last executing test programs:

9m56.932703365s ago: executing program 4 (id=1172):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8001}, 0x4)
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @random="e43f6642531e", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x1, 0x1, 0x10, 0x0, @void}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x20000000000000ba, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfd71}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x2000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

9m55.251220477s ago: executing program 4 (id=1193):
r0 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x200003, 0x1af}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000500)='io_uring_defer\x00', r3, 0x0, 0x10000}, 0x18)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x2, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3, 0x0, {0x2}})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x47f8, 0x0, 0x0, 0x0, 0x0)

9m50.610416545s ago: executing program 4 (id=1248):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x94173000)
unshare(0x60600)
r0 = socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x13}, 0x4e20, 0x3, 'none\x00', 0x1, 0x2, 0x6e}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x22, 0x8, 0x77}, {@rand_addr=0x64010105, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x44)

9m49.146155432s ago: executing program 4 (id=1265):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

9m48.971054263s ago: executing program 4 (id=1268):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92F\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x140070, 0x0)
fspick(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1)
fsopen(0x0, 0x1)

9m45.683787986s ago: executing program 4 (id=1309):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001030000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000004c0)={0x44, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000840)={0x44, &(0x7f0000000600)={0x0, 0x1, 0x1, "cc"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)

9m30.574044712s ago: executing program 32 (id=1309):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000059d360205f0501d09288000000010902120001030000000904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000004c0)={0x44, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000840)={0x44, &(0x7f0000000600)={0x0, 0x1, 0x1, "cc"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)

8m59.869562898s ago: executing program 3 (id=2006):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}})
statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x100, 0x800, 0x0)
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000002300)="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", 0x2000, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000dc0)={0x130, 0x0, 0xff, {0x7fff, 0xe08, 0x0, '\x00', {0x200, 0x7, 0x8, 0x1, r2, r3, 0x1000, '\x00', 0xbc92, 0x2, 0x3cb, 0xb8b, {0x7ff, 0x401}, {0x8, 0xf9}, {0x9, 0x54}, {0xfac, 0x400}, 0x6, 0x2, 0x8, 0xff}}}})
write$FUSE_INIT(r0, &(0x7f0000001200)={0x50, 0x0, r1}, 0x50)

8m59.622487599s ago: executing program 3 (id=2013):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0x0, 0x47, 0x0, 0x0, @tick, {0x40, 0xff}, {0x0, 0x9}, @queue={0xee, {0x7, 0xc9a}}}], 0x1c)
read$watch_queue(r1, 0x0, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000300)={'syz0\x00', {0xe, 0x8, 0xc, 0xffff}, 0x51, [0xff, 0xc, 0x10, 0x80, 0x0, 0xfffffffc, 0x8, 0x6, 0xdf, 0x0, 0x80000001, 0x7f, 0x1, 0x4, 0x7, 0x1, 0x71, 0x101, 0x93f1, 0x9, 0x1, 0x6, 0xa, 0x397, 0x1, 0x8, 0xff, 0x3, 0xb, 0x48000, 0x0, 0xfffffff8, 0x1, 0x296, 0x1, 0x3, 0xffffffff, 0x8b, 0x8, 0x3, 0x100, 0x0, 0x3, 0x4, 0x7, 0x2000000, 0xfffffff6, 0x39c, 0x2, 0x3ff, 0x8, 0x7fff, 0x68800, 0x1000, 0x4, 0x6, 0x0, 0x3, 0xff, 0xfffff9df, 0x6, 0x2, 0x500000, 0x7], [0xfffff615, 0xf9, 0x10000000, 0xfffffff7, 0x3, 0x1, 0x5, 0x8d26, 0x7ff, 0x2, 0x1, 0x2, 0x1, 0x4, 0x2, 0x3, 0x3, 0x1, 0xb65, 0x8000, 0xe, 0xbb16, 0x2, 0x2, 0xf, 0x1cd8, 0x401, 0x9f5, 0xa, 0x9cc5, 0x800, 0x6, 0x0, 0x10001, 0x4, 0x9, 0x7fff, 0x7, 0x23bc, 0x8, 0xd, 0x1fb1, 0x802, 0x100, 0xdf, 0x1000, 0x1, 0x7, 0x4, 0xe71, 0x9, 0x5, 0x4, 0xd, 0x5, 0x0, 0x3d, 0x1, 0x4db0, 0x0, 0x4, 0xfffffffb, 0x8b, 0x7f], [0x9, 0x2f6b, 0x4, 0xd, 0x2c3, 0x1, 0x2478, 0x6, 0x6, 0xe, 0x78aa, 0x5, 0xd97, 0x397, 0x100, 0x7, 0x2, 0x6, 0x80007fd, 0x101, 0xffffffff, 0x27a, 0x5ee, 0x7f, 0x6, 0xe663, 0x6, 0xd, 0xffffffff, 0x5, 0x1, 0x2, 0x7, 0x5, 0x0, 0x1, 0x1, 0x6, 0x82, 0x8, 0x7, 0x100, 0x5, 0x80, 0x9, 0x0, 0xfffffffa, 0x0, 0xff, 0x6, 0x1, 0x9, 0x8, 0x61d, 0x10001, 0x6, 0x4, 0xffffffa6, 0x9, 0xffff, 0x8, 0x4, 0xa], [0x5, 0xf915, 0x7, 0x20ade648, 0x10001, 0x6, 0x85, 0xe7, 0x4, 0x2b67, 0x7, 0x1, 0x1, 0x7b9, 0x6, 0x2, 0x10, 0x4, 0x8, 0xfffffffb, 0x7, 0x6, 0xc4, 0x4, 0x2, 0x4, 0x5b1, 0x6, 0x7, 0x6, 0x6, 0x4, 0x9, 0x10000, 0x4, 0x8, 0x800, 0x6, 0x4, 0x7, 0x2b101a82, 0x1, 0x3, 0x5a5, 0x4, 0x2, 0xf, 0x0, 0xc, 0x6, 0x7ff, 0x8, 0x8, 0x0, 0x7, 0xffffffff, 0xffffff24, 0xcc5c, 0xe8, 0xffff, 0x5, 0x6, 0x1, 0x7f]}, 0x45c)

8m59.203567487s ago: executing program 3 (id=2019):
r0 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
close(r0)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r1, 0xffffffff)
r2 = syz_io_uring_setup(0x82e, &(0x7f0000000240)={0x0, 0x200bc98, 0x10100, 0x3, 0x80000210}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000400)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000003c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x27e2, 0x0, 0x0, 0x0, 0x0)

8m59.103544397s ago: executing program 3 (id=2020):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x12c5008, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x500, 0x40)
open_tree(r0, &(0x7f0000000300)='\x00', 0x89901)

8m58.85650599s ago: executing program 3 (id=2023):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000020000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r0}, 0x20)
r2 = syz_io_uring_setup(0xd1, &(0x7f0000000280)={0x0, 0x8a73, 0x8, 0x1, 0x1b7}, &(0x7f0000000300)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0x8000103, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/15, 0xf}], 0x1})
io_uring_enter(r2, 0x47ba, 0x3000000, 0x300000000000000, 0x0, 0x0)

8m55.771744413s ago: executing program 3 (id=2054):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
readv(r2, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x1)

8m55.325715163s ago: executing program 33 (id=2054):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
readv(r2, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x1)

8m13.382620644s ago: executing program 6 (id=2794):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)

8m13.20883278s ago: executing program 6 (id=2799):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
madvise(&(0x7f0000366000/0x2000)=nil, 0x2000, 0x13)

8m13.066476543s ago: executing program 6 (id=2802):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
prctl$PR_SET_VMA(0x53564d41, 0xf4, &(0x7f00000e9000/0x3000)=nil, 0x3000, 0x0)

8m12.809756249s ago: executing program 6 (id=2808):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

8m12.541979446s ago: executing program 6 (id=2814):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000a000/0x18000)=nil, &(0x7f0000001140)=[@text16={0x10, &(0x7f0000000040)="0f01cb650f7410262e66f36d0f330f09660f3a0cb90000a6752066b9800000c00f326635004000000f300f01d7ba4100ed", 0x31}], 0x1, 0x4498bda7e2139f37, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x7, 0x108000, 0x3c, 0x2, 0xf77, 0x2004cc, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x5, 0x7, 0x8, 0x0, 0x2, 0xfffffffffffffffd, 0x1], 0x8083000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

8m11.434730245s ago: executing program 6 (id=2836):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
fchmodat(0xffffffffffffff9c, 0x0, 0xffffffd3)

8m10.912283476s ago: executing program 34 (id=2836):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
fchmodat(0xffffffffffffff9c, 0x0, 0xffffffd3)

6m47.67649319s ago: executing program 5 (id=4403):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[], 0x88}, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
getsockopt$bt_BT_CHANNEL_POLICY(r2, 0x112, 0xa, 0x0, &(0x7f0000000100))

6m47.519160926s ago: executing program 5 (id=4407):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x900, 0x0)
fchown(r2, 0xee00, 0x0)

6m47.29439605s ago: executing program 5 (id=4413):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={0x78, 0x0, 0x1, 0x401, 0x0, 0x1a14, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @broadcast}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_SEQ_ADJ_REPLY={0x14, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4008080}, 0x0)

6m47.099653542s ago: executing program 5 (id=4418):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000002a00010a000000000051e63490f45f0008"], 0x24}}, 0x0)

6m46.901110551s ago: executing program 5 (id=4423):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000080)={0x8})

6m46.765848281s ago: executing program 5 (id=4427):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x11)

6m31.678013504s ago: executing program 35 (id=4427):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x11)

2m20.390506776s ago: executing program 8 (id=10276):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="020a00030700000026bd7000fbdbdf2505001a00ffffffff000000000000000000000000e000000200000000000000eb2a06192aa5806fd3"], 0x38}}, 0x20000000)

2m20.157648515s ago: executing program 8 (id=10282):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6(0xa, 0x3, 0x7)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000140)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x5, 0x0, 0xff, 0x0, 0xffc0, 0x3}, &(0x7f0000000180)=0x20)

2m19.862624643s ago: executing program 8 (id=10290):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f00000000c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000000280)={0x1, 0x1ff, 0x1, 0x3, 0x9d, 0x8c, 0x11}, 0xc)

2m19.684743076s ago: executing program 8 (id=10293):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x12c5008, 0x0)
openat$uinput(0xffffffffffffff9c, 0x0, 0x802, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89101)
mount$bind(0x0, &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x80000, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

2m19.347349345s ago: executing program 8 (id=10301):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = syz_open_procfs$pagemap(0x0, &(0x7f0000000200))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000580)={0x60, 0x1, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x6, 0x0, 0x0, 0x3ff, 0x3, 0x20, 0x8, 0x31})

2m18.357053303s ago: executing program 8 (id=10323):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, 0x0)

2m18.095033617s ago: executing program 36 (id=10323):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, 0x0)

4.566624402s ago: executing program 9 (id=13065):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x84000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f00000004c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=0x0, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
splice(r2, 0x0, r3, 0x0, 0xe964, 0x9)

4.433364188s ago: executing program 9 (id=13067):
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x100000f, 0x810, 0xffffffffffffffff, 0x57c68000)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r0, 0x1)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)

4.364818019s ago: executing program 1 (id=13070):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace(0x19, r2)

4.227067884s ago: executing program 1 (id=13072):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f00007fe000/0x800000)=nil)

4.039560856s ago: executing program 1 (id=13077):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
exit(0x100000000000035)

3.551521628s ago: executing program 9 (id=13092):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x8}, 0x18)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0x8000000000, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3, 0x0, 0x300000000000000, 0x7fffffff, 0xfffffffffffffffc}, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

3.106528996s ago: executing program 1 (id=13100):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(serpent)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0x5867, 0x400, 0xfffffffc, 0x2d0}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0xffffffdc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4007, @fd_index=0x4, 0x0, &(0x7f0000000100)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r2, 0x100847c0, 0x0, 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r1)
sendmsg$NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x4008004)

2.603615639s ago: executing program 9 (id=13109):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000540)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)

2.390917407s ago: executing program 9 (id=13114):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvmmsg(r3, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x40012140, 0x0)

2.201292076s ago: executing program 9 (id=13116):
r0 = syz_usb_connect(0x5, 0x35, &(0x7f0000000500)=ANY=[@ANYBLOB="120100004aaf36207205a5580a27010203010902230001000000000904010901a37d7e03"], 0x0)
syz_usb_disconnect(r0)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xac, 0x8b, 0x29, 0x10, 0x2001, 0x330d, 0x940b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0xb0, 0x0, [{{0x9, 0x4, 0xb5, 0x2, 0x0, 0xff, 0xff, 0xff}}]}}]}}, 0x0)
syz_usb_control_io$printer(r1, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)
syz_usb_control_io$lan78xx(r1, &(0x7f0000000100)={0x14, 0x0, &(0x7f00000001c0)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)
syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0)
syz_usb_control_io$printer(r1, 0x0, 0x0)
syz_usb_control_io$printer(r1, &(0x7f0000000000)={0x14, 0x0, &(0x7f0000000180)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)

1.996610515s ago: executing program 1 (id=13120):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)={0x14, r3, 0x1, 0x0, 0x25dfdbfd, {0x54}}, 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x8000)

1.952677627s ago: executing program 7 (id=13123):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
socket$inet(0x2, 0x3, 0x0)

1.538646863s ago: executing program 7 (id=13128):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x3, &(0x7f0000000000)=0x1, 0x4)

1.42847552s ago: executing program 0 (id=13130):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x2b9, &(0x7f0000000740)={0x0, 0xb1e9, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000080)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r1, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
bind$bt_sco(r0, &(0x7f0000000040), 0x8)
listen(r0, 0x1)
accept4(r0, 0x0, 0x0, 0x80800)

1.405653471s ago: executing program 7 (id=13131):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
ppoll(&(0x7f0000000100)=[{r2, 0x408}], 0x1, 0x0, 0x0, 0x0)

1.25056824s ago: executing program 7 (id=13133):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)={0x2c, r3, 0x1, 0x0, 0x0, {0x1a}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)

993.73014ms ago: executing program 0 (id=13136):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$netlink(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="110000005a00010100"], 0x1c}], 0x1}, 0x0)

910.034581ms ago: executing program 7 (id=13137):
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x100000f, 0x810, 0xffffffffffffffff, 0x57c68000)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r0, 0x1)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)

908.072834ms ago: executing program 0 (id=13147):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r3, 0x4030ae7b, &(0x7f0000000040)={0xfffffffffffffff7, 0x4, 0x6, 0x4, 0xfffffffffffffffe})

747.956603ms ago: executing program 2 (id=13139):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x20000023896)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
read$FUSE(r0, &(0x7f00000044c0)={0x2020}, 0x2020)

648.559725ms ago: executing program 2 (id=13140):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r2, 0x0, 0x29, 0x0, 0x57)

586.036805ms ago: executing program 2 (id=13141):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCGICOUNT(r2, 0x545d, 0xff4f370c567f0000)

585.153963ms ago: executing program 0 (id=13142):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x13, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x40}, [@printk={@d, {0x3, 0x3, 0x3, 0xa, 0x1, 0xfe00}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xe91}}]}, &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x40f00, 0x1}, 0x94)

419.730534ms ago: executing program 1 (id=13143):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
mount$bpf(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1000000, &(0x7f0000000400)={[{@mode={'mode', 0x3d, 0x3}}]})

416.285252ms ago: executing program 2 (id=13144):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x0, 0x2})
socket(0x11, 0x2, 0x1)

403.00572ms ago: executing program 0 (id=13145):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, 0x0, 0x0)

259.719065ms ago: executing program 2 (id=13146):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x9})
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)

1.820113ms ago: executing program 0 (id=13148):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r2 = socket$inet_icmp(0x2, 0x2, 0x1)
write(r2, &(0x7f0000000180)="320a023ad0ae662e", 0x8)

1.634091ms ago: executing program 2 (id=13149):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x1, &(0x7f0000000380)=@raw=[@alu={0x4, 0x0, 0x1, 0x1, 0xf, 0x40, 0xffffffffffffffff}], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 7 (id=13150):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e20, @multicast2}, 0x10)

kernel console output (not intermixed with test programs):

7661] bond_slave_0: entered allmulticast mode
[  447.848110][T17661] bond_slave_1: entered allmulticast mode
[  447.848128][T17661] vlan0: entered allmulticast mode
[  447.848139][T17661] veth0: entered allmulticast mode
[  447.861481][T17661] dummy0: entered promiscuous mode
[  447.861506][T17661] dummy0: entered allmulticast mode
[  447.862597][T17661] nlmon0: entered promiscuous mode
[  447.862616][T17661] nlmon0: entered allmulticast mode
[  448.011521][T17661] caif0: entered promiscuous mode
[  448.011540][T17661] caif0: entered allmulticast mode
[  448.011559][T17661] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  448.169807][T17680] bpf: Bad value for 'mode'
[  448.631216][ T5815] Bluetooth: hci3: command 0x0401 tx timeout
[  448.911151][   T37] audit: type=1326 audit(1763268205.832:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911206][   T37] audit: type=1326 audit(1763268205.832:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911246][   T37] audit: type=1326 audit(1763268205.832:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911282][   T37] audit: type=1326 audit(1763268205.832:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911323][   T37] audit: type=1326 audit(1763268205.832:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911364][   T37] audit: type=1326 audit(1763268205.832:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911401][   T37] audit: type=1326 audit(1763268205.832:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911440][   T37] audit: type=1326 audit(1763268205.832:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911475][   T37] audit: type=1326 audit(1763268205.832:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  448.911513][   T37] audit: type=1326 audit(1763268205.832:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17720 comm="syz.8.5375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x50000
[  450.692196][T17776] XFS (nullb0): Invalid superblock magic number
[  450.823214][T17790] binder: 17787:17790 ioctl c0306201 0 returned -14
[  451.114264][T17799] netlink: 'syz.1.5411': attribute type 19 has an invalid length.
[  452.014404][T17832] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5426'.
[  452.168983][T17844] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5432'.
[  454.912334][   T37] kauditd_printk_skb: 2844 callbacks suppressed
[  454.912353][   T37] audit: type=1326 audit(1763268211.832:3422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17972 comm="syz.8.5496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  454.912397][   T37] audit: type=1326 audit(1763268211.842:3423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17972 comm="syz.8.5496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  454.912434][   T37] audit: type=1326 audit(1763268211.842:3424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17972 comm="syz.8.5496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  455.698264][   T37] audit: type=1326 audit(1763268212.622:3425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18014 comm="syz.8.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  455.698317][   T37] audit: type=1326 audit(1763268212.622:3426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18014 comm="syz.8.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  455.751283][   T37] audit: type=1326 audit(1763268212.682:3427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18014 comm="syz.8.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  455.752156][   T37] audit: type=1326 audit(1763268212.682:3428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18014 comm="syz.8.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  455.759757][   T37] audit: type=1326 audit(1763268212.682:3429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18014 comm="syz.8.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  455.770552][   T37] audit: type=1326 audit(1763268212.692:3430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18014 comm="syz.8.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  455.770605][   T37] audit: type=1326 audit(1763268212.692:3431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18014 comm="syz.8.5516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  456.958727][T18072] netlink: 300 bytes leftover after parsing attributes in process `syz.8.5543'.
[  458.841810][T18139] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5570'.
[  459.318323][T18158] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5582'.
[  459.621309][T18166] netlink: 324 bytes leftover after parsing attributes in process `syz.1.5586'.
[  459.621369][T18166] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5586'.
[  459.692376][T18167] overlayfs: conflicting options: nfs_export=on,index=off
[  462.900448][T18279] netlink: 'syz.0.5636': attribute type 30 has an invalid length.
[  463.982098][T18295] overlayfs: failed to resolve './file0redirect_dir=follow': -2
[  466.531619][T18414] netlink: 13 bytes leftover after parsing attributes in process `syz.8.5702'.
[  466.629406][T18420] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5704'.
[  466.630483][T18420] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5704'.
[  468.059655][   T37] kauditd_printk_skb: 15 callbacks suppressed
[  468.059673][   T37] audit: type=1326 audit(1763268224.982:3447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.059721][   T37] audit: type=1326 audit(1763268224.982:3448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.066970][   T37] audit: type=1326 audit(1763268224.992:3449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.067252][   T37] audit: type=1326 audit(1763268224.992:3450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.067496][   T37] audit: type=1326 audit(1763268224.992:3451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.068008][   T37] audit: type=1326 audit(1763268224.992:3452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.091400][   T37] audit: type=1326 audit(1763268225.022:3453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.091674][   T37] audit: type=1326 audit(1763268225.022:3454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.092386][   T37] audit: type=1326 audit(1763268225.022:3455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.112467][   T37] audit: type=1326 audit(1763268225.022:3456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18484 comm="syz.1.5735" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  468.813952][T18520] !@ÿ: renamed from xfrm0 (while UP)
[  469.061187][T18534] tmpfs: Bad value for 'mpol'
[  469.614767][T18563] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5773'.
[  470.118079][T18589] netlink: 'syz.0.5785': attribute type 1 has an invalid length.
[  470.302574][T18589] 8021q: adding VLAN 0 to HW filter on device bond1
[  470.368217][T18600] ip6gretap1: entered allmulticast mode
[  470.399329][T18600] bond1: (slave ip6gretap1): making interface the new active one
[  470.416649][T18600] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  471.487197][T18670] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5823'.
[  471.788015][T18687] bridge0: port 3(veth0) entered blocking state
[  471.794608][T18687] bridge0: port 3(veth0) entered disabled state
[  471.794898][T18687] veth0: entered allmulticast mode
[  471.810351][T18687] veth0: entered promiscuous mode
[  471.982830][T18697] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5837'.
[  472.326447][T18717] netlink: 'syz.0.5846': attribute type 4 has an invalid length.
[  472.326469][T18717] netlink: 17 bytes leftover after parsing attributes in process `syz.0.5846'.
[  472.421222][   T10] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  472.611195][   T10] usb 9-1: Using ep0 maxpacket: 32
[  472.613763][   T10] usb 9-1: config index 0 descriptor too short (expected 28486, got 36)
[  472.613789][   T10] usb 9-1: config 15 has too many interfaces: 240, using maximum allowed: 32
[  472.613808][   T10] usb 9-1: config 15 has an invalid descriptor of length 34, skipping remainder of the config
[  472.613826][   T10] usb 9-1: config 15 has 0 interfaces, different from the descriptor's value: 240
[  472.616758][   T10] usb 9-1: New USB device found, idVendor=108c, idProduct=0168, bcdDevice=84.b2
[  472.616784][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  472.616801][   T10] usb 9-1: Product: syz
[  472.616813][   T10] usb 9-1: Manufacturer: syz
[  472.616827][   T10] usb 9-1: SerialNumber: syz
[  472.883347][   T10] usb 9-1: USB disconnect, device number 3
[  473.306540][T18762] netlink: 72 bytes leftover after parsing attributes in process `syz.0.5869'.
[  473.306567][T18762] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5869'.
[  473.873976][   T37] kauditd_printk_skb: 16 callbacks suppressed
[  473.873993][   T37] audit: type=1326 audit(1763268230.802:3473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18795 comm="syz.1.5886" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x0
[  474.008204][T18801] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  474.008222][T18801] overlayfs: missing 'lowerdir'
[  474.128781][T18809] overlayfs: cannot append lower layer
[  474.209311][T18815] netlink: 104 bytes leftover after parsing attributes in process `syz.0.5896'.
[  475.281154][ T1584] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  475.376287][   T37] audit: type=1326 audit(1763268232.302:3474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18881 comm="syz.7.5928" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x0
[  475.431769][ T1584] usb 9-1: Using ep0 maxpacket: 16
[  475.439143][ T1584] usb 9-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 7.00
[  475.439172][ T1584] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.439191][ T1584] usb 9-1: Product: syz
[  475.439204][ T1584] usb 9-1: Manufacturer: syz
[  475.439226][ T1584] usb 9-1: SerialNumber: syz
[  475.483251][ T1584] usb 9-1: config 0 descriptor??
[  475.493681][ T1584] ftdi_sio 9-1:0.0: FTDI USB Serial Device converter detected
[  475.495266][ T1584] usb 9-1: Detected FT2232H
[  475.687847][ T1584] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  475.698077][ T1584] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  475.700468][ T1584] usb 9-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  475.731636][ T1584] usb 9-1: USB disconnect, device number 4
[  475.738608][ T1584] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  475.739061][ T1584] ftdi_sio 9-1:0.0: device disconnected
[  476.247627][T18928] netlink: 128 bytes leftover after parsing attributes in process `syz.7.5950'.
[  476.247653][T18928] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5950'.
[  476.563649][T18947] 9pnet_fd: Insufficient options for proto=fd
[  478.226591][T18996] netlink: 180 bytes leftover after parsing attributes in process `syz.8.5984'.
[  478.681282][ T1584] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  478.837797][ T1584] usb 8-1: config 1 has an invalid interface number: 7 but max is 0
[  478.837823][ T1584] usb 8-1: config 1 has no interface number 0
[  478.837867][ T1584] usb 8-1: config 1 interface 7 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  478.837889][ T1584] usb 8-1: config 1 interface 7 altsetting 0 bulk endpoint 0xF has invalid maxpacket 8
[  478.837911][ T1584] usb 8-1: config 1 interface 7 altsetting 0 endpoint 0xE has an invalid bInterval 0, changing to 7
[  478.913958][ T1584] usb 8-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  478.913989][ T1584] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  478.914008][ T1584] usb 8-1: Product: syz
[  478.914021][ T1584] usb 8-1: Manufacturer: syz
[  478.914035][ T1584] usb 8-1: SerialNumber: syz
[  479.529813][T19010] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  479.529961][T19010] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  479.540083][ T1584] usb 8-1: Expected 3 endpoints, found: 2
[  479.673737][T19024] netlink: 'syz.8.5995': attribute type 30 has an invalid length.
[  479.758464][ T1584] usb 8-1: USB disconnect, device number 13
[  481.869031][T19129] netlink: 'syz.0.6049': attribute type 13 has an invalid length.
[  481.889114][   T37] audit: type=1326 audit(1763268238.812:3475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19131 comm="syz.1.6050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  481.889167][   T37] audit: type=1326 audit(1763268238.812:3476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19131 comm="syz.1.6050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  481.889208][   T37] audit: type=1326 audit(1763268238.812:3477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19131 comm="syz.1.6050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  482.342642][T19159] : renamed from bond_slave_0
[  482.533214][T19169] cgroup: name respecified
[  482.572965][T19170] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6066'.
[  483.634845][T19230] netlink: 24 bytes leftover after parsing attributes in process `syz.8.6094'.
[  484.651394][T19290] netlink: 5 bytes leftover after parsing attributes in process `syz.8.6124'.
[  484.678212][T19290] gretap0: entered promiscuous mode
[  484.689376][T19290] netlink: 'syz.8.6124': attribute type 1 has an invalid length.
[  484.689400][T19290] netlink: 3 bytes leftover after parsing attributes in process `syz.8.6124'.
[  485.621906][T19344] MTD: Couldn't look up '/dev/sg0': -15
[  485.621993][T19344] /dev/sg0: Can't lookup blockdev
[  485.936037][T19363] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6160'.
[  485.946559][T19362] netlink: 6 bytes leftover after parsing attributes in process `syz.1.6161'.
[  486.881190][ T5946] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  487.037166][ T5946] usb 1-1: Using ep0 maxpacket: 32
[  487.039546][ T5946] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[  487.039573][ T5946] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  487.039594][ T5946] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[  487.039646][ T5946] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  487.039666][ T5946] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  487.039689][ T5946] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  487.039729][ T5946] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  487.039751][ T5946] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.128872][ T5946] usb 1-1: config 0 descriptor??
[  487.372165][ T5946] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 20 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  487.408992][ T5946] usb 1-1: USB disconnect, device number 20
[  487.423613][ T5946] usblp0: removed
[  487.591497][   T31] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  487.763781][   T31] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  487.763844][   T31] usb 9-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  487.763866][   T31] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.769299][   T31] usb 9-1: config 0 descriptor??
[  487.786648][   T31] pwc: Askey VC010 type 2 USB webcam detected.
[  487.796738][T19435] netlink: 212368 bytes leftover after parsing attributes in process `syz.7.6194'.
[  488.184108][   T31] pwc: recv_control_msg error -32 req 02 val 2b00
[  488.185570][   T31] pwc: recv_control_msg error -32 req 02 val 2700
[  488.186712][   T31] pwc: recv_control_msg error -32 req 02 val 2c00
[  488.187490][   T31] pwc: recv_control_msg error -32 req 04 val 1000
[  488.188358][   T31] pwc: recv_control_msg error -32 req 04 val 1300
[  488.189042][   T31] pwc: recv_control_msg error -32 req 04 val 1400
[  488.390678][   T31] pwc: recv_control_msg error -71 req 02 val 2100
[  488.394857][   T31] pwc: recv_control_msg error -71 req 04 val 1500
[  488.396565][   T31] pwc: recv_control_msg error -71 req 02 val 2500
[  488.397060][   T31] pwc: recv_control_msg error -71 req 02 val 2400
[  488.397611][   T31] pwc: recv_control_msg error -71 req 02 val 2600
[  488.400684][   T31] pwc: recv_control_msg error -71 req 02 val 2900
[  488.404196][   T31] pwc: recv_control_msg error -71 req 02 val 2800
[  488.405051][   T31] pwc: recv_control_msg error -71 req 04 val 1100
[  488.406187][   T31] pwc: recv_control_msg error -71 req 04 val 1200
[  488.525519][   T31] pwc: Registered as video103.
[  488.530897][   T31] input: PWC snapshot button as /devices/platform/dummy_hcd.8/usb9/9-1/input/input23
[  488.555668][   T31] usb 9-1: USB disconnect, device number 5
[  490.753671][T19540] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6245'.
[  491.319557][T19564] netlink: 596 bytes leftover after parsing attributes in process `syz.1.6257'.
[  491.320081][T19564] unsupported nlmsg_type 40
[  491.331444][   T10] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  491.481111][   T10] usb 9-1: Using ep0 maxpacket: 16
[  491.483561][   T10] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  491.483586][   T10] usb 9-1: config 0 has no interfaces?
[  491.483615][   T10] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  491.483637][   T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  491.532561][   T10] usb 9-1: config 0 descriptor??
[  491.741385][T19552] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  491.741821][T19552] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  491.749827][   T31] usb 9-1: USB disconnect, device number 6
[  496.716844][T19781] 8021q: VLANs not supported on gre0
[  496.740770][   T44] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  496.921211][   T44] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  496.921240][   T44] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  496.921285][   T44] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  496.921307][   T44] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  496.926768][   T44] usb 9-1: config 0 descriptor??
[  496.992877][   T37] audit: type=1804 audit(1763268253.862:3478): pid=19787 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.7.6366" name="/newroot/478/file0" dev="tmpfs" ino=2845 res=1 errno=0
[  497.392352][   T44] usbhid 9-1:0.0: can't add hid device: -71
[  497.392482][   T44] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  497.398507][   T44] usb 9-1: USB disconnect, device number 7
[  497.838986][T19814] netlink: 5 bytes leftover after parsing attributes in process `syz.7.6379'.
[  497.877110][T19814] gretap0: entered promiscuous mode
[  497.896880][T19814] netlink: 'syz.7.6379': attribute type 1 has an invalid length.
[  497.896902][T19814] netlink: 3 bytes leftover after parsing attributes in process `syz.7.6379'.
[  498.771735][T19854] overlayfs: overlapping lowerdir path
[  498.840215][T19858] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  499.820319][T19900] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6421'.
[  500.497898][T19925] netlink: 52 bytes leftover after parsing attributes in process `syz.1.6434'.
[  500.497975][T19925] netlink: 52 bytes leftover after parsing attributes in process `syz.1.6434'.
[  500.637797][T19925] netlink: 52 bytes leftover after parsing attributes in process `syz.1.6434'.
[  500.637861][T19925] netlink: 52 bytes leftover after parsing attributes in process `syz.1.6434'.
[  501.047162][T19925] netlink: 52 bytes leftover after parsing attributes in process `syz.1.6434'.
[  501.047230][T19925] netlink: 52 bytes leftover after parsing attributes in process `syz.1.6434'.
[  501.137787][T19949] veth1_to_bond: entered allmulticast mode
[  501.162758][T19949] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6443'.
[  501.548318][T19949] bond0: (slave bond_slave_1): Releasing backup interface
[  501.692897][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  501.692972][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  502.101618][T19962] lo: entered promiscuous mode
[  502.101837][T19962] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  503.199342][   T37] audit: type=1326 audit(1763268260.122:3479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20028 comm="syz.1.6483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  503.200067][   T37] audit: type=1326 audit(1763268260.122:3480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20028 comm="syz.1.6483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  503.200342][   T37] audit: type=1326 audit(1763268260.122:3481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20028 comm="syz.1.6483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  503.220404][   T37] audit: type=1326 audit(1763268260.122:3482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20028 comm="syz.1.6483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  503.296443][   T37] audit: type=1326 audit(1763268260.222:3483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20029 comm="syz.0.6482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  503.299608][   T37] audit: type=1326 audit(1763268260.222:3484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20029 comm="syz.0.6482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  503.299654][   T37] audit: type=1326 audit(1763268260.222:3485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20029 comm="syz.0.6482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  503.299693][   T37] audit: type=1326 audit(1763268260.222:3486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20029 comm="syz.0.6482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  503.299733][   T37] audit: type=1326 audit(1763268260.222:3487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20029 comm="syz.0.6482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  503.299774][   T37] audit: type=1326 audit(1763268260.222:3488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20029 comm="syz.0.6482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  503.698756][T20051] binder: 20049:20051 ioctl c018620c 200000000000 returned -1
[  504.729128][T20115] __nla_validate_parse: 1 callbacks suppressed
[  504.729149][T20115] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6522'.
[  504.862996][T20119] netlink: 'syz.1.6524': attribute type 4 has an invalid length.
[  505.132457][T20130] netlink: 64 bytes leftover after parsing attributes in process `syz.7.6529'.
[  505.139001][T20133] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  505.139017][T20133] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  505.139030][T20133] overlayfs: missing 'lowerdir'
[  505.291211][   T31] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  505.461722][   T31] usb 9-1: Using ep0 maxpacket: 32
[  505.465451][   T31] usb 9-1: config 0 has an invalid interface number: 217 but max is 0
[  505.465478][   T31] usb 9-1: config 0 has no interface number 0
[  505.465530][   T31] usb 9-1: config 0 interface 217 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  505.469068][   T31] usb 9-1: New USB device found, idVendor=1532, idProduct=d2a2, bcdDevice=f7.ed
[  505.469096][   T31] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  505.469116][   T31] usb 9-1: Product: syz
[  505.469129][   T31] usb 9-1: Manufacturer: syz
[  505.469143][   T31] usb 9-1: SerialNumber: syz
[  505.485731][   T31] usb 9-1: config 0 descriptor??
[  505.740783][   T31] usb 9-1: USB disconnect, device number 8
[  507.191670][T20224] netlink: 16 bytes leftover after parsing attributes in process `syz.7.6574'.
[  508.561488][T20283] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  508.743560][   T37] kauditd_printk_skb: 22 callbacks suppressed
[  508.743577][   T37] audit: type=1326 audit(1763268265.672:3511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20287 comm="syz.7.6607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  508.743621][   T37] audit: type=1326 audit(1763268265.672:3512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20287 comm="syz.7.6607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  508.743661][   T37] audit: type=1326 audit(1763268265.672:3513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20287 comm="syz.7.6607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  509.025497][T20298] netlink: 'syz.8.6613': attribute type 12 has an invalid length.
[  509.267405][T20309] tc_dump_action: action bad kind
[  509.360508][T20315] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6619'.
[  510.354298][T20359] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6641'.
[  510.390619][T20362] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  510.390638][T20362] overlayfs: missing 'lowerdir'
[  510.616471][T20374] 9pnet_fd: Insufficient options for proto=fd
[  510.909660][T20390] netlink: 'syz.7.6657': attribute type 64 has an invalid length.
[  510.909682][T20390] netlink: 5 bytes leftover after parsing attributes in process `syz.7.6657'.
[  510.909863][T20390] gretap0: left promiscuous mode
[  510.909881][T20390] gretap0: entered allmulticast mode
[  510.953559][T20390] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  511.990348][T20436] netlink: 'syz.1.6679': attribute type 12 has an invalid length.
[  513.448335][T20500] overlayfs: failed to resolve './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  513.907601][T20522] trusted_key: encrypted_key: keyword 'new0default' not recognized
[  514.000229][T20528] netlink: 37 bytes leftover after parsing attributes in process `syz.8.6724'.
[  515.904854][T20632] nfs: Unknown parameter '''
[  516.092662][T20641] binder: 20639:20641 ioctl 400c620e 200000000100 returned -22
[  516.420544][T20662] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6787'.
[  516.848374][T20686] netlink: 'syz.8.6800': attribute type 10 has an invalid length.
[  516.848399][T20686] netlink: 17 bytes leftover after parsing attributes in process `syz.8.6800'.
[  517.222061][T20711] overlayfs: failed to resolve './file0': -2
[  517.351339][ T5813] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  517.482514][T20720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  517.501678][ T5813] usb 8-1: Using ep0 maxpacket: 16
[  517.504290][ T5813] usb 8-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  517.504321][ T5813] usb 8-1: config 0 interface 0 has no altsetting 0
[  517.504353][ T5813] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  517.504375][ T5813] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  517.524747][ T5813] usb 8-1: config 0 descriptor??
[  517.983624][ T5813] nzxt-smart2 0003:1E71:2009.000E: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.7-1/input0
[  518.371431][ T1853] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  518.456165][ T5813] usb 8-1: USB disconnect, device number 14
[  518.545760][ T1853] usb 1-1: Using ep0 maxpacket: 32
[  518.548076][ T1853] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  518.548104][ T1853] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  518.548138][ T1853] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  518.548160][ T1853] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  518.606417][ T1853] usb 1-1: config 0 descriptor??
[  519.063296][ T1853] savu 0003:1E7D:2D5A.000F: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  519.346421][   T31] usb 1-1: USB disconnect, device number 21
[  520.603184][ T5946] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  520.772485][ T5946] usb 1-1: Using ep0 maxpacket: 32
[  520.775347][ T5946] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  520.775377][ T5946] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  520.775400][ T5946] usb 1-1: config 0 interface 0 has no altsetting 0
[  520.775433][ T5946] usb 1-1: New USB device found, idVendor=046d, idProduct=c225, bcdDevice= 0.00
[  520.775455][ T5946] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  520.849548][ T5946] usb 1-1: config 0 descriptor??
[  521.475176][ T5946] lg-g15 0003:046D:C225.0010: unknown main item tag 0x2
[  521.475214][ T5946] lg-g15 0003:046D:C225.0010: item fetching failed at offset 5/6
[  521.476071][ T5946] lg-g15 0003:046D:C225.0010: probe with driver lg-g15 failed with error -22
[  521.609777][T20874] netlink: 'syz.7.6890': attribute type 4 has an invalid length.
[  521.667546][ T5813] usb 1-1: USB disconnect, device number 22
[  521.801279][ T5946] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  521.967292][ T5946] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  521.967324][ T5946] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  521.967345][ T5946] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  521.967387][ T5946] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  521.967417][ T5946] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  521.974867][ T5946] usb 9-1: config 0 descriptor??
[  522.429704][ T5946] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  522.835985][T20930] ªªªªªª: renamed from vlan0
[  522.964172][T20934] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6919'.
[  524.495364][ T5813] usb 9-1: USB disconnect, device number 9
[  524.938539][T21008] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6956'.
[  526.378167][T21058] netlink: 100 bytes leftover after parsing attributes in process `syz.7.6965'.
[  526.724044][T21008] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  526.792308][T21008] bond_slave_0: left promiscuous mode
[  526.792534][T21008] bond_slave_0: left allmulticast mode
[  526.857960][T21008] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  526.879841][T21083] netlink: 'syz.8.6992': attribute type 5 has an invalid length.
[  526.879875][T21083] netlink: 3657 bytes leftover after parsing attributes in process `syz.8.6992'.
[  526.924176][T21008] bond_slave_1: left promiscuous mode
[  526.924401][T21008] bond_slave_1: left allmulticast mode
[  526.961750][T21089] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6995'.
[  526.983498][T21008] bond0 (unregistering): (slave vlan0): Releasing backup interface
[  527.014062][T21008] vlan0: left promiscuous mode
[  527.014665][T21008] vlan0: left allmulticast mode
[  527.014680][T21008] veth0: left allmulticast mode
[  527.056001][T21008] veth0: left promiscuous mode
[  527.060440][T21008] bond0 (unregistering): Released all slaves
[  527.732399][T21128] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7014'.
[  527.843104][T21136] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7018'.
[  527.991778][T21142] netlink: 60 bytes leftover after parsing attributes in process `syz.0.7022'.
[  528.200497][   T37] audit: type=1326 audit(1763268285.122:3514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.236852][   T37] audit: type=1326 audit(1763268285.122:3515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.257950][   T37] audit: type=1326 audit(1763268285.172:3516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.258014][   T37] audit: type=1326 audit(1763268285.172:3517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.258055][   T37] audit: type=1326 audit(1763268285.172:3518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.258098][   T37] audit: type=1326 audit(1763268285.172:3519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.258139][   T37] audit: type=1326 audit(1763268285.172:3520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.258180][   T37] audit: type=1326 audit(1763268285.172:3521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.258220][   T37] audit: type=1326 audit(1763268285.172:3522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.258260][   T37] audit: type=1326 audit(1763268285.172:3523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21155 comm="syz.8.7026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  528.757090][T21184] netlink: 180 bytes leftover after parsing attributes in process `syz.1.7040'.
[  529.355122][T21104] Bluetooth: hci1: command 0x0406 tx timeout
[  529.528448][T21231] netlink: 'syz.0.7064': attribute type 9 has an invalid length.
[  531.799428][T21349] netlink: 56 bytes leftover after parsing attributes in process `syz.8.7122'.
[  531.799450][T21349] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7122'.
[  532.148382][ T5815] Bluetooth: Wrong link type (-57)
[  532.301165][   T31] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  532.465693][   T31] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  532.465751][   T31] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  532.465774][   T31] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  532.543657][   T31] usb 1-1: config 0 descriptor??
[  532.574912][   T31] pwc: Askey VC010 type 2 USB webcam detected.
[  532.989748][   T31] pwc: recv_control_msg error -32 req 02 val 2b00
[  533.004410][   T31] pwc: recv_control_msg error -32 req 02 val 2700
[  533.011963][   T31] pwc: recv_control_msg error -32 req 02 val 2c00
[  533.024410][   T31] pwc: recv_control_msg error -32 req 04 val 1000
[  533.025317][   T31] pwc: recv_control_msg error -32 req 04 val 1300
[  533.050636][   T31] pwc: recv_control_msg error -32 req 04 val 1400
[  533.254087][   T31] pwc: recv_control_msg error -71 req 02 val 2100
[  533.254581][   T31] pwc: recv_control_msg error -71 req 04 val 1500
[  533.255068][   T31] pwc: recv_control_msg error -71 req 02 val 2500
[  533.255532][   T31] pwc: recv_control_msg error -71 req 02 val 2400
[  533.255985][   T31] pwc: recv_control_msg error -71 req 02 val 2600
[  533.256455][   T31] pwc: recv_control_msg error -71 req 02 val 2900
[  533.256913][   T31] pwc: recv_control_msg error -71 req 02 val 2800
[  533.262841][   T31] pwc: recv_control_msg error -71 req 04 val 1100
[  533.265940][   T31] pwc: recv_control_msg error -71 req 04 val 1200
[  533.280734][   T31] pwc: Registered as video103.
[  533.300202][   T31] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input26
[  533.318697][   T31] usb 1-1: USB disconnect, device number 23
[  533.359233][T21391] netlink: 'syz.7.7143': attribute type 12 has an invalid length.
[  533.409420][T21395] netlink: 68 bytes leftover after parsing attributes in process `syz.8.7145'.
[  533.988933][T21420] tmpfs: Bad value for 'huge'
[  534.680003][T21445] netlink: 'syz.1.7166': attribute type 12 has an invalid length.
[  536.439217][T21496] netlink: 'syz.0.7187': attribute type 10 has an invalid length.
[  536.439239][T21496] netlink: 17 bytes leftover after parsing attributes in process `syz.0.7187'.
[  537.977509][T21550] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  537.977526][T21550] overlayfs: missing 'lowerdir'
[  538.510904][T21569] netlink: 164 bytes leftover after parsing attributes in process `syz.7.7221'.
[  538.588201][T21573] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7223'.
[  539.134026][T21605] netlink: 20 bytes leftover after parsing attributes in process `syz.8.7239'.
[  539.594649][T21104] Bluetooth: hci3: command 0x0401 tx timeout
[  540.244398][T21668] netlink: 240 bytes leftover after parsing attributes in process `syz.1.7271'.
[  541.059120][T21716] netlink: 'syz.8.7294': attribute type 4 has an invalid length.
[  541.059143][T21716] netlink: 3657 bytes leftover after parsing attributes in process `syz.8.7294'.
[  541.441599][T21738] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7303'.
[  542.084382][T21767] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7319'.
[  542.437489][T21795] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7331'.
[  542.691152][ T5813] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  542.841162][ T5813] usb 1-1: Using ep0 maxpacket: 8
[  542.846429][ T5813] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  542.846457][ T5813] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  542.846476][ T5813] usb 1-1: Product: syz
[  542.846489][ T5813] usb 1-1: Manufacturer: syz
[  542.846503][ T5813] usb 1-1: SerialNumber: syz
[  542.913378][ T5813] usb 1-1: config 0 descriptor??
[  543.133967][ T5813] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  543.466721][T21839] netlink: 128 bytes leftover after parsing attributes in process `syz.1.7354'.
[  543.466741][T21839] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7354'.
[  543.746561][ T5813] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  543.765837][ T5813] usb 1-1: USB disconnect, device number 24
[  543.809136][T21853] netlink: 'syz.1.7360': attribute type 1 has an invalid length.
[  543.809156][T21853] netlink: 'syz.1.7360': attribute type 2 has an invalid length.
[  544.825542][T21911] netlink: 328 bytes leftover after parsing attributes in process `syz.8.7390'.
[  545.008839][T21923] netlink: 'syz.0.7394': attribute type 46 has an invalid length.
[  545.008859][T21923] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7394'.
[  545.203727][T21936] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7401'.
[  546.406244][T22005] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7433'.
[  550.036914][T22106] cgroup: fork rejected by pids controller in /syz1
[  550.147713][T22170] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7498'.
[  550.440663][T22181] vivid-001: disconnect
[  550.444358][T22179] vivid-001: reconnect
[  551.716198][T22247] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7532'.
[  552.201108][T22269] netlink: 68 bytes leftover after parsing attributes in process `syz.7.7543'.
[  552.368620][T22275] netlink: 'syz.1.7546': attribute type 27 has an invalid length.
[  553.371440][T22330] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7573'.
[  554.114483][T22355] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7568'.
[  554.476605][T22379] netlink: 37 bytes leftover after parsing attributes in process `syz.0.7596'.
[  554.577985][T22383] netlink: 'syz.8.7599': attribute type 28 has an invalid length.
[  555.387615][T22430] sit0: left allmulticast mode
[  555.453038][T22430] netlink: 'syz.0.7622': attribute type 1 has an invalid length.
[  555.453063][T22430] netlink: 1 bytes leftover after parsing attributes in process `syz.0.7622'.
[  555.654304][T22445] netlink: 'syz.0.7626': attribute type 7 has an invalid length.
[  555.912269][T22457] netlink: 'syz.7.7635': attribute type 1 has an invalid length.
[  555.912290][T22457] netlink: 14436 bytes leftover after parsing attributes in process `syz.7.7635'.
[  556.307931][T22481] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7645'.
[  558.751637][T22591] tipc: Can't bind to reserved service type 2
[  558.869429][T22595] binder: 22594:22595 ioctl 40046210 0 returned -14
[  559.191145][T22609] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7708'.
[  559.791557][T22639] netlink: 'syz.0.7723': attribute type 4 has an invalid length.
[  560.281364][T22663] binder: 22662:22663 ioctl c0306201 2000000001c0 returned -14
[  560.503402][T22673] netlink: 'syz.8.7738': attribute type 4 has an invalid length.
[  560.503425][T22673] netlink: 3581 bytes leftover after parsing attributes in process `syz.8.7738'.
[  561.776727][T22719] overlayfs: missing 'lowerdir'
[  563.118234][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  563.118304][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  564.353760][T22836] netlink: 964 bytes leftover after parsing attributes in process `syz.7.7816'.
[  564.547665][T22845] netlink: 'syz.7.7819': attribute type 4 has an invalid length.
[  564.946657][T22856] netlink: 'syz.0.7805': attribute type 1 has an invalid length.
[  564.946678][T22856] netlink: 9 bytes leftover after parsing attributes in process `syz.0.7805'.
[  565.439477][T22877] netlink: 72 bytes leftover after parsing attributes in process `syz.0.7834'.
[  565.439504][T22877] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7834'.
[  565.439617][T22877] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7834'.
[  565.670337][T22891] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7840'.
[  566.922905][   T37] kauditd_printk_skb: 37 callbacks suppressed
[  566.922922][   T37] audit: type=1326 audit(1763268323.852:3561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22963 comm="syz.1.7876" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f95c2c2f6c9 code=0x0
[  566.941984][T22969] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7880'.
[  567.035113][T22969] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7880'.
[  567.660902][T22997] netlink: 40 bytes leftover after parsing attributes in process `syz.0.7890'.
[  568.255633][T23023] netlink: 120 bytes leftover after parsing attributes in process `syz.0.7903'.
[  568.255659][T23023] netlink: 96 bytes leftover after parsing attributes in process `syz.0.7903'.
[  568.436330][   T10] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  568.567969][   T10] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  569.534277][T23081] IPv6: NLM_F_CREATE should be specified when creating new route
[  570.192638][T23107] netlink: 5308 bytes leftover after parsing attributes in process `syz.8.7944'.
[  570.803999][T23128] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  573.821423][T23293] tc_dump_action: action bad kind
[  574.899065][T23352] netlink: 84 bytes leftover after parsing attributes in process `syz.7.8063'.
[  574.899099][T23352] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8063'.
[  575.661126][   T31] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  575.817816][   T31] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  575.817849][   T31] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  575.817889][   T31] usb 8-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00
[  575.817911][   T31] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  575.835760][   T31] usb 8-1: config 0 descriptor??
[  576.255690][   T31] steelseries 0003:1038:1410.0013: unknown main item tag 0x1
[  576.256500][   T31] steelseries 0003:1038:1410.0013: missing HID_OUTPUT_REPORT 0
[  576.365351][T23429] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  576.464172][ T5893] usb 8-1: USB disconnect, device number 15
[  576.549701][T23440] netlink: 'syz.0.8107': attribute type 7 has an invalid length.
[  577.251997][T23479] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8124'.
[  577.399867][T23485] netlink: 84 bytes leftover after parsing attributes in process `syz.0.8126'.
[  577.473560][T23492] netlink: 8 bytes leftover after parsing attributes in process `syz.8.8129'.
[  578.285636][T23527] overlayfs: upper fs does not support file handles, falling back to index=off.
[  580.200221][T23619] cgroup: Unknown subsys name 'cpuset'
[  580.571094][   T10] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  580.728311][   T10] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  580.728345][   T10] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  580.728367][   T10] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  580.736263][   T10] usb 9-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  580.736293][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  580.736311][   T10] usb 9-1: Product: syz
[  580.736325][   T10] usb 9-1: Manufacturer: syz
[  580.736339][   T10] usb 9-1: SerialNumber: syz
[  580.754507][   T10] usb 9-1: config 0 descriptor??
[  581.016858][   T10] adutux 9-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[  581.208339][   T10] usb 9-1: USB disconnect, device number 10
[  581.711157][   T10] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  581.861123][   T10] usb 9-1: Using ep0 maxpacket: 16
[  581.864482][   T10] usb 9-1: config 0 has an invalid interface number: 2 but max is 0
[  581.864507][   T10] usb 9-1: config 0 has no interface number 0
[  581.866918][   T10] usb 9-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 0.01
[  581.866945][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  581.866964][   T10] usb 9-1: Product: syz
[  581.866978][   T10] usb 9-1: Manufacturer: syz
[  581.866992][   T10] usb 9-1: SerialNumber: syz
[  581.874428][   T10] usb 9-1: config 0 descriptor??
[  581.916199][   T10] gspca_main: xirlink-cit-2.14.0 probing 0545:8080
[  583.169742][T23752] sp0: Synchronizing with TNC
[  583.762096][   T10] gspca_xirlink_cit: Failed to write a register (index 0x0405, value 0x18, error -71)
[  583.762530][   T10] gspca_xirlink_cit: Failed to write a register (index 0x0435, value 0x08, error -71)
[  583.762912][   T10] gspca_xirlink_cit: Failed to write a register (index 0x040B, value 0x26, error -71)
[  583.763311][   T10] gspca_xirlink_cit: Failed to write a register (index 0x0437, value 0x07, error -71)
[  583.764205][   T10] gspca_xirlink_cit: Failed to write a register (index 0x042F, value 0x15, error -71)
[  583.764631][   T10] gspca_xirlink_cit: Failed to write a register (index 0x0439, value 0x2B, error -71)
[  583.765016][   T10] gspca_xirlink_cit: Failed to write a register (index 0x043A, value 0x26, error -71)
[  583.765439][   T10] gspca_xirlink_cit: Failed to write a register (index 0x0438, value 0x08, error -71)
[  583.765839][   T10] gspca_xirlink_cit: Failed to write a register (index 0x042B, value 0x1E, error -71)
[  583.766251][   T10] gspca_xirlink_cit: Failed to write a register (index 0x042C, value 0x41, error -71)
[  583.766652][   T10] gspca_xirlink_cit: Failed to write a register (index 0x0100, value 0xC0, error -71)
[  583.770888][   T10] input: xirlink-cit as /devices/platform/dummy_hcd.8/usb9/9-1/input/input29
[  583.801121][   T10] usb 9-1: USB disconnect, device number 11
[  584.324132][T23802] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8278'.
[  585.051064][ T5893] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  585.215866][ T5893] usb 1-1: config 0 has no interfaces?
[  585.217338][ T5893] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  585.217364][ T5893] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  585.217382][ T5893] usb 1-1: Manufacturer: syz
[  585.256746][ T5893] usb 1-1: config 0 descriptor??
[  585.376773][T23859] netlink: 24 bytes leftover after parsing attributes in process `syz.8.8305'.
[  585.461362][T23824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  585.461793][T23824] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  585.464647][ T5893] usb 1-1: USB disconnect, device number 25
[  586.118336][T23898] netlink: 12 bytes leftover after parsing attributes in process `syz.8.8322'.
[  586.704441][T23931] netlink: 28 bytes leftover after parsing attributes in process `syz.7.8339'.
[  587.812531][T24001] netlink: 68 bytes leftover after parsing attributes in process `syz.8.8372'.
[  591.755673][   T37] audit: type=1326 audit(1763268348.682:3562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.761831][   T37] audit: type=1326 audit(1763268348.682:3563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.762142][   T37] audit: type=1326 audit(1763268348.692:3564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.762662][   T37] audit: type=1326 audit(1763268348.692:3565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.762915][   T37] audit: type=1326 audit(1763268348.692:3566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.763444][   T37] audit: type=1326 audit(1763268348.692:3567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.771868][   T37] audit: type=1326 audit(1763268348.692:3568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.771919][   T37] audit: type=1326 audit(1763268348.692:3569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.771962][   T37] audit: type=1326 audit(1763268348.692:3570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  591.772006][   T37] audit: type=1326 audit(1763268348.692:3571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24194 comm="syz.7.8466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x7ffc0000
[  592.119084][T24209] netlink: 'syz.7.8473': attribute type 27 has an invalid length.
[  594.761055][    C0] vxcan0: j1939_tp_rxtimer: 0xffff88805c5af800: rx timeout, send abort
[  594.766918][    C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff88805c5af800: 0x0f001: (3) A timeout occurred and this is the connection abort to close the session.
[  595.897427][T24428] kvm: pic: non byte read
[  595.897957][T24428] kvm: pic: level sensitive irq not supported
[  595.898023][T24428] kvm: pic: non byte read
[  595.898236][T24428] kvm: pic: level sensitive irq not supported
[  595.898285][T24428] kvm: pic: non byte read
[  595.898493][T24428] kvm: pic: level sensitive irq not supported
[  595.898541][T24428] kvm: pic: non byte read
[  595.898745][T24428] kvm: pic: level sensitive irq not supported
[  595.898793][T24428] kvm: pic: non byte read
[  595.899004][T24428] kvm: pic: level sensitive irq not supported
[  595.899052][T24428] kvm: pic: non byte read
[  595.899256][T24428] kvm: pic: level sensitive irq not supported
[  595.899303][T24428] kvm: pic: non byte read
[  595.899506][T24428] kvm: pic: level sensitive irq not supported
[  595.899555][T24428] kvm: pic: non byte read
[  595.899763][T24428] kvm: pic: level sensitive irq not supported
[  595.899812][T24428] kvm: pic: non byte read
[  595.900078][T24428] kvm: pic: level sensitive irq not supported
[  595.900127][T24428] kvm: pic: non byte read
[  595.900384][T24428] kvm: pic: level sensitive irq not supported
[  596.521347][T24470] netlink: 80 bytes leftover after parsing attributes in process `syz.1.8599'.
[  596.744601][T24479] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8604'.
[  598.829043][T24598] pim6reg: entered allmulticast mode
[  599.173834][T24618] netlink: 228 bytes leftover after parsing attributes in process `syz.1.8670'.
[  599.689268][T24652] usb usb5: usbfs: process 24652 (syz.7.8686) did not claim interface 0 before use
[  599.730312][T24653] netlink: 72 bytes leftover after parsing attributes in process `syz.0.8687'.
[  602.357546][T24795] binder: 24794:24795 ioctl c0306201 200000000000 returned -22
[  603.234278][T24843] netlink: 68 bytes leftover after parsing attributes in process `syz.8.8781'.
[  603.611114][ T5946] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[  603.765631][ T5946] usb 9-1: config 0 has an invalid interface number: 184 but max is 0
[  603.766383][ T5946] usb 9-1: config 0 has no interface number 0
[  603.766432][ T5946] usb 9-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping
[  603.766453][ T5946] usb 9-1: config 0 interface 184 has no altsetting 0
[  603.803166][ T5946] usb 9-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1
[  603.803195][ T5946] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  603.803215][ T5946] usb 9-1: Product: syz
[  603.803229][ T5946] usb 9-1: Manufacturer: syz
[  603.803242][ T5946] usb 9-1: SerialNumber: syz
[  603.845587][ T5946] usb 9-1: config 0 descriptor??
[  604.092991][ T5946] ftdi_sio 9-1:0.184: FTDI USB Serial Device converter detected
[  604.094717][ T5946] ftdi_sio ttyUSB0: unknown device type: 0x53f1
[  604.119585][ T5946] usb 9-1: USB disconnect, device number 12
[  604.132197][ T5946] ftdi_sio 9-1:0.184: device disconnected
[  604.334781][T24882] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8800'.
[  604.569145][T24895] netlink: 72 bytes leftover after parsing attributes in process `syz.7.8806'.
[  607.827140][   T37] kauditd_printk_skb: 18 callbacks suppressed
[  607.827158][   T37] audit: type=1326 audit(1763268364.752:3590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25069 comm="syz.7.8891" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b5668f6c9 code=0x0
[  608.701197][T25122] netlink: 68 bytes leftover after parsing attributes in process `syz.1.8917'.
[  608.907958][T25135] netlink: 28 bytes leftover after parsing attributes in process `syz.7.8924'.
[  608.907984][T25135] netlink: 28 bytes leftover after parsing attributes in process `syz.7.8924'.
[  608.907997][T25135] netlink: 60 bytes leftover after parsing attributes in process `syz.7.8924'.
[  609.732015][T25181] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8946'.
[  609.936437][T25196] netlink: 'syz.7.8953': attribute type 4 has an invalid length.
[  609.943707][T25197] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  609.943752][T25197] overlayfs: overlapping lowerdir path
[  610.258225][T25212] netlink: 40 bytes leftover after parsing attributes in process `syz.8.8961'.
[  610.734999][T25245] netlink: 'syz.0.8977': attribute type 9 has an invalid length.
[  610.813941][   T37] audit: type=1326 audit(1763268367.742:3591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25249 comm="syz.0.8979" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x0
[  610.930122][T25256] tc_dump_action: action bad kind
[  612.461359][T25343] netlink: 12 bytes leftover after parsing attributes in process `syz.7.9024'.
[  612.790359][T25361] comedi comedi3: comedi_test: 3879 microvolt, 2147483645 microsecond waveform attached
[  613.528494][T25403] netlink: 260 bytes leftover after parsing attributes in process `syz.7.9053'.
[  613.528556][T25403] netlink: 104 bytes leftover after parsing attributes in process `syz.7.9053'.
[  613.528572][T25403] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9053'.
[  614.504036][T25459] __nla_validate_parse: 3 callbacks suppressed
[  614.504057][T25459] netlink: 68 bytes leftover after parsing attributes in process `syz.1.9084'.
[  616.378877][T25560] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9131'.
[  617.554185][T25612] syz.0.9155 (25612): attempted to duplicate a private mapping with mremap.  This is not supported.
[  617.958395][T25635] bridge0: port 3(team0) entered disabled state
[  618.033767][T25635] bridge_slave_0: left allmulticast mode
[  618.033795][T25635] bridge_slave_0: left promiscuous mode
[  618.051414][T25635] bridge0: port 1(bridge_slave_0) entered disabled state
[  618.090480][   T37] audit: type=1326 audit(1763268375.012:3592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25642 comm="syz.8.9172" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x0
[  618.134239][T25635] bridge_slave_1: left allmulticast mode
[  618.134268][T25635] bridge_slave_1: left promiscuous mode
[  618.134503][T25635] bridge0: port 2(bridge_slave_1) entered disabled state
[  618.237422][T25635] team_slave_0: left promiscuous mode
[  618.238700][T25635] team_slave_0: left allmulticast mode
[  618.314446][T25635] team0: Port device team_slave_0 removed
[  618.315771][T25635] team_slave_1: left promiscuous mode
[  618.315964][T25635] team_slave_1: left allmulticast mode
[  618.391362][T25635] team0: Port device team_slave_1 removed
[  618.392539][T25635] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  618.392570][T25635] batman_adv: batadv0: Removing interface: batadv_slave_0
[  618.434297][T25635] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  618.997814][T25687] cgroup: No subsys list or none specified
[  619.743703][T25728] usb usb8: usbfs: process 25728 (syz.7.9212) did not claim interface 0 before use
[  619.929127][T25741] netlink: 'syz.7.9217': attribute type 12 has an invalid length.
[  620.271189][ T5813] usb 1-1: new full-speed USB device number 26 using dummy_hcd
[  620.434992][ T5813] usb 1-1: not running at top speed; connect to a high speed hub
[  620.436591][ T5813] usb 1-1: config 1 interface 0 altsetting 8 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  620.436626][ T5813] usb 1-1: config 1 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  620.436652][ T5813] usb 1-1: config 1 interface 0 has no altsetting 0
[  620.439714][ T5813] usb 1-1: New USB device found, idVendor=05ac, idProduct=0223, bcdDevice= 0.40
[  620.439741][ T5813] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  620.439760][ T5813] usb 1-1: Product: syz
[  620.439774][ T5813] usb 1-1: Manufacturer: syz
[  620.439786][ T5813] usb 1-1: SerialNumber: syz
[  620.447442][T25746] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  620.697889][ T5813] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input33
[  620.734853][ T5154] bcm5974 1-1:1.0: could not read from device
[  620.832878][ T5154] bcm5974 1-1:1.0: could not read from device
[  620.848074][ T5813] usb 1-1: USB disconnect, device number 26
[  621.045559][T25796] netlink: 'syz.8.9243': attribute type 28 has an invalid length.
[  621.929982][T25846] netlink: 'syz.0.9267': attribute type 4 has an invalid length.
[  622.585264][   T37] audit: type=1326 audit(1763268379.512:3593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa8d6286567 code=0x7ffc0000
[  622.585534][   T37] audit: type=1326 audit(1763268379.512:3594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa8d622b789 code=0x7ffc0000
[  622.585786][   T37] audit: type=1326 audit(1763268379.512:3595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  622.586221][   T37] audit: type=1326 audit(1763268379.512:3596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  622.586639][   T37] audit: type=1326 audit(1763268379.512:3597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  622.586996][   T37] audit: type=1326 audit(1763268379.512:3598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  622.587384][   T37] audit: type=1326 audit(1763268379.512:3599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  622.587675][   T37] audit: type=1326 audit(1763268379.512:3600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  622.588015][   T37] audit: type=1326 audit(1763268379.512:3601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25876 comm="syz.8.9284" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7fa8d628f6c9 code=0x7ffc0000
[  623.722253][T25935] overlayfs: failed to resolve './file1': -2
[  623.797749][T25940] netlink: 'syz.0.9315': attribute type 63 has an invalid length.
[  623.797774][T25940] netlink: 5 bytes leftover after parsing attributes in process `syz.0.9315'.
[  623.797817][T25940] gretap0: left promiscuous mode
[  623.798717][T25940] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  624.569110][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  624.569208][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  624.678543][T25987] dummy0: entered allmulticast mode
[  624.679406][T25986] dummy0: left allmulticast mode
[  625.315657][T26016] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9353'.
[  625.787536][T26038] overlayfs: overlapping lowerdir path
[  625.836084][T26044] netlink: 20 bytes leftover after parsing attributes in process `syz.0.9366'.
[  625.992074][T26050] trusted_key: encrypted_key: master key parameter 'user:' is invalid
[  626.593487][T26082] netlink: 28 bytes leftover after parsing attributes in process `syz.8.9385'.
[  627.227772][T26110] 9pnet: Could not find request transport: 0xffffffffffffffff
[  627.395654][T26125] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9406'.
[  628.199766][T26164] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9422'.
[  628.585918][T26187] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9432'.
[  630.087794][T26257] netlink: 57 bytes leftover after parsing attributes in process `syz.7.9468'.
[  630.910868][T26297] netlink: 20 bytes leftover after parsing attributes in process `syz.1.9486'.
[  631.548263][T26328] sock: sock_timestamping_bind_phc: sock not bind to device
[  631.738572][T26333] netlink: 300 bytes leftover after parsing attributes in process `syz.8.9503'.
[  632.029330][T26353] netlink: 'syz.8.9511': attribute type 10 has an invalid length.
[  632.054167][T26357] netlink: 92 bytes leftover after parsing attributes in process `syz.7.9513'.
[  632.209929][T26353] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  632.322159][T26369] IPv6: NLM_F_CREATE should be specified when creating new route
[  632.600591][T26383] ufs: You didn't specify the type of your ufs filesystem
[  632.600591][T26383] 
[  632.600591][T26383] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  632.600591][T26383] 
[  632.600591][T26383] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  632.600631][T26383] ufs: ufstype=old is supported read-only
[  633.817006][T26457] netlink: 'syz.1.9560': attribute type 4 has an invalid length.
[  633.817027][T26457] netlink: 'syz.1.9560': attribute type 21 has an invalid length.
[  633.817041][T26457] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.9560'.
[  634.482417][T26498] netlink: 5 bytes leftover after parsing attributes in process `syz.7.9581'.
[  635.665226][T26549] Invalid ELF header type: 2 != 1
[  636.532953][T26589] netlink: 16 bytes leftover after parsing attributes in process `syz.7.9627'.
[  636.800543][T26606] binder: 26605:26606 ioctl c018620c 200000000000 returned -22
[  636.928505][T26614] netlink: 20 bytes leftover after parsing attributes in process `syz.8.9640'.
[  637.572743][T26649] binder: 26648:26649 ioctl f1 0 returned -22
[  637.834751][T26666] binder: 26664:26666 ioctl c0306201 2000000001c0 returned -14
[  638.257423][T26679] netlink: 200 bytes leftover after parsing attributes in process `syz.1.9671'.
[  638.340002][T26686] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9672'.
[  639.042352][T26721] bridge0: port 3(ip6gretap0) entered blocking state
[  639.043047][T26721] bridge0: port 3(ip6gretap0) entered disabled state
[  639.043277][T26721] ip6gretap0: entered allmulticast mode
[  639.070847][T26721] ip6gretap0: entered promiscuous mode
[  639.083384][T26721] bridge0: port 3(ip6gretap0) entered blocking state
[  639.089107][T26721] bridge0: port 3(ip6gretap0) entered listening state
[  639.092509][T26726] ufs: You didn't specify the type of your ufs filesystem
[  639.092509][T26726] 
[  639.092509][T26726] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  639.092509][T26726] 
[  639.092509][T26726] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  639.092551][T26726] ufs: ufstype=old is supported read-only
[  639.316849][   T37] kauditd_printk_skb: 361 callbacks suppressed
[  639.316867][   T37] audit: type=1326 audit(1763268396.242:3963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26730 comm="syz.8.9695" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa8d628f6c9 code=0x0
[  639.801791][T26752] netlink: 12 bytes leftover after parsing attributes in process `syz.7.9706'.
[  640.740148][T26799] netlink: 84 bytes leftover after parsing attributes in process `syz.7.9727'.
[  640.943358][T26813] sit0: entered promiscuous mode
[  640.963612][T26813] netlink: 'syz.8.9734': attribute type 1 has an invalid length.
[  640.963633][T26813] netlink: 'syz.8.9734': attribute type 3 has an invalid length.
[  641.080586][T26819] sp0: Synchronizing with TNC
[  641.087937][T26818] [U] è
[  641.736940][T26854] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9753'.
[  642.734891][T26901] netlink: 12 bytes leftover after parsing attributes in process `syz.7.9775'.
[  644.258818][T26990] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9819'.
[  645.849902][T27081] IPv6: NLM_F_CREATE should be specified when creating new route
[  645.997158][T27089] rtc_cmos 00:00: Alarms can be up to one day in the future
[  646.164313][   T37] audit: type=1107 audit(1763268402.992:3964): pid=27090 uid=0 auid=4294967295 ses=4294967295 subj=_ msg=''
[  647.001288][ T1584] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  647.152071][ T1584] usb 1-1: Using ep0 maxpacket: 32
[  647.156035][ T1584] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  647.156068][ T1584] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  647.156107][ T1584] usb 1-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  647.156130][ T1584] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  647.172948][ T1584] usb 1-1: config 0 descriptor??
[  647.407643][T27171] netlink: 132 bytes leftover after parsing attributes in process `syz.8.9906'.
[  647.602607][ T1584] ft260 0003:0403:6030.0014: unknown main item tag 0x7
[  647.787239][ T1584] ft260 0003:0403:6030.0014: chip code: 6424 8183
[  647.987804][ T1584] ft260 0003:0403:6030.0014: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.0-1/input0
[  648.082608][T27201] loop2: detected capacity change from 0 to 7
[  648.123437][T27201]  loop2:
[  648.124044][T27201] loop2: partition table partially beyond EOD, truncated
[  648.188554][ T1584] ft260 0003:0403:6030.0014: failed to retrieve status: -32, no wakeup
[  648.357993][T27217] sit0: left promiscuous mode
[  648.393336][T27135] ft260 0003:0403:6030.0014: ft260_i2c_read: failed with -38
[  648.399091][ T1853] usb 1-1: USB disconnect, device number 27
[  648.440350][T27221] netlink: 12 bytes leftover after parsing attributes in process `syz.7.9930'.
[  648.585410][T27228] netlink: 'syz.7.9935': attribute type 4 has an invalid length.
[  648.585433][T27228] netlink: 17 bytes leftover after parsing attributes in process `syz.7.9935'.
[  649.034157][T27253] netlink: 88 bytes leftover after parsing attributes in process `syz.8.9945'.
[  649.087487][T27258] netlink: 'syz.0.9947': attribute type 12 has an invalid length.
[  649.611064][ T5893] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  649.763207][ T5893] usb 9-1: Using ep0 maxpacket: 8
[  649.765504][ T5893] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  649.765529][ T5893] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  649.774656][ T5893] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0105, bcdDevice= 0.40
[  649.774685][ T5893] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  649.774704][ T5893] usb 9-1: Product: syz
[  649.774717][ T5893] usb 9-1: Manufacturer: syz
[  649.774730][ T5893] usb 9-1: SerialNumber: syz
[  649.815888][T27297] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9967'.
[  649.815911][T27297] netlink: 60 bytes leftover after parsing attributes in process `syz.0.9967'.
[  649.969593][T27303] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9968'.
[  650.090726][ T5893] usb 9-1: 0:2 : does not exist
[  650.153166][ T5893] usb 9-1: USB disconnect, device number 13
[  650.610836][T27337] netlink: 260 bytes leftover after parsing attributes in process `syz.1.9985'.
[  650.610896][T27337] netlink: 104 bytes leftover after parsing attributes in process `syz.1.9985'.
[  650.635394][T27337] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9985'.
[  651.034446][T27360] GUP no longer grows the stack in syz.7.9997 (27360): 200000003000-20000000a000 (200000001000)
[  651.034500][T27360] CPU: 0 UID: 0 PID: 27360 Comm: syz.7.9997 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  651.034521][T27360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  651.034536][T27360] Call Trace:
[  651.034547][T27360]  <TASK>
[  651.034555][T27360]  dump_stack_lvl+0x189/0x250
[  651.034592][T27360]  ? __pfx_dump_stack_lvl+0x10/0x10
[  651.034620][T27360]  ? __pfx__printk+0x10/0x10
[  651.034640][T27360]  ? find_vma+0xe7/0x160
[  651.034681][T27360]  __get_user_pages+0x22f0/0x2860
[  651.034706][T27360]  ? __gup_longterm_locked+0xc63/0x1660
[  651.034753][T27360]  ? __pfx_down_read_killable+0x10/0x10
[  651.034789][T27360]  __gup_longterm_locked+0xde4/0x1660
[  651.034831][T27360]  ? sanity_check_pinned_pages+0x123a/0x1300
[  651.034867][T27360]  gup_fast_fallback+0x1cd4/0x2230
[  651.034891][T27360]  ? is_bpf_text_address+0x26/0x2b0
[  651.034956][T27360]  ? __pfx_gup_fast_fallback+0x10/0x10
[  651.034977][T27360]  ? stack_trace_save+0x9c/0xe0
[  651.035000][T27360]  ? stack_depot_save_flags+0x40/0x860
[  651.035028][T27360]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  651.035062][T27360]  ? pin_user_pages_fast+0x4d/0xb0
[  651.035090][T27360]  iov_iter_extract_pages+0x35f/0x5e0
[  651.035122][T27360]  extract_iter_to_sg+0xe46/0x24e0
[  651.035168][T27360]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  651.035221][T27360]  ? __asan_memset+0x22/0x50
[  651.035244][T27360]  af_alg_get_rsgl+0x436/0x810
[  651.035288][T27360]  aead_recvmsg+0x4d5/0x13b0
[  651.035314][T27360]  ? finish_task_switch+0x266/0x950
[  651.035358][T27360]  ? __schedule+0x1709/0x4c20
[  651.035386][T27360]  ? __pfx_aead_recvmsg+0x10/0x10
[  651.035413][T27360]  ? __lock_acquire+0xab9/0xd20
[  651.035439][T27360]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  651.035466][T27360]  ? __pfx_aead_recvmsg+0x10/0x10
[  651.035494][T27360]  sock_recvmsg_nosec+0x186/0x1c0
[  651.035528][T27360]  ____sys_recvmsg+0x3ab/0x470
[  651.035563][T27360]  ? __pfx_____sys_recvmsg+0x10/0x10
[  651.035605][T27360]  ? import_iovec+0x74/0xa0
[  651.035629][T27360]  ___sys_recvmsg+0x1b5/0x510
[  651.035659][T27360]  ? __pfx____sys_recvmsg+0x10/0x10
[  651.035713][T27360]  ? __might_fault+0xb0/0x130
[  651.035742][T27360]  do_recvmmsg+0x30d/0x770
[  651.035778][T27360]  ? __pfx_do_recvmmsg+0x10/0x10
[  651.035817][T27360]  ? __pfx_do_futex+0x10/0x10
[  651.035859][T27360]  __x64_sys_recvmmsg+0x190/0x240
[  651.035887][T27360]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  651.035917][T27360]  ? do_syscall_64+0xbe/0xfa0
[  651.035947][T27360]  do_syscall_64+0xfa/0xfa0
[  651.035971][T27360]  ? lockdep_hardirqs_on+0x9c/0x150
[  651.035996][T27360]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.036014][T27360]  ? clear_bhb_loop+0x60/0xb0
[  651.036040][T27360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  651.036060][T27360] RIP: 0033:0x7f2b5668f6c9
[  651.036080][T27360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  651.036098][T27360] RSP: 002b:00007f2b548ee038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  651.036120][T27360] RAX: ffffffffffffffda RBX: 00007f2b568e5fa0 RCX: 00007f2b5668f6c9
[  651.036137][T27360] RDX: 0000000000000002 RSI: 0000200000000180 RDI: 0000000000000005
[  651.036149][T27360] RBP: 00007f2b56711f91 R08: 0000000000000000 R09: 0000000000000000
[  651.036162][T27360] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000000
[  651.036175][T27360] R13: 00007f2b568e6038 R14: 00007f2b568e5fa0 R15: 00007fffbea346e8
[  651.036220][T27360]  </TASK>
[  651.678399][T27386] ref_ctr increment failed for inode: 0x2991 offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff88806820dc00
[  651.703854][T27392] netlink: 'syz.8.10013': attribute type 4 has an invalid length.
[  652.724507][T27448] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  652.946326][   T37] audit: type=1326 audit(1763268409.872:3965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27457 comm="syz.0.10045" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x0
[  653.492283][T27489] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  654.421398][ T5893] usb 9-1: new low-speed USB device number 14 using dummy_hcd
[  654.573562][ T5893] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[  654.573590][ T5893] usb 9-1: config 0 has no interface number 0
[  654.573643][ T5893] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  654.573670][ T5893] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  654.573710][ T5893] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  654.573731][ T5893] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  654.584692][ T5893] usb 9-1: config 0 descriptor??
[  654.587699][T27532] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  654.632355][    C1] bridge0: port 3(ip6gretap0) entered learning state
[  654.648836][ T5893] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  654.854086][ T5893] usb 9-1: USB disconnect, device number 14
[  655.161036][   T37] audit: type=1326 audit(1763268412.072:3966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27577 comm="syz.0.10104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7fc00000
[  655.229861][T27583] No source specified
[  656.530415][T27632] netlink: 40 bytes leftover after parsing attributes in process `syz.8.10129'.
[  657.055846][T27654] netlink: 24 bytes leftover after parsing attributes in process `syz.7.10139'.
[  657.358813][T27668] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  657.771244][T27686] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  657.771628][T27686] Error validating options; rc = [-22]
[  657.983705][T27699] netlink: 100 bytes leftover after parsing attributes in process `syz.8.10160'.
[  659.011489][T27753] netlink: 'syz.1.10187': attribute type 4 has an invalid length.
[  659.011513][T27753] netlink: 17 bytes leftover after parsing attributes in process `syz.1.10187'.
[  659.841085][ T5893] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[  659.993938][ T5893] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 32
[  659.993969][ T5893] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  659.997223][T27808] netlink: 'syz.1.10215': attribute type 63 has an invalid length.
[  659.997255][T27808] netlink: 5 bytes leftover after parsing attributes in process `syz.1.10215'.
[  659.997428][T27808] gretap0: entered allmulticast mode
[  660.012506][T27808] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  660.041190][ T5893] usb 9-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  660.041217][ T5893] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  660.041235][ T5893] usb 9-1: Product: syz
[  660.041247][ T5893] usb 9-1: Manufacturer: syz
[  660.041261][ T5893] usb 9-1: SerialNumber: syz
[  660.098551][T27787] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  660.116314][ T5893] usblp0: Disabling reads from problematic bidirectional printer
[  660.315700][ T5893] usblp 9-1:1.0: usblp0: USB Unidirectional printer dev 15 if 0 alt 0 proto 1 vid 0x03F0 pid 0x0004
[  661.256178][ T5893] usb 9-1: USB disconnect, device number 15
[  661.257067][T27872] netlink: 'syz.1.10241': attribute type 6 has an invalid length.
[  661.257097][T27872] IPv6: NLM_F_CREATE should be specified when creating new route
[  661.260520][ T5893] usblp0: removed
[  661.717658][T27900] overlayfs: failed to clone upperpath
[  665.064394][T16182] syz_tun (unregistering): left allmulticast mode
[  665.551237][T28036] netlink: 188 bytes leftover after parsing attributes in process `syz.1.10322'.
[  665.900226][ T6844] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.184260][T21104] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  666.211706][T21104] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  666.214101][T21104] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  666.218758][T21104] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  666.219954][T21104] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  666.443964][ T6844] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  666.807557][ T6844] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.245908][ T6844] bond0: (slave netdevsim0): Releasing backup interface
[  667.382738][ T6844] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  667.768444][T28062] chnl_net:caif_netlink_parms(): no params data found
[  667.955731][T28144] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10376'.
[  668.276729][ T6844] bridge_slave_1: left allmulticast mode
[  668.276757][ T6844] bridge_slave_1: left promiscuous mode
[  668.277006][ T6844] bridge0: port 2(bridge_slave_1) entered disabled state
[  668.321554][T21104] Bluetooth: hci3: command tx timeout
[  668.367967][ T6844] bridge_slave_0: left allmulticast mode
[  668.367995][ T6844] bridge_slave_0: left promiscuous mode
[  668.368262][ T6844] bridge0: port 1(bridge_slave_0) entered disabled state
[  669.992145][    C1] bridge0: port 3(ip6gretap0) entered forwarding state
[  669.992172][    C1] bridge0: topology change detected, propagating
[  670.421462][T21104] Bluetooth: hci3: command tx timeout
[  671.322500][ T6844] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  671.371839][ T6844] bond0 (unregistering): Released all slaves
[  671.576722][T28062] bridge0: port 1(bridge_slave_0) entered blocking state
[  671.576856][T28062] bridge0: port 1(bridge_slave_0) entered disabled state
[  671.577102][T28062] bridge_slave_0: entered allmulticast mode
[  671.579893][T28062] bridge_slave_0: entered promiscuous mode
[  671.593676][T28062] bridge0: port 2(bridge_slave_1) entered blocking state
[  671.593803][T28062] bridge0: port 2(bridge_slave_1) entered disabled state
[  671.594029][T28062] bridge_slave_1: entered allmulticast mode
[  671.601409][T28062] bridge_slave_1: entered promiscuous mode
[  672.311219][ T5946] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[  672.336084][T28062] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  672.339295][T28333] veth0: entered promiscuous mode
[  672.339694][T28332] veth0: left promiscuous mode
[  672.378193][T28062] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  672.465868][ T5946] usb 8-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  672.465897][ T5946] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  672.465924][ T5946] usb 8-1: Product: syz
[  672.465938][ T5946] usb 8-1: Manufacturer: syz
[  672.465952][ T5946] usb 8-1: SerialNumber: syz
[  672.471148][T21104] Bluetooth: hci3: command tx timeout
[  672.474334][ T5946] usb 8-1: config 0 descriptor??
[  672.498472][ T5946] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  673.470396][T28062] team0: Port device team_slave_0 added
[  673.491859][T28062] team0: Port device team_slave_1 added
[  673.959206][T28062] batman_adv: batadv0: Adding interface: batadv_slave_0
[  673.959223][T28062] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  673.959249][T28062] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  674.056058][T28397] netlink: 52 bytes leftover after parsing attributes in process `syz.1.10498'.
[  674.161726][ T6844] hsr_slave_0: left promiscuous mode
[  674.171869][ T5946] gspca_stk1135: reg_w 0x200 err -71
[  674.172926][ T5946] gspca_stk1135: serial bus timeout: status=0x00
[  674.172938][ T5946] gspca_stk1135: Sensor write failed
[  674.172963][ T5946] gspca_stk1135: serial bus timeout: status=0x00
[  674.172972][ T5946] gspca_stk1135: Sensor write failed
[  674.172995][ T5946] gspca_stk1135: serial bus timeout: status=0x00
[  674.173003][ T5946] gspca_stk1135: Sensor read failed
[  674.173027][ T5946] gspca_stk1135: serial bus timeout: status=0x00
[  674.173036][ T5946] gspca_stk1135: Sensor read failed
[  674.173043][ T5946] gspca_stk1135: Detected sensor type unknown (0x0)
[  674.173075][ T5946] gspca_stk1135: serial bus timeout: status=0x00
[  674.173085][ T5946] gspca_stk1135: Sensor read failed
[  674.173107][ T5946] gspca_stk1135: serial bus timeout: status=0x00
[  674.173115][ T5946] gspca_stk1135: Sensor read failed
[  674.173137][ T5946] gspca_stk1135: serial bus timeout: status=0x00
[  674.173146][ T5946] gspca_stk1135: Sensor write failed
[  674.173169][ T5946] gspca_stk1135: serial bus timeout: status=0x00
[  674.173178][ T5946] gspca_stk1135: Sensor write failed
[  674.173270][ T5946] stk1135 8-1:0.0: probe with driver stk1135 failed with error -71
[  674.176077][ T5946] usb 8-1: USB disconnect, device number 16
[  674.321316][ T6844] hsr_slave_1: left promiscuous mode
[  674.322400][ T6844] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  674.322426][ T6844] batman_adv: batadv0: Removing interface: batadv_slave_0
[  674.388340][ T6844] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  674.388368][ T6844] batman_adv: batadv0: Removing interface: batadv_slave_1
[  674.553166][T21104] Bluetooth: hci3: command tx timeout
[  674.565413][ T6844] veth1_macvtap: left promiscuous mode
[  674.565520][ T6844] veth0_macvtap: left promiscuous mode
[  674.565775][ T6844] veth1_vlan: left promiscuous mode
[  674.565945][ T6844] veth0_vlan: left promiscuous mode
[  675.636673][T28462] 9pnet_fd: p9_fd_create_unix (28462): problem connecting socket: ./bus: -2
[  676.049828][T28481] netlink: 20 bytes leftover after parsing attributes in process `syz.1.10540'.
[  678.371840][ T6844] team0 (unregistering): Port device team_slave_1 removed
[  678.671885][ T6844] team0 (unregistering): Port device team_slave_0 removed
[  681.772860][T28062] batman_adv: batadv0: Adding interface: batadv_slave_1
[  681.772877][T28062] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  681.772892][T28062] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  681.867728][T28702] netlink: 24 bytes leftover after parsing attributes in process `syz.7.10650'.
[  682.336293][T28062] hsr_slave_0: entered promiscuous mode
[  682.339519][T28062] hsr_slave_1: entered promiscuous mode
[  682.361166][T28062] debugfs: 'hsr0' already exists in 'hsr'
[  682.361193][T28062] Cannot create hsr debugfs directory
[  682.572333][T28732] netlink: 12 bytes leftover after parsing attributes in process `syz.7.10665'.
[  682.572566][T28735] bridge0: port 4(hsr_slave_1) entered blocking state
[  682.572688][T28735] bridge0: port 4(hsr_slave_1) entered disabled state
[  682.572868][T28735] hsr_slave_1: entered allmulticast mode
[  682.575661][T28735] hsr_slave_1: entered promiscuous mode
[  683.375614][T28766] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  683.854336][T28062] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  683.888282][T28062] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  683.955687][T28062] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  684.004086][T28062] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  684.231911][T28805] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10697'.
[  684.410439][T28062] 8021q: adding VLAN 0 to HW filter on device bond0
[  684.462418][T28062] 8021q: adding VLAN 0 to HW filter on device team0
[  684.497935][ T1015] bridge0: port 1(bridge_slave_0) entered blocking state
[  684.498152][ T1015] bridge0: port 1(bridge_slave_0) entered forwarding state
[  684.526313][ T6846] bridge0: port 2(bridge_slave_1) entered blocking state
[  684.529819][ T6846] bridge0: port 2(bridge_slave_1) entered forwarding state
[  684.676733][T28823] tipc: Started in network mode
[  684.676762][T28823] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[  684.726065][T28823] tipc: Enabled bearer <udp:syz0>, priority 10
[  685.314485][T28062] 8021q: adding VLAN 0 to HW filter on device batadv0
[  685.320252][T28850] netlink: 84 bytes leftover after parsing attributes in process `syz.7.10717'.
[  685.320283][T28850] netlink: 68 bytes leftover after parsing attributes in process `syz.7.10717'.
[  685.805880][ T5946] tipc: Node number set to 4269801488
[  685.980716][T28886] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10731'.
[  686.005660][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  686.005735][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  686.131600][T28062] veth0_vlan: entered promiscuous mode
[  686.153005][T28062] veth1_vlan: entered promiscuous mode
[  686.279383][T28062] veth0_macvtap: entered promiscuous mode
[  686.355519][T28062] veth1_macvtap: entered promiscuous mode
[  686.650236][T28062] batman_adv: batadv0: Interface activated: batadv_slave_0
[  686.725007][T28062] batman_adv: batadv0: Interface activated: batadv_slave_1
[  686.772244][   T13] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  686.773525][   T13] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  686.773820][   T13] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  686.774049][   T13] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  687.708210][T28943] trusted_key: encrypted_key: master key parameter '' is invalid
[  687.749599][ T6846] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  687.749618][ T6846] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  687.831084][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  687.831103][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  689.194381][T29003] netlink: 'syz.1.10784': attribute type 12 has an invalid length.
[  689.218014][T29004] netlink: 308 bytes leftover after parsing attributes in process `syz.0.10787'.
[  693.729311][T29178] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10869'.
[  694.053937][T29187] netlink: 72 bytes leftover after parsing attributes in process `syz.0.10873'.
[  694.362378][T29197] overlayfs: failed to clone lowerpath
[  697.271650][T29313] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10933'.
[  697.375052][T29319] netlink: 76 bytes leftover after parsing attributes in process `syz.1.10936'.
[  697.533894][T29321] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10937'.
[  697.533929][T29321] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10937'.
[  699.646015][T29424] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10986'.
[  699.646104][T29424] openvswitch: netlink: Missing key (keys=40, expected=80)
[  699.928896][T29441] netlink: 56 bytes leftover after parsing attributes in process `syz.1.10994'.
[  700.059672][T29447] netlink: 8 bytes leftover after parsing attributes in process `syz.9.10997'.
[  700.736927][T29480] 9pnet_fd: Insufficient options for proto=fd
[  700.822893][T29482] devpts: Bad value for 'max'
[  701.863100][T29517] loop2: detected capacity change from 0 to 7
[  701.869328][T29517] Dev loop2: unable to read RDB block 7
[  701.869386][T29517]  loop2: unable to read partition table
[  701.869607][T29517] loop2: partition table beyond EOD, truncated
[  701.869626][T29517] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  702.970398][T29573] netlink: 36 bytes leftover after parsing attributes in process `syz.7.11057'.
[  703.329679][T29591] binder: 29589:29591 unknown command 0
[  703.329708][T29591] binder: 29589:29591 ioctl c0306201 200000000080 returned -22
[  703.987714][T29630] netlink: 12 bytes leftover after parsing attributes in process `syz.9.11085'.
[  704.199372][T29639] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11087'.
[  707.071202][   T37] audit: type=1804 audit(1763268464.002:3967): pid=29777 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.7.11156" name="/newroot/1290/file0" dev="fuse" ino=1 res=1 errno=0
[  707.577595][T29816] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11173'.
[  707.705203][T29820] netlink: 60 bytes leftover after parsing attributes in process `syz.0.11177'.
[  707.728849][T29823] vlan0: entered promiscuous mode
[  707.728869][T29823] bridge0: entered promiscuous mode
[  707.841276][T29826] netlink: 32 bytes leftover after parsing attributes in process `syz.9.11180'.
[  708.332873][T29855] netlink: 288 bytes leftover after parsing attributes in process `syz.1.11193'.
[  708.903312][T29879] netlink: 16 bytes leftover after parsing attributes in process `syz.1.11205'.
[  708.903338][T29879] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  709.182063][T29889] gretap0: left allmulticast mode
[  709.693050][T29908] netlink: 20 bytes leftover after parsing attributes in process `syz.7.11220'.
[  709.988513][   T37] audit: type=1326 audit(1763268466.912:3968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29924 comm="syz.1.11228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  709.989095][   T37] audit: type=1326 audit(1763268466.912:3969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29924 comm="syz.1.11228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  709.989372][   T37] audit: type=1326 audit(1763268466.912:3970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29924 comm="syz.1.11228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  709.989623][   T37] audit: type=1326 audit(1763268466.912:3971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29924 comm="syz.1.11228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  709.990519][   T37] audit: type=1326 audit(1763268466.912:3972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29924 comm="syz.1.11228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  710.193043][T29935] netlink: 'syz.1.11232': attribute type 6 has an invalid length.
[  710.227895][T29937] loop5: detected capacity change from 0 to 7
[  710.247184][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.247385][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.272431][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.272470][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.285497][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.285536][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.289768][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.289803][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.300047][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.300084][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.301173][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.301202][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.303005][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.303034][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.303122][T29937] ldm_validate_partition_table(): Disk read failed.
[  710.303273][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.303297][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.303518][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.303543][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.303865][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.303890][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  710.304179][T29937] Dev loop5: unable to read RDB block 0
[  710.309457][T29937]  loop5: unable to read partition table
[  710.309686][T29937] loop5: partition table beyond EOD, truncated
[  710.309705][T29937] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5)
[  710.758944][T29958] netlink: 16 bytes leftover after parsing attributes in process `syz.7.11242'.
[  712.186226][T30033] netlink: 72 bytes leftover after parsing attributes in process `syz.9.11277'.
[  713.341743][T30093] netlink: 'syz.9.11307': attribute type 6 has an invalid length.
[  713.341767][T30093] IPv6: NLM_F_CREATE should be specified when creating new route
[  713.979224][T30128] netlink: 8 bytes leftover after parsing attributes in process `syz.9.11323'.
[  715.759136][T30207] netlink: 76 bytes leftover after parsing attributes in process `syz.7.11362'.
[  715.849762][T30215] dummy0: entered allmulticast mode
[  715.850068][T30213] dummy0: left allmulticast mode
[  717.230597][T30283] fuse: Bad value for 'rootmode'
[  719.642730][T30356] netlink: 'syz.0.11431': attribute type 1 has an invalid length.
[  719.732084][T30356] bond2: entered promiscuous mode
[  719.738098][T30356] bond2: entered allmulticast mode
[  719.739456][T30356] 8021q: adding VLAN 0 to HW filter on device bond2
[  720.142981][T30379] netlink: 182 bytes leftover after parsing attributes in process `syz.0.11441'.
[  720.379824][T30389] nfs: Unknown parameter 'a'
[  720.712196][T30404] netlink: 20 bytes leftover after parsing attributes in process `syz.0.11454'.
[  720.712261][T30404] netlink: 20 bytes leftover after parsing attributes in process `syz.0.11454'.
[  721.482736][T30438] openvswitch: netlink: Key type 31 is not supported
[  721.692731][   T37] audit: type=1804 audit(1763268478.622:3973): pid=30451 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.9.11478" name="/newroot/97/file0" dev="tmpfs" ino=596 res=1 errno=0
[  722.141042][   T44] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[  722.293438][   T44] usb 10-1: config 1 has an invalid interface number: 105 but max is 0
[  722.293463][   T44] usb 10-1: config 1 has no interface number 0
[  722.293522][   T44] usb 10-1: config 1 interface 105 has no altsetting 0
[  722.296619][   T44] usb 10-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=31.6d
[  722.296646][   T44] usb 10-1: New USB device strings: Mfr=107, Product=102, SerialNumber=146
[  722.296666][   T44] usb 10-1: Product: syz
[  722.296678][   T44] usb 10-1: Manufacturer: syz
[  722.296698][   T44] usb 10-1: SerialNumber: syz
[  722.544020][   T37] audit: type=1326 audit(1763268479.472:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.544075][   T37] audit: type=1326 audit(1763268479.472:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.544685][   T37] audit: type=1326 audit(1763268479.472:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.545109][   T37] audit: type=1326 audit(1763268479.472:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.545155][   T37] audit: type=1326 audit(1763268479.472:3978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.546175][   T37] audit: type=1326 audit(1763268479.472:3979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.547057][   T37] audit: type=1326 audit(1763268479.472:3980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.547103][   T37] audit: type=1326 audit(1763268479.472:3981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.550045][   T37] audit: type=1326 audit(1763268479.472:3982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30495 comm="syz.1.11500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f95c2c2f6c9 code=0x7ffc0000
[  722.925156][   T44] aqc111 10-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x20) reg index 0x0000: -71
[  722.925478][   T44] aqc111 10-1:1.105: probe with driver aqc111 failed with error -71
[  722.946559][   T44] usb 10-1: USB disconnect, device number 2
[  723.237379][T30523] trusted_key: encrypted_key: insufficient parameters specified
[  723.431164][T21104] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  723.431910][ T5815] Bluetooth: hci5: command 0x1003 tx timeout
[  723.912078][T30558] netlink: 8 bytes leftover after parsing attributes in process `syz.9.11529'.
[  725.960616][T30657] netlink: 68 bytes leftover after parsing attributes in process `syz.0.11576'.
[  726.065285][T30665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11580'.
[  726.065348][T30665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11580'.
[  726.170559][T30665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11580'.
[  726.170622][T30665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11580'.
[  726.445683][T30665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11580'.
[  726.445749][T30665] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11580'.
[  729.045695][T30765] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  729.045713][T30765] overlayfs: missing 'lowerdir'
[  729.325683][T30776] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  730.728038][T30835] netlink: 40 bytes leftover after parsing attributes in process `syz.7.11656'.
[  732.018142][T30897] netlink: 16 bytes leftover after parsing attributes in process `syz.1.11687'.
[  732.018168][T30897] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  734.462318][T30984] netlink: 4 bytes leftover after parsing attributes in process `syz.7.11726'.
[  735.564453][T31024] netlink: 12 bytes leftover after parsing attributes in process `syz.7.11748'.
[  737.093459][T21104] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  737.093654][T21104] Bluetooth: hci3: Injecting HCI hardware error event
[  737.098500][T21104] Bluetooth: hci3: hardware error 0x00
[  737.579716][T31108] tipc: Started in network mode
[  737.579734][T31108] tipc: Node identity 0000000000002d210000000000000001, cluster identity 4711
[  737.579766][T31108] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  738.268675][T31132] netlink: 'syz.9.11798': attribute type 4 has an invalid length.
[  738.298527][T31132] netlink: 'syz.9.11798': attribute type 4 has an invalid length.
[  738.740365][T31154] netlink: 104 bytes leftover after parsing attributes in process `syz.9.11809'.
[  738.924907][T31163] netlink: 24 bytes leftover after parsing attributes in process `syz.9.11811'.
[  739.073126][T31165] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  739.770772][T21104] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  740.835585][T31225] can0: slcan on ttyS3.
[  741.055558][T31225] can0 (unregistered): slcan off ttyS3.
[  741.116347][T31231] can0: slcan on ttyS3.
[  741.594126][T31224] can0 (unregistered): slcan off ttyS3.
[  744.003493][T31355] netlink: 'syz.0.11902': attribute type 7 has an invalid length.
[  744.003515][T31355] netlink: 'syz.0.11902': attribute type 8 has an invalid length.
[  744.366541][   T37] kauditd_printk_skb: 8 callbacks suppressed
[  744.366559][   T37] audit: type=1326 audit(1763268501.292:3991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31368 comm="syz.1.11908" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f95c2c2f6c9 code=0x0
[  744.657942][T31393] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11918'.
[  746.535628][T31487] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  747.436251][ T1321] ieee802154 phy0 wpan0: encryption failed: -22
[  747.436348][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[  747.753620][T31531] netlink: 8 bytes leftover after parsing attributes in process `syz.9.11985'.
[  749.098092][   T37] audit: type=1326 audit(1763268506.022:3992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31599 comm="syz.0.12017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  749.098147][   T37] audit: type=1326 audit(1763268506.022:3993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31599 comm="syz.0.12017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  749.098189][   T37] audit: type=1326 audit(1763268506.022:3994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31599 comm="syz.0.12017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  749.098231][   T37] audit: type=1326 audit(1763268506.022:3995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31599 comm="syz.0.12017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  749.098273][   T37] audit: type=1326 audit(1763268506.022:3996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31599 comm="syz.0.12017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x7ffc0000
[  750.440607][T31625] netlink: 24 bytes leftover after parsing attributes in process `syz.9.12030'.
[  750.736528][T31632] netlink: 84 bytes leftover after parsing attributes in process `syz.9.12033'.
[  750.736551][T31632] netlink: 40 bytes leftover after parsing attributes in process `syz.9.12033'.
[  751.181600][T31651] netlink: 12 bytes leftover after parsing attributes in process `syz.1.12042'.
[  751.531925][T31667] fuse: Bad value for 'group_id'
[  751.531944][T31667] fuse: Bad value for 'group_id'
[  752.189806][T31703] devpts: Bad value for 'max'
[  753.809628][T31781] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  754.183575][T31801] netlink: 44 bytes leftover after parsing attributes in process `syz.0.12113'.
[  754.316821][T31802] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  755.371966][T31864] netlink: 84 bytes leftover after parsing attributes in process `syz.9.12143'.
[  756.582991][T31920] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  756.583017][T31920] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  756.639950][T31920] vhci_hcd vhci_hcd.0: Device attached
[  756.648445][T31921] vhci_hcd: connection closed
[  756.659728][ T6843] vhci_hcd: stop threads
[  756.670294][ T6843] vhci_hcd: release socket
[  756.670461][ T6843] vhci_hcd: disconnect device
[  757.424182][T31965] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  760.447430][T32115] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12260'.
[  762.449063][T32203] netlink: 12 bytes leftover after parsing attributes in process `syz.1.12301'.
[  763.053858][T32234] netlink: 84 bytes leftover after parsing attributes in process `syz.7.12317'.
[  763.234840][T32240] netlink: 'syz.1.12321': attribute type 1 has an invalid length.
[  763.334149][T32247] bond3: (slave vcan0): The slave device specified does not support setting the MAC address
[  763.336828][T32247] bond3: (slave vcan0): Error -95 calling set_mac_address
[  763.418082][T32240] bond3: entered allmulticast mode
[  763.782008][T32264] netlink: 108 bytes leftover after parsing attributes in process `syz.7.12332'.
[  764.044403][   T37] audit: type=1326 audit(1763268520.972:3997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32275 comm="syz.9.12338" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa5b8cff6c9 code=0x0
[  765.156112][T32327] overlayfs: workdir and upperdir must be separate subtrees
[  765.623869][T32347] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12372'.
[  767.086568][T32414] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12405'.
[  767.392439][T32389] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  767.392466][T32389] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  767.537439][T32389] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  767.537462][T32389] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  767.677815][T32389] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  767.677842][T32389] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  767.902183][   T37] audit: type=1107 audit(1763268524.822:3998): pid=32440 uid=0 auid=4294967295 ses=4294967295 subj=_ msg=''
[  769.630635][T32541] netlink: 72 bytes leftover after parsing attributes in process `syz.7.12462'.
[  770.691462][T32582] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  770.691480][T32582] overlayfs: missing 'lowerdir'
[  770.943548][T32597] netlink: 76 bytes leftover after parsing attributes in process `syz.9.12488'.
[  771.661350][   T10] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  771.822467][   T10] usb 10-1: Using ep0 maxpacket: 8
[  771.836676][   T10] usb 10-1: unable to get BOS descriptor or descriptor too short
[  771.846739][   T10] usb 10-1: config 6 has an invalid interface number: 185 but max is 0
[  771.846764][   T10] usb 10-1: config 6 has no interface number 0
[  771.846817][   T10] usb 10-1: config 6 interface 185 altsetting 8 has an invalid descriptor for endpoint zero, skipping
[  771.846838][   T10] usb 10-1: config 6 interface 185 has no altsetting 0
[  771.873873][   T10] usb 10-1: New USB device found, idVendor=04e6, idProduct=000c, bcdDevice= 1.00
[  771.873902][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  771.873921][   T10] usb 10-1: Product: syz
[  771.873933][   T10] usb 10-1: Manufacturer: syz
[  771.873946][   T10] usb 10-1: SerialNumber: syz
[  772.132324][   T10] usb-storage 10-1:6.185: USB Mass Storage device detected
[  772.155605][   T10] usb-storage 10-1:6.185: Quirks match for vid 04e6 pid 000c: 4
[  772.302218][   T10] usb 10-1: USB disconnect, device number 3
[  774.001085][T32724] netlink: 182 bytes leftover after parsing attributes in process `syz.0.12548'.
[  774.294931][T32733] netlink: 12 bytes leftover after parsing attributes in process `syz.7.12553'.
[  775.638471][  T328] netlink: 60 bytes leftover after parsing attributes in process `syz.0.12583'.
[  775.838159][  T335] netlink: 20 bytes leftover after parsing attributes in process `syz.7.12586'.
[  776.599848][  T375] gretap0: left allmulticast mode
[  776.682575][   T37] audit: type=1326 audit(1763268533.612:3999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=378 comm="syz.0.12609" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb11c62f6c9 code=0x0
[  778.209141][    C0] vkms_vblank_simulate: vblank timer overrun
[  778.251455][  T449] netlink: 68 bytes leftover after parsing attributes in process `syz.1.12642'.
[  778.429565][    C0] vkms_vblank_simulate: vblank timer overrun
[  779.526853][  T494] netlink: 84 bytes leftover after parsing attributes in process `syz.9.12663'.
[  780.956753][  T546] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12687'.
[  781.473331][  T562] netlink: 32 bytes leftover after parsing attributes in process `syz.7.12697'.
[  782.646107][  T617] block nbd9: NBD_DISCONNECT
[  782.682718][  T617] block nbd9: Disconnected due to user request.
[  782.687188][  T617] block nbd9: shutting down sockets
[  783.526389][  T663] binder: 662:663 unknown command 0
[  783.526411][  T663] binder: 662:663 ioctl c0306201 200000000080 returned -22
[  783.983077][  T686] pimreg: entered allmulticast mode
[  783.998483][  T686] pimreg: left allmulticast mode
[  786.782761][  T794] netlink: 140 bytes leftover after parsing attributes in process `syz.9.12806'.
[  787.050209][  T804] netlink: 4 bytes leftover after parsing attributes in process `syz.7.12810'.
[  787.315449][  T815] trusted_key: encrypted_key: master key parameter is missing
[  787.512741][   T37] audit: type=1326 audit(1763268544.432:4000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.514528][   T37] audit: type=1326 audit(1763268544.442:4001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.514581][   T37] audit: type=1326 audit(1763268544.442:4002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.514907][   T37] audit: type=1326 audit(1763268544.442:4003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.516863][   T37] audit: type=1326 audit(1763268544.442:4004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.516914][   T37] audit: type=1326 audit(1763268544.442:4005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.517649][   T37] audit: type=1326 audit(1763268544.442:4006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.519048][   T37] audit: type=1326 audit(1763268544.442:4007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.519099][   T37] audit: type=1326 audit(1763268544.442:4008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5b8cff6c9 code=0x7ffc0000
[  787.571446][   T37] audit: type=1326 audit(1763268544.502:4009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=825 comm="syz.9.12822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa5b8d31f85 code=0x7ffc0000
[  788.707172][  T874] lo: left promiscuous mode
[  788.707196][  T874] lo: left allmulticast mode
[  788.881446][   T31] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[  789.060594][   T31] usb 10-1: config 1 has an invalid interface number: 105 but max is 0
[  789.060625][   T31] usb 10-1: config 1 has no interface number 0
[  789.060677][   T31] usb 10-1: config 1 interface 105 has no altsetting 0
[  789.124642][   T31] usb 10-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  789.124672][   T31] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  789.124691][   T31] usb 10-1: Product: syz
[  789.124704][   T31] usb 10-1: Manufacturer: syz
[  789.124717][   T31] usb 10-1: SerialNumber: syz
[  789.368428][   T31] aqc111 10-1:1.105: probe with driver aqc111 failed with error -22
[  789.411227][   T31] usb 10-1: USB disconnect, device number 4
[  789.552639][  T896] netlink: 12 bytes leftover after parsing attributes in process `syz.7.12856'.
[  790.523811][  T954] netlink: 'syz.9.12877': attribute type 1 has an invalid length.
[  790.523834][  T954] netlink: 'syz.9.12877': attribute type 2 has an invalid length.
[  790.903676][  T977] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12885'.
[  790.903701][  T977] erspan0: default FDB implementation only supports local addresses
[  792.973171][ T1098] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12937'.
[  794.470240][ T1158] netlink: 20 bytes leftover after parsing attributes in process `syz.1.12966'.
[  796.313980][ T1237] netlink: 100 bytes leftover after parsing attributes in process `syz.9.13002'.
[  797.303897][ T1297] netlink: 28 bytes leftover after parsing attributes in process `syz.1.13029'.
[  797.586889][ T1313] binder: Bad value for 'max'
[  798.298901][ T1358] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13058'.
[  798.299004][ T1358] ip6gretap0: left allmulticast mode
[  798.299027][ T1358] ip6gretap0: left promiscuous mode
[  798.299332][ T1358] bridge0: port 3(ip6gretap0) entered disabled state
[  798.392340][ T1358] bridge_slave_1: left allmulticast mode
[  798.392370][ T1358] bridge_slave_1: left promiscuous mode
[  798.392619][ T1358] bridge0: port 2(bridge_slave_1) entered disabled state
[  798.492115][ T1358] bridge_slave_0: left allmulticast mode
[  798.492135][ T1358] bridge_slave_0: left promiscuous mode
[  798.492983][ T1358] bridge0: port 1(bridge_slave_0) entered disabled state
[  801.717016][ T1500] netlink: 'syz.0.13121': attribute type 1 has an invalid length.
[  801.717040][ T1500] netlink: 1 bytes leftover after parsing attributes in process `syz.0.13121'.
[  801.741028][   T44] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  801.911364][   T44] usb 10-1: Using ep0 maxpacket: 32
[  801.913665][   T44] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  801.913689][   T44] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  801.913707][   T44] usb 10-1: config 0 has no interface number 0
[  801.913753][   T44] usb 10-1: config 0 interface 1 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  801.913778][   T44] usb 10-1: config 0 interface 1 has no altsetting 0
[  801.976853][   T44] usb 10-1: New USB device found, idVendor=0572, idProduct=58a5, bcdDevice=27.0a
[  801.976884][   T44] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  801.976903][   T44] usb 10-1: Product: syz
[  801.976916][   T44] usb 10-1: Manufacturer: syz
[  801.976929][   T44] usb 10-1: SerialNumber: syz
[  802.023318][   T44] usb 10-1: config 0 descriptor??
[  802.277892][   T44] cx231xx 10-1:0.1: New device syz syz @ 480 Mbps (0572:58a5) with 1 interfaces
[  802.277925][   T44] cx231xx 10-1:0.1: Not found matching IAD interface
[  802.316468][   T44] usb 10-1: USB disconnect, device number 5
[  802.811020][   T44] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  802.995018][   T44] usb 10-1: Using ep0 maxpacket: 32
[  802.997326][   T44] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[  802.997350][   T44] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  802.997368][   T44] usb 10-1: config 0 has no interface number 0
[  802.997412][   T44] usb 10-1: config 0 interface 1 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  802.997436][   T44] usb 10-1: config 0 interface 1 has no altsetting 0
[  803.001473][   T44] usb 10-1: New USB device found, idVendor=0572, idProduct=58a5, bcdDevice=27.0a
[  803.001502][   T44] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  803.001521][   T44] usb 10-1: Product: syz
[  803.001535][   T44] usb 10-1: Manufacturer: syz
[  803.001548][   T44] usb 10-1: SerialNumber: syz
[  803.085217][   T44] usb 10-1: config 0 descriptor??
[  803.506408][   T44] cx231xx 10-1:0.1: New device syz syz @ 480 Mbps (0572:58a5) with 1 interfaces
[  803.506439][   T44] cx231xx 10-1:0.1: Not found matching IAD interface
[  803.712891][   T31] ==================================================================
[  803.712906][   T31] BUG: KASAN: vmalloc-out-of-bounds in __list_del_entry_valid_or_report+0xb5/0x190
[  803.712937][   T31] Read of size 8 at addr ffffc9000e5ca008 by task kworker/1:0/31
[  803.712973][   T31] 
[  803.712984][   T31] CPU: 1 UID: 0 PID: 31 Comm: kworker/1:0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  803.713002][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  803.713014][   T31] Workqueue: usb_hub_wq hub_event
[  803.713041][   T31] Call Trace:
[  803.713047][   T31]  <TASK>
[  803.713055][   T31]  dump_stack_lvl+0x189/0x250
[  803.713081][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  803.713103][   T31]  ? __pfx__printk+0x10/0x10
[  803.713121][   T31]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[  803.713146][   T31]  ? __virt_addr_valid+0xdc/0x5c0
[  803.713168][   T31]  ? __virt_addr_valid+0xdc/0x5c0
[  803.713191][   T31]  print_report+0xca/0x240
[  803.713211][   T31]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  803.713230][   T31]  kasan_report+0x118/0x150
[  803.713254][   T31]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  803.713276][   T31]  __list_del_entry_valid_or_report+0xb5/0x190
[  803.713297][   T31]  kcov_remote_start+0x2b0/0x6f0
[  803.713320][   T31]  hub_event+0x158/0x4a20
[  803.713336][   T31]  ? cpuacct_charge+0x117/0x320
[  803.713361][   T31]  ? do_raw_spin_lock+0x121/0x290
[  803.713378][   T31]  ? look_up_lock_class+0x74/0x170
[  803.713404][   T31]  ? register_lock_class+0x51/0x320
[  803.713427][   T31]  ? __lock_acquire+0xab9/0xd20
[  803.713449][   T31]  ? __pfx_hub_event+0x10/0x10
[  803.713466][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  803.713487][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  803.713508][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  803.713526][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  803.713545][   T31]  process_scheduled_works+0xae1/0x17b0
[  803.713574][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  803.713599][   T31]  worker_thread+0x8a0/0xda0
[  803.713628][   T31]  kthread+0x711/0x8a0
[  803.713651][   T31]  ? __pfx_worker_thread+0x10/0x10
[  803.713670][   T31]  ? __pfx_kthread+0x10/0x10
[  803.713689][   T31]  ? rt_spin_unlock+0x150/0x200
[  803.713709][   T31]  ? rt_spin_unlock+0x161/0x200
[  803.713724][   T31]  ? __pfx_kthread+0x10/0x10
[  803.713746][   T31]  ret_from_fork+0x4bc/0x870
[  803.713766][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  803.713786][   T31]  ? __switch_to_asm+0x39/0x70
[  803.713802][   T31]  ? __switch_to_asm+0x33/0x70
[  803.713816][   T31]  ? __pfx_kthread+0x10/0x10
[  803.713837][   T31]  ret_from_fork_asm+0x1a/0x30
[  803.713860][   T31]  </TASK>
[  803.713866][   T31] 
[  803.713870][   T31] The buggy address belongs to a vmalloc virtual mapping
[  803.713886][   T31] Memory state around the buggy address:
[  803.713896][   T31]  ffffc9000e5c9f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  803.713907][   T31]  ffffc9000e5c9f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  803.713917][   T31] >ffffc9000e5ca000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  803.713932][   T31]                       ^
[  803.713940][   T31]  ffffc9000e5ca080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  803.713950][   T31]  ffffc9000e5ca100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  803.713958][   T31] ==================================================================
[  803.713975][   T31] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  803.713989][   T31] CPU: 1 UID: 0 PID: 31 Comm: kworker/1:0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  803.714007][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  803.714017][   T31] Workqueue: usb_hub_wq hub_event
[  803.714041][   T31] Call Trace:
[  803.714047][   T31]  <TASK>
[  803.714053][   T31]  dump_stack_lvl+0x99/0x250
[  803.714076][   T31]  ? __asan_memcpy+0x40/0x70
[  803.714093][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  803.714115][   T31]  ? __pfx__printk+0x10/0x10
[  803.714138][   T31]  vpanic+0x237/0x6d0
[  803.714152][   T31]  ? __pfx_vpanic+0x10/0x10
[  803.714170][   T31]  panic+0xb9/0xc0
[  803.714183][   T31]  ? __pfx_panic+0x10/0x10
[  803.714196][   T31]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  803.714220][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  803.714244][   T31]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  803.714264][   T31]  check_panic_on_warn+0x89/0xb0
[  803.714279][   T31]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  803.714299][   T31]  end_report+0x78/0x160
[  803.714319][   T31]  kasan_report+0x129/0x150
[  803.714341][   T31]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  803.714363][   T31]  __list_del_entry_valid_or_report+0xb5/0x190
[  803.714383][   T31]  kcov_remote_start+0x2b0/0x6f0
[  803.714406][   T31]  hub_event+0x158/0x4a20
[  803.714422][   T31]  ? cpuacct_charge+0x117/0x320
[  803.714446][   T31]  ? do_raw_spin_lock+0x121/0x290
[  803.714463][   T31]  ? look_up_lock_class+0x74/0x170
[  803.714485][   T31]  ? register_lock_class+0x51/0x320
[  803.714506][   T31]  ? __lock_acquire+0xab9/0xd20
[  803.714528][   T31]  ? __pfx_hub_event+0x10/0x10
[  803.714544][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  803.714565][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  803.714586][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  803.714604][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  803.714622][   T31]  process_scheduled_works+0xae1/0x17b0
[  803.714651][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  803.714676][   T31]  worker_thread+0x8a0/0xda0
[  803.714704][   T31]  kthread+0x711/0x8a0
[  803.714726][   T31]  ? __pfx_worker_thread+0x10/0x10
[  803.714744][   T31]  ? __pfx_kthread+0x10/0x10
[  803.714764][   T31]  ? rt_spin_unlock+0x150/0x200
[  803.714783][   T31]  ? rt_spin_unlock+0x161/0x200
[  803.714800][   T31]  ? __pfx_kthread+0x10/0x10
[  803.714822][   T31]  ret_from_fork+0x4bc/0x870
[  803.714840][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  803.714860][   T31]  ? __switch_to_asm+0x39/0x70
[  803.714875][   T31]  ? __switch_to_asm+0x33/0x70
[  803.714890][   T31]  ? __pfx_kthread+0x10/0x10
[  803.714911][   T31]  ret_from_fork_asm+0x1a/0x30
[  803.714933][   T31]  </TASK>
[  803.733794][   T31] Kernel Offset: disabled