243 altsetting 86 has an invalid descriptor for endpoint zero, skipping
[  210.512343][ T5938] usb 5-1: config 9 interface 243 altsetting 86 endpoint 0xA has an invalid bInterval 255, changing to 4
[  210.515428][T13364] ip6t_REJECT: ECHOREPLY is not supported
[  210.515752][ T5938] usb 5-1: config 9 interface 243 altsetting 86 endpoint 0xA has invalid maxpacket 1024, setting to 0
[  210.521161][ T5938] usb 5-1: config 9 interface 243 altsetting 86 endpoint 0xD is Bulk; changing to Interrupt
[  210.524673][ T5938] usb 5-1: config 9 interface 243 altsetting 86 has a duplicate endpoint with address 0xF, skipping
[  210.528094][ T5938] usb 5-1: config 9 interface 9 altsetting 88 has a duplicate endpoint with address 0xC, skipping
[  210.531419][ T5938] usb 5-1: config 9 interface 9 altsetting 88 endpoint 0x3 has invalid maxpacket 64, setting to 0
[  210.534818][ T5938] usb 5-1: config 9 interface 9 altsetting 88 has an endpoint descriptor with address 0x1D, changing to 0xD
[  210.538537][ T5938] usb 5-1: config 9 interface 9 altsetting 88 has a duplicate endpoint with address 0xD, skipping
[  210.541987][ T5938] usb 5-1: config 9 interface 9 altsetting 88 has a duplicate endpoint with address 0xC, skipping
[  210.545458][ T5938] usb 5-1: config 9 interface 9 altsetting 88 has a duplicate endpoint with address 0xC, skipping
[  210.548912][ T5938] usb 5-1: config 9 interface 9 altsetting 88 endpoint 0x9 has invalid maxpacket 1024, setting to 8
[  210.552255][ T5938] usb 5-1: config 9 interface 9 altsetting 88 has a duplicate endpoint with address 0x9, skipping
[  210.555544][ T5938] usb 5-1: config 9 interface 9 altsetting 88 has 8 endpoint descriptors, different from the interface descriptor's value: 7
[  210.560660][ T5938] usb 5-1: config 9 interface 180 altsetting 2 endpoint 0x4 has invalid maxpacket 16, setting to 8
[  210.564586][ T5938] usb 5-1: config 9 interface 180 altsetting 2 has a duplicate endpoint with address 0x1, skipping
[  210.568058][ T5938] usb 5-1: config 9 interface 180 altsetting 2 endpoint 0xB has invalid maxpacket 1024, setting to 8
[  210.571679][ T5938] usb 5-1: config 9 interface 180 altsetting 2 has a duplicate endpoint with address 0x1, skipping
[  210.575182][ T5938] usb 5-1: config 9 interface 180 altsetting 2 endpoint 0x6 has an invalid bInterval 105, changing to 4
[  210.578560][ T5938] usb 5-1: config 9 interface 180 altsetting 2 endpoint 0x6 has invalid maxpacket 1024, setting to 0
[  210.581966][ T5938] usb 5-1: config 9 interface 180 altsetting 2 has a duplicate endpoint with address 0x9, skipping
[  210.585343][ T5938] usb 5-1: config 9 interface 180 altsetting 2 has a duplicate endpoint with address 0x9, skipping
[  210.588817][ T5938] usb 5-1: config 9 interface 180 altsetting 2 has a duplicate endpoint with address 0x3, skipping
[  210.594139][ T5938] usb 5-1: config 9 interface 180 altsetting 2 has a duplicate endpoint with address 0xC, skipping
[  210.597722][ T5938] usb 5-1: config 9 interface 180 altsetting 2 has 9 endpoint descriptors, different from the interface descriptor's value: 11
[  210.601901][ T5938] usb 5-1: too many endpoints for config 9 interface 89 altsetting 100: 221, using maximum allowed: 30
[  210.607321][T13368] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2174'.
[  210.618890][T13370] netlink: 'syz.1.2175': attribute type 3 has an invalid length.
[  210.621657][T13370] netlink: 'syz.1.2175': attribute type 1 has an invalid length.
[  210.623527][ T5938] usb 5-1: config 9 interface 89 altsetting 100 has an invalid descriptor for endpoint zero, skipping
[  210.633823][ T5938] usb 5-1: config 9 interface 89 altsetting 100 has a duplicate endpoint with address 0xF, skipping
[  210.637269][ T5938] usb 5-1: config 9 interface 89 altsetting 100 has 2 endpoint descriptors, different from the interface descriptor's value: 221
[  210.641853][ T5938] usb 5-1: config 9 interface 243 has no altsetting 0
[  210.644201][ T5938] usb 5-1: config 9 interface 9 has no altsetting 0
[  210.646851][ T5938] usb 5-1: config 9 interface 180 has no altsetting 0
[  210.648986][ T5938] usb 5-1: config 9 interface 89 has no altsetting 0
[  210.654862][ T5938] usb 5-1: Dual-Role OTG device on HNP port
[  210.659354][ T5938] usb 5-1: New USB device found, idVendor=106c, idProduct=9be6, bcdDevice=ee.81
[  210.662146][ T5938] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.664673][ T5938] usb 5-1: Product: à¡‚
[  210.666242][ T5938] usb 5-1: Manufacturer: ဌ
[  210.668024][ T5938] usb 5-1: SerialNumber: à „
[  210.675822][T13319] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  210.680488][T13319] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  210.717637][T13376] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2177'.
[  210.913656][ T5938] qcaux 5-1:9.243: qcaux converter detected
[  210.920801][ T5938] usb 5-1: qcaux converter now attached to ttyUSB0
[  210.920904][T13393] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2182'.
[  210.936643][ T5938] usb 5-1: USB disconnect, device number 7
[  210.948288][T13397] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  210.948906][ T5938] qcaux ttyUSB0: qcaux converter now disconnected from ttyUSB0
[  210.952926][T13393] bond7: entered promiscuous mode
[  210.954401][ T5938] qcaux 5-1:9.243: device disconnected
[  210.959476][T13393] 8021q: adding VLAN 0 to HW filter on device bond7
[  210.978022][T13397] macsec3: entered promiscuous mode
[  211.071385][T13406] xt_TPROXY: Can be used only with -p tcp or -p udp
[  211.126518][   T40] audit: type=1400 audit(2000000132.114:31176): avc:  denied  { mounton } for  pid=13407 comm="syz.2.2188" path="/bus" dev="hugetlbfs" ino=53303 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=dir permissive=1
[  211.126776][T13408] overlayfs: failed to resolve './file0': -2
[  211.371991][ T5953] Bluetooth: hci4: command 0x0419 tx timeout
[  211.476759][T13438] random: crng reseeded on system resumption
[  211.485775][T13439] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  211.488251][T13439] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  211.490988][T13439] vhci_hcd vhci_hcd.0: Device attached
[  211.504690][T13441] vhci_hcd: unknown pdu 2
[  211.506047][T12994] vhci_hcd vhci_hcd.2: stop threads
[  211.508103][T12994] vhci_hcd vhci_hcd.2: release socket
[  211.511005][T12994] vhci_hcd vhci_hcd.2: disconnect device
[  211.519895][T13439] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(5)
[  211.522202][T13439] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  211.526895][T13439] vhci_hcd vhci_hcd.0: Device attached
[  211.530699][T13446] vhci_hcd: connection closed
[  211.530885][T12965] vhci_hcd vhci_hcd.2: stop threads
[  211.534577][T12965] vhci_hcd vhci_hcd.2: release socket
[  211.534955][T13449] sctp: [Deprecated]: syz.0.2201 (pid 13449) Use of int in maxseg socket option.
[  211.534955][T13449] Use struct sctp_assoc_value instead
[  211.536467][T12965] vhci_hcd vhci_hcd.2: disconnect device
[  211.543531][ T5953] Bluetooth: hci4: ACL packet for unknown connection handle 200
[  211.547042][T13451] netlink: 'syz.1.2202': attribute type 17 has an invalid length.
[  211.559077][ T5953] Bluetooth: hci4: ACL packet for unknown connection handle 200
[  211.564632][T13449] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2201'.
[  211.686917][T13459] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2205'.
[  211.976591][T13467] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2207'.
[  212.008456][T13467] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2207'.
[  212.041243][   T40] audit: type=1400 audit(2000000132.965:31177): avc:  denied  { read } for  pid=13471 comm="syz.0.2208" lport=39195 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  212.093919][T13476] input: syz1 as /devices/virtual/input/input15
[  212.268973][T13484] tipc: Started in network mode
[  212.271387][T13484] tipc: Node identity 1a33b53e64c2, cluster identity 4711
[  212.273868][T13484] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  212.289716][T13484] tipc: Disabling bearer <eth:syzkaller0>
[  212.367195][T13488] block nbd2: NBD_DISCONNECT
[  212.718557][ T1026] usb 7-1: new low-speed USB device number 25 using dummy_hcd
[  212.902369][ T1026] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  212.904935][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  212.909350][ T1026] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  212.913187][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  212.918912][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  212.924409][ T1026] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  212.927326][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  212.931899][ T1026] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  212.936351][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  212.940381][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  212.945443][ T1026] usb 7-1: config 168 descriptor has 1 excess byte, ignoring
[  212.947875][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  212.952257][ T1026] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  212.957364][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  212.962289][ T1026] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  212.970699][ T1026] usb 7-1: string descriptor 0 read error: -22
[  212.973858][ T1026] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  212.978156][ T1026] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  212.998254][ T1026] adutux 7-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  213.331653][   T39] usb 7-1: USB disconnect, device number 25
[  213.585119][ T5953] Bluetooth: hci4: command 0x0419 tx timeout
[  213.766225][   T39] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  213.905192][   T39] usb 5-1: device descriptor read/64, error -71
[  213.965538][T13537] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  214.069144][T13545] fuse: Unknown parameter ''
[  214.073024][T13545] overlayfs: failed to clone upperpath
[  214.079070][T13545] overlayfs: failed to clone upperpath
[  214.079768][   T40] audit: type=1400 audit(2000000134.874:31178): avc:  denied  { execheap } for  pid=13543 comm="syz.1.2229" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  214.090380][T13544] program syz.3.2228 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  214.163059][ T1117] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0
[  214.166183][ T1117] ata1.00: irq_stat 0x40000000
[  214.168189][ T1117] ata1.00: failed command: ZAC MANAGEMENT OUT
[  214.170972][ T1117] ata1.00: cmd 9f/01:00:00:00:00/00:00:00:00:00/40 tag 1
[  214.170972][ T1117]          res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error)
[  214.177662][ T1117] ata1.00: status: { DRDY ERR }
[  214.179626][ T1117] ata1.00: error: { ABRT }
[  214.181634][ T1117] ata1.00: device reported invalid CHS sector 0
[  214.183929][   T39] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  214.195860][    C2] ata1: illegal qc_active transition (00000000->00800000)
[  214.333000][   T39] usb 5-1: device descriptor read/64, error -71
[  214.461580][   T39] usb usb5-port1: attempt power cycle
[  214.540694][ T1117] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300)
[  214.544587][ T1117] ata1.00: configured for UDMA/100
[  214.673567][T13551] netlink: 'syz.1.2231': attribute type 4 has an invalid length.
[  214.732955][T13553] overlay: filesystem on ./bus not supported
[  214.785460][   T40] audit: type=1800 audit(2000000135.538:31179): pid=13555 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.2233" name="nullb0" dev="tmpfs" ino=2418 res=0 errno=0
[  214.835319][   T39] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  214.841154][T13560] overlayfs: failed to clone upperpath
[  214.857799][   T39] usb 5-1: device descriptor read/8, error -71
[  214.958572][   T40] audit: type=1400 audit(2000000135.697:31180): avc:  denied  { write } for  pid=13566 comm="syz.3.2237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  215.123958][   T39] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  215.152509][   T39] usb 5-1: device descriptor read/8, error -71
[  215.263323][   T39] usb usb5-port1: unable to enumerate USB device
[  215.307152][T13584] fuse: Unknown parameter '00000000000000000000003ŠGhÖ¯bò&­ƒWA�êR袣Óš ¾Õ÷óIÒ/’·•2~Ç\© +Š:ÁXù±i05�î*ÓÐ\ÊP|¸!-ðÙR{ÿÿÉEbˆ”ž¹­ÓZGÔÅJþ'
[  215.608888][T13603] fuse: Unknown parameter 'fÌr0x0000000000000005'
[  215.808385][ T5953] Bluetooth: hci4: command 0x0419 tx timeout
[  215.845725][T13615] __nla_validate_parse: 5 callbacks suppressed
[  215.845744][T13615] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2250'.
[  215.848564][T13620] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2251'.
[  215.857306][T13620] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2251'.
[  216.069762][T13642] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2259'.
[  216.072661][T13642] openvswitch: netlink: Flow key attr not present in new flow.
[  216.119650][T13646] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=13646 comm=syz.3.2261
[  216.137450][T13647] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2260'.
[  216.442004][T13662] overlayfs: conflicting lowerdir path
[  216.576323][T13667] bond8: entered allmulticast mode
[  216.621200][T13671] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2268'.
[  216.650224][T13673] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2269'.
[  216.705250][T13679] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  216.838888][T13692] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  216.841695][T13692] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2274'.
[  216.844862][T13692] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2274'.
[  217.088775][T13721] xt_hashlimit: size too large, truncated to 1048576
[  217.146989][   T24] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  217.165621][   T40] audit: type=1400 audit(2000000137.755:31181): avc:  denied  { map } for  pid=13703 comm="syz.2.2277" path="/492/file0/memory.events" dev="9p" ino=82313289 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  217.166621][T13717] netfs: Couldn't get user pages (rc=-14)
[  217.177848][T13717] netfs: Zero-sized read [R=b]
[  217.318743][   T24] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  217.321850][   T24] usb 5-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  217.325464][   T24] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  217.328567][   T24] usb 5-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  217.332144][   T24] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  217.335721][   T24] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  217.341216][   T24] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  217.344427][   T24] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  217.347007][   T24] usb 5-1: Product: syz
[  217.348676][   T24] usb 5-1: Manufacturer: syz
[  217.353276][T13686] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  217.360346][   T24] cdc_wdm 5-1:1.0: skipping garbage
[  217.362341][   T24] cdc_wdm 5-1:1.0: skipping garbage
[  217.365221][   T24] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  217.367107][   T24] cdc_wdm 5-1:1.0: Unknown control protocol
[  217.393450][   T40] audit: type=1400 audit(2000000137.979:31182): avc:  denied  { setattr } for  pid=13733 comm="syz.3.2284" name="HCI" dev="sockfs" ino=54484 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  217.430569][T13739] 9pnet_virtio: no channels available for device syz
[  217.573991][    C3] wdm_int_callback: 36 callbacks suppressed
[  217.574006][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.578085][    C3] wdm_int_callback: 36 callbacks suppressed
[  217.578096][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.582465][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.585289][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.588042][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.590362][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.592498][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.594543][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.596802][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.598953][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.601161][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.603305][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.606889][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.609196][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.611312][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.613462][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.615551][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.617715][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.619847][    C3] cdc_wdm 5-1:1.0: nonzero urb status received: -71
[  217.621949][    C3] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes
[  217.653444][T13686] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2271'.
[  217.661034][   T40] audit: type=1400 audit(2000000138.232:31183): avc:  denied  { call } for  pid=13746 comm="syz.3.2287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  217.667101][   T40] audit: type=1400 audit(2000000138.232:31184): avc:  denied  { transfer } for  pid=13746 comm="syz.3.2287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[  217.668550][   T39] usb 5-1: USB disconnect, device number 12
[  217.708109][T13749] input: syz0 as /devices/virtual/input/input17
[  218.031943][ T5953] Bluetooth: hci4: command 0x0419 tx timeout
[  218.036303][T13759] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  218.228899][T13776] bridge0: port 1(ipvlan2) entered blocking state
[  218.231232][T13776] bridge0: port 1(ipvlan2) entered disabled state
[  218.233411][T13776] ipvlan2: entered allmulticast mode
[  218.236237][T13776] bridge0: entered allmulticast mode
[  218.239478][T13776] ipvlan2: left allmulticast mode
[  218.241431][T13776] bridge0: left allmulticast mode
[  218.349933][T13785] 8021q: VLANs not supported on ip_vti0
[  218.479152][T13792] xt_hashlimit: size too large, truncated to 1048576
[  218.706829][T13809] FAULT_INJECTION: forcing a failure.
[  218.706829][T13809] name failslab, interval 1, probability 0, space 0, times 0
[  218.711107][T13809] CPU: 0 UID: 0 PID: 13809 Comm: syz.0.2308 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  218.711133][T13809] Tainted: [L]=SOFTLOCKUP
[  218.711137][T13809] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  218.711144][T13809] Call Trace:
[  218.711149][T13809]  <TASK>
[  218.711155][T13809]  dump_stack_lvl+0x100/0x190
[  218.711199][T13809]  should_fail_ex.cold+0x5/0xa
[  218.711215][T13809]  ? tomoyo_realpath_from_path+0xb6/0x690
[  218.711239][T13809]  should_failslab+0xc2/0x120
[  218.711255][T13809]  __kmalloc_noprof+0xe0/0x850
[  218.711286][T13809]  tomoyo_realpath_from_path+0xb6/0x690
[  218.711310][T13809]  tomoyo_path_number_perm+0x23c/0x580
[  218.711324][T13809]  ? tomoyo_path_number_perm+0x22e/0x580
[  218.711345][T13809]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  218.711397][T13809]  ? find_held_lock+0x2b/0x80
[  218.711415][T13809]  ? __fget_files+0x215/0x3d0
[  218.711430][T13809]  ? hook_file_ioctl_common+0x146/0x410
[  218.711454][T13809]  ? __fget_files+0x21f/0x3d0
[  218.711476][T13809]  security_file_ioctl+0xd3/0x230
[  218.711500][T13809]  __x64_sys_ioctl+0xb7/0x210
[  218.711524][T13809]  do_syscall_64+0x106/0xf80
[  218.711554][T13809]  ? clear_bhb_loop+0x40/0x90
[  218.711574][T13809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.711590][T13809] RIP: 0033:0x7f788b59c799
[  218.711603][T13809] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  218.711619][T13809] RSP: 002b:00007f788c4e5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  218.711635][T13809] RAX: ffffffffffffffda RBX: 00007f788b815fa0 RCX: 00007f788b59c799
[  218.711646][T13809] RDX: 0000200000000140 RSI: 000000004040ae9e RDI: 0000000000000005
[  218.711655][T13809] RBP: 00007f788c4e5090 R08: 0000000000000000 R09: 0000000000000000
[  218.711665][T13809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.711675][T13809] R13: 00007f788b816038 R14: 00007f788b815fa0 R15: 00007fffc3f6a888
[  218.711695][T13809]  </TASK>
[  218.711703][T13809] ERROR: Out of memory at tomoyo_realpath_from_path.
[  218.886593][   T40] audit: type=1326 audit(2000000139.363:31185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13814 comm="syz.3.2310" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd94079c799 code=0x7ffc0000
[  218.896592][   T40] audit: type=1326 audit(2000000139.363:31186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13814 comm="syz.3.2310" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd94079c799 code=0x7ffc0000
[  218.907661][   T40] audit: type=1326 audit(2000000139.363:31187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13814 comm="syz.3.2310" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd94079c799 code=0x7ffc0000
[  218.916426][   T40] audit: type=1326 audit(2000000139.363:31188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13814 comm="syz.3.2310" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd94079c799 code=0x7ffc0000
[  218.924038][   T40] audit: type=1326 audit(2000000139.363:31189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13814 comm="syz.3.2310" exe="/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7fd94079c799 code=0x7ffc0000
[  218.931698][   T40] audit: type=1326 audit(2000000139.363:31190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13814 comm="syz.3.2310" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd94079c799 code=0x7ffc0000
[  218.967014][T13818] block nbd0: NBD_DISCONNECT
[  219.001199][T13818] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  219.005656][T13818] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  220.324831][T13833] tipc: Enabling of bearer <ud#:s> rejected, media not registered
[  220.513830][ T5953] Bluetooth: hci4: command 0x0419 tx timeout
[  220.549413][T13863] IPVS: Error connecting to the multicast addr
[  220.554384][T13865] kAFS: unable to lookup cell 'syz0'
[  220.926902][T13887] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  220.930785][T13887] overlayfs: failed to set xattr on upper
[  220.934609][T13887] overlayfs: ...falling back to redirect_dir=nofollow.
[  220.937522][T13887] overlayfs: ...falling back to metacopy=off.
[  220.941836][T13887] overlayfs: ...falling back to index=off.
[  220.944458][T13887] overlayfs: ...falling back to uuid=null.
[  220.974181][T13891] debugfs: '1ùà^!' already exists in 'ieee80211'
[  221.043289][T13896] ieee802154 phy0 wpan0: encryption failed: -22
[  221.076966][T13897] nvme_fabrics: missing parameter 'transport=%s'
[  221.084698][T13897] nvme_fabrics: missing parameter 'nqn=%s'
[  221.170071][T13906] netlink: 'syz.3.2335': attribute type 11 has an invalid length.
[  221.326638][T13913] __nla_validate_parse: 4 callbacks suppressed
[  221.326651][T13913] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.2338'.
[  221.371115][T13918] ip6t_REJECT: ECHOREPLY is not supported
[  221.490345][T13924] SELinux: failed to load policy
[  221.520887][T13929] random: crng reseeded on system resumption
[  221.538863][T13929] Restarting kernel threads ...
[  221.542827][T13929] Done restarting kernel threads.
[  221.674481][T13950] sctp: [Deprecated]: syz.0.2348 (pid 13950) Use of int in max_burst socket option deprecated.
[  221.674481][T13950] Use struct sctp_assoc_value instead
[  221.722404][T13952] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2350'.
[  221.753590][T13955] netlink: 'syz.0.2352': attribute type 1 has an invalid length.
[  221.799614][T13955] 8021q: adding VLAN 0 to HW filter on device bond1
[  221.807110][T13955] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2352'.
[  221.834866][   T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  221.846717][   T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  221.850114][   T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  221.853086][   T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  221.855740][   T63] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  221.881524][T13964] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2354'.
[  222.017308][T13960] chnl_net:caif_netlink_parms(): no params data found
[  222.101022][T12994] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  222.104772][T12994] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.115155][T13960] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.117806][T13960] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.120322][T13960] bridge_slave_0: entered allmulticast mode
[  222.123330][T13960] bridge_slave_0: entered promiscuous mode
[  222.126966][T13960] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.129719][T13960] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.132019][T13960] bridge_slave_1: entered allmulticast mode
[  222.134811][T13960] bridge_slave_1: entered promiscuous mode
[  222.138807][T13980] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2357'.
[  222.150476][T13981] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2357'.
[  222.168748][T13960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  222.180988][T12994] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  222.184259][T12994] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.194935][T13960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  222.211962][T13960] team0: Port device team_slave_0 added
[  222.217066][T13960] team0: Port device team_slave_1 added
[  222.234540][T13960] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.236936][T13960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  222.245320][T13960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.265104][T12994] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  222.269408][T12994] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.279930][T13960] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.282345][T13960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  222.290898][T13960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.315490][T13960] hsr_slave_0: entered promiscuous mode
[  222.317778][T13960] hsr_slave_1: entered promiscuous mode
[  222.320394][T13960] debugfs: 'hsr0' already exists in 'hsr'
[  222.322481][T13960] Cannot create hsr debugfs directory
[  222.349645][T12994] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  222.353680][T12994] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.826965][   T40] kauditd_printk_skb: 5505 callbacks suppressed
[  222.826984][   T40] audit: type=1400 audit(2000000143.058:36696): avc:  denied  { bind } for  pid=14018 comm="syz.2.2367" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  223.155642][T12994] bond1 (unregistering): Released all slaves
[  223.164544][T12994] bond2 (unregistering): Released all slaves
[  223.171195][T12994] bond3 (unregistering): Released all slaves
[  223.178018][T12994] bond4 (unregistering): Released all slaves
[  223.185625][T12994] bond5 (unregistering): Released all slaves
[  223.193623][T12994] bond0 (unregistering): Released all slaves
[  223.203694][T12994] bond6 (unregistering): (slave veth0_to_bond): Releasing active interface
[  223.208288][T12994] bond6 (unregistering): Released all slaves
[  223.215625][T12994] bond7 (unregistering): Released all slaves
[  223.278006][T14024] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2368'.
[  223.281684][T14024] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2368'.
[  223.289081][T14024] geneve2: entered promiscuous mode
[  223.291353][T14024] geneve2: entered allmulticast mode
[  223.364089][T12994] tipc: Disabling bearer <udp:syz2>
[  223.367898][T14031] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14031 comm=syz.3.2369
[  223.373022][T12994] tipc: Left network mode
[  223.722518][ T5971] libceph: connect (1)[c::]:6789 error -101
[  223.724605][ T5971] libceph: mon0 (1)[c::]:6789 connect error
[  223.726997][T14056] ceph: No mds server is up or the cluster is laggy
[  223.830577][   T40] audit: type=1326 audit(2000000143.994:36697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.843100][   T40] audit: type=1326 audit(2000000143.994:36698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.853367][T14074] ªªªªªª: renamed from wg2 (while UP)
[  223.855331][   T40] audit: type=1326 audit(2000000143.994:36699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.863407][   T40] audit: type=1326 audit(2000000143.994:36700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.871130][   T40] audit: type=1326 audit(2000000143.994:36701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.878497][   T40] audit: type=1326 audit(2000000143.994:36702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.886474][   T40] audit: type=1326 audit(2000000143.994:36703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.893741][   T40] audit: type=1326 audit(2000000143.994:36704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.897417][T13960] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  223.900990][   T40] audit: type=1326 audit(2000000143.994:36705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14068 comm="syz.2.2375" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59a599c799 code=0x50000
[  223.955814][T13960] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  223.966996][T13960] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  223.972932][T13960] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  224.029674][ T5953] Bluetooth: hci0: command tx timeout
[  224.046188][T12994] hsr_slave_0: left promiscuous mode
[  224.048497][T12994] hsr_slave_1: left promiscuous mode
[  224.052891][T12994] batman_adv: batadv0: Removing interface: batadv_slave_0
[  224.055657][T12994] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  224.057979][T12994] batman_adv: batadv0: Removing interface: batadv_slave_1
[  224.073707][T12994] veth1_macvtap: left promiscuous mode
[  224.075730][T12994] veth0_macvtap: left promiscuous mode
[  224.077549][T12994] veth1_vlan: left promiscuous mode
[  224.079312][T12994] veth0_vlan: left promiscuous mode
[  224.252086][T12994] team0 (unregistering): Port device team_slave_1 removed
[  224.272198][T12994] team0 (unregistering): Port device team_slave_0 removed
[  224.362392][T13960] 8021q: adding VLAN 0 to HW filter on device bond0
[  224.374672][T13960] 8021q: adding VLAN 0 to HW filter on device team0
[  224.383965][T12993] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.386348][T12993] bridge0: port 1(bridge_slave_0) entered forwarding state
[  224.394839][T13002] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.397204][T13002] bridge0: port 2(bridge_slave_1) entered forwarding state
[  224.540260][T14092] input: syz1 as /devices/virtual/input/input18
[  224.552851][T14092] overlayfs: failed to resolve './file1': -2
[  224.579155][T12860] udevd[12860]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  224.624362][T13960] 8021q: adding VLAN 0 to HW filter on device batadv0
[  224.651659][T13960] veth0_vlan: entered promiscuous mode
[  224.666076][T13960] veth1_vlan: entered promiscuous mode
[  224.694483][T13960] veth0_macvtap: entered promiscuous mode
[  224.700511][T13960] veth1_macvtap: entered promiscuous mode
[  224.718774][T13960] batman_adv: batadv0: Interface activated: batadv_slave_0
[  224.727064][T13960] batman_adv: batadv0: Interface activated: batadv_slave_1
[  224.733127][T12987] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  224.746036][T12987] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  224.749306][T12987] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  224.752089][T12987] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  224.804126][T12987] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  224.806887][T12987] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  224.840897][T12996] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  224.848499][T12996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  224.915767][T12994] IPVS: stop unused estimator thread 0...
[  225.064646][   T63] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  225.071098][   T63] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  225.074147][   T63] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  225.077157][   T63] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  225.079943][   T63] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  225.204321][T14116] program syz.1.2384 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  225.252293][T14107] chnl_net:caif_netlink_parms(): no params data found
[  225.380030][T14107] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.384676][T14107] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.388694][T14107] bridge_slave_0: entered allmulticast mode
[  225.391481][T14107] bridge_slave_0: entered promiscuous mode
[  225.394680][T14107] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.397094][T14107] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.399643][T14107] bridge_slave_1: entered allmulticast mode
[  225.402845][T14107] bridge_slave_1: entered promiscuous mode
[  225.419337][T14107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  225.423878][T14107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  225.453557][T14107] team0: Port device team_slave_0 added
[  225.457398][T14107] team0: Port device team_slave_1 added
[  225.479906][T14107] batman_adv: batadv0: Adding interface: batadv_slave_0
[  225.482293][T14107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  225.490848][T14107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  225.495835][T14107] batman_adv: batadv0: Adding interface: batadv_slave_1
[  225.498194][T14107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  225.507070][T14107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  225.564309][T14107] hsr_slave_0: entered promiscuous mode
[  225.566709][T14107] hsr_slave_1: entered promiscuous mode
[  225.568629][   T29] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  225.571784][T14107] debugfs: 'hsr0' already exists in 'hsr'
[  225.574009][T14107] Cannot create hsr debugfs directory
[  225.737641][T14107] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  225.739687][   T29] usb 6-1: Using ep0 maxpacket: 8
[  225.746745][T14107] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.751208][   T29] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  225.753732][   T29] usb 6-1: config 0 has no interface number 0
[  225.755755][   T29] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  225.759250][   T29] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  225.767474][   T29] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  225.770932][   T29] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  225.782460][   T29] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  225.785325][   T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.789138][   T29] usb 6-1: config 0 descriptor??
[  225.801286][   T29] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  225.834501][T14107] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  225.838154][T14107] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.906350][T14107] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  225.909699][T14107] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.008319][T14107] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  226.011754][T14107] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.077172][  T831] usb 6-1: USB disconnect, device number 18
[  226.077263][    C1] ldusb 6-1:0.55: usb_submit_urb failed (-19)
[  226.084691][  T831] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  226.084717][T14124] ldusb: No device or device unplugged -19
[  226.178138][T14130] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2387'.
[  226.183447][T14130] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2387'.
[  226.184598][T14107] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  226.197905][T14107] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  226.212083][T14107] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  226.222467][T14107] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  226.253213][ T5953] Bluetooth: hci0: command tx timeout
[  226.356057][T14107] 8021q: adding VLAN 0 to HW filter on device bond0
[  226.405651][T14147] netlink: 'syz.1.2389': attribute type 1 has an invalid length.
[  226.408452][T14143] netlink: 'syz.1.2389': attribute type 1 has an invalid length.
[  226.410675][T14107] 8021q: adding VLAN 0 to HW filter on device team0
[  226.447801][T14147] bond2 (unregistering): Released all slaves
[  226.470727][T13002] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.473409][T13002] bridge0: port 1(bridge_slave_0) entered forwarding state
[  226.499019][T14143] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  226.507159][T12994] bridge0: port 2(bridge_slave_1) entered blocking state
[  226.513558][T12994] bridge0: port 2(bridge_slave_1) entered forwarding state
[  226.706240][T14107] 8021q: adding VLAN 0 to HW filter on device batadv0
[  226.737772][T14107] veth0_vlan: entered promiscuous mode
[  226.748923][T14107] veth1_vlan: entered promiscuous mode
[  226.774785][T14107] veth0_macvtap: entered promiscuous mode
[  226.781060][T14107] veth1_macvtap: entered promiscuous mode
[  226.794539][T14107] batman_adv: batadv0: Interface activated: batadv_slave_0
[  226.804067][T14107] batman_adv: batadv0: Interface activated: batadv_slave_1
[  226.821347][T13002] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  226.825422][T13002] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.841468][T13002] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.845093][T13002] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.938089][T12996] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  226.942086][T12996] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  226.974006][T12993] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  226.977173][T12993] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  227.089457][T14179] fuse: Bad value for 'group_id'
[  227.091593][T14179] fuse: Bad value for 'group_id'
[  227.094655][T14180] fuse: Unknown parameter 'fowner'
[  227.098309][T14179] fuse: Bad value for 'group_id'
[  227.105515][T14179] fuse: Bad value for 'group_id'
[  227.108443][T14179] fuse: Bad value for 'group_id'
[  227.112785][T14179] fuse: Bad value for 'group_id'
[  227.116217][T14179] fuse: Bad value for 'group_id'
[  227.118332][T14179] fuse: Bad value for 'group_id'
[  227.121286][T14179] fuse: Bad value for 'group_id'
[  227.124601][T14179] fuse: Bad value for 'group_id'
[  227.126405][T14179] fuse: Bad value for 'group_id'
[  227.128068][T14179] fuse: Bad value for 'group_id'
[  227.130086][T14183] 9p: Bad value for 'rfdno'
[  227.132018][T14179] fuse: Bad value for 'group_id'
[  227.138865][T14179] fuse: Bad value for 'group_id'
[  227.141273][T14179] fuse: Bad value for 'group_id'
[  227.143283][T14179] fuse: Bad value for 'group_id'
[  227.145483][T14179] fuse: Bad value for 'group_id'
[  227.147563][T14179] fuse: Bad value for 'group_id'
[  227.149890][T14179] fuse: Bad value for 'group_id'
[  227.155737][T14179] fuse: Bad value for 'group_id'
[  227.157999][T14179] fuse: Bad value for 'group_id'
[  227.159717][T14179] fuse: Bad value for 'group_id'
[  227.162468][T14179] fuse: Bad value for 'group_id'
[  227.164233][T14179] fuse: Bad value for 'group_id'
[  227.166018][T14179] fuse: Bad value for 'group_id'
[  227.167585][T14179] fuse: Bad value for 'group_id'
[  227.169338][T14179] fuse: Bad value for 'group_id'
[  227.170914][T14179] fuse: Bad value for 'group_id'
[  227.173308][T14179] fuse: Bad value for 'group_id'
[  227.175209][T14179] fuse: Bad value for 'group_id'
[  227.177245][T14179] fuse: Bad value for 'group_id'
[  227.179022][T14179] fuse: Bad value for 'group_id'
[  227.180789][T14179] fuse: Bad value for 'group_id'
[  227.182440][T14179] fuse: Bad value for 'group_id'
[  227.186541][T14179] fuse: Bad value for 'group_id'
[  227.188150][T14179] fuse: Bad value for 'group_id'
[  227.190368][T14179] fuse: Bad value for 'group_id'
[  227.191952][T14179] fuse: Bad value for 'group_id'
[  227.193782][T14179] fuse: Bad value for 'group_id'
[  227.195356][T14179] fuse: Bad value for 'group_id'
[  227.195933][T14196] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  227.197093][T14179] fuse: Bad value for 'group_id'
[  227.200718][T14179] fuse: Bad value for 'group_id'
[  227.202465][T14179] fuse: Bad value for 'group_id'
[  227.204083][T14179] fuse: Bad value for 'group_id'
[  227.208735][T14179] fuse: Bad value for 'group_id'
[  227.211522][T14179] fuse: Bad value for 'group_id'
[  227.213590][T14179] fuse: Bad value for 'group_id'
[  227.215573][T14179] fuse: Bad value for 'group_id'
[  227.217361][T14179] fuse: Bad value for 'group_id'
[  227.218923][T14179] fuse: Bad value for 'group_id'
[  227.220643][T14179] fuse: Bad value for 'group_id'
[  227.222236][T14179] fuse: Bad value for 'group_id'
[  227.224099][T14179] fuse: Bad value for 'group_id'
[  227.225772][T14179] fuse: Bad value for 'group_id'
[  227.227625][T14179] fuse: Bad value for 'group_id'
[  227.229271][T14179] fuse: Bad value for 'group_id'
[  227.231106][T14179] fuse: Bad value for 'group_id'
[  227.232724][T14179] fuse: Bad value for 'group_id'
[  227.234454][T14179] fuse: Bad value for 'group_id'
[  227.236052][T14179] fuse: Bad value for 'group_id'
[  227.238295][T14179] fuse: Bad value for 'group_id'
[  227.239879][T14179] fuse: Bad value for 'group_id'
[  227.241606][T14179] fuse: Bad value for 'group_id'
[  227.243195][T14179] fuse: Bad value for 'group_id'
[  227.245214][T14179] fuse: Bad value for 'group_id'
[  227.249434][T14179] fuse: Bad value for 'group_id'
[  227.268049][T14205] netlink: 'syz.3.2404': attribute type 4 has an invalid length.
[  227.268292][T14204] __nla_validate_parse: 1 callbacks suppressed
[  227.268305][T14204] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2404'.
[  227.268492][ T5953] Bluetooth: hci3: command tx timeout
[  227.279789][T14206] netlink: 'syz.3.2404': attribute type 4 has an invalid length.
[  227.417508][T14229] NILFS (nullb0): couldn't find nilfs on the device
[  227.441783][T14231] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8728 sclass=netlink_route_socket pid=14231 comm=syz.0.2411
[  227.495676][T14238] syz.1.2413 (14238) used greatest stack depth: 19104 bytes left
[  227.569572][T14251] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2417'.
[  227.570199][T14252] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2418'.
[  227.596635][T13960] cgroup: fork rejected by pids controller in /syz1
[  227.726656][ T5953] Bluetooth: hci3: Unable to find connection with handle 0x10c9
[  227.730681][T14259] netlink: 184 bytes leftover after parsing attributes in process `syz.3.2421'.
[  227.730935][T14259] xt_socket: unknown flags 0xd0
[  228.091658][T12994] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.206985][T12994] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.264613][   T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  228.269949][   T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  228.274930][   T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  228.279260][   T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  228.288881][   T63] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  228.323796][T12994] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.386846][T12994] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.455449][T14269] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2424'.
[  228.465681][T14266] chnl_net:caif_netlink_parms(): no params data found
[  228.496881][T14274] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2425'.
[  228.591538][T14274] bridge0: port 3(syz_tun) entered blocking state
[  228.595600][T14274] bridge0: port 3(syz_tun) entered disabled state
[  228.598468][T14274] syz_tun: entered allmulticast mode
[  228.602651][T14274] syz_tun: entered promiscuous mode
[  228.606226][T14274] bridge0: port 3(syz_tun) entered blocking state
[  228.609029][T14274] bridge0: port 3(syz_tun) entered forwarding state
[  228.612972][T12994] bridge_slave_1: left allmulticast mode
[  228.614891][T12994] bridge_slave_1: left promiscuous mode
[  228.617459][T12994] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.624915][T12994] bridge_slave_0: left allmulticast mode
[  228.628829][T12994] bridge_slave_0: left promiscuous mode
[  228.631325][T12994] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.793851][T12994] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  228.799789][T12994] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  228.804646][T12994] bond0 (unregistering): Released all slaves
[  228.809560][T12994] bond1 (unregistering): Released all slaves
[  228.848262][T14266] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.852397][T14266] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.855451][T14266] bridge_slave_0: entered allmulticast mode
[  228.858527][T14266] bridge_slave_0: entered promiscuous mode
[  228.865988][T14266] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.868937][T14266] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.871723][T14266] bridge_slave_1: entered allmulticast mode
[  228.875030][T14266] bridge_slave_1: entered promiscuous mode
[  228.894851][T14266] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  228.899637][T14266] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  228.920313][T14266] team0: Port device team_slave_0 added
[  228.931993][T14266] team0: Port device team_slave_1 added
[  228.980672][T14266] batman_adv: batadv0: Adding interface: batadv_slave_0
[  228.982877][T14266] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  228.991281][T14266] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  229.001514][T14266] batman_adv: batadv0: Adding interface: batadv_slave_1
[  229.003943][T14266] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  229.014019][T14266] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  229.068861][T14266] hsr_slave_0: entered promiscuous mode
[  229.071600][T14266] hsr_slave_1: entered promiscuous mode
[  229.073842][T14266] debugfs: 'hsr0' already exists in 'hsr'
[  229.075758][T14266] Cannot create hsr debugfs directory
[  229.112847][T12994] hsr_slave_0: left promiscuous mode
[  229.126155][T12994] hsr_slave_1: left promiscuous mode
[  229.128847][T12994] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  229.131187][T12994] batman_adv: batadv0: Removing interface: batadv_slave_0
[  229.134020][T12994] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  229.136384][T12994] batman_adv: batadv0: Removing interface: batadv_slave_1
[  229.144680][T12994] veth1_macvtap: left promiscuous mode
[  229.146455][T12994] veth0_macvtap: left promiscuous mode
[  229.148246][T12994] veth1_vlan: left promiscuous mode
[  229.150864][T12994] veth0_vlan: left promiscuous mode
[  229.242362][T14306] usb usb8: usbfs: process 14306 (syz.0.2433) did not claim interface 0 before use
[  229.275534][   T63] Bluetooth: hci4: Unable to find connection with handle 0x10c9
[  229.295291][T12994] team0 (unregistering): Port device team_slave_1 removed
[  229.304990][T12994] team0 (unregistering): Port device team_slave_0 removed
[  229.441567][T14317] syzkaller0: entered promiscuous mode
[  229.443851][   T40] kauditd_printk_skb: 42317 callbacks suppressed
[  229.443861][   T40] audit: type=1400 audit(2000000149.251:79023): avc:  denied  { remount } for  pid=14313 comm="syz.0.2434" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  229.443898][T14317] syzkaller0: entered allmulticast mode
[  229.477023][T14325] tmpfs: Unknown parameter 'grpde_hardlimit'
[  229.491380][T14314] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  229.492868][   T63] Bluetooth: hci3: command tx timeout
[  229.497816][T14313] tipc: Resetting bearer <eth:syzkaller0>
[  229.510914][T14313] tipc: Disabling bearer <eth:syzkaller0>
[  229.647572][T14338] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  229.734648][T14343] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2439'.
[  229.793090][T14359] netlink: 'syz.3.2443': attribute type 1 has an invalid length.
[  229.840990][   T63] Bluetooth: hci3: Unable to find connection with handle 0x10c9
[  229.956930][T14266] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  229.961801][T14266] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  229.971486][T14266] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  229.989841][T14377] bond1: option primary: mode dependency failed, not supported in mode broadcast(3)
[  229.995325][T14377] bond1 (unregistering): Released all slaves
[  230.010269][T14266] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  230.051465][T14397] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2451'.
[  230.056742][T14266] 8021q: adding VLAN 0 to HW filter on device bond0
[  230.066887][T14266] 8021q: adding VLAN 0 to HW filter on device team0
[  230.071945][T12996] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.074675][T12996] bridge0: port 1(bridge_slave_0) entered forwarding state
[  230.083904][T12993] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.087106][T12993] bridge0: port 2(bridge_slave_1) entered forwarding state
[  230.117885][T14402] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  230.232279][T14266] 8021q: adding VLAN 0 to HW filter on device batadv0
[  230.258983][T14266] veth0_vlan: entered promiscuous mode
[  230.266928][T14266] veth1_vlan: entered promiscuous mode
[  230.300358][T14266] veth0_macvtap: entered promiscuous mode
[  230.309884][T14266] veth1_macvtap: entered promiscuous mode
[  230.323794][T14266] batman_adv: batadv0: Interface activated: batadv_slave_0
[  230.331753][T14266] batman_adv: batadv0: Interface activated: batadv_slave_1
[  230.338780][T12994] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.342511][T12994] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.346844][T12994] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.353492][T12994] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.386588][T12996] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.389113][T12996] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.394073][T14419] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2457'.
[  230.404425][T12965] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.407419][T12965] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.434998][T14421] smc: net device ip_vti0 applied user defined pnetid SYZ0
[  230.439066][T14421] openvswitch: netlink: IP tunnel TTL not specified.
[  230.469522][T14425] syz.0.2459: attempt to access beyond end of device
[  230.469522][T14425] sr0: rw=6144, sector=128, nr_sectors = 8 limit=128
[  230.474118][T14425] gfs2: error -5 reading superblock
[  230.505826][T14431] afs: Unknown parameter 'dyn>'
[  230.510878][T14430] x_tables: duplicate underflow at hook 3
[  230.519287][   T63] Bluetooth: hci0: command tx timeout
[  230.524226][   T40] audit: type=1326 audit(2000000150.261:79024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f788b59c799 code=0x7ffc0000
[  230.531787][   T40] audit: type=1326 audit(2000000150.261:79025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f788b59c799 code=0x7ffc0000
[  230.540383][   T40] audit: type=1326 audit(2000000150.261:79026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f788b59c799 code=0x7ffc0000
[  230.547968][   T40] audit: type=1326 audit(2000000150.261:79027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f788b59c799 code=0x7ffc0000
[  230.561760][   T40] audit: type=1326 audit(2000000150.261:79029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f788b59c42b code=0x7ffc0000
[  230.570563][   T40] audit: type=1326 audit(2000000150.261:79030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f788b59c42b code=0x7ffc0000
[  230.580727][   T40] audit: type=1326 audit(2000000150.261:79031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f788b59c42b code=0x7ffc0000
[  230.589738][   T40] audit: type=1326 audit(2000000150.261:79032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f788b59c42b code=0x7ffc0000
[  230.597532][   T40] audit: type=1326 audit(2000000150.261:79033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.0.2462" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f788b59c42b code=0x7ffc0000
[  230.741228][T14439] netlink: 'syz.2.2464': attribute type 1 has an invalid length.
[  230.747460][T14439] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2464'.
[  230.750334][T14439] NCSI netlink: No device for ifindex 0
[  230.893650][T14449] cgroup2: Unknown parameter 'memorx_localevents'
[  231.182078][T14457] IPVS: set_ctl: invalid protocol: 25647 47.116.116.121:28277
[  231.184783][T14457] IPVS: set_ctl: invalid protocol: 12078 110.100.101.114:26227
[  231.187720][T14457] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  231.221087][T14461] bridge0: port 1(syz_tun) entered blocking state
[  231.223311][T14461] bridge0: port 1(syz_tun) entered disabled state
[  231.227884][T14461] syz_tun: entered allmulticast mode
[  231.235683][T14461] syz_tun: left allmulticast mode
[  231.238254][T14461] netlink: 'syz.2.2470': attribute type 1 has an invalid length.
[  231.362274][T14480] syz.0.2473 (14480): /proc/14479/oom_adj is deprecated, please use /proc/14479/oom_score_adj instead.
[  231.596920][T14498] overlayfs: failed to resolve './file1': -2
[  231.716667][   T63] Bluetooth: hci3: command tx timeout
[  232.347775][   T63] Bluetooth: hci3: Unable to find connection with handle 0x10c9
[  232.529570][T14563] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  232.670384][T14569] ptrace attach of "/syz-executor exec"[14266] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                b\x0aøÿ\x0c  !¿¡      \x07
  øÿÿÿ·     ½      …   Ð   ·       •       ?ºj}6Ù±ŽØ¢âÄž€ ¦ôàä©Dl¢µñÌ\x0ašö˜9: óˆœ$ªVñQ™úÐ\x09<YÖk^Ο6Ç\x0d
\x0cPwÚ€û˜,” ÆlêHJA[v–a¶Ou$\x1b\x07.�  -uY:(  É>dÂ'ÉZ ·„bWðzr‘„QëÜôÎ÷ù``Vþ\x5c4fL\x0aù6\x0az^k`q0ÈŸ
[  232.729728][T14571] kvm: pic: non byte read
[  232.735176][T14571] kvm: pic: non byte read
[  232.738692][T14571] kvm: pic: level sensitive irq not supported
[  232.739268][T14571] kvm: pic: non byte read
[  232.744350][   T63] Bluetooth: hci0: command tx timeout
[  232.746457][T14574] __nla_validate_parse: 5 callbacks suppressed
[  232.746468][T14574] netlink: 16166 bytes leftover after parsing attributes in process `syz.3.2499'.
[  232.751431][T14571] kvm: pic: non byte read
[  232.936290][T14593] overlayfs: workdir and upperdir must be separate subtrees
[  233.013008][T14601] SELinux:  policydb magic number 0x4b07fa81 does not match expected magic number 0xf97cff8c
[  233.016948][T14601] SELinux: failed to load policy
[  233.087190][T14613] Cannot find add_set index 1 as target
[  233.337462][T14629] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.369984][T14630] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  233.783773][T14595] overlayfs: statfs failed on './file0'
[  233.952461][ T5953] Bluetooth: hci3: command tx timeout
[  234.051203][T14650] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  234.060289][T14654] bond0: Removing last ns target with arp_interval on
[  234.065822][T14654] sg_write: data in/out 489/10 bytes for SCSI command 0xeb-- guessing data in;
[  234.065822][T14654]    program syz.2.2524 not setting count and/or reply_len properly
[  234.249002][T14663] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2527'.
[  234.297994][T14665] binder: 14664:14665 ioctl c0306201 2000000003c0 returned -14
[  234.344778][T14667] netlink: 'syz.3.2529': attribute type 1 has an invalid length.
[  234.364608][T14667] 8021q: adding VLAN 0 to HW filter on device bond1
[  234.374125][T14667] bond1: (slave gretap1): making interface the new active one
[  234.377919][T14667] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  234.381797][T14667] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14667 comm=syz.3.2529
[  234.518137][ T6211] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  234.571785][T14629] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.687859][ T6211] usb 7-1: Using ep0 maxpacket: 8
[  234.692483][ T6211] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  234.696988][ T6211] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  234.701065][ T6211] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  234.705924][ T6211] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  234.710715][ T6211] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  234.714786][ T6211] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.732879][ T6211] hub 7-1:1.0: bad descriptor, ignoring hub
[  234.735473][ T6211] hub 7-1:1.0: probe with driver hub failed with error -5
[  234.738919][ T6211] cdc_wdm 7-1:1.0: skipping garbage
[  234.742231][ T6211] cdc_wdm 7-1:1.0: skipping garbage
[  234.747095][ T6211] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  234.749778][ T6211] cdc_wdm 7-1:1.0: Unknown control protocol
[  234.776348][T14629] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.883459][T14683] /dev/sr0: Can't open blockdev
[  234.900412][T14629] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.976478][ T5953] Bluetooth: hci0: command tx timeout
[  235.044516][T12993] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  235.058083][T14685] virtio-fs: tag </dev/sg0> not found
[  235.068536][T12987] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  235.071183][T12987] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  235.080638][T12987] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  235.122276][T14693] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2534'.
[  235.131442][   T40] kauditd_printk_skb: 129 callbacks suppressed
[  235.131453][   T40] audit: type=1400 audit(2000000154.564:79162): avc:  denied  { mounton } for  pid=14694 comm="syz.0.2532" path="/101/file0" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  235.142075][T14695] overlayfs: workdir and upperdir must reside under the same mount
[  235.197723][   T40] audit: type=1400 audit(2000000154.629:79163): avc:  denied  { module_load } for  pid=14696 comm="syz.3.2535" path="/selinux/policy" dev="selinuxfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=system permissive=1
[  235.198257][T14699] kernel read not supported for file /policy (pid: 14699 comm: syz.3.2535)
[  235.265481][ T6211] usb 7-1: USB disconnect, device number 26
[  235.448493][T14712] syzkaller0: entered promiscuous mode
[  235.450283][T14712] syzkaller0: entered allmulticast mode
[  235.491189][T14719] program syz.1.2542 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  235.527744][T14725] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.2544'.
[  235.579528][   T40] audit: type=1400 audit(2000000154.985:79164): avc:  denied  { mount } for  pid=14731 comm="syz.2.2546" name="/" dev="pstore" ino=5394 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  235.588757][   T40] audit: type=1400 audit(2000000154.985:79165): avc:  denied  { setattr } for  pid=14731 comm="syz.2.2546" name="CAN_RAW" dev="sockfs" ino=60384 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  235.597661][   T40] audit: type=1400 audit(2000000154.985:79166): avc:  denied  { remount } for  pid=14731 comm="syz.2.2546" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  235.606862][   T40] audit: type=1400 audit(2000000155.003:79167): avc:  denied  { unmount } for  pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[  235.616527][   T40] audit: type=1400 audit(2000000155.022:79168): avc:  denied  { create } for  pid=14727 comm="syz.1.2545" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  235.625349][   T40] audit: type=1400 audit(2000000155.022:79169): avc:  denied  { setopt } for  pid=14727 comm="syz.1.2545" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  235.633864][   T40] audit: type=1400 audit(2000000155.022:79170): avc:  denied  { bind } for  pid=14727 comm="syz.1.2545" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  235.642892][   T40] audit: type=1400 audit(2000000155.050:79171): avc:  denied  { write } for  pid=14735 comm="syz.2.2547" path="socket:[61082]" dev="sockfs" ino=61082 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  235.843841][T14741] tmpfs: Unknown parameter 'nr_inoaes'
[  235.847970][T14741] IPVS: length: 120 != 24
[  235.929392][T14744] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14744 comm=syz.2.2549
[  236.073195][T14749] 9p: Invalid uid '0x00000000ffffffff'
[  236.099909][T14755] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2553'.
[  236.103539][T14755] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2553'.
[  236.163055][   T63] Bluetooth: hci3: command 0x2016 tx timeout
[  236.262362][T14771] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2556'.
[  236.267441][T14772] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2558'.
[  236.303040][T14774] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2559'.
[  236.367898][T14776] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2560'.
[  236.371466][T14776] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  236.396347][T14778] IPVS: set_ctl: invalid protocol: 108 10.1.1.2:20004
[  236.560444][T14789] netlink: zone id is out of range
[  236.562146][T14789] netlink: zone id is out of range
[  236.563773][T14789] netlink: zone id is out of range
[  236.565522][T14789] netlink: zone id is out of range
[  236.567365][T14789] netlink: zone id is out of range
[  236.569245][T14789] netlink: zone id is out of range
[  236.571065][T14789] netlink: zone id is out of range
[  236.572816][T14789] netlink: zone id is out of range
[  236.574451][T14789] netlink: zone id is out of range
[  236.702500][T14796] netlink: 'syz.3.2568': attribute type 1 has an invalid length.
[  236.705962][T14798] ip6t_srh: unknown srh invflags 51E8
[  236.741334][T14796] 8021q: adding VLAN 0 to HW filter on device bond2
[  236.815304][T14804] tipc: Started in network mode
[  236.816918][T14804] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711
[  236.824506][T14804] tipc: Enabled bearer <udp:syz0>, priority 10
[  237.012109][T14821] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14821 comm=syz.3.2575
[  237.163221][T14828] ipt_REJECT: TCP_RESET invalid for non-tcp
[  237.197450][ T5951] Bluetooth: hci0: command tx timeout
[  237.308680][T14841] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  237.468381][T14848] binder: 14847:14848 ioctl 8010743f 200000000040 returned -22
[  237.737535][T14868] bridge0: adding interface bridge_slave_0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  237.826165][T14870] netlink: 'syz.0.2593': attribute type 8 has an invalid length.
[  237.913027][   T39] tipc: Node number set to 4269801491
[  238.076668][   T39] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  238.313735][T14890] sctp: [Deprecated]: syz.0.2601 (pid 14890) Use of struct sctp_assoc_value in delayed_ack socket option.
[  238.313735][T14890] Use struct sctp_sack_info instead
[  238.387112][ T5951] Bluetooth: hci3: command 0x2016 tx timeout
[  238.486231][   T39] usb 6-1: config index 0 descriptor too short (expected 45, got 36)
[  238.489602][   T39] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  238.494398][   T39] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  238.498615][   T39] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  238.503370][   T39] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  238.512815][   T39] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  238.516421][   T39] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x74000)
[  238.689546][T14914] Invalid option length (1048180) for dns_resolver key
[  238.710095][   T39] usb 6-1: config 0 descriptor??
[  238.720840][T14872] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  238.755217][ T1117] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  238.766158][ T1117] ata1: failed to read log page 10h (errno=-5)
[  238.770527][ T1117] ata1.00: exception Emask 0x1 SAct 0x4000 SErr 0x0 action 0x0
[  238.782298][ T1117] ata1.00: irq_stat 0x41000000
[  238.789278][ T1117] ata1.00: failed command: READ FPDMA QUEUED
[  238.795845][ T1117] ata1.00: cmd 60/a0:70:3e:15:08/03:00:00:00:00/40 tag 14 ncq dma 475136 in
[  238.795845][ T1117]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  238.829171][ T1117] ata1.00: status: { DRDY }
[  238.830654][ T1117] ata1.00: error: { ABRT }
[  238.835950][ T1117] ata1.00: configured for UDMA/100
[  238.838592][ T1117] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  238.842623][ T1117] sd 0:0:0:0: [sda] tag#14 Sense Key : Aborted Command [current] 
[  238.845050][ T1117] sd 0:0:0:0: [sda] tag#14 Add. Sense: No additional sense information
[  238.867818][ T1117] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 00 08 15 3e 00 03 a0 00
[  238.870602][ T1117] blk_print_req_error: 136 callbacks suppressed
[  238.870615][ T1117] I/O error, dev sda, sector 529726 op 0x0:(READ) flags 0x80700 phys_seg 18 prio class 1
[  238.880223][ T1117] ata1: EH complete
[  238.935971][T14921] 9p: Unknown uid 00000000004294967295
[  238.971649][T14924] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  238.974593][T14924] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  238.979642][T14924] vhci_hcd vhci_hcd.0: Device attached
[  238.984569][T14925] vhci_hcd: connection closed
[  238.986361][T13002] vhci_hcd vhci_hcd.0: stop threads
[  238.990392][T13002] vhci_hcd vhci_hcd.0: release socket
[  238.992356][T13002] vhci_hcd vhci_hcd.0: disconnect device
[  239.171253][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.174417][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.177618][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.204431][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.207606][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.216363][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.219305][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.223481][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.226937][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.230516][   T39] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  239.261122][   T39] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x198000)
[  239.413090][ T5951] Bluetooth: hci0: command 0x0405 tx timeout
[  239.425137][ T1117] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  239.427970][ T1117] ata1: failed to read log page 10h (errno=-5)
[  239.430743][ T1117] ata1.00: exception Emask 0x1 SAct 0x800 SErr 0x0 action 0x0
[  239.436098][ T1117] ata1.00: irq_stat 0x41000008
[  239.438194][ T1117] ata1.00: failed command: READ FPDMA QUEUED
[  239.440656][ T1117] ata1.00: cmd 60/c0:58:76:89:03/0c:00:00:00:00/40 tag 11 ncq dma 1671168 in
[  239.440656][ T1117]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  239.448715][ T1117] ata1.00: status: { DRDY }
[  239.450676][ T1117] ata1.00: error: { ABRT }
[  239.453907][ T1117] ata1.00: configured for UDMA/100
[  239.457525][ T1117] sd 0:0:0:0: [sda] tag#11 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  239.462310][ T1117] sd 0:0:0:0: [sda] tag#11 Sense Key : Aborted Command [current] 
[  239.464285][ T1026] usb 6-1: USB disconnect, device number 19
[  239.465668][ T1117] sd 0:0:0:0: [sda] tag#11 Add. Sense: No additional sense information
[  239.472531][ T1117] sd 0:0:0:0: [sda] tag#11 CDB: Read(10) 28 00 00 03 89 76 00 0c c0 00
[  239.476217][ T1117] I/O error, dev sda, sector 231798 op 0x0:(READ) flags 0x80700 phys_seg 33 prio class 2
[  239.481058][ T1117] ata1: EH complete
[  239.521785][T14939] netlink: 'syz.3.2613': attribute type 4 has an invalid length.
[  239.585540][T14935] fido_id[14935]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb6/report_descriptor': No such file or directory
[  239.643321][T14946] __nla_validate_parse: 8 callbacks suppressed
[  239.643336][T14946] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2611'.
[  239.791001][T14954] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.816789][T14960] 9pnet_fd: Insufficient options for proto=fd
[  239.876862][T14954] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.962354][T14954] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.055503][T14968] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2622'.
[  240.063990][T14970] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2571 sclass=netlink_route_socket pid=14970 comm=syz.3.2623
[  240.069535][T14968] gtp0: entered promiscuous mode
[  240.105477][T14954] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.125533][T14973] efs: cannot read volume header
[  240.198860][T14978] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2627'.
[  240.236890][T14978] 8021q: adding VLAN 0 to HW filter on device bond1
[  240.252406][T14978] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  240.258860][T14978] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=14978 comm=syz.1.2627
[  240.267805][T12997] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  240.281095][T12997] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  240.296973][T12997] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  240.306397][T13002] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  240.340695][T14985] netlink: 'syz.3.2628': attribute type 1 has an invalid length.
[  240.453995][T15004] macvlan2: entered promiscuous mode
[  240.485046][T15007] netlink: 'syz.0.2635': attribute type 1 has an invalid length.
[  240.486606][   T40] kauditd_printk_skb: 150 callbacks suppressed
[  240.486616][   T40] audit: type=1400 audit(2000000159.577:79322): avc:  denied  { ioctl } for  pid=15006 comm="syz.3.2636" path="socket:[64678]" dev="sockfs" ino=64678 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  240.498184][T15007] 8021q: adding VLAN 0 to HW filter on device bond2
[  240.503464][   T40] audit: type=1400 audit(2000000159.587:79323): avc:  denied  { read } for  pid=14999 comm="syz.2.2632" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  240.511304][T15007] bond2: (slave gretap1): making interface the new active one
[  240.514331][   T40] audit: type=1400 audit(2000000159.596:79324): avc:  denied  { write } for  pid=14999 comm="syz.2.2632" name="config" dev="proc" ino=4026533156 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  240.514647][T15007] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  240.522978][   T40] audit: type=1400 audit(2000000159.606:79325): avc:  denied  { read write } for  pid=15006 comm="syz.3.2636" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  240.541942][   T40] audit: type=1400 audit(2000000159.606:79326): avc:  denied  { open } for  pid=15006 comm="syz.3.2636" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  240.544935][T15007] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=15007 comm=syz.0.2635
[  240.560625][   T40] audit: type=1400 audit(2000000159.643:79327): avc:  denied  { unmount } for  pid=5942 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  240.608684][T15017] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2638'.
[  240.610406][ T5953] Bluetooth: hci3: command 0x2016 tx timeout
[  240.613077][T15017] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2638'.
[  240.625748][   T40] audit: type=1400 audit(2000000159.708:79328): avc:  denied  { read } for  pid=15018 comm="syz.3.2639" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  240.628736][T12987] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  240.634196][T15017] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2638'.
[  240.634211][T15017] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2638'.
[  240.636591][   T40] audit: type=1400 audit(2000000159.708:79329): avc:  denied  { open } for  pid=15018 comm="syz.3.2639" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  240.644934][T12987] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  240.659249][T12987] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  240.662071][T12987] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  240.689006][T15021] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  240.691938][T15021] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  240.692510][T15024] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  240.695081][T15021] vhci_hcd vhci_hcd.0: Device attached
[  240.707605][T15024] cramfs: wrong magic
[  240.715510][T15022] vhci_hcd: connection closed
[  240.715829][T12996] vhci_hcd vhci_hcd.0: stop threads
[  240.719586][T12996] vhci_hcd vhci_hcd.0: release socket
[  240.721384][T12996] vhci_hcd vhci_hcd.0: disconnect device
[  240.803309][   T40] audit: type=1400 audit(2000000159.877:79330): avc:  denied  { setopt } for  pid=15025 comm="syz.2.2637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  240.869290][T15028] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2641'.
[  240.935179][   T40] audit: type=1400 audit(2000000159.998:79331): avc:  denied  { name_connect } for  pid=15032 comm="syz.2.2643" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  240.943649][T15033] IPVS: Error connecting to the multicast addr
[  240.947869][T15033] overlayfs: failed to resolve './file1/file0/file0': -2
[  240.999447][T13002] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  241.002455][T13002] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  241.455437][  T841] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  241.511122][T15072] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2656'.
[  241.555959][T15082] ip6t_srh: unknown srh invflags 51E8
[  241.559533][T15083] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  241.565116][T15086] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2659'.
[  241.566104][T15083] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.604946][T15086] netlink: 'syz.2.2659': attribute type 3 has an invalid length.
[  241.610645][T15086] overlayfs: missing 'lowerdir'
[  241.615899][  T841] usb 6-1: Using ep0 maxpacket: 32
[  241.619744][  T841] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x8C has invalid maxpacket 1536, setting to 1024
[  241.623413][  T841] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x8C has invalid maxpacket 1024
[  241.630299][  T841] usb 6-1: string descriptor 0 read error: -22
[  241.632468][  T841] usb 6-1: New USB device found, idVendor=1430, idProduct=474b, bcdDevice= 0.40
[  241.635398][  T841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  241.642252][T15053] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  241.649144][  T841] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  241.652176][  T841] usb 6-1: MIDIStreaming interface descriptor not found
[  241.657212][T15083] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  241.661300][T15083] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.736181][T15083] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  241.739262][T15083] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.800123][T15083] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  241.803318][T15083] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.866976][  T831] usb 6-1: USB disconnect, device number 20
[  242.447342][ T5953] Bluetooth: hci3: unexpected event 0x2f length: 763 > 260
[  242.449451][T15107] overlay: Bad value for 'workdir'
[  242.458585][T15107] program syz.3.2664 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  242.465464][T15107] ata1.00: non-matching transfer count (32/0)
[  242.618899][T15119] xt_l2tp: v2 doesn't support IP mode
[  242.697379][ T6026] IPVS: starting estimator thread 0...
[  242.740460][T15135] net_ratelimit: 34 callbacks suppressed
[  242.740477][T15135] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  242.770652][T15137] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  242.773788][T15137] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  242.776581][T15137] vhci_hcd vhci_hcd.0: Device attached
[  242.780859][T15138] usbip_core: unknown command
[  242.782541][T15138] vhci_hcd: unknown pdu 0
[  242.784121][T15138] usbip_core: unknown command
[  242.785962][T12986] vhci_hcd vhci_hcd.3: stop threads
[  242.788208][T12986] vhci_hcd vhci_hcd.3: release socket
[  242.792261][T12986] vhci_hcd vhci_hcd.3: disconnect device
[  242.802170][T15130] IPVS: using max 30 ests per chain, 72000 per kthread
[  242.887172][T15104] orangefs_mount: mount request failed with -4
[  243.198578][T15153] binder_alloc: binder_alloc_mmap_handler: 15152 200000ffb000-200000fff000 already mapped failed -16
[  243.413969][T15161] netlink: 'syz.2.2683': attribute type 7 has an invalid length.
[  243.417287][T15161] netlink: 'syz.2.2683': attribute type 8 has an invalid length.
[  243.420697][T15161] netlink: 'syz.2.2683': attribute type 7 has an invalid length.
[  243.653338][T15175] Bluetooth: MGMT ver 1.23
[  243.656415][T15175] tmpfs: Bad value for 'mpol'
[  244.822201][T15191] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[  244.875895][T12996] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  244.879274][T12996] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.897437][T12986] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  244.901161][T12986] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.904720][T12986] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  244.908754][T12986] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.915895][T12986] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  244.920788][T12986] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.956633][T15196] netlink: 'syz.0.2695': attribute type 11 has an invalid length.
[  245.141284][T15206] fuseblk: block size(63231) > page size(4096) not supported by filesystem
[  245.227800][T15211] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  245.234596][  T831] IPVS: starting estimator thread 0...
[  245.337986][T15218] gfs2: error -5 reading superblock
[  245.346280][T15212] IPVS: using max 45 ests per chain, 108000 per kthread
[  245.515115][T15226] kvm: pic: non byte write
[  245.911603][T15229] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  245.984111][T15236] __nla_validate_parse: 7 callbacks suppressed
[  245.984123][T15236] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2709'.
[  245.989900][T15236] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2709'.
[  245.993448][   T40] kauditd_printk_skb: 55 callbacks suppressed
[  245.993460][   T40] audit: type=1400 audit(2000000164.731:79387): avc:  denied  { watch } for  pid=15235 comm="syz.0.2709" path="/151/control" dev="tmpfs" ino=829 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  246.129988][   T40] audit: type=1400 audit(2000000164.853:79388): avc:  denied  { create } for  pid=15240 comm="syz.1.2711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  246.137111][   T40] audit: type=1400 audit(2000000164.853:79389): avc:  denied  { connect } for  pid=15240 comm="syz.1.2711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  246.145415][   T40] audit: type=1400 audit(2000000164.853:79390): avc:  denied  { setopt } for  pid=15240 comm="syz.1.2711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  246.158978][   T40] audit: type=1400 audit(2000000164.853:79391): avc:  denied  { bind } for  pid=15240 comm="syz.1.2711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  246.167048][   T40] audit: type=1400 audit(2000000164.853:79392): avc:  denied  { write } for  pid=15240 comm="syz.1.2711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  246.173597][   T40] audit: type=1400 audit(2000000164.853:79393): avc:  denied  { read } for  pid=15240 comm="syz.1.2711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  246.250261][   T40] audit: type=1400 audit(2000000164.965:79394): avc:  denied  { getopt } for  pid=15246 comm="syz.1.2714" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  246.257929][T15220] orangefs_mount: mount request failed with -4
[  246.294053][T15249] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  246.303226][T15249] 9p: Bad value for 'rfdno'
[  246.305586][   T40] audit: type=1400 audit(2000000165.021:79395): avc:  denied  { append } for  pid=15248 comm="syz.2.2716" name="renderD128" dev="devtmpfs" ino=634 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  246.308544][ T1026] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  246.386373][   T40] audit: type=1400 audit(2000000165.096:79396): avc:  denied  { execute } for  pid=15255 comm="syz-executor" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  246.461349][ T5951] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  246.465879][ T5951] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  246.481119][ T1026] usb 5-1: Using ep0 maxpacket: 8
[  246.481757][ T5951] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  246.484290][ T1026] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  246.488783][ T1026] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  246.492001][ T1026] usb 5-1: config 0 interface 0 has no altsetting 0
[  246.494212][ T1026] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  246.497214][ T1026] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  246.497481][ T5951] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  246.502355][ T1026] usb 5-1: config 0 descriptor??
[  246.505414][ T5951] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  246.604154][T12996] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.642722][T15265] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  246.703229][T12996] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.729324][ T1026] hid_parser_main: 5 callbacks suppressed
[  246.729339][ T1026] mcp2221 0003:04D8:00DD.0006: unknown main item tag 0x0
[  246.733501][ T1026] mcp2221 0003:04D8:00DD.0006: unknown main item tag 0x0
[  246.735732][ T1026] mcp2221 0003:04D8:00DD.0006: unknown main item tag 0x0
[  246.739465][ T1026] mcp2221 0003:04D8:00DD.0006: unknown main item tag 0x0
[  246.741718][ T1026] mcp2221 0003:04D8:00DD.0006: unknown main item tag 0x0
[  246.744281][ T1026] mcp2221 0003:04D8:00DD.0006: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[  246.801046][T12996] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.812140][T15256] chnl_net:caif_netlink_parms(): no params data found
[  246.866822][T15256] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.869274][T15256] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.871685][T15256] bridge_slave_0: entered allmulticast mode
[  246.874446][T15256] bridge_slave_0: entered promiscuous mode
[  246.879243][T15256] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.881699][T15256] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.884385][T15256] bridge_slave_1: entered allmulticast mode
[  246.887490][T15256] bridge_slave_1: entered promiscuous mode
[  246.904624][T15256] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  246.910384][T15256] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  246.927416][T15256] team0: Port device team_slave_0 added
[  246.931054][T15256] team0: Port device team_slave_1 added
[  246.947986][T15256] batman_adv: batadv0: Adding interface: batadv_slave_0
[  246.950562][T15256] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  246.968621][T15256] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  246.975369][ T5953] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  246.975581][  T841] usb 5-1: USB disconnect, device number 13
[  246.979818][ T5953] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  246.981411][T12996] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.987437][ T5953] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  246.994532][ T5953] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  246.997627][T15256] batman_adv: batadv0: Adding interface: batadv_slave_1
[  246.999996][T15256] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  247.009491][T15256] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  247.009503][ T5953] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  247.045647][T15256] hsr_slave_0: entered promiscuous mode
[  247.048142][T15256] hsr_slave_1: entered promiscuous mode
[  247.050370][T15256] debugfs: 'hsr0' already exists in 'hsr'
[  247.052309][T15256] Cannot create hsr debugfs directory
[  247.132092][T15292] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2728'.
[  247.164538][T15292] syz_tun: left allmulticast mode
[  247.166771][T15292] syz_tun: left promiscuous mode
[  247.168668][T15292] bridge0: port 3(syz_tun) entered disabled state
[  247.172460][T15292] bridge_slave_1: left allmulticast mode
[  247.174947][T15292] bridge_slave_1: left promiscuous mode
[  247.177368][T15292] bridge0: port 2(bridge_slave_1) entered disabled state
[  247.182980][T15292] bridge_slave_0: left allmulticast mode
[  247.184915][T15292] bridge_slave_0: left promiscuous mode
[  247.187586][T15292] bridge0: port 1(bridge_slave_0) entered disabled state
[  247.301147][T12996] bridge_slave_1: left allmulticast mode
[  247.303311][T12996] bridge_slave_1: left promiscuous mode
[  247.307970][T12996] bridge0: port 2(bridge_slave_1) entered disabled state
[  247.312107][T12996] bridge_slave_0: left allmulticast mode
[  247.315021][T12996] bridge_slave_0: left promiscuous mode
[  247.317667][T12996] bridge0: port 1(bridge_slave_0) entered disabled state
[  247.373531][T15294] xt_bpf: check failed: parse error
[  247.433308][T12996] bond1 (unregistering): (slave gretap1): Releasing backup interface
[  247.587441][T12996] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  247.592331][T12996] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  247.596243][T12996] bond0 (unregistering): Released all slaves
[  247.602513][T12996] bond1 (unregistering): Released all slaves
[  247.630153][T15256] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  247.640290][T15297] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2730'.
[  247.702518][T12996] tipc: Disabling bearer <udp:syz0>
[  247.716178][T12996] tipc: Left network mode
[  247.794784][T15256] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  247.825584][T15282] chnl_net:caif_netlink_parms(): no params data found
[  247.874239][T15282] bridge0: port 1(bridge_slave_0) entered blocking state
[  247.876745][T15282] bridge0: port 1(bridge_slave_0) entered disabled state
[  247.882108][T15282] bridge_slave_0: entered allmulticast mode
[  247.886025][T15282] bridge_slave_0: entered promiscuous mode
[  247.890411][T15282] bridge0: port 2(bridge_slave_1) entered blocking state
[  247.894722][T15282] bridge0: port 2(bridge_slave_1) entered disabled state
[  247.897852][T15282] bridge_slave_1: entered allmulticast mode
[  247.902363][T15282] bridge_slave_1: entered promiscuous mode
[  247.926764][T15256] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  247.971600][T15282] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  247.978338][T15282] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  248.002719][T15282] team0: Port device team_slave_0 added
[  248.007563][T15282] team0: Port device team_slave_1 added
[  248.020797][T15256] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  248.052393][T12996] hsr_slave_0: left promiscuous mode
[  248.054492][T12996] hsr_slave_1: left promiscuous mode
[  248.056576][T12996] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  248.059040][T12996] batman_adv: batadv0: Removing interface: batadv_slave_0
[  248.062466][T12996] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  248.064863][T12996] batman_adv: batadv0: Removing interface: batadv_slave_1
[  248.071942][T12996] veth1_macvtap: left promiscuous mode
[  248.074034][T12996] veth0_macvtap: left promiscuous mode
[  248.075929][T12996] veth1_vlan: left promiscuous mode
[  248.077650][T12996] veth0_vlan: left promiscuous mode
[  248.093759][ T6026] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  248.203515][T12996] team0 (unregistering): Port device team_slave_1 removed
[  248.210129][T12996] team0 (unregistering): Port device team_slave_0 removed
[  248.284514][T15282] batman_adv: batadv0: Adding interface: batadv_slave_0
[  248.288420][T15282] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  248.289777][ T6026] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  248.304637][T15282] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  248.305693][ T6026] usb 8-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  248.311087][T15282] batman_adv: batadv0: Adding interface: batadv_slave_1
[  248.314020][ T6026] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  248.316770][T15282] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  248.321013][ T6026] usb 8-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  248.321041][ T6026] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  248.321062][ T6026] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  248.322772][ T6026] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  248.337535][T15282] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  248.337926][ T6026] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  248.359438][ T6026] usb 8-1: Product: syz
[  248.361202][ T6026] usb 8-1: Manufacturer: syz
[  248.365864][T15307] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  248.372861][ T6026] cdc_wdm 8-1:1.0: skipping garbage
[  248.374588][ T6026] cdc_wdm 8-1:1.0: skipping garbage
[  248.378192][T15282] hsr_slave_0: entered promiscuous mode
[  248.379493][ T6026] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  248.381739][T15282] hsr_slave_1: entered promiscuous mode
[  248.383116][ T6026] cdc_wdm 8-1:1.0: Unknown control protocol
[  248.389410][T15282] debugfs: 'hsr0' already exists in 'hsr'
[  248.391342][T15282] Cannot create hsr debugfs directory
[  248.518911][T15256] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  248.528266][T15256] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  248.534036][T15256] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  248.551035][T15256] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  248.586787][    C1] wdm_int_callback: 248 callbacks suppressed
[  248.586801][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.590846][    C1] wdm_int_callback: 248 callbacks suppressed
[  248.590856][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.593345][T15282] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  248.595098][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.599429][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.601728][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.604649][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.606784][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.609397][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.612068][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.613447][T15282] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  248.614128][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.614320][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.620807][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.623466][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.625576][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.626890][T15282] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  248.627677][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.632390][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.634970][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.637084][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.637614][T15282] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  248.639261][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  248.643993][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  248.660973][ T5953] Bluetooth: hci0: command tx timeout
[  248.691435][T15282] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.694596][T15282] bridge0: port 2(bridge_slave_1) entered forwarding state
[  248.697717][T15282] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.700788][T15282] bridge0: port 1(bridge_slave_0) entered forwarding state
[  248.735966][T15256] 8021q: adding VLAN 0 to HW filter on device bond0
[  248.749027][T12986] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.751738][T12986] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.763945][T15256] 8021q: adding VLAN 0 to HW filter on device team0
[  248.773869][T12986] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.776242][T12986] bridge0: port 1(bridge_slave_0) entered forwarding state
[  248.794055][T12987] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.796820][T12987] bridge0: port 2(bridge_slave_1) entered forwarding state
[  248.805084][T12996] IPVS: stop unused estimator thread 0...
[  248.816199][T15282] 8021q: adding VLAN 0 to HW filter on device bond0
[  248.844012][T15282] 8021q: adding VLAN 0 to HW filter on device team0
[  248.850833][T12993] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.853923][T12993] bridge0: port 1(bridge_slave_0) entered forwarding state
[  248.881482][T13002] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.884736][T13002] bridge0: port 2(bridge_slave_1) entered forwarding state
[  249.053791][T15256] 8021q: adding VLAN 0 to HW filter on device batadv0
[  249.065511][T15282] 8021q: adding VLAN 0 to HW filter on device batadv0
[  249.096785][T15256] veth0_vlan: entered promiscuous mode
[  249.104886][T15256] veth1_vlan: entered promiscuous mode
[  249.130094][T15256] veth0_macvtap: entered promiscuous mode
[  249.136210][T15256] veth1_macvtap: entered promiscuous mode
[  249.151156][T15256] batman_adv: batadv0: Interface activated: batadv_slave_0
[  249.162806][T15256] batman_adv: batadv0: Interface activated: batadv_slave_1
[  249.170305][T12996] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  249.179486][T12996] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  249.185954][T12996] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  249.198668][T12996] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  249.249000][ T5953] Bluetooth: hci1: command tx timeout
[  249.268862][T12997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.273896][T12997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.290980][T12996] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.294029][T12996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.337736][T15282] veth0_vlan: entered promiscuous mode
[  249.349127][T15282] veth1_vlan: entered promiscuous mode
[  249.371150][T15282] veth0_macvtap: entered promiscuous mode
[  249.378079][T15282] veth1_macvtap: entered promiscuous mode
[  249.389144][T15282] batman_adv: batadv0: Interface activated: batadv_slave_0
[  249.395949][T15282] batman_adv: batadv0: Interface activated: batadv_slave_1
[  249.402951][T12997] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  249.405832][T12997] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  249.409721][T15372] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  249.413525][T15372] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  249.415670][T15372] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  249.416257][T12997] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  249.424515][T15372] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  249.425566][T12997] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  249.444394][T15372] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  249.446968][T15372] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  249.453680][T15372] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  249.460144][T15372] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  249.465456][T15372] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  249.469073][T15372] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  249.496384][T12997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.498935][T12997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.518405][T13002] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  249.521477][T13002] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  249.574410][T15382] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  249.577106][T15382] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  249.581117][T15382] vhci_hcd vhci_hcd.0: Device attached
[  249.585523][T15382] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  249.587741][T15382] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  249.593513][T15382] vhci_hcd vhci_hcd.0: Device attached
[  249.782991][ T6006] vhci_hcd vhci_hcd.4: vhci_device speed not set
[  249.793648][   T53] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  249.848441][ T6006] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  249.933621][T15388] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  249.966906][   T53] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  249.970649][   T53] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  249.973901][   T53] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  249.977581][   T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.984067][T15380] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  249.990501][   T53] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  250.212811][ T1026] usb 7-1: USB disconnect, device number 27
[  250.349516][   T53] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  250.477078][T15398] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2737'.
[  250.510385][   T53] usb 5-1: Using ep0 maxpacket: 32
[  250.515358][   T53] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  250.520359][T15398] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2737'.
[  250.523462][   T53] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  250.523576][   T53] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  250.523597][   T53] usb 5-1: Product: syz
[  250.523611][   T53] usb 5-1: Manufacturer: syz
[  250.523624][   T53] usb 5-1: SerialNumber: syz
[  250.527752][   T53] usb 5-1: config 0 descriptor??
[  250.552466][T15392] raw-gadget.3 gadget.0: fail, usb_ep_enable returned -22
[  250.558402][   T53] hub 5-1:0.0: bad descriptor, ignoring hub
[  250.561132][   T53] hub 5-1:0.0: probe with driver hub failed with error -5
[  250.592629][T12406] udevd[12406]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  250.971307][   T53] usb 5-1: USB disconnect, device number 14
[  250.996439][   T53] usb 8-1: USB disconnect, device number 7

[  251.129654][T15434] trusted_key: encrypted_key: insufficient parameters specified
[  251.388908][T15454] netlink: 'syz.2.2749': attribute type 1 has an invalid length.
[  251.392719][T15454] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2749'.
[  251.500658][T15464] netlink: 'syz.3.2750': attribute type 10 has an invalid length.
[  251.504098][T15464] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2750'.
[  251.508095][T15464] batadv0: entered promiscuous mode
[  251.510565][T15464] batadv0: entered allmulticast mode
[  251.513697][T15464] bridge0: port 3(batadv0) entered blocking state
[  251.517418][T15464] bridge0: port 3(batadv0) entered disabled state
[  251.526374][T15466] Invalid ELF header type: 3 != 1
[  251.529327][T15464] bridge0: port 3(batadv0) entered blocking state
[  251.529452][   T40] kauditd_printk_skb: 51 callbacks suppressed
[  251.529461][   T40] audit: type=1400 audit(2000000169.904:79448): avc:  denied  { module_load } for  pid=15465 comm="syz.0.2752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  251.532382][T15464] bridge0: port 3(batadv0) entered forwarding state
[  251.558278][ T5953] Bluetooth: hci4: command 0x0419 tx timeout
[  251.558730][ T5951] Bluetooth: hci3: command 0x2016 tx timeout
[  251.559280][   T40] audit: type=1400 audit(2000000169.942:79449): avc:  denied  { append } for  pid=15455 comm="syz.3.2750" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  251.560327][T15464] loop6: detected capacity change from 0 to 524288000
[  251.575567][   T40] audit: type=1400 audit(2000000169.951:79450): avc:  denied  { create } for  pid=15465 comm="syz.0.2752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  251.585503][   T40] audit: type=1400 audit(2000000169.951:79451): avc:  denied  { ioctl } for  pid=15465 comm="syz.0.2752" path="socket:[68906]" dev="sockfs" ino=68906 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  251.612658][T12992] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  251.615637][T12992] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  251.643115][ T5951] Bluetooth: hci0: command 0x040f tx timeout
[  251.654930][ T5951] Bluetooth: hci1: command 0x040f tx timeout
[  251.656919][T15471] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2754'.
[  251.660844][T15471] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2754'.
[  251.757893][T15477] sctp: [Deprecated]: syz.3.2757 (pid 15477) Use of struct sctp_assoc_value in delayed_ack socket option.
[  251.757893][T15477] Use struct sctp_sack_info instead
[  251.796169][   T40] audit: type=1400 audit(2000000170.157:79452): avc:  denied  { create } for  pid=15480 comm="syz.3.2759" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  251.808126][   T40] audit: type=1400 audit(2000000170.166:79453): avc:  denied  { write } for  pid=15480 comm="syz.3.2759" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  251.821665][   T40] audit: type=1400 audit(2000000170.166:79454): avc:  denied  { connect } for  pid=15480 comm="syz.3.2759" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  251.841356][   T40] audit: type=1400 audit(2000000170.194:79455): avc:  denied  { setopt } for  pid=15482 comm="syz.2.2760" lport=37843 faddr=::ffff:172.30.0.3 fport=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  251.852254][   T40] audit: type=1400 audit(2000000170.194:79456): avc:  denied  { setopt } for  pid=15482 comm="syz.2.2760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  251.860279][   T40] audit: type=1400 audit(2000000170.194:79457): avc:  denied  { create } for  pid=15482 comm="syz.2.2760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  252.037521][T15499] input: syz0 as /devices/virtual/input/input19
[  252.207651][T15509] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2770'.
[  252.639033][T15531] ptrace attach of "/syz-executor exec"[13023] was attempted by "/syz-executor exec"[15531]
[  252.796378][T15385] vhci_hcd: connection closed
[  252.796591][T15383] vhci_hcd: connection reset by peer
[  252.801978][T12986] vhci_hcd vhci_hcd.4: stop threads
[  252.807321][T12986] vhci_hcd vhci_hcd.4: release socket
[  252.809880][T12986] vhci_hcd vhci_hcd.4: disconnect device
[  252.820140][T12986] vhci_hcd vhci_hcd.4: stop threads
[  252.822629][T12986] vhci_hcd vhci_hcd.4: release socket
[  252.837376][T12986] vhci_hcd vhci_hcd.4: disconnect device
[  252.911748][T15553] iommufd_mock iommufd_mock0: Adding to iommu group 9
[  253.132019][T15559] geneve2: entered promiscuous mode
[  253.135126][T15559] geneve2: entered allmulticast mode
[  253.181055][T15566] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2789'.
[  253.240222][T15572] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2791'.
[  253.251940][T15572] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2791'.
[  253.582084][T15609] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  253.781190][ T5953] Bluetooth: hci3: command 0x2016 tx timeout
[  253.867189][ T5953] Bluetooth: hci1: command 0x040f tx timeout
[  253.867298][   T63] Bluetooth: hci0: command 0x040f tx timeout
[  253.967092][T15632] IPv6: NLM_F_CREATE should be specified when creating new route
[  253.983410][T15634] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2809'.
[  253.986692][T15634] openvswitch: netlink: Flow actions attr not present in new flow.
[  254.037388][T15637] fuse: blksize only supported for fuseblk
[  254.037916][T15638] fuse: blksize only supported for fuseblk
[  254.167503][T15639] kvm: kvm [15633]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[  254.171036][T15639] kvm: kvm [15633]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[  254.532468][T15662] netlink: 'syz.0.2817': attribute type 5 has an invalid length.
[  254.532470][T15663] netlink: 'syz.0.2817': attribute type 5 has an invalid length.
[  254.825050][ T5971] IPVS: starting estimator thread 0...
[  254.828105][T15680] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2822'.
[  254.927463][T15687] bond1: option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[  254.932142][T15687] bond1 (unregistering): Released all slaves
[  254.946596][T15682] IPVS: using max 22 ests per chain, 52800 per kthread
[  255.252295][T15732] mkiss: ax0: crc mode is auto.
[  255.310409][ T6006] vhci_hcd vhci_hcd.4: vhci_device speed not set
[  255.416964][ T5971] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  255.417963][   T53] usb 5-1: new low-speed USB device number 15 using dummy_hcd
[  255.585573][ T5971] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  255.588147][   T53] usb 5-1: Invalid ep0 maxpacket: 64
[  255.589182][ T5971] usb 8-1: config 0 interface 0 has no altsetting 0
[  255.601637][ T5971] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  255.605115][ T5971] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  255.607899][ T5971] usb 8-1: Product: syz
[  255.609611][ T5971] usb 8-1: Manufacturer: syz
[  255.611621][ T5971] usb 8-1: SerialNumber: syz
[  255.614686][ T5971] usb 8-1: config 0 descriptor??
[  255.623906][ T5971] usb 8-1: selecting invalid altsetting 0
[  255.748816][   T53] usb 5-1: new low-speed USB device number 16 using dummy_hcd
[  255.835622][   T29] usb 8-1: USB disconnect, device number 8
[  255.930353][   T53] usb 5-1: Invalid ep0 maxpacket: 64
[  255.933174][   T53] usb usb5-port1: attempt power cycle
[  256.004882][ T5951] Bluetooth: hci3: command 0x2016 tx timeout
[  256.090661][ T5951] Bluetooth: hci1: command 0x040f tx timeout
[  256.090768][   T63] Bluetooth: hci0: command 0x040f tx timeout
[  256.315454][   T53] usb 5-1: new low-speed USB device number 17 using dummy_hcd
[  256.349944][   T53] usb 5-1: Invalid ep0 maxpacket: 64
[  256.370769][T15749] overlayfs: failed to resolve './cgroup': -2
[  256.496634][   T53] usb 5-1: new low-speed USB device number 18 using dummy_hcd
[  256.529432][   T53] usb 5-1: Invalid ep0 maxpacket: 64
[  256.532099][   T53] usb usb5-port1: unable to enumerate USB device
[  256.657874][  T841] usb usb46-port1: attempt power cycle
[  256.922933][T15766] __nla_validate_parse: 2 callbacks suppressed
[  256.922945][T15766] netlink: 368 bytes leftover after parsing attributes in process `syz.3.2846'.
[  256.975881][T15773] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2847'.
[  257.233333][T15783] tipc: Started in network mode
[  257.236618][T15783] tipc: Node identity 84e, cluster identity 4711
[  257.239784][T15783] tipc: Node number set to 2126
[  257.267573][  T841] usb usb46-port1: unable to enumerate USB device
[  257.389395][   T40] kauditd_printk_skb: 66 callbacks suppressed
[  257.389413][   T40] audit: type=1400 audit(2000000175.386:79524): avc:  denied  { ioctl } for  pid=15794 comm="syz.3.2854" path="socket:[70991]" dev="sockfs" ino=70991 ioctlcmd=0x5868 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  257.423001][   T40] audit: type=1400 audit(2000000175.414:79525): avc:  denied  { setopt } for  pid=15796 comm="syz.4.2855" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  257.482373][T15800] Cannot find add_set index 1 as target
[  257.506323][   T40] audit: type=1400 audit(2000000175.498:79526): avc:  denied  { create } for  pid=15803 comm="syz.4.2857" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_dnrt_socket permissive=1
[  257.526391][   T40] audit: type=1400 audit(2000000175.517:79527): avc:  denied  { write } for  pid=15807 comm="syz.3.2858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  257.813600][T15827] fuse: Bad value for 'fd'
[  257.813622][   T40] audit: type=1400 audit(2000000175.788:79528): avc:  denied  { mounton } for  pid=15825 comm="syz.3.2863" path="/138/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[  257.946697][T15838] kAFS: unable to lookup cell 'syz1'
[  257.986054][T15841] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2869'.
[  257.989042][T15841] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  257.992041][T15841] batman_adv: batadv0: Removing interface: batadv_slave_0
[  257.999315][T15841] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  258.002212][T15841] batman_adv: batadv0: Removing interface: batadv_slave_1
[  258.009684][T15841] bridge0: port 3(batadv0) entered disabled state
[  258.016121][T15841] bridge0: port 3(batadv0) entered disabled state
[  258.247457][   T40] audit: type=1400 audit(2000000176.190:79529): avc:  denied  { connect } for  pid=15845 comm="syz.3.2871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  258.253394][T15846] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2871'.
[  258.262852][T15846] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2871'.
[  258.265794][T15846] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2871'.
[  258.314380][   T63] Bluetooth: hci1: command 0x040f tx timeout
[  258.324905][   T63] Bluetooth: hci0: command 0x040f tx timeout
[  258.412315][   T40] audit: type=1326 audit(2000000176.349:79530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15851 comm="syz.0.2873" exe="/syz-executor" sig=31 arch=c000003e syscall=317 compat=0 ip=0x7f788b59c799 code=0x0
[  258.423333][   T40] audit: type=1400 audit(2000000176.349:79531): avc:  denied  { setopt } for  pid=15849 comm="syz.3.2874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  258.701763][   T40] audit: type=1400 audit(2000000176.620:79532): avc:  denied  { write } for  pid=15864 comm="syz.3.2877" name="file0" dev="tmpfs" ino=813 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  258.712704][   T40] audit: type=1400 audit(2000000176.620:79533): avc:  denied  { open } for  pid=15864 comm="syz.3.2877" path="/150/file0" dev="tmpfs" ino=813 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  258.795848][   T63] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  259.015513][T15877] netlink: 'syz.2.2880': attribute type 13 has an invalid length.
[  259.157943][T15885] macsec1: entered promiscuous mode
[  259.161437][T15885] macsec1: entered allmulticast mode
[  259.386801][T15917] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2889'.
[  259.705207][    C0] ------------[ cut here ]------------
[  259.707311][    C0] sk->sk_forward_alloc
[  259.707324][    C0] WARNING: net/ipv4/af_inet.c:163 at inet_sock_destruct+0x653/0x800, CPU#0: syz.2.2895/15929
[  259.711782][    C0] Modules linked in:
[  259.713795][    C0] CPU: 0 UID: 0 PID: 15929 Comm: syz.2.2895 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  259.717479][    C0] Tainted: [L]=SOFTLOCKUP
[  259.718795][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  259.721866][    C0] RIP: 0010:inet_sock_destruct+0x653/0x800
[  259.723728][    C0] Code: f1 4e ff e9 06 fd ff ff e8 7a 81 ff f7 90 0f 0b 90 e9 35 fe ff ff e8 6c 81 ff f7 90 0f 0b 90 e9 c5 fe ff ff e8 5e 81 ff f7 90 <0f> 0b 90 e9 04 ff ff ff e8 50 81 ff f7 90 0f 0b 90 e9 65 fe ff ff
[  259.729826][    C0] RSP: 0018:ffffc90000007d98 EFLAGS: 00010246
[  259.731794][    C0] RAX: 0000000000000000 RBX: ffff88803524dd80 RCX: ffffffff8a095ee7
[  259.734302][    C0] RDX: ffff88802a304980 RSI: ffffffff8a095fe2 RDI: ffff88802a304980
[  259.736932][    C0] RBP: 0000000000000090 R08: 0000000000000005 R09: 0000000000000000
[  259.739416][    C0] R10: 0000000000000090 R11: 0000000000000000 R12: ffff88803524dd80
[  259.741919][    C0] R13: ffff88803524de10 R14: ffffffff81eea6fd R15: 0000000000000006
[  259.744422][    C0] FS:  0000000000000000(0000) GS:ffff8880d633f000(0000) knlGS:0000000000000000
[  259.747397][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  259.749426][    C0] CR2: 00007fffc3f69ec0 CR3: 0000000045b93000 CR4: 0000000000352ef0
[  259.751914][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 000000006f6d7f8b
[  259.754524][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  259.757209][    C0] Call Trace:
[  259.758464][    C0]  <IRQ>
[  259.759385][    C0]  ? __pfx_udp_destruct_sock+0x10/0x10
[  259.761136][    C0]  ? rcu_core+0x59d/0x10d0
[  259.762632][    C0]  __sk_destruct+0x85/0xbb0
[  259.764127][    C0]  ? rcu_core+0x59d/0x10d0
[  259.765566][    C0]  rcu_core+0x5a2/0x10d0
[  259.766957][    C0]  ? __pfx_rcu_core+0x10/0x10
[  259.768859][    C0]  ? mark_held_locks+0x40/0x70
[  259.770872][    C0]  handle_softirqs+0x1eb/0x9e0
[  259.772580][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  259.774326][    C0]  __irq_exit_rcu+0xef/0x150
[  259.775829][    C0]  irq_exit_rcu+0x9/0x30
[  259.777208][    C0]  sysvec_apic_timer_interrupt+0xa3/0xc0
[  259.779286][    C0]  </IRQ>
[  259.780457][    C0]  <TASK>
[  259.781410][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  259.783340][    C0] RIP: 0010:folios_put_refs+0x6f/0x840
[  259.785083][    C0] Code: 40 78 43 f9 8d 48 c7 44 24 48 c0 97 47 82 c7 00 f1 f1 f1 f1 c7 40 04 00 f2 f2 f2 c7 40 08 00 f3 f3 f3 65 48 8b 05 d9 77 c6 11 <48> 89 84 24 b0 00 00 00 31 c0 e8 02 49 c1 ff 4c 89 f0 48 c7 44 24
[  259.791273][    C0] RSP: 0018:ffffc9000c11f118 EFLAGS: 00000282
[  259.793351][    C0] RAX: 18bd753c924d1f00 RBX: dffffc0000000000 RCX: ffffffff826bef21
[  259.795851][    C0] RDX: ffff88802a304980 RSI: ffffc9000c11f248 RDI: ffffc9000c11f2e8
[  259.798356][    C0] RBP: dffffc0000000000 R08: 0000000000000001 R09: 000000000000001f
[  259.801020][    C0] R10: 000000000000001f R11: 0000000000000000 R12: 0000000000000116
[  259.803718][    C0] R13: 0000000000000000 R14: ffffc9000c11f2e8 R15: 000000000000001e
[  259.806225][    C0]  ? free_pages_and_swap_cache+0x221/0x480
[  259.808101][    C0]  ? folios_put_refs+0x66d/0x840
[  259.809694][    C0]  ? __pfx_folios_put_refs+0x10/0x10
[  259.811563][    C0]  ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0
[  259.813840][    C0]  ? __lock_acquire+0x401/0x2630
[  259.815436][    C0]  free_pages_and_swap_cache+0x242/0x480
[  259.817232][    C0]  ? __pfx_free_pages_and_swap_cache+0x10/0x10
[  259.819203][    C0]  ? __pfx___might_resched+0x10/0x10
[  259.820938][    C0]  ? folio_remove_rmap_ptes+0x3de/0xff0
[  259.822804][    C0]  __tlb_batch_free_encoded_pages+0xe9/0x280
[  259.824903][    C0]  tlb_flush_mmu+0xe9/0x590
[  259.826377][    C0]  unmap_page_range+0x2333/0x4840
[  259.828043][    C0]  ? __lock_acquire+0x4a5/0x2630
[  259.829628][    C0]  ? __pfx_unmap_page_range+0x10/0x10
[  259.831345][    C0]  ? mas_next_slot+0x1003/0x18b0
[  259.833087][    C0]  ? uprobe_munmap+0x9e/0x700
[  259.834761][    C0]  unmap_single_vma+0x153/0x240
[  259.836335][    C0]  unmap_vmas+0x295/0x590
[  259.837698][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[  259.839263][    C0]  ? mas_next_slot+0x1003/0x18b0
[  259.840878][    C0]  exit_mmap+0x1ef/0xa30
[  259.842306][    C0]  ? __pfx_exit_mmap+0x10/0x10
[  259.843996][    C0]  ? trace_contention_end+0x140/0x180
[  259.845989][    C0]  ? uprobe_clear_state+0x5f/0x360
[  259.847635][    C0]  ? uprobe_clear_state+0x5f/0x360
[  259.849307][    C0]  ? __lock_acquire+0x4a5/0x2630
[  259.850899][    C0]  ? arch_uprobe_clear_state+0x107/0x150
[  259.852797][    C0]  __mmput+0x12a/0x410
[  259.854349][    C0]  mmput+0x67/0x80
[  259.855836][    C0]  do_exit+0x819/0x2b60
[  259.857298][    C0]  ? __pfx_do_exit+0x10/0x10
[  259.858835][    C0]  ? do_raw_spin_lock+0x128/0x260
[  259.860543][    C0]  ? find_held_lock+0x2b/0x80
[  259.862058][    C0]  ? get_signal+0x7e0/0x21e0
[  259.863712][    C0]  do_group_exit+0xd5/0x2a0
[  259.865359][    C0]  get_signal+0x1ec7/0x21e0
[  259.866969][    C0]  ? __pfx_get_signal+0x10/0x10
[  259.868534][    C0]  ? do_futex+0x192/0x350
[  259.869918][    C0]  arch_do_signal_or_restart+0x91/0x7a0
[  259.871697][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  259.873542][    C0]  ? __pfx___x64_sys_futex+0x10/0x10
[  259.875342][    C0]  exit_to_user_mode_loop+0x86/0x4a0
[  259.877161][    C0]  do_syscall_64+0x67c/0xf80
[  259.878652][    C0]  ? clear_bhb_loop+0x40/0x90
[  259.880111][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.882240][    C0] RIP: 0033:0x7fe33419c799
[  259.883676][    C0] Code: Unable to access opcode bytes at 0x7fe33419c76f.
[  259.886196][    C0] RSP: 002b:00007fe3350770e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  259.888888][    C0] RAX: fffffffffffffe00 RBX: 00007fe334415fa8 RCX: 00007fe33419c799
[  259.891674][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe334415fa8
[  259.894376][    C0] RBP: 00007fe334415fa0 R08: 0000000000000000 R09: 0000000000000000
[  259.897296][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  259.899988][    C0] R13: 00007fe334416038 R14: 00007ffdb1eee600 R15: 00007ffdb1eee6e8
[  259.902690][    C0]  </TASK>
[  259.903717][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  259.906048][    C0] CPU: 0 UID: 0 PID: 15929 Comm: syz.2.2895 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  259.909579][    C0] Tainted: [L]=SOFTLOCKUP
[  259.910975][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  259.914612][    C0] Call Trace:
[  259.916047][    C0]  <IRQ>
[  259.917279][    C0]  dump_stack_lvl+0x100/0x190
[  259.919271][    C0]  vpanic+0x552/0x970
[  259.920986][    C0]  ? __pfx_vpanic+0x10/0x10
[  259.922928][    C0]  panic+0xd1/0xe0
[  259.924573][    C0]  ? __pfx_panic+0x10/0x10
[  259.926467][    C0]  ? check_panic_on_warn+0x1f/0x90
[  259.928641][    C0]  check_panic_on_warn.cold+0x19/0x34
[  259.930895][    C0]  ? inet_sock_destruct+0x653/0x800
[  259.933119][    C0]  __warn.cold+0x191/0x348
[  259.934998][    C0]  __report_bug+0x296/0x3d0
[  259.936964][    C0]  ? inet_sock_destruct+0x653/0x800
[  259.938742][    C0]  ? __pfx___report_bug+0x10/0x10
[  259.940421][    C0]  ? unmap_single_vma+0x153/0x240
[  259.942078][    C0]  ? unmap_vmas+0x295/0x590
[  259.943592][    C0]  ? exit_mmap+0x1ef/0xa30
[  259.945104][    C0]  ? __mmput+0x12a/0x410
[  259.946522][    C0]  ? mmput+0x67/0x80
[  259.947801][    C0]  ? do_exit+0x819/0x2b60
[  259.949414][    C0]  ? do_group_exit+0xd5/0x2a0
[  259.951368][    C0]  ? get_signal+0x1ec7/0x21e0
[  259.953380][    C0]  ? arch_do_signal_or_restart+0x91/0x7a0
[  259.955492][    C0]  ? exit_to_user_mode_loop+0x86/0x4a0
[  259.957742][    C0]  ? do_syscall_64+0x67c/0xf80
[  259.959791][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.962363][    C0]  ? inet_sock_destruct+0x653/0x800
[  259.964598][    C0]  report_bug+0xb2/0x220
[  259.966410][    C0]  ? inet_sock_destruct+0x653/0x800
[  259.968713][    C0]  handle_bug+0x16a/0x2a0
[  259.970511][    C0]  exc_invalid_op+0x17/0x50
[  259.972535][    C0]  asm_exc_invalid_op+0x1a/0x20
[  259.974553][    C0] RIP: 0010:inet_sock_destruct+0x653/0x800
[  259.976655][    C0] Code: f1 4e ff e9 06 fd ff ff e8 7a 81 ff f7 90 0f 0b 90 e9 35 fe ff ff e8 6c 81 ff f7 90 0f 0b 90 e9 c5 fe ff ff e8 5e 81 ff f7 90 <0f> 0b 90 e9 04 ff ff ff e8 50 81 ff f7 90 0f 0b 90 e9 65 fe ff ff
[  259.982944][    C0] RSP: 0018:ffffc90000007d98 EFLAGS: 00010246
[  259.985240][    C0] RAX: 0000000000000000 RBX: ffff88803524dd80 RCX: ffffffff8a095ee7
[  259.988300][    C0] RDX: ffff88802a304980 RSI: ffffffff8a095fe2 RDI: ffff88802a304980
[  259.991635][    C0] RBP: 0000000000000090 R08: 0000000000000005 R09: 0000000000000000
[  259.994976][    C0] R10: 0000000000000090 R11: 0000000000000000 R12: ffff88803524dd80
[  259.998306][    C0] R13: ffff88803524de10 R14: ffffffff81eea6fd R15: 0000000000000006
[  260.001620][    C0]  ? rcu_core+0x59d/0x10d0
[  260.003546][    C0]  ? inet_sock_destruct+0x557/0x800
[  260.005757][    C0]  ? inet_sock_destruct+0x652/0x800
[  260.007962][    C0]  ? inet_sock_destruct+0x652/0x800
[  260.010177][    C0]  ? __pfx_udp_destruct_sock+0x10/0x10
[  260.012534][    C0]  ? rcu_core+0x59d/0x10d0
[  260.014470][    C0]  __sk_destruct+0x85/0xbb0
[  260.016410][    C0]  ? rcu_core+0x59d/0x10d0
[  260.018205][    C0]  rcu_core+0x5a2/0x10d0
[  260.019719][    C0]  ? __pfx_rcu_core+0x10/0x10
[  260.021763][    C0]  ? mark_held_locks+0x40/0x70
[  260.023832][    C0]  handle_softirqs+0x1eb/0x9e0
[  260.025885][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  260.028161][    C0]  __irq_exit_rcu+0xef/0x150
[  260.030131][    C0]  irq_exit_rcu+0x9/0x30
[  260.031951][    C0]  sysvec_apic_timer_interrupt+0xa3/0xc0
[  260.034315][    C0]  </IRQ>
[  260.035589][    C0]  <TASK>
[  260.036872][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  260.039370][    C0] RIP: 0010:folios_put_refs+0x6f/0x840
[  260.041718][    C0] Code: 40 78 43 f9 8d 48 c7 44 24 48 c0 97 47 82 c7 00 f1 f1 f1 f1 c7 40 04 00 f2 f2 f2 c7 40 08 00 f3 f3 f3 65 48 8b 05 d9 77 c6 11 <48> 89 84 24 b0 00 00 00 31 c0 e8 02 49 c1 ff 4c 89 f0 48 c7 44 24
[  260.049704][    C0] RSP: 0018:ffffc9000c11f118 EFLAGS: 00000282
[  260.052031][    C0] RAX: 18bd753c924d1f00 RBX: dffffc0000000000 RCX: ffffffff826bef21
[  260.054551][    C0] RDX: ffff88802a304980 RSI: ffffc9000c11f248 RDI: ffffc9000c11f2e8
[  260.057496][    C0] RBP: dffffc0000000000 R08: 0000000000000001 R09: 000000000000001f
[  260.061018][    C0] R10: 000000000000001f R11: 0000000000000000 R12: 0000000000000116
[  260.064312][    C0] R13: 0000000000000000 R14: ffffc9000c11f2e8 R15: 000000000000001e
[  260.067282][    C0]  ? free_pages_and_swap_cache+0x221/0x480
[  260.069838][    C0]  ? folios_put_refs+0x66d/0x840
[  260.072081][    C0]  ? __pfx_folios_put_refs+0x10/0x10
[  260.074470][    C0]  ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0
[  260.077364][    C0]  ? __lock_acquire+0x401/0x2630
[  260.079484][    C0]  free_pages_and_swap_cache+0x242/0x480
[  260.081889][    C0]  ? __pfx_free_pages_and_swap_cache+0x10/0x10
[  260.084544][    C0]  ? __pfx___might_resched+0x10/0x10
[  260.086758][    C0]  ? folio_remove_rmap_ptes+0x3de/0xff0
[  260.088885][    C0]  __tlb_batch_free_encoded_pages+0xe9/0x280
[  260.090790][    C0]  tlb_flush_mmu+0xe9/0x590
[  260.092336][    C0]  unmap_page_range+0x2333/0x4840
[  260.094022][    C0]  ? __lock_acquire+0x4a5/0x2630
[  260.095688][    C0]  ? __pfx_unmap_page_range+0x10/0x10
[  260.097557][    C0]  ? mas_next_slot+0x1003/0x18b0
[  260.099184][    C0]  ? uprobe_munmap+0x9e/0x700
[  260.100688][    C0]  unmap_single_vma+0x153/0x240
[  260.102211][    C0]  unmap_vmas+0x295/0x590
[  260.103572][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[  260.105119][    C0]  ? mas_next_slot+0x1003/0x18b0
[  260.106631][    C0]  exit_mmap+0x1ef/0xa30
[  260.108065][    C0]  ? __pfx_exit_mmap+0x10/0x10
[  260.109443][    C0]  ? trace_contention_end+0x140/0x180
[  260.111137][    C0]  ? uprobe_clear_state+0x5f/0x360
[  260.112823][    C0]  ? uprobe_clear_state+0x5f/0x360
[  260.114469][    C0]  ? __lock_acquire+0x4a5/0x2630
[  260.116134][    C0]  ? arch_uprobe_clear_state+0x107/0x150
[  260.118157][    C0]  __mmput+0x12a/0x410
[  260.119645][    C0]  mmput+0x67/0x80
[  260.120947][    C0]  do_exit+0x819/0x2b60
[  260.122307][    C0]  ? __pfx_do_exit+0x10/0x10
[  260.123788][    C0]  ? do_raw_spin_lock+0x128/0x260
[  260.125390][    C0]  ? find_held_lock+0x2b/0x80
[  260.126874][    C0]  ? get_signal+0x7e0/0x21e0
[  260.128490][    C0]  do_group_exit+0xd5/0x2a0
[  260.130032][    C0]  get_signal+0x1ec7/0x21e0
[  260.131610][    C0]  ? __pfx_get_signal+0x10/0x10
[  260.133362][    C0]  ? do_futex+0x192/0x350
[  260.134883][    C0]  arch_do_signal_or_restart+0x91/0x7a0
[  260.136593][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  260.138329][    C0]  ? __pfx___x64_sys_futex+0x10/0x10
[  260.139975][    C0]  exit_to_user_mode_loop+0x86/0x4a0
[  260.141653][    C0]  do_syscall_64+0x67c/0xf80
[  260.143168][    C0]  ? clear_bhb_loop+0x40/0x90
[  260.144678][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.146539][    C0] RIP: 0033:0x7fe33419c799
[  260.147966][    C0] Code: Unable to access opcode bytes at 0x7fe33419c76f.
[  260.150162][    C0] RSP: 002b:00007fe3350770e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  260.152819][    C0] RAX: fffffffffffffe00 RBX: 00007fe334415fa8 RCX: 00007fe33419c799
[  260.155330][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fe334415fa8
[  260.157815][    C0] RBP: 00007fe334415fa0 R08: 0000000000000000 R09: 0000000000000000
[  260.160289][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  260.163087][    C0] R13: 00007fe334416038 R14: 00007ffdb1eee600 R15: 00007ffdb1eee6e8
[  260.166153][    C0]  </TASK>
[  260.168074][    C0] Kernel Offset: disabled
[  260.169471][    C0] Rebooting in 86400 seconds..