last executing test programs:

8.328622821s ago: executing program 2 (id=3792):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r2}, 0x10)
r3 = openat$rtc(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(r3, 0x7005, 0x0)
readv(r3, &(0x7f00000004c0)=[{&(0x7f00000012c0)=""/191, 0xbf}], 0x1)
sendmsg$NL80211_CMD_RELOAD_REGDB(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x88db9508bd0eb102, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2}, 0x24040004)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000001000)=@newsa={0x180, 0x10, 0x1, 0x0, 0x0, {{@in=@empty, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@ipv4, 0x0, 0x6c}, @in6=@remote, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_auth={0x48, 0x1, {{'crc32-generic\x00'}}}, @algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x180}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='\x00'], 0x3, 0x2a0, &(0x7f0000000940)="$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")

8.178862992s ago: executing program 2 (id=3793):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d000000000000010902240001000000000904000001"], 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$USBDEVFS_CLEAR_HALT(0xffffffffffffffff, 0x80045503, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
ioprio_set$uid(0x0, r3, 0x2000)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, 0x0, 0x0)
sendmmsg$unix(r5, 0x0, 0x0, 0x0)
prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x13)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x6c}, 0x1, 0x0, 0x0, 0x4005}, 0x0)

5.825099892s ago: executing program 4 (id=3806):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, 0xffffffffffffffff, 0x0)
getrandom(&(0x7f0000000340)=""/4096, 0x412269194f7c77a1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
mkdir(&(0x7f00000018c0)='./file0/bus\x00', 0x150)
chroot(&(0x7f0000000000)='./file0\x00')
memfd_create(&(0x7f0000000240)='.\f^}\x00', 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000001c0)={0x80a0000, 0xd000})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0\x00', 0xfffffffffffffffe)
mknod$loop(&(0x7f0000000080)='./file0/bus\x00', 0x6210, 0x0)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2087, 0x703, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
syz_usb_control_io$hid(r3, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0xb, {[@main=@item_4={0x3, 0x0, 0x0, "881c7c75"}, @local=@item_4={0x3, 0x2, 0x2, "c0750696"}, @local]}}, 0x0}, 0x0)
creat(&(0x7f0000000040)='./file0/bus\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

5.725482049s ago: executing program 1 (id=3808):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x7, 0x8000, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
timer_settime(0x0, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5, 0x1, 0x8e, 0x8001, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x82)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, &(0x7f0000000300)={0x0, 0xd1, 0x81, 0x0, 0xd})
bpf$MAP_DELETE_BATCH(0x18, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xe30a, r3}, 0x38)
socket$nl_generic(0x10, 0x3, 0x10)

5.650850424s ago: executing program 1 (id=3809):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000340)={[{@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@jqfmt_vfsold}, {@resuid}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x648}}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000090a000000000000000000000000000008000a40000000000900020073797a32"], 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x2, 0xc8, 0x67, 0x0, 0x0, 0x0, 0x0, @dev, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@rand_addr=0x64010100}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@loopback}, {@remote}, {@multicast2, 0xb}, {@private=0xa010100}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2, 0xfffffffe}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@remote, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

5.250723951s ago: executing program 1 (id=3812):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getresuid(0x0, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xae5ff000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0xfffffffc, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffd, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r7 = dup(r6)
write$FUSE_DIRENTPLUS(r7, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_DIRENTPLUS(r7, &(0x7f0000000340)=ANY=[@ANYBLOB="b8"], 0xb8)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r9 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'sit0\x00', <r10=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r9, 0x8918, &(0x7f0000000080)={@loopback={0x0, 0x3fc}, 0x0, r10})
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x8042, 0x0)

4.424577298s ago: executing program 0 (id=3814):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$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")
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000407d1ad43000000000000109022400010000"], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x268, 0x180, 0x0, 0x148, 0x180, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00'}, 0x0, 0xc8, 0x130, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'vlan0\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0xed, 0x7}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c8)
keyctl$read(0xb, 0x0, &(0x7f0000000400)=""/146, 0x92)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
signalfd4(r3, &(0x7f0000000380)={[0x3dc6875]}, 0x8, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='qrtr_ns_message\x00', r4}, 0x18)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xf)
syz_open_procfs(r0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x1004, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000020000000000000000000000181100", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_lookup, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

4.419646768s ago: executing program 1 (id=3815):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000008000"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000d9068a4e8a6e83c3b5898fddda152874d950aee841c9f98310be935ce983649cb0b22c5c826197280046204b9abb9b0ccfe67d96b26fc6b6", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r5 = getpgrp(0xffffffffffffffff)
fcntl$setown(r3, 0x8, r5)

4.210899433s ago: executing program 2 (id=3817):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fstat(0xffffffffffffffff, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
ptrace$ARCH_SET_CPUID(0x1e, r1, 0x0, 0x1012)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/cpuinfo\x00', 0x0, 0x0)
pread64(r4, &(0x7f00000000c0)=""/83, 0x53, 0xa)

3.50823089s ago: executing program 1 (id=3818):
bpf$MAP_DELETE_ELEM(0x2, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
get_robust_list(0x0, &(0x7f0000000380)=0x0, 0x0)

3.392683348s ago: executing program 1 (id=3819):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, 0xffffffffffffffff, 0x0)
getrandom(&(0x7f0000000340)=""/4096, 0x412269194f7c77a1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
mkdir(&(0x7f00000018c0)='./file0/bus\x00', 0x150)
chroot(&(0x7f0000000000)='./file0\x00')
memfd_create(&(0x7f0000000240)='.\f^}\x00', 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[], 0x40}, 0x1, 0xd}, 0x0)
mkdir(&(0x7f00000000c0)='./file0\x00', 0xfffffffffffffffe)
mknod$loop(&(0x7f0000000080)='./file0/bus\x00', 0x6210, 0x0)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2087, 0x703, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
syz_usb_control_io$hid(r3, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0xb, {[@main=@item_4={0x3, 0x0, 0x0, "881c7c75"}, @local=@item_4={0x3, 0x2, 0x2, "c0750696"}, @local]}}, 0x0}, 0x0)
creat(&(0x7f0000000040)='./file0/bus\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

3.298647815s ago: executing program 2 (id=3820):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000800)=ANY=[@ANYBLOB="1201000000000040300f1101000000000001090224000100000000090400000103c59a0009210000000122070009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000280)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB="00900d0000000ac2290600421e"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='tunl0\x00', 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYRESOCT=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x6, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$tipc(r5, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$tipc(r5, &(0x7f0000000e40)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r5, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0)
sendmsg$tipc(r5, &(0x7f0000002700)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmsg$tipc(r5, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
close(r5)
recvmsg(r4, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)
process_mrelease(0xffffffffffffffff, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
close(r6)

3.178824173s ago: executing program 3 (id=3822):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000340)={[{@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@jqfmt_vfsold}, {@resuid}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x648}}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000090a000000000000000000000000000008000a40000000000900020073797a32"], 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x2, 0xc8, 0x67, 0x0, 0x0, 0x0, 0x0, @dev, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@rand_addr=0x64010100}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@loopback}, {@remote}, {@multicast2, 0xb}, {@private=0xa010100}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2, 0xfffffffe}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@remote, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.090760589s ago: executing program 3 (id=3823):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18030000fffffffb000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000d000000b7020000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0xfffffffe)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0)
ioctl$ASHMEM_SET_NAME(r1, 0x40087708, &(0x7f00000007c0)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84x\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
ioctl$ASHMEM_SET_NAME(r1, 0x40087707, &(0x7f0000000300)='\x00\x00\x03\v\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00')

3.07720839s ago: executing program 3 (id=3824):
open(0x0, 0x0, 0x2b)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000200)={r2, r4, 0x1, 0x0, @val=@iter={0x0}}, 0x40)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4400000013000100"/20, @ANYRES32=r6, @ANYBLOB="000000000000000005002700000000001c001a8018000a80140007"], 0x44}}, 0x0)

2.115238246s ago: executing program 4 (id=3825):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xae5ff000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0xfffffffc, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffd, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r7 = dup(r6)
write$FUSE_DIRENTPLUS(r7, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_DIRENTPLUS(r7, &(0x7f0000000340)=ANY=[@ANYBLOB="b8"], 0xb8)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r9 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'sit0\x00', <r10=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r9, 0x8918, &(0x7f0000000080)={@loopback={0x0, 0x3fc}, 0x0, r10})
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x8042, 0x0)

2.114831485s ago: executing program 3 (id=3826):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000001880), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000b40), 0x2b842ac, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x204000, &(0x7f0000000380)={[], [{@smackfsfloor}, {@uid_eq}, {@appraise_type}, {@dont_measure}]}, 0xfc, 0x57c, &(0x7f0000000980)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETAF(r3, 0x5408, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000940)=0xff)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81901)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000980)={0x802}, 0x10)
sendmsg$nl_generic(r4, 0x0, 0x0)

1.632410059s ago: executing program 4 (id=3827):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
open(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mount(0x0, 0x0, &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
getdents(0xffffffffffffffff, 0xfffffffffffffffd, 0x58)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wpan0\x00'})
sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=@newae={0x48, 0x1e, 0x468bbc8229e18b43, 0x0, 0x0, {{}, @in6=@empty}, [@replay_thresh={0x8}]}, 0x48}}, 0x0)

1.235386305s ago: executing program 0 (id=3828):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x2}]}, 0x10)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, 0x0, 0x0, 0x240540c3, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, &(0x7f00000003c0)='\x00', 0x1, 0x20040005, 0x0, 0x0)
poll(&(0x7f0000000000)=[{r2}], 0x1, 0xef)
close(r2)

1.178927709s ago: executing program 3 (id=3829):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000300)={0xffffffffffffffff, &(0x7f0000000240), &(0x7f00000000c0)=@udp6=r0}, 0x20)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_xfrm(r0, 0x0, 0x4001)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="01b91600"})
fcntl$addseals(0xffffffffffffffff, 0x409, 0xb1c25ce47c749b08)

1.16388145s ago: executing program 2 (id=3830):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f00000001c0)=<r4=>0x0)
ptrace$ARCH_MAP_VDSO_64(0x1e, r4, 0x200, 0x2003)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r5}, &(0x7f0000000800), &(0x7f0000000840)=r6}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001800800010000000000080002"], 0x64}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="dc00000000010104000000000000000002000000240002801400018008000100e000000108000200e00000010c000280050001000000000008000480040003800800084000000000080008400000"], 0xdc}}, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000780)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007\x00\x00\x00\x00=', @ANYRESHEX, @ANYBLOB=',dmask=00000000000000000000152,iocharset=iso8859-1,gid=', @ANYRESHEX, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYRES64], 0x0, 0x14f5, &(0x7f0000001580)="$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")
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
chdir(&(0x7f0000000180)='./file0\x00')
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
ioctl$KVM_X86_SET_MCE(r11, 0x4040ae9e, 0x0)

710.850761ms ago: executing program 4 (id=3831):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r1}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="0100002010c3"})

680.176133ms ago: executing program 0 (id=3832):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1b, 0xc, &(0x7f0000001180)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000200)='.\x00', 0x400)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0x7}, 0x18)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, 0x0, 0x0)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
close(r3)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0)

612.135358ms ago: executing program 4 (id=3833):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000340)={[{@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@jqfmt_vfsold}, {@resuid}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x648}}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000090a000000000000000000000000000008000a40000000000900020073797a32"], 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x2, 0xc8, 0x67, 0x0, 0x0, 0x0, 0x0, @dev, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@rand_addr=0x64010100}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@loopback}, {@remote}, {@multicast2, 0xb}, {@private=0xa010100}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2, 0xfffffffe}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@remote, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

611.778848ms ago: executing program 3 (id=3834):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180800000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0xfffffdd3)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x982073, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0x4000000, @ipv4={'\x00', '\xff\xff', @remote}, 0x401}, 0x1c)
setsockopt$inet6_tcp_int(r6, 0x6, 0x19, 0x0, 0x0)
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

570.810671ms ago: executing program 0 (id=3835):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000340)={[{@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@jqfmt_vfsold}, {@resuid}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x648}}, {@data_err_abort}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000090a000000000000000000000000000008000a40000000000900020073797a32"], 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x2d, 0x4, 0x0, 0x2, 0xb4, 0x67, 0x0, 0x0, 0x0, 0x0, @dev, @remote, {[@timestamp={0x44, 0x4, 0x0, 0x0, 0x9}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@rand_addr=0x64010100}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@loopback}, {@remote}, {@multicast2, 0xb}, {@private=0xa010100}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2, 0xfffffffe}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@remote, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

568.229891ms ago: executing program 2 (id=3836):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, 0xffffffffffffffff, 0x0)
getrandom(&(0x7f0000000340)=""/4096, 0x412269194f7c77a1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
mkdir(&(0x7f00000018c0)='./file0/bus\x00', 0x150)
chroot(&(0x7f0000000000)='./file0\x00')
memfd_create(&(0x7f0000000240)='.\f^}\x00', 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000001c0)={0x80a0000, 0xd000})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000000c0)='./file0\x00', 0xfffffffffffffffe)
mknod$loop(&(0x7f0000000080)='./file0/bus\x00', 0x6210, 0x0)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2087, 0x703, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
syz_usb_control_io$hid(r3, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0xb, {[@main=@item_4={0x3, 0x0, 0x0, "881c7c75"}, @local=@item_4={0x3, 0x2, 0x2, "c0750696"}, @local]}}, 0x0}, 0x0)
creat(&(0x7f0000000040)='./file0/bus\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

120.448232ms ago: executing program 0 (id=3837):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000c00))
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000005c0)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/68, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000000c0)={0x1, 0x1, 0x0, &(0x7f0000000480)=""/83, &(0x7f00000001c0)=""/72})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

88.524134ms ago: executing program 4 (id=3838):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, 0x0)
gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r3, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000600000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\t\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='ext4_es_lookup_extent_enter\x00', r2}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='ext4_es_lookup_extent_enter\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@discard}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x1, 0x56a, &(0x7f00000015c0)="$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")
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='ext4_es_lookup_extent_enter\x00', r5}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='ext4_es_lookup_extent_enter\x00', r5}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f00000021c0)={0x2020, 0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r6, &(0x7f0000004300)="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", 0x2000, &(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)={0x94, 0x0, 0x0, {0x4, 0x3, 0x0, 0x0, 0x0, 0x40000, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000}}}, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r6, &(0x7f0000000e00)={0x50, 0x0, r7}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
unlink(&(0x7f0000000300)='./file0/file0\x00')
syz_fuse_handle_req(r6, &(0x7f0000006300)="ac3baf85266b6996db8802bf503684f8d5de2d126f4d3a9e46c86d11276287b17bd6c4fc3c0671b3edafdbc1e43dfffecbaa1560bf29126fd78295d87a70bdb2ca9619d0f3b32a9cde210bcdc208c780489543a70c0f14e4ecbcd4040e84a6eec736253d76ca82c72e78dd138f6eba6b5a1fadf33a2dfc8cabfbfa10ee69153cca63c1f98e983c93327df032e532e89a71e66dc9047924b5de59c3db50ecf43019154932f60e2ac74a9cc80a36c08803b1fbc9a349d944a13e62ea51916570a830f6037d2fb2d9b74a8e9c974d8e8fb7ff7ec00afc0ed033d4c2b7d5be2226f3bd0ede8585556061f70d731f994f2ea31486c66771d89d4f71cfa54589b71106cd76da834fcd6cd3b82e09f7997c5c4bd0c6fb38521f64b207854ef9b40970906832fa7e96e2063f16b89420af35be21251228ddf3d8e76bda4d6a22c8743ff0b8ca16e62331c23f48f1c1c84f149665cf9741b956baed149d4cbccd9e01d703b1007c4e3f0afc3ac9f29e45185152966eb0e7c8f80c161d972dc5a1f75554109e3e6c4045e84754747a45a4d0ed222734a9e81b4bce92ea5189b683233139d9bcd60deec2f7b350328112ce2d17fc42561d238b81b208b2f5f9d179b09c0d25eef9d460048167ba0795483a54b16c0bdb07d26e71a0ced42e1268a23850625433ade023ee9d7b95cafdc8f4ddc4d0213c43313aa46684e2518621e261ec67a4c531df9dae55158c278416cc7f9f636f10e26f363f69a1768a5e0611ffb7240025f67b6d491c61e17f2d641ca1ad9e39a7b179d3897a8054415145baa58de1628c72319c630e808baffb34d98da60d90ac5defa449c49da1a99415d706a7dd42a07e1c6825bf51c89d9f0b0c0422faade2df12ec9c79a843023603c5a89f03ce6c33ac24ce69bf04cd73efaadff65420bab39e2c6957571fd60a53c0158ea0ecbe4d79dccf756a700c5c56798beab2826f007d19fdd7db9f0c07862153d406c3787c5b9a56047a372ad30d61e76a0767449bec0f8e010e12b601a636a469ed366f9d016107ad3300521e444ed421ebd43ba177e59c13525aee8dd818e1d1f5ea3785762849cf2dcf7e199157a2eaf0199f8ed42877f2f754ee11d6a731ef47936513609fe81921eb0427f5549f8e6e237fe600777c195035a33603233fc7a15c478536ff29eadb7862b570df09d330f6e952d9a374015ef25a5540bd909eacda0787e03f71b59755d0b38baf5362f3ae089cb76f888972584eeb98c01674b362dfdd5da8cfa2b8befb9656b2fa67c129e19510a0fcb5d49a523795b81f1ee70cead19ac25d2c969f1198d3a3d5abf36f84ff07cf97bc8a07bcc82af47a63ee6482ec4ebc23fa11a491ab4c9e72a66a7573604453a66d221264f07505b73b7ba6a6b1dc32f7d655838dfca67724c79121df58b94c2f9997858909a167800efba7ab488f3adc4f6385dc015b0630dd144c085a11f8db518123c9509241f3af0fde1274eed9aadeadfee9374c2a589dfb239b3882d13fb7ee4ffe6dc92ea402e3a2d16009ef15f8ae1a336b2be0e710e9dd9f79c0db66aecd2dff8397d2cb7177f627c8ef88f98a8e85767121bf5cf40ebdbd77bd20a8122b21b4d7c48b66776319a48409008ce96bf186b208396db4ad5a1359b0e72350f7f9104051fc40dcca4d9b123174af7d4183958610235e2caf936ada75e386facd4033276fd94bb3ed94eea0672c8fe88527a7c8d52e177410d04394d8eb35cc3d13db9471f53e7674d6a9208413bd6671ef85549a54fb0b5c365944dd46894ff52c8de0bcbb05c4b44f6f583488c19909a3e2df822d5233906aa728618c11b8ef708c6222afda36a18dc863f567fc5588acf6d6b17aabfb17547aff847ddbb8f163008f6ef19446d46ac19c99897e73b7416d43bc9e4f8fd71e434845a60267529da80c840cb2ddfa206316a10aab947d4b4690da39bcbc8a1784fcf1667bf0de7c974d1853afa48874d11d17a63ac9fe3048aa2b631ad49be3ffa5fc861adc1e0f2889d548000f11f5df4a59dad2fec859ae801f5bd070d3b39f75b5a5760d6f9cd8d544a1c10b07b71b4a19e7981e509ef3bfd6c33c3e61f630a60fefb60141d3133f88eba3cad6efada13da88dee8b39aa32476c5cff9f556bbac181c99100c4271b0cba73e3174607f3073b7220ee07c561839266f934384f7728cb454ba1c66c0cd3fc9040981256f6e58587235d801bd901955545ac15ed0db79cd51e67ed9c6cdb69b627a1be0556317c53313b7e60a60692b92568b3c27ae9c82215f8404a0fab3dac4a378266d28222f565ed2f9f0412b4e9c629027b750e7c5b2cb7469cd9d1cde9cc9b9d8c73d69b4528efc8b4e37771f1abc823ac53ee575d2818fd9e12d8cf65fd776c430994117ec9f7517b536abd58eaedb06ea026bf889f2bc7dd4652ebcd4867fb7c8ffdae2f0492e60dfa95a195d0c8c42ed86bc1fac4400575b74b3c3ba057067a3aa69bd922f3c7861c78f6a05124ea485e8960f885e79b79fc2e8748274d3b679c2f71fe0a15954a383e6ae6237781207dd78e354060222e343ace45548d22d8b6a3b7b4ca73488e423beb70a011dca72fe21b52c53738148cce400bca1b563671207402460eed4136c0d774125dfa03e29cbbcb495dc95f1c610c576d74d70cf703aa622cb9da20cc3dfd713db5dfaac85f94dae4d67992c1b3edeb8b53f26671dd0ad2e4d9ae1c4e547dc90120159d11f1b154368cef5722d50bb7c5158ac045dd6cca156a86405bb0285f3d1cbab488af9679d1679f5dff5f1c9b520b50c610aad15305eb7257b7800fa8575febf86ef6789e0e812a33264d44461d4499e1457fa58bf9f588afa01b6511d68357ac77c0c178f7311b515c647905b1460435a1385b5fc0df961b9957fef81cdaecb11c42a57e6ea7ee6b8fd90076eeda92cc3a6570ac86de54e205f8770da74bbec9e8a65ab9f59e8688162ddeb54790bf7ee4d76f09ddfee16b5cf82b40ab1f8710f7f3e906030a35094df034ba8c5964ee0a1d0fdbba51222ae2afc8058ba6c44e35c249f604f226e7f4c8cd3e0a4f0cd6904ee7b73765f1529357083397a041ff1e0db2293ad2751af7b70aa46abf256cce8d44e290b5ec965eb48e311f79d804a90e0082c356b496eb995d7397bf838d37aaa5fc660007a370b349e2c45586c6d58d06fe0a4b874c288569db43f5ec5fce093ba18ed6350dab973eef0f41f0edd09cddcea4f6949b877081638843c66140883f8b7048ac6fbb19bc64f362b5a55b61c0fa8a88bcdc6e8424465f17577caeca72aa1154b4e800316fd03eb2096b37fc5f34ec8b540c2d41331765aec6f970847f7dadbd24a2010dce2fda31d91d0745cff5f17878dd99e341528de787243f68f1f41c98556d48b8d757310e7ae2c698534f3cdc805765b1f41d93ae7f7bf2ed76136a4d806822df396e50e7f73bb8aba0acee707a7e21d463d34eedd6b320920ff8372813abdbcf2b1c0165c208098a598e40591409f86b0bfca5f786d00854702c3c9e7680d3e90b9a28766a4beccb858ad2e092c9575e9ed436b7bbf7a3df5febd7b868d5a0a54e6bfb5992fd50805e722e7d2e58e3b64f0405990136ca3c67f2382b37f04cb0cfbe8043f84f10d70210f30fa6abced8b40e6f4329c64f2cb5c6e5fddf745c7e2c7ca64b10c5722769802b3b88db3644778d15d8944eeadd87592a753af42793520a9bbd5a3dba31fc77aec90e80067a128075de677a5662a490d48893113598dc5e2d7a98a366e5e75f9b0a03e546492ec531c3dab4473645da2e90bf854fdcbe9c68517767214da76bb2f1d59796019480fe0f65db1328b57dabd0dbd6774d140ef2d6fecea6099912036d31619c0f89b8756654cd25186513df6383f6b9c07097a26a46bb92514b741e62856b49a12816ea344cfa9ad483bcefc43326206091367577b6d90555099abd4cd3608daa49b82b20c5608b9562ee271b148d0c72e76f7dde9eab44cbbf2a49ecc22389a923677d03d02ffab6d36911fab3165f18bb7964f50afe53552abf126d4908fac659707193aadecfaec9f85661493372753486ce06c564ebc8ab2c4fbe11c265a8f7db4d621e9bc6f9bd6cc05b38ca9ac3de05e32b83c2dc165d2e189165029659df3b7585f6466ed88ff8b450f30416b6196d783a2e12b0a76b3265829cecc683f4244a2e4be7eba1ca5528d694d6a464306eb2d72c6c21e31da7f524ae75b9b89fa1f579fa3d3697feb5ab59da791a7467bac6f0481a667968a2f05fbae9a8addd034621e538a90965b5c19fcaa84a820f78fde27004a63b81722d694255fa8333e0244c2ad76c144e41c2d1f8ae2fb9c74b1eed29ceeae423a3483b250cf8186e8d6603aea6ffb5f7fcc9c06d950c95444bdde74fbdfb7f41a64aa4c30a74feedf13120edaddeb34002787b43e9ae483155c90391fb5f2d20f77584b92ceac2793a1fd03c90a153bbe35787ae5d723566771e45b22f73c80ab07c660707a24fd24d490cf1d3ef91dd422bf805c281c3d58686864a686ed858ba333c2b2a498d432f450c8919ef380095a7a077c47f188d90e1a56b0519e819791e37579b51b7e5a64d195282cfc574f22f8936e30d9616cd1c8d1d60221ef79ac0af3e21c24939987da1a49050ab539632afe40ac5674a4655bd890786507517a6973660a9df030d8762bd842c5bb82c420840b9a20f9225b6221ad0e1062751aef43294bdb8713db172bb4fe750f70206cc32decc68af10f7acbf41f84a29165e4f2bb63735ab2f802ae1e9917f3c306a7dcbe36a05346269e8faf202e84dfe4e4bdbd094f8015d768e641c91c21c47138911c69fd231f619be7b805b607d04d01aaa3807969ce47aee74ace547321caa2f7c671f5dc93643530b44291a51efaf7400ff88da34461931641a1737d0af1c7d6f9e9f7d1411350b7075e19a645054b863dc6c77f4daf2004131ffd654d9d45701f15e2fbdc8d1d1dc2e992cf38c84948ccd3cecd18c5212d48c39b216abebb4b354d7dcb7b2d3acb35438bcddb919cf9baa8dba8b9574a0a575a950a59dee3a6ddbc5da4eb5e5b4cfdf684a02ae51f07dfa7242b1879fb05f5168dfbbd2ab896d4d082472382dfa8c21c850f2e862c1b5da8caa6cf532dde5684a5dffebb529f7763946ada811f12f872412f1699aacd2c6679de558ae94bf6707502910cf46fa0a8a5b431f4b9f5d4f00b4656483389609de0d5f97fac7647b35535c47c43dafb7cd4be179cbcaab702b26ed7cc06d39f1650c4efa563100eaf86a1cca6bf35eae48ba2ffd4aaa2dc448372f4634d6aa596018b834e2719c11c89c7ebcd70316d611d3ee121fa42fb4fa0a87d03fdc5ea340307d07d5c3a5cbc0776f1f8589560d90127358129d7b4264926d4ae716defce21b0cfcbe5dc5a38c3851855a90931bc31a4a6d3be0a6bf5dc2c9c4d545d5be93ab809ccf37379fa4dc3d323887d38a90880fcd15bc11826f607a7c82e9ab309642bdf0d9d18bddcc1ce6259746cc7b42d7f0c1b3bce46bb9bf75a682ec89a1553d54340bcf765ce3dd3f3471db6675d5f9c39c7bc964a06d2ea2d80402dbb8c3fb98f59206ee45a0f8b76c31b51763728e1e5744b9095cc55f69bb96eff4e6ec787b62a4adb43cef685758fa8c51a4f6996fb8e2502403d246686b1646c3f2a74a17a68caec6be86657f43d0459c492b910fd1f25df2f87246a14ed6823b1d6cadb76900945015fb2d263100bc437e010966c15be008cee511671f948689dfe8c5598c8a77b7927a354189c856b57e7af62d41082fd3a73ef088a63ebe6cff93b7f53d6d7c12a595b29b9e1bd63733ee5173526eab66d1cc9868c1c6c4541077611561e0ea494a34860b6530353e830d4df4919c8d26c399aad600f433f15a35cd6c656259318dbc5f5d63e0f0c74f7ba4f239e8dbaedea6e68c9024eed5d8b78781624cda1acd8029014d62724fe4dd3634c6ef1e27b79592e01a2ee690a40dde845134292254bac54b1ee48d652e2d99218c54d335d94ee1d1f205cc52b841dcf21e4ca1b72c53fc5737b210514d4dea6a6245eafdc773ebc9027b664f7a568b290a9957d9284bcf8d658c863909694e278333ab057c3ce9a9e79f3aada88b5004bdf35ccb003802dbd212f235d29a18c2a336b73bffcaaa7c755f72af1697322a0fb2a5419b44bcad60a954947ed381ca15e19c300caf1d83db7a7a7a78646c584916137626483bb7ee4b1dd2e523eaba28fe5c2daedca1d1f27c0f31209e194ab3ef6230b3fbeb2f3090884fb574803ba74508188f4f852333a9b6ae5bfafc41c270207a52bae318c418f8796561c654961f5d5d8a2dfaa583370ea3e6279a270d987afbf4d37cb87860fa61d27bfea0380d1895dc142f6ccd0a6e2ebb6b81ce2c5bca2f19b68d1543cd6b4128b205786de7b142255af5d55b3a8dc81549e6dffc69332f9dc02a58fab793c9c20975e36dc4a2b39f88b58b2355806d2582e4b1cb31e8e8f4e49441a373f1dea442fb08e60e175f9d47a06df118d6e4dc1cb2be4e52fd76c16449ed4cbbfbbbdba7a7031c6da59db4e2e50b83e2e571012c8bebcaaa32b22c39d64f8397bef97c82ca2db4291ee15c37af5a4c74d5fdbaaa7c77449fb5eea7e31e2b9949318dab16cc5a53e3c2096ea484916deefd87e26d6abda82357aeae41eb243f09e1e99cac6e4eaf6dd6f147ea23a5df896c09f1c77627358068a89210385fd6b97591b1341c2cc39abe3e959ea97cacab525497a0e76403913fa6513b72934cbdd2bdaa605ebab7080aa8d5ff431e3a32a343f9af3367c548027ec24e5c4338ce8a71a54b7dadcf1a90eac530a14486e14837d7a18dc61797e6f66e65d3d36fb1bbaf9abfa370059e66c137d6b6864670c6aa208034195487c643b39a9ed81f026a2432c68714033850c5e9ad2e4b69b30b761266d1b19c7346cde9846f4a97091ceeda4f530e1e76afafee15e3bdeebe456685cc86882010f51e195f13826d3ea9a797d26d20aefcdbb5b8515f948a0bf94725de40dc0df8245e4d2a51e53ac1837c5b63377f9f4454645ecbc5c69fb984594d0905b764c2e4fd3982a211f0fc5b522cdc829f2691ad168534e12bdbe6eb9530ca7fcf1c26ca713a80cdda0d34fa08c918db8ea90ca9cef5d75ea53d026c2db8a6a1202bd7835d62b917073632ab08a5bf04ca8723a68dacbcf4e07a4671719840728b454a1685be41e819a580431ab2d642c5d3302dc20b9ed1a0dedde0771a1b8dd0cccfcd7f78c5ebf954b1b2ee5c25f9a20106c9eb9ea96ff912adca7f6d19a6837e3768ee8614052903fc7ccd7f87493f753e27e6559e0f93a018764171bf011f40065ea49482568731e09de9a880d56c9738709265bacc059b432385c44990bb73ab739d1a023fac4f86c6d4efcce15d49b396d9403336d4c7203384a8e64e0229d1f6819e341a495e5db300db1836b9e183a34135e9ddee85c5fa16fda953c63fdb8055faa35f7a740d7396acfd25d3b3de2f3916be113bc80bbcdc7534d583b201bb5810e0fc9dae1eec09da26f5508d01c8ca47855ef690a33c9dd01ce7394bf0cb389de51cca99f0d822a6b46d36250488ac2367be95c4f8d5daba9a3a455613d67ffe7d311e5eb19b8ad778d645d8d778a37ebbe3252bf7f5ab9e8f8dbeea04848c3afbeca7c89d1e70cbebc6759e0f212d1f27598b0b4b34546e0d4d61d65c35964b28727e445bc71101143006bda6c8957a4a099df7f88abd6add9a2af45d7c232c0392ec070567564c4b5e94f4c3715d4a494da85f5afcd93bc07d7dd190807f5daf7ecddee30e0ed4fcf56d78d980e59681f20907a3c438cd62a157cad6a1bda0486b4a2d2f6c91e86ac901c31a9138a75a38ea866e549875edd933cbd73c7d6467a44cfd4b87183fadb374c807651923d6a79b5733783a12dfdd5a1372ff014cea974ff3ecf6687a52bb0dcaf807516c7f11f7b0848509ed2584895cf076c22cf142cbcabe019ff29629e45100e2cc575c226f21cade53307898011c5b34da5d96c21a58d7009b6ba25a15e1909131492edb67ee3a0eb7b03d760cc0b594e06e0840ff0c4e66e72bb0d22192041f41341cc9505c24d2e22d8ee5fdd68b26405a65435e4faae7e6e3637f9b30be491bcd9cfda599d285d56ff2cedccb5cb2f771507351a5dc287c608400f3bcf976d61e6c431ee6552580cdd51b3574d67d1467ed0924e9a48c6db8a2cf38903a6807776c4e068d51b431db79263dad36b8ac3be60687704d424465564a22e662b07cb09a3c6b6d31d02ffe8eafdd46bf88034e3e1f06f90a3454524998beddb7b334eb29d81d14ed02f312cd19fae84a4e01f4ccfa8604241b320612f837678c2a8c813e2d0ad6879a77d3c819dce50c59f2ad53fad18d0ed3b97925c92603e4257c60bc8c53bd9475d1b752dca505adc92e1665f97557c65db46c1e749c104861b8482d9e04f8e228218165f6293469831dbe653b2802f7aeaa5b03d3bed44f2fa5fb3e8b6f564456857671226a9fb54b8416ba44c642b84250c035686debed8ad11ecbdb7e9dd9309789aee6d64ff28fc2ff90ea877aad662695fddcd9dc3c6cf85e718a011c7362f74a52cdc4960d5e950b0a58550cf5a7007d390d1b001e9303f5888f65e26d267e05e2d31cb366e20e2c2e671a4f7c3fa42cf4fc27b6c6a41f85414726a9bd4202b6f4a063947f74537d5674064c817eeb5edccfdc157a83f65c2db680f459bd901fdf45c40fa4098ef3258b2a565ea0da24863de2e34a267dc854ee51050548e698567fdc9802e67266f80b7f3fb3fdef23725fa69e0cfe36ae285daafaddcf4adaf1a7d08d870b8daa8af968c3f9811bb7aa4a482a1736da7ae0d55cf2e04adf22f404f01a08298d3bbd58e34657e0c128d08703fb30e694b3f2213200516ff38e3741282280cdf9d95fcae8cc03c15b485bcf79db6f33c3dec9e146ac4c9093b57afab365037cc65da2cfd9ab035a465acaeefd82df282b3209aff22791ca16f34c16d878b315055368da34410be9860305d590152a3d007a6f4d4d7075fc0c7a472971fe34db0c0c8e6531cb362afba5852c319dfd86ecc0cb5d025701b25a6485197c13cd26bedd62b527cd379e22e76a012b27c021ba283091f85b278e9f69d46483a16b4e74bbe85be75c39599b2f31155c934c36d19c3e151f6c42a710bc3c6d48f1ec0ef302a8ae61cf1610d55dd3280f5cb7138cccd795d0f05e7054e3d1862f548309e32e74b2626ac699c305ec1a08d540848a49c8111578bb28971304758cb1c45ffdf9ac6879f85d05dc1102d45270833815267763c2caf52542c13e8504e35e8df2291af1e33e5bf7eb978939cf0294a87804e812261e0189d1b87c348eb2cd643fe576cff2aa69e18b4c5bb901c5028434d02fe7770e72a27335e9dc2583a4ec3c9165f7c7fbd69c910a572106ad6a2c3a7d978f82a52d2d744e7249c23efc9392f6192069f7fe022f9372a01a9ba7d01c476cc89794f4b5a405bb86b59209ce4de8904ae1749bccba9365fc1a49458ad3b6030e04a59e3b108fd094aadb079fb328104461a1eb2d06ec8c1982c275e36a20b929a2bb8da62fb4a39838b3664607b15702ec2e903994db20b36a7a7b00d2381dc5b768b2ac321a85c8b30abbb2eb82544750c976ab4b0a72ab1399affa0e2556576257c7a8e0cdb8d361d97b11e29f1fe027bb4b10dced0b86af1b193907d3fe76e3c4883a19df9c7a53d82c21e4365dcc597dfec3b1a13f8030bf9961173207a8d043195c70c28e83db8293fb5e939b17b37bcfcdeacf0563b795b767cb0573aca4148b6a520c050a86092a3189dd4d713b860073883f3d70cca26727c59ca50b48fbc114f57baa4b19cdb1ac238522a109a37e7ab8a9db4b9cdfd00949bd35debb5670a84601bdd6fa4f255297611b35d93bcf9ae196bb0132a862f4607e85129c625445928b05092d50e934c0cdd5e0f7d95ab08d9ab6cfbff8d4206f37434f5e13bc2fa2693fa454d6c8efbcbb930421f0c24edc6430e15bff418d4f299874b4927186678877bb9d00a8a3fdb7d3b82679679d06b3f6c72f19ed08ddba34efd1852ba0f4ae743bdb3325fc677b8561e0aa5e4c4006faa44f935db66bac47724515a596d7b517cb32f41f975bc39a80a02e49f66d7297e0f45fbaa821d6f75de2a9a0128f29540a461622a991e5f757eaff0b7701dc45d40c1bb1a23672ef738f3d10d12b0573cb239a06a60d3b6c97b5b2dd4c615135ab111b52e57d536c99b07b46f2b0a28601ce40cc0d9baeb5fdda92f301b29e23c384657b5fcf2ef19eda076943e953e07e402e3bf5ea799fef0a9a6584d9052c1fa4d420067c2d956d75eb8efeb549216c62c8c72209008224c4f9df76c308655aee9a609ca5bfc998aac02cd2ddacf8dabd639ef5b6606ef916a0c07773f4a2fa7e12e313c4b6e07674b4209652a94c2f7b9660f4b935bc201d61bec07c1561deb65633f83584403cc993579167c5ceadaf0a464839c0f4983cbcc0f1d055db9905ca9507bdb11bfdd768d629c42645f9ba70719d4841b71e192eb97dff9baf04255f50297c8f5cda1c733a25569d5698ac393d96d9933f48f18e00c1726a85a48abcfc1dd814e43cdbcf0f4d0fefd4112ea417b079186a2014804931c1b5053e9685a897130e5b591166fc450db8a8a9ccaf97053c1d9f2c25da7bf18326c3ad21a75601919084e8eacbae5a00835046ed5581448b9ece9f10f46646a79194bd4b32d210e03fdf3d7b34a1267880df60aa13ecf8fec1f4a3d3795b0d6899ae2b822057ff743c730a5c6ae5530378fdcf4a6746a3e09997d74fce64ae3108790b274fb7cf2bfc851b34da91612abcb9b6b47f46f0b3c889622d8be133f597a72aacf0989572d134a92bad42287a1805fe2b0d85ede4906a42763e06dcddbbed7513a7784f577d3088a445ceae2b73d68b374b5cb7a401f03d857abf7a2b5042a52b09f0a8432006855d9625d7778a36b898aa5457e17395856a24c57cbfa6d0c970e84c398770764dc9b592d85a16bf4b55b82f3a7d0a6645591ddefe22528cb5c57e52ce782c912f6a35aba7f7f7f2e647274d633cfe273a9ac71710ab352f61613f3bff97f8377f1a57e616e82e9263fe183f6ebe953cb9cf6e3654c49b4363c62573bc26ef60cfab3dbd44614918ee59be164278132b7da5c1eebf583098a1a36b6ec2d076070cc2decc1af75274dbd4ef72c0cfae214914135154698f17a850151becb07d6133225a5ebfdfee72658e4be54ef5e1cb4a49eb25b51c1c1383100f2149a4c507def696d5588629ea680c739c3184149e4eea63064ac48d518de16b44913ce53ebad0dc0c2640f9fef1b07152296837b842411e88c621d8b59b9a88d71109fc716cee404e8aa3059f8a39e285947a3e8f8f7b833292740a1be5aaa5e1abcad9e582b89442349c78eb39ee02142b62b87582be6af71e127c9b7da344452678203a0309a91426ff80465d0579f0b41702184cff6488a8cbee6c29e9a7af527d1aef4e20ccb4440c6d4510135d2bb0d9", 0x2000, &(0x7f0000000d00)={&(0x7f00000003c0)={0x50, 0x0, 0x0, {0x7, 0x28, 0xfffffffe, 0x0, 0x0, 0x1, 0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
syz_fuse_handle_req(r6, &(0x7f0000006300)="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", 0x2000, &(0x7f0000000d00)={&(0x7f00000003c0)={0x50, 0x0, 0x0, {0x7, 0x28, 0xfffffffe, 0x0, 0x0, 0x1, 0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, 0x0, 0x240008c0) (async)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, 0x0, 0x240008c0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) (async)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

0s ago: executing program 0 (id=3839):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xffffff8d)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000000)={'veth0_vlan\x00', @random="01b91600"})
r7 = socket$nl_audit(0x10, 0x3, 0x9)
fcntl$addseals(r7, 0x409, 0xb1c25ce47c749b08)

kernel console output (not intermixed with test programs):

d
[  873.173012][T13625] hub 6-0:1.0: 1 port detected
[  873.853781][  T860] usb 1-1: USB disconnect, device number 114
[  874.713142][ T3484] Bluetooth: hci0: command 0x1001 tx timeout
[  874.719112][T12288] Bluetooth: hci0: sending frame failed (-49)
[  874.783218][  T401] usb 2-1: new high-speed USB device number 123 using dummy_hcd
[  875.283198][  T401] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  875.293470][  T401] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  875.306186][  T401] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  875.315034][  T401] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  875.323774][  T401] usb 2-1: config 0 descriptor??
[  875.483133][ T3484] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  875.574731][T13644] udc-core: couldn't find an available UDC or it's busy
[  875.581575][T13644] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  875.873853][ T3484] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  875.971988][ T3484] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  875.992691][ T3484] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  876.002816][ T3484] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  876.012100][ T3484] usb 4-1: config 0 descriptor??
[  876.276847][T13657] udc-core: couldn't find an available UDC or it's busy
[  876.284238][T13657] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  876.795206][ T3484] Bluetooth: hci0: command 0x1009 tx timeout
[  877.543580][ T3484] usb 2-1: USB disconnect, device number 123
[  878.291682][  T453] usb 4-1: USB disconnect, device number 6
[  878.677590][T13692] netlink: 140 bytes leftover after parsing attributes in process `syz.3.3379'.
[  880.201342][T13731] syz.2.3391[13731] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  880.201392][T13731] syz.2.3391[13731] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  880.218132][   T24] audit: type=1326 audit(1726368050.128:5970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13728 comm="syz.2.3391" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0e57245ef9 code=0x0
[  880.671023][T13743] netlink: 140 bytes leftover after parsing attributes in process `syz.0.3393'.
[  880.872485][T13740] bridge0: port 1(bridge_slave_0) entered blocking state
[  880.879844][T13740] bridge0: port 1(bridge_slave_0) entered disabled state
[  881.115930][T13740] device bridge_slave_0 entered promiscuous mode
[  881.330521][T13740] bridge0: port 2(bridge_slave_1) entered blocking state
[  881.337741][T13740] bridge0: port 2(bridge_slave_1) entered disabled state
[  881.345445][T13740] device bridge_slave_1 entered promiscuous mode
[  881.448622][T13761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3398'.
[  881.457358][T13761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3398'.
[  881.670698][T13740] bridge0: port 2(bridge_slave_1) entered blocking state
[  881.677580][T13740] bridge0: port 2(bridge_slave_1) entered forwarding state
[  881.684711][T13740] bridge0: port 1(bridge_slave_0) entered blocking state
[  881.691549][T13740] bridge0: port 1(bridge_slave_0) entered forwarding state
[  881.721805][T13756] syz.0.3397[13756] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  881.721871][T13756] syz.0.3397[13756] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  882.191314][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  882.293607][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  882.375570][   T24] audit: type=1326 audit(1726368052.288:5971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13752 comm="syz.0.3397" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc0fc49eef9 code=0x0
[  882.384141][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  882.406331][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  882.421722][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  882.431117][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  882.439563][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  882.446480][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  882.454150][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  882.462412][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  882.470603][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  882.477487][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  882.495521][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  882.503706][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  882.511580][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  882.519944][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  882.563269][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  882.571785][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  882.582359][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  882.590390][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  882.598685][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  882.606984][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  882.615172][T13740] device veth0_vlan entered promiscuous mode
[  882.627791][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  882.636167][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  882.646555][T13740] device veth1_macvtap entered promiscuous mode
[  882.662712][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  882.670546][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  882.679565][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  882.701108][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  882.724895][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  883.197285][T13793] netlink: 140 bytes leftover after parsing attributes in process `syz.2.3406'.
[  884.498859][T13804] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3409'.
[  884.507752][T13804] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3409'.
[  884.559763][ T3484] usb 1-1: new high-speed USB device number 115 using dummy_hcd
[  884.819985][    T7] tipc: Disabling bearer <udp:s>
[  884.855693][    T7] tipc: Left network mode
[  885.094167][T13818] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3411'.
[  885.103019][T13818] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3411'.
[  885.393626][ T3484] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 26
[  885.412910][ T4202] usb 2-1: new high-speed USB device number 124 using dummy_hcd
[  885.503207][ T3484] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  885.515640][ T3484] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  885.523842][ T3484] usb 1-1: SerialNumber: syz
[  885.709418][   T24] audit: type=1326 audit(1726368055.608:5972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  885.748006][   T24] audit: type=1326 audit(1726368055.608:5973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  885.786809][   T24] audit: type=1326 audit(1726368055.608:5974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  885.826719][   T24] audit: type=1326 audit(1726368055.608:5975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  885.850600][ T4202] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  885.859564][   T24] audit: type=1326 audit(1726368055.608:5976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  885.883994][T11951] usb 3-1: new high-speed USB device number 98 using dummy_hcd
[  885.889056][   T24] audit: type=1326 audit(1726368055.608:5977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  885.895008][ T4202] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  885.916387][   T24] audit: type=1326 audit(1726368055.608:5978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  886.022775][   T24] audit: type=1326 audit(1726368055.608:5979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  886.145468][ T4202] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  886.155783][   T24] audit: type=1326 audit(1726368055.608:5980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13820 comm="syz.3.3414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb874cb1ef9 code=0x7ffc0000
[  886.158006][ T4202] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  886.187645][ T4202] usb 2-1: config 0 descriptor??
[  886.233757][    T7] device bridge_slave_1 left promiscuous mode
[  886.240106][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  886.251646][    T7] device bridge_slave_0 left promiscuous mode
[  886.258456][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  886.272005][    T7] device veth1_macvtap left promiscuous mode
[  886.503768][T13813] udc-core: couldn't find an available UDC or it's busy
[  886.510777][T13813] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  886.543157][T11951] usb 3-1: Using ep0 maxpacket: 8
[  886.576957][ T3484] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  886.879321][  T398] usb 1-1: USB disconnect, device number 115
[  886.891262][T11951] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  886.897255][  T398] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  886.902092][T11951] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  886.921247][T11951] usb 3-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  886.930201][T11951] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  886.938984][T11951] usb 3-1: config 0 descriptor??
[  887.425079][T11951] hid (null): usage index exceeded
[  887.433686][T11951] hid-generic 0003:2087:0703.005C: unknown main item tag 0x0
[  887.440967][T11951] hid-generic 0003:2087:0703.005C: ignoring exceeding usage max
[  887.450180][T11951] hid-generic 0003:2087:0703.005C: usage index exceeded
[  887.457451][T11951] hid-generic 0003:2087:0703.005C: item 0 0 2 0 parsing failed
[  887.465403][T11951] hid-generic: probe of 0003:2087:0703.005C failed with error -22
[  887.694649][  T398] usb 3-1: USB disconnect, device number 98
[  887.931865][ T3469] usb 2-1: USB disconnect, device number 124
[  888.623330][ T3469] usb 1-1: new high-speed USB device number 116 using dummy_hcd
[  888.832568][T13883] tipc: Failed to remove local publication {66,1,1}/2937856326
[  888.840116][T13883] tipc: Failed to remove local publication {66,1,1}/2937856326
[  888.847776][   T24] audit: type=1326 audit(1726368058.738:5981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13882 comm="syz.1.3424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  889.492791][T13891] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3425'.
[  889.501606][T13891] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3425'.
[  889.791630][ T3469] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  889.890330][T13904] Bluetooth: hci0: Frame reassembly failed (-84)
[  890.093333][ T3469] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  890.112212][ T3469] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  890.122150][ T3469] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  890.151236][ T2241] Bluetooth: hci0: Frame reassembly failed (-84)
[  890.160226][ T2241] Bluetooth: hci0: Frame reassembly failed (-84)
[  890.171260][ T3469] usb 1-1: config 0 descriptor??
[  890.433500][   T15] usb 2-1: new high-speed USB device number 125 using dummy_hcd
[  890.437838][T13875] udc-core: couldn't find an available UDC or it's busy
[  890.451599][T13875] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  890.973232][   T15] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  890.983229][   T15] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  890.995880][   T15] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  891.004682][   T15] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  891.013139][   T15] usb 2-1: config 0 descriptor??
[  891.255985][T13907] udc-core: couldn't find an available UDC or it's busy
[  891.262893][T13907] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  891.685626][T13915] hub 6-0:1.0: USB hub found
[  891.690716][T13915] hub 6-0:1.0: 1 port detected
[  891.859075][  T398] usb 1-1: USB disconnect, device number 116
[  892.073210][  T617] Bluetooth: hci0: command 0x1003 tx timeout
[  892.135057][T12288] Bluetooth: hci0: sending frame failed (-49)
[  892.273142][T11951] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  892.833173][T11951] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  892.843907][T11951] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  892.853692][T11951] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  892.862580][T11951] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  893.076268][T11951] usb 5-1: config 0 descriptor??
[  893.208544][  T398] usb 2-1: USB disconnect, device number 125
[  894.163161][  T398] Bluetooth: hci0: command 0x1001 tx timeout
[  894.169350][   T24] kauditd_printk_skb: 46 callbacks suppressed
[  894.169371][   T24] audit: type=1326 audit(1726368064.078:6028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.172080][T12288] Bluetooth: hci0: sending frame failed (-49)
[  894.176421][   T24] audit: type=1326 audit(1726368064.088:6029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.228007][   T24] audit: type=1326 audit(1726368064.088:6030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.251741][   T24] audit: type=1326 audit(1726368064.118:6031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.275168][   T24] audit: type=1326 audit(1726368064.118:6032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.298924][   T24] audit: type=1326 audit(1726368064.118:6033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.323152][   T24] audit: type=1326 audit(1726368064.118:6034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.352848][   T24] audit: type=1326 audit(1726368064.118:6035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.378899][   T24] audit: type=1326 audit(1726368064.118:6036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.402583][   T24] audit: type=1326 audit(1726368064.118:6037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13942 comm="syz.1.3438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  894.687816][T13952] overlayfs: statfs failed on './file0'
[  895.103153][T11951] usbhid 5-1:0.0: can't add hid device: -71
[  895.109016][T11951] usbhid: probe of 5-1:0.0 failed with error -71
[  895.116429][T11951] usb 5-1: USB disconnect, device number 19
[  895.553203][  T305] usb 2-1: new high-speed USB device number 126 using dummy_hcd
[  895.663136][T11951] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  895.783872][T13963] tipc: Failed to remove local publication {66,1,1}/1941921082
[  895.791264][T13963] tipc: Failed to remove local publication {66,1,1}/1941921082
[  896.032114][T13968] overlayfs: statfs failed on './file0'
[  896.153634][  T305] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  896.163786][  T305] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  896.176887][  T305] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  896.185879][  T305] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  896.194814][  T305] usb 2-1: config 0 descriptor??
[  896.233193][ T3484] Bluetooth: hci0: command 0x1009 tx timeout
[  896.233297][T11951] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  896.248984][T11951] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  896.261897][T11951] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  896.270803][T11951] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  896.279419][T11951] usb 5-1: config 0 descriptor??
[  896.441990][T13957] udc-core: couldn't find an available UDC or it's busy
[  896.448823][T13957] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  896.531004][T13954] udc-core: couldn't find an available UDC or it's busy
[  896.537851][T13954] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  898.324962][  T305] usb 2-1: USB disconnect, device number 126
[  898.382591][T11951] usb 5-1: USB disconnect, device number 20
[  898.500224][ T3484] usb 1-1: new high-speed USB device number 117 using dummy_hcd
[  898.624320][T13997] Bluetooth: hci1: Frame reassembly failed (-84)
[  898.803810][    T9] Bluetooth: hci1: Frame reassembly failed (-84)
[  898.814343][    T9] Bluetooth: hci1: Frame reassembly failed (-84)
[  898.823216][  T305] usb 2-1: new high-speed USB device number 127 using dummy_hcd
[  898.953373][ T3484] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 26
[  899.063253][ T3484] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  899.072176][ T3484] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  899.079959][ T3484] usb 1-1: SerialNumber: syz
[  899.093172][  T305] usb 2-1: Using ep0 maxpacket: 16
[  899.243239][  T305] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 8
[  899.603483][  T305] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  899.612764][  T305] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  899.620649][  T305] usb 2-1: Product: syz
[  899.625135][  T305] usb 2-1: Manufacturer: syz
[  899.629556][  T305] usb 2-1: SerialNumber: syz
[  899.636955][  T305] usb 2-1: config 0 descriptor??
[  899.844405][ T3484] cdc_ether 1-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42
[  900.170537][T14021] tipc: Failed to remove local publication {66,1,1}/1726436331
[  900.191414][T14021] tipc: Failed to remove local publication {66,1,1}/1726436331
[  900.247917][ T3484] usb 1-1: USB disconnect, device number 117
[  900.251783][T14024] bridge0: port 1(bridge_slave_0) entered blocking state
[  900.274888][ T3484] cdc_ether 1-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device
[  900.304668][T14024] bridge0: port 1(bridge_slave_0) entered disabled state
[  900.312019][T14024] device bridge_slave_0 entered promiscuous mode
[  900.323210][T14024] bridge0: port 2(bridge_slave_1) entered blocking state
[  900.330467][T14024] bridge0: port 2(bridge_slave_1) entered disabled state
[  900.339835][T14024] device bridge_slave_1 entered promiscuous mode
[  900.419204][T14024] bridge0: port 2(bridge_slave_1) entered blocking state
[  900.426126][T14024] bridge0: port 2(bridge_slave_1) entered forwarding state
[  900.433231][T14024] bridge0: port 1(bridge_slave_0) entered blocking state
[  900.440069][T14024] bridge0: port 1(bridge_slave_0) entered forwarding state
[  900.459082][T14043] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  900.485061][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  900.494739][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  900.502954][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  900.514831][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  900.523953][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[  900.530814][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[  900.544397][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  900.555262][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[  900.562130][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[  900.581606][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  900.599820][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  900.620187][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  900.631914][T14024] device veth0_vlan entered promiscuous mode
[  900.639981][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  900.643299][ T3484] Bluetooth: hci1: command 0x1003 tx timeout
[  900.661555][   T40] Bluetooth: hci1: sending frame failed (-49)
[  900.666620][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  900.695306][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  900.721340][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  900.737538][T14024] device veth1_macvtap entered promiscuous mode
[  900.752164][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  900.765070][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  901.496757][  T617] usb 2-1: USB disconnect, device number 127
[  901.592970][   T24] kauditd_printk_skb: 9 callbacks suppressed
[  901.592986][   T24] audit: type=1326 audit(1726368071.498:6047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  901.623899][   T24] audit: type=1326 audit(1726368071.538:6048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  901.647720][   T24] audit: type=1326 audit(1726368071.538:6049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  901.671085][   T24] audit: type=1326 audit(1726368071.538:6050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  901.696667][   T24] audit: type=1326 audit(1726368071.538:6051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  901.724640][   T24] audit: type=1326 audit(1726368071.538:6052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  901.748430][   T24] audit: type=1326 audit(1726368071.568:6053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  901.780732][   T24] audit: type=1326 audit(1726368071.568:6054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  901.807068][   T24] audit: type=1326 audit(1726368071.568:6055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  902.151166][   T24] audit: type=1326 audit(1726368071.568:6056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14070 comm="syz.0.3461" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0fc49eef9 code=0x7ffc0000
[  902.283864][    T9] device bridge_slave_1 left promiscuous mode
[  902.287663][T14084] hub 6-0:1.0: USB hub found
[  902.294428][T14084] hub 6-0:1.0: 1 port detected
[  902.301909][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  902.309580][    T9] device bridge_slave_0 left promiscuous mode
[  902.315918][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  902.324292][    T9] device veth1_macvtap left promiscuous mode
[  902.330182][    T9] device veth0_vlan left promiscuous mode
[  902.723212][T13548] Bluetooth: hci1: command 0x1001 tx timeout
[  902.729432][   T40] Bluetooth: hci1: sending frame failed (-49)
[  903.065916][T14094] device veth0_vlan left promiscuous mode
[  903.071528][T14094] device veth0_vlan entered promiscuous mode
[  903.414181][T14096] syz.0.3467[14096] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  903.414228][T14096] syz.0.3467[14096] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  904.033163][ T3484] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  904.423309][ T3484] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 26
[  904.543191][ T3484] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  904.552156][ T3484] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  904.560066][ T3484] usb 5-1: SerialNumber: syz
[  904.762874][  T305] usb 1-1: new high-speed USB device number 118 using dummy_hcd
[  904.793159][  T398] Bluetooth: hci1: command 0x1009 tx timeout
[  905.173110][  T305] usb 1-1: Using ep0 maxpacket: 8
[  905.274709][ T3484] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42
[  905.333193][  T305] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  905.344242][  T305] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  905.354211][  T305] usb 1-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  905.363309][  T305] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  905.375671][  T305] usb 1-1: config 0 descriptor??
[  905.464340][    T9] device bridge_slave_1 left promiscuous mode
[  905.470339][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  905.478105][    T9] device bridge_slave_0 left promiscuous mode
[  905.484205][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  905.492014][    T9] device veth1_macvtap left promiscuous mode
[  905.679356][ T3484] usb 5-1: USB disconnect, device number 21
[  905.693842][ T3484] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device
[  905.780713][T14143] overlayfs: statfs failed on './file0'
[  905.902260][  T305] hid (null): usage index exceeded
[  905.954177][  T305] hid-generic 0003:2087:0703.005D: unknown main item tag 0x0
[  905.967667][  T305] hid-generic 0003:2087:0703.005D: ignoring exceeding usage max
[  905.983934][  T305] hid-generic 0003:2087:0703.005D: usage index exceeded
[  905.994380][  T305] hid-generic 0003:2087:0703.005D: item 0 0 2 0 parsing failed
[  906.002164][  T305] hid-generic: probe of 0003:2087:0703.005D failed with error -22
[  906.225098][  T400] usb 1-1: USB disconnect, device number 118
[  907.326307][T14204] syz.2.3480[14204] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  907.326569][T14204] syz.2.3480[14204] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  907.458670][   T24] kauditd_printk_skb: 18 callbacks suppressed
[  907.458705][   T24] audit: type=1326 audit(1726368077.368:6075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14203 comm="syz.2.3480" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdaf8a9bef9 code=0x0
[  907.713119][   T15] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  908.073230][   T15] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  908.087676][   T15] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  908.096989][   T15] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  908.107037][   T15] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  908.121237][   T15] usb 2-1: config 0 descriptor??
[  908.150669][   T24] audit: type=1326 audit(1726368078.058:6076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.174200][   T24] audit: type=1326 audit(1726368078.058:6077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.203578][   T24] audit: type=1326 audit(1726368078.058:6078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.227700][   T24] audit: type=1326 audit(1726368078.058:6079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.252768][   T24] audit: type=1326 audit(1726368078.058:6080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.276620][   T24] audit: type=1326 audit(1726368078.058:6081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.310995][   T24] audit: type=1326 audit(1726368078.058:6082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.355232][T14222] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  908.402050][   T24] audit: type=1326 audit(1726368078.058:6083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.468106][   T24] audit: type=1326 audit(1726368078.058:6084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14217 comm="syz.2.3485" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7fdaf8a9bef9 code=0x7ffc0000
[  908.936968][T14229] bridge0: port 1(bridge_slave_0) entered blocking state
[  908.944162][T14229] bridge0: port 1(bridge_slave_0) entered disabled state
[  909.012228][T14229] device bridge_slave_0 entered promiscuous mode
[  909.212861][T14229] bridge0: port 2(bridge_slave_1) entered blocking state
[  909.242386][T14229] bridge0: port 2(bridge_slave_1) entered disabled state
[  909.297124][T14229] device bridge_slave_1 entered promiscuous mode
[  909.515246][T14252] netlink: 140 bytes leftover after parsing attributes in process `syz.4.3493'.
[  909.722039][T14239] hub 6-0:1.0: USB hub found
[  909.722355][T14229] bridge0: port 2(bridge_slave_1) entered blocking state
[  909.731226][T14239] hub 6-0:1.0: 1 port detected
[  909.733433][T14229] bridge0: port 2(bridge_slave_1) entered forwarding state
[  909.733525][T14229] bridge0: port 1(bridge_slave_0) entered blocking state
[  909.751902][T14229] bridge0: port 1(bridge_slave_0) entered forwarding state
[  909.796609][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  909.805269][ T2241] bridge0: port 1(bridge_slave_0) entered disabled state
[  909.812809][ T2241] bridge0: port 2(bridge_slave_1) entered disabled state
[  909.848924][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  909.858805][ T2241] bridge0: port 1(bridge_slave_0) entered blocking state
[  909.865679][ T2241] bridge0: port 1(bridge_slave_0) entered forwarding state
[  909.905065][T14263] netlink: 140 bytes leftover after parsing attributes in process `syz.4.3495'.
[  910.023468][ T2241] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  910.050646][ T2241] bridge0: port 2(bridge_slave_1) entered blocking state
[  910.057635][ T2241] bridge0: port 2(bridge_slave_1) entered forwarding state
[  910.123851][    T7] tipc: Disabling bearer <eth:xfrm0>
[  910.179012][    T7] tipc: Left network mode
[  910.184040][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  910.192235][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  910.226746][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  910.253486][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  910.423389][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  910.437198][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  910.462372][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  910.498820][ T3484] usb 2-1: USB disconnect, device number 2
[  910.535565][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  910.543811][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  910.551348][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  910.566060][T14229] device veth0_vlan entered promiscuous mode
[  910.593428][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  910.613697][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  910.680846][T14229] device veth1_macvtap entered promiscuous mode
[  910.696353][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  910.713625][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  910.745766][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  910.933490][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  910.968113][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  911.170971][T14303] device veth0_vlan left promiscuous mode
[  911.176610][T14303] device veth0_vlan entered promiscuous mode
[  911.195753][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  911.217120][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  911.365223][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  912.021211][T14316] overlayfs: statfs failed on './file0'
[  912.603845][    T7] device bridge_slave_1 left promiscuous mode
[  912.610495][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  912.624096][    T7] device bridge_slave_0 left promiscuous mode
[  912.630519][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  912.672196][    T7] device bridge_slave_1 left promiscuous mode
[  912.819009][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  912.908392][    T7] device bridge_slave_0 left promiscuous mode
[  912.914563][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  912.922908][    T7] device veth1_macvtap left promiscuous mode
[  912.929087][    T7] device veth1_macvtap left promiscuous mode
[  912.973480][   T15] usb 3-1: new high-speed USB device number 99 using dummy_hcd
[  913.209845][T14336] hub 6-0:1.0: USB hub found
[  913.214831][T14336] hub 6-0:1.0: 1 port detected
[  913.505688][T14337] Bluetooth: hci0: Frame reassembly failed (-84)
[  913.656757][ T8530] Bluetooth: hci0: Frame reassembly failed (-84)
[  913.731032][ T8530] Bluetooth: hci0: Frame reassembly failed (-84)
[  913.843117][   T15] usb 3-1: Using ep0 maxpacket: 8
[  913.968577][   T15] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  913.985608][   T15] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  913.995553][   T15] usb 3-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  914.004520][   T15] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  914.016755][   T15] usb 3-1: config 0 descriptor??
[  914.193224][   T15] usbhid 3-1:0.0: can't add hid device: -71
[  914.199034][   T15] usbhid: probe of 3-1:0.0 failed with error -71
[  914.210335][   T15] usb 3-1: USB disconnect, device number 99
[  914.333103][  T401] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  914.863188][  T401] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  914.879223][  T401] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  914.890829][  T401] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  914.900821][  T401] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  914.912718][  T401] usb 4-1: config 0 descriptor??
[  915.396921][  T401] hid (null): bogus close delimiter
[  915.673394][ T3484] Bluetooth: hci0: command 0x1003 tx timeout
[  915.679396][ T1018] Bluetooth: hci0: sending frame failed (-49)
[  916.063723][T14383] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  916.133186][  T401] usb 4-1: string descriptor 0 read error: -71
[  916.153164][  T401] uclogic 0003:256C:006D.005E: failed retrieving string descriptor #200: -71
[  916.162076][  T401] uclogic 0003:256C:006D.005E: failed retrieving pen parameters: -71
[  916.170342][  T401] uclogic 0003:256C:006D.005E: failed probing pen v2 parameters: -71
[  916.178527][  T401] uclogic 0003:256C:006D.005E: failed probing parameters: -71
[  916.186090][  T401] uclogic: probe of 0003:256C:006D.005E failed with error -71
[  916.194836][  T401] usb 4-1: USB disconnect, device number 7
[  916.474011][T14389] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  916.903109][  T401] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  917.263288][  T401] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  917.273343][  T401] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  917.286103][  T401] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  917.294994][  T401] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  917.303777][  T401] usb 4-1: config 0 descriptor??
[  917.513191][  T401] Bluetooth: hci1: command 0x1003 tx timeout
[  917.519109][ T1018] Bluetooth: hci1: sending frame failed (-49)
[  917.546123][T14391] udc-core: couldn't find an available UDC or it's busy
[  917.552914][T14391] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  917.942997][  T401] Bluetooth: hci0: command 0x1001 tx timeout
[  917.993447][ T1018] Bluetooth: hci0: sending frame failed (-49)
[  919.493111][   T15] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  919.593136][  T453] Bluetooth: hci1: command 0x1001 tx timeout
[  919.599015][ T1018] Bluetooth: hci1: sending frame failed (-49)
[  919.676652][T13548] usb 4-1: USB disconnect, device number 8
[  919.709859][T14424] tipc: Failed to remove local publication {66,1,1}/501924882
[  919.717310][T14424] tipc: Failed to remove local publication {66,1,1}/501924882
[  919.863212][   T15] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  919.873563][   T15] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  919.893245][   T15] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  919.903321][   T15] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  919.916550][   T15] usb 5-1: config 0 descriptor??
[  920.073106][  T401] Bluetooth: hci0: command 0x1009 tx timeout
[  920.153143][T13548] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  920.161985][T14422] udc-core: couldn't find an available UDC or it's busy
[  920.168814][T14422] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  920.593272][T13548] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 26
[  920.683167][T13548] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  920.693125][T13548] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  920.701002][T13548] usb 4-1: SerialNumber: syz
[  920.746678][T14439] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  921.404813][T13548] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42
[  921.645503][T14459] device veth0_vlan left promiscuous mode
[  921.651087][T14459] device veth0_vlan entered promiscuous mode
[  921.776379][  T401] Bluetooth: hci1: command 0x1009 tx timeout
[  921.991065][  T453] usb 4-1: USB disconnect, device number 9
[  922.048112][  T453] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device
[  922.264035][   T15] usb 5-1: USB disconnect, device number 22
[  923.349209][T14521] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.356595][T14521] bridge0: port 1(bridge_slave_0) entered disabled state
[  923.365842][T14521] device bridge_slave_0 entered promiscuous mode
[  923.375222][T14521] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.382095][T14521] bridge0: port 2(bridge_slave_1) entered disabled state
[  923.391301][T14521] device bridge_slave_1 entered promiscuous mode
[  923.677862][T14521] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.684733][T14521] bridge0: port 2(bridge_slave_1) entered forwarding state
[  923.691809][T14521] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.698641][T14521] bridge0: port 1(bridge_slave_0) entered forwarding state
[  923.723591][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  923.731387][T14339] bridge0: port 1(bridge_slave_0) entered disabled state
[  923.738971][T14339] bridge0: port 2(bridge_slave_1) entered disabled state
[  923.755773][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  923.765295][T14339] bridge0: port 1(bridge_slave_0) entered blocking state
[  923.772161][T14339] bridge0: port 1(bridge_slave_0) entered forwarding state
[  923.772332][T14530] tipc: Failed to remove local publication {66,1,1}/395125232
[  923.779807][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  923.786935][T14530] tipc: Failed to remove local publication {66,1,1}/395125232
[  923.795344][T14339] bridge0: port 2(bridge_slave_1) entered blocking state
[  923.808782][T14339] bridge0: port 2(bridge_slave_1) entered forwarding state
[  923.835268][T14521] device veth0_vlan entered promiscuous mode
[  923.841927][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  923.850395][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  923.858886][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  923.867786][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  923.875372][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  923.883356][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  923.899041][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  923.907774][T14521] device veth1_macvtap entered promiscuous mode
[  923.920661][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  923.935564][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  923.983319][T13548] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  924.423523][    T7] tipc: Disabling bearer <udp:s>
[  924.436802][    T7] tipc: Left network mode
[  924.722171][T13548] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  924.739216][T13548] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  924.752069][T13548] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  924.767894][T13548] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  924.841930][T13548] usb 2-1: config 0 descriptor??
[  925.240603][T14528] udc-core: couldn't find an available UDC or it's busy
[  925.253154][T14528] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  925.332440][    T7] device bridge_slave_1 left promiscuous mode
[  925.339611][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  925.359845][    T7] device bridge_slave_0 left promiscuous mode
[  925.369550][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  925.376750][   T15] usb 1-1: new high-speed USB device number 119 using dummy_hcd
[  925.385579][    T7] device veth1_macvtap left promiscuous mode
[  925.832504][T14559] bridge0: port 1(bridge_slave_0) entered blocking state
[  925.841204][T14559] bridge0: port 1(bridge_slave_0) entered disabled state
[  925.849378][T14559] device bridge_slave_0 entered promiscuous mode
[  925.858089][T14559] bridge0: port 2(bridge_slave_1) entered blocking state
[  925.865210][T14559] bridge0: port 2(bridge_slave_1) entered disabled state
[  925.872645][T14559] device bridge_slave_1 entered promiscuous mode
[  925.903110][   T15] usb 1-1: Using ep0 maxpacket: 8
[  925.934550][T14559] bridge0: port 2(bridge_slave_1) entered blocking state
[  925.941428][T14559] bridge0: port 2(bridge_slave_1) entered forwarding state
[  925.948592][T14559] bridge0: port 1(bridge_slave_0) entered blocking state
[  925.955449][T14559] bridge0: port 1(bridge_slave_0) entered forwarding state
[  925.981645][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  925.992741][ T8530] bridge0: port 1(bridge_slave_0) entered disabled state
[  926.036792][ T8530] bridge0: port 2(bridge_slave_1) entered disabled state
[  926.053386][   T15] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  926.067345][   T15] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  926.082260][   T15] usb 1-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  926.095043][   T15] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  926.135764][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  926.143931][   T15] usb 1-1: config 0 descriptor??
[  926.147013][ T8530] bridge0: port 1(bridge_slave_0) entered blocking state
[  926.155596][ T8530] bridge0: port 1(bridge_slave_0) entered forwarding state
[  926.523325][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  926.538652][ T8530] bridge0: port 2(bridge_slave_1) entered blocking state
[  926.545564][ T8530] bridge0: port 2(bridge_slave_1) entered forwarding state
[  926.601446][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  926.618555][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  926.641001][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  926.653760][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  926.661880][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  926.669186][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  926.680878][T14559] device veth0_vlan entered promiscuous mode
[  926.691807][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  926.701214][T14559] device veth1_macvtap entered promiscuous mode
[  926.711673][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  926.725008][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  926.781251][T14340] usb 2-1: USB disconnect, device number 3
[  926.788725][   T15] hid (null): usage index exceeded
[  926.798970][   T15] hid-generic 0003:2087:0703.005F: unknown main item tag 0x0
[  926.808974][   T15] hid-generic 0003:2087:0703.005F: ignoring exceeding usage max
[  926.818281][   T15] hid-generic 0003:2087:0703.005F: usage index exceeded
[  926.825115][   T15] hid-generic 0003:2087:0703.005F: item 0 0 2 0 parsing failed
[  926.832700][   T15] hid-generic: probe of 0003:2087:0703.005F failed with error -22
[  926.903193][  T617] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  926.921752][T14576] syz.1.3557[14576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  926.921812][T14576] syz.1.3557[14576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  926.946059][   T24] kauditd_printk_skb: 12 callbacks suppressed
[  926.946073][   T24] audit: type=1326 audit(1726368096.858:6097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14575 comm="syz.1.3557" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x0
[  927.043130][T13548] usb 3-1: new high-speed USB device number 100 using dummy_hcd
[  927.080743][T14340] usb 1-1: USB disconnect, device number 119
[  927.088177][    T7] device bridge_slave_1 left promiscuous mode
[  927.094331][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  927.101781][    T7] device bridge_slave_0 left promiscuous mode
[  927.108147][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  927.116232][    T7] device veth1_macvtap left promiscuous mode
[  927.122040][    T7] device veth0_vlan left promiscuous mode
[  927.153172][  T617] usb 5-1: Using ep0 maxpacket: 8
[  927.203124][   T15] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  927.273682][  T617] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  927.285394][  T617] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  927.295166][  T617] usb 5-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  927.304087][  T617] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  927.312735][  T617] usb 5-1: config 0 descriptor??
[  927.323105][T13548] usb 3-1: device descriptor read/64, error -71
[  927.604451][   T15] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  927.614421][   T15] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  927.627110][   T15] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  927.653225][   T15] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  927.662377][   T15] usb 4-1: config 0 descriptor??
[  927.713142][T13548] usb 3-1: device descriptor read/64, error -71
[  927.803003][  T617] hid (null): usage index exceeded
[  927.830118][  T617] hid-generic 0003:2087:0703.0060: unknown main item tag 0x0
[  927.839260][  T617] hid-generic 0003:2087:0703.0060: ignoring exceeding usage max
[  927.856709][  T617] hid-generic 0003:2087:0703.0060: usage index exceeded
[  927.864140][  T617] hid-generic 0003:2087:0703.0060: item 0 0 2 0 parsing failed
[  927.872883][  T617] hid-generic: probe of 0003:2087:0703.0060 failed with error -22
[  927.913704][T14579] udc-core: couldn't find an available UDC or it's busy
[  927.937507][T14579] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  927.997240][T13548] usb 3-1: new high-speed USB device number 101 using dummy_hcd
[  928.083137][  T617] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  928.355373][T10925] usb 5-1: USB disconnect, device number 23
[  928.356021][T13548] usb 3-1: device descriptor read/64, error -71
[  928.473189][  T617] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  928.483314][  T617] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  928.492112][  T617] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  928.509318][  T617] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  928.574159][  T617] usb 2-1: config 0 descriptor??
[  928.793149][T13548] usb 3-1: device descriptor read/64, error -71
[  928.926779][T13548] usb usb3-port1: attempt power cycle
[  929.333144][T13548] usb 3-1: new high-speed USB device number 102 using dummy_hcd
[  929.563176][T13548] usb 3-1: device descriptor read/8, error -71
[  929.813185][T13548] usb 3-1: device descriptor read/8, error -71
[  929.963306][  T453] usb 4-1: USB disconnect, device number 10
[  930.063169][T10925] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  930.272443][T14613] device ip6gretap1 entered promiscuous mode
[  930.433147][T10925] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  930.443944][T10925] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  930.453638][T10925] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  930.462476][T10925] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  930.474203][T10925] usb 5-1: config 0 descriptor??
[  930.695350][T14340] usb 2-1: USB disconnect, device number 4
[  930.829117][T14618] device veth0_vlan left promiscuous mode
[  930.834872][T14618] device veth0_vlan entered promiscuous mode
[  931.593177][ T3469] Bluetooth: hci0: command 0x1003 tx timeout
[  931.599163][T12288] Bluetooth: hci0: sending frame failed (-49)
[  931.833475][T13548] usb 3-1: new high-speed USB device number 104 using dummy_hcd
[  932.263190][T13548] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  932.273433][T13548] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  932.286333][T13548] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  932.295312][T13548] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  932.306295][T13548] usb 3-1: config 0 descriptor??
[  932.583510][T14632] udc-core: couldn't find an available UDC or it's busy
[  932.590629][T14632] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  933.553167][T10925] usbhid 5-1:0.0: can't add hid device: -71
[  933.559113][T10925] usbhid: probe of 5-1:0.0 failed with error -71
[  933.568655][T10925] usb 5-1: USB disconnect, device number 24
[  933.673124][  T453] Bluetooth: hci0: command 0x1001 tx timeout
[  933.679025][T12288] Bluetooth: hci0: sending frame failed (-49)
[  933.883123][  T400] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  933.943107][T10925] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  934.233121][T10925] usb 5-1: device descriptor read/64, error -71
[  934.243251][  T400] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  934.253370][  T400] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  934.266120][  T400] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  934.274918][  T400] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  934.283417][  T400] usb 2-1: config 0 descriptor??
[  934.526766][T14655] udc-core: couldn't find an available UDC or it's busy
[  934.533956][T14655] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  934.643122][T10925] usb 5-1: device descriptor read/64, error -71
[  934.648321][ T3469] usb 3-1: USB disconnect, device number 104
[  935.143093][T10925] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  935.413111][T10925] usb 5-1: device descriptor read/64, error -71
[  935.706455][T14674] device veth0_vlan left promiscuous mode
[  935.712167][T14674] device veth0_vlan entered promiscuous mode
[  935.753835][T14340] Bluetooth: hci0: command 0x1009 tx timeout
[  935.823177][T10925] usb 5-1: device descriptor read/64, error -71
[  935.943170][T10925] usb usb5-port1: attempt power cycle
[  936.472071][T10925] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  936.629145][T14687] device veth0_vlan left promiscuous mode
[  936.634889][T14687] device veth0_vlan entered promiscuous mode
[  936.886659][  T305] usb 2-1: USB disconnect, device number 5
[  936.974348][T14691] overlayfs: statfs failed on './file0'
[  936.997827][T10925] usb 5-1: device not accepting address 27, error -71
[  937.693200][  T305] usb 3-1: new high-speed USB device number 105 using dummy_hcd
[  938.753461][  T305] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  938.868922][  T305] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  938.922492][  T305] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  938.942065][  T305] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  938.965167][  T305] usb 3-1: config 0 descriptor??
[  939.205716][T14700] udc-core: couldn't find an available UDC or it's busy
[  939.223233][  T400] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  939.231339][T14700] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  939.643239][  T400] usb 2-1: device descriptor read/64, error -71
[  939.759883][T14735] bridge0: port 1(bridge_slave_0) entered blocking state
[  939.767122][T14735] bridge0: port 1(bridge_slave_0) entered disabled state
[  939.775113][T14735] device bridge_slave_0 entered promiscuous mode
[  939.782237][T14735] bridge0: port 2(bridge_slave_1) entered blocking state
[  939.789574][T14735] bridge0: port 2(bridge_slave_1) entered disabled state
[  939.793180][T10925] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  939.797378][T14735] device bridge_slave_1 entered promiscuous mode
[  939.863907][T14735] bridge0: port 2(bridge_slave_1) entered blocking state
[  939.870905][T14735] bridge0: port 2(bridge_slave_1) entered forwarding state
[  939.878025][T14735] bridge0: port 1(bridge_slave_0) entered blocking state
[  939.884882][T14735] bridge0: port 1(bridge_slave_0) entered forwarding state
[  939.925064][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  939.933580][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  939.942344][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  939.950343][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  939.959047][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  939.966536][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  940.073624][T14735] device veth0_vlan entered promiscuous mode
[  940.105812][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  940.114530][  T400] usb 2-1: device descriptor read/64, error -71
[  940.126536][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  940.137096][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  940.147229][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  940.236002][T14735] device veth1_macvtap entered promiscuous mode
[  940.252227][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  940.265555][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  940.273137][T10925] usb 4-1: Using ep0 maxpacket: 8
[  940.280584][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  940.383234][  T400] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  940.391242][T14745] overlayfs: failed to resolve './file2': -2
[  940.393327][T10925] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  940.407973][T10925] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  940.417637][T10925] usb 4-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  940.427616][T10925] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  940.439697][T10925] usb 4-1: config 0 descriptor??
[  940.713212][  T400] usb 2-1: device descriptor read/64, error -71
[  940.729132][  T453] usb 3-1: USB disconnect, device number 105
[  940.822258][T14340] usb 1-1: new high-speed USB device number 120 using dummy_hcd
[  940.831834][    T7] device bridge_slave_1 left promiscuous mode
[  940.837880][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  940.845407][    T7] device bridge_slave_0 left promiscuous mode
[  940.851331][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  940.859208][    T7] device veth1_macvtap left promiscuous mode
[  940.865237][    T7] device veth0_vlan left promiscuous mode
[  941.097737][T10925] hid (null): usage index exceeded
[  941.112904][T10925] hid-generic 0003:2087:0703.0061: unknown main item tag 0x0
[  941.120519][T10925] hid-generic 0003:2087:0703.0061: ignoring exceeding usage max
[  941.133212][T10925] hid-generic 0003:2087:0703.0061: usage index exceeded
[  941.144354][T10925] hid-generic 0003:2087:0703.0061: item 0 0 2 0 parsing failed
[  941.152860][T10925] hid-generic: probe of 0003:2087:0703.0061 failed with error -22
[  941.289236][  T400] usb 2-1: device descriptor read/64, error -71
[  941.323649][T14340] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  941.336170][T14340] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  941.388664][T14340] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  941.399971][T14340] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  941.414283][  T400] usb usb2-port1: attempt power cycle
[  941.418144][T14340] usb 1-1: config 0 descriptor??
[  941.646519][T13548] usb 4-1: USB disconnect, device number 11
[  941.668021][T14750] udc-core: couldn't find an available UDC or it's busy
[  941.675749][T14750] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  941.751344][  T617] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  941.833359][  T400] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  941.897001][T14768] usb usb8: usbfs: process 14768 (syz.0.3600) did not claim interface 0 before use
[  942.013124][  T400] usb 2-1: device descriptor read/8, error -71
[  942.153461][  T617] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  942.204411][  T617] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  942.223214][  T400] usb 2-1: device descriptor read/8, error -71
[  942.243592][  T617] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  942.262716][  T617] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  942.285408][  T617] usb 5-1: config 0 descriptor??
[  942.374554][T14776] FAULT_INJECTION: forcing a failure.
[  942.374554][T14776] name failslab, interval 1, probability 0, space 0, times 0
[  942.403091][T14776] CPU: 1 PID: 14776 Comm: syz.2.3606 Not tainted 5.10.225-syzkaller-00513-g8d23314f588a #0
[  942.412879][T14776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  942.422769][T14776] Call Trace:
[  942.426010][T14776]  dump_stack_lvl+0x1e2/0x24b
[  942.430611][T14776]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  942.435901][T14776]  ? vfs_write+0x852/0xe70
[  942.440157][T14776]  ? kmem_cache_free+0xa9/0x1e0
[  942.444845][T14776]  dump_stack+0x15/0x17
[  942.448841][T14776]  should_fail+0x3c6/0x510
[  942.453099][T14776]  ? __se_sys_mount+0x9b/0x3b0
[  942.457691][T14776]  __should_failslab+0xa4/0xe0
[  942.462289][T14776]  should_failslab+0x9/0x20
[  942.466628][T14776]  __kmalloc_track_caller+0x5f/0x320
[  942.471852][T14776]  ? strnlen_user+0xea/0x1f0
[  942.476391][T14776]  strndup_user+0x76/0x150
[  942.480620][T14776]  __se_sys_mount+0x9b/0x3b0
[  942.485045][T14776]  ? __x64_sys_mount+0xd0/0xd0
[  942.489648][T14776]  __x64_sys_mount+0xbf/0xd0
[  942.494074][T14776]  do_syscall_64+0x34/0x70
[  942.498332][T14776]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  942.504055][T14776] RIP: 0033:0x7f5117041ef9
[  942.508315][T14776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  942.527771][T14763] udc-core: couldn't find an available UDC or it's busy
[  942.528027][T14776] RSP: 002b:00007f5115cbb038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  942.534953][T14763] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  942.543042][T14776] RAX: ffffffffffffffda RBX: 00007f51171f9f80 RCX: 00007f5117041ef9
[  942.558137][T14776] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 0000000000000000
[  942.565957][T14776] RBP: 00007f5115cbb090 R08: 00000000200000c0 R09: 0000000000000000
[  942.573748][T14776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  942.581744][T14776] R13: 0000000000000000 R14: 00007f51171f9f80 R15: 00007fff8aad5ad8
[  943.801315][  T617] usb 1-1: USB disconnect, device number 120
[  943.833346][  T400] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  944.103192][  T400] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  944.114121][  T400] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  944.123823][  T400] usb 2-1: New USB device found, idVendor=1d34, idProduct=000a, bcdDevice= 0.00
[  944.132658][  T400] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  944.141208][  T400] usb 2-1: config 0 descriptor??
[  944.193184][T13548] usb 3-1: new high-speed USB device number 106 using dummy_hcd
[  944.313141][  T617] usb 1-1: new high-speed USB device number 121 using dummy_hcd
[  944.563191][T13548] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  944.573331][T13548] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  944.586186][T13548] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  944.595039][T13548] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  944.603462][T13548] usb 3-1: config 0 descriptor??
[  944.713155][  T617] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  944.723261][  T617] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  944.736029][  T617] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  944.744950][  T617] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  944.753589][  T617] usb 1-1: config 0 descriptor??
[  944.790807][T13548] usb 5-1: USB disconnect, device number 29
[  944.844856][T14791] udc-core: couldn't find an available UDC or it's busy
[  944.851755][T14791] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  944.859466][  T400] usbhid 2-1:0.0: can't add hid device: -71
[  944.968256][  T400] usbhid: probe of 2-1:0.0 failed with error -71
[  945.682605][  T400] usb 2-1: USB disconnect, device number 9
[  945.701007][T14795] udc-core: couldn't find an available UDC or it's busy
[  945.733944][T14795] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  945.756429][   T24] audit: type=1400 audit(1726368115.668:6098): avc:  denied  { wake_alarm } for  pid=14810 comm="syz.3.3614" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  945.909601][T14809] syz.1.3615[14809] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  945.909667][T14809] syz.1.3615[14809] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  946.113185][T13548] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  946.241637][   T24] audit: type=1326 audit(1726368116.148:6099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14808 comm="syz.1.3615" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x0
[  946.563241][T13548] usb 4-1: config 0 has no interfaces?
[  946.673131][T10925] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  946.683174][T13548] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  946.692365][T13548] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  946.700305][T13548] usb 4-1: SerialNumber: syz
[  946.730614][T13548] usb 4-1: config 0 descriptor??
[  946.985672][  T453] usb 3-1: USB disconnect, device number 106
[  947.033085][T10925] usb 5-1: Using ep0 maxpacket: 8
[  947.097274][ T3484] usb 4-1: USB disconnect, device number 12
[  947.177677][T10925] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  947.409549][T10925] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  947.452379][T10925] usb 5-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  947.462927][T10925] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  947.497292][   T15] usb 1-1: USB disconnect, device number 121
[  947.504678][T10925] usb 5-1: config 0 descriptor??
[  948.844753][T10925] hid (null): usage index exceeded
[  949.289965][T10925] hid-generic 0003:2087:0703.0062: unknown main item tag 0x0
[  949.297244][T10925] hid-generic 0003:2087:0703.0062: ignoring exceeding usage max
[  949.393814][T10925] hid-generic 0003:2087:0703.0062: usage index exceeded
[  949.409897][T10925] hid-generic 0003:2087:0703.0062: item 0 0 2 0 parsing failed
[  949.425943][T10925] hid-generic: probe of 0003:2087:0703.0062 failed with error -22
[  950.283520][T14860] device veth0_vlan left promiscuous mode
[  950.289174][T14860] device veth0_vlan entered promiscuous mode
[  950.380142][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  950.454215][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  950.464919][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  950.559302][  T453] usb 5-1: USB disconnect, device number 30
[  950.591712][T14871] tipc: Failed to remove local publication {66,1,1}/148681474
[  950.609715][T14871] tipc: Failed to remove local publication {66,1,1}/148681474
[  950.671303][T14874] netlink: 140 bytes leftover after parsing attributes in process `syz.1.3629'.
[  952.854829][   T24] audit: type=1326 audit(1726368122.758:6100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.076054][   T24] audit: type=1326 audit(1726368122.768:6101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.177780][   T24] audit: type=1326 audit(1726368122.768:6102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.244331][   T24] audit: type=1326 audit(1726368122.768:6103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.267942][   T24] audit: type=1326 audit(1726368122.768:6104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.294928][   T24] audit: type=1326 audit(1726368122.768:6105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.338232][T14924] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  953.364242][   T24] audit: type=1326 audit(1726368122.768:6106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.702334][   T24] audit: type=1326 audit(1726368122.768:6107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.769269][   T24] audit: type=1326 audit(1726368122.768:6108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  953.810421][   T24] audit: type=1326 audit(1726368122.768:6109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14905 comm="syz.1.3639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  954.531365][T14923] device ip6gretap1 entered promiscuous mode
[  955.466581][T14965] request_module fs-gadgetfs succeeded, but still no fs?
[  955.699014][T14972] hub 6-0:1.0: USB hub found
[  955.703625][T14972] hub 6-0:1.0: 1 port detected
[  956.224211][  T453] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  956.406922][T14982] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3658'.
[  956.415649][T14982] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3658'.
[  957.376748][  T453] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  957.389994][  T453] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  957.873161][  T453] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  957.885444][  T453] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  957.900648][  T453] usb 2-1: SerialNumber: syz
[  958.404121][  T453] usb 2-1: 0:2 : does not exist
[  958.409190][  T453] usb 2-1: unit 5: unexpected type 0x09
[  958.416702][  T453] usb 2-1: USB disconnect, device number 10
[  958.429053][  T347] udevd[347]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  958.824570][T15009] syz.4.3665[15009] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  958.824616][T15009] syz.4.3665[15009] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  958.845227][   T24] kauditd_printk_skb: 7 callbacks suppressed
[  958.845242][   T24] audit: type=1326 audit(1726368128.758:6117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15008 comm="syz.4.3665" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f154165aef9 code=0x0
[  959.996201][T14986] usb 3-1: new high-speed USB device number 107 using dummy_hcd
[  960.225581][T15035] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3670'.
[  960.234577][T15035] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3670'.
[  960.543136][T14986] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  960.553092][  T453] usb 1-1: new full-speed USB device number 122 using dummy_hcd
[  960.560651][T14986] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  960.570188][T14986] usb 3-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  960.579326][T14986] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  960.588137][T14986] usb 3-1: config 0 descriptor??
[  960.913149][  T453] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  960.921780][  T453] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  960.948535][  T453] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 4
[  960.973107][  T453] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  961.247623][  T453] usb 1-1: config 1 interface 1 has no altsetting 0
[  961.404604][T15052] device veth0_vlan left promiscuous mode
[  961.410183][T15052] device veth0_vlan entered promiscuous mode
[  961.523426][  T453] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  961.543931][  T453] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  961.578631][  T453] usb 1-1: Product: syz
[  961.594435][  T453] usb 1-1: Manufacturer: syz
[  961.610893][  T453] usb 1-1: SerialNumber: syz
[  961.956147][T15061] Bluetooth: hci0: Frame reassembly failed (-84)
[  962.083990][T14339] Bluetooth: hci0: Frame reassembly failed (-84)
[  962.101788][T14986] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  962.442699][T11184] usb 3-1: USB disconnect, device number 107
[  962.543377][T14986] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  962.553621][T14986] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  962.573664][T14986] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  962.582705][T14986] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  962.595643][T14986] usb 5-1: config 0 descriptor??
[  962.837564][T15055] udc-core: couldn't find an available UDC or it's busy
[  962.844394][T15055] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  962.923118][T11184] usb 3-1: new high-speed USB device number 108 using dummy_hcd
[  963.049796][T15071] tipc: Started in network mode
[  963.054654][T15071] tipc: Own node identity 00000000000000000000000000000001, cluster identity 4711
[  963.064364][T15071] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  963.072829][T15071] tipc: Enabled bearer <udp:s>, priority 10
[  963.480144][  T453] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[  963.489033][  T453] usb 1-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  963.498472][  T453] usb 1-1: found format II with max.bitrate = 0, frame size=0
[  963.506348][  T453] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[  963.514173][  T453] usb 1-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  963.522486][  T453] usb 1-1: found format II with max.bitrate = 0, frame size=0
[  964.086913][   T20] tipc: 32-bit node address hash set to 1000000
[  964.325091][  T860] Bluetooth: hci0: command 0x1003 tx timeout
[  964.337872][T12288] Bluetooth: hci0: sending frame failed (-49)
[  964.397496][  T453] usb 1-1: USB disconnect, device number 122
[  964.408899][  T308] udevd[308]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  964.453179][T11184] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  964.463239][T11184] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  964.476458][T11184] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  964.485603][T11184] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  964.497963][T11184] usb 3-1: config 0 descriptor??
[  964.624250][T15088] device ip6gretap1 entered promiscuous mode
[  964.745346][T15069] udc-core: couldn't find an available UDC or it's busy
[  964.756304][T15069] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  964.765942][  T453] usb 5-1: USB disconnect, device number 31
[  964.890389][T15093] device veth0_vlan left promiscuous mode
[  964.896047][T15093] device veth0_vlan entered promiscuous mode
[  965.009626][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  965.599192][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  965.658278][T14339] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  966.113110][   T24] audit: type=1326 audit(1726368136.008:6118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.161758][T15108] tipc: Failed to remove local publication {66,1,1}/3736285733
[  966.169803][T15108] tipc: Failed to remove local publication {66,1,1}/3736285733
[  966.175116][   T24] audit: type=1326 audit(1726368136.008:6119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.203104][   T24] audit: type=1326 audit(1726368136.018:6120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.226514][   T24] audit: type=1326 audit(1726368136.018:6121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.250076][   T24] audit: type=1326 audit(1726368136.018:6122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.273848][   T24] audit: type=1326 audit(1726368136.018:6123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.297454][   T24] audit: type=1326 audit(1726368136.018:6124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.321895][   T24] audit: type=1326 audit(1726368136.018:6125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.346263][   T24] audit: type=1326 audit(1726368136.018:6126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.386648][   T24] audit: type=1326 audit(1726368136.018:6127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15107 comm="syz.4.3689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f154165aef9 code=0x7ffc0000
[  966.437526][ T5633] Bluetooth: hci0: command 0x1001 tx timeout
[  966.447087][T12288] Bluetooth: hci0: sending frame failed (-49)
[  966.455371][T15120] binder: 15119:15120 ioctl 4018620d 0 returned -22
[  966.766392][ T5633] usb 3-1: USB disconnect, device number 108
[  967.134236][T15132] device veth0_vlan left promiscuous mode
[  967.139814][T15132] device veth0_vlan entered promiscuous mode
[  967.557946][T15138] syz.4.3698[15138] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  967.558228][T15138] syz.4.3698[15138] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  967.669375][T15140] device veth0_vlan left promiscuous mode
[  967.686630][T15140] device veth0_vlan entered promiscuous mode
[  967.933120][T13548] usb 1-1: new high-speed USB device number 123 using dummy_hcd
[  968.193083][T13548] usb 1-1: Using ep0 maxpacket: 32
[  968.390141][T15149] tipc: Failed to remove local publication {66,1,1}/3154013079
[  968.390266][T13548] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  968.398221][T15149] tipc: Failed to remove local publication {66,1,1}/3154013079
[  968.407419][T13548] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  968.424002][T13548] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  968.433709][T13548] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  968.443241][T13548] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  968.457362][T13548] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  968.466269][T13548] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  968.475867][T13548] usb 1-1: config 0 descriptor??
[  968.481318][ T5633] Bluetooth: hci0: command 0x1009 tx timeout
[  968.926713][T13548] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 123 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  969.183109][T11184] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  969.543209][T11184] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  969.553949][T11184] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  969.665716][T11184] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  969.674669][T11184] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  969.693513][T11184] usb 5-1: config 0 descriptor??
[  970.214235][T15164] udc-core: couldn't find an available UDC or it's busy
[  970.221189][T15164] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  970.332347][  T398] usb 1-1: USB disconnect, device number 123
[  970.341424][  T398] usblp0: removed
[  970.953216][  T453] usb 3-1: new high-speed USB device number 109 using dummy_hcd
[  971.167062][T15185] syz.0.3712[15185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  971.167146][T15185] syz.0.3712[15185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  971.179562][   T24] kauditd_printk_skb: 54 callbacks suppressed
[  971.179576][   T24] audit: type=1326 audit(1726368141.098:6182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15184 comm="syz.0.3712" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc378f30ef9 code=0x0
[  971.361619][  T453] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  971.371759][  T453] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  971.384638][  T453] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  971.393867][  T453] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  971.393879][   T24] audit: type=1326 audit(1726368141.308:6183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.394910][   T24] audit: type=1326 audit(1726368141.308:6184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.403605][  T453] usb 3-1: config 0 descriptor??
[  971.430064][   T24] audit: type=1326 audit(1726368141.308:6185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.452404][T15188] tipc: Failed to remove local publication {66,1,1}/563259874
[  971.453181][   T24] audit: type=1326 audit(1726368141.308:6186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.476436][T15188] tipc: Failed to remove local publication {66,1,1}/563259874
[  971.484072][   T24] audit: type=1326 audit(1726368141.368:6187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.541869][   T24] audit: type=1326 audit(1726368141.368:6188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.567389][   T24] audit: type=1326 audit(1726368141.368:6189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.590849][   T24] audit: type=1326 audit(1726368141.368:6190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.614064][   T24] audit: type=1326 audit(1726368141.368:6191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15187 comm="syz.1.3713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  971.731192][T15182] udc-core: couldn't find an available UDC or it's busy
[  971.738001][T15182] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  971.977440][  T453] usb 5-1: USB disconnect, device number 32
[  972.467509][T15206] bridge0: port 1(bridge_slave_0) entered blocking state
[  972.479033][T15211] tipc: Failed to remove local publication {66,1,1}/1066738048
[  972.483098][T15206] bridge0: port 1(bridge_slave_0) entered disabled state
[  972.494227][T15206] device bridge_slave_0 entered promiscuous mode
[  972.500481][T15211] tipc: Failed to remove local publication {66,1,1}/1066738048
[  972.533718][T15206] bridge0: port 2(bridge_slave_1) entered blocking state
[  972.541450][T15206] bridge0: port 2(bridge_slave_1) entered disabled state
[  972.549337][T15206] device bridge_slave_1 entered promiscuous mode
[  972.612861][T15206] bridge0: port 2(bridge_slave_1) entered blocking state
[  972.619735][T15206] bridge0: port 2(bridge_slave_1) entered forwarding state
[  972.626851][T15206] bridge0: port 1(bridge_slave_0) entered blocking state
[  972.633610][T15206] bridge0: port 1(bridge_slave_0) entered forwarding state
[  972.644257][T15220] hub 6-0:1.0: USB hub found
[  972.648898][T15220] hub 6-0:1.0: 1 port detected
[  972.664666][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  972.672286][ T8530] bridge0: port 1(bridge_slave_0) entered disabled state
[  972.679620][ T8530] bridge0: port 2(bridge_slave_1) entered disabled state
[  972.691237][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  972.699506][ T8530] bridge0: port 1(bridge_slave_0) entered blocking state
[  972.706366][ T8530] bridge0: port 1(bridge_slave_0) entered forwarding state
[  972.715445][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  972.723564][ T8530] bridge0: port 2(bridge_slave_1) entered blocking state
[  972.730478][ T8530] bridge0: port 2(bridge_slave_1) entered forwarding state
[  972.746852][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  972.756613][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  972.773418][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  972.785967][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  972.794331][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  972.801609][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  972.812325][T15206] device veth0_vlan entered promiscuous mode
[  972.823766][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  972.833382][T11951] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  972.833521][T15206] device veth1_macvtap entered promiscuous mode
[  972.853805][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  972.864440][ T8530] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  973.034200][T14339] device bridge_slave_1 left promiscuous mode
[  973.041913][T14339] bridge0: port 2(bridge_slave_1) entered disabled state
[  973.054759][T14339] device bridge_slave_0 left promiscuous mode
[  973.066298][T14339] bridge0: port 1(bridge_slave_0) entered disabled state
[  973.073230][T11951] usb 2-1: Using ep0 maxpacket: 32
[  973.084508][T14339] device veth1_macvtap left promiscuous mode
[  973.193399][T11951] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  973.209708][T11951] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  973.231795][T11951] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00
[  973.250930][T11951] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  973.265087][T11951] usb 2-1: config 0 descriptor??
[  973.368237][T15229] tipc: Failed to remove local publication {66,1,1}/260575375
[  973.375774][T15229] tipc: Failed to remove local publication {66,1,1}/260575375
[  973.413388][T11184] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  973.603111][T11951] usbhid 2-1:0.0: can't add hid device: -71
[  973.609027][T11951] usbhid: probe of 2-1:0.0 failed with error -71
[  973.618715][T11951] usb 2-1: USB disconnect, device number 11
[  973.653068][T11184] usb 4-1: Using ep0 maxpacket: 8
[  973.673685][   T20] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  973.731787][  T453] usb 3-1: USB disconnect, device number 109
[  973.783161][T11184] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  973.794420][T11184] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  973.804089][T11184] usb 4-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  973.812890][T11184] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  973.821587][T11184] usb 4-1: config 0 descriptor??
[  973.907820][T15240] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  974.063452][   T20] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  974.073506][   T20] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  974.091942][   T20] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  974.103612][   T20] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  974.112391][   T20] usb 5-1: config 0 descriptor??
[  974.304580][T11184] hid (null): usage index exceeded
[  974.310518][T11184] hid-generic 0003:2087:0703.0063: unknown main item tag 0x0
[  974.319191][T11184] hid-generic 0003:2087:0703.0063: ignoring exceeding usage max
[  974.327827][T11184] hid-generic 0003:2087:0703.0063: usage index exceeded
[  974.334614][T11184] hid-generic 0003:2087:0703.0063: item 0 0 2 0 parsing failed
[  974.342139][T11184] hid-generic: probe of 0003:2087:0703.0063 failed with error -22
[  974.363145][  T860] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  974.365018][T15234] udc-core: couldn't find an available UDC or it's busy
[  974.377347][T15234] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  974.894757][T11184] usb 4-1: USB disconnect, device number 13
[  974.953156][  T860] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  975.189385][  T860] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  975.198242][  T860] usb 2-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  975.207095][  T860] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  975.215744][  T860] usb 2-1: config 0 descriptor??
[  975.789953][  T860] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  976.183141][  T860] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  976.193214][  T860] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  976.202023][  T860] usb 4-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  976.210928][  T860] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  976.219558][  T860] usb 4-1: config 0 descriptor??
[  976.468198][  T860] usb 5-1: USB disconnect, device number 33
[  977.119385][   T20] usb 2-1: USB disconnect, device number 12
[  977.193490][T11184] usb 3-1: new high-speed USB device number 110 using dummy_hcd
[  977.203209][ T5633] usb 1-1: new high-speed USB device number 124 using dummy_hcd
[  977.343068][  T860] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  977.553207][T11184] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  977.563237][T11184] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  977.575879][T11184] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  977.584742][T11184] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  977.593262][ T5633] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  977.593471][T11184] usb 3-1: config 0 descriptor??
[  977.603921][ T5633] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  977.620799][ T5633] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  977.629715][ T5633] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  977.638215][ T5633] usb 1-1: config 0 descriptor??
[  977.703167][  T860] usb 5-1: New USB device found, idVendor=a766, idProduct=7cb5, bcdDevice=55.3a
[  977.712100][  T860] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  977.721443][  T860] usb 5-1: config 0 descriptor??
[  977.763698][  T860] usb-storage 5-1:0.0: USB Mass Storage device detected
[  977.849389][T15277] udc-core: couldn't find an available UDC or it's busy
[  977.856356][T15277] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  977.886239][T15275] udc-core: couldn't find an available UDC or it's busy
[  977.893205][T15275] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  978.753880][  T398] usb 4-1: USB disconnect, device number 14
[  978.881634][T15301] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3743'.
[  978.891286][T15301] device bridge_slave_1 left promiscuous mode
[  978.897567][T15301] bridge0: port 2(bridge_slave_1) entered disabled state
[  978.906380][T15301] device bridge_slave_0 left promiscuous mode
[  978.912445][T15301] bridge0: port 1(bridge_slave_0) entered disabled state
[  979.688260][  T398] usb 5-1: USB disconnect, device number 34
[  980.121528][ T5633] usb 3-1: USB disconnect, device number 110
[  980.163762][T11807] usb 1-1: USB disconnect, device number 124
[  980.794440][   T24] kauditd_printk_skb: 51 callbacks suppressed
[  980.794511][   T24] audit: type=1400 audit(1726368150.708:6243): avc:  denied  { read } for  pid=15325 comm="syz.0.3750" name="file0" dev="tmpfs" ino=146 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  981.283221][ T5633] usb 3-1: new high-speed USB device number 111 using dummy_hcd
[  981.723391][  T453] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  981.787542][ T5633] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  981.870093][ T5633] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  981.879616][ T5633] usb 3-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  981.897610][ T5633] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  981.909435][ T5633] usb 3-1: config 0 descriptor??
[  982.103517][T15369] FAULT_INJECTION: forcing a failure.
[  982.103517][T15369] name failslab, interval 1, probability 0, space 0, times 0
[  982.115961][T15369] CPU: 1 PID: 15369 Comm: syz.0.3761 Not tainted 5.10.225-syzkaller-00513-g8d23314f588a #0
[  982.125717][T15369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  982.135606][T15369] Call Trace:
[  982.138744][T15369]  dump_stack_lvl+0x1e2/0x24b
[  982.143252][T15369]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  982.148547][T15369]  ? _raw_spin_lock_bh+0xa4/0x1b0
[  982.153093][T10925] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  982.153409][T15369]  ? _raw_spin_lock_irq+0x1b0/0x1b0
[  982.153431][T15369]  ? radix_tree_lookup+0x17e/0x1d0
[  982.170770][T15369]  dump_stack+0x15/0x17
[  982.174765][T15369]  should_fail+0x3c6/0x510
[  982.179018][T15369]  ? tipc_topsrv_queue_evt+0x162/0x350
[  982.183148][  T453] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  982.184309][T15369]  __should_failslab+0xa4/0xe0
[  982.184333][T15369]  should_failslab+0x9/0x20
[  982.194596][  T453] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  982.198808][T15369]  kmem_cache_alloc_trace+0x3a/0x2e0
[  982.198831][T15369]  ? _raw_spin_lock+0xa4/0x1b0
[  982.203807][  T453] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  982.215826][T15369]  tipc_topsrv_queue_evt+0x162/0x350
[  982.215841][T15369]  tipc_sub_report_overlap+0x32b/0x4c0
[  982.215856][T15369]  tipc_nametbl_insert_publ+0xff6/0x1390
[  982.215874][T15369]  tipc_nametbl_publish+0x203/0x3a0
[  982.215886][T15369]  tipc_sk_join+0x427/0x8c0
[  982.215903][T15369]  tipc_setsockopt+0x794/0xb80
[  982.215924][T15369]  ? tipc_shutdown+0x950/0x950
[  982.221954][  T453] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  982.225546][T15369]  ? security_socket_setsockopt+0x82/0xb0
[  982.225566][T15369]  ? tipc_shutdown+0x950/0x950
[  982.225579][T15369]  __sys_setsockopt+0x502/0x870
[  982.225599][T15369]  ? __ia32_sys_recv+0xb0/0xb0
[  982.296118][T15369]  __x64_sys_setsockopt+0xbf/0xd0
[  982.300967][T15369]  do_syscall_64+0x34/0x70
[  982.305221][T15369]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  982.310945][T15369] RIP: 0033:0x7fc378f30ef9
[  982.311690][  T453] usb 2-1: config 0 descriptor??
[  982.315457][T15369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  982.315465][T15369] RSP: 002b:00007fc377b89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  982.315481][T15369] RAX: ffffffffffffffda RBX: 00007fc3790e9058 RCX: 00007fc378f30ef9
[  982.315489][T15369] RDX: 0000000000000087 RSI: 000000000000010f RDI: 0000000000000009
[  982.315497][T15369] RBP: 00007fc377b89090 R08: 0000000000000010 R09: 0000000000000000
[  982.315505][T15369] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001
[  982.315513][T15369] R13: 0000000000000000 R14: 00007fc3790e9058 R15: 00007ffd21e1e668
[  982.819471][T15357] udc-core: couldn't find an available UDC or it's busy
[  982.826696][T10925] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  982.836801][T15357] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  982.844445][T10925] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  982.854966][T10925] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  982.870129][T10925] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  982.886485][T10925] usb 5-1: config 0 descriptor??
[  983.293841][T15363] udc-core: couldn't find an available UDC or it's busy
[  983.300754][T15363] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  983.552572][T15394] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  983.837243][  T398] usb 3-1: USB disconnect, device number 111
[  984.543041][T13548] usb 2-1: USB disconnect, device number 13
[  984.780094][T11951] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  984.952909][T13548] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  985.207131][  T860] usb 5-1: USB disconnect, device number 35
[  985.333143][T11951] usb 4-1: Using ep0 maxpacket: 8
[  985.453162][T11951] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  985.463970][T11951] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  985.473761][T11951] usb 4-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  985.482729][T11951] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  985.483150][T13548] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  985.495339][T11951] usb 4-1: config 0 descriptor??
[  985.519919][T13548] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  985.552235][T13548] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  985.561266][T13548] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  985.580990][T13548] usb 2-1: config 0 descriptor??
[  985.859471][T15406] udc-core: couldn't find an available UDC or it's busy
[  985.866472][T15406] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  986.256165][T11951] hid (null): usage index exceeded
[  986.262367][T11951] hid-generic 0003:2087:0703.0064: unknown main item tag 0x0
[  986.281676][T11951] hid-generic 0003:2087:0703.0064: ignoring exceeding usage max
[  986.290490][T11951] hid-generic 0003:2087:0703.0064: usage index exceeded
[  986.297304][T11951] hid-generic 0003:2087:0703.0064: item 0 0 2 0 parsing failed
[  986.304985][T11951] hid-generic: probe of 0003:2087:0703.0064 failed with error -22
[  986.718796][  T860] usb 4-1: USB disconnect, device number 15
[  986.812783][T15436] device veth0_vlan left promiscuous mode
[  986.818395][T15436] device veth0_vlan entered promiscuous mode
[  986.851986][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  986.903532][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  986.916799][   T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  987.223838][T15441] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  987.439388][   T24] audit: type=1400 audit(1726368157.348:6244): avc:  denied  { getopt } for  pid=15444 comm="syz.3.3781" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  987.521142][ T5633] usb 2-1: USB disconnect, device number 14
[  987.671603][   T24] audit: type=1326 audit(1726368157.578:6245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  987.695974][   T24] audit: type=1326 audit(1726368157.578:6246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  987.719997][   T24] audit: type=1326 audit(1726368157.578:6247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  987.743720][   T24] audit: type=1326 audit(1726368157.578:6248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  987.832150][T15455] FAULT_INJECTION: forcing a failure.
[  987.832150][T15455] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  987.845076][T15455] CPU: 1 PID: 15455 Comm: syz.1.3783 Not tainted 5.10.225-syzkaller-00513-g8d23314f588a #0
[  987.854873][T15455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  987.864765][T15455] Call Trace:
[  987.867903][T15455]  dump_stack_lvl+0x1e2/0x24b
[  987.872409][T15455]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  987.877702][T15455]  ? no_context+0x107/0xd20
[  987.882043][T15455]  dump_stack+0x15/0x17
[  987.886036][T15455]  should_fail+0x3c6/0x510
[  987.890289][T15455]  should_fail_usercopy+0x1a/0x20
[  987.895148][T15455]  strncpy_from_user+0x24/0x2d0
[  987.899837][T15455]  ? search_extable+0xaf/0xf0
[  987.904351][T15455]  strncpy_from_user_nofault+0x73/0x150
[  987.909731][T15455]  bpf_probe_read_compat_str+0xec/0x180
[  987.915114][T15455]  bpf_prog_e42f6260c1b72fb3+0x35/0xdbc
[  987.920495][T15455]  bpf_trace_run3+0x121/0x2c0
[  987.925008][T15455]  ? bpf_trace_run2+0x280/0x280
[  987.929694][T15455]  ? __this_cpu_preempt_check+0x13/0x20
[  987.935075][T15455]  ? tracing_record_taskinfo_sched_switch+0x84/0x390
[  987.941588][T15455]  ? __bpf_trace_sched_wakeup_template+0x10/0x10
[  987.947747][T15455]  __bpf_trace_sched_switch+0xb/0x10
[  987.952867][T15455]  __traceiter_sched_switch+0x85/0xc0
[  987.958077][T15455]  __schedule+0x10be/0x1330
[  987.962416][T15455]  ? release_firmware_map_entry+0x18d/0x18d
[  987.968144][T15455]  ? no_context+0x107/0xd20
[  987.972484][T15455]  preempt_schedule_irq+0xc7/0x140
[  987.977432][T15455]  ? preempt_schedule_notrace+0x140/0x140
[  987.982983][T15455]  ? is_prefetch+0x5c0/0x5c0
[  987.987411][T15455]  ? tracing_record_taskinfo_sched_switch+0x84/0x390
[  987.993923][T15455]  irqentry_exit+0x4f/0x60
[  987.998174][T15455]  sysvec_reschedule_ipi+0x83/0x160
[  988.003210][T15455]  asm_sysvec_reschedule_ipi+0x12/0x20
[  988.008503][T15455] RIP: 0010:__sanitizer_cov_trace_pc+0x17/0x60
[  988.014491][T15455] Code: 48 8b 3d b4 fe 78 05 48 89 de e8 74 f0 3c 00 5b 5d c3 cc 55 48 89 e5 48 8b 45 08 65 48 8b 0d 90 c0 97 7e 65 8b 15 95 c0 97 7e <f7> c2 00 01 ff 00 74 11 f7 c2 00 01 00 00 74 35 83 b9 dc 0a 00 00
[  988.033931][T15455] RSP: 0018:ffffc90000ba7830 EFLAGS: 00000293
[  988.039834][T15455] RAX: ffffffff822c0766 RBX: 0000000000000000 RCX: ffff88812155bb40
[  988.047644][T15455] RDX: 0000000080000000 RSI: ffffc90000ba7e00 RDI: 0000000000000005
[  988.055455][T15455] RBP: ffffc90000ba7830 R08: ffffffff8179329f R09: fffff52000174fcf
[  988.063267][T15455] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000005
[  988.071078][T15455] R13: fffff52000174f34 R14: dffffc0000000000 R15: ffffc90000ba7e00
[  988.078895][T15455]  ? __se_sys_bpf+0x23f/0x11cb0
[  988.083580][T15455]  ? security_bpf+0x26/0xb0
[  988.087921][T15455]  security_bpf+0x26/0xb0
[  988.092087][T15455]  __se_sys_bpf+0x27d/0x11cb0
[  988.096601][T15455]  ? cpupri_find+0xf1/0x2f0
[  988.100941][T15455]  ? find_lowest_rq+0x196/0x770
[  988.105626][T15455]  ? pick_next_pushable_task+0x210/0x210
[  988.111092][T15455]  ? __x64_sys_bpf+0x90/0x90
[  988.115519][T15455]  ? __kasan_check_write+0x14/0x20
[  988.120467][T15455]  ? push_rt_tasks+0x7c5/0x8a0
[  988.125069][T15455]  ? bpf_trace_run2+0x280/0x280
[  988.129756][T15455]  ? rto_push_irq_work_func+0x3a0/0x3a0
[  988.135137][T15455]  ? __this_cpu_preempt_check+0x13/0x20
[  988.140517][T15455]  ? tracing_record_taskinfo_sched_switch+0x84/0x390
[  988.147027][T15455]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  988.152667][T15455]  ? __balance_callback+0x75/0xe0
[  988.157526][T15455]  ? __schedule+0xcc9/0x1330
[  988.161963][T15455]  ? release_firmware_map_entry+0x18d/0x18d
[  988.167682][T15455]  ? preempt_count_add+0x92/0x1a0
[  988.172545][T15455]  ? __kasan_check_read+0x11/0x20
[  988.177404][T15455]  ? preempt_schedule_irq+0xe7/0x140
[  988.182526][T15455]  ? preempt_schedule_notrace+0x140/0x140
[  988.188093][T15455]  ? kernel_write+0x3d0/0x3d0
[  988.192609][T15455]  ? irqentry_exit+0x4f/0x60
[  988.197036][T15455]  ? sysvec_reschedule_ipi+0x83/0x160
[  988.202251][T15455]  ? asm_sysvec_reschedule_ipi+0x12/0x20
[  988.207698][T15455]  ? __kasan_check_write+0x14/0x20
[  988.212644][T15455]  ? fput_many+0x160/0x1b0
[  988.216898][T15455]  ? fpu__clear_all+0x20/0x20
[  988.221409][T15455]  ? __kasan_check_read+0x11/0x20
[  988.226271][T15455]  __x64_sys_bpf+0x7b/0x90
[  988.230522][T15455]  do_syscall_64+0x34/0x70
[  988.234777][T15455]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  988.240503][T15455] RIP: 0033:0x7fbce39f9ef9
[  988.244757][T15455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  988.264195][T15455] RSP: 002b:00007fbce2631038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  988.272442][T15455] RAX: ffffffffffffffda RBX: 00007fbce3bb2130 RCX: 00007fbce39f9ef9
[  988.280250][T15455] RDX: 0000000000000080 RSI: 0000000020000200 RDI: 0000000000000005
[  988.288065][T15455] RBP: 00007fbce2631090 R08: 0000000000000000 R09: 0000000000000000
[  988.295875][T15455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  988.303685][T15455] R13: 0000000000000000 R14: 00007fbce3bb2130 R15: 00007ffcbd392068
[  988.417281][   T24] audit: type=1326 audit(1726368157.578:6249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  988.485012][   T24] audit: type=1326 audit(1726368157.578:6250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  988.527239][   T24] audit: type=1326 audit(1726368157.638:6251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  988.550814][   T24] audit: type=1326 audit(1726368157.638:6252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  988.583396][   T24] audit: type=1326 audit(1726368157.658:6253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15450 comm="syz.2.3784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5117041ef9 code=0x7ffc0000
[  988.903173][  T398] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  988.927356][T15468] tipc: Failed to remove local publication {66,1,1}/258196613
[  988.953136][T15468] tipc: Failed to remove local publication {66,1,1}/258196613
[  989.153804][T15477] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  989.173065][  T398] usb 2-1: Using ep0 maxpacket: 16
[  989.243536][T15478] overlayfs: statfs failed on './file0'
[  989.249624][T15479] overlayfs: statfs failed on './file0'
[  989.313170][  T398] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 11
[  989.331637][  T398] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  989.354135][  T398] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  989.400332][  T398] usb 2-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  989.417844][  T398] usb 2-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  989.435955][  T398] usb 2-1: config 1 interface 0 has no altsetting 0
[  989.442407][  T398] usb 2-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  989.471067][  T398] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  989.534080][  T398] ums-sddr09 2-1:1.0: USB Mass Storage device detected
[  989.595762][T15489] input: syz0 as /devices/virtual/input/input46
[  989.605259][T15489] input: failed to attach handler leds to device input46, error: -6
[  989.750306][  T398] scsi host1: usb-storage 2-1:1.0
[  989.783072][T11951] usb 3-1: new high-speed USB device number 112 using dummy_hcd
[  989.965472][T11184] usb 2-1: USB disconnect, device number 15
[  990.163915][T15504] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  990.373136][T11951] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  990.383376][T11951] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  990.396337][T11951] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  990.405280][T11951] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  990.413976][T11951] usb 3-1: config 0 descriptor??
[  992.324431][T15550] overlayfs: statfs failed on './file0'
[  992.573144][T13548] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  993.260438][   T24] kauditd_printk_skb: 58 callbacks suppressed
[  993.260464][   T24] audit: type=1400 audit(1726368163.168:6312): avc:  denied  { unmount } for  pid=14735 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  993.373085][T13548] usb 5-1: Using ep0 maxpacket: 8
[  993.398408][ T5633] usb 3-1: USB disconnect, device number 112
[  993.546300][T13548] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  993.557904][T13548] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  993.573077][T13548] usb 5-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  993.581918][T13548] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  993.604096][T13548] usb 5-1: config 0 descriptor??
[  993.773225][   T24] audit: type=1400 audit(1726368163.648:6313): avc:  denied  { create } for  pid=15561 comm="syz.1.3815" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  993.881547][   T24] audit: type=1400 audit(1726368163.658:6314): avc:  denied  { setopt } for  pid=15561 comm="syz.1.3815" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  993.943084][T11951] usb 1-1: new high-speed USB device number 125 using dummy_hcd
[  994.124916][T13548] hid (null): usage index exceeded
[  994.133508][T13548] hid-generic 0003:2087:0703.0065: unknown main item tag 0x0
[  994.141010][T13548] hid-generic 0003:2087:0703.0065: ignoring exceeding usage max
[  994.152091][T13548] hid-generic 0003:2087:0703.0065: usage index exceeded
[  994.159090][T13548] hid-generic 0003:2087:0703.0065: item 0 0 2 0 parsing failed
[  994.166878][T13548] hid-generic: probe of 0003:2087:0703.0065 failed with error -22
[  994.217981][   T24] audit: type=1326 audit(1726368164.128:6315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15575 comm="syz.1.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  994.241800][   T24] audit: type=1326 audit(1726368164.128:6316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15575 comm="syz.1.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  994.265850][   T24] audit: type=1326 audit(1726368164.128:6317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15575 comm="syz.1.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  994.289566][   T24] audit: type=1326 audit(1726368164.128:6318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15575 comm="syz.1.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  994.358670][T11951] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  994.379304][   T24] audit: type=1326 audit(1726368164.128:6319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15575 comm="syz.1.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  994.407100][T11951] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  994.423063][T11951] usb 1-1: New USB device found, idVendor=1a7d, idProduct=30d4, bcdDevice= 0.00
[  994.431955][T11951] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  994.453106][   T24] audit: type=1326 audit(1726368164.128:6320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15575 comm="syz.1.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  994.484037][T11951] usb 1-1: config 0 descriptor??
[  994.503110][   T24] audit: type=1326 audit(1726368164.148:6321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15575 comm="syz.1.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbce39f9ef9 code=0x7ffc0000
[  994.563381][T13548] usb 5-1: USB disconnect, device number 36
[  994.643150][   T20] usb 3-1: new high-speed USB device number 113 using dummy_hcd
[  995.073479][   T20] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  995.121083][   T20] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  995.176050][   T20] usb 3-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[  995.203445][   T20] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  995.219197][   T20] usb 3-1: config 0 descriptor??
[  995.323093][  T860] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  995.432254][T15600] overlayfs: statfs failed on './file0'
[  995.825520][   T20] pantherlord 0003:0F30:0111.0066: item fetching failed at offset 6/7
[  995.834877][   T20] pantherlord 0003:0F30:0111.0066: parse failed
[  995.841294][   T20] pantherlord: probe of 0003:0F30:0111.0066 failed with error -22
[  995.855389][  T860] usb 2-1: Using ep0 maxpacket: 8
[  995.983132][  T860] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  995.994009][  T860] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  996.003512][  T860] usb 2-1: New USB device found, idVendor=2087, idProduct=0703, bcdDevice= 0.00
[  996.012395][  T860] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  996.021007][  T860] usb 2-1: config 0 descriptor??
[  996.025460][   T20] usb 3-1: USB disconnect, device number 113
[  996.494999][T11184] usb 1-1: USB disconnect, device number 125
[  996.727372][T15621] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3830'.
[  996.736220][T15621] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3830'.
[  996.756385][T15621] netlink: 140 bytes leftover after parsing attributes in process `syz.2.3830'.
[  997.077016][  T860] hid (null): usage index exceeded
[  997.082978][  T860] hid-generic 0003:2087:0703.0067: unknown main item tag 0x0
[  997.090665][  T860] hid-generic 0003:2087:0703.0067: ignoring exceeding usage max
[  997.100176][  T860] hid-generic 0003:2087:0703.0067: usage index exceeded
[  997.107335][  T860] hid-generic 0003:2087:0703.0067: item 0 0 2 0 parsing failed
[  997.116032][  T860] hid-generic: probe of 0003:2087:0703.0067 failed with error -22
[  997.162966][T14339] tipc: Disabling bearer <udp:s>
[  997.174041][T14339] tipc: Left network mode
[  997.712118][  T860] usb 2-1: USB disconnect, device number 16
[  997.781701][T15653] general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN
[  997.793246][T15653] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]
[  997.801487][T15653] CPU: 1 PID: 15653 Comm: syz.4.3838 Not tainted 5.10.225-syzkaller-00513-g8d23314f588a #0
[  997.811301][T15653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  997.821196][T15653] RIP: 0010:do_unlinkat+0x3b2/0x8b0
[  997.826229][T15653] Code: de e8 f2 89 b6 ff 31 c0 81 fb 00 00 20 00 0f 94 c0 41 bf ec ff ff ff 41 29 c7 e9 99 00 00 00 49 8d 7d 30 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 05 e8 12 20 f4 ff 49 8b 45 30 48 89 44 24 28 4c
[  997.845667][T15653] RSP: 0018:ffffc90001137da0 EFLAGS: 00010207
[  997.851559][T15653] RAX: 0000000000000006 RBX: 0000000000000000 RCX: ffff888115f3a780
[  997.859373][T15653] RDX: ffff888115f3a780 RSI: 0000000000000000 RDI: 0000000000000034
[  997.867197][T15653] RBP: ffffc90001137f18 R08: ffffffff81b42643 R09: ffffed10220ce60c
[  997.874997][T15653] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  997.882899][T15653] R13: 0000000000000004 R14: 1ffff110220ce606 R15: dffffc0000000000
[  997.890713][T15653] FS:  00007f15402926c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  997.899476][T15653] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  997.905901][T15653] CR2: 000000002006e030 CR3: 0000000136b7e000 CR4: 00000000003506a0
[  997.913708][T15653] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  997.921522][T15653] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  997.929342][T15653] Call Trace:
[  997.932466][T15653]  ? __die_body+0x62/0xb0
[  997.936623][T15653]  ? die_addr+0x9f/0xd0
[  997.940622][T15653]  ? exc_general_protection+0x3ff/0x490
[  997.946008][T15653]  ? asm_exc_general_protection+0x1e/0x30
[  997.951555][T15653]  ? do_unlinkat+0x333/0x8b0
[  997.955983][T15653]  ? do_unlinkat+0x3b2/0x8b0
[  997.960411][T15653]  ? fsnotify_link_count+0x90/0x90
[  997.965354][T15653]  ? strncpy_from_user+0x18e/0x2d0
[  997.970303][T15653]  ? getname_flags+0x1fd/0x520
[  997.974902][T15653]  __x64_sys_unlink+0x49/0x50
[  997.979410][T15653]  do_syscall_64+0x34/0x70
[  997.983666][T15653]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  997.989391][T15653] RIP: 0033:0x7f154165aef9
[  997.993662][T15653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  998.013089][T15653] RSP: 002b:00007f1540292038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[  998.021332][T15653] RAX: ffffffffffffffda RBX: 00007f1541813130 RCX: 00007f154165aef9
[  998.029141][T15653] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000300
[  998.036955][T15653] RBP: 00007f15416cdb76 R08: 0000000000000000 R09: 0000000000000000
[  998.043087][T11184] usb 3-1: new high-speed USB device number 114 using dummy_hcd
[  998.044759][T15653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  998.044777][T15653] R13: 0000000000000000 R14: 00007f1541813130 R15: 00007ffe71483108
[  998.067863][T15653] Modules linked in:
[  998.079167][T15653] ---[ end trace 6ebff45cc4a8aef6 ]---
[  998.087533][T15653] RIP: 0010:do_unlinkat+0x3b2/0x8b0
[  998.092561][T15653] Code: de e8 f2 89 b6 ff 31 c0 81 fb 00 00 20 00 0f 94 c0 41 bf ec ff ff ff 41 29 c7 e9 99 00 00 00 49 8d 7d 30 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 05 e8 12 20 f4 ff 49 8b 45 30 48 89 44 24 28 4c
[  998.119496][T15653] RSP: 0018:ffffc90001137da0 EFLAGS: 00010207
[  998.125477][T15653] RAX: 0000000000000006 RBX: 0000000000000000 RCX: ffff888115f3a780
[  998.126192][T15658] device veth0_vlan left promiscuous mode
[  998.133303][T15653] RDX: ffff888115f3a780 RSI: 0000000000000000 RDI: 0000000000000034
[  998.146661][T15653] RBP: ffffc90001137f18 R08: ffffffff81b42643 R09: ffffed10220ce60c
[  998.153440][T15658] device veth0_vlan entered promiscuous mode
[  998.154575][T15653] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  998.168414][T15653] R13: 0000000000000004 R14: 1ffff110220ce606 R15: dffffc0000000000
[  998.176288][T15653] FS:  00007f15402926c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  998.185209][T15653] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  998.191577][T15653] CR2: 00000000200ec030 CR3: 0000000136b7e000 CR4: 00000000003506b0
[  998.199610][T15653] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  998.207511][T15653] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  998.215297][T15653] Kernel panic - not syncing: Fatal exception
[  998.221381][T15653] Kernel Offset: disabled
[  998.225521][T15653] Rebooting in 86400 seconds..