last executing test programs:

10.346048168s ago: executing program 0 (id=3289):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
syz_emit_vhci(&(0x7f00000006c0)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYRES64=r0, @ANYRES32=r0, @ANYRESHEX=r0, @ANYBLOB="95f2726d17966fc57ab02aee8545d78210bcf6d3484beced258fdd44cc1149a2be8bc60b22bba8a12a33551dba59ca02eff46f3b6074d7118768b7c3cc0d17df8e1dd246c2448c78501d7984ca7e7a0a38455e49daf761bc4428b7995a5e3232f247a879d0891a38792ae70ca522c95f63f40df38081a5101c5a79408a9e39cb3ca35761f21723bff2524b27d5f40ece2ef49a5df37241c64c61ece6eb938c64c415a3e4", @ANYRES8=0x0], 0x22)
syz_emit_vhci(&(0x7f00000004c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x100010, r0, 0x8aa07000)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00'})
syz_emit_vhci(&(0x7f0000000880)=ANY=[@ANYBLOB="040900000000000000001b73d3f13beeaefe48f8040095402f915170770dc8526bbf87534c2dd1e3e4e7872729e09033ea57dc5551eacc2dfb696c75a310b65ea4bf3288473416c5a12644b31d7672cae43f78ec75d0cef490c0adb3808fb63f4f880567eab9df53fc37dafe175c0b761ef1c200000000000000000000000000aaa60c2ea2ec8303a16a62823326647c63d67bdcb6fcf7121a7ee9092d557e06d21d5b96b7b36d8927f1ffe370a89ff87a0a6316303edcfb01c839ee02973064224bee385eae3fa33b9c9927cf33efa6febd51f06f9db30c4795b4e2556e5185c02cdc"], 0xd)
syz_emit_vhci(&(0x7f0000000500)=ANY=[@ANYBLOB="a12a12099b629573c39eb04e7b1c8c3c2515fc5bbde5dda9854b29e179071bab74694e88261e07f4d1e51edb41961811262fc83c7fbf67a5f183c344dbd62924b6f9ec8b74d1e63a3385c565284a61a96a6be8e05fc7588a1e19aa0cf3c25b4988dc38f0ba1b0c5dfa5da649b79b1736cf84b6bae042179300e406fe8c615637291bfa3457a51606d08098c06fc49b5e90bd357656e2a7a6ad3f3b6935456784104c5272d0435283c5cc8bd8f29a67823295f900"/194], 0x5c)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000180)={'#! ', './file0'}, 0xb)
preadv(r1, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x5, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x800f)
ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000000200)={&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000300)=""/108, 0xfffffffffffffd2b})
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="030f0404000000000000001620"], 0x7)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000ac0)={[0x0, 0x825, 0x4, 0x0, 0x4, 0x8000, 0x9, 0x10005, 0x0, 0xffffffff, 0x0, 0x414, 0x2, 0x10001, 0xfffffffffffff924, 0xffffffff7fffffff], 0x2000, 0x323804})
syz_open_dev$sndpcmc(&(0x7f0000000400), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x3)
readv(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r3, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x8})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)}, 0x0)
write(r1, &(0x7f0000000600)="5d4525aa7a2353ee05eb0a2d01f62fd3ba62a75819d7eaa3c2b79612e4da618d0999ea6ab2a2c1a79b3518ca507c3d8dbeadd69a3dbf762e3ff3fed45b026cfd7cb5ef22f76f4efb98440699196af62c8a2c7533179e5c62e8ee14bb74e8c974ade8f4d9c03d9a577b70ec88587430100ba80eec11e3b3369edb5eb2bd780b7357469862b9e8c9d82b655f496febfba6461e54", 0x93)
ioctl$sock_netdev_private(r3, 0x8914, &(0x7f0000000000))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380))
openat$vcsu(0xffffff9c, &(0x7f0000001780), 0x200400, 0x0)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000240)={0x0, 0x4, 0xff, 0x70f, @vifc_lcl_addr=@dev={0xac, 0x14, 0x14, 0x40}, @rand_addr=0x64010100}, 0x10)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)

7.873426911s ago: executing program 0 (id=3298):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x18, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}}, 0x18}}, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r7}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
close(r8)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r8, 0x0, 0x4ffe6, 0x0)
r9 = syz_open_procfs(r0, &(0x7f0000000440)='net/sockstat\x00')
socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r9, 0x89f0, 0x0)
sendmsg$nl_xfrm(r10, 0x0, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000000)={r9, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x8, 0x0, "82ffe9a7ca8d338e0978c80c568a9d94969744223a3bf7b1ce1f566ac0b5502df67a3a54817e92bda7e02337b5186bf1532b41dc173f2ef38ea641dbf4bea193", "2c8d978bbbaf836770b6bc05c7d33d4ba1eeb28b81365fd5b98b898cd82f59b99d77af213e51d53d7e04d4e85e1d41ee121ea3aad63b499c7a25e1b181ac9ebf", "9fef7affaecac6ed08f4c36330801327cabc8491b2a7e8063de5ae1f02b8cb3a", [0x0, 0x3]}})
preadv(r9, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0xfffff62d, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r11}, 0x10)

6.846900327s ago: executing program 3 (id=3301):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000140), &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13})
io_uring_enter(r4, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r7, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x14004020}, 0xc, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x0)
open$dir(&(0x7f0000001640)='./file0\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x3c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}]}], {0x14}}, 0x64}}, 0x0)

6.846085536s ago: executing program 0 (id=3302):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0xe9)
set_mempolicy(0x2, &(0x7f0000000000)=0x7, 0xa)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x810, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
shmget$private(0x0, 0x4000, 0x800, &(0x7f0000a02000/0x4000)=nil)
r2 = syz_open_dev$MSR(&(0x7f0000000500), 0x0, 0x0)
r3 = getpid()
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="340000001c00070c000000000000000007000000", @ANYRES32, @ANYBLOB="020000000a000200aa"], 0x34}}, 0x0)
process_vm_readv(r3, 0x0, 0x0, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
ptrace$peeksig(0x4209, r3, 0x0, &(0x7f0000000540)=[{}, {}, {}, {}, {}])
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
gettid()
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000300)={0x0, 0x1, 0x7})
mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0)

6.047760283s ago: executing program 2 (id=3303):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000200009500"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r5=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r3, r5, 0x25, 0x0, @void}, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r5}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292", 0xc)
r7 = accept4(r6, 0x0, 0x0, 0x0)
sendmmsg$unix(r7, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000240)="f0", 0x1}, {&(0x7f00000001c0)='u', 0x1}], 0x2}}], 0x1, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newqdisc={0x1a4, 0x24, 0x0, 0x0, 0xa4, {0x0, 0x0, 0x0, r5, {}, {0x0, 0xfff1}, {0x0, 0x8}}, [@TCA_STAB={0x180, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x7, 0xf3, 0x1, 0x6, 0x0, 0x7f, 0x8000, 0x4}}, {0xc, 0x2, [0x8, 0x0, 0x0, 0x7]}}, {{0x1c, 0x1, {0xfc, 0x6, 0x7f, 0x3ce5, 0x1, 0x5, 0x1, 0x7}}, {0x12, 0x2, [0x4, 0x8, 0x7, 0x0, 0x5b4, 0xfaec, 0x8]}}, {{0x1c, 0x1, {0x4, 0x0, 0x90, 0x2, 0x2, 0x0, 0x7c29f73f, 0x8}}, {0x14, 0x2, [0x4, 0x60cc, 0x7ff, 0x4, 0xfffd, 0x5, 0x3, 0x2]}}, {{0x1c, 0x1, {0x41, 0xfd, 0x58d, 0x4c1, 0x2, 0x2, 0x4, 0x4}}, {0xc, 0x2, [0x6, 0x5, 0x5, 0xf]}}, {{0x1c, 0x1, {0x10, 0x6, 0x7, 0x4, 0x1, 0x480000, 0xd, 0x6}}, {0x10, 0x2, [0x8cc0, 0xf, 0x6, 0x5c0, 0x4, 0x5]}}, {{0x1c, 0x1, {0xb7, 0xe9, 0x48d9, 0x20, 0x2, 0x6, 0x81, 0x7}}, {0x12, 0x2, [0x10, 0x9, 0xf, 0xda, 0x2, 0xcc6, 0x2]}}, {{0x1c, 0x1, {0x6e, 0x2, 0x7, 0x5, 0x1, 0x7, 0xe, 0x3}}, {0xa, 0x2, [0xc, 0x5, 0x2c33]}}, {{0x1c, 0x1, {0xf3, 0x7, 0x6, 0x0, 0x1, 0x3, 0xfff, 0x1}}, {0x6, 0x2, [0x3]}}, {{0x1c, 0x1, {0xe0, 0x3, 0x7, 0xc, 0x0, 0x1ff, 0x4, 0x1}}, {0x6, 0x2, [0x0]}}]}]}, 0x1a4}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
close(r8)
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat$hpet(0xffffff9c, &(0x7f0000000280), 0x200, 0x0)
ioctl$sock_SIOCINQ(r9, 0x541b, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
r10 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r10, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x74, 0x30, 0x216822a75a8bdd29, 0x0, 0x0, {}, [{0x60, 0x1, [@m_skbmod={0x5c, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_PARMS={0x24}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r10, 0x40045612, &(0x7f0000000000)=0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')

5.924135086s ago: executing program 3 (id=3304):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
clock_adjtime(0x0, &(0x7f00000006c0)={0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2902})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$UI_DEV_DESTROY(r1, 0x5502)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = socket$l2tp(0x2, 0x2, 0x73)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000140)='./file1\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r4, 0x80000300, 0x0, 0x0)
quotactl_fd$Q_QUOTAON(r4, 0xffffffff80000200, 0x0, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000140)={'macvlan0\x00', &(0x7f0000000100)=@ethtool_rxfh={0x46, 0x0, 0x0, 0x0, 0x0, "492ea9"}})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
syz_open_dev$video(&(0x7f0000000240), 0x200, 0x200440)
sendmsg$NL80211_CMD_ADD_TX_TS(r5, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='8\x00\x00', @ANYRES16=r6, @ANYBLOB], 0x38}}, 0x4000050)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$FIOCLEX(r3, 0x5451)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r8 = openat$sndseq(0xffffff9c, &(0x7f0000000000), 0xc2100)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r8, 0xc0605345, &(0x7f0000000040)={0x3, 0x1, {0x1, 0x0, 0xe2, 0x0, 0x9}, 0x1})
fcntl$lock(r8, 0x26, &(0x7f0000000340)={0x1, 0x4, 0x101, 0x5, r2})
connect$llc(r0, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x10)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11}, &(0x7f0000000140))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

5.423536908s ago: executing program 0 (id=3305):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0xe9)
set_mempolicy(0x2, &(0x7f0000000000)=0x7, 0xa)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x810, 0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
shmget$private(0x0, 0x4000, 0x800, &(0x7f0000a02000/0x4000)=nil)
r2 = syz_open_dev$MSR(&(0x7f0000000500), 0x0, 0x0)
r3 = getpid()
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="340000001c00070c000000000000000007000000", @ANYRES32, @ANYBLOB="020000000a000200aa"], 0x34}}, 0x0)
process_vm_readv(r3, 0x0, 0x0, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
ptrace$peeksig(0x4209, r3, &(0x7f0000000080)={0x1000}, &(0x7f0000000540))
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
gettid()
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
syz_io_uring_setup(0x0, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000300)={0x0, 0x1, 0x7})
mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0)

5.078217945s ago: executing program 1 (id=3306):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000140), &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13})
io_uring_enter(r4, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r7, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x14004020}, 0xc, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x0)
open$dir(&(0x7f0000001640)='./file0\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x3c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}]}], {0x14}}, 0x64}}, 0x0)

5.051971541s ago: executing program 2 (id=3314):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r7}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
close(r8)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r8, 0x0, 0x4ffe6, 0x0)
r9 = syz_open_procfs(r0, &(0x7f0000000440)='net/sockstat\x00')
socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r9, 0x89f0, 0x0)
sendmsg$nl_xfrm(r10, 0x0, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000000)={r9, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x8, 0x0, "82ffe9a7ca8d338e0978c80c568a9d94969744223a3bf7b1ce1f566ac0b5502df67a3a54817e92bda7e02337b5186bf1532b41dc173f2ef38ea641dbf4bea193", "2c8d978bbbaf836770b6bc05c7d33d4ba1eeb28b81365fd5b98b898cd82f59b99d77af213e51d53d7e04d4e85e1d41ee121ea3aad63b499c7a25e1b181ac9ebf", "9fef7affaecac6ed08f4c36330801327cabc8491b2a7e8063de5ae1f02b8cb3a", [0x0, 0x3]}})
preadv(r9, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0xfffff62d, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r11}, 0x10)

4.245113451s ago: executing program 3 (id=3307):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0x20, &(0x7f0000000500)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x13}, [@initr0={0x18, 0x0, 0x0, 0x0, 0xffff744f, 0x0, 0x0, 0x0, 0x80000001}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xa}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @btf_id={0x18, 0x3, 0x3, 0x0, 0x1}, @map_fd={0x18, 0x5, 0x1, 0x0, 0x1}]}, &(0x7f00000003c0)='syzkaller\x00', 0x8, 0xb8, &(0x7f00000006c0)=""/184, 0x41000, 0x59, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x7, 0x1}, 0x8, 0x10, &(0x7f0000000600)={0x5, 0x4, 0x6, 0x101}, 0x10, 0x0, 0x0, 0x3, &(0x7f0000000780)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1], &(0x7f0000000a80)=[{0x1, 0x3, 0x9, 0x2}, {0x1, 0x2, 0xe}, {0x1, 0x0, 0x5, 0x5}], 0x10, 0x5, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0xe, &(0x7f00000016c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = fsopen(&(0x7f00000001c0)='erofs\x00', 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000000200)='dax\x00', 0x0, 0xffffffffffffff9c)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x20)
syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd60f91e2e00107300fc040000000000000000000000000000ff02000000000000000000000000000100000000ff"], 0x0)
ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000100))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r6=>0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r7, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)={0x20, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}]}, 0x20}}, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r8)
close(0xffffffffffffffff)
socket$netlink(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r8, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="02000000000a"})
r9 = openat$sequencer2(0xffffff9c, &(0x7f0000005e00), 0x0, 0x0)
ioctl$SNDCTL_TMR_STOP(r9, 0x5403)

4.125262041s ago: executing program 1 (id=3308):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_MPATH(r2, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB='h\x00', @ANYRES16=0x0, @ANYBLOB="080027bd7000ffdbdf25170000000a001a00ffffffffffff00000a00060008021100000100000a00060008021100000000000a00060008021100000100000a001a00ffffffffffff00000a000600ffffffffffff00000a001a000802110000000000"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4040000)
sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000003b0007010000000000000034b9a0d421d400027c0001040000001800018014e9900000000000000000006ab1f83919da00"/66], 0x30}}, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/consoles\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000003c0)='./binderfs2/custom1\x00', 0x802, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r7, 0x0, 0x0)
r8 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/tcp_sack\x00', 0x1, 0x0)
sendfile(r8, r3, &(0x7f0000002080)=0x64, 0x23b)
r9 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x80800)
sendmsg$alg(r9, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
rt_tgsigqueueinfo(0x0, 0xffffffffffffffff, 0x3d, &(0x7f0000000440)={0x33, 0x8, 0x2})
syz_open_dev$video4linux(&(0x7f0000000000), 0x9, 0x20040)
sendmsg$TIPC_NL_MEDIA_SET(r9, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000003c80)=ANY=[], 0x12f4}}, 0x0)
recvmsg$can_j1939(r9, 0x0, 0x40)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

3.973108524s ago: executing program 2 (id=3309):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x35)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={0x0, r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x4c, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
socket$packet(0x11, 0x0, 0x300)
r2 = socket(0x10, 0x803, 0x0)
syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b000000000000", 0x10, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@xino_auto}]})
chdir(&(0x7f0000000140)='./bus\x00')
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
r4 = open(&(0x7f0000000080)='./file1\x00', 0x12b842, 0x0)
sendfile(r4, r3, 0x0, 0x80000000)
recvmmsg(r2, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {0x0}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
r6 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r6, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d13"], 0x0)
recvmmsg(r6, &(0x7f0000000bc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r7, &(0x7f0000001800), 0x0, 0x0)
bind$bt_hci(r3, &(0x7f0000000340)={0x1f, 0x0, 0x4}, 0x6)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0x9)

3.196927246s ago: executing program 1 (id=3310):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r7}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
close(r8)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r8, 0x0, 0x4ffe6, 0x0)
r9 = syz_open_procfs(r0, &(0x7f0000000440)='net/sockstat\x00')
socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r9, 0x89f0, 0x0)
sendmsg$nl_xfrm(r10, 0x0, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000000)={r9, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x8, 0x0, "82ffe9a7ca8d338e0978c80c568a9d94969744223a3bf7b1ce1f566ac0b5502df67a3a54817e92bda7e02337b5186bf1532b41dc173f2ef38ea641dbf4bea193", "2c8d978bbbaf836770b6bc05c7d33d4ba1eeb28b81365fd5b98b898cd82f59b99d77af213e51d53d7e04d4e85e1d41ee121ea3aad63b499c7a25e1b181ac9ebf", "9fef7affaecac6ed08f4c36330801327cabc8491b2a7e8063de5ae1f02b8cb3a", [0x0, 0x3]}})
preadv(r9, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0xfffff62d, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r11}, 0x10)

3.077302932s ago: executing program 2 (id=3311):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000140), &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13})
io_uring_enter(r4, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r7, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x14004020}, 0xc, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x0)
open$dir(&(0x7f0000001640)='./file0\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x3c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}]}], {0x14}}, 0x64}}, 0x0)

2.859639367s ago: executing program 3 (id=3312):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000140), &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13})
io_uring_enter(r4, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r7, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x14004020}, 0xc, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x0)
open$dir(&(0x7f0000001640)='./file0\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x3c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}]}], {0x14}}, 0x64}}, 0x0)

1.980879447s ago: executing program 1 (id=3313):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r7}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
close(r8)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r8, 0x0, 0x4ffe6, 0x0)
r9 = syz_open_procfs(r0, &(0x7f0000000440)='net/sockstat\x00')
socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r9, 0x89f0, 0x0)
sendmsg$nl_xfrm(r10, 0x0, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000000)={r9, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x8, 0x0, "82ffe9a7ca8d338e0978c80c568a9d94969744223a3bf7b1ce1f566ac0b5502df67a3a54817e92bda7e02337b5186bf1532b41dc173f2ef38ea641dbf4bea193", "2c8d978bbbaf836770b6bc05c7d33d4ba1eeb28b81365fd5b98b898cd82f59b99d77af213e51d53d7e04d4e85e1d41ee121ea3aad63b499c7a25e1b181ac9ebf", "9fef7affaecac6ed08f4c36330801327cabc8491b2a7e8063de5ae1f02b8cb3a", [0x0, 0x3]}})
preadv(r9, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0xfffff62d, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r11}, 0x10)

1.979770273s ago: executing program 2 (id=3315):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c0000000206010800000000000000000000010006000000050005000a000000050004000000000011000300686173683a6e65742c6e657400"/72, @ANYRESDEC=r0], 0x4c}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000005c0)={0x0, @dev, @private}, &(0x7f0000000600)=0xc)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r2 = syz_open_dev$cec(&(0x7f0000000340), 0x0, 0x0)
ioctl$CEC_DQEVENT(r2, 0xc0506107, &(0x7f0000000200)={0x0, 0x0, 0x0, @lost_msgs})
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r1, 0x80089419, &(0x7f0000000440))
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
socket$inet6(0xa, 0xa, 0x101)
r4 = syz_open_dev$hidraw(&(0x7f0000002300), 0x243c2917, 0x14a042)
r5 = syz_open_dev$hidraw(&(0x7f0000002300), 0x243c2917, 0x14a042)
write$hidraw(r5, &(0x7f0000003000)="297860dfde1863c08be8a1b7ad03094335f03542a50ea1e811193af3fb75f07ebb230f0791102fcd36124dd6fe8af416d0cb4bbbebbd8f1396a4772e1e9bc2c9e18ec784a3a99bc0f612d783b6822e8c7d2fd6f3e32710a16907ba29fc540e5f7a84138d2b91d7f7c68a43c4aa95ddd5adda44c7d132c5a51435d891e0804aa2f10e6ac281ec9f9e4538066bb7b9d692f30357780059f3bb86876d2ed600588fbd47a73825e61607fc361a459ee650333870af5d4c828d7f7799f662e7f043292136de6a9c3d928d95ed36f316329fe4a37af00bc0f200045538ba0961168a72ce5a358100d07b9c92c687926dd42b4a85ba8b7b150a99a000f4b3985c277ee70ff96c12c2c5625677f29cbcbf1cf9228c35f3a1bcf71e3a69b959413ce88746fbd18ac526335460496df9afb86c9011482dd00e57cf2898ad963f993d5fd94927aab1321cedc606d52d24c97997a04b5bebcbf2b55be90e35055b4a5d1b6eb70f7a7e5544c44d8a9f0f35755da03f642d385641b7d814d6c4aff7bfa4cf9b20c67633d517cb4fc431a5fc34d758e0bbb4860a05b5044aea1bcc14ff9ecb81e98af787abddff559ad8ea005e8efc5a9588b2dee9028e633e66c6c425f72c7c655b64b1284d21892e332dc53095268ad9a74b033f1cffc462177fae09fa528769fa5c4ed497cfd3119afae90c8a5fe2114a21595275ae10bbbe2aaee8a366a185235670049c5503e570f52087c53ab0c38db6b0b028e635fcb8882d0bb1be1872bd75f937aff57c7026525bfc2414250f8978e156de8bd6f2e15f026ee7333c9cf8892f81e868f9bccf942c77259808a14127df1b7ebee12b25041ba61afb81c9c4bccaaa0b181c74f6d6bc084d665ea4a744bc2364e6ad5fa3da0230ea4d1ffa883c3fe852e7a64ae91185f64a99e56beb11321f92a6dfe668a9d41acf9921c2497c0aaeae50c441fdf34fca82cc58ff1961eb6bd2eea0bea29213fcb39c5bd5199b3f0a7bda8629c9a98b6ebad502293f9f2c835b12c69d630cbea6b0e0c97ce8110d852bbc9e0a9a1eea66c2d0e47a6d51d44e2d8a8a5a980828bf0de3eea059f2597f398cb50cf2d9704dcef49ad9f5d3b4bd8729d57a7e665708780863d1f96c204cedba74cae9ee7b433d50a2bbedad81ba2aaff9d1a8e15bbc13ae86f469bffae227592768b968f27042137ec2568304448b8209f9b1822c899fa47f189aae3aa1e0e115581dc1c1dac3141e0dfeb85e87a12952852d5018f8f0d5ad5975320ae356b847f6cc9c89bb9d7a5e6728584a97b77a8054e129aac35623e30c169d444f0c58adb4148d734eb26fe57dad156ebf0a985ff946583dade5f183687997b7302f207840ced708719df301880d6fddf6e38fb04bd8c069303d55f6c8a07275434eaad6f8435f4096fe909c7e02f317c28975a7bad6ae1d883244ba6e72f5fcb24d832562449866b7bc6878775237dc5c0d9ccb1cd3b6fe67794a5af53ea7fb01de105809a84496ed2f03e20b1dfdab3d4cb21d8b4998f77595c4b99c183c821989fec094cb91ede61bf5c0d116c3116f903715e692675196d7e499a118c788a09a8f687aefd10af1c34f670dce4b5e628715ddcde04acc7299db87db83f8ef0d7c1d9979d7894d3d0d16e536d25789e86f2cab2856cf0b71efd91757f157da3300b1374fe80ea0d05b5ec52434f5b8c20dee83d2b92f338d4a3339aa3a78bf79d8260c55d002618b1444952bad36ba1c17dc801c1ad008f2bebdee89c54d582fdd89da995c5eb7b4c923c1e1d9d29207e92e913fa2187a10302052e6fa0da1c6134db7a4ad2679a0558a43d4d05d60cfa0ee41c7f458951a54173d91139142573794c594c65f25b93d7b7499956a2a5614a5aebc1567ea47cef87fca1d2a82d7f9eabdb7a933ffba467a3e26eeec8ab0a31358589cf451fbc90a9619c470424afc464308bf02b4208a72be8f74cc840fca700ae6e147da83fa27216179ef984c1dfce0c7bb5c8e0ac23b97748905b219bd75ef425a334660ec930b4ef6cc3ab0429794649149404d856d9c6ddaf69c66b60aabe8d214973f74db7760d26f9699a32246a0947a0af6a26841386298ff61a32bac3aa6e8fa5260c19e0b5db71a11d45ed34cb9a48ca56d1d2516e110e510aa5eddbbc207220dd7ac2fd77f1e219e6097e3a5cd15662c80169d00fb69cdac5e7246fdfdead45f91d8f3bc6c878d8ff0182e0f9efdc9330d55a04a01f08825e6e7df9e552f8f630f3344150c0bad7901eb9ef11c56fee9d86a7781bd34ed0c4da0a59366c7bc31fe01e8b01ceb9ed833c9759df103ab0e644282e951a0cc50e6c76217bebe6a2e6be568fc3670ce621f2379b22b77340986dc323e5f252ce4ff3a87295fb2d124ce7cd8afb00c1e3c187d0abbd448196256ac652112073ccae7577d27cbe3df18321e0fb435629737f51e849abadc065b8fdbe846ab31d11eaf80ef27eb60eca3d12944c43152a67c7e3ca484c4f325076846f87063e79f893d7f872a1cc4167b7f8474166ebc43e5c1e1adc6c963d77d6c9dd164cd37e12e8ce4699cd500a3b060bac1d778bbe2a5d36bc816ff5e75e8a32704a0f326a3a46c703549e0a7ef88f0fbde6598591f66aec1813cfc0de35986d0151ee79e1297a8932b400996672f092b50718f5ffb0159044552bae06811bc42d5b90e7cba3fc775916af5861d0025a1d3957a93f704e5ab5c2876e477a8a9df7efe6661c7e208cddf8f1a15bf030206a64f69e2fc26cfbcf1315d5f6d189e0da3c69c3bbcc14f70d6a6b02644e36decc52992545238112b5f3c2a80036a8af0ad8381b97162a7ff0565e2945f0182b13d6235437dee1a8f48aa847a6aafdf699dcec9e46c63f26e7fffb70a54129b7494ee3d9d97e220d2e418735d129be91bf24f0d0b22f9ef6dca7fdb60a34b59e3fda4d364d18451d385fd17dff74519a1f22470781c86d07fa66ffffab1d6aa413362570d38780340bdeeee6d4c5da51512c0757d69cac48c7c44441e1abb06b6a8943c093d732e8b39f85570c3e846a62b4cda5c0c5974a001433c8e3ffae9afff41419c0caa58f6853067bfb92b55c6ecd58503b8deebc44ab258064787dbeef58b0914dbc8cea6bffbe619ff976d7987648457ee49c7744f58f919906c1987bebfb13b14ef8bc40dc7a95c34a825efd517c95fa5380073421efb95ae6e4ff3ece3f4501c918521b230dd169ee6ddb5f09c8762287c28a2b9a75d569f392bb7184edae72084e1fc295347d16caabe0196a7f679687f399dfaaffc537544b9f8cf27b2a44217187308845ce2bb3227412aa9d6a582800540fb715e0483c96f5e66247616f59bc275036b622502191ca3b29749f79675f88a6ad9b304e9cbe21a2c817db9622bac725246a71b9c8659d81b75cc1d37ca5797270ef9f82124a2077ea408bd01dfc53cb701a2b276e322ee4ff268e540781b8d4066d75747aa27342c842ea569679f6d0146bf3c5fcd57f10cdc2a1cab835cf9e6c8924d4808c3beeb16c47f58484d0dc60a38612a4caeef41cc3b6c7adb651c2e024ec75c5a4af98450aac1638ae45c9cb902723d584ecef25345bb33255f65b0cc469c19a1ec84045a7e8388f7391ad31606cb6e3e46cf7eb48996a96ff4b7a2d97a8cb5da97842b28fc48b279ab99da252fffbd0034667c51e12406ea161dd9ea19bbe33ee464a45fed53939d104deb7febc9b362320d2c3008e27ae7094274bb75b7379e8db191ef34e1d9b648dda3de37c59fd2e6d569398c9fb3529976f12ea64a67f66a577ceed99da2899edc953feef13e3ac6952bef1c2443d25e6cabb7fb538920255650a7ffa05d43b9d87c2ed323b4edbf39f5a101986f2ef41cb14565d9f86584008548e6688fda0e95f13c3856368fafee0bc673d0d9cde94e500398785c14fcad3082684817d2d1ea4c96c207f2b12036ce0954639f4e4f2e0ff5bf4af919464359fb67208401cb1e6196e64534871a74e888b16dcc4f6c8872cd2f973788c5048e30ef9d863534017f4c35ae35dbc96d9bf487a181b2edeeb8d5bade6d0df4214a70a1feb58b0bc94eb601b8a2c0f3d4012bc215d0bc3fc9f548d58a02df1a4a5b071829665be43396bc8de262f69f245888699c611354428c9f31ac0a59cbb6fd1cddcfb7cbc5a1fb4d10627d8e37940052945c1da8c9994ef34372baad992cbaa20511c0064762d70edcfd6da5c4d7ed9a9e951656ce24b22f32bdef9707ecbb725b64c31ba0466259600260513d9f7652661d32e77236a4eb35597ad9962d93138374af9e09a14ff3b60f5b7e024b9f9867a9c13260115023ed09b11ae64cbafdafbdca3fbc5075ce311e18510a5220841813a3e0fab2e6f3e42e4ef745058bad080ab61a5c3393ab2e59e3e57707d0ca9c6978eb516204cd1492097fd44dbe46b6ea2c650f8aa7bb48f836bcdbe6748f2cd52314f1bc9594531b598e44f82e80ae4a0d09d713dffc1444c948ae98ffe49ec1985b12870d104942bcfa7aca4c55d01b160cac2f67bc9eeeac3fc04708de40e4b9cee99e8c1409f3a161f3dbf4eda628f92df6b51939bcf6d5edbac55cc28480f9ca49bc1d4dc5139bfb5755c6217b784c5e337102e9f5d290d66c712548110eb65c92927409a4c8f8caa8ba8d50ef09a7d0c4077593dc7394416ec21daf38c7460e0bb5584b463f3080d453f39f39c5ed7a0bdc402447a2f77154dbeebc951fecbe5c6d95daa82a849c52909b06eca7edb175ecef1f4a1bbdfde650ccfe7ee1d79f68ad372b238a6edf93a7893912b33c4ad59ef9c7d4074329b5a35712a956397b941f7f660542127cff35e1dcb0b0d6ef3352537cda87a274022d81e0ed7b9a7a9249e00f934bcc8f4c3dc8ee8225f6cc5d91d343bf7e1d866716bfd3f651ce04fa6504229a0cfba1600ab8a9ddf670c59737558dccabb39436f507b60377e438f7ebfdefc4bed6ef3716cd75ebebdbddfddf79ab2f28093b1fb0de2fbedd8ca1a1c0103396ff2b5b8d698e0317c9da7cfe8de0856c2156305fa90d22ac0cb1706a12fbb80596202d6d286422c1f8ce8e70e2c43449b4e5f457c1ed92354f1bbb9ebd0c72e13639ff5e0f4e4a21593b8c05bec7f6dd097bc23bc8e202241f8f5fe81ad72479c5f4542b79644f722d80e140b8a0ed3a7f09702b3340f0e2d3e69c5c26c1e6d08621297670a006d07496f5cc09edb1841d941ccf1fb9f9ef5391d1a11a4638aa287fe87a8dda89eba495f6ad25f50f69773143961d076558fa10482f615fe8d5c8fdf2d3265c76bd23b7de8ea1204d1ad0c8d787d59ae47e000b61812dcba8a8253af88d6575b6001180bb4bd6e811338d07848737fa6b368447ed640af0c2edec2284056b05ae4bd5e939d0097daf22433eeca39548cee7d197c31b8aa1e9780d834a0c5396b34aa53aa725844cb7afda83dbf3caebe9a2bbc2174a8e2f8a48e4af3d4a1ee3690a81ae4f2ca0a70145720da67083576058d7b6cd1e7ac86bbed5d3247cc918d20bcbf053675dadb3970e06621748299c17b93c8b969904e72d6bffddc31ed279b5cf4df1799c4b0988c8f87505652c3626bc33f26361e496db09bae6ad6b26a6a1dd0506be9139905368256638468b596ac343fea3e5511899d757c4ea1f571a189545e6e6282833ef18f2b2962b3905ccf69f4bfd0e07268f2c4dc80c68b24b9555ef3eb3d4a9a52f4a993c260e4563319a8b13052be67c5dff1d54c250267c912d50a47f384daf400b728a9ac53ffc0019d9e39ed42c17bb1ee49ff65b3f", 0x6bc47488d130961f)
write$hidraw(r4, 0x0, 0x0)
syz_open_dev$hidraw(&(0x7f0000000000), 0x5, 0x28203)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000041c0)={'syztnl2\x00', 0x0})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x9, 0x505, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000002c0), 0xa7d, r6}, 0x38)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={0xffffffffffffffff, r7, 0x32, 0x0, @void}, 0x10)
write$binfmt_misc(r7, &(0x7f0000000080)=ANY=[@ANYBLOB="5500030007"], 0xd)
sendmsg$802154_raw(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x20040010)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1.691169797s ago: executing program 3 (id=3316):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r7, 0x0, 0x4ffe6, 0x0)
r8 = syz_open_procfs(r0, &(0x7f0000000440)='net/sockstat\x00')
socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r8, 0x89f0, 0x0)
sendmsg$nl_xfrm(r9, 0x0, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000000)={r8, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x8, 0x0, "82ffe9a7ca8d338e0978c80c568a9d94969744223a3bf7b1ce1f566ac0b5502df67a3a54817e92bda7e02337b5186bf1532b41dc173f2ef38ea641dbf4bea193", "2c8d978bbbaf836770b6bc05c7d33d4ba1eeb28b81365fd5b98b898cd82f59b99d77af213e51d53d7e04d4e85e1d41ee121ea3aad63b499c7a25e1b181ac9ebf", "9fef7affaecac6ed08f4c36330801327cabc8491b2a7e8063de5ae1f02b8cb3a", [0x0, 0x3]}})
preadv(r8, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0xfffff62d, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r10}, 0x10)

1.175418501s ago: executing program 0 (id=3317):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000140), &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13})
io_uring_enter(r4, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r7, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x14004020}, 0xc, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x0)
open$dir(&(0x7f0000001640)='./file0\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x3c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}]}], {0x14}}, 0x64}}, 0x0)

1.06626448s ago: executing program 1 (id=3318):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(aes-aesni)\x00'}, 0x58)
syz_open_dev$dri(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0xb989)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x6, 0x4, 0x40, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0), &(0x7f0000000380), 0xfff, r2, 0x0, 0xa0028000}, 0x38)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
accept4(r1, &(0x7f0000000140)=@ax25={{}, [@rose, @null, @remote, @rose, @netrom, @netrom, @rose, @netrom]}, &(0x7f00000000c0)=0x80, 0x40000)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r3, &(0x7f0000000180)={0x0, 0xff1f, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x1411, 0x1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8, 0x4b, 0x13}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8}]}, 0x20}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c000000030800000000000000000000000000000900010073797a31000000081d00048008000340000000000800054008000000080007", @ANYRES64=r0, @ANYRESOCT=r0], 0x3c}, 0x1, 0x0, 0x0, 0x20000804}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="7800000039000900000f0f000000000001000000040000000c000180cafc080005470000080002"], 0x78}}, 0x0)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$sock_inet_sctp_SIOCINQ(r5, 0x541b, &(0x7f0000000000))
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r6)
sendmsg$NLBL_UNLABEL_C_STATICADD(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x4c, r7, 0x201, 0x0, 0x0, {0x3, 0x0, 0x26}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x35, 0x0, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'sit0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @dev}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev}]}, 0x4c}, 0x8, 0x3000000000002}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000bc0)={'wpan1\x00', <r10=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r8, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="0100000000000044ebf59565f20008000300", @ANYRES32=r10, @ANYBLOB="34002f800c00020000000000000000001c0003800800010002000000050002000000000008000400000000000800010000000000"], 0x50}}, 0x0)
write$RDMA_USER_CM_CMD_QUERY(0xffffffffffffffff, 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(0xffffffffffffffff, 0x3ba0, 0x0)
writev(r4, &(0x7f0000000000), 0x0)

689.300867ms ago: executing program 3 (id=3319):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10e, &(0x7f0000000140), &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13})
io_uring_enter(r4, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r7, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x14004020}, 0xc, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0x0)
open$dir(&(0x7f0000001640)='./file0\x00', 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x3c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x4}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}]}], {0x14}}, 0x64}}, 0x0)

507.481076ms ago: executing program 2 (id=3320):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x10b406, &(0x7f0000000400))
r2 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = open(&(0x7f0000000380)='./bus\x00', 0x64d142, 0x0)
mknodat$loop(r3, &(0x7f00000004c0)='./file1\x00', 0x2000, 0x1)
chdir(&(0x7f0000000140)='./bus\x00')
linkat(r2, &(0x7f00000002c0)='./file1\x00', r3, &(0x7f0000000440)='./file0\x00', 0x0)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x1d4)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@xino_off}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r4 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
mknodat$loop(r4, &(0x7f0000000340)='./file1\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
unlinkat(r4, &(0x7f0000000240)='./file1\x00', 0x0)
r5 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
r6 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
write$binfmt_elf64(r5, &(0x7f00000004c0)=ANY=[], 0xfe3c)
dup3(r6, r5, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x5, 0x0, 0x0, 0x2000, &(0x7f0000fe5000/0x2000)=nil})
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"])

67.503721ms ago: executing program 0 (id=3321):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, 0x0)
getsockname$packet(r5, 0x0, &(0x7f0000000280))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r7, 0x0, 0x4ffe6, 0x0)
r8 = syz_open_procfs(r0, &(0x7f0000000440)='net/sockstat\x00')
socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r8, 0x89f0, 0x0)
sendmsg$nl_xfrm(r9, 0x0, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000000)={r8, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x8, 0x0, "82ffe9a7ca8d338e0978c80c568a9d94969744223a3bf7b1ce1f566ac0b5502df67a3a54817e92bda7e02337b5186bf1532b41dc173f2ef38ea641dbf4bea193", "2c8d978bbbaf836770b6bc05c7d33d4ba1eeb28b81365fd5b98b898cd82f59b99d77af213e51d53d7e04d4e85e1d41ee121ea3aad63b499c7a25e1b181ac9ebf", "9fef7affaecac6ed08f4c36330801327cabc8491b2a7e8063de5ae1f02b8cb3a", [0x0, 0x3]}})
preadv(r8, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0xfffff62d, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r10}, 0x10)

0s ago: executing program 1 (id=3322):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x9, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb010018"], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r6}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}}, 0x0)
ioctl(0xffffffffffffffff, 0x8b32, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r3, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r2, 0x0, r7, 0x0, 0x4ffe6, 0x0)
r8 = syz_open_procfs(r0, &(0x7f0000000440)='net/sockstat\x00')
socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r8, 0x89f0, 0x0)
sendmsg$nl_xfrm(r9, 0x0, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e22, 0x18, 0x0, @wg=@data}}}}}, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000000)={r8, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x8, 0x0, "82ffe9a7ca8d338e0978c80c568a9d94969744223a3bf7b1ce1f566ac0b5502df67a3a54817e92bda7e02337b5186bf1532b41dc173f2ef38ea641dbf4bea193", "2c8d978bbbaf836770b6bc05c7d33d4ba1eeb28b81365fd5b98b898cd82f59b99d77af213e51d53d7e04d4e85e1d41ee121ea3aad63b499c7a25e1b181ac9ebf", "9fef7affaecac6ed08f4c36330801327cabc8491b2a7e8063de5ae1f02b8cb3a", [0x0, 0x3]}})
preadv(r8, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/223, 0xdf}], 0x1, 0xfffff62d, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='tlb_flush\x00', r10}, 0x10)

kernel console output (not intermixed with test programs):

xF has an invalid bInterval 255, changing to 11
[ 1136.513580][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1136.516260][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1136.526645][T22850] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1136.533838][T22199] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1136.536243][T22199] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1136.538279][T22199] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1136.543065][T22199] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1136.554561][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1136.557714][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1136.567519][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1136.595580][T22199] usb 7-1: string descriptor 0 read error: -22
[ 1136.597305][T22199] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1136.612732][T22199] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1136.679479][T22199] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1136.897453][    T8] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[ 1137.145317][    T8] usb 5-1: Using ep0 maxpacket: 8
[ 1137.225046][    T8] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1137.233375][    T8] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1137.243959][    T8] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1137.253852][    T8] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1137.263029][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1137.271920][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1137.281537][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1137.313047][    T8] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1137.315410][    T8] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1137.325365][    T8] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1137.332687][    T8] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1137.344518][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1137.347869][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1137.352486][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1137.357647][    T8] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1137.360068][    T8] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1137.362093][    T8] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1137.364868][    T8] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1137.368567][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1137.372490][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1137.376779][    T8] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1137.494265][    T8] usb 5-1: string descriptor 0 read error: -22
[ 1137.496878][    T8] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1137.499865][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1137.544858][    T8] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux1
[ 1137.603486][    T8] usb 7-1: USB disconnect, device number 17
[ 1137.632024][T22871] netlink: 16126 bytes leftover after parsing attributes in process `syz.3.2974'.
[ 1137.634627][T22871] netlink: 183228 bytes leftover after parsing attributes in process `syz.3.2974'.
[ 1137.850046][T20982] usb 5-1: USB disconnect, device number 26
[ 1138.099651][   T39] audit: type=1804 audit(2000001045.895:4899): pid=22883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2975" name="/newroot/781/bus/file0" dev="overlay" ino=5596 res=1 errno=0
[ 1138.258313][T22891] sp0: Synchronizing with TNC
[ 1138.266866][T22891] sp0: Found TNC
[ 1138.271228][T22891] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2976'.
[ 1138.569435][T22906] netlink: 16126 bytes leftover after parsing attributes in process `syz.3.2977'.
[ 1138.572159][T22906] netlink: 183228 bytes leftover after parsing attributes in process `syz.3.2977'.
[ 1138.658347][   T39] audit: type=1804 audit(2000001046.472:4900): pid=22907 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2978" name="/newroot/699/bus/file0" dev="overlay" ino=4862 res=1 errno=0
[ 1139.578436][   T39] audit: type=1804 audit(2000001047.438:4901): pid=22950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2981" name="/newroot/779/bus/file0" dev="overlay" ino=5601 res=1 errno=0
[ 1139.623442][T22951] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[ 1139.667839][T22918] [U] è``
[ 1140.594993][T22968] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2984'.
[ 1140.768262][T22968] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1140.811598][T22975] netlink: 16126 bytes leftover after parsing attributes in process `syz.2.2985'.
[ 1140.815139][T22975] netlink: 183228 bytes leftover after parsing attributes in process `syz.2.2985'.
[ 1140.961695][T22979] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2986'.
[ 1141.084068][T22984] netlink: 'syz.1.2987': attribute type 1 has an invalid length.
[ 1141.087450][T22984] netlink: 'syz.1.2987': attribute type 2 has an invalid length.
[ 1141.118033][T22199] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[ 1141.413699][T22999] netlink: 16126 bytes leftover after parsing attributes in process `syz.3.2988'.
[ 1141.417132][T22999] netlink: 183228 bytes leftover after parsing attributes in process `syz.3.2988'.
[ 1141.562542][   T39] audit: type=1804 audit(2000001049.527:4902): pid=22991 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2989" name="/newroot/785/bus/file0" dev="overlay" ino=5625 res=1 errno=0
[ 1141.620764][T22199] usb 5-1: Using ep0 maxpacket: 8
[ 1141.627810][T22199] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1141.630426][T22199] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1141.633794][T22199] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1141.636605][T22199] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1141.639884][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1141.643600][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1141.646572][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1141.652998][T22199] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1141.656438][T22199] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1141.660236][T22199] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1141.665790][T22199] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1141.669852][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1141.674710][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1141.678053][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1141.687164][T22199] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1141.691079][T22199] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1141.697088][T22199] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1141.703528][T22199] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1141.707420][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1141.710647][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1141.714797][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1141.739532][   T39] audit: type=1326 audit(2000001049.716:4903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23005 comm="syz.1.2990" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1141.741145][T22199] usb 5-1: string descriptor 0 read error: -22
[ 1141.753436][T22199] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1141.757609][T22199] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1141.838272][T22199] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1142.051157][   T39] audit: type=1326 audit(2000001050.031:4904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23010 comm="syz.2.2991" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1142.432233][   T39] audit: type=1804 audit(2000001050.430:4905): pid=23025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2992" name="/newroot/782/bus/file0" dev="overlay" ino=5628 res=1 errno=0
[ 1142.619615][    T8] usb 5-1: USB disconnect, device number 27
[ 1143.070937][T23029] sp0: Synchronizing with TNC
[ 1143.085608][T23029] sp0: Found TNC
[ 1143.096769][T23029] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2993'.
[ 1143.349430][   T39] audit: type=1804 audit(2000001051.406:4906): pid=23035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2994" name="/newroot/703/bus/file0" dev="overlay" ino=4892 res=1 errno=0
[ 1143.378002][T23034] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2995'.
[ 1143.602330][T23042] overlay: Unknown parameter '/'
[ 1143.680381][T23045] overlayfs: failed to resolve './file0': -2
[ 1143.862916][T23028] [U] è`
[ 1145.172293][   T39] audit: type=1804 audit(2000001053.317:4907): pid=23051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2998" name="/newroot/651/bus/file0" dev="overlay" ino=4834 res=1 errno=0
[ 1145.256706][T23049] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2997'.
[ 1145.378936][T23059] sp0: Synchronizing with TNC
[ 1145.383733][T23059] sp0: Found TNC
[ 1145.553819][T23063] netlink: 16126 bytes leftover after parsing attributes in process `syz.2.3000'.
[ 1145.558079][T23063] netlink: 183228 bytes leftover after parsing attributes in process `syz.2.3000'.
[ 1145.722179][T23066] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3002'.
[ 1146.134542][T23057] [U] è`
[ 1146.502042][   T39] audit: type=1326 audit(2000001054.713:4908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23083 comm="syz.2.3003" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1146.963817][T23099] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3005'.
[ 1147.328988][T14642] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1147.329023][ T5341] Bluetooth: hci4: command 0x1003 tx timeout
[ 1148.019232][   T39] audit: type=1326 audit(2000001056.298:4909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23110 comm="syz.2.3008" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1148.275099][   T39] audit: type=1804 audit(2000001056.571:4910): pid=23120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3009" name="/newroot/787/bus/file0" dev="overlay" ino=5662 res=1 errno=0
[ 1148.277885][T23119] sp0: Synchronizing with TNC
[ 1148.313771][T23123] sp0: Found TNC
[ 1148.345639][T23119] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3010'.
[ 1149.023314][T23118] [U] è`
[ 1149.072962][   T39] audit: type=1326 audit(2000001057.411:4911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23124 comm="syz.0.3011" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x0
[ 1149.246110][   T39] audit: type=1804 audit(2000001057.526:4912): pid=23131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3012" name="/newroot/788/bus/file0" dev="overlay" ino=5676 res=1 errno=0
[ 1149.679091][T23133] sp0: Synchronizing with TNC
[ 1149.693034][T23133] sp0: Found TNC
[ 1149.704033][T23133] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3013'.
[ 1149.894716][T23136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3014'.
[ 1150.355607][   T39] audit: type=1326 audit(2000001058.660:4913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23137 comm="syz.3.3016" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1150.436218][   T39] audit: type=1804 audit(2000001058.839:4914): pid=23142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3017" name="/newroot/656/bus/file0" dev="overlay" ino=4869 res=1 errno=0
[ 1150.459873][T23132] [U] è`
[ 1151.312725][T17888] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1151.314638][T17888] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1151.316441][T17888] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1151.318457][T17888] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1151.322988][T17888] Bluetooth: hci4: Frame reassembly failed (-84)
[ 1151.636631][T23160] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3021'.
[ 1151.645873][T23160] openvswitch: Êü: Dropping previously announced user features
[ 1151.675581][T23161] Process accounting resumed
[ 1151.767138][   T39] audit: type=1326 audit(2000001060.245:4915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.1.3022" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1152.083304][T23169] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3024'.
[ 1152.189800][T23173] netlink: 16126 bytes leftover after parsing attributes in process `syz.3.3023'.
[ 1152.193424][T23173] netlink: 183228 bytes leftover after parsing attributes in process `syz.3.3023'.
[ 1152.278787][T23176] netlink: 16126 bytes leftover after parsing attributes in process `syz.0.3025'.
[ 1152.281209][T23176] netlink: 183228 bytes leftover after parsing attributes in process `syz.0.3025'.
[ 1153.082829][T23198] sp0: Synchronizing with TNC
[ 1153.096255][T23198] sp0: Found TNC
[ 1153.116356][T23198] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3026'.
[ 1153.243410][   T45] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1153.272391][ T5341] Bluetooth: hci4: command 0x1003 tx timeout
[ 1153.274517][T14642] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1153.323911][T23208] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3028'.
[ 1154.093915][T23235] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[ 1154.096962][T23206] [U] è``
[ 1154.937519][T23246] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3031'.
[ 1154.940813][T23246] openvswitch: Êü: Dropping previously announced user features
[ 1155.177665][ T4771] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1155.305016][T23252] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3033'.
[ 1155.398091][   T39] audit: type=1804 audit(2000001063.920:4916): pid=23250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3032" name="/newroot/659/bus/file0" dev="overlay" ino=4895 res=1 errno=0
[ 1155.657228][   T39] audit: type=1326 audit(2000001064.319:4917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23258 comm="syz.3.3036" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1156.412494][T23291] sp0: Synchronizing with TNC
[ 1156.421297][T23291] sp0: Found TNC
[ 1156.427131][T23291] __nla_validate_parse: 4 callbacks suppressed
[ 1156.427141][T23291] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3038'.
[ 1156.587728][T23299] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3039'.
[ 1156.843080][T23299] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1157.244832][T22199] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1157.322312][T23315] overlayfs: failed to resolve './file0': -2
[ 1157.454280][T23290] [U] è`
[ 1157.463329][T22199] usb 6-1: Using ep0 maxpacket: 8
[ 1157.473127][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1157.503714][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1157.519190][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1157.539224][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1157.563717][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1157.574832][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1157.579279][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1157.588640][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1157.591823][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1157.595219][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1157.600455][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1157.605520][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1157.610347][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1157.614099][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1157.624764][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1157.627916][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1157.629780][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1157.632181][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1157.635741][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1157.646204][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1157.649517][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1157.703177][T22199] usb 6-1: string descriptor 0 read error: -22
[ 1157.721439][T22199] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1157.724152][T22199] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1157.752057][T22199] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1158.289530][T22199] usb 6-1: USB disconnect, device number 16
[ 1160.635873][T23348] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3050'.
[ 1160.639817][T23343] overlay: Unknown parameter '/'
[ 1160.731586][   T39] audit: type=1804 audit(2000001069.620:4918): pid=23347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3043" name="/newroot/796/bus/file0" dev="overlay" ino=5694 res=1 errno=0
[ 1161.134527][T23348] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1161.865055][T22189] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[ 1161.921687][   T39] audit: type=1804 audit(2000001070.901:4919): pid=23362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3045" name="/newroot/797/bus/file0" dev="overlay" ino=5708 res=1 errno=0
[ 1162.245422][T22189] usb 5-1: Using ep0 maxpacket: 8
[ 1162.249238][T22189] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1162.251798][T22189] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1162.253724][T22189] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1162.256824][T22189] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1162.261690][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1162.268184][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1162.271420][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1162.276751][T22189] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1162.279724][T22189] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1162.282026][T22189] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1162.289157][T22189] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1162.294993][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1162.297931][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1162.301893][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1162.309627][T22189] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1162.313690][T22189] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1162.315872][T22189] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1162.321871][T22189] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1162.328210][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1162.335796][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1162.342163][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1162.358758][T22189] usb 5-1: string descriptor 0 read error: -22
[ 1162.361876][T22189] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1162.367211][T22189] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1162.381178][   T39] audit: type=1326 audit(2000001071.373:4920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23366 comm="syz.2.3047" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1162.390343][T22189] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1162.494596][T23376] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3047'.
[ 1162.712830][T23386] netlink: 16126 bytes leftover after parsing attributes in process `syz.1.3048'.
[ 1162.716017][T23386] netlink: 183228 bytes leftover after parsing attributes in process `syz.1.3048'.
[ 1163.424067][T23418] overlayfs: failed to resolve './file0': -2
[ 1163.796828][T23431] Process accounting resumed
[ 1163.888830][T20982] usb 5-1: USB disconnect, device number 28
[ 1164.238499][T23440] netlink: 'syz.3.3054': attribute type 1 has an invalid length.
[ 1164.261677][T23446] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3055'.
[ 1164.705128][   T39] audit: type=1804 audit(2000001073.746:4921): pid=23455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3057" name="/newroot/665/bus/file0" dev="overlay" ino=4940 res=1 errno=0
[ 1165.339240][T23469] sp0: Synchronizing with TNC
[ 1165.344609][T23469] sp0: Found TNC
[ 1165.350908][T23469] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3060'.
[ 1165.418432][   T39] audit: type=1326 audit(2000001074.554:4922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23466 comm="syz.2.3059" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1166.162540][T23468] [U] è`
[ 1166.279280][T23494] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3061'.
[ 1166.284481][T23494] openvswitch: Êü: Dropping previously announced user features
[ 1166.831591][T23508] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3062'.
[ 1166.932108][   T39] audit: type=1326 audit(2000001076.150:4923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23506 comm="syz.3.3063" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1166.942850][T23508] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1167.007970][T23512] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3065'.
[ 1167.040233][T23513] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3063'.
[ 1167.169676][T23510] overlayfs: failed to resolve './file0': -2
[ 1167.294011][T20982] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[ 1167.465530][T20982] usb 7-1: Using ep0 maxpacket: 8
[ 1167.470208][T20982] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1167.472704][T20982] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1167.475885][T20982] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1167.479542][T20982] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1167.492298][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1167.498798][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1167.504584][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1167.510646][T20982] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1167.513431][T20982] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1167.515580][T20982] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1167.518067][T20982] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1167.521196][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1167.524809][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1167.527990][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1167.541562][T20982] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1167.543886][T20982] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1167.545877][T20982] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1167.548844][T20982] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1167.554400][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1167.558566][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1167.562705][T20982] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1167.583808][T20982] usb 7-1: string descriptor 0 read error: -22
[ 1167.585848][T20982] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1167.590593][T20982] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1167.618620][T20982] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1168.104282][T23522] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3067'.
[ 1168.112505][T23522] openvswitch: Êü: Dropping previously announced user features
[ 1168.434744][T22199] usb 7-1: USB disconnect, device number 18
[ 1168.807725][   T39] audit: type=1804 audit(2000001078.113:4924): pid=23527 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3069" name="/newroot/804/bus/file0" dev="overlay" ino=5780 res=1 errno=0
[ 1168.960215][   T39] audit: type=1326 audit(2000001078.281:4925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23530 comm="syz.1.3070" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1169.077388][T23535] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3071'.
[ 1169.096261][T23537] sp0: Synchronizing with TNC
[ 1169.109508][T23537] sp0: Found TNC
[ 1169.120173][T23537] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3072'.
[ 1169.433175][T23540] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1169.616813][T23544] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3073'.
[ 1169.621365][T23544] openvswitch: Êü: Dropping previously announced user features
[ 1169.886868][T22199] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[ 1170.004705][T23536] [U] è`
[ 1170.237368][T22199] usb 5-1: Using ep0 maxpacket: 8
[ 1170.247624][T22199] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1170.251567][T22199] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1170.254078][T22199] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1170.259507][T22199] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1170.263050][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1170.275285][T23546] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3074'.
[ 1170.276923][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1170.283234][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1170.290436][T22199] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1170.293538][T22199] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1170.296946][T22199] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1170.300080][T22199] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1170.303406][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1170.307912][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1170.311417][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1170.323921][T22199] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1170.330645][T22199] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1170.332830][T22199] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1170.336256][T22199] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1170.342182][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1170.345764][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1170.349405][T22199] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1170.359084][T22199] usb 5-1: string descriptor 0 read error: -22
[ 1170.361007][T22199] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1170.364329][T22199] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1170.383735][T22199] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1170.538790][T23551] sp0: Synchronizing with TNC
[ 1170.582558][T23552] veth1_macvtap: entered allmulticast mode
[ 1171.017309][   T39] audit: type=1326 audit(2000001080.444:4926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23553 comm="syz.2.3077" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1171.635341][T23559] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3078'.
[ 1171.640771][T23559] openvswitch: Êü: Dropping previously announced user features
[ 1171.901508][T22189] usb 5-1: USB disconnect, device number 29
[ 1172.048789][T23566] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3080'.
[ 1172.175452][T23567] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1172.286614][T23569] sp0: Synchronizing with TNC
[ 1172.298387][T23569] sp0: Found TNC
[ 1172.325855][T23569] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3081'.
[ 1172.438711][T22189] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[ 1172.613158][T22189] usb 5-1: Using ep0 maxpacket: 8
[ 1172.616100][T22189] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1172.618915][T22189] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1172.621334][T22189] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1172.623723][T22189] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1172.630328][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1172.637485][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1172.642806][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1172.646338][   T39] audit: type=1326 audit(2000001082.155:4927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23571 comm="syz.1.3082" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1172.652354][T22189] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1172.654620][T22189] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1172.656538][T22189] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1172.659054][T22189] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1172.662577][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1172.665469][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1172.668470][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1172.673138][T22189] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1172.676304][T22189] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1172.678445][T22189] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1172.681247][T22189] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1172.684312][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1172.687304][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1172.690505][T22189] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1172.707742][T22189] usb 5-1: string descriptor 0 read error: -22
[ 1172.709730][T22189] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1172.713090][T22189] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1172.721324][T22189] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1172.745931][T23574] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3082'.
[ 1173.035266][T23568] [U] è`
[ 1173.781539][T23576] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3083'.
[ 1174.556711][T23582] sp0: Synchronizing with TNC
[ 1174.576986][T23582] sp0: Found TNC
[ 1174.585591][T23582] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3085'.
[ 1175.345508][   T39] audit: type=1804 audit(2000001084.989:4928): pid=23591 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3087" name="/newroot/672/bus/file0" dev="overlay" ino=4984 res=1 errno=0
[ 1175.584704][T23581] [U] è`
[ 1175.648698][T22766] usb 5-1: USB disconnect, device number 30
[ 1175.990813][T23602] 9pnet_fd: Insufficient options for proto=fd
[ 1176.967997][T23610] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3092'.
[ 1177.013475][   T39] audit: type=1326 audit(2000001086.742:4929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23606 comm="syz.1.3091" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1177.298810][   T39] audit: type=1326 audit(2000001087.047:4930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23611 comm="syz.3.3093" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1177.554394][T23615] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3093'.
[ 1177.619069][   T39] audit: type=1326 audit(2000001087.372:4931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23616 comm="syz.0.3094" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x0
[ 1177.913120][T23619] netlink: 52 bytes leftover after parsing attributes in process `syz.0.3094'.
[ 1177.971979][T14642] Bluetooth: hci4: command 0x1003 tx timeout
[ 1177.974669][ T4771] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1178.854737][   T39] audit: type=1804 audit(2000001088.559:4932): pid=23627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3096" name="/newroot/812/bus/file0" dev="overlay" ino=5829 res=1 errno=0
[ 1179.143323][   T39] audit: type=1804 audit(2000001088.968:4933): pid=23632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3097" name="/newroot/674/bus/file0" dev="overlay" ino=5004 res=1 errno=0
[ 1180.023083][T23646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3101'.
[ 1180.645848][   T39] audit: type=1804 audit(2000001090.553:4934): pid=23651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3102" name="/newroot/726/bus/file0" dev="overlay" ino=5031 res=1 errno=0
[ 1180.966295][T23653] 9pnet_fd: Insufficient options for proto=fd
[ 1181.201385][   T39] audit: type=1326 audit(2000001091.141:4935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.2.3104" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1181.266005][T23661] 9pnet_fd: Insufficient options for proto=fd
[ 1181.351799][T23662] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3104'.
[ 1182.106959][T23665] sp0: Synchronizing with TNC
[ 1182.116700][T23665] sp0: Found TNC
[ 1182.136336][T23665] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3106'.
[ 1182.926634][ T5341] Bluetooth: hci4: command 0x1003 tx timeout
[ 1182.926850][ T4771] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1182.980819][   T39] audit: type=1804 audit(2000001092.999:4936): pid=23671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3107" name="/newroot/677/bus/file0" dev="overlay" ino=5028 res=1 errno=0
[ 1183.002993][T23664] [U] è`
[ 1183.221035][T14642] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1183.459912][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[ 1183.462965][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[ 1183.840876][T23674] netlink: 72 bytes leftover after parsing attributes in process `syz.2.3108'.
[ 1183.867404][   T39] audit: type=1326 audit(2000001093.934:4937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23675 comm="syz.1.3109" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1183.943494][T23678] netlink: 'syz.2.3108': attribute type 10 has an invalid length.
[ 1183.962298][T23678] bond0: (slave netdevsim0): no link monitoring support
[ 1183.970907][T23678] bond0: (slave netdevsim0): MII and ETHTOOL support not available for slave, and arp_interval/arp_ip_target module parameters not specified, thus bonding will not detect link failures! see bonding.txt for details
[ 1183.979471][T23679] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3109'.
[ 1183.981542][T23678] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1184.024828][T23681] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3110'.
[ 1184.087910][T23686] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3111'.
[ 1184.221785][T23686] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1184.437401][   T39] audit: type=1804 audit(2000001094.532:4938): pid=23690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3113" name="/newroot/730/bus/file0" dev="overlay" ino=5062 res=1 errno=0
[ 1185.144877][   T39] audit: type=1804 audit(2000001095.277:4939): pid=23696 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3114" name="/newroot/679/bus/file0" dev="overlay" ino=5048 res=1 errno=0
[ 1185.350662][   T39] audit: type=1326 audit(2000001095.498:4940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23697 comm="syz.0.3115" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x0
[ 1186.036371][   T39] audit: type=1804 audit(2000001096.212:4941): pid=23705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3116" name="/newroot/680/bus/file0" dev="overlay" ino=5062 res=1 errno=0
[ 1186.237140][T23707] sp0: Synchronizing with TNC
[ 1186.268820][T23707] sp0: Found TNC
[ 1186.279820][T23707] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3117'.
[ 1186.813721][T23715] 9pnet_fd: Insufficient options for proto=fd
[ 1187.013062][T23706] [U] è`
[ 1187.571338][   T39] audit: type=1804 audit(2000001097.818:4942): pid=23726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3121" name="/newroot/816/bus/file0" dev="overlay" ino=5859 res=1 errno=0
[ 1188.082001][T22766] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1188.409159][T22766] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1188.413546][T22766] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1188.417186][T22766] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1188.420026][T22766] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1188.527138][   T39] audit: type=1804 audit(2000001098.826:4943): pid=23733 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3123" name="/newroot/818/bus/file0" dev="overlay" ino=5878 res=1 errno=0
[ 1188.691009][T23725] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1188.696679][T22766] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1188.861346][T14642] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1188.861465][ T4771] Bluetooth: hci4: command 0x1003 tx timeout
[ 1188.880679][T23738] mmap: syz.0.3124 (23738) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1189.457635][   T39] audit: type=1326 audit(2000001099.802:4944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23741 comm="syz.3.3125" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1189.604316][T23744] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3125'.
[ 1190.164801][   T39] audit: type=1804 audit(2000001100.274:4945): pid=23748 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3126" name="/newroot/682/bus/file0" dev="overlay" ino=5082 res=1 errno=0
[ 1190.467408][T22199] usb 6-1: USB disconnect, device number 17
[ 1190.910955][   T39] audit: type=1804 audit(2000001101.293:4946): pid=23752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3127" name="/newroot/683/bus/file0" dev="overlay" ino=5096 res=1 errno=0
[ 1192.148696][   T39] audit: type=1804 audit(2000001102.458:4947): pid=23764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3130" name="/newroot/684/bus/file0" dev="overlay" ino=5110 res=1 errno=0
[ 1192.462164][   T39] audit: type=1804 audit(2000001102.962:4948): pid=23768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3131" name="/newroot/734/bus/file0" dev="overlay" ino=5091 res=1 errno=0
[ 1192.881318][   T39] audit: type=1804 audit(2000001103.298:4949): pid=23775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3132" name="/newroot/685/bus/file0" dev="overlay" ino=5124 res=1 errno=0
[ 1193.427871][T23778] 9pnet_fd: Insufficient options for proto=fd
[ 1193.592493][   T39] audit: type=1326 audit(2000001104.148:4950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23780 comm="syz.2.3135" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1193.706111][T23786] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3135'.
[ 1193.820572][T23787] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3136'.
[ 1193.825414][T23787] openvswitch: Êü: Dropping previously announced user features
[ 1194.384756][   T39] audit: type=1326 audit(2000001104.977:4951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23788 comm="syz.1.3137" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1194.538871][T23791] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3137'.
[ 1194.927528][   T39] audit: type=1804 audit(2000001105.492:4952): pid=23795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3138" name="/newroot/822/bus/file0" dev="overlay" ino=5907 res=1 errno=0
[ 1195.414743][T14642] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1195.747082][T20982] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[ 1195.921527][T20982] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1195.925155][T20982] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1195.938033][T20982] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1195.941182][T20982] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1195.963075][T23798] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1195.975683][T20982] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1196.966402][   T39] audit: type=1804 audit(2000001107.339:4953): pid=23812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3142" name="/newroot/822/bus/file0" dev="overlay" ino=5846 res=1 errno=0
[ 1197.115325][T23815] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3143'.
[ 1197.119030][T23815] openvswitch: Êü: Dropping previously announced user features
[ 1197.655392][   T25] usb 7-1: USB disconnect, device number 19
[ 1198.199346][T23825] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3146'.
[ 1198.203665][T23825] openvswitch: Êü: Dropping previously announced user features
[ 1199.116802][T23834] 9pnet_fd: Insufficient options for proto=fd
[ 1199.136173][T14642] Bluetooth: hci4: sending frame failed (-49)
[ 1199.140813][ T4771] Bluetooth: hci4: Opcode 0x1003 failed: -49
[ 1199.561330][   T39] audit: type=1326 audit(2000001110.415:4954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23839 comm="syz.3.3150" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1199.812776][   T39] audit: type=1326 audit(2000001110.667:4955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23842 comm="syz.2.3151" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1199.824311][T23845] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3150'.
[ 1199.915201][T23848] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3151'.
[ 1200.743501][T23854] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3153'.
[ 1200.746313][T23854] openvswitch: Êü: Dropping previously announced user features
[ 1200.891628][T23856] input: syz0 as /devices/virtual/input/input25
[ 1201.180066][T23858] kvm: apic: phys broadcast and lowest prio
[ 1201.209746][T23858] netlink: 'syz.3.3154': attribute type 9 has an invalid length.
[ 1201.212607][T23858] netlink: 399 bytes leftover after parsing attributes in process `syz.3.3154'.
[ 1201.394973][T23866] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3156'.
[ 1201.399382][T23866] openvswitch: Êü: Dropping previously announced user features
[ 1201.624024][T15305] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 1201.819167][T15305] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1201.828743][T15305] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1201.831371][T15305] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1201.833652][T15305] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1201.857633][T23863] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1201.878135][T15305] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1202.225353][T15305] usb 7-1: USB disconnect, device number 20
[ 1203.064531][T23902] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3160'.
[ 1203.134888][   T39] audit: type=1326 audit(2000001114.163:4956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23892 comm="syz.3.3162" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1203.268485][T23902] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1203.557700][   T10] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[ 1203.605836][T22199] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[ 1203.758764][   T10] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1203.821701][   T10] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1203.824482][   T10] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1203.836944][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1203.870473][T22199] usb 6-1: Using ep0 maxpacket: 8
[ 1203.930898][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1203.933554][   T39] audit: type=1326 audit(2000001115.003:4957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23918 comm="syz.2.3163" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1203.933684][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1204.005863][T23905] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1204.010947][   T10] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1204.015775][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1204.018288][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1204.027410][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1204.034132][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1204.036532][T23922] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3163'.
[ 1204.040336][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1204.050114][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1204.058174][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1204.060870][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1204.064252][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1204.068379][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1204.071806][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1204.083668][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1204.102410][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1204.104758][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1204.106729][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1204.109121][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1204.120819][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1204.123835][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1204.126737][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1204.148201][T22199] usb 6-1: string descriptor 0 read error: -22
[ 1204.150076][T22199] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1204.153183][T22199] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1204.180834][T22199] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1205.103038][T22199] usb 5-1: USB disconnect, device number 31
[ 1205.189268][   T10] usb 6-1: USB disconnect, device number 18
[ 1205.249497][T23925] sp0: Synchronizing with TNC
[ 1205.256793][T23925] sp0: Found TNC
[ 1205.274214][T23925] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3164'.
[ 1205.947694][T23932] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3167'.
[ 1205.962132][T23934] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3166'.
[ 1205.968971][T23934] openvswitch: Êü: Dropping previously announced user features
[ 1206.138192][   T39] audit: type=1804 audit(2000001117.313:4958): pid=23936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3165" name="/newroot/827/bus/file0" dev="overlay" ino=5889 res=1 errno=0
[ 1206.234886][T23932] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1206.298315][T23924] [U] è`
[ 1206.558329][   T64] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 1206.787159][   T64] usb 5-1: Using ep0 maxpacket: 8
[ 1206.790789][   T64] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1206.793096][   T64] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1206.795217][   T64] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1206.798461][   T64] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1206.802136][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1206.805224][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1206.808594][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1206.812619][   T64] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1206.815380][   T64] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1206.818091][   T64] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1206.820539][   T64] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1206.823772][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1206.827430][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1206.830628][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1206.835020][   T64] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1206.837416][   T64] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1206.839383][   T64] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1206.841930][   T64] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1206.845566][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1206.848624][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1206.851497][   T64] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1206.857509][   T64] usb 5-1: string descriptor 0 read error: -22
[ 1206.859260][   T64] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1206.861682][   T64] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1206.884728][   T64] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1207.419494][T23960] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3171'.
[ 1207.647383][T23960] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1207.891270][T23975] 9pnet_fd: Insufficient options for proto=fd
[ 1207.979196][T23980] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3173'.
[ 1208.122300][T23980] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1208.190035][T22189] usb 5-1: USB disconnect, device number 32
[ 1208.416299][   T25] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 1208.606567][   T25] usb 7-1: Using ep0 maxpacket: 8
[ 1208.610878][   T25] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1208.613485][   T25] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1208.615601][   T25] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1208.618510][   T25] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1208.622399][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1208.626680][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1208.630251][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1208.645003][   T25] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1208.648209][   T25] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1208.650785][   T25] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1208.654502][   T25] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1208.657538][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1208.661420][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1208.665652][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1208.669912][   T25] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1208.672653][   T25] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1208.674777][   T25] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1208.677169][   T25] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1208.680217][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1208.686779][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1208.690578][   T25] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1208.696414][   T25] usb 7-1: string descriptor 0 read error: -22
[ 1208.698310][   T25] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1208.701223][   T25] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1208.717246][   T25] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1208.978406][   T39] audit: type=1326 audit(2000001120.294:4959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23985 comm="syz.0.3174" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x0
[ 1209.085162][T23988] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3174'.
[ 1209.258723][   T10] usb 7-1: USB disconnect, device number 21
[ 1209.892466][ T4771] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1210.351771][T23999] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3177'.
[ 1210.355214][T23999] openvswitch: Êü: Dropping previously announced user features
[ 1210.843510][T24004] sp0: Synchronizing with TNC
[ 1210.857990][T24003] sp0: Found TNC
[ 1210.880734][T24003] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3179'.
[ 1211.031508][   T39] audit: type=1804 audit(2000001122.457:4960): pid=24006 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3178" name="/newroot/830/bus/file0" dev="overlay" ino=5915 res=1 errno=0
[ 1211.566739][T24002] [U] è`
[ 1211.936568][T24030] input: syz0 as /devices/virtual/input/input26
[ 1212.188233][   T10] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[ 1212.372088][T24042] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3182'.
[ 1212.387654][   T10] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1212.407720][   T10] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1212.410746][   T10] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1212.413156][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1212.465530][T24021] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1212.475811][   T10] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1212.664616][T24042] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1212.757927][T24053] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3183'.
[ 1212.980141][T24053] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1213.255388][   T10] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[ 1213.474001][   T10] usb 5-1: Using ep0 maxpacket: 8
[ 1213.503825][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1213.506193][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1213.508158][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1213.510570][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1213.540511][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1213.545828][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1213.548732][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1213.558338][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1213.561457][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1213.575900][T16341] usb 6-1: USB disconnect, device number 19
[ 1213.581698][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1213.584286][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1213.606531][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1213.611444][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1213.615562][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1213.643373][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1213.646701][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1213.648625][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1213.651010][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1213.654002][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1213.658270][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1213.661257][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1213.717915][T24058] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3184'.
[ 1213.723483][   T10] usb 5-1: string descriptor 0 read error: -22
[ 1213.725209][   T10] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1213.728036][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1213.739529][   T10] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1213.864375][T24058] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1214.226525][T16341] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[ 1214.314815][T24061] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3185'.
[ 1214.359463][   T10] usb 5-1: USB disconnect, device number 33
[ 1214.398363][T16341] usb 7-1: Using ep0 maxpacket: 8
[ 1214.421994][T16341] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1214.424393][T16341] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1214.426367][T16341] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1214.430971][T16341] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1214.434400][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1214.440573][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1214.443455][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1214.449581][T16341] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1214.452772][T16341] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1214.454810][T16341] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1214.459163][T16341] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1214.463938][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1214.469302][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1214.472278][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1214.484017][T16341] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1214.487215][T16341] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1214.489988][T24061] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1214.492578][T16341] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1214.497928][T16341] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1214.501032][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1214.504509][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1214.507616][T16341] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1214.528253][T16341] usb 7-1: string descriptor 0 read error: -22
[ 1214.530129][T16341] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1214.533186][T16341] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1214.544328][T16341] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1214.807990][T22199] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[ 1214.979380][T22199] usb 6-1: Using ep0 maxpacket: 8
[ 1215.017472][   T10] usb 7-1: USB disconnect, device number 22
[ 1215.039662][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1215.043110][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1215.045072][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1215.047739][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1215.052050][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1215.055735][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1215.058869][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1215.063715][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1215.066652][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1215.068986][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1215.071499][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1215.075072][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1215.078321][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1215.081381][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1215.085764][T22199] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1215.088410][T22199] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1215.090470][T22199] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1215.093234][T22199] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1215.096386][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1215.099356][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1215.102413][T22199] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1215.113443][T22199] usb 6-1: string descriptor 0 read error: -22
[ 1215.115179][T22199] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1215.117728][T22199] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1215.139082][T22199] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1215.638581][T22199] usb 6-1: USB disconnect, device number 20
[ 1216.366979][T24080] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3198'.
[ 1216.480060][T24080] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1216.788977][   T10] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[ 1216.819025][T24087] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3192'.
[ 1216.891670][T24087] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1216.971141][   T10] usb 5-1: Using ep0 maxpacket: 8
[ 1216.990463][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1216.993406][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1216.995935][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1217.009325][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1217.013213][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1217.016977][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1217.037210][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1217.042863][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1217.046333][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1217.048910][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1217.052051][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1217.066274][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1217.074969][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1217.084616][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1217.113005][   T10] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1217.115898][   T10] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1217.118406][   T10] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1217.121495][   T10] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1217.142002][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1217.146320][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1217.150739][   T10] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1217.189258][T15091] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[ 1217.191758][   T10] usb 5-1: string descriptor 0 read error: -22
[ 1217.193455][   T10] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1217.196265][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1217.219749][   T10] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1217.370316][T15091] usb 7-1: Using ep0 maxpacket: 8
[ 1217.374099][T15091] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1217.377493][T15091] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1217.380636][T15091] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1217.384258][T15091] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1217.388528][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1217.399204][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1217.402568][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1217.406984][T15091] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1217.418269][T15091] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1217.420750][T15091] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1217.423324][T15091] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1217.426642][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1217.437026][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1217.441317][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1217.452578][T15091] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1217.456062][T15091] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1217.458756][T15091] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1217.462709][T15091] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1217.469900][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1217.478682][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1217.482105][T15091] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1217.494816][T15091] usb 7-1: string descriptor 0 read error: -22
[ 1217.497774][T15091] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1217.500562][T15091] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1217.547935][T15091] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux1
[ 1217.879097][T24106] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3193'.
[ 1217.896472][T24106] openvswitch: Êü: Dropping previously announced user features
[ 1219.094703][   T39] audit: type=1804 audit(2000001130.855:4961): pid=24128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3195" name="/newroot/838/bus/file0" dev="overlay" ino=5999 res=1 errno=0
[ 1219.221631][T15091] usb 5-1: USB disconnect, device number 34
[ 1219.537154][T24131] 9pnet_fd: Insufficient options for proto=fd
[ 1219.549175][   T10] usb 7-1: USB disconnect, device number 23
[ 1219.676227][   T39] audit: type=1326 audit(2000001131.537:4962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24132 comm="syz.3.3197" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1220.019988][T24137] input: syz0 as /devices/virtual/input/input27
[ 1220.109228][T24137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1220.551580][   T39] audit: type=1804 audit(2000001132.440:4963): pid=24141 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3200" name="/newroot/702/bus/file0" dev="overlay" ino=5221 res=1 errno=0
[ 1221.143869][   T39] audit: type=1804 audit(2000001133.070:4964): pid=24149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3201" name="/newroot/836/bus/file0" dev="overlay" ino=5955 res=1 errno=0
[ 1221.791532][T24155] hub 2-0:1.0: USB hub found
[ 1221.793148][T24155] hub 2-0:1.0: 2 ports detected
[ 1222.079394][T24168] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3204'.
[ 1222.084208][T24168] openvswitch: Êü: Dropping previously announced user features
[ 1222.144399][T24169] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3205'.
[ 1222.148537][T24169] openvswitch: Êü: Dropping previously announced user features
[ 1222.676646][   T39] audit: type=1804 audit(2000001134.687:4965): pid=24176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3206" name="/newroot/704/bus/file0" dev="overlay" ino=5240 res=1 errno=0
[ 1222.980766][   T39] audit: type=1804 audit(2000001134.991:4966): pid=24178 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3207" name="/newroot/838/bus/file0" dev="overlay" ino=5975 res=1 errno=0
[ 1223.582562][T24189] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1223.866796][T15091] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[ 1224.038206][T15091] usb 5-1: Using ep0 maxpacket: 8
[ 1224.041379][T15091] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1224.044538][T15091] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1224.061310][T15091] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1224.064421][T15091] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1224.076406][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1224.096776][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1224.099670][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1224.105193][T15091] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1224.107529][T15091] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1224.109433][T15091] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1224.111789][T15091] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1224.131643][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1224.135234][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1224.138145][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1224.141668][T15091] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1224.144108][T15091] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[ 1224.146049][T15091] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1224.148421][T15091] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1224.151382][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1224.156121][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1224.159015][T15091] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1224.164566][T15091] usb 5-1: string descriptor 0 read error: -22
[ 1224.166314][T15091] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1224.168722][T15091] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1224.177911][T15091] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1224.343043][   T39] audit: type=1326 audit(2000001136.419:4967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24202 comm="syz.2.3212" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[ 1224.373417][T22199] usb 5-1: USB disconnect, device number 35
[ 1224.721451][T24208] 9pnet_fd: Insufficient options for proto=fd
[ 1225.798929][   T39] audit: type=1804 audit(2000001137.952:4968): pid=24230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3216" name="/newroot/707/bus/file0" dev="overlay" ino=5264 res=1 errno=0
[ 1226.052055][T24241] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3217'.
[ 1226.057517][T24241] openvswitch: Êü: Dropping previously announced user features
[ 1226.619045][T24248] overlayfs: failed to resolve './file0': -2
[ 1226.657915][T14642] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1227.219339][   T39] audit: type=1804 audit(2000001139.348:4969): pid=24261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3219" name="/newroot/708/bus/file0" dev="overlay" ino=5278 res=1 errno=0
[ 1227.558087][   T39] audit: type=1326 audit(2000001139.799:4970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24271 comm="syz.3.3221" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x0
[ 1227.668420][T24276] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3221'.
[ 1227.750717][T24279] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3222'.
[ 1227.862651][T24279] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1228.162840][T22199] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[ 1228.181048][T24281] sp0: Synchronizing with TNC
[ 1228.196886][T24281] sp0: Found TNC
[ 1228.218576][T24281] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3223'.
[ 1228.362800][T22199] usb 7-1: Using ep0 maxpacket: 8
[ 1228.420775][T22199] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1228.429251][T22199] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1228.433566][T22199] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1228.454114][T22199] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1228.537713][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1228.543675][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1228.551141][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1228.637049][T22199] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1228.640988][T22199] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1228.645959][T22199] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1228.651571][T22199] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1228.655435][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1228.660157][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1228.664323][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1228.673448][T22199] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1228.676695][T22199] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1228.695017][T22199] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1228.700004][T22199] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1228.705929][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1228.711660][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1228.717987][T22199] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1228.777745][T22199] usb 7-1: string descriptor 0 read error: -22
[ 1228.780556][T22199] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1228.784398][T22199] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1228.825392][T22199] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1228.977399][T24280] [U] è`
[ 1229.783077][T22199] usb 7-1: USB disconnect, device number 24
[ 1229.818891][T24286] input: syz0 as /devices/virtual/input/input28
[ 1230.399744][   T39] audit: type=1804 audit(2000001142.781:4971): pid=24292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3226" name="/newroot/844/bus/file0" dev="overlay" ino=6038 res=1 errno=0
[ 1230.429524][T22766] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[ 1230.610756][T22766] usb 6-1: Using ep0 maxpacket: 32
[ 1230.615468][T22766] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[ 1230.617682][T22766] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1230.621188][T22766] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 23, changing to 8
[ 1230.624344][T22766] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 8763, setting to 1024
[ 1230.627327][T22766] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1230.631033][T22766] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1230.635176][T22766] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1230.637670][T22766] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1230.640347][T22766] usb 6-1: Product: syz
[ 1230.641536][T22766] usb 6-1: Manufacturer: syz
[ 1230.642784][T22766] usb 6-1: SerialNumber: syz
[ 1230.646348][T22766] usb 6-1: config 0 descriptor??
[ 1230.650927][T22766] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1230.654254][T22766] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1230.910996][   T39] audit: type=1804 audit(2000001143.274:4972): pid=24297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3227" name="/newroot/710/bus/file0" dev="overlay" ino=5297 res=1 errno=0
[ 1231.132323][T11818] usb 6-1: USB disconnect, device number 21
[ 1231.135848][T11818] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[ 1231.826460][   T39] audit: type=1804 audit(2000001144.272:4973): pid=24314 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3230" name="/newroot/711/bus/file0" dev="overlay" ino=5311 res=1 errno=0
[ 1232.360501][T24327] sp0: Synchronizing with TNC
[ 1232.367178][T24327] sp0: Found TNC
[ 1232.394303][T24327] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3233'.
[ 1232.478198][T24331] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3234'.
[ 1232.572378][T24331] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1232.963521][T11818] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[ 1233.134852][T11818] usb 7-1: Using ep0 maxpacket: 8
[ 1233.137909][T24326] [U] è`
[ 1233.525053][T11818] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1233.525751][   T39] audit: type=1804 audit(2000001145.825:4974): pid=24336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3235" name="/newroot/844/bus/file0" dev="overlay" ino=6015 res=1 errno=0
[ 1233.529428][T11818] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1233.540095][T11818] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1233.544191][T11818] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1233.549619][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1233.555693][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1233.562343][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1233.571407][T11818] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1233.576205][T11818] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1233.593065][T11818] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1233.595545][T11818] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1233.598629][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1233.602363][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1233.611255][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1233.616035][T11818] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1233.619090][T11818] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1233.622018][T11818] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1233.625177][T11818] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1233.629288][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1233.636788][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1233.640539][T11818] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1233.649872][T11818] usb 7-1: string descriptor 0 read error: -22
[ 1233.651936][T11818] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1233.655217][T11818] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1233.697356][T11818] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1233.984004][T24343] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3236'.
[ 1233.992799][T24343] openvswitch: Êü: Dropping previously announced user features
[ 1234.046873][T24346] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3237'.
[ 1234.203500][T24346] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1234.658495][T22199] usb 7-1: USB disconnect, device number 25
[ 1234.692530][T24349] sp0: Synchronizing with TNC
[ 1234.707803][T24349] sp0: Found TNC
[ 1234.722595][T24349] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3238'.
[ 1234.738572][T24352] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3239'.
[ 1234.961341][T24352] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1235.325665][T11818] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[ 1235.457079][T24348] [U] è`
[ 1235.507084][T11818] usb 6-1: Using ep0 maxpacket: 8
[ 1235.512753][T11818] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1235.515905][T11818] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1235.520963][T11818] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1235.526194][T11818] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1235.530371][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1235.534466][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1235.542371][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1235.548391][T11818] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1235.551533][T11818] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1235.554222][T11818] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1235.563894][T11818] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1235.569068][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1235.575656][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1235.579963][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1235.603616][T11818] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1235.606924][T11818] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1235.609593][T11818] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1235.612951][T11818] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1235.617101][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1235.620979][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1235.625354][T11818] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1235.646664][T11818] usb 6-1: string descriptor 0 read error: -22
[ 1235.649128][T11818] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1235.652646][T11818] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1235.675021][T11818] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1235.874468][T11818] usb 6-1: USB disconnect, device number 22
[ 1236.184887][   T39] audit: type=1804 audit(2000001148.859:4975): pid=24362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3241" name="/newroot/761/bus/file0" dev="overlay" ino=5246 res=1 errno=0
[ 1236.392659][   T39] audit: type=1804 audit(2000001149.048:4976): pid=24368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3242" name="/newroot/714/bus/file0" dev="overlay" ino=5335 res=1 errno=0
[ 1237.373449][   T39] audit: type=1804 audit(2000001150.098:4977): pid=24385 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3244" name="/newroot/848/bus/file0" dev="overlay" ino=6070 res=1 errno=0
[ 1237.404622][T24389] 9pnet_fd: Insufficient options for proto=fd
[ 1237.732927][T24393] sp0: Synchronizing with TNC
[ 1237.761640][T24394] sp0: Found TNC
[ 1237.862131][T24390] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3246'.
[ 1238.179799][T24386] [U] è`
[ 1238.403989][   T39] audit: type=1804 audit(2000001151.190:4978): pid=24403 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3247" name="/newroot/849/bus/file0" dev="overlay" ino=6084 res=1 errno=0
[ 1238.876043][   T39] audit: type=1326 audit(2000001151.683:4979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24399 comm="syz.1.3248" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1239.372236][   T39] audit: type=1804 audit(2000001152.145:4980): pid=24424 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3250" name="/newroot/850/bus/file0" dev="overlay" ino=6098 res=1 errno=0
[ 1240.391772][   T39] audit: type=1804 audit(2000001153.268:4981): pid=24447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3253" name="/newroot/851/bus/file0" dev="overlay" ino=6112 res=1 errno=0
[ 1240.407730][   T39] audit: type=1804 audit(2000001153.289:4982): pid=24444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3252" name="/newroot/764/bus/file0" dev="overlay" ino=5271 res=1 errno=0
[ 1241.002919][   T39] audit: type=1804 audit(2000001153.772:4983): pid=24465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3255" name="/newroot/765/bus/file0" dev="overlay" ino=5285 res=1 errno=0
[ 1241.389351][T24470] sp0: Synchronizing with TNC
[ 1241.405516][T24470] sp0: Found TNC
[ 1241.414467][T24470] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3256'.
[ 1241.525840][T24475] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3257'.
[ 1241.642327][T24472] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1241.802921][T24468] [U] è`
[ 1241.918533][T15305] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[ 1241.995360][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[ 1241.997216][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[ 1242.041765][T24482] 9pnet_fd: Insufficient options for proto=fd
[ 1242.098854][T15305] usb 7-1: Using ep0 maxpacket: 8
[ 1242.102605][T15305] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1242.105637][T15305] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1242.107989][T15305] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1242.111595][T15305] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1242.115671][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1242.119905][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1242.123701][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1242.128168][T15305] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1242.131117][T15305] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1242.133605][T15305] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1242.136664][T15305] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1242.141084][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1242.144940][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1242.149395][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1242.154969][T15305] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1242.157709][T15305] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1242.159689][T15305] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1242.162499][T15305] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1242.166860][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1242.170988][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1242.174811][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1242.189348][T15305] usb 7-1: string descriptor 0 read error: -22
[ 1242.191095][T15305] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1242.193645][T15305] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1242.212071][T15305] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1242.418714][T15305] usb 7-1: USB disconnect, device number 26
[ 1242.878966][   T39] audit: type=1804 audit(2000001155.882:4984): pid=24491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3261" name="/newroot/767/bus/file0" dev="overlay" ino=5304 res=1 errno=0
[ 1243.502527][T24512] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3263'.
[ 1243.596987][T24512] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1243.768588][T24528] netlink: 4096 bytes leftover after parsing attributes in process `syz.1.3264'.
[ 1243.772428][T24528] openvswitch: netlink: Missing key (keys=1000040, expected=2000)
[ 1243.880097][T15305] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[ 1244.051553][T15305] usb 7-1: Using ep0 maxpacket: 8
[ 1244.054918][T15305] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1244.057437][T15305] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1244.059497][T15305] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1244.070553][T15305] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1244.074541][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1244.077675][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1244.085155][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1244.090246][T15305] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1244.098708][T15305] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1244.108773][T15305] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1244.111249][T15305] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1244.114373][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1244.119988][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1244.124425][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1244.132042][T15305] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1244.134267][T15305] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1244.136240][T15305] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1244.143708][T15305] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1244.148547][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1244.152012][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1244.155299][T15305] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1244.161065][T15305] usb 7-1: string descriptor 0 read error: -22
[ 1244.162858][T15305] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1244.165587][T15305] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1244.181470][T15305] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1244.423352][   T10] usb 7-1: USB disconnect, device number 27
[ 1244.570280][T24540] sp0: Synchronizing with TNC
[ 1244.579768][T24540] sp0: Found TNC
[ 1244.589625][T24540] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3267'.
[ 1245.022787][   T39] audit: type=1804 audit(2000001158.055:4985): pid=24545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3266" name="/newroot/851/bus/file0" dev="overlay" ino=6062 res=1 errno=0
[ 1245.382440][T24539] [U] è`
[ 1245.696713][   T39] audit: type=1326 audit(2000001158.843:4986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24556 comm="syz.1.3269" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x0
[ 1245.749583][T24560] serio: Serial port ptm0
[ 1246.400144][T24569] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3271'.
[ 1246.931558][T24569] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1247.129184][T24577] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3273'.
[ 1247.214015][   T10] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[ 1247.323696][T24585] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3274'.
[ 1247.331413][T24585] openvswitch: Êü: Dropping previously announced user features
[ 1247.414083][   T10] usb 7-1: Using ep0 maxpacket: 8
[ 1247.431191][   T10] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1247.434937][   T10] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1247.442948][   T10] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1247.459939][   T10] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1247.470242][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1247.474693][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1247.478468][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1247.485193][   T10] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1247.488853][   T10] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1247.491881][   T10] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1247.494740][   T10] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1247.498132][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1247.502346][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1247.505573][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1247.513464][   T10] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1247.517904][   T10] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[ 1247.521378][   T10] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1247.524432][   T10] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1247.530780][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1247.534532][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1247.540292][   T10] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1247.549956][   T10] usb 7-1: string descriptor 0 read error: -22
[ 1247.551896][   T10] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1247.555055][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1247.563759][   T10] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1247.953868][   T10] usb 7-1: USB disconnect, device number 28
[ 1248.199234][T24610] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3276'.
[ 1248.457174][T24610] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1248.882439][   T10] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[ 1248.902020][   T39] audit: type=1804 audit(2000001162.202:4987): pid=24619 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3277" name="/newroot/722/bus/file0" dev="overlay" ino=5386 res=1 errno=0
[ 1249.280678][   T10] usb 6-1: Using ep0 maxpacket: 8
[ 1249.319072][   T10] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1249.321982][T24624] overlayfs: conflicting lowerdir path
[ 1249.326279][   T10] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1249.331358][   T10] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1249.335538][   T10] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1249.339084][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1249.342531][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1249.347614][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1249.358550][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.363316][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.366038][   T10] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1249.366055][   T10] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1249.366065][   T10] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1249.366088][   T10] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1249.366101][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1249.376320][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.384730][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1249.389270][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.392070][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1249.407074][   T10] usb 6-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[ 1249.409799][   T10] usb 6-1: config 246 descriptor has 1 excess byte, ignoring
[ 1249.411733][   T10] usb 6-1: config 246 has 1 interface, different from the descriptor's value: 42
[ 1249.415263][   T10] usb 6-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[ 1249.418449][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[ 1249.421405][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[ 1249.425009][   T10] usb 6-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1249.467581][   T10] usb 6-1: string descriptor 0 read error: -22
[ 1249.469356][   T10] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1249.473729][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1249.479921][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.482708][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.486777][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.490080][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.493469][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.498645][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.502056][   T10] adutux 6-1:246.0: ADU100  now attached to /dev/usb/adutux0
[ 1249.504975][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.506949][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.508870][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.512424][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.514377][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.516325][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.518280][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.520389][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.522472][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.524464][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.526522][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.528516][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.530635][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.532935][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.535037][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.537022][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.539152][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.541675][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.543871][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.545972][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.552185][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.555497][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.557580][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.560424][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.562745][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.564827][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.568690][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.571508][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.573813][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.575784][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.580532][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.583210][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.585431][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.590750][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.593300][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.600716][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.602960][ T1291] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1249.609335][ T1291] hid-generic 0000:0000:0000.000B: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1249.638277][T24627] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3287'.
[ 1249.862528][T24634] hub 2-0:1.0: USB hub found
[ 1249.869708][T24634] hub 2-0:1.0: 2 ports detected
[ 1250.223819][T16341] usb 6-1: USB disconnect, device number 23
[ 1251.252972][   T39] audit: type=1804 audit(2000001164.554:4988): pid=24642 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3281" name="/newroot/855/bus/file0" dev="overlay" ino=6091 res=1 errno=0
[ 1252.010486][   T39] audit: type=1804 audit(2000001165.205:4989): pid=24650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3282" name="/newroot/724/bus/file0" dev="overlay" ino=5405 res=1 errno=0
[ 1252.644260][   T39] audit: type=1804 audit(2000001166.065:4990): pid=24669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3285" name="/newroot/774/bus/file0" dev="overlay" ino=5358 res=1 errno=0
[ 1253.400086][   T39] audit: type=1804 audit(2000001166.926:4991): pid=24685 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3288" name="/newroot/857/bus/file0" dev="overlay" ino=6111 res=1 errno=0
[ 1253.850327][T24702] usb usb8: usbfs: process 24702 (syz.3.3290) did not claim interface 0 before use
[ 1253.888395][   T39] audit: type=1326 audit(2000001167.441:4992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24695 comm="syz.3.3290" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd4579 code=0x7fc00000
[ 1253.998387][   T39] audit: type=1326 audit(2000001167.567:4993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24695 comm="syz.3.3290" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fd4579 code=0x7fc00000
[ 1254.004113][   T39] audit: type=1326 audit(2000001167.567:4994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24695 comm="syz.3.3290" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fd45a7 code=0x7fc00000
[ 1254.031368][   T39] audit: type=1326 audit(2000001167.567:4995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24695 comm="syz.3.3290" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7fd4579 code=0x7fc00000
[ 1254.171858][T24693] e1000e 0000:00:02.0 eth1: NIC Link is Down
[ 1254.249650][T24710] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3292'.
[ 1255.417794][   T39] audit: type=1804 audit(2000001169.047:4996): pid=24741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3295" name="/newroot/727/bus/file0" dev="overlay" ino=5429 res=1 errno=0
[ 1255.907427][T24749] 9pnet_fd: Insufficient options for proto=fd
[ 1256.200914][   T39] audit: type=1804 audit(2000001169.876:4997): pid=24766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3297" name="/newroot/728/bus/file0" dev="overlay" ino=5443 res=1 errno=0
[ 1257.133509][   T39] audit: type=1804 audit(2000001170.853:4998): pid=24784 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3300" name="/newroot/729/bus/file0" dev="overlay" ino=5457 res=1 errno=0
[ 1257.454368][   T39] audit: type=1804 audit(2000001171.178:4999): pid=24789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3301" name="/newroot/862/bus/file0" dev="overlay" ino=6179 res=1 errno=0
[ 1257.591382][T24794] sp0: Synchronizing with TNC
[ 1257.611121][T24794] sp0: Found TNC
[ 1257.616149][T24794] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3302'.
[ 1257.765712][T24797] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3303'.
[ 1257.902762][ T4771] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1258.154352][T24797] hsr_slave_1 (unregistering): left promiscuous mode
[ 1258.160592][T24798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3303'.
[ 1258.163018][T24798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3303'.
[ 1258.250051][T24788] [U] è`
[ 1258.423182][T24810] sp0: Synchronizing with TNC
[ 1258.435562][T24810] sp0: Found TNC
[ 1258.449373][T24810] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3305'.
[ 1259.225608][T24809] [U] è`
[ 1259.322017][   T39] audit: type=1804 audit(2000001172.971:5000): pid=24819 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3306" name="/newroot/861/bus/file0" dev="overlay" ino=6143 res=1 errno=0
[ 1259.885045][T24831] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1260.155513][T24833] Illegal XDP return value 4294967274 on prog  (id 1126) dev N/A, expect packet loss!
[ 1261.289206][   T39] audit: type=1804 audit(2000001175.018:5001): pid=24844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3311" name="/newroot/733/bus/file0" dev="overlay" ino=5503 res=1 errno=0
[ 1261.629612][   T39] audit: type=1804 audit(2000001175.574:5002): pid=24850 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3312" name="/newroot/865/bus/file0" dev="overlay" ino=6206 res=1 errno=0
[ 1261.875438][T24860] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3315'.
[ 1262.759658][   T39] audit: type=1804 audit(2000001176.739:5003): pid=24875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3317" name="/newroot/779/bus/file0" dev="overlay" ino=5392 res=1 errno=0
[ 1263.098174][T24883] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3318'.
[ 1263.105357][T24883] openvswitch: Êü: Dropping previously announced user features
[ 1263.643392][   T39] audit: type=1804 audit(2000001177.422:5004): pid=24889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3319" name="/newroot/867/bus/file0" dev="overlay" ino=6225 res=1 errno=0
[ 1263.749270][   T39] audit: type=1804 audit(2000001177.789:5005): pid=24888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3320" name="/newroot/735/file0/bus/bus" dev="9p" ino=36575672 res=1 errno=0
[ 1263.765670][T24888] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x5691b pfn:0x77959
[ 1263.768922][T24888] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 1263.775319][T24888] raw: 04fff00000000000 ffffea0001dd0988 ffffea0001e04008 0000000000000000
[ 1263.778069][T24888] raw: 000000000005691b 0000000000000000 00000000ffffffff 0000000000000000
[ 1263.782657][T24888] page dumped because: VM_BUG_ON_FOLIO(((unsigned int) folio_ref_count(folio) + 127u <= 127u))
[ 1263.786410][T24888] page_owner tracks the page as freed
[ 1263.793716][T24888] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 24881, tgid 24881 (syz.1.3318), ts 1262788256044, free_ts 1263669016997
[ 1263.799914][T24888]  post_alloc_hook+0x2d1/0x350
[ 1263.801692][T24888]  get_page_from_freelist+0x1351/0x2e50
[ 1263.803824][T24888]  __alloc_pages_noprof+0x22b/0x2460
[ 1263.805383][T24888]  alloc_pages_mpol_noprof+0x275/0x610
[ 1263.807078][T24888]  folio_alloc_mpol_noprof+0x36/0xd0
[ 1263.811726][T24888]  vma_alloc_folio_noprof+0xee/0x1b0
[ 1263.813617][T24888]  do_wp_page+0x1ada/0x3360
[ 1263.815142][T24888]  __handle_mm_fault+0x23c4/0x5470
[ 1263.816867][T24888]  handle_mm_fault+0x498/0xa60
[ 1263.819015][T24888]  do_user_addr_fault+0x60d/0x13f0
[ 1263.820803][T24888]  exc_page_fault+0x5c/0xc0
[ 1263.822411][T24888]  asm_exc_page_fault+0x26/0x30
[ 1263.823967][T24888] page last free pid 24881 tgid 24881 stack trace:
[ 1263.826527][T24888]  free_unref_folios+0x9e9/0x1390
[ 1263.835991][T24888]  folios_put_refs+0x560/0x760
[ 1263.838950][T24888]  free_pages_and_swap_cache+0x45f/0x510
[ 1263.842405][T24888]  __tlb_batch_free_encoded_pages+0xf9/0x290
[ 1263.844709][T24888]  tlb_flush_mmu+0xe9/0x590
[ 1263.849603][T24888]  unmap_page_range+0x1c74/0x3bf0
[ 1263.851685][T24888]  unmap_single_vma+0x194/0x2b0
[ 1263.853493][T24888]  unmap_vmas+0x22f/0x490
[ 1263.855164][T24888]  exit_mmap+0x1b8/0xb20
[ 1263.856754][T24888]  __mmput+0x12a/0x480
[ 1263.858381][T24888]  mmput+0x62/0x70
[ 1263.860048][T24888]  do_exit+0x9bf/0x2bb0
[ 1263.861988][T24888]  do_group_exit+0xd3/0x2a0
[ 1263.863858][T24888]  __ia32_sys_exit_group+0x3e/0x50
[ 1263.866048][T24888]  ia32_sys_call+0x13f8/0x1bb0
[ 1263.871758][T24888]  __do_fast_syscall_32+0x73/0x120
[ 1263.876934][T24888] ------------[ cut here ]------------
[ 1263.878973][T24888] kernel BUG at include/linux/mm.h:1460!
[ 1263.881186][T24888] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[ 1263.884317][T24888] CPU: 2 UID: 0 PID: 24888 Comm: syz.2.3320 Not tainted 6.11.0-syzkaller-02574-ga430d95c5efa #0
[ 1263.889221][T24888] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 1263.892735][T24888] RIP: 0010:__iov_iter_get_pages_alloc+0x1d1e/0x2240
[ 1263.895341][T24888] Code: b0 8b 48 89 df e8 32 4b 4e fd 90 0f 0b 49 89 c5 e9 99 f6 ff ff e8 f2 db 09 fd 48 c7 c6 20 44 b0 8b 4c 89 e7 e8 13 4b 4e fd 90 <0f> 0b e8 db db 09 fd 4c 8b 64 24 48 49 83 ec 01 e9 94 fd ff ff 4c
[ 1263.902291][T24888] RSP: 0018:ffffc90003f96fd8 EFLAGS: 00010246
[ 1263.903932][T24888] RAX: 0000000000040000 RBX: 0000000000000005 RCX: ffffc90006089000
[ 1263.906030][T24888] RDX: 0000000000040000 RSI: ffffffff848148dd RDI: ffff888012b52884
[ 1263.908199][T24888] RBP: ffffea0001de5674 R08: 0000000000000001 R09: fffffbfff2d27906
[ 1263.910520][T24888] R10: ffffffff9693c837 R11: ffff88802b628a40 R12: ffffea0001de5640
[ 1263.913130][T24888] R13: ffff888025d64800 R14: 0000000000001000 R15: 0000000000001000
[ 1263.916093][T24888] FS:  0000000000000000(0000) GS:ffff88802b800000(0063) knlGS:00000000f5696b40
[ 1263.919306][T24888] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1263.921596][T24888] CR2: 00000000f73435e4 CR3: 000000005f1a2000 CR4: 0000000000352ef0
[ 1263.924224][T24888] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1263.927104][T24888] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1263.930333][T24888] Call Trace:
[ 1263.931630][T24888]  <TASK>
[ 1263.932859][T24888]  ? show_regs+0x8c/0xa0
[ 1263.934661][T24888]  ? die+0x36/0xa0
[ 1263.936135][T24888]  ? do_trap+0x232/0x430
[ 1263.937748][T24888]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[ 1263.940038][T24888]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[ 1263.942589][T24888]  ? do_error_trap+0xf4/0x230
[ 1263.944362][T24888]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[ 1263.946733][T24888]  ? handle_invalid_op+0x34/0x40
[ 1263.948640][T24888]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[ 1263.950932][T24888]  ? exc_invalid_op+0x2e/0x50
[ 1263.952776][T24888]  ? asm_exc_invalid_op+0x1a/0x20
[ 1263.954624][T24888]  ? __iov_iter_get_pages_alloc+0x1d1d/0x2240
[ 1263.956870][T24888]  ? __iov_iter_get_pages_alloc+0x1d1e/0x2240
[ 1263.959187][T24888]  ? __iov_iter_get_pages_alloc+0x1d1d/0x2240
[ 1263.961412][T24888]  ? __pfx___iov_iter_get_pages_alloc+0x10/0x10
[ 1263.963729][T24888]  ? delete_node+0x207/0x8e0
[ 1263.965438][T24888]  iov_iter_get_pages_alloc2+0x53/0xf0
[ 1263.967541][T24888]  p9_get_mapped_pages.part.0.constprop.0+0x4ca/0x7d0
[ 1263.970033][T24888]  ? p9pdu_vwritef+0x368/0x21d0
[ 1263.971870][T24888]  ? __pfx_p9_get_mapped_pages.part.0.constprop.0+0x10/0x10
[ 1263.974663][T24888]  ? __pfx_p9pdu_vwritef+0x10/0x10
[ 1263.976541][T24888]  ? __pfx_p9pdu_vwritef+0x10/0x10
[ 1263.978596][T24888]  ? p9_tag_alloc+0x4cc/0x870
[ 1263.980340][T24888]  ? __pfx_lock_release+0x6/0x10
[ 1263.982174][T24888]  p9_virtio_zc_request+0x1ac/0x1460
[ 1263.984334][T24888]  ? p9pdu_writef+0xc4/0x100
[ 1263.986325][T24888]  ? __pfx_p9pdu_writef+0x10/0x10
[ 1263.988132][T24888]  ? __pfx_p9pdu_vwritef+0x10/0x10
[ 1263.989951][T24888]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[ 1263.992053][T24888]  ? rcu_is_watching+0x12/0xc0
[ 1263.993939][T24888]  ? trace_9p_protocol_dump+0x192/0x220
[ 1263.996079][T24888]  ? rcu_is_watching+0x12/0xc0
[ 1263.997845][T24888]  ? p9_client_prepare_req+0x111/0x4d0
[ 1263.999408][T24888]  ? __pfx_p9_client_prepare_req+0x10/0x10
[ 1264.001112][T24888]  ? hlock_class+0x4e/0x130
[ 1264.002480][T24888]  ? stack_trace_save+0x95/0xd0
[ 1264.003804][T24888]  p9_client_zc_rpc.constprop.0+0x29a/0x880
[ 1264.005430][T24888]  ? __pfx_p9_client_zc_rpc.constprop.0+0x10/0x10
[ 1264.007273][T24888]  ? __pfx___lock_acquire+0x10/0x10
[ 1264.009097][T24888]  ? hlock_class+0x4e/0x130
[ 1264.010733][T24888]  ? mark_lock+0xb5/0xc60
[ 1264.012303][T24888]  ? __pfx_mark_lock+0x10/0x10
[ 1264.014087][T24888]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[ 1264.016344][T24888]  p9_client_write+0x447/0x680
[ 1264.018342][T24888]  ? __pfx_p9_client_write+0x10/0x10
[ 1264.020366][T24888]  ? mark_held_locks+0x9f/0xe0
[ 1264.022049][T24888]  v9fs_issue_write+0xe2/0x180
[ 1264.023742][T24888]  ? __pfx_v9fs_issue_write+0x10/0x10
[ 1264.025705][T24888]  ? rcu_is_watching+0x12/0xc0
[ 1264.027611][T24888]  ? trace_netfs_sreq+0x193/0x220
[ 1264.029671][T24888]  netfs_do_issue_write+0x92/0x110
[ 1264.031837][T24888]  netfs_advance_write+0x384/0xbd0
[ 1264.033792][T24888]  ? netfs_buffer_append_folio+0x569/0x750
[ 1264.035873][T24888]  netfs_write_folio+0xc44/0x18f0
[ 1264.037687][T24888]  netfs_writepages+0x2ba/0xb90
[ 1264.039518][T24888]  ? __pfx_netfs_writepages+0x10/0x10
[ 1264.041476][T24888]  ? __pfx___lock_acquire+0x10/0x10
[ 1264.043320][T24888]  ? stack_access_ok+0xf9/0x270
[ 1264.045047][T24888]  ? __pfx_netfs_writepages+0x10/0x10
[ 1264.046972][T24888]  do_writepages+0x1a3/0x7f0
[ 1264.048651][T24888]  ? __pfx_do_writepages+0x10/0x10
[ 1264.050511][T24888]  ? __pfx_lock_acquire+0x10/0x10
[ 1264.052341][T24888]  ? do_raw_spin_lock+0x12d/0x2c0
[ 1264.054186][T24888]  ? do_raw_spin_unlock+0x172/0x230
[ 1264.055862][T24888]  ? _raw_spin_unlock+0x28/0x50
[ 1264.057641][T24888]  ? wbc_attach_and_unlock_inode+0x597/0x940
[ 1264.059820][T24888]  filemap_fdatawrite_wbc+0x148/0x1c0
[ 1264.061850][T24888]  __filemap_fdatawrite_range+0xba/0x100
[ 1264.063950][T24888]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[ 1264.066275][T24888]  v9fs_dir_release+0x429/0x590
[ 1264.068053][T24888]  ? __pfx_v9fs_dir_release+0x10/0x10
[ 1264.070040][T24888]  ? __pfx_v9fs_dir_release+0x10/0x10
[ 1264.072063][T24888]  __fput+0x3f6/0xb60
[ 1264.073574][T24888]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1264.075467][T24888]  task_work_run+0x14e/0x250
[ 1264.077128][T24888]  ? __pfx_task_work_run+0x10/0x10
[ 1264.078976][T24888]  syscall_exit_to_user_mode+0x27b/0x2a0
[ 1264.080977][T24888]  __do_fast_syscall_32+0x80/0x120
[ 1264.082798][T24888]  do_fast_syscall_32+0x32/0x80
[ 1264.084567][T24888]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1264.086997][T24888] RIP: 0023:0xf7f16579
[ 1264.088486][T24888] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1264.095369][T24888] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 000000000000014a
[ 1264.098859][T24888] RAX: 0000000000000008 RBX: 0000000000000009 RCX: 0000000000000008
[ 1264.101733][T24888] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1264.104634][T24888] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1264.107524][T24888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1264.110610][T24888] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1264.113845][T24888]  </TASK>
[ 1264.115014][T24888] Modules linked in:
[ 1264.126777][T24888] ---[ end trace 0000000000000000 ]---
[ 1264.128771][T24888] RIP: 0010:__iov_iter_get_pages_alloc+0x1d1e/0x2240
[ 1264.131664][T24888] Code: b0 8b 48 89 df e8 32 4b 4e fd 90 0f 0b 49 89 c5 e9 99 f6 ff ff e8 f2 db 09 fd 48 c7 c6 20 44 b0 8b 4c 89 e7 e8 13 4b 4e fd 90 <0f> 0b e8 db db 09 fd 4c 8b 64 24 48 49 83 ec 01 e9 94 fd ff ff 4c
[ 1264.139066][T24888] RSP: 0018:ffffc90003f96fd8 EFLAGS: 00010246
[ 1264.141624][T24888] RAX: 0000000000040000 RBX: 0000000000000005 RCX: ffffc90006089000
[ 1264.144639][T24888] RDX: 0000000000040000 RSI: ffffffff848148dd RDI: ffff888012b52884
[ 1264.148191][T24888] RBP: ffffea0001de5674 R08: 0000000000000001 R09: fffffbfff2d27906
[ 1264.151350][T24888] R10: ffffffff9693c837 R11: ffff88802b628a40 R12: ffffea0001de5640
[ 1264.154593][T24888] R13: ffff888025d64800 R14: 0000000000001000 R15: 0000000000001000
[ 1264.157482][T24888] FS:  0000000000000000(0000) GS:ffff88802b800000(0063) knlGS:00000000f5696b40
[ 1264.169742][T24888] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1264.172296][T24888] CR2: 000000000c2f3750 CR3: 000000005f1a2000 CR4: 0000000000352ef0
[ 1264.175265][T24888] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1264.178567][T24888] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1264.187279][T24888] Kernel panic - not syncing: Fatal exception
[ 1264.190090][T24888] Kernel Offset: disabled
[ 1264.191667][T24888] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:47:48  Registers:
info registers vcpu 0

CPU#0
RAX=1ffffffff1b8385d RBX=ffff888026343420 RCX=ffffffff8169cae3 RDX=dffffc0000000000
RSI=0000000000000004 RDI=ffff888026343420 RBP=ffff888026343428 RSP=ffffc900031af5b0
R8 =0000000000000000 R9 =ffffed1004c68684 R10=ffff888026343423 R11=0000000000000000
R12=ffff888026343430 R13=0000000000000025 R14=ffff8880236a8780 R15=ffff8880231b36c8
RIP=ffffffff8169cbf8 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000203ff000 CR3=0000000064666000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000002fcd5d4 RBX=0000000000000001 RCX=ffffffff8b094f29 RDX=ffffed10056e6fda
RSI=ffffffff8bb09d00 RDI=ffffffff816353dc RBP=ffffed10037e3910 RSP=ffffc90000477e08
R8 =0000000000000000 R9 =ffffed10056e6fd9 R10=ffff88802b737ecb R11=0000000000000001
R12=0000000000000001 R13=ffff88801bf1c880 R14=ffffffff901b3398 R15=0000000000000000
RIP=ffffffff8b09630f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002031d000 CR3=000000005c820000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000020800000000 0000000300000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84fcd3b5 RDI=ffffffff9a5e9460 RBP=ffffffff9a5e9420 RSP=ffffc90003f96968
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552032203a555043
R12=0000000000000000 R13=0000000000000033 R14=ffffffff84fcd350 R15=0000000000000000
RIP=ffffffff84fcd3df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b800000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73435e4 CR3=000000005f1a2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=fffffbfff3482f74 RBX=fffffbfff3482f75 RCX=ffffffff82e04b9b RDX=fffffbfff3482f75
RSI=0000000000000008 RDI=ffffffff9a417ba0 RBP=fffffbfff3482f74 RSP=ffffc90000e5f6f0
R8 =0000000000000000 R9 =fffffbfff3482f74 R10=ffffffff9a417ba7 R11=0000000000000000
R12=0000000000000080 R13=dffffc0000000000 R14=0000000000000002 R15=ffffc90000e5f860
RIP=ffffffff81e9aea1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055581569a088 CR3=0000000026010000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000800 Opmask01=00000000fffffff8 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffce557600 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000a3636
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000