last executing test programs:

27m8.926895976s ago: executing program 1 (id=125):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newlink={0x38, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x58a6}]}, 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_ifreq(r2, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRESDEC, @ANYRES32, @ANYRESHEX], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ppoll(&(0x7f0000000500)=[{}], 0x1, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000000300)=[{{&(0x7f0000000540)=@isdn, 0x80, &(0x7f0000000240)}, 0x390b}], 0x1, 0x2000000022, 0x0)
setsockopt$sock_int(r3, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@ipv4_newrule={0x24, 0x20, 0x1, 0xffffffff, 0x0, {0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x1, 0x15}, [@FRA_SRC={0x8, 0x2, @private=0xa010101}]}, 0x24}, 0x1, 0x0, 0x0, 0x40008c4}, 0x8000)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0x2, 0x0, 0x0, 0xfffe}, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r6, 0x800452d2, &(0x7f0000000100))

27m2.890577524s ago: executing program 1 (id=136):
ftruncate(0xffffffffffffffff, 0xffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x2, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x2b}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000020301040000000000000000000040200800010001"], 0x1c}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r2, 0x74)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)

27m1.963241091s ago: executing program 1 (id=138):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x2, 0x20}, 0xc)
r2 = dup(r0)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='ip6gretap0\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2d}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c)
pipe2$9p(0x0, 0x0)
write$P9_RSETATTR(0xffffffffffffffff, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0xffff, 0x2)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)

27m1.084083416s ago: executing program 1 (id=141):
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000001c0)={0x0, &(0x7f0000000040)})
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000001b80)=ANY=[@ANYRESDEC=0x0, @ANYBLOB='\x00\x00'])
ioctl$HIDIOCSREPORT(0xffffffffffffffff, 0x400c4808, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x10000, 0x0)
ioctl$AUTOFS_IOC_READY(0xffffffffffffffff, 0x9360, 0x800000000000001)

26m57.327308187s ago: executing program 1 (id=144):
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY(r0, 0x5000940f, &(0x7f0000001480)={{r0}, "27015cdaa4911621a7a11210bf740ca1e9374ba4d784347e83f915ec88c9e9a7f365a10e203a819d71076a7a66e611ff972a1f4bee08b584a64eac5b53a63f38b6aea172c4af6e48d884a6fe79a26c49b8bf17abf97ac3225879eaeea2066c92abc1533aba69865a44ee5354d4930cd8bb72a2148d63cc06d1ed9ac5abd4ac485f136dbf91f5c63a2708e18e0bf3bcd21945150f4fde0187206741e7261bddeed9a15db7b569e8f8a5467eeba3a9174ea169e87455db20d4b774d5ef05f096a889f97db83e47c3f2aa26fee707aa3efcc1fdf5fcdbce8802c3a81b104d8438da57bca7482e090db5e38a84e094bc3adf9489309d89b72b4c6fa19abf82ee7c68dac9bfd9a3bf0aa69bbf7756db3284018629bf3a646b1fec9574682c136ed5252a75cd77359847981b8122898d5ea180309ae22838bfa7e64ea1f123e84c54c8198cba91061d1a07a67647cc4faa3c4250413d0a8295448802184c8c337932b47e65ef8ef1cb70f5546b2f42ccbbff60999bbb0666a5fc1ffe0921d151789a896be907daf8bc904b4f181f00dce127f37e9e53942bd0844ff39fc6861ba334e2dac6c1256f390aae0b8fe28cedad15e9bae276ec289aa1fb66f619608f951186e09f9ace868bf0d8be50d960f928a04b459b974981d3cdf4a2fea3978bd7fe9967e28b4186916bff5193e8217819cfc4133103fbac3a222f5d98c4c4eee20ae7ec42f003953ab499aae4d6645c302d0b5a1e26ecfd9b82b8f82748eb23dd04cd0762bc497198a5abfdf90f5878ac11797824b751d761201d7f047fb62f0b63e85ecf3990efed93c733ff99181c44283bd3a4789e425949bd9a7b0e1418dd9d6443ad1ce19b99b7ec2a14290c003f1b1cecca0ac6122549f3ef6a57b80cb563f2c53aaadc40e7426d26688388b7637831b38b34f6e3ae40369afb7372a71b19dea21f1117449a185dd4999e3f2988ededa2f172bb9f325c6328f57e85935940c0aa0e1d3156aef4e6eab94beef39c6dccf982b327315391c2c659168434a570005fb25b283e480ef4fd848cae8b48aa18de7cf1da2088188c67927a0e3c5507a96670e8b8659532c776dc83686e0530ac50d4b745dfb60f6c0e7fd4db55f3d9b604d8d76534c18e2cdff60f4f9662d9c5cafc5f9718fa9a6854180a5dddb18668351f6ce65ae41604a703e5147269ebf8728f6dc2471b390368cebf1b0699ad0305937d1b5d4d00e57d12d1ea479cde238d02e7804cba854c6192413c7bd5644692b9413f5e5abd647411f4e516ad35948ca763e29ce8cd900f178b6bd40b2b91be6e1c3b13feb5e7ace2c8c31ce35d6a20df2993ad89221b762125d1b95c3d6c53918063871028b1ce58374a4192b9da5c661483d653cdf2ef0c8a9c668e25d9b5005dace3c19fe0dbe559f3655b98ee9fb24786f9c3970294c30aa852c02b84dfa0a260142a37241b491f68bc523ec28bdc5d1053079199be8f3c13fd7f8b104beaa33ed0cf8fcdbde8dfcd03f63e1e529c21593801b5312b828e9a2795fb41a8563ee62983f9ebfc3c3a8376ad759a99381b19207c13749c6cc8d3f67c50d73a639203fdfcb5e3e73e321c4c33a407222c7f7ab7df05f80cc5fef5c74b6ae5864a4c5918f166824670ebbae98c4fdd6a4a0a18a17f773d69f4c823f179969464c53852d02faf0190a830a7b0fd47ff35360c5f955dbb5062bbf7e1a0b948a1173cc0c52d64754c2f9f2d2510d57829365e589289d004181c261043ffa4847f140642556a18c1f45b72944100dfc0d964eaf7415a24f83adb4f57000e7f3a3b0eb0ca8b2012206c9b3203343040adcd76515c4193708e5f1a9acfb2c1fd13e9d1a80db4be47ed7c52097e30b06a4b8593ff12d49162915527d46c147273f69ed1adc560a147f6b3b5b73119e3d1addabe99305e6e4210617e764b77d87e56db0a82f180af53448a5020d437d82629a1abf2a871b90c69c363bb19880f25eaa9e0f991b33b450ce4ef1c149457a11135e2e5e26453b35aba9b51cec86b70f485fcd73065fcb7831f414e083a8ddc710923d188806e0a3217cf4fc436405d004d92b2526aac9542396333a53e7e7fdcd6a3febd0d80b2b1d6df71dca9fb751b0be3789eb6ec4735792a110c26f13538112777e9de3d38a9d00be7de684d2b707e4781250a3f0f0ba51ca31274e46ce95a1a38447714432d978dc104bd916dac015ef6b5e452bc225db752e410447bd76f4fe52ce3078c3adc88dca6e5bed6430186f1abf69631426c3a80c7d2700b6296501834be2339498a76c06084d90e568c7b60f94489a6662cab9dde07c91741e1b86892448741ed02198d34d2b66437748b4e30794148da27ab43881c7e4d443c460152cab5f17737677db63b2a53e2b98b21cc0be84d9f56f7d6d44575e10a8ebe17f151e2102c208c0a21ffb7deb3ac6cb5d4857d23ee1a56026c116ae5652279122d0a4ab28e4ffe61296d8ae8656220f057d6fee735f747cb2cc5354b528655ee903f3664849e6df235fd9f87c99cd65fcaba0eed393a793b8f8f65952ba6b454e0bb68fb606d601385b22e2c0d0096dbfd71dc8a905d36bae614920a97e35fb6893fb456d43e83c796e4b5c9faeb76923a97fcc880964f1c1ea6c47fb0a8eb7d32051a8f6b1ebb9281d552aa4670471ba455d044a5e5bd7af491c487dbcdded8a28db5170580c67a4fa004dc00128ac51c518c74bd3f0b97bee53c01e9cb739e23c1dbd39e01fb1858fb9075ec16ea0b62f412aba42cef99979a0dd72ea053bb803a4df8ae1dcd424dadc4ccbd1510af98a1a5269a7d406141fa26e07f5f9f14278e91e7e751d56f8a7b37548f451b0bc6695056977d6b13f6800e9c1d47480254ab8a58a2d048169497362ad04f5e86548df7b984c6ed762cc2d91190ec6e5fe039c44105098a3d72d0ec65e2be5907be8d50aa34c4a1055103310b02b1ff54e87e248d6070ce1263e28aae157b5bfe6d7686eacffe4f8fed8719edda2163607178cfa6988c7d2e856cd235fdf72911877215253487c2ce0766413b0461a88b93b998fddc32a6c13885ff71893ac493bcf449d874bdd2aa8b941bdb4c50f8b6a923ddc751461cb17c7dbb80026fbd1e94baf31d3fd882c2ebc806f30b3d2e1fca862d5b351bec4f1d71a86464a9014d0009e0b32459bbac4917c406ad757da3f31fe29229b40a7533f75e5d540baecf8e68d76b0e92955e8c09c97c91d6476ed67b5bc78dfefb224e20d4f155a869140d3df829af99a71d5b0a7940b98e6750d7369e24da11d00e75e4a08dbefca243e45d5cb25b5b0cf64fdcb652875cd187110840defa3325ca72dceb966d22a1562be7665984a83bfad8992ddc356b69eb3ea4da0b883df0848d8d0fe28ab1812e1a806609e011c80cbdeb01fddbb24c0accef6d7593959a478035934f3c9b3ca6fd6f43285b12ec8dd6cb909754e8f14dd2714b1d16f884688f405e15c7c3e3324ea6ec5e5da1623b5841fc6b28eeedef23af495e3cfb6b04983d724d645258d2749bcbd241f396e1e1e1f884314382a3dab620e634ead40b4c4ef4c518383b99f580949fd2344cc85a70f94829c7a9d191693b756d0aabed591d7eb5927be2a962e826fff37c9893bc5cf80292a963e94f5a35a7477cdbf4ca1fd63656ca3dfff17d5d39a11b7211099bc420ec5d11c9d17644430431cb977186314598a36797f0615ed75c65461b4b817808deb625f601b540082acdbecf920ec3fd2b93f1bd79355e5fd176b41d47669fa0cef9116167dec26b126b4f3bdcaa50e3bb35b90a981d9aa139359bec4ab24095003bf0252521fda4982925506f6079a512afe75fc3595b1a1c668872f0a82e39372b2455ab1d4c85ebdad0e8a72a76f96352ff756138d47ee5feca726ada7977ae0cdeec8b0d99a704e7b5ce67e05281bff5d73e97248e95a307955f9f682a401610efe4bdd347e6e5eee6c84516f0fbb8e6e63e8c84877b4eefcd97b660118af2c09bac3090435c1be0ccb50465c05dab93f664f2300d5a000228250c8f2584abd36d311fd30f86edab90a50867f9192b9b2da032a8e253d6998f58a03a02c21cdf123d134b28ecd65887953c1f72cdb048cb3233fadfefa1d1eb19da0b4f7c8c92e3c9f417593870a1852901e7f45e9d713cf5bfc3911dc71e619e1792fdd83f8cbccb13d8fb94d55fff0dc83549aeb8a1921b0d8b7a824cd424feea9d3cae107b9b25039e64e4580ceb1500ff8bb8ebb9593ed611262d97b4e78dd3a82752acaf5ccb64cfae681380454aa7fd29b512ebb3db5ccf35f4b9f1748b99f778a76ab043a9afe242a48e2870249ffe7ef204fa433d8aaa32a48848293e0a418219e9a5d609edd5e2c377b9f365d428ad75dc4b930f47fb628550b2c1ae96fde9f1a02d36d11a13174245d50d757400543ebce76d63b1b473e1bb3974eb1601b023e1d56cbe096e1d4f5e8287e9761ff0943efe8975253a4b1c696eeb44f13421047714311a8c69a1266c7dc5b539b042a647ca92d4465150fb53e2b28ec5c507e0bbae3a0e6c0407954e93b6d22548d8957ca724ac2c72b058f91b7b4b8f413e2764dd9794d14d93a44f0aa4b70dad9b68420239155b61fd355a0c29327c9f9f5ab1fc1ac01d987d3998e6efc438248ce38766baf4e8ff71e89dae6d8ffde79329f10211d9fd5973ce1ddf42e4eb139d8a57521007030bfd5e0b179b60cdcd37b51d284fee5ad72f1d7f5830d168803be56be91a3842c254c8c1412c5e404d9f5c81bb381f1ce0a2666c0580288fe97fa8e7776ccef5a9a9ba49da34addd9f406b4fabcb2b36f99a59d0a202ba0106fd6809c713f94291ea6c3f2b193d4987a9e255d9aaba05699767fc3623efa9b292cd986d79244b9ac3a22994a3d1445f34ee79b4fbb1a855d83ea6e388bbf5bfde337be84e6db64f58de2edeec560d280bf4758ee438f8555e86b081b0b76b020fef703010cb8eb13d35763b247ec35c2a27fb26cb2d2db59a6dd7df362b1a70fd3ccbeef2da84aeb54457f985065636fdcb704431cdcde49446479dbc36c546954ccb831e1e6478dbc0a242dd2c8128c2ad06f37713a667ef566bf62d9b605886236e766626ff8104c6d167e6047990d2e795c8b47f07f02a6749078cd35b6903b248359794ef52d45c58e1901a200791e9592b211cb0384d38e3baffd4ab5b91456592e956d5689e23a1f9e00cfc8320e70ee0d000ce255561253291ee66f7fc862ee9e9f2b567eee719bde4baec92a432fbce3e943862dd0977360918d1999ef1d5e717ad661b3794781bce9ebda6e2bf08e8a758dbd49eb661b6c86275fdbc49f2ff030a724371c8f59bc5a2ec8d078603a14b9c3530d8a9b33bf05e2e050372f18efb117f7eb0ed508a6dfcf02251b9eb05fc5fdf8c4304d80dccab4f2fcb797394f15e3f7d3d8d61c3e84b77036efa2a6317f06cf81d2bca46faeada1c9104af4008d275a39d49629529a93b00b2381f893684be7dba9cadc02b1f2805735a4e50bd9d7f78d8c816b7968abbef93f4b4590f94ee6220f23c9ac57c2dbd91e83b69332427ae96594f7e1bcda2e310ae6db581432d05851e7bd2cb498d37698cd0281812c323ee17a35190d13b05547e41660806d358ce5bec9ae673a46b3b8baa689c343de11d26e4ace3e7b71205ed9da1134ea7017507367bd5d0a5bb0eec871be1e9eac540dee17af312ea1fe012239db908740aab6dfe198a6e547e5b9ff37dc69637f9d3013d570d35bd63f37d26ed40a36658bc56d1d8"})
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x9, 0x8, 0x2, 0x3}, 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x100, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r3, &(0x7f0000000000)=[{{&(0x7f0000000040)={0x2, 0x4e20, @broadcast}, 0x10, 0x0}}], 0x1, 0x0)
r4 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0x1, 0x80, 0x0, 0x4000}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x9})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)
r7 = open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x84)
fcntl$setlease(r7, 0x400, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

26m55.707148299s ago: executing program 1 (id=150):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x58a6}]}, 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_ifreq(r2, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRESDEC, @ANYRES32, @ANYRESHEX], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ppoll(&(0x7f0000000500)=[{}], 0x1, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000000300)=[{{&(0x7f0000000540)=@isdn, 0x80, &(0x7f0000000240)}, 0x390b}], 0x1, 0x2000000022, 0x0)
setsockopt$sock_int(r3, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@ipv4_newrule={0x24, 0x20, 0x1, 0xffffffff, 0x0, {0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x1, 0x15}, [@FRA_SRC={0x8, 0x2, @private=0xa010101}]}, 0x24}, 0x1, 0x0, 0x0, 0x40008c4}, 0x8000)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0x2, 0x0, 0x0, 0xfffe}, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r6, 0x800452d2, &(0x7f0000000100))

26m52.381483403s ago: executing program 32 (id=150):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x58a6}]}, 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b70300000000002085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_ifreq(r2, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRESDEC, @ANYRES32, @ANYRESHEX], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ppoll(&(0x7f0000000500)=[{}], 0x1, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r3, &(0x7f0000000300)=[{{&(0x7f0000000540)=@isdn, 0x80, &(0x7f0000000240)}, 0x390b}], 0x1, 0x2000000022, 0x0)
setsockopt$sock_int(r3, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@ipv4_newrule={0x24, 0x20, 0x1, 0xffffffff, 0x0, {0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x1, 0x15}, [@FRA_SRC={0x8, 0x2, @private=0xa010101}]}, 0x24}, 0x1, 0x0, 0x0, 0x40008c4}, 0x8000)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0x2, 0x0, 0x0, 0xfffe}, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
ioctl$FS_IOC_GETFSLABEL(r6, 0x800452d2, &(0x7f0000000100))

25m35.85178115s ago: executing program 2 (id=257):
syz_mount_image$minix(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', 0x2004000, &(0x7f0000000640)=ANY=[@ANYRES16=0x0, @ANYBLOB="76e6299582673a17dc165b52126d9b5ebefaffce7591b3e858ec5ed1c0bcfbb28bb8b0771b9d7bafda74268d068808dfeb2186c0cb22ce6d409cafb470c8dbeee8adbd992946fcbac0d8526cacf256ba422844b1f83d45e058a5c282098be693631c1a9abe0347be4d78f840ad5fe1b5b66ec21a3649b537497775cba62faf8223fa64df6cc1c3ff32e60c28cc9db40351dbc9460f90ff5c82bfc19be3daf82609d615a9d272f9693791b73c9265ccca96d673ec071275dfc825d56bb3ae3b200390", @ANYRES32=0x0, @ANYRESHEX], 0x9, 0x226, &(0x7f0000000140)="$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")
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
migrate_pages(r0, 0x1000, 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000040)={0x5, 0x6576, 0x9})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r3, 0x100000000)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x11, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r4, 0x0, 0xd2, &(0x7f0000000000)={@remote, @multicast1, 0x4, "d30f388c52647612d91de4353d68b0fa00", 0x0, 0x0, 0x4000000, 0x8}, 0x3c)
setsockopt$MRT_ADD_MFC(r4, 0x0, 0xcc, &(0x7f0000000280)={@multicast2, @multicast1, 0x0, "7ea97ddb2ac127ffa5b7216fe75ebaa2855a422a8bf8ec7caf003751804500"}, 0x3c)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events.local\x00', 0x26e1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r5, 0x2000000, 0xd, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b9", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xb2)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="220000000400000010000000"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r6}, &(0x7f00000004c0), &(0x7f0000000500)=r5}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x10, &(0x7f0000000100)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, &(0x7f0000000180)={@private, @multicast2, 0x0, "941621a61c5815f4678d8fd4a8e14b0447113c694d1fd55708018620fd419884"}, 0x3c)

25m30.253220707s ago: executing program 2 (id=261):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket(0x29, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_RES_PD_GET(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[], 0x10}}, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/168, 0xa8}], 0x1, 0x2004, 0x80)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x40)
sendto$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000240), 0x3af4701e)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r4, 0x0)
r5 = syz_clone(0x0, 0x0, 0x43, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(0x0, r4)
process_vm_writev(r5, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

25m24.259913549s ago: executing program 2 (id=264):
socket(0x2b, 0x1, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="611234000000000061134c0000000000bf2000000000000015000200000001103d030100000000009500000000000000bc26000000000000bf67000000000000070300000fff070067020000030000001606000000000078bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f909ad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe70305865050df26469fac5202d6293c3d5e11f4f83e7455baeeba4f"], 0x0}, 0x94)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f00000003c0))
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0))

25m19.123256068s ago: executing program 2 (id=269):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000080)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a80000000060a010400000000000000000a0000010900010073797a310000000054000480500001800b00010074617267657400004000028008000240000000012c0003007339f2f10455afb9fdd672bad09dfb78c7699c74e891a0c70000000000000000000000000000000008000100544545000900020073797a320000000014000000110001"], 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000080"], 0x35}}, 0x800)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r3, 0xfffffffc)
r4 = syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmsg$NL80211_CMD_ADD_TX_TS(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0x4, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20004000}, 0x44008000)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000500)={'syz_tun\x00', 0x0})
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x14, r4, 0x7}, 0x14}}, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00'})
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, 0x0, 0x800)
r9 = syz_usb_connect(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x47, 0xa1, 0xe0, 0x40, 0x403, 0xfb5f, 0xf17b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x9, 0x2, 0xb0, 0x0, [{{0x9, 0x4, 0xdb, 0x7, 0x2, 0x2a, 0xdb, 0x16, 0x2, [], [{{0x9, 0x5, 0x5, 0x2, 0x20, 0x1, 0x6}}, {{0x9, 0x5, 0xf, 0x0, 0x3ff, 0x3, 0x1, 0x52}}]}}]}}]}}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0})
syz_usb_disconnect(r9)

25m12.192667394s ago: executing program 2 (id=275):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000080)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a80000000060a010400000000000000000a0000010900010073797a310000000054000480500001800b00010074617267657400004000028008000240000000012c0003007339f2f10455afb9fdd672bad09dfb78c7699c74e891a0c70000000000000000000000000000000008000100544545000900020073797a320000000014000000110001"], 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000080"], 0x35}}, 0x800)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4001, 0xb, @loopback, 0x9}, 0x1c)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r3, 0xfffffffc)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_ADD_TX_TS(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0x4, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20004000}, 0x44008000)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)

25m7.293620925s ago: executing program 2 (id=279):
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000380)={"b8e50a31a002b94fcd8fc4db3056309d", 0x0, 0x0, {0x7, 0x100}, {0x0, 0x5}, 0x51, [0x7, 0x3, 0xe, 0x2, 0x9, 0x1, 0xd8e, 0x7fc0000, 0x5, 0x0, 0x6, 0x3, 0x5, 0x49, 0xfffffffffffffffe, 0xc]})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000040)="050000", 0x3)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
r3 = socket(0x10, 0x803, 0x2)
getsockname$packet(r3, 0x0, &(0x7f00000003c0))

24m50.470128224s ago: executing program 33 (id=279):
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000380)={"b8e50a31a002b94fcd8fc4db3056309d", 0x0, 0x0, {0x7, 0x100}, {0x0, 0x5}, 0x51, [0x7, 0x3, 0xe, 0x2, 0x9, 0x1, 0xd8e, 0x7fc0000, 0x5, 0x0, 0x6, 0x3, 0x5, 0x49, 0xfffffffffffffffe, 0xc]})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000040)="050000", 0x3)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
r3 = socket(0x10, 0x803, 0x2)
getsockname$packet(r3, 0x0, &(0x7f00000003c0))

10m22.089220686s ago: executing program 4 (id=1716):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, 0x0, 0x0)
madvise(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0x3e57}, {0x6}]}, 0x10)
sendmmsg$inet(r0, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000a80)="2a73ed35", 0x732a}], 0x1}}], 0x400000000000292, 0x0)

10m12.880090733s ago: executing program 4 (id=1747):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)
recvmmsg(r0, &(0x7f0000001b40)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/189, 0xbd}], 0x1}}], 0x1, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010002000000000000000000000a18010000090a010400000000000008000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001cd40009800800014000000006c80002800c00018008000140000000032400018008000140000000070800014000000008080001400000000908000140000000080c000180"], 0x140}}, 0x0)

10m12.002781852s ago: executing program 4 (id=1752):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000080)=[{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)="b57523cb1a2c", 0x6}], 0x1}], 0x1, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000e, 0x6c2f2, 0xffffffffffffffff, 0x0)
syz_clone(0x800000, 0x0, 0x0, 0x0, 0x0, 0x0)

10m10.330246699s ago: executing program 4 (id=1758):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f00000033c0), 0xffffffffffffffff)
sendmsg$SMC_PNETID_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000fddbd725020000000900010073797a320000000014000200687372"], 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x800)
sendmsg$SMC_PNETID_FLUSH(r0, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f00000019c0)={0x14, r1, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x800)

10m9.656026224s ago: executing program 4 (id=1761):
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}], 0x1, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
creat(0x0, 0x40)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x7)
syz_clone(0x1000000, 0x0, 0xfffffd11, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
request_key(&(0x7f0000000040)='asymmetric\x00', 0x0, 0x0, 0x0)

10m8.647263678s ago: executing program 4 (id=1767):
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_open_procfs(0x0, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000007e40)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x0, @dev}, 0x18, 0x0}}], 0x6c00, 0x48)

9m53.26839146s ago: executing program 34 (id=1767):
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_open_procfs(0x0, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000007e40)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x0, @dev}, 0x18, 0x0}}], 0x6c00, 0x48)

11.665394055s ago: executing program 6 (id=4016):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
sendmmsg$sock(r0, &(0x7f00000003c0)=[{{&(0x7f0000000440)=@phonet={0x23, 0x2, 0x4, 0x7}, 0x80, 0x0}}, {{&(0x7f0000000080)=@ieee802154, 0x12, 0x0}}], 0x2, 0x40001)

10.877275867s ago: executing program 6 (id=4019):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x60)
close(r0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ppoll(&(0x7f0000000180), 0x0, 0x0, 0x0, 0x0)
pread64(r1, &(0x7f0000000480), 0x1, 0x2)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x8002, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

8.964007155s ago: executing program 6 (id=4027):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, 0x0, 0x2204803, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x11, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth1_virt_wifi\x00', <r2=>0x0})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r3, 0x0, r6, 0x0, 0x39000, 0x0)
r7 = memfd_create(&(0x7f0000000180)='<Z2>J=\t\xeb\xf8\xa7\x04\x9f\xe1hO\x8e\xd7\xb5\x93}\x8d\xed\x01L`\x93\xcd^2P\x00$x\"\xda\xf1Az\xfe_\xc5\xb3\x9b`;\x1c\xfc\xaf9\x98\x91\xe7', 0x1)
fanotify_init(0x200, 0x0)
dup(r7)
splice(r5, 0x0, r7, 0x0, 0x400c5, 0x5)
write$binfmt_elf64(r4, &(0x7f0000000000)=ANY=[], 0xfffffe3e)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=@setlink={0x28, 0x13, 0x1, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, 0x2424, 0x1920}, [@IFLA_NET_NS_PID={0x8, 0x13, r1}]}, 0x28}, 0x1, 0x0, 0x0, 0xc0008c1}, 0x20048000)

7.792107037s ago: executing program 7 (id=4030):
r0 = socket(0xa, 0x3, 0x7)
sendmmsg(r0, &(0x7f0000000180)=[{{&(0x7f0000000100)=@l2tp6={0xa, 0x0, 0x8, @mcast2, 0x0, 0x4000004}, 0x80, 0x0}}, {{&(0x7f0000000340)=@l2tp6={0xa, 0x0, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6, 0x4}, 0x80, 0x0, 0x0, &(0x7f00000009c0)=[{0x10, 0x29, 0x7}], 0x10}}], 0x2, 0x9090)

6.911280711s ago: executing program 7 (id=4032):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
close(0xffffffffffffffff)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
writev(r0, &(0x7f00000005c0)=[{&(0x7f0000000100)="2e1221b23bb601c477d3df163e75963d86ddf06712e90020118db0049d90491c3248040000dbb8a10000", 0x2a}, {&(0x7f0000000d40)='$\x00\x00\x00\x00\x00', 0x6}, {&(0x7f0000000c80)="a43b2eaab40000000000f294601e8cde77cf", 0x12}], 0x3)

6.52380588s ago: executing program 5 (id=4034):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x6a)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x12, 0x3, &(0x7f0000000700)=ANY=[], 0x0, 0x8, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @cgroup_sock_addr=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006000000000000000000380000000000000000191bda0000200001000000000280000000000003"], 0x69)
close(r0)
execve(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)

5.933410446s ago: executing program 3 (id=4035):
r0 = syz_clone(0x2008400, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000080)='proc\x00', 0x189, 0x0)
r2 = syz_open_procfs(r0, &(0x7f0000000100)='map_files\x00')
fchdir(r2)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file0\x00', 0x40000, 0x20)

5.709228978s ago: executing program 5 (id=4036):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000300)={@cgroup=r0, r0, 0x2e, 0x4}, 0x20)

5.536195132s ago: executing program 0 (id=4037):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x60)
close(r0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ppoll(&(0x7f0000000180)=[{r1, 0x104}], 0x1, 0x0, 0x0, 0x0)
pread64(r1, 0x0, 0x0, 0x2)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x8002, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

5.255618648s ago: executing program 7 (id=4038):
socket$netlink(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000140)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c0d23266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)={0x1})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0)
pipe(&(0x7f0000000000))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x20000000, 0x3, 0xfffffffffffffffc, 0x0, 0x0, 0x2004cb, 0x3, 0x0, 0xfffffffffffffff8, 0x9, 0xfffffffffffff2a7, 0x2000000000003ff, 0x2], 0x0, 0x200306})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.518252514s ago: executing program 3 (id=4039):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x101042, 0x48)
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000240)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@verity_on}]})
setxattr$security_capability(&(0x7f0000000140)='./file0/file1\x00', &(0x7f0000000200), 0x0, 0x0, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x0, 0x60)

4.442051135s ago: executing program 0 (id=4040):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, &(0x7f00000000c0)})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x101042, 0x48)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000240)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@verity_on}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x0, 0x60)
close_range(r0, 0xffffffffffffffff, 0x0)

4.174527718s ago: executing program 5 (id=4041):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac9", 0x3}], 0x1}}], 0x1, 0x24080855)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, 0x0, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x14, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d960001000000000000000000007efff100004000", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c527d3d458dd4992861ac00", "f4bd000000801900", [0x8, 0xffffffff9673e35d]}})

3.806731173s ago: executing program 7 (id=4042):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xe)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40140, 0x1)
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000040)='./bus\x00', 0x322020, &(0x7f0000000280)=ANY=[], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x40, 0x10)

3.503097411s ago: executing program 0 (id=4043):
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0xa5)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x28)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000080)='./file1/file0\x00', 0x0, 0x1085408, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)
chdir(&(0x7f0000000140)='./file0/file0\x00')

3.403600657s ago: executing program 3 (id=4044):
signalfd(0xffffffffffffffff, &(0x7f0000000240)={[0x4]}, 0x8)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
read$FUSE(r0, &(0x7f0000002080)={0x2020}, 0x2020)

3.318571236s ago: executing program 5 (id=4045):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xab, @loopback, 0x10001}, 0x1c)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @loopback, 0x23}, 0x1c)
fcntl$setstatus(r0, 0x4, 0x42800)
r1 = dup(r0)
r2 = socket(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty, 0x4000002}, 0x1c)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2219, 0x7721, 0x16, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x44080)
syz_emit_ethernet(0x6e, &(0x7f00000001c0)={@random="cfb14e407d33", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@ipv6={0x86dd, @icmpv6={0x9, 0x6, 'z&-', 0x38, 0x3a, 0x1, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x8001, {0x2, 0x6, "081331", 0x9, 0xff, 0x0, @loopback, @loopback, [@fragment={0x3b, 0x0, 0xe, 0x0, 0x0, 0x3, 0x65}]}}}}}}}, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f00000000c0)={0x7, 0xffffffffffffffa0, 0xfa00, {0xffffffffffffffff, 0x10c}}, 0xfffffd88)

3.17465924s ago: executing program 6 (id=4046):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc8)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
setxattr$incfs_id(&(0x7f0000000240)='./file0\x00', &(0x7f0000000740), 0x0, 0x0, 0x2)
setxattr$incfs_metadata(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200), 0x0, 0x0, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xee01, 0xee01, 0x1000)

2.578795306s ago: executing program 7 (id=4047):
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './bus'}}, {@workdir={'workdir', 0x3d, './file1'}}]})
faccessat(0xffffffffffffffff, 0x0, 0x40)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000880)=""/4096, 0x1000)

2.460096785s ago: executing program 3 (id=4048):
creat(0x0, 0x43)
socket$igmp(0x2, 0x3, 0x2)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x4000000)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x24040084)

2.187804043s ago: executing program 0 (id=4049):
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000080), 0x2, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
write$cgroup_freezer_state(r1, &(0x7f0000000600)='FREEZING\x00', 0x9)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0), 0xc)
socket$nl_route(0x10, 0x3, 0x0)

2.04265853s ago: executing program 6 (id=4050):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x60)
close(r0)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ppoll(&(0x7f0000000180)=[{r1, 0x104}], 0x1, 0x0, 0x0, 0x0)
pread64(r1, 0x0, 0x0, 0x2)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x8002, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

1.976303163s ago: executing program 5 (id=4051):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x181002, 0x0)
ioctl$TCSETAF(r1, 0x5408, 0x0)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000001c0)={0x0, 0xffffef7b, 0x0, 0xb2, 0x10, "1b09000040000000000000e678000000001000"})
r2 = syz_open_pts(r1, 0x20800)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000100)=0x44)

1.468978454s ago: executing program 7 (id=4052):
socket$netlink(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000140)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c0d23266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)={0x1})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3}, {}, {0xeda7, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]})
pipe(0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x20000000, 0x3, 0xfffffffffffffffc, 0x0, 0x0, 0x2004cb, 0x3, 0x0, 0xfffffffffffffff8, 0x9, 0xfffffffffffff2a7, 0x2000000000003ff, 0x2], 0x0, 0x200306})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.181439785s ago: executing program 6 (id=4053):
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000000)='cpuset.memory_pressure\x00', 0x275a, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x1fd, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
mmap$KVM_VCPU(&(0x7f0000001000/0x1000)=nil, r5, 0x2, 0x11, r4, 0x0)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x7, 0xfc, 0xe1, 0x0, 0x6, 0xd9, 0x40, 0x1, 0xfb, 0x8, 0xc, 0x0, 0x0, 0x40, 0x1, 0x5}})
r6 = socket(0x10, 0x803, 0x0)
fcntl$lock(r6, 0x5, &(0x7f0000000000)={0x1, 0x2, 0x7fffffff, 0xfffffffffffffffb, 0xffffffffffffffff})
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
read$FUSE(r7, &(0x7f0000002880)={0x2020}, 0x2020)
ioctl$KVM_SET_REGS(r7, 0x4090ae82, &(0x7f0000000000)={[0x6e, 0x3, 0x0, 0x20, 0x3, 0x0, 0x106c, 0x80000001, 0x7fffffffffffc, 0x80000004000080, 0x0, 0x8, 0x0, 0x4, 0x0, 0x8001], 0x1820b800, 0x344610})
r8 = inotify_init()
r9 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r9, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
close_range(r8, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
write(r1, &(0x7f0000000140)="86", 0x1)
ioctl$KVM_GET_XSAVE(r4, 0x9000aea4, &(0x7f0000000840))

1.130472387s ago: executing program 3 (id=4054):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, &(0x7f00000000c0)})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x101042, 0x48)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000240)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@verity_on}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x0, 0x60)
close_range(r0, 0xffffffffffffffff, 0x0)

1.097521809s ago: executing program 0 (id=4055):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac9", 0x3}], 0x1}}], 0x1, 0x24080855)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, 0x0, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x14, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d960001000000000000000000007efff100004000", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c527d3d458dd4992861ac00", "f4bd000000801900", [0x8, 0xffffffff9673e35d]}})

242.576729ms ago: executing program 5 (id=4056):
r0 = socket(0x2, 0x3, 0xff)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f0000000040)={'sit0\x00', &(0x7f0000000000)={@loopback, 0x0, 0x0, 0x10, 0x0, [{@loopback}]}})

11.34749ms ago: executing program 3 (id=4057):
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff, 0x6})
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x8401)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000340)={0x53, 0xffffffffffffffff, 0x5, 0xad, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000100)="35bbab9308", 0x0, 0x2, 0x10020, 0xffffffffffffffff, 0x0})

0s ago: executing program 0 (id=4058):
r0 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000005c0)={'ip6gretap0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xe9, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61}, 0x94)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="75016a006d4158"], 0xdd12}], 0x1, 0x0, 0x0, 0x8887}, 0x0)

kernel console output (not intermixed with test programs):

 fuse: Unknown parameter 'fd0x0000000000000003'
[ 1489.027790][T14250] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2312'.
[ 1491.477360][T14277] fuse: Unknown parameter '0x0000000000000003'
[ 1492.174873][T14283] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2326'.
[ 1493.067462][   T29] audit: type=1326 audit(1771391888.976:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14288 comm="syz.7.2330" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x0
[ 1494.390877][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1494.427559][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1494.642271][ T5776] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1494.661591][ T5776] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1494.684046][ T5776] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1494.760151][ T5776] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1494.783023][ T5776] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1495.263165][T14313] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1495.756560][T14316] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2340'.
[ 1496.747761][T14305] chnl_net:caif_netlink_parms(): no params data found
[ 1496.897291][ T5776] Bluetooth: hci4: command tx timeout
[ 1498.979185][ T5776] Bluetooth: hci4: command tx timeout
[ 1499.067682][T14305] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1499.087858][T14305] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1499.095829][T14305] bridge_slave_0: entered allmulticast mode
[ 1499.141538][T14305] bridge_slave_0: entered promiscuous mode
[ 1499.227291][T14355] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1499.234336][T14305] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1499.266389][T14305] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1499.324708][T14305] bridge_slave_1: entered allmulticast mode
[ 1499.358611][T14305] bridge_slave_1: entered promiscuous mode
[ 1499.419137][T14358] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2352'.
[ 1499.712573][T14358] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2352'.
[ 1499.905364][T14305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1499.998428][T14305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1500.285701][T14305] team0: Port device team_slave_0 added
[ 1500.328925][T14305] team0: Port device team_slave_1 added
[ 1500.634848][T14305] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1500.667718][T14305] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1500.749575][T14305] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1500.829505][T14305] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1500.866754][T14305] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1500.949911][T14305] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1501.063476][ T5776] Bluetooth: hci4: command tx timeout
[ 1501.561314][T14305] hsr_slave_0: entered promiscuous mode
[ 1501.615782][T14305] hsr_slave_1: entered promiscuous mode
[ 1501.651065][T14305] debugfs: 'hsr0' already exists in 'hsr'
[ 1501.684926][T14305] Cannot create hsr debugfs directory
[ 1502.236854][T14382] fuse: Unknown parameter 'fd0x0000000000000003'
[ 1502.909699][T14388] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2364'.
[ 1503.028110][T14388] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2364'.
[ 1503.139049][ T5776] Bluetooth: hci4: command tx timeout
[ 1503.221419][   T29] audit: type=1326 audit(1771391899.116:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14387 comm="syz.5.2365" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1503.337386][   T29] audit: type=1326 audit(1771391899.136:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14387 comm="syz.5.2365" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1503.423638][   T29] audit: type=1326 audit(1771391899.156:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14387 comm="syz.5.2365" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1503.525647][   T29] audit: type=1326 audit(1771391899.156:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14387 comm="syz.5.2365" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1503.583092][T14305] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1503.893086][T14305] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1504.173081][T14305] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1504.830331][T14401] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1504.838571][T14401] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1505.534725][T14401] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1505.997697][T14421] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2377'.
[ 1506.677386][T14305] netdevsim netdevsim0 netdevsim0 (unregistering): left allmulticast mode
[ 1506.740427][T14305] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1506.816020][T14421] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2377'.
[ 1506.966405][   T12] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1507.044571][   T13] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1507.113096][   T13] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1507.147430][   T13] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1507.903950][T14305] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1508.059883][T14305] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1508.200611][T14305] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1508.284616][T14305] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1508.839347][T14453] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2392'.
[ 1509.126243][T14449] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1509.842493][T14449] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1509.943987][T14449] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1510.812014][T14453] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2392'.
[ 1510.864602][   T12] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1510.908867][   T12] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1510.950142][   T77] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1511.039228][   T77] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1511.824288][T14305] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1512.006810][T14305] 8021q: adding VLAN 0 to HW filter on device team0
[ 1512.108210][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1512.115964][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1512.249041][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1512.256809][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1512.830547][T14495] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2412'.
[ 1512.900946][T14500] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2412'.
[ 1514.633549][T14305] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1515.365221][T14305] veth0_vlan: entered promiscuous mode
[ 1515.385413][T14532] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2424'.
[ 1515.472768][T14305] veth1_vlan: entered promiscuous mode
[ 1515.488396][T14532] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2424'.
[ 1515.950880][T14305] veth0_macvtap: entered promiscuous mode
[ 1516.023160][T14305] veth1_macvtap: entered promiscuous mode
[ 1516.166845][T14541] netlink: 276 bytes leftover after parsing attributes in process `syz.3.2426'.
[ 1516.324358][T14305] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1516.543062][T14305] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1516.739511][   T77] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1516.778986][   T77] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1516.845740][   T77] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1516.877435][   T77] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1518.052732][T14570] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2437'.
[ 1518.457635][T14575] netlink: 276 bytes leftover after parsing attributes in process `syz.3.2439'.
[ 1520.133794][   T29] audit: type=1326 audit(1771391916.046:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14596 comm="syz.5.2447" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1520.245494][   T29] audit: type=1326 audit(1771391916.086:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14596 comm="syz.5.2447" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1520.338153][   T29] audit: type=1326 audit(1771391916.086:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14596 comm="syz.5.2447" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1520.458277][   T29] audit: type=1326 audit(1771391916.106:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14596 comm="syz.5.2447" exe="/root/syz-executor" sig=0 arch=40000003 syscall=165 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1520.548280][T14604] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2450'.
[ 1520.572474][   T29] audit: type=1326 audit(1771391916.106:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14596 comm="syz.5.2447" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1520.651323][   T29] audit: type=1326 audit(1771391916.106:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14596 comm="syz.5.2447" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1520.754228][   T29] audit: type=1326 audit(1771391916.106:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14596 comm="syz.5.2447" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1520.857741][   T29] audit: type=1326 audit(1771391916.106:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14596 comm="syz.5.2447" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1523.101580][ T7428] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1523.136493][ T7428] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1523.415627][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1523.447491][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1530.781788][T14741] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2505'.
[ 1533.401580][T14768] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2518'.
[ 1534.357745][T10277] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1534.369219][T10277] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1534.408636][T10277] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1534.445255][T10277] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1534.464389][T10277] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1535.952223][   T29] audit: type=1326 audit(1771391931.866:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.7.2527" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1535.976013][   T29] audit: type=1326 audit(1771391931.886:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.7.2527" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1536.102966][   T29] audit: type=1326 audit(1771391931.946:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.7.2527" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1536.218231][   T29] audit: type=1326 audit(1771391931.946:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.7.2527" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1536.482865][T14777] chnl_net:caif_netlink_parms(): no params data found
[ 1536.579179][ T5776] Bluetooth: hci0: command tx timeout
[ 1537.053488][T14806] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2531'.
[ 1538.457226][T14777] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1538.477293][T14777] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1538.485248][T14777] bridge_slave_0: entered allmulticast mode
[ 1538.555445][T14777] bridge_slave_0: entered promiscuous mode
[ 1538.597603][T14777] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1538.627885][T14777] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1538.635944][T14777] bridge_slave_1: entered allmulticast mode
[ 1538.664979][ T5776] Bluetooth: hci0: command tx timeout
[ 1538.689756][T14777] bridge_slave_1: entered promiscuous mode
[ 1538.962143][T14777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1539.041411][T14777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1539.445642][T14777] team0: Port device team_slave_0 added
[ 1539.528198][T14777] team0: Port device team_slave_1 added
[ 1539.882095][T14777] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1539.905150][T14777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1540.001854][T14777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1540.060228][T14777] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1540.104958][T14777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1540.313670][T14777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1540.737894][ T5776] Bluetooth: hci0: command tx timeout
[ 1540.850199][T14777] hsr_slave_0: entered promiscuous mode
[ 1540.865706][T14777] hsr_slave_1: entered promiscuous mode
[ 1540.876789][T14777] debugfs: 'hsr0' already exists in 'hsr'
[ 1540.885567][T14777] Cannot create hsr debugfs directory
[ 1540.905421][T14843] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2545'.
[ 1542.830317][ T5776] Bluetooth: hci0: command tx timeout
[ 1543.312436][T14777] netdevsim netdevsim3 netdevsim0 (unregistering): left allmulticast mode
[ 1544.182463][T14777] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1544.231360][T14877] sctp: [Deprecated]: syz.5.2560 (pid 14877) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1544.231360][T14877] Use struct sctp_sack_info instead
[ 1544.262634][T14777] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1544.313083][T14876] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2559'.
[ 1544.325918][T14777] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1544.404578][T14777] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1545.739494][T14777] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1545.961351][T14777] 8021q: adding VLAN 0 to HW filter on device team0
[ 1546.076660][ T7737] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1546.084448][ T7737] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1546.253845][ T7428] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1546.261479][ T7428] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1548.041953][T14914] netlink: 132 bytes leftover after parsing attributes in process `syz.6.2572'.
[ 1548.760467][T14777] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1549.576986][T14777] veth0_vlan: entered promiscuous mode
[ 1549.732752][T14777] veth1_vlan: entered promiscuous mode
[ 1550.135295][T14777] veth0_macvtap: entered promiscuous mode
[ 1550.203831][T14777] veth1_macvtap: entered promiscuous mode
[ 1550.425442][T14777] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1550.566075][T14777] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1550.716035][ T7428] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1550.769203][ T7428] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1550.803363][ T7428] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1550.837682][   T13] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1551.368431][T14943] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2584'.
[ 1553.949276][T14977] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2596'.
[ 1555.805379][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1555.812620][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1556.641111][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1556.668530][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1556.874049][ T9037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1556.909168][ T9037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1558.863037][T15022] sctp: [Deprecated]: syz.6.2610 (pid 15022) Use of int in max_burst socket option.
[ 1558.863037][T15022] Use struct sctp_assoc_value instead
[ 1561.094631][   T29] audit: type=1326 audit(1771391957.006:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.186343][   T29] audit: type=1326 audit(1771391957.006:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.295770][   T29] audit: type=1326 audit(1771391957.036:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.369727][   T29] audit: type=1326 audit(1771391957.036:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.459482][   T29] audit: type=1326 audit(1771391957.036:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.527527][   T29] audit: type=1326 audit(1771391957.046:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.617496][   T29] audit: type=1326 audit(1771391957.046:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.671702][   T29] audit: type=1326 audit(1771391957.046:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.812703][   T29] audit: type=1326 audit(1771391957.046:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15048 comm="syz.5.2621" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1561.947485][   T29] audit: type=1326 audit(1771391957.816:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15050 comm="syz.5.2624" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1567.304360][   T29] kauditd_printk_skb: 30 callbacks suppressed
[ 1567.304453][   T29] audit: type=1326 audit(1771391963.216:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15125 comm="syz.5.2650" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1567.477563][   T29] audit: type=1326 audit(1771391963.236:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15125 comm="syz.5.2650" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1567.594180][   T29] audit: type=1326 audit(1771391963.266:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15125 comm="syz.5.2650" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1567.698011][   T29] audit: type=1326 audit(1771391963.306:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15125 comm="syz.5.2650" exe="/root/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1567.837355][   T29] audit: type=1326 audit(1771391963.306:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15125 comm="syz.5.2650" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1567.959532][   T29] audit: type=1326 audit(1771391963.306:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15125 comm="syz.5.2650" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1568.054259][   T29] audit: type=1326 audit(1771391963.356:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15125 comm="syz.5.2650" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1568.207415][   T29] audit: type=1326 audit(1771391963.356:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15125 comm="syz.5.2650" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1587.425032][   T29] audit: type=1326 audit(1771391983.336:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.5.2734" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71c5b6b code=0x7ffc0000
[ 1587.516210][   T29] audit: type=1326 audit(1771391983.336:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.5.2734" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71c5b6b code=0x7ffc0000
[ 1587.607692][   T29] audit: type=1326 audit(1771391983.336:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.5.2734" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1587.711157][   T29] audit: type=1326 audit(1771391983.366:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.5.2734" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1587.768977][   T29] audit: type=1326 audit(1771391983.386:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.5.2734" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1587.861489][   T29] audit: type=1326 audit(1771391983.386:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15318 comm="syz.5.2734" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1588.374525][   T29] audit: type=1326 audit(1771391984.286:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15326 comm="syz.0.2737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56f6c code=0x7ffc0000
[ 1588.507150][   T29] audit: type=1326 audit(1771391984.286:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15326 comm="syz.0.2737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56f6c code=0x7ffc0000
[ 1588.647266][   T29] audit: type=1326 audit(1771391984.336:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15326 comm="syz.0.2737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56f6c code=0x7ffc0000
[ 1588.747286][   T29] audit: type=1326 audit(1771391984.336:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15326 comm="syz.0.2737" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56f6c code=0x7ffc0000
[ 1606.025577][T15530] netlink: 292 bytes leftover after parsing attributes in process `syz.6.2821'.
[ 1606.096658][T15530] netlink: 292 bytes leftover after parsing attributes in process `syz.6.2821'.
[ 1608.247721][T15559] netlink: 292 bytes leftover after parsing attributes in process `syz.5.2834'.
[ 1608.295210][T15559] netlink: 292 bytes leftover after parsing attributes in process `syz.5.2834'.
[ 1611.077935][T15594] netlink: 292 bytes leftover after parsing attributes in process `syz.7.2847'.
[ 1611.102939][T15594] netlink: 292 bytes leftover after parsing attributes in process `syz.7.2847'.
[ 1612.727278][T10556] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[ 1612.918274][T10556] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1612.967376][T10556] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1613.002026][T10556] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1613.017867][T10556] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[ 1613.044401][T10556] usb 1-1: SerialNumber: syz
[ 1613.440686][T10556] usb 1-1: 0:2 : does not exist
[ 1613.445901][T10556] usb 1-1: unit 5: unexpected type 0x0b
[ 1613.636342][   T29] kauditd_printk_skb: 33 callbacks suppressed
[ 1613.636426][   T29] audit: type=1326 audit(1771392009.546:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.3.2855" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1613.797352][   T29] audit: type=1326 audit(1771392009.596:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.3.2855" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1613.893002][   T29] audit: type=1326 audit(1771392009.596:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.3.2855" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1614.034488][   T29] audit: type=1326 audit(1771392009.596:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.3.2855" exe="/root/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1614.068625][T10556] usb 1-1: USB disconnect, device number 33
[ 1614.181618][   T29] audit: type=1326 audit(1771392009.596:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.3.2855" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1614.227113][ T8631] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 1614.297866][   T29] audit: type=1326 audit(1771392009.596:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.3.2855" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1614.410792][T15621] netlink: 284 bytes leftover after parsing attributes in process `syz.5.2858'.
[ 1614.448305][ T8631] usb 8-1: Using ep0 maxpacket: 32
[ 1614.456427][   T29] audit: type=1326 audit(1771392009.596:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15612 comm="syz.3.2855" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1614.486606][ T8631] usb 8-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 246, changing to 11
[ 1614.535086][ T8631] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1614.542579][ T8631] usb 8-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.00
[ 1614.576282][ T8631] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1614.603261][T15621] netlink: 284 bytes leftover after parsing attributes in process `syz.5.2858'.
[ 1614.635824][ T8631] usb 8-1: config 0 descriptor??
[ 1614.745738][T14639] udevd[14639]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1615.429915][ T8631] input: HID 054c:03d5 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:054C:03D5.0001/input/input8
[ 1615.663197][ T8631] sony 0003:054C:03D5.0001: input,hidraw0: USB HID v0.06 Joystick [HID 054c:03d5] on usb-dummy_hcd.7-1/input0
[ 1615.873253][ T8631] usb 8-1: USB disconnect, device number 2
[ 1616.907413][   T29] audit: type=1326 audit(1771392012.806:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15646 comm="syz.7.2869" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1617.039691][   T29] audit: type=1326 audit(1771392012.846:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15646 comm="syz.7.2869" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1617.131946][T15637] fido_id[15637]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[ 1617.148118][   T29] audit: type=1326 audit(1771392012.846:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15646 comm="syz.7.2869" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x7ffc0000
[ 1617.242562][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1617.250203][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1617.708109][T15657] netlink: 284 bytes leftover after parsing attributes in process `syz.0.2872'.
[ 1617.801541][T15657] netlink: 284 bytes leftover after parsing attributes in process `syz.0.2872'.
[ 1618.807552][ T8631] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 1619.005239][ T8631] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1619.055958][ T8631] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1619.105625][ T8631] usb 1-1: config 1 has no interface number 0
[ 1619.112868][ T8631] usb 1-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1619.183244][ T8631] usb 1-1: New USB device found, idVendor=0525, idProduct=779d, bcdDevice= 0.40
[ 1619.193739][ T8631] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1619.214156][ T8631] usb 1-1: Product: syz
[ 1619.238906][ T8631] usb 1-1: Manufacturer: syz
[ 1619.243831][ T8631] usb 1-1: SerialNumber: syz
[ 1619.297174][T10277] Bluetooth: hci4: command 0x0406 tx timeout
[ 1619.311070][ T8631] cdc_ncm 1-1:1.1: skipping garbage
[ 1619.377591][ T8631] usb 1-1: selecting invalid altsetting 1
[ 1619.968704][ T8631] cdc_ncm 1-1:1.1: SET_CRC_MODE failed
[ 1619.989114][ T8631] usb 1-1: selecting invalid altsetting 1
[ 1619.995267][ T8631] cdc_ncm 1-1:1.1: bind() failure
[ 1620.090570][ T8631] usb 1-1: USB disconnect, device number 34
[ 1620.722497][   T29] kauditd_printk_skb: 1 callbacks suppressed
[ 1620.722578][   T29] audit: type=1326 audit(1771392016.626:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15681 comm="syz.3.2883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1620.907300][   T29] audit: type=1326 audit(1771392016.626:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15681 comm="syz.3.2883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1620.987471][   T29] audit: type=1326 audit(1771392016.636:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15681 comm="syz.3.2883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1621.077614][   T29] audit: type=1326 audit(1771392016.646:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15681 comm="syz.3.2883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1621.150838][   T29] audit: type=1326 audit(1771392016.656:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15681 comm="syz.3.2883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1621.215757][T15685] netlink: 284 bytes leftover after parsing attributes in process `syz.0.2885'.
[ 1621.237624][   T29] audit: type=1326 audit(1771392016.656:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15681 comm="syz.3.2883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1621.298137][T15685] netlink: 284 bytes leftover after parsing attributes in process `syz.0.2885'.
[ 1621.345446][   T29] audit: type=1326 audit(1771392016.666:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15681 comm="syz.3.2883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1621.436674][   T29] audit: type=1326 audit(1771392016.666:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15681 comm="syz.3.2883" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7fb2f6c code=0x7ffc0000
[ 1623.999031][T15719] netlink: 276 bytes leftover after parsing attributes in process `syz.0.2900'.
[ 1624.089105][T15719] netlink: 276 bytes leftover after parsing attributes in process `syz.0.2900'.
[ 1628.172522][T15757] netlink: 276 bytes leftover after parsing attributes in process `syz.0.2913'.
[ 1628.244405][T15757] netlink: 276 bytes leftover after parsing attributes in process `syz.0.2913'.
[ 1629.257133][T14450] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[ 1629.456187][T14450] usb 8-1: Using ep0 maxpacket: 8
[ 1629.542502][T14450] usb 8-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 8
[ 1629.577182][T14450] usb 8-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 16
[ 1629.627141][T14450] usb 8-1: config 1 interface 0 altsetting 93 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[ 1629.694445][T14450] usb 8-1: config 1 interface 0 has no altsetting 0
[ 1629.751654][T14450] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1629.797203][T14450] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1629.837290][T14450] usb 8-1: SerialNumber: syz
[ 1629.860657][T15768] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1629.908040][T15768] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1630.179427][T15768] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1630.303396][T15768] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1630.780921][ T8631] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 1630.836237][T14450] cdc_ether 8-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.7-1, CDC Ethernet Device, 42:42:42:42:42:42
[ 1631.026472][ T8631] usb 1-1: config index 0 descriptor too short (expected 39, got 27)
[ 1631.051162][ T8631] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1631.118428][ T8631] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1631.148301][ T8631] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1631.179870][ T8631] usb 1-1: Product: syz
[ 1631.194744][T10556] usb 8-1: USB disconnect, device number 3
[ 1631.241623][ T8631] usb 1-1: Manufacturer: syz
[ 1631.246655][ T8631] usb 1-1: SerialNumber: syz
[ 1631.255342][T10556] cdc_ether 8-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.7-1, CDC Ethernet Device
[ 1631.340668][ T8631] usb 1-1: config 0 descriptor??
[ 1631.368087][ T8631] hub 1-1:0.0: bad descriptor, ignoring hub
[ 1631.376707][ T8631] hub 1-1:0.0: probe with driver hub failed with error -5
[ 1632.099915][ T8631] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -22
[ 1632.432193][ T8631] usb 1-1: reset high-speed USB device number 35 using dummy_hcd
[ 1632.679337][ T8631] usb 1-1: device firmware changed
[ 1632.698260][ T8631] usb 1-1: USB disconnect, device number 35
[ 1632.709564][T14639] udevd[14639]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1633.030845][T15790] 
@0�: renamed from bond_slave_1
[ 1633.089317][ T8631] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 1633.226225][T15794] netlink: 276 bytes leftover after parsing attributes in process `syz.3.2927'.
[ 1633.275667][T15794] netlink: 276 bytes leftover after parsing attributes in process `syz.3.2927'.
[ 1633.317690][ T8631] usb 1-1: config index 0 descriptor too short (expected 39, got 27)
[ 1633.343247][ T8631] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1633.413982][ T8631] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1633.437369][ T8631] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1633.445830][ T8631] usb 1-1: Product: syz
[ 1633.482857][ T8631] usb 1-1: Manufacturer: Ћ
[ 1633.506180][ T8631] usb 1-1: config 0 descriptor??
[ 1633.844463][ T8631] usb 1-1: can't set config #0, error -71
[ 1633.895361][ T8631] usb 1-1: USB disconnect, device number 36
[ 1633.958452][T14639] udevd[14639]: setting mode of /dev/bus/usb/001/036 to 020664 failed: No such file or directory
[ 1634.024048][T14639] udevd[14639]: setting owner of /dev/bus/usb/001/036 to uid=0, gid=0 failed: No such file or directory
[ 1634.667618][T14450] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[ 1634.712975][T15809] overlayfs: failed to clone upperpath
[ 1634.877414][T14450] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1634.890897][T14450] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1634.905337][T14450] usb 1-1: Product: syz
[ 1634.910037][T14450] usb 1-1: Manufacturer: syz
[ 1634.915368][T14450] usb 1-1: SerialNumber: syz
[ 1635.185908][T15812] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1635.347229][ T5820] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[ 1635.384220][T15812] kvm: pic: non byte read
[ 1635.445276][T15812] kvm: pic: level sensitive irq not supported
[ 1635.445823][T15812] kvm: pic: non byte read
[ 1635.508265][T15812] kvm: pic: level sensitive irq not supported
[ 1635.542645][T15812] kvm: pic: non byte read
[ 1635.595880][ T5820] usb 8-1: config 0 has an invalid interface number: 29 but max is 0
[ 1635.649170][ T5820] usb 8-1: config 0 has no interface number 0
[ 1635.655681][ T5820] usb 8-1: config 0 interface 29 has no altsetting 0
[ 1635.676792][ T5820] usb 8-1: New USB device found, idVendor=357d, idProduct=7788, bcdDevice=81.0d
[ 1635.764727][ T5820] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1635.863748][ T5820] usb 8-1: config 0 descriptor??
[ 1635.931437][ T5820] usb-storage 8-1:0.29: USB Mass Storage device detected
[ 1636.004481][ T5820] usb-storage 8-1:0.29: Quirks match for vid 357d pid 7788: 4800000
[ 1636.301820][T14450] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[ 1636.327347][T14450] cdc_ncm 1-1:1.0: dwNtbInMaxSize=7 is too small. Using 2048
[ 1636.365556][T14450] cdc_ncm 1-1:1.0: setting rx_max = 2048
[ 1636.605717][T14450] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[ 1636.712389][T14450] usb 1-1: USB disconnect, device number 37
[ 1636.752426][T14450] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP)
[ 1636.797857][ T8631] usb 8-1: USB disconnect, device number 4
[ 1637.115285][T15833] netlink: 276 bytes leftover after parsing attributes in process `syz.6.2941'.
[ 1637.186174][T15833] netlink: 276 bytes leftover after parsing attributes in process `syz.6.2941'.
[ 1637.992320][T15841] ------------[ cut here ]------------
[ 1637.998704][T15841] WARNING: fs/exec.c:119 at path_noexec+0x2ac/0x310, CPU#0: syz.7.2944/15841
[ 1638.008150][T15841] Modules linked in:
[ 1638.012322][T15841] CPU: 0 UID: 0 PID: 15841 Comm: syz.7.2944 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1638.023862][T15841] Tainted: [L]=SOFTLOCKUP
[ 1638.030948][T15841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1638.042025][T15841] RIP: 0010:path_noexec+0x2ac/0x310
[ 1638.047694][T15841] Code: 49 89 ff 8b 7d d4 e8 d3 7e e1 ff 4c 89 ff e9 c8 fe ff ff 44 89 e7 e8 c3 7e e1 ff 4d 85 ed 0f 85 a3 fe ff ff e8 35 45 36 ff 90 <0f> 0b 90 48 8b 7d c0 4c 8b 37 e8 b5 73 e1 ff 48 8b 00 48 89 45 c8
[ 1638.067728][T15841] RSP: 0018:ffff8880a94abb80 EFLAGS: 00010287
[ 1638.079138][T15841] RAX: ffffffff82c9748b RBX: ffff888052444d78 RCX: 0000000000080000
[ 1638.089107][T15841] RDX: ffffc9000a809000 RSI: 0000000000000059 RDI: 000000000000005a
[ 1638.099764][T15841] RBP: ffff8880a94abbc0 R08: ffffea000000000f R09: 0000000000000003
[ 1638.108582][T15841] R10: 0000000000000003 R11: 0000000000000002 R12: 0000000000000000
[ 1638.116769][T15841] R13: 0000000000000000 R14: ffff8881007e2da0 R15: 0000000000000000
[ 1638.125180][T15841] FS:  0000000000000000(0000) GS:ffff8881aa3cf000(0063) knlGS:00000000f547db40
[ 1638.134508][T15841] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1638.141631][T15841] CR2: 000000000c5355a9 CR3: 00000000a5bae000 CR4: 00000000003526f0
[ 1638.150610][T15841] Call Trace:
[ 1638.154105][T15841]  <TASK>
[ 1638.157357][T15841]  do_mmap+0x1572/0x1d70
[ 1638.162079][T15841]  vm_mmap_pgoff+0x40c/0x760
[ 1638.167222][T15841]  ksys_mmap_pgoff+0x51c/0x7d0
[ 1638.177765][T15841]  __ia32_sys_mmap_pgoff+0x11a/0x1d0
[ 1638.183416][T15841]  ia32_sys_call+0x3743/0x4360
[ 1638.190679][T15841]  __do_fast_syscall_32+0x17f/0x3f0
[ 1638.196288][T15841]  do_fast_syscall_32+0x37/0x80
[ 1638.201608][T15841]  do_SYSENTER_32+0x1f/0x30
[ 1638.206426][T15841]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1638.213242][T15841] RIP: 0023:0xf708ef6c
[ 1638.217771][T15841] Code: 90 85 d2 74 0a 89 ce 81 e6 ff 0f 00 00 89 32 85 c0 74 05 c1 e9 0c 89 08 31 c0 5e 5d c3 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 90 90 90 90 90 90 b8 ad
[ 1638.237957][T15841] RSP: 002b:00000000f547d50c EFLAGS: 00000206 ORIG_RAX: 00000000000000c0
[ 1638.246765][T15841] RAX: ffffffffffffffda RBX: 0000000080013000 RCX: 0000000000004000
[ 1638.255117][T15841] RDX: 0000000000000005 RSI: 0000000000000012 RDI: 0000000000000005
[ 1638.263451][T15841] RBP: 0000000042334000 R08: 0000000000000000 R09: 0000000000000000
[ 1638.271781][T15841] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1638.286578][T15841] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1638.296408][T15841]  </TASK>
[ 1638.299806][T15841] ---[ end trace 0000000000000000 ]---
[ 1640.558984][T15871] netlink: 276 bytes leftover after parsing attributes in process `syz.5.2955'.
[ 1640.618986][T15871] netlink: 276 bytes leftover after parsing attributes in process `syz.5.2955'.
[ 1642.413053][ T7386] Bluetooth: hci3: Frame reassembly failed (-84)
[ 1643.093669][T15908] netlink: 276 bytes leftover after parsing attributes in process `syz.6.2971'.
[ 1643.153709][T15908] netlink: 276 bytes leftover after parsing attributes in process `syz.6.2971'.
[ 1644.227060][T14450] usb 8-1: new full-speed USB device number 5 using dummy_hcd
[ 1644.423280][ T5776] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 1644.430071][T10277] Bluetooth: hci3: command 0x1003 tx timeout
[ 1644.457290][T14450] usb 8-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1644.478918][T14450] usb 8-1: config 0 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1644.507805][T14450] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1644.514740][T14450] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2c24, bcdDevice= 0.00
[ 1644.539622][T14450] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1644.579542][T14450] usb 8-1: config 0 descriptor??
[ 1645.001376][ T8631] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1645.099324][T14450] pyra 0003:1E7D:2C24.0002: ignoring exceeding usage max
[ 1645.218711][ T8631] usb 1-1: Using ep0 maxpacket: 16
[ 1645.220553][T14450] pyra 0003:1E7D:2C24.0002: hidraw0: USB HID v0.07 Device [HID 1e7d:2c24] on usb-dummy_hcd.7-1/input0
[ 1645.326999][ T8631] usb 1-1: New USB device found, idVendor=0403, idProduct=b8d8, bcdDevice=30.bb
[ 1645.352863][ T8631] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1645.377206][ T8631] usb 1-1: Product: syz
[ 1645.381745][ T8631] usb 1-1: Manufacturer: syz
[ 1645.407351][ T8631] usb 1-1: SerialNumber: syz
[ 1645.498104][T14450] pyra 0003:1E7D:2C24.0002: couldn't init struct pyra_device
[ 1645.522965][T14450] pyra 0003:1E7D:2C24.0002: couldn't install mouse
[ 1645.616210][T14450] pyra 0003:1E7D:2C24.0002: probe with driver pyra failed with error -71
[ 1645.680729][T14450] usb 8-1: USB disconnect, device number 5
[ 1645.977409][ T8631] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 1646.048120][T15930] fido_id[15930]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[ 1646.789475][ T8631] snd-usb-audio 1-1:222.0: probe with driver snd-usb-audio failed with error -2
[ 1646.838087][ T8631] usb 1-1: USB disconnect, device number 38
[ 1646.923508][T15939] netlink: 292 bytes leftover after parsing attributes in process `syz.3.2984'.
[ 1647.005366][T14639] udevd[14639]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:222.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1647.020178][T15939] netlink: 292 bytes leftover after parsing attributes in process `syz.3.2984'.
[ 1647.967398][T14450] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[ 1647.987259][ T5820] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1648.055959][T15952] overlayfs: upper fs does not support file handles, falling back to index=off.
[ 1648.065978][T15952] overlayfs: NFS export requires "index=on", falling back to nfs_export=off.
[ 1648.145874][T14450] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1648.167166][ T5820] usb 1-1: Using ep0 maxpacket: 16
[ 1648.176617][T14450] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1648.201209][ T5820] usb 1-1: config 0 interface 0 altsetting 131 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1648.262192][T14450] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 1648.274587][ T5820] usb 1-1: config 0 interface 0 altsetting 131 has 1 endpoint descriptor, different from the interface descriptor's value: 13
[ 1648.295987][T14450] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1648.326149][ T5820] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1648.334170][T14450] usb 4-1: Manufacturer: syz
[ 1648.353114][ T5820] usb 1-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00
[ 1648.377612][T14450] usb 4-1: config 0 descriptor??
[ 1648.404231][ T5820] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1648.453893][ T5820] usb 1-1: config 0 descriptor??
[ 1649.032811][ T5820] hid-picolcd 0003:04D8:C002.0003: No report with id 0x11 found
[ 1649.110209][ T5820] usb 1-1: USB disconnect, device number 39
[ 1649.173260][T14450] uclogic 0003:256C:006D.0004: failed retrieving Huion firmware version: -71
[ 1649.241694][T14450] uclogic 0003:256C:006D.0004: failed probing parameters: -71
[ 1649.267968][T14450] uclogic 0003:256C:006D.0004: probe with driver uclogic failed with error -71
[ 1649.356146][T14450] usb 4-1: USB disconnect, device number 31
[ 1650.448441][T15969] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1650.865533][T15973] loop0: detected capacity change from 0 to 1764
[ 1653.315485][T16004] fuse: Bad value for 'user_id'
[ 1653.359407][T16004] fuse: Bad value for 'user_id'
[ 1654.927806][T16024] netlink: 292 bytes leftover after parsing attributes in process `syz.0.3020'.
[ 1654.986273][T16024] netlink: 292 bytes leftover after parsing attributes in process `syz.0.3020'.
[ 1655.857266][ T8631] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1656.090775][ T8631] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1656.163457][ T8631] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1656.211404][ T8631] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1656.240422][ T8631] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1656.279399][ T8631] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1656.371027][ T8631] usb 8-1: config 0 descriptor??
[ 1656.658665][T16036] fuse: Bad value for 'user_id'
[ 1656.663765][T16036] fuse: Bad value for 'user_id'
[ 1657.007716][ T8631] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[ 1657.862232][T16047] overlayfs: failed to clone upperpath
[ 1658.982365][T10556] usb 8-1: USB disconnect, device number 6
[ 1659.347398][ T8631] usb 1-1: new full-speed USB device number 40 using dummy_hcd
[ 1659.602250][ T8631] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1659.642774][ T8631] usb 1-1: not running at top speed; connect to a high speed hub
[ 1659.701550][ T8631] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1659.736666][ T8631] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1659.805347][ T8631] usb 1-1: string descriptor 0 read error: -22
[ 1659.818448][ T8631] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1659.856521][ T8631] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1660.013615][T16075] fuse: Bad value for 'user_id'
[ 1660.026304][T16075] fuse: Bad value for 'user_id'
[ 1660.039644][ T8631] usb 1-1: 0:2 : does not exist
[ 1660.258241][T10277] Bluetooth: hci0: command 0x0406 tx timeout
[ 1660.471040][ T8631] usb 1-1: 5:0: cannot get min/max values for control 2 (id 5)
[ 1660.534686][ T8631] usb 1-1: 5:0: cannot get min/max values for control 3 (id 5)
[ 1660.627740][ T8631] usb 1-1: 5:0: failed to get current value for ch 1 (-22)
[ 1660.817901][ T8631] usb 1-1: 5:0: cannot get min/max values for control 3 (id 5)
[ 1661.097442][ T8631] usb 1-1: 5:0: cannot get min/max values for control 2 (id 5)
[ 1661.435959][ T8631] usb 1-1: USB disconnect, device number 40
[ 1662.997252][T16106] fuse: Bad value for 'fd'
[ 1666.551435][T16153] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3075'.
[ 1666.561749][ T8631] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[ 1666.763877][ T8631] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1666.807191][ T8631] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1666.833675][ T8631] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1666.887837][ T8631] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1666.953608][ T8631] usb 4-1: SerialNumber: syz
[ 1666.963655][T16157] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1667.313108][ T8631] usb 4-1: 0:2 : does not exist
[ 1667.817608][ T8631] usb 4-1: USB disconnect, device number 32
[ 1668.191216][T14639] udevd[14639]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1668.428055][T16171] input: syz1 as /devices/virtual/input/input9
[ 1668.434643][T16171] input: failed to attach handler leds to device input9, error: -6
[ 1669.633884][T16185] netlink: 56 bytes leftover after parsing attributes in process `syz.5.3090'.
[ 1669.980085][T16189] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1670.307173][T14450] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[ 1670.494163][T14450] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1670.557648][T14450] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[ 1670.627583][T14450] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1670.657087][T14450] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1670.686978][T14450] usb 4-1: SerialNumber: syz
[ 1670.771485][T14450] cdc_ether 4-1:1.0: skipping garbage
[ 1670.792321][T14450] usb 4-1: bad CDC descriptors
[ 1672.218102][T16217] netlink: 56 bytes leftover after parsing attributes in process `syz.5.3105'.
[ 1672.909967][T16228] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1673.225088][ T8631] usb 4-1: USB disconnect, device number 33
[ 1673.730393][T16236] netlink: 308 bytes leftover after parsing attributes in process `syz.5.3112'.
[ 1673.805847][T16236] netlink: 308 bytes leftover after parsing attributes in process `syz.5.3112'.
[ 1674.602257][T16247] netlink: 56 bytes leftover after parsing attributes in process `syz.5.3117'.
[ 1675.876776][ T8631] usb 4-1: new full-speed USB device number 34 using dummy_hcd
[ 1675.887322][T16262] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1676.077632][ T8631] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1676.120942][ T8631] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1676.180822][ T8631] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[ 1676.208952][T16271] netlink: 308 bytes leftover after parsing attributes in process `syz.6.3127'.
[ 1676.226598][ T8631] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 1676.312629][ T8631] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1676.324151][T16271] netlink: 308 bytes leftover after parsing attributes in process `syz.6.3127'.
[ 1676.361422][ T8631] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1676.404418][ T8631] usb 4-1: Product: syz
[ 1676.410597][ T8631] usb 4-1: Manufacturer: syz
[ 1676.427691][ T8631] usb 4-1: SerialNumber: syz
[ 1676.458901][T16260] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1676.539455][ T8631] cdc_mbim 4-1:1.0: skipping garbage
[ 1676.747766][T16260] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1676.755581][T16260] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1677.456474][T16260] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1677.497245][T16260] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1677.526503][ T8631] cdc_mbim 4-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[ 1677.538502][ T8631] cdc_mbim 4-1:1.0: setting rx_max = 2048
[ 1677.738689][ T8631] cdc_mbim 4-1:1.0: setting tx_max = 184
[ 1677.819997][ T8631] cdc_mbim 4-1:1.0: cdc-wdm0: USB WDM device
[ 1677.862245][ T8631] wwan wwan0: port wwan0mbim0 attached
[ 1677.945477][ T8631] cdc_mbim 4-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.3-1, CDC MBIM, 1a:34:80:86:36:a8
[ 1678.076202][ T8631] usb 4-1: USB disconnect, device number 34
[ 1678.143285][ T8631] cdc_mbim 4-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.3-1, CDC MBIM
[ 1678.401933][ T8631] wwan wwan0: port wwan0mbim0 disconnected
[ 1678.715018][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1678.729349][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1679.219589][T16297] bridge0: port 3(vlan0) entered blocking state
[ 1679.262710][T16297] bridge0: port 3(vlan0) entered disabled state
[ 1679.324934][T16297] vlan0: entered allmulticast mode
[ 1679.376501][T16297] veth0_vlan: entered allmulticast mode
[ 1679.452099][T16297] vlan0: entered promiscuous mode
[ 1679.519092][T16305] fuse: Invalid rootmode
[ 1679.555859][T16297] bridge0: port 3(vlan0) entered blocking state
[ 1679.563164][T16297] bridge0: port 3(vlan0) entered forwarding state
[ 1681.689559][ T8631] usb 1-1: new full-speed USB device number 41 using dummy_hcd
[ 1681.732448][T16331] syzkaller1: entered promiscuous mode
[ 1681.747621][T16331] syzkaller1: entered allmulticast mode
[ 1681.839638][T16334] fuse: Bad value for 'rootmode'
[ 1681.915866][ T8631] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1681.949024][ T8631] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1681.973827][ T8631] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[ 1682.028337][ T8631] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 1682.078102][ T8631] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1682.116333][ T8631] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1682.167245][ T8631] usb 1-1: Product: syz
[ 1682.171891][ T8631] usb 1-1: Manufacturer: syz
[ 1682.176707][ T8631] usb 1-1: SerialNumber: syz
[ 1682.224844][T16325] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1682.282072][ T8631] cdc_mbim 1-1:1.0: skipping garbage
[ 1682.398782][T16336] fuse: Invalid rootmode
[ 1682.498860][T16325] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1682.552584][T16325] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1682.816168][T16341] netlink: 272 bytes leftover after parsing attributes in process `syz.7.3155'.
[ 1682.927656][T16341] netlink: 272 bytes leftover after parsing attributes in process `syz.7.3155'.
[ 1683.007526][ T8631] cdc_mbim 1-1:1.0: failed GET_NTB_PARAMETERS
[ 1683.030687][ T8631] cdc_mbim 1-1:1.0: bind() failure
[ 1683.118060][ T8631] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[ 1683.162178][ T8631] cdc_ncm 1-1:1.1: bind() failure
[ 1683.807526][T14450] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[ 1683.997387][T14450] usb 4-1: Using ep0 maxpacket: 16
[ 1684.033052][T14450] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1684.051455][T14450] usb 4-1: config 13 has an invalid interface number: 50 but max is 0
[ 1684.088328][T14450] usb 4-1: config 13 has an invalid descriptor of length 0, skipping remainder of the config
[ 1684.110714][T14450] usb 4-1: config 13 has no interface number 0
[ 1684.145412][T14450] usb 4-1: config 13 interface 50 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1684.206027][T14450] usb 4-1: config 13 interface 50 has no altsetting 0
[ 1684.244064][T14450] usb 4-1: New USB device found, idVendor=1aca, idProduct=b28e, bcdDevice=92.32
[ 1684.281086][T14450] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1684.310671][T14450] usb 4-1: Product: syz
[ 1684.326031][T14450] usb 4-1: Manufacturer: syz
[ 1684.352335][T14450] usb 4-1: SerialNumber: syz
[ 1684.665879][ T5820] usb 1-1: USB disconnect, device number 41
[ 1684.750175][T14450] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1684.815955][T14450] usb 4-1: MIDIStreaming interface descriptor not found
[ 1685.284925][T16368] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1685.559473][T14450] usb 4-1: USB disconnect, device number 35
[ 1685.751134][T16373] fuse: Invalid rootmode
[ 1685.801391][T16372] overlayfs: failed to clone upperpath
[ 1686.034297][T15624] udevd[15624]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:13.50/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1686.131884][T16377] netlink: 272 bytes leftover after parsing attributes in process `syz.6.3169'.
[ 1686.189871][T16377] netlink: 272 bytes leftover after parsing attributes in process `syz.6.3169'.
[ 1688.752026][T16416] fuse: Bad value for 'rootmode'
[ 1689.033768][T16424] netlink: 272 bytes leftover after parsing attributes in process `syz.7.3185'.
[ 1689.088654][T16424] netlink: 272 bytes leftover after parsing attributes in process `syz.7.3185'.
[ 1689.747258][ T8631] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[ 1689.947284][ T8631] usb 4-1: Using ep0 maxpacket: 32
[ 1689.984854][ T8631] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[ 1690.032767][ T8631] usb 4-1: config 0 has no interface number 0
[ 1690.083426][ T8631] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1690.163592][ T8631] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1690.210752][ T8631] usb 4-1: Product: syz
[ 1690.224303][ T8631] usb 4-1: Manufacturer: syz
[ 1690.240114][ T8631] usb 4-1: SerialNumber: syz
[ 1690.281883][ T8631] usb 4-1: config 0 descriptor??
[ 1690.568711][T16446] netlink: 'syz.6.3193': attribute type 11 has an invalid length.
[ 1690.621463][T16446] netlink: 'syz.6.3193': attribute type 2 has an invalid length.
[ 1691.181682][ T8631] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): EEPROM read operation timeout
[ 1691.395613][ T8631] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[ 1691.435478][ T8631] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -71
[ 1691.512825][ T8631] usb 4-1: USB disconnect, device number 36
[ 1692.192315][T16463] netlink: 300 bytes leftover after parsing attributes in process `syz.0.3201'.
[ 1692.270059][T16463] netlink: 300 bytes leftover after parsing attributes in process `syz.0.3201'.
[ 1694.553615][T16497] netlink: 300 bytes leftover after parsing attributes in process `syz.7.3215'.
[ 1694.633757][T16497] netlink: 300 bytes leftover after parsing attributes in process `syz.7.3215'.
[ 1697.232000][T16534] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3230'.
[ 1697.333548][T16536] netlink: 300 bytes leftover after parsing attributes in process `syz.6.3231'.
[ 1697.449490][T16536] netlink: 300 bytes leftover after parsing attributes in process `syz.6.3231'.
[ 1698.058215][ T8631] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[ 1698.267154][ T8631] usb 4-1: device descriptor read/64, error -71
[ 1698.517419][ T8631] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[ 1698.671868][ T8631] usb 4-1: device descriptor read/64, error -71
[ 1698.804453][ T8631] usb usb4-port1: attempt power cycle
[ 1699.182424][ T8631] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1699.231483][ T8631] usb 4-1: device descriptor read/8, error -71
[ 1699.504984][T16562] mmap: syz.7.3242 (16562): VmData 37634048 exceed data ulimit 68. Update limits or use boot option ignore_rlimit_data.
[ 1699.534339][ T8631] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 1699.623114][ T8631] usb 4-1: device descriptor read/8, error -71
[ 1699.741729][   T29] audit: type=1326 audit(1771392095.656:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16572 comm="syz.6.3245" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef6c code=0x0
[ 1699.763588][ T8631] usb usb4-port1: unable to enumerate USB device
[ 1700.184622][T16578] netlink: 264 bytes leftover after parsing attributes in process `syz.5.3246'.
[ 1700.221851][T16578] netlink: 264 bytes leftover after parsing attributes in process `syz.5.3246'.
[ 1703.618130][T14450] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1703.797184][T14450] usb 4-1: device descriptor read/64, error -71
[ 1703.907467][ T8631] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[ 1704.076529][T14450] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1704.147359][ T8631] usb 8-1: Using ep0 maxpacket: 16
[ 1704.174426][ T8631] usb 8-1: config 0 interface 0 altsetting 253 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1704.214791][ T8631] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1704.241909][T14450] usb 4-1: device descriptor read/64, error -71
[ 1704.247982][ T8631] usb 8-1: New USB device found, idVendor=04d9, idProduct=a072, bcdDevice= 0.00
[ 1704.318256][ T8631] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1704.368030][T14450] usb usb4-port1: attempt power cycle
[ 1704.409015][ T8631] usb 8-1: config 0 descriptor??
[ 1704.764133][T14450] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[ 1704.797805][ T8631] usbhid 8-1:0.0: can't add hid device: -71
[ 1704.809649][ T8631] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[ 1704.839212][T14450] usb 4-1: device descriptor read/8, error -71
[ 1704.875121][ T8631] usb 8-1: USB disconnect, device number 7
[ 1705.091899][T14450] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1705.129983][T14450] usb 4-1: device descriptor read/8, error -71
[ 1705.319540][T14450] usb usb4-port1: unable to enumerate USB device
[ 1707.037846][T16638] usb usb7: usbfs: process 16638 (syz.3.3271) did not claim interface 0 before use
[ 1708.439945][   T29] audit: type=1800 audit(1771392104.326:368): pid=16651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3277" name="bus" dev="overlay" ino=681 res=0 errno=0
[ 1709.747220][T14450] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 1709.950299][T14450] usb 1-1: device descriptor read/64, error -71
[ 1710.232016][T14450] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[ 1710.380580][T14450] usb 1-1: device descriptor read/64, error -71
[ 1710.527011][T14450] usb usb1-port1: attempt power cycle
[ 1710.907128][T14450] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[ 1710.969525][T14450] usb 1-1: device descriptor read/8, error -71
[ 1711.257537][T14450] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[ 1711.321790][T14450] usb 1-1: device descriptor read/8, error -71
[ 1711.412162][T10556] usb 8-1: new full-speed USB device number 8 using dummy_hcd
[ 1711.459054][T14450] usb usb1-port1: unable to enumerate USB device
[ 1711.610589][T10556] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 129, using maximum allowed: 30
[ 1711.643434][T10556] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[ 1711.663002][T10556] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 129
[ 1711.689015][T10556] usb 8-1: New USB device found, idVendor=28bd, idProduct=0909, bcdDevice= 0.00
[ 1711.727449][T10556] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1711.775803][T10556] usb 8-1: config 0 descriptor??
[ 1711.795183][T16679] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[ 1712.409515][T10556] input: HID 28bd:0909 as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:28BD:0909.0006/input/input10
[ 1712.656632][T10556] uclogic 0003:28BD:0909.0006: input,hidraw0: USB HID v0.00 Mouse [HID 28bd:0909] on usb-dummy_hcd.7-1/input0
[ 1712.809970][T10556] usb 8-1: USB disconnect, device number 8
[ 1713.667406][T16692] fido_id[16692]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[ 1713.917103][T14450] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[ 1714.191812][T14450] usb 1-1: Using ep0 maxpacket: 16
[ 1714.239766][T14450] usb 1-1: config 0 interface 0 altsetting 253 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1714.292326][T14450] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1714.321951][T14450] usb 1-1: New USB device found, idVendor=04d9, idProduct=a072, bcdDevice= 0.00
[ 1714.350650][T14450] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1714.424583][T14450] usb 1-1: config 0 descriptor??
[ 1714.756506][T14450] usbhid 1-1:0.0: can't add hid device: -71
[ 1714.773638][T14450] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1714.839910][T14450] usb 1-1: USB disconnect, device number 46
[ 1717.873730][T16734] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1717.957727][T14450] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[ 1718.153259][T14450] usb 8-1: Using ep0 maxpacket: 32
[ 1718.167880][T14450] usb 8-1: config 0 has an invalid interface number: 184 but max is 0
[ 1718.190635][T14450] usb 8-1: config 0 has no interface number 0
[ 1718.257101][T14450] usb 8-1: config 0 interface 184 has no altsetting 0
[ 1718.300677][T14450] usb 8-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1718.311218][T14450] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1718.339990][T14450] usb 8-1: Product: syz
[ 1718.344518][T14450] usb 8-1: Manufacturer: syz
[ 1718.400408][T14450] usb 8-1: SerialNumber: syz
[ 1718.433043][T14450] usb 8-1: config 0 descriptor??
[ 1719.037390][T10556] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[ 1719.109571][T14450] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[ 1719.132758][T14450] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1719.250307][T10556] usb 1-1: Using ep0 maxpacket: 32
[ 1719.285010][T10556] usb 1-1: too many endpoints for config 0 interface 0 altsetting 3: 62, using maximum allowed: 30
[ 1719.324668][T10556] usb 1-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 62
[ 1719.362636][T14450] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1719.421080][T14450] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[ 1719.434961][T10556] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1719.453300][T10556] usb 1-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[ 1719.467565][T14450] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[ 1719.503756][T10556] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1719.558243][T14450] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1719.578772][T14450] smsc75xx 8-1:0.184: probe with driver smsc75xx failed with error -71
[ 1719.611919][T10556] usb 1-1: config 0 descriptor??
[ 1719.652317][T14450] usb 8-1: USB disconnect, device number 9
[ 1719.905919][T10556] usbhid 1-1:0.0: can't add hid device: -71
[ 1719.917962][T10556] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1719.982522][T10556] usb 1-1: USB disconnect, device number 47
[ 1722.751377][T16772] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1723.788589][T10556] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1723.991677][T10556] usb 8-1: Using ep0 maxpacket: 32
[ 1724.010890][T10556] usb 8-1: too many endpoints for config 0 interface 0 altsetting 3: 62, using maximum allowed: 30
[ 1724.067846][T10556] usb 8-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 62
[ 1724.121374][T10556] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1724.138356][T10556] usb 8-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[ 1724.161115][T10556] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1724.249462][T10556] usb 8-1: config 0 descriptor??
[ 1724.551188][T10556] usbhid 8-1:0.0: can't add hid device: -71
[ 1724.595140][T10556] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[ 1724.726152][T10556] usb 8-1: USB disconnect, device number 10
[ 1725.193507][T16793] fuse: Bad value for 'fd'
[ 1726.573196][T16810] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1728.072612][T16827] fuse: Bad value for 'fd'
[ 1729.907510][T16847] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1731.193068][T16862] fuse: Bad value for 'fd'
[ 1732.715633][T10556] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[ 1732.903973][T10556] usb 8-1: Using ep0 maxpacket: 32
[ 1732.919229][T16881] netlink: 276 bytes leftover after parsing attributes in process `syz.0.3371'.
[ 1732.970480][T10556] usb 8-1: too many endpoints for config 0 interface 0 altsetting 3: 62, using maximum allowed: 30
[ 1733.027266][T10556] usb 8-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 62
[ 1733.077164][T10556] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1733.084119][T10556] usb 8-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[ 1733.127068][T10556] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1733.155983][T10556] usb 8-1: config 0 descriptor??
[ 1733.534313][T10556] usbhid 8-1:0.0: can't add hid device: -71
[ 1733.552793][T10556] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[ 1733.689869][T10556] usb 8-1: USB disconnect, device number 11
[ 1735.954612][T16915] netlink: 276 bytes leftover after parsing attributes in process `syz.5.3384'.
[ 1737.030485][T16929] loop2: detected capacity change from 0 to 7
[ 1737.042929][T16929] Dev loop2: unable to read RDB block 7
[ 1737.115251][T16929]  loop2: AHDI p1 p2 p3
[ 1737.124471][T16929] loop2: partition table partially beyond EOD, truncated
[ 1737.162841][T16929] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1737.171284][T16929] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1740.047783][T16946] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3399'.
[ 1740.121641][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1740.132106][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1740.251586][T16946] bridge2: the hash_elasticity option has been deprecated and is always 16
[ 1740.403772][T10277] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1740.421142][T10277] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1740.430771][T10277] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1740.454419][T10277] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1740.467000][T10277] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1740.834220][T16954] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3401'.
[ 1742.149817][T16950] chnl_net:caif_netlink_parms(): no params data found
[ 1742.577340][ T5776] Bluetooth: hci0: command tx timeout
[ 1743.814535][T16950] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1743.893284][T16950] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1743.927850][T16950] bridge_slave_0: entered allmulticast mode
[ 1743.990530][T16950] bridge_slave_0: entered promiscuous mode
[ 1744.065109][T16950] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1744.097584][T16950] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1744.125842][T16950] bridge_slave_1: entered allmulticast mode
[ 1744.161795][T16950] bridge_slave_1: entered promiscuous mode
[ 1744.554740][T16950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1744.657761][ T5776] Bluetooth: hci0: command tx timeout
[ 1744.732154][T16950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1745.090819][T16950] team0: Port device team_slave_0 added
[ 1745.123837][T16950] team0: Port device team_slave_1 added
[ 1745.378031][T16950] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1745.414854][T16950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1745.505969][T16950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1745.554843][T16950] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1745.609534][T16950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1745.736305][T16950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1746.367687][T16950] hsr_slave_0: entered promiscuous mode
[ 1746.394588][T16950] hsr_slave_1: entered promiscuous mode
[ 1746.421971][T16950] debugfs: 'hsr0' already exists in 'hsr'
[ 1746.465115][T16950] Cannot create hsr debugfs directory
[ 1746.738092][ T5776] Bluetooth: hci0: command tx timeout
[ 1747.318894][T17025] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1747.891463][T16950] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1748.233410][T16950] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1748.551410][T16950] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1748.817648][ T5776] Bluetooth: hci0: command tx timeout
[ 1748.828223][T16950] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1749.433486][T16950] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1749.514091][T16950] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1749.540323][T16950] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1749.631451][T16950] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1750.880936][T16950] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1751.008116][T16950] 8021q: adding VLAN 0 to HW filter on device team0
[ 1751.055018][ T7451] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1751.062877][ T7451] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1751.191754][ T7428] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1751.199560][ T7428] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1754.137683][T16950] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1754.507411][T10556] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[ 1754.694168][T10556] usb 1-1: New USB device found, idVendor=056a, idProduct=0101, bcdDevice= 0.00
[ 1754.740599][T16950] veth0_vlan: entered promiscuous mode
[ 1754.746654][T10556] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1754.773490][T10556] usb 1-1: config 0 descriptor??
[ 1754.952837][T16950] veth1_vlan: entered promiscuous mode
[ 1755.129876][   T29] audit: type=1326 audit(1771392151.046:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17102 comm="syz.0.3455" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f56f6c code=0x0
[ 1755.724686][T16950] veth0_macvtap: entered promiscuous mode
[ 1755.883387][T16950] veth1_macvtap: entered promiscuous mode
[ 1756.283490][T16950] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1756.395901][T16950] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1756.495780][   T77] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1756.553661][   T77] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1756.595109][   T77] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1756.632063][   T77] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1756.804426][T17121] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1756.918538][T17121] block device autoloading is deprecated and will be removed.
[ 1757.652698][T10556] usbhid 1-1:0.0: can't add hid device: -71
[ 1757.715331][T10556] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1757.798752][T10556] usb 1-1: USB disconnect, device number 48
[ 1759.582872][T17152] smc: net device hsr0 applied user defined pnetid SYZ2
[ 1760.931454][T17166] overlayfs: failed to clone upperpath
[ 1760.948051][T17161] loop0: detected capacity change from 0 to 256
[ 1761.044338][T17161] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1761.139621][T17161] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1761.787088][    T9] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[ 1762.022981][    T9] usb 8-1: New USB device found, idVendor=056a, idProduct=0101, bcdDevice= 0.00
[ 1762.059005][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1762.134322][    T9] usb 8-1: config 0 descriptor??
[ 1762.505206][   T29] audit: type=1326 audit(1771392158.396:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17169 comm="syz.7.3477" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x0
[ 1763.145692][T17191] smc: net device hsr0 applied user defined pnetid SYZ2
[ 1764.239095][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1764.267067][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1764.731652][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1764.827126][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1765.062386][    T9] usbhid 8-1:0.0: can't add hid device: -71
[ 1765.085847][    T9] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[ 1765.130369][    T9] usb 8-1: USB disconnect, device number 12
[ 1767.957303][T10556] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[ 1768.198579][T10556] usb 1-1: New USB device found, idVendor=056a, idProduct=0101, bcdDevice= 0.00
[ 1768.261175][T10556] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1768.283542][T17239] overlayfs: failed to clone upperpath
[ 1768.292361][T10556] usb 1-1: config 0 descriptor??
[ 1768.603437][   T29] audit: type=1326 audit(1771392164.516:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17230 comm="syz.0.3499" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f56f6c code=0x0
[ 1769.076755][T17245] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1771.106132][T10556] usbhid 1-1:0.0: can't add hid device: -71
[ 1771.132308][T10556] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1771.221067][T10556] usb 1-1: USB disconnect, device number 49
[ 1776.898985][T17326] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1780.018117][T17368] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1780.867574][    T9] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1780.979506][T17378] erspan0: entered promiscuous mode
[ 1781.037542][T17378] vlan2: entered promiscuous mode
[ 1781.135715][    T9] usb 4-1: New USB device found, idVendor=056a, idProduct=0101, bcdDevice= 0.00
[ 1781.167159][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1781.234116][    T9] usb 4-1: config 0 descriptor??
[ 1781.547348][   T29] audit: type=1326 audit(1771392177.456:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17371 comm="syz.3.3561" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701ef6c code=0x0
[ 1783.970131][    T9] usbhid 4-1:0.0: can't add hid device: -71
[ 1784.017171][    T9] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1784.144323][    T9] usb 4-1: USB disconnect, device number 45
[ 1784.657757][T17411] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1784.949251][T10556] kernel read not supported for file /vcs (pid: 10556 comm: kworker/1:3)
[ 1786.407160][T14450] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[ 1786.645461][T14450] usb 1-1: New USB device found, idVendor=056a, idProduct=0101, bcdDevice= 0.00
[ 1786.691947][T14450] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1786.722115][T14450] usb 1-1: config 0 descriptor??
[ 1787.017823][   T29] audit: type=1326 audit(1771392182.926:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17433 comm="syz.0.3586" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f56f6c code=0x0
[ 1787.049987][T17444] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1789.546479][T14450] usbhid 1-1:0.0: can't add hid device: -71
[ 1789.587509][T14450] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1789.664318][T14450] usb 1-1: USB disconnect, device number 50
[ 1790.059323][T17472] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1790.215981][T17467] kvm: pic: non byte read
[ 1790.303325][T17467] kvm: pic: level sensitive irq not supported
[ 1790.303728][T17467] kvm: pic: non byte read
[ 1790.346269][T17467] kvm: pic: level sensitive irq not supported
[ 1790.349163][T17467] kvm: pic: non byte read
[ 1790.531840][T17482] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1792.347389][T14450] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[ 1792.565315][T14450] usb 8-1: New USB device found, idVendor=056a, idProduct=0101, bcdDevice= 0.00
[ 1792.602966][T14450] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1792.671248][T14450] usb 8-1: config 0 descriptor??
[ 1792.978571][   T29] audit: type=1326 audit(1771392188.886:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17497 comm="syz.7.3614" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x0
[ 1795.180838][T17525] overlayfs: failed to clone upperpath
[ 1795.498130][T14450] usbhid 8-1:0.0: can't add hid device: -71
[ 1795.527655][T14450] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[ 1795.571928][T14450] usb 8-1: USB disconnect, device number 13
[ 1797.221487][T10556] usb 4-1: new full-speed USB device number 46 using dummy_hcd
[ 1797.416703][T10277] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1797.439245][T10277] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1797.461384][T10556] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1797.473503][T10277] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1797.481888][T10556] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1797.493345][T10556] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1797.551741][T10556] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1797.562015][T10277] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1797.571278][T10556] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1797.579882][T10556] usb 4-1: Product: syz
[ 1797.584254][T10556] usb 4-1: Manufacturer: syz
[ 1797.590117][T10556] usb 4-1: SerialNumber: syz
[ 1797.602615][T10277] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1797.648709][T10556] cdc_mbim 4-1:1.0: skipping garbage
[ 1797.654249][T10556] cdc_mbim 4-1:1.0: CDC Union missing and no IAD found
[ 1797.667158][T10556] cdc_mbim 4-1:1.0: bind() failure
[ 1798.054550][T17548] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1798.302942][T17548] kvm: pic: non byte read
[ 1798.398131][T17548] kvm: pic: level sensitive irq not supported
[ 1798.398554][T17548] kvm: pic: non byte read
[ 1798.554578][T17548] kvm: pic: level sensitive irq not supported
[ 1798.554991][T17548] kvm: pic: non byte read
[ 1799.561149][   T29] audit: type=1326 audit(1771392195.466:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17564 comm="syz.6.3640" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702ef6c code=0x0
[ 1799.709741][ T5776] Bluetooth: hci3: command tx timeout
[ 1799.794451][T17544] chnl_net:caif_netlink_parms(): no params data found
[ 1800.366086][T14450] usb 4-1: USB disconnect, device number 46
[ 1800.954133][ T7451] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1801.273191][ T7451] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1801.474874][ T7451] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1801.573902][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1801.581090][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1801.732838][ T7451] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1801.779074][ T5776] Bluetooth: hci3: command tx timeout
[ 1801.882848][T17585] 8021q: VLANs not supported on ip6_vti0
[ 1802.143100][T17591] overlayfs: failed to resolve './bus': -2
[ 1802.537489][T17544] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1802.545151][T17544] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1802.661774][T17544] bridge_slave_0: entered allmulticast mode
[ 1802.710848][T17544] bridge_slave_0: entered promiscuous mode
[ 1802.773674][T17544] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1802.865059][T17544] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1802.901420][T17544] bridge_slave_1: entered allmulticast mode
[ 1802.950109][T17544] bridge_slave_1: entered promiscuous mode
[ 1803.597151][ T7451] bridge_slave_1: left allmulticast mode
[ 1803.608081][ T7451] bridge_slave_1: left promiscuous mode
[ 1803.631120][ T7451] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1803.694556][ T7451] bridge_slave_0: left allmulticast mode
[ 1803.702736][ T7451] bridge_slave_0: left promiscuous mode
[ 1803.721827][ T7451] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1803.863969][ T5776] Bluetooth: hci3: command tx timeout
[ 1804.949204][T17615] loop0: detected capacity change from 0 to 256
[ 1804.973442][T17615] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1805.162727][T17615] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1805.222764][ T7451] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1805.370490][ T7451] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1805.443516][ T7451] bond0 (unregistering): Released all slaves
[ 1805.532787][T17544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1805.674718][T17544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1805.938779][ T5776] Bluetooth: hci3: command tx timeout
[ 1806.092810][T17623] overlayfs: failed to resolve './bus': -2
[ 1806.775721][T17544] team0: Port device team_slave_0 added
[ 1806.797749][T14450] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[ 1806.853616][T17544] team0: Port device team_slave_1 added
[ 1807.010139][T14450] usb 8-1: New USB device found, idVendor=056a, idProduct=0101, bcdDevice= 0.00
[ 1807.052490][T14450] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1807.094102][T14450] usb 8-1: config 0 descriptor??
[ 1807.381346][   T29] audit: type=1326 audit(1771392203.296:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17628 comm="syz.7.3661" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf708ef6c code=0x0
[ 1807.667898][T17544] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1807.675074][T17544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1807.779496][T17642] 9p: Bad value for 'wfdno'
[ 1807.792666][T17544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1807.912141][T17544] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1807.963414][T17544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1808.007345][T10556] usb 1-1: new full-speed USB device number 51 using dummy_hcd
[ 1808.040894][T17544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1808.195197][T10556] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1808.217223][ T7451] hsr_slave_0: left promiscuous mode
[ 1808.234107][ T7451] hsr_slave_1: left promiscuous mode
[ 1808.236572][T10556] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1808.252503][T10556] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1808.303629][ T7451] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1808.313388][ T7451] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1808.323190][T10556] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1808.380813][T10556] usb 1-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1808.448972][ T7451] veth1_macvtap: left promiscuous mode
[ 1808.490044][ T7451] veth0_macvtap: left promiscuous mode
[ 1808.496269][ T7451] veth1_vlan: left promiscuous mode
[ 1808.520428][T10556] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1808.550404][ T7451] veth0_vlan: left promiscuous mode
[ 1808.556492][T10556] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1808.591841][T10556] usb 1-1: Product: syz
[ 1808.619427][T10556] usb 1-1: Manufacturer: syz
[ 1808.630353][T10556] usb 1-1: SerialNumber: syz
[ 1808.714286][T17641] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 1808.800006][T10556] cdc_mbim 1-1:1.0: skipping garbage
[ 1809.935725][T10556] cdc_mbim 1-1:1.0: bind() failure
[ 1809.946405][T14450] usbhid 8-1:0.0: can't add hid device: -71
[ 1809.974272][T14450] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[ 1810.053078][T10556] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[ 1810.072685][T14450] usb 8-1: USB disconnect, device number 14
[ 1810.119702][T10556] cdc_ncm 1-1:1.1: bind() failure
[ 1810.250955][T10556] usb 1-1: USB disconnect, device number 51
[ 1810.980981][ T7451] smc: removing net device hsr0 with user defined pnetid SYZ2
[ 1811.419385][ T7451] team0 (unregistering): Port device team_slave_1 removed
[ 1811.555923][ T7451] team0 (unregistering): Port device team_slave_0 removed
[ 1812.547941][T17676] loop2: detected capacity change from 0 to 7
[ 1812.586568][T17676] Dev loop2: unable to read RDB block 7
[ 1812.614951][T17676]  loop2: AHDI p1 p2 p3
[ 1812.630639][T17676] loop2: partition table partially beyond EOD, truncated
[ 1812.668212][T17676] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1812.685143][T17676] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1813.601015][T17544] hsr_slave_0: entered promiscuous mode
[ 1813.638693][T17544] hsr_slave_1: entered promiscuous mode
[ 1813.680261][T17544] debugfs: 'hsr0' already exists in 'hsr'
[ 1813.692420][T17544] Cannot create hsr debugfs directory
[ 1814.685609][T17690] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1814.861989][T17690] kvm: pic: non byte read
[ 1814.948590][T17690] kvm: pic: level sensitive irq not supported
[ 1814.948985][T17690] kvm: pic: non byte read
[ 1815.074537][T17690] kvm: pic: level sensitive irq not supported
[ 1815.074934][T17690] kvm: pic: non byte read
[ 1815.595532][T14450] kernel read not supported for file /vcs (pid: 14450 comm: kworker/0:2)
[ 1816.330789][T17709] loop2: detected capacity change from 0 to 7
[ 1816.438372][T17709] Dev loop2: unable to read RDB block 7
[ 1816.500954][T17709]  loop2: AHDI p1 p2 p3
[ 1816.566356][T17709] loop2: partition table partially beyond EOD, truncated
[ 1816.621073][T17709] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1816.693260][T17709] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1817.263211][T17544] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1817.442673][T17544] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1817.663140][T17544] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1817.864578][T17544] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1819.308090][T14450] usb 1-1: new full-speed USB device number 52 using dummy_hcd
[ 1819.533519][T14450] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1819.567075][T14450] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1819.613523][T14450] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[ 1819.660256][T14450] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 1819.713986][T17544] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1819.767515][T14450] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1819.811248][T14450] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1819.852246][T14450] usb 1-1: Product: syz
[ 1819.887275][T14450] usb 1-1: Manufacturer: syz
[ 1819.922858][T14450] usb 1-1: SerialNumber: syz
[ 1820.009081][T17544] 8021q: adding VLAN 0 to HW filter on device team0
[ 1820.040142][T17734] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1820.160832][T14450] cdc_mbim 1-1:1.0: skipping garbage
[ 1820.275312][ T9037] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1820.282988][ T9037] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1820.394189][T17734] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1820.500697][T17734] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1820.620265][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1820.628190][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1821.174885][T17734] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1821.208911][T17734] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1821.248483][T14450] cdc_mbim 1-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[ 1821.256227][T14450] cdc_mbim 1-1:1.0: setting rx_max = 2048
[ 1821.474020][T14450] cdc_mbim 1-1:1.0: setting tx_max = 184
[ 1821.514497][ T5820] kernel read not supported for file /vcs (pid: 5820 comm: kworker/0:3)
[ 1821.534111][T14450] cdc_mbim 1-1:1.0: cdc-wdm0: USB WDM device
[ 1821.577793][T14450] wwan wwan0: port wwan0mbim0 attached
[ 1821.757069][T14450] cdc_mbim 1-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.0-1, CDC MBIM, 9e:57:5f:d7:c3:54
[ 1821.921230][T14450] usb 1-1: USB disconnect, device number 52
[ 1821.968977][T14450] cdc_mbim 1-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.0-1, CDC MBIM
[ 1822.227573][T14450] wwan wwan0: port wwan0mbim0 disconnected
[ 1822.569806][T17755] loop2: detected capacity change from 0 to 7
[ 1822.625984][T17755] Dev loop2: unable to read RDB block 7
[ 1822.653672][T17755]  loop2: AHDI p1 p2 p3
[ 1822.734382][T17755] loop2: partition table partially beyond EOD, truncated
[ 1822.780055][T17755] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1822.867502][T17755] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1824.582156][T17544] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1825.749703][T17792] 9p: Bad value for 'wfdno'
[ 1826.828541][T17806] loop2: detected capacity change from 0 to 7
[ 1826.874309][T17806] Dev loop2: unable to read RDB block 7
[ 1826.905350][T17806]  loop2: AHDI p1 p2 p3
[ 1826.936210][T17806] loop2: partition table partially beyond EOD, truncated
[ 1826.956002][T17806] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1827.027423][T17806] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1827.966273][T17544] veth0_vlan: entered promiscuous mode
[ 1828.210901][T17544] veth1_vlan: entered promiscuous mode
[ 1828.914876][T17544] veth0_macvtap: entered promiscuous mode
[ 1829.013408][T17544] veth1_macvtap: entered promiscuous mode
[ 1829.369722][T17544] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1829.379891][T17821] loop0: detected capacity change from 0 to 764
[ 1829.535876][T17821] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1829.580221][T17544] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1829.689176][T17821] Symlink component flag not implemented
[ 1829.701992][T17821] Symlink component flag not implemented (7)
[ 1829.728232][T17821] Symlink component flag not implemented (7)
[ 1829.851232][ T7428] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1829.908513][ T7428] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1829.935337][ T7428] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1830.049509][ T7428] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1830.698798][T17833] 9p: Bad value for 'wfdno'
[ 1831.742162][   T29] audit: type=1800 audit(1771392227.656:377): pid=17842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3729" name="bus" dev="overlay" ino=1992 res=0 errno=0
[ 1832.461740][T17850] overlayfs: failed to clone lowerpath
[ 1834.245915][T17871] loop2: detected capacity change from 0 to 7
[ 1834.358181][T17871] Dev loop2: unable to read RDB block 7
[ 1834.364185][T17871]  loop2: AHDI p1 p2 p3
[ 1834.407518][T17871] loop2: partition table partially beyond EOD, truncated
[ 1834.453644][T17871] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1834.492573][T17871] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1834.685030][T17875] 9p: Bad value for 'wfdno'
[ 1837.459612][ T9037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1837.517013][ T9037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1837.815202][T17643] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1837.843260][T17643] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1838.217001][T10556] kernel read not supported for file /vcs (pid: 10556 comm: kworker/1:3)
[ 1838.387113][T10556] usb 8-1: new full-speed USB device number 15 using dummy_hcd
[ 1838.603526][T10556] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1838.643831][T10556] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1838.695811][T10556] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[ 1838.708112][T10556] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1838.758340][T10556] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1838.792765][T10556] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1838.809304][T10556] usb 8-1: Product: syz
[ 1838.814306][T10556] usb 8-1: Manufacturer: syz
[ 1838.824813][T10556] usb 8-1: SerialNumber: syz
[ 1838.857391][T17914] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1838.895770][T17921] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[ 1838.951814][T10556] cdc_mbim 8-1:1.0: skipping garbage
[ 1839.182263][T17914] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1839.874900][T17914] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1840.186110][T10556] cdc_mbim 8-1:1.0: bind() failure
[ 1840.279910][T10556] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[ 1840.300268][T10556] cdc_ncm 8-1:1.1: bind() failure
[ 1840.458743][ T8631] usb 8-1: USB disconnect, device number 15
[ 1840.867786][T10277] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1840.893784][T10277] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1840.908386][T10277] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1840.971557][T10277] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1840.985620][T10277] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1842.604589][T14450] kernel read not supported for file /vcs (pid: 14450 comm: kworker/0:2)
[ 1842.854820][T17954] ip6gre1: entered promiscuous mode
[ 1842.934194][T17954] ip6gre1: entered allmulticast mode
[ 1843.059747][T10277] Bluetooth: hci2: command tx timeout
[ 1844.543933][T17933] chnl_net:caif_netlink_parms(): no params data found
[ 1844.777305][T14450] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[ 1845.027998][T14450] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1845.062717][T14450] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1845.108557][T14450] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[ 1845.131927][T14450] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 1845.149746][T10277] Bluetooth: hci2: command tx timeout
[ 1845.199772][T14450] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1845.256075][T14450] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1845.287188][T14450] usb 8-1: Product: syz
[ 1845.317193][T14450] usb 8-1: Manufacturer: syz
[ 1845.337010][T14450] usb 8-1: SerialNumber: syz
[ 1845.385087][T17972] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1845.423798][T14450] cdc_mbim 8-1:1.0: skipping garbage
[ 1845.676328][T17972] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1845.744825][T17972] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1846.260516][T17986] loop2: detected capacity change from 0 to 7
[ 1846.338992][T17986] Dev loop2: unable to read RDB block 7
[ 1846.397795][T17986]  loop2: AHDI p1 p2 p3
[ 1846.412633][T17986] loop2: partition table partially beyond EOD, truncated
[ 1846.425761][T17972] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1846.476717][T17972] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1846.509531][T17986] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1846.520547][T14450] cdc_mbim 8-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[ 1846.529573][T17986] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1846.549836][T14450] cdc_mbim 8-1:1.0: setting rx_max = 2048
[ 1846.727109][T14450] cdc_mbim 8-1:1.0: setting tx_max = 184
[ 1846.788710][T14450] cdc_mbim 8-1:1.0: cdc-wdm0: USB WDM device
[ 1846.859367][T14450] wwan wwan0: port wwan0mbim0 attached
[ 1847.045530][T14450] cdc_mbim 8-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.7-1, CDC MBIM, b6:f8:50:8d:ce:de
[ 1847.227002][T10277] Bluetooth: hci2: command tx timeout
[ 1847.250085][T14450] usb 8-1: USB disconnect, device number 16
[ 1847.269133][T14450] cdc_mbim 8-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.7-1, CDC MBIM
[ 1847.524835][T17933] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1847.557985][T17933] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1847.566277][T17933] bridge_slave_0: entered allmulticast mode
[ 1847.661351][T17933] bridge_slave_0: entered promiscuous mode
[ 1847.819379][T17933] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1847.857964][T17933] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1847.865936][T17933] bridge_slave_1: entered allmulticast mode
[ 1847.971867][T17933] bridge_slave_1: entered promiscuous mode
[ 1848.018994][T14450] wwan wwan0: port wwan0mbim0 disconnected
[ 1848.690476][T17933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1848.784991][T17933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1849.181358][T17933] team0: Port device team_slave_0 added
[ 1849.269547][T17933] team0: Port device team_slave_1 added
[ 1849.313192][T10277] Bluetooth: hci2: command tx timeout
[ 1849.850453][T17933] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1849.878845][T17933] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1849.995752][T17933] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1850.060473][T17933] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1850.068138][T17933] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1850.115892][T17933] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1850.159154][T18020] loop2: detected capacity change from 0 to 7
[ 1850.172339][T15624] Dev loop2: unable to read RDB block 7
[ 1850.187500][T15624]  loop2: AHDI p1 p2 p3
[ 1850.192831][T15624] loop2: partition table partially beyond EOD, truncated
[ 1850.204521][T15624] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1850.222505][T15624] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1850.268933][T18020] Dev loop2: unable to read RDB block 7
[ 1850.317989][T18020]  loop2: AHDI p1 p2 p3
[ 1850.322563][T18020] loop2: partition table partially beyond EOD, truncated
[ 1850.403809][T18020] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1850.477666][T18020] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1850.866152][T17933] hsr_slave_0: entered promiscuous mode
[ 1850.925731][T17933] hsr_slave_1: entered promiscuous mode
[ 1850.995006][T17933] debugfs: 'hsr0' already exists in 'hsr'
[ 1851.036718][T17933] Cannot create hsr debugfs directory
[ 1851.234192][T18027] loop3: detected capacity change from 0 to 128
[ 1851.358033][T18027] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1851.776104][T18033] overlayfs: failed to resolve './bus': -2
[ 1853.907770][T18054] loop2: detected capacity change from 0 to 7
[ 1853.923332][T15624] Dev loop2: unable to read RDB block 7
[ 1853.977682][T15624]  loop2: AHDI p1 p2 p3
[ 1853.984830][T15624] loop2: partition table partially beyond EOD, truncated
[ 1854.049741][T15624] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1854.091233][T15624] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1854.129836][T18054] Dev loop2: unable to read RDB block 7
[ 1854.181676][T18054]  loop2: AHDI p1 p2 p3
[ 1854.201855][T18054] loop2: partition table partially beyond EOD, truncated
[ 1854.261728][T18054] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1854.287537][T18054] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1854.724288][T17933] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1854.856472][T17933] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1855.083846][T17933] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1855.285250][T17933] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1855.510235][T18067] overlayfs: failed to resolve './bus': -2
[ 1855.532184][T18069] fuse: Bad value for 'fd'
[ 1857.230909][T17933] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1857.441312][T18087] loop2: detected capacity change from 0 to 7
[ 1857.482846][T17933] 8021q: adding VLAN 0 to HW filter on device team0
[ 1857.540476][T15624] Dev loop2: unable to read RDB block 7
[ 1857.546351][T15624]  loop2: AHDI p1 p2 p3
[ 1857.559190][T15624] loop2: partition table partially beyond EOD, truncated
[ 1857.634954][T15624] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1857.650528][T15624] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1857.678017][T18087] Dev loop2: unable to read RDB block 7
[ 1857.708041][T18087]  loop2: AHDI p1 p2 p3
[ 1857.725728][ T7737] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1857.733372][ T7737] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1857.748081][T18087] loop2: partition table partially beyond EOD, truncated
[ 1857.789054][T18087] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1857.807604][T18087] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1858.019031][   T56] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1858.027201][   T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1858.827513][T18098] fuse: Bad value for 'fd'
[ 1859.033261][T18100] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3821'.
[ 1861.259621][T17933] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1861.644790][T18130] loop2: detected capacity change from 0 to 7
[ 1861.698662][T18130] Dev loop2: unable to read RDB block 7
[ 1861.728972][T18130]  loop2: AHDI p1 p2 p3
[ 1861.744429][T18130] loop2: partition table partially beyond EOD, truncated
[ 1861.799670][T18130] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1861.847375][T18130] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1861.982914][T18135] fuse: Bad value for 'fd'
[ 1862.605525][T18141] overlayfs: failed to resolve './bus': -2
[ 1863.012499][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 1863.021904][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1864.399606][T18161] 9p: Bad value for 'rfdno'
[ 1864.870840][T17933] veth0_vlan: entered promiscuous mode
[ 1864.946274][T18168] loop2: detected capacity change from 0 to 7
[ 1865.002339][T18168] Dev loop2: unable to read RDB block 7
[ 1865.037529][T18168]  loop2: AHDI p1 p2 p3
[ 1865.057034][ T5776] Bluetooth: hci0: command 0x0406 tx timeout
[ 1865.065496][T18168] loop2: partition table partially beyond EOD, truncated
[ 1865.086126][T18168] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1865.109715][T18168] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1865.126057][T17933] veth1_vlan: entered promiscuous mode
[ 1865.344228][T18170] 8021q: VLANs not supported on ip6_vti0
[ 1865.767731][T17933] veth0_macvtap: entered promiscuous mode
[ 1865.930456][T17933] veth1_macvtap: entered promiscuous mode
[ 1866.059108][T18174] loop5: detected capacity change from 0 to 128
[ 1866.195257][T18172] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2380656639 (304724049792 ns) > initial count (133856919168 ns). Using initial count to start timer.
[ 1866.452428][T18179] overlayfs: failed to resolve './bus': -2
[ 1866.529790][T17933] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1866.705570][T17933] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1866.959911][ T9037] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1867.018719][ T9037] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1867.106672][ T7737] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1867.116136][ T7737] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1868.466322][T18201] loop2: detected capacity change from 0 to 7
[ 1868.553177][T18201] Dev loop2: unable to read RDB block 7
[ 1868.594054][T18201]  loop2: AHDI p1 p2 p3
[ 1868.617413][T18201] loop2: partition table partially beyond EOD, truncated
[ 1868.625810][T18201] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1868.678752][T18201] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1869.371632][T18204] team_slave_0: entered promiscuous mode
[ 1869.377967][T18204] team_slave_1: entered promiscuous mode
[ 1869.482855][T18204] macvlan2: entered allmulticast mode
[ 1869.527786][T18204] team0: entered allmulticast mode
[ 1869.538953][T18204] team_slave_0: entered allmulticast mode
[ 1869.544924][T18204] team_slave_1: entered allmulticast mode
[ 1869.668654][T18204] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1869.714082][T18204] team0: left allmulticast mode
[ 1869.773605][T18204] team_slave_0: left allmulticast mode
[ 1869.822520][T18204] team_slave_1: left allmulticast mode
[ 1869.887280][T18204] team_slave_0: left promiscuous mode
[ 1869.892955][T18204] team_slave_1: left promiscuous mode
[ 1870.376355][T18211] syzkaller0: entered promiscuous mode
[ 1870.459115][T18211] syzkaller0: entered allmulticast mode
[ 1871.865336][T18237] loop5: detected capacity change from 0 to 764
[ 1872.524160][T18246] loop2: detected capacity change from 0 to 7
[ 1872.628109][T18246] Dev loop2: unable to read RDB block 7
[ 1872.634082][T18246]  loop2: AHDI p1 p2 p3
[ 1872.717991][T18246] loop2: partition table partially beyond EOD, truncated
[ 1872.786319][T18246] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1872.857667][T18246] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1874.010024][T18263] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[ 1875.939783][T18286] loop2: detected capacity change from 0 to 7
[ 1875.990564][T18286] Dev loop2: unable to read RDB block 7
[ 1875.996457][T18286]  loop2: AHDI p1 p2 p3
[ 1876.041837][T18286] loop2: partition table partially beyond EOD, truncated
[ 1876.087630][T18286] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1876.178736][T18286] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1876.319013][   T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1876.394989][   T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1877.054093][ T7428] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1877.126394][ T7428] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1877.555842][T18301] fuse: Bad value for 'fd'
[ 1878.485083][T18305] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1878.495947][T18309] loop0: detected capacity change from 0 to 256
[ 1879.895027][T18324] loop2: detected capacity change from 0 to 7
[ 1880.015766][T18324] Dev loop2: unable to read RDB block 7
[ 1880.027254][T18324]  loop2: AHDI p1 p2 p3
[ 1880.077382][T18324] loop2: partition table partially beyond EOD, truncated
[ 1880.129032][T18324] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1880.187948][T18324] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1880.858029][ T8631] usb 4-1: new full-speed USB device number 47 using dummy_hcd
[ 1881.123008][ T8631] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1881.164934][ T8631] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1881.215325][ T8631] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[ 1881.266274][ T8631] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 1881.343029][T18337] fuse: Bad value for 'fd'
[ 1881.437428][ T8631] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1881.497011][ T8631] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1881.531723][ T8631] usb 4-1: Product: syz
[ 1881.536374][ T8631] usb 4-1: Manufacturer: syz
[ 1881.557000][ T8631] usb 4-1: SerialNumber: syz
[ 1881.613169][T18329] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1881.655519][ T8631] cdc_mbim 4-1:1.0: skipping garbage
[ 1881.858196][T18329] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1881.866031][T18329] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1882.211102][T18342] loop7: detected capacity change from 0 to 7
[ 1882.277540][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.360292][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.376659][ T8631] cdc_mbim 4-1:1.0: failed GET_NTB_PARAMETERS
[ 1882.383406][ T8631] cdc_mbim 4-1:1.0: bind() failure
[ 1882.425899][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.451491][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.460815][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.469628][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.544682][ T8631] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[ 1882.557462][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.579731][ T8631] cdc_ncm 4-1:1.1: bind() failure
[ 1882.639265][T18342] ldm_validate_partition_table(): Disk read failed.
[ 1882.649146][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.664024][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.677239][T18342] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1882.717564][T18342] Dev loop7: unable to read RDB block 0
[ 1882.763272][T18342]  loop7: unable to read partition table
[ 1882.779597][T18342] loop7: partition table beyond EOD, truncated
[ 1882.800747][T18342] loop_reread_partitions: partition scan of loop7 (����7x~��S�j̖�P@�?�X) failed (rc=-5)
[ 1883.799485][ T8631] usb 4-1: USB disconnect, device number 47
[ 1884.013997][T18358] loop2: detected capacity change from 0 to 7
[ 1884.093883][T18358] Dev loop2: unable to read RDB block 7
[ 1884.131681][T18358]  loop2: AHDI p1 p2 p3
[ 1884.179939][T18358] loop2: partition table partially beyond EOD, truncated
[ 1884.226426][T18358] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1884.255601][T18358] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1885.425795][T18374] 9p: Bad value for 'rfdno'
[ 1886.256113][T18381] 9p: Bad value for 'aname'
[ 1887.595129][T14450] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[ 1887.785931][T14450] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1887.842742][T14450] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[ 1887.922690][T14450] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[ 1887.972913][T14450] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[ 1888.099122][T14450] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1888.157540][T14450] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1888.165832][T14450] usb 6-1: Product: syz
[ 1888.197281][T14450] usb 6-1: Manufacturer: syz
[ 1888.202211][T14450] usb 6-1: SerialNumber: syz
[ 1888.243603][T18391] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1888.283681][T18400] loop2: detected capacity change from 0 to 7
[ 1888.321580][T14450] cdc_mbim 6-1:1.0: skipping garbage
[ 1888.360748][T18400] Dev loop2: unable to read RDB block 7
[ 1888.366614][T18400]  loop2: AHDI p1 p2 p3
[ 1888.417578][T18400] loop2: partition table partially beyond EOD, truncated
[ 1888.499890][T18400] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1888.569209][T18400] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1888.593650][T18391] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1888.601869][T18391] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1889.133853][T14450] cdc_mbim 6-1:1.0: failed GET_NTB_PARAMETERS
[ 1889.187800][T14450] cdc_mbim 6-1:1.0: bind() failure
[ 1889.269948][T14450] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[ 1889.337499][T14450] cdc_ncm 6-1:1.1: bind() failure
[ 1889.842911][T18411] 9p: Bad value for 'rfdno'
[ 1890.555886][T14450] usb 6-1: USB disconnect, device number 3
[ 1891.278281][ T5820] kernel read not supported for file /vcs (pid: 5820 comm: kworker/0:3)
[ 1892.808404][T18440] overlayfs: missing 'lowerdir'
[ 1895.240844][ T5820] kernel read not supported for file /vcs (pid: 5820 comm: kworker/0:3)
[ 1895.842804][T18474] overlayfs: missing 'lowerdir'
[ 1898.041768][T18484] loop3: detected capacity change from 0 to 8192
[ 1898.278891][   T29] audit: type=1804 audit(1771392294.196:378): pid=18484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3963" name="/newroot/102/file2/bus" dev="loop3" ino=1048651 res=1 errno=0
[ 1898.447669][   T29] audit: type=1800 audit(1771392294.226:379): pid=18484 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3963" name="bus" dev="loop3" ino=1048651 res=0 errno=0
[ 1899.620252][T10556] kernel read not supported for file /vcs (pid: 10556 comm: kworker/1:3)
[ 1900.468422][T18518] overlayfs: missing 'lowerdir'
[ 1900.955730][T18523] gretap0: entered promiscuous mode
[ 1900.974838][T18523] vlan2: entered promiscuous mode
[ 1903.158574][T18544] 9p: Bad value for 'rfdno'
[ 1903.585595][ T5820] kernel read not supported for file /vcs (pid: 5820 comm: kworker/0:3)
[ 1904.035366][T18555] overlayfs: missing 'lowerdir'
[ 1905.820154][T18574] loop3: detected capacity change from 0 to 128
[ 1907.550263][T18587] batadv_slave_1: entered promiscuous mode
[ 1907.608360][T18586] batadv_slave_1: left promiscuous mode
[ 1907.730883][T10556] kernel read not supported for file /vcs (pid: 10556 comm: kworker/1:3)
[ 1907.821464][T18593] loop0: detected capacity change from 0 to 512
[ 1908.431680][T18593] FAT-fs (loop0): FAT read failed (blocknr 128)
[ 1909.188200][   T13] bridge_slave_1: left allmulticast mode
[ 1909.250059][   T13] bridge_slave_1: left promiscuous mode
[ 1909.256991][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1909.380324][   T13] bridge_slave_0: left allmulticast mode
[ 1909.427092][   T13] bridge_slave_0: left promiscuous mode
[ 1909.468362][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1910.075946][T18616] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4011'.
[ 1910.809543][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1910.856374][   T13] bond0 (unregistering): (slave 
c
@0�): Releasing backup interface
[ 1910.898918][   T13] bond0 (unregistering): Released all slaves
[ 1910.927902][   T13] bond1 (unregistering): Released all slaves
[ 1912.849880][ T5820] kernel read not supported for file /vcs (pid: 5820 comm: kworker/0:3)
[ 1913.105431][   T13] hsr_slave_0: left promiscuous mode
[ 1913.185162][   T13] hsr_slave_1: left promiscuous mode
[ 1913.260492][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1913.355762][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1914.533728][T18657] overlayfs: failed to resolve './bus': -2
[ 1915.284960][   T13] team0 (unregistering): Port device team_slave_1 removed
[ 1915.520976][   T13] team0 (unregistering): Port device team_slave_0 removed
[ 1918.010662][T10556] kernel read not supported for file /vcs (pid: 10556 comm: kworker/1:3)
[ 1919.050077][T18697] overlayfs: failed to resolve './bus': -2
[ 1921.135283][T18717] gretap0: entered promiscuous mode
[ 1921.147545][T18717] vlan2: entered promiscuous mode
[ 1921.377112][ T5776] Bluetooth: hci3: command 0x0406 tx timeout
[ 1921.401541][T14450] kernel read not supported for file /vcs (pid: 14450 comm: kworker/0:2)
[ 1922.393116][T18727] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1922.530317][T18727] kvm: pic: level sensitive irq not supported
[ 1922.530753][T18727] kvm: pic: non byte read
[ 1922.678435][T18727] kvm: pic: level sensitive irq not supported
[ 1922.679028][T18727] kvm: pic: non byte read
[ 1922.786338][T18727] kvm: pic: level sensitive irq not supported
[ 1922.787244][T18727] kvm: pic: non byte read
[ 1923.612309][T18743] =====================================================
[ 1923.619867][T18743] BUG: KMSAN: uninit-value in netif_skb_features+0x6fb/0x1870
[ 1923.628000][T18743]  netif_skb_features+0x6fb/0x1870
[ 1923.633358][T18743]  validate_xmit_skb+0xb6/0x2400
[ 1923.638695][T18743]  validate_xmit_skb_list+0xd4/0x320
[ 1923.644491][T18743]  sch_direct_xmit+0xd4/0xcf0
[ 1923.649646][T18743]  __dev_queue_xmit+0x3016/0x5a50
[ 1923.654918][T18743]  packet_xmit+0x8f/0x710
[ 1923.659727][T18743]  packet_sendmsg+0x91d9/0xa320
[ 1923.664809][T18743]  ____sys_sendmsg+0xfe7/0x1080
[ 1923.670180][T18743]  ___sys_sendmsg+0x271/0x3b0
[ 1923.675088][T18743]  __sys_sendmsg+0x1aa/0x300
[ 1923.680142][T18743]  __ia32_compat_sys_sendmsg+0xa4/0x100
[ 1923.686014][T18743]  ia32_sys_call+0x1e4a/0x4360
[ 1923.691140][T18743]  __do_fast_syscall_32+0x17f/0x3f0
[ 1923.696633][T18743]  do_fast_syscall_32+0x37/0x80
[ 1923.701864][T18743]  do_SYSENTER_32+0x1f/0x30
[ 1923.706619][T18743]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1923.713559][T18743] 
[ 1923.715996][T18743] Uninit was created at:
[ 1923.720736][T18743]  kmem_cache_alloc_node_noprof+0x3cd/0x12d0
[ 1923.727103][T18743]  __alloc_skb+0x855/0x1190
[ 1923.731910][T18743]  alloc_skb_with_frags+0xc5/0xa60
[ 1923.737415][T18743]  sock_alloc_send_pskb+0xacb/0xc60
[ 1923.742864][T18743]  packet_sendmsg+0x7477/0xa320
[ 1923.748077][T18743]  ____sys_sendmsg+0xfe7/0x1080
[ 1923.753297][T18743]  ___sys_sendmsg+0x271/0x3b0
[ 1923.758372][T18743]  __sys_sendmsg+0x1aa/0x300
[ 1923.763223][T18743]  __ia32_compat_sys_sendmsg+0xa4/0x100
[ 1923.769224][T18743]  ia32_sys_call+0x1e4a/0x4360
[ 1923.774186][T18743]  __do_fast_syscall_32+0x17f/0x3f0
[ 1923.779812][T18743]  do_fast_syscall_32+0x37/0x80
[ 1923.784926][T18743]  do_SYSENTER_32+0x1f/0x30
[ 1923.789917][T18743]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1923.796493][T18743] 
[ 1923.799113][T18743] CPU: 1 UID: 0 PID: 18743 Comm: syz.0.4058 Tainted: G        W    L      syzkaller #0 PREEMPT(full) 
[ 1923.810540][T18743] Tainted: [W]=WARN, [L]=SOFTLOCKUP
[ 1923.815865][T18743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1923.826241][T18743] =====================================================
[ 1923.833638][T18743] Disabling lock debugging due to kernel taint
[ 1923.840203][T18743] Kernel panic - not syncing: kmsan.panic set ...
[ 1923.846796][T18743] CPU: 1 UID: 0 PID: 18743 Comm: syz.0.4058 Tainted: G    B   W    L      syzkaller #0 PREEMPT(full) 
[ 1923.858104][T18743] Tainted: [B]=BAD_PAGE, [W]=WARN, [L]=SOFTLOCKUP
[ 1923.864660][T18743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1923.875162][T18743] Call Trace:
[ 1923.878609][T18743]  <TASK>
[ 1923.881665][T18743]  __dump_stack+0x26/0x30
[ 1923.886293][T18743]  dump_stack_lvl+0x50/0x1c0
[ 1923.891129][T18743]  ? dump_stack+0x12/0x25
[ 1923.895707][T18743]  dump_stack+0x1e/0x25
[ 1923.900190][T18743]  vpanic+0x7b4/0x1430
[ 1923.904535][T18743]  panic+0x15d/0x160
[ 1923.908718][T18743]  kmsan_report+0x31a/0x320
[ 1923.913466][T18743]  ? __msan_warning+0x1b/0x30
[ 1923.918369][T18743]  ? netif_skb_features+0x6fb/0x1870
[ 1923.923878][T18743]  ? validate_xmit_skb+0xb6/0x2400
[ 1923.929228][T18743]  ? validate_xmit_skb_list+0xd4/0x320
[ 1923.934926][T18743]  ? sch_direct_xmit+0xd4/0xcf0
[ 1923.939992][T18743]  ? __dev_queue_xmit+0x3016/0x5a50
[ 1923.945449][T18743]  ? packet_xmit+0x8f/0x710
[ 1923.950171][T18743]  ? packet_sendmsg+0x91d9/0xa320
[ 1923.955458][T18743]  ? ____sys_sendmsg+0xfe7/0x1080
[ 1923.960742][T18743]  ? ___sys_sendmsg+0x271/0x3b0
[ 1923.965858][T18743]  ? __sys_sendmsg+0x1aa/0x300
[ 1923.970891][T18743]  ? __ia32_compat_sys_sendmsg+0xa4/0x100
[ 1923.976966][T18743]  ? ia32_sys_call+0x1e4a/0x4360
[ 1923.982102][T18743]  ? __do_fast_syscall_32+0x17f/0x3f0
[ 1923.987767][T18743]  ? do_fast_syscall_32+0x37/0x80
[ 1923.993105][T18743]  ? do_SYSENTER_32+0x1f/0x30
[ 1923.998035][T18743]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1924.004797][T18743]  ? __skb_flow_dissect+0x941a/0xa1f0
[ 1924.010646][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.016029][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.021389][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.026770][T18743]  __msan_warning+0x1b/0x30
[ 1924.031509][T18743]  netif_skb_features+0x6fb/0x1870
[ 1924.036918][T18743]  validate_xmit_skb+0xb6/0x2400
[ 1924.042084][T18743]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1924.048168][T18743]  ? sch_direct_xmit+0x1/0xcf0
[ 1924.053147][T18743]  ? filter_irq_stacks+0x49/0x190
[ 1924.058552][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.063946][T18743]  validate_xmit_skb_list+0xd4/0x320
[ 1924.069500][T18743]  sch_direct_xmit+0xd4/0xcf0
[ 1924.074472][T18743]  ? kmsan_get_metadata+0x146/0x160
[ 1924.079926][T18743]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1924.086704][T18743]  __dev_queue_xmit+0x3016/0x5a50
[ 1924.092000][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.097369][T18743]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1924.103457][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.108918][T18743]  ? __dev_queue_xmit+0x280/0x5a50
[ 1924.114321][T18743]  packet_xmit+0x8f/0x710
[ 1924.118885][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.124260][T18743]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1924.130339][T18743]  packet_sendmsg+0x91d9/0xa320
[ 1924.135393][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.140759][T18743]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1924.146921][T18743]  ? aa_label_sk_perm+0x759/0x810
[ 1924.152299][T18743]  ? __msan_warning+0x1b/0x30
[ 1924.157207][T18743]  ? filter_irq_stacks+0x13f/0x190
[ 1924.162574][T18743]  ? ip_compute_csum+0xb0/0x3f0
[ 1924.167670][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.173083][T18743]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1924.179762][T18743]  ? __pfx_packet_sendmsg+0x10/0x10
[ 1924.185178][T18743]  ? __pfx_packet_sendmsg+0x10/0x10
[ 1924.190588][T18743]  ____sys_sendmsg+0xfe7/0x1080
[ 1924.195740][T18743]  ___sys_sendmsg+0x271/0x3b0
[ 1924.200663][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.206059][T18743]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1924.212152][T18743]  ? __rcu_read_unlock+0x6c/0xd0
[ 1924.217429][T18743]  ? __fget_files+0x3b4/0x4a0
[ 1924.222446][T18743]  ? __fget_files+0x3b9/0x4a0
[ 1924.227403][T18743]  ? kmsan_get_metadata+0xf1/0x160
[ 1924.232773][T18743]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1924.238859][T18743]  __sys_sendmsg+0x1aa/0x300
[ 1924.243758][T18743]  __ia32_compat_sys_sendmsg+0xa4/0x100
[ 1924.249599][T18743]  ia32_sys_call+0x1e4a/0x4360
[ 1924.254570][T18743]  __do_fast_syscall_32+0x17f/0x3f0
[ 1924.260060][T18743]  do_fast_syscall_32+0x37/0x80
[ 1924.265164][T18743]  do_SYSENTER_32+0x1f/0x30
[ 1924.269926][T18743]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1924.276616][T18743] RIP: 0023:0xf7f56f6c
[ 1924.280844][T18743] Code: 90 85 d2 74 0a 89 ce 81 e6 ff 0f 00 00 89 32 85 c0 74 05 c1 e9 0c 89 08 31 c0 5e 5d c3 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 90 90 90 90 90 90 b8 ad
[ 1924.300760][T18743] RSP: 002b:00000000f541650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172
[ 1924.309403][T18743] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080002ac0
[ 1924.317656][T18743] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1924.325980][T18743] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1924.334187][T18743] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1924.342411][T18743] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1924.350595][T18743]  </TASK>
[ 1924.354355][T18743] Kernel Offset: disabled
[ 1924.358767][T18743] Rebooting in 86400 seconds..