last executing test programs:

17m53.906334634s ago: executing program 2 (id=1396):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1, 0x3, 0x5, 0x7, 0xc1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)="b73181a0daac03c9f250b50f0e", &(0x7f0000000100), 0x3f, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, &(0x7f0000000340), 0x0}, 0x20)

17m53.744841193s ago: executing program 2 (id=1399):
bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x40000e, 0x0, 0x0, 0x0, 0x10000007}, [@call={0x85, 0x0, 0x0, 0x29}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r0, 0xffffffffffffffff, 0x22, 0x0, @void}, 0x10)

17m53.508281837s ago: executing program 2 (id=1402):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000090000000000000000000000850000004100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000ff0100007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001001000850000008200000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0xe, 0x0, &(0x7f0000000000)="165cb1fa0919976b4e046ea74f70", 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

17m52.386135881s ago: executing program 2 (id=1413):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x8100, &(0x7f0000000000)={0x0, 0x0, 0x20000}, 0x20)

17m52.053335003s ago: executing program 2 (id=1414):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x3}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000001200010a000000008b0007008000d6f5"], 0x26}}, 0x0)

17m49.987798325s ago: executing program 2 (id=1430):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000880)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r1, {0x0, 0xffff}, {0xffff, 0xffff}, {0x10}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x18, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x8, 0x1, 0x9, 0x12, 0xa, 0x14, 0x8}}]}}]}, 0x48}}, 0x8840)

17m49.622470094s ago: executing program 32 (id=1430):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000880)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r1, {0x0, 0xffff}, {0xffff, 0xffff}, {0x10}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x18, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x8, 0x1, 0x9, 0x12, 0xa, 0x14, 0x8}}]}}]}, 0x48}}, 0x8840)

10m44.927834189s ago: executing program 4 (id=7513):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c0001400000000000000000090003007379"], 0xd4}}, 0x8818)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

10m43.883922621s ago: executing program 4 (id=7533):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x1, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0xffffffffffffff3f, &(0x7f00000000c0)={&(0x7f0000000680)=@newtfilter={0xa4, 0x2c, 0xd27, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r1, {0xe}, {}, {0xfff3, 0xffe0}}, [@filter_kind_options=@f_basic={{0xa}, {0x44, 0x2, [@TCA_BASIC_POLICE={0x40, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x2, 0x20000000, 0x1, 0xfffffffe, 0xfff, {0x5, 0x0, 0x9c, 0xf9e, 0x4, 0x7}, {0xf8, 0x2, 0x0, 0x4, 0x6fb, 0xf}, 0x6, 0x3}}]}]}}, @filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_ENC_UDP_SRC_PORT={0x6}, @TCA_FLOWER_KEY_ENC_IPV4_DST={0x8, 0x1d, @multicast2}, @TCA_FLOWER_KEY_ARP_OP_MASK={0x5, 0x3e, 0x2}, @TCA_FLOWER_KEY_UDP_DST]}}]}, 0xa4}}, 0x4000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

10m43.464946023s ago: executing program 4 (id=7542):
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, 0x0, &(0x7f0000000380)={[], 0xf000}, 0x100)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000005, 0x8031, 0xffffffffffffffff, 0x0)

10m42.066094833s ago: executing program 4 (id=7569):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x20000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)

10m41.830106338s ago: executing program 4 (id=7574):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000380), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000001c0)={0x50, 0x0, r1, {0x7, 0x2b, 0x7fffffff, 0x2101100, 0x2, 0xe021, 0x9, 0xff, 0x0, 0x0, 0xe463b89b55537b6f, 0x1398}}, 0x50)
stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080))
syz_fuse_handle_req(r0, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ccc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6b3f0000f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784753f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a748cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d9f95e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x80000000000000, 0x0, 0x3, 0x0, 0x0, 0x200000, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

10m41.058861385s ago: executing program 4 (id=7590):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="090000000000000010000000"])

10m40.723053973s ago: executing program 33 (id=7590):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="090000000000000010000000"])

9m49.651618946s ago: executing program 3 (id=8614):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
listen(r0, 0x20)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x3c00, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)
poll(&(0x7f0000000240)=[{r0}], 0x1, 0x11ff)
shutdown(r0, 0x0)

9m49.009943802s ago: executing program 3 (id=8626):
socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x4, 0x4, 0xa, 0x4}, 0x3f)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000240)=0xffe, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000080)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

9m48.751267177s ago: executing program 3 (id=8630):
r0 = syz_io_uring_setup(0x5e48, &(0x7f0000000180)={0x0, 0x0, 0x10100, 0x20, 0xfffffffc}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x34}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1d"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000009, 0x12, r3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_UNLINKAT={0x24, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x200})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

9m48.36981348s ago: executing program 3 (id=8635):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb500a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)

9m48.026317133s ago: executing program 3 (id=8639):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @sack_perm, @window={0x3, 0x3, 0x401}, @window], 0x63)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x12, 0x0, 0x12)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

9m45.415994014s ago: executing program 3 (id=8680):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x6e22, 0x40000, @empty}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000580)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x8}}}}}}, 0x0)

9m45.038456588s ago: executing program 34 (id=8680):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x6e22, 0x40000, @empty}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000580)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x8}}}}}}, 0x0)

9m32.714810729s ago: executing program 6 (id=8856):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000480)='./bus\x00')
creat(&(0x7f0000000140)='./file0\x00', 0x14000000)
newfstatat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x4000)
chown(&(0x7f00000003c0)='./file0\x00', r0, 0xee01)
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_access\x00')

9m32.340037254s ago: executing program 6 (id=8862):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x41, &(0x7f0000000200)={0xa, 0x4e23, 0x10003, @loopback, 0x7}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x200002, 0x30}, 0xc)
sendmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000500)="062a", 0x2}], 0x1}, 0x50041)
sendto$inet6(r0, &(0x7f0000000040)='\v', 0x1, 0x20008081, 0x0, 0x0)
writev(r0, &(0x7f00000008c0)=[{&(0x7f0000000400)='U', 0x1}], 0x1)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x0, 0x10}, 0xc)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

9m32.143872836s ago: executing program 6 (id=8867):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5f}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x8040, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000040)={0x0, 0xffffffff, 0x1, 0x0, 0x90, "ff00f7000000000000000020af88008300"})
r2 = syz_open_pts(r1, 0x141601)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
write(r2, &(0x7f0000000000)="d5", 0xfffffedf)

9m31.864236261s ago: executing program 6 (id=8874):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80042, 0x50)
socket$key(0xf, 0x3, 0x2)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat2$dir(0xffffff9c, &(0x7f00000000c0)='./file0/file1\x00', &(0x7f0000000140)={0x40, 0x110, 0x2}, 0x18)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
preadv(r0, &(0x7f0000000800)=[{&(0x7f00000002c0)=""/213, 0xd5}, {0x0}, {0x0}], 0x3, 0xfffffffb, 0x4)

9m31.572190276s ago: executing program 6 (id=8881):
unshare(0x20040600)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d00000000000109022400010000000009040000010300000009210000000122080009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000940)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
io_pgetevents(0x0, 0x2, 0x0, 0x0, 0x0, 0x0)
io_submit(0x0, 0x0, &(0x7f0000000280))
io_destroy(0x0)
ioctl$HIDIOCGCOLLECTIONINFO(r1, 0xc0104811, &(0x7f0000000440)={0x0, 0xfff00000, 0x4, 0x6})

9m30.634428431s ago: executing program 6 (id=8901):
r0 = socket$inet(0x2b, 0x801, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x48f, &(0x7f0000000000)={0x6, @dev={0xac, 0x14, 0x14, 0x13}, 0x4e23, 0x0, 'lc\x00', 0x3e48fd5b307ee84d, 0x6000000, 0x800}, 0x2c)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, r2, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0x6}]}]}, 0x4c}}, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f00000000c0)=""/24, &(0x7f0000000100)=0x18)

9m30.308811319s ago: executing program 35 (id=8901):
r0 = socket$inet(0x2b, 0x801, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x48f, &(0x7f0000000000)={0x6, @dev={0xac, 0x14, 0x14, 0x13}, 0x4e23, 0x0, 'lc\x00', 0x3e48fd5b307ee84d, 0x6000000, 0x800}, 0x2c)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, r2, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0x6}]}]}, 0x4c}}, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f00000000c0)=""/24, &(0x7f0000000100)=0x18)

3m12.815086018s ago: executing program 7 (id=12112):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="4600010002"], 0x8)

3m12.548652753s ago: executing program 7 (id=12119):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045503, &(0x7f00000000c0))

3m12.356278638s ago: executing program 7 (id=12124):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x28040600)
getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f00000001c0), &(0x7f0000000200)=0x8)

3m12.172203306s ago: executing program 7 (id=12128):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendfile(r0, r0, 0x0, 0x200000)
cachestat(r0, &(0x7f0000000000)={0x9}, &(0x7f0000000040), 0x0)

3m11.048929751s ago: executing program 7 (id=12146):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x1, 0x1, 0x1})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r0, 0x0)

3m10.742929776s ago: executing program 7 (id=12150):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00', 0x112})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0xfffff000}, {0x6}]})

2m55.386393415s ago: executing program 8 (id=12315):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x9, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0xb0260000)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TLS_TX(r0, 0x11e, 0x1, &(0x7f0000000040)=@gcm_128={{0x303}, "2570a50e15c00591", "d43e2ed095822ae7208075ef3365f373", "a2316d00", "4e5af27e926df668"}, 0x28)

2m55.053582764s ago: executing program 8 (id=12319):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2001, 0x0)
clock_adjtime(0xffffffd3, &(0x7f0000000000)={0x200000000000003, 0x6, 0x8000000000000002, 0x0, 0x7, 0xb, 0x651, 0x0, 0x8000009657, 0x1, 0x7fffffff, 0x0, 0x10, 0x9, 0x7ffffffffffffe, 0xcc8, 0x2, 0x200, 0x94d6, 0xffffffffffffffff, 0xfffffffffffffffe, 0x80a, 0x0, 0xfffffffffffffffa, 0x5, 0x2000000000004})

2m54.531020497s ago: executing program 36 (id=12150):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00', 0x112})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0xfffff000}, {0x6}]})

2m54.513215659s ago: executing program 8 (id=12325):
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0xfffffffffffffffd], 0x0, 0x4, 0x100000}}, 0x40)

2m51.444938047s ago: executing program 0 (id=12348):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56e, 0x11c, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xb0, 0x4, [{{0x9, 0x4, 0x0, 0xfa, 0xff, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0xf4f6, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x3, 0x0, 0x89}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000540)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x8, "4d36f5f8"}]}}, 0x0}, 0x0)

2m50.578864638s ago: executing program 8 (id=12353):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000200)={0x0, "e0a1fead62099ba2df509c9f9f7f0f6d1b6b499b356af8cccfe7a1a5b5193a27", <r1=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r1, 0xc0383e04, 0x0)

2m50.576204883s ago: executing program 0 (id=12354):
add_key$keyring(&(0x7f0000001300), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
request_key(&(0x7f0000000480)='asymmetric\x00', &(0x7f00000004c0)={'syz', 0x0}, &(0x7f0000000500)='abcdefghijklmnop', 0x0)
request_key(&(0x7f0000001d40)='asymmetric\x00', &(0x7f0000000080)={'syz', 0x0}, 0x0, 0xfffffffffffffffe)

2m50.201870961s ago: executing program 0 (id=12357):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r0 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x9840)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffb, 0x6, 0x1, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="2b1874c94982", 0x0, 0x0, 0x14, 0x0, 0x0})

2m50.159817958s ago: executing program 8 (id=12358):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x503}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}}]}, 0x48}}, 0x0)

2m49.827814689s ago: executing program 0 (id=12361):
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x80)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0xffb)
read(r0, 0x0, 0x0)

2m49.385539011s ago: executing program 8 (id=12363):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x141800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x400caed0, &(0x7f0000000180)={0x2, 0x7b1b6959e8ce339, 0x0, 0x0})

2m49.368051093s ago: executing program 0 (id=12364):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8}]}]}]}, 0x3c}}, 0x0)

2m48.954309084s ago: executing program 0 (id=12369):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000105002, 0x0)
io_setup(0x226, &(0x7f0000000000)=<r1=>0x0)
io_submit(r1, 0x47f, &(0x7f0000000240)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x2, r0, &(0x7f0000000a00)="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", 0x200, 0x200}])

2m33.231044s ago: executing program 37 (id=12363):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x141800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x400caed0, &(0x7f0000000180)={0x2, 0x7b1b6959e8ce339, 0x0, 0x0})

2m32.741832325s ago: executing program 38 (id=12369):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000105002, 0x0)
io_setup(0x226, &(0x7f0000000000)=<r1=>0x0)
io_submit(r1, 0x47f, &(0x7f0000000240)=[&(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x2, r0, &(0x7f0000000a00)="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", 0x200, 0x200}])

2.589317481s ago: executing program 5 (id=14085):
r0 = io_uring_setup(0x79bf, &(0x7f0000000180))
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r1, 0x0)
accept4$x25(r1, 0x0, 0x0, 0x80800)
close_range(r0, 0xffffffffffffffff, 0x0)

2.488149984s ago: executing program 5 (id=14087):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000002780)=ANY=[], 0xfb5)

2.373668514s ago: executing program 5 (id=14089):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
dup2(r0, r1)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

2.21667321s ago: executing program 5 (id=14091):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x10000, 0x3, 0x1, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffff7}, {0x0, 0x8, 0xfffffffffffffffc, 0x8}, 0x0, 0x0, 0x1, 0x0, 0x1}, {{@in6=@empty, 0x2, 0x6c}, 0xa, @in=@empty, 0x0, 0x5, 0x0, 0xb7}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

2.088309792s ago: executing program 5 (id=14093):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/raw6\x00')
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6(0xa, 0x3, 0x8000000003c)
preadv(r0, &(0x7f0000000000)=[{&(0x7f0000000300)=""/275, 0x113}, {&(0x7f0000000080)=""/177, 0xb1}], 0x2, 0xa3, 0xf9f)

1.953735234s ago: executing program 5 (id=14095):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000240)='inet_sock_set_state\x00', r0, 0x0, 0x3}, 0x18)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r1, 0x6, 0x22, &(0x7f0000000000)=0x1, 0x4)
sendmmsg(r1, &(0x7f00000007c0)=[{{&(0x7f0000000380)=@in={0x2, 0x4e24, @local}, 0x80, &(0x7f0000000140)=[{&(0x7f00000004c0)='&', 0x1}], 0x1}}], 0xf00, 0x2c000011)

564.983869ms ago: executing program 1 (id=14098):
syz_open_dev$sndpcmc(&(0x7f0000000180), 0x0, 0x0)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0xfffffffe, "94c408213d36be01d7000000000000e1100ad985544600", <r1=>0xffffffffffffffff})
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESOCT=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

455.095643ms ago: executing program 1 (id=14099):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f00000000c0)={0x1, 0x71, 0x2})

304.121466ms ago: executing program 1 (id=14100):
syz_open_dev$vim2m(&(0x7f0000000240), 0x9de6, 0x2)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x9a85, 0x0, 0x0, 0x180000}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000380)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

230.547727ms ago: executing program 1 (id=14101):
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000a00)={0x20000014})
r2 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)={0x80000004})

135.807996ms ago: executing program 1 (id=14102):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000080), &(0x7f0000000180)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

0s ago: executing program 1 (id=14103):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)=@newqdisc={0x4c, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x4, 0x8001, 0x0, 0xf, 0xfffffff7}}}}]}, 0x4c}}, 0x44000)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x34, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000)

kernel console output (not intermixed with test programs):

0 has an invalid interface number: 12 but max is 0
[  640.106407][    T9] usb 5-1: config 0 has no interface number 0
[  640.106452][    T9] usb 5-1: config 0 interface 12 has no altsetting 0
[  640.110020][    T9] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  640.110047][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  640.110065][    T9] usb 5-1: Product: syz
[  640.110079][    T9] usb 5-1: Manufacturer: syz
[  640.110092][    T9] usb 5-1: SerialNumber: syz
[  640.128645][    T9] usb 5-1: config 0 descriptor??
[  640.931249][T20309] use of bytesused == 0 is deprecated and will be removed in the future,
[  640.931271][T20309] use the actual size instead.
[  641.207653][    T9] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  641.207711][    T9] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  641.207729][    T9] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  641.207821][    T9] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  641.232610][    T9] usb 5-1: USB disconnect, device number 38
[  643.463006][   T10] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  643.465829][T20438] sch_tbf: burst 480 is lower than device lo mtu (65550) !
[  643.618066][   T10] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  643.618094][   T10] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  643.619569][   T10] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  643.619597][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  643.619638][   T10] usb 5-1: SerialNumber: syz
[  643.881510][   T10] usb 5-1: 0:2 : does not exist
[  643.944867][   T10] usb 5-1: USB disconnect, device number 39
[  644.462562][T20484] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  644.491016][   T37] audit: type=1400 audit(644.226:296): lsm=SMACK fn=smack_inet_conn_request action=denied subject="?" object="_" requested=w pid=20483 comm="syz.0.6607" saddr=172.20.20.187 daddr=172.20.20.170 dest=20002 netif=wpan0
[  645.324935][ T5822] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  645.477453][ T5822] usb 5-1: Using ep0 maxpacket: 16
[  645.479885][ T5822] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  645.479916][ T5822] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  645.479955][ T5822] usb 5-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[  645.479977][ T5822] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  645.535078][ T5822] usb 5-1: config 0 descriptor??
[  646.398277][ T5822] usb 5-1: Max retries (5) exceeded reading string descriptor 200
[  646.398362][ T5822] letsketch 0003:6161:4D15.0023: probe with driver letsketch failed with error -71
[  646.446968][ T5822] usb 5-1: USB disconnect, device number 40
[  646.674295][T20576] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  646.684271][   T37] audit: type=1400 audit(646.436:297): lsm=SMACK fn=smack_inet_conn_request action=denied subject="?" object="_" requested=w pid=20575 comm="syz.0.6653" saddr=172.20.20.187 daddr=172.20.20.170 dest=20002 netif=wpan0
[  647.617081][   T37] audit: type=1326 audit(647.386:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20619 comm="syz.3.6674" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0c24dceec9 code=0x0
[  648.164361][T20655] netlink: 15672 bytes leftover after parsing attributes in process `syz.4.6691'.
[  649.759910][T20721] netlink: 'syz.0.6721': attribute type 29 has an invalid length.
[  649.761715][T20721] netlink: 'syz.0.6721': attribute type 29 has an invalid length.
[  649.762791][T20721] netlink: 500 bytes leftover after parsing attributes in process `syz.0.6721'.
[  651.055863][   T10] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[  651.204706][   T10] usb 4-1: Using ep0 maxpacket: 16
[  651.207264][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  651.207294][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  651.207316][   T10] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  651.207358][   T10] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  651.207379][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  651.217257][   T10] usb 4-1: config 0 descriptor??
[  651.711579][   T10] microsoft 0003:045E:07DA.0024: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  651.711612][   T10] microsoft 0003:045E:07DA.0024: no inputs found
[  651.711626][   T10] microsoft 0003:045E:07DA.0024: could not initialize ff, continuing anyway
[  651.873088][   T10] usb 4-1: USB disconnect, device number 39
[  653.127956][T20880] overlayfs: failed to clone lowerpath
[  653.888256][   T37] audit: type=1326 audit(653.656:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.890471][   T37] audit: type=1326 audit(653.656:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.955230][   T37] audit: type=1326 audit(653.726:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.957563][   T37] audit: type=1326 audit(653.726:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.988552][   T37] audit: type=1326 audit(653.726:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.988602][   T37] audit: type=1326 audit(653.756:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.988640][   T37] audit: type=1326 audit(653.756:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.990484][   T37] audit: type=1326 audit(653.756:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.990529][   T37] audit: type=1326 audit(653.756:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  653.991861][   T37] audit: type=1326 audit(653.756:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20916 comm="syz.3.6815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0c24dceec9 code=0x7ffc0000
[  654.946488][T20956] netlink: 'syz.0.6832': attribute type 9 has an invalid length.
[  655.430731][T20980] syzkaller1: entered promiscuous mode
[  655.430756][T20980] syzkaller1: entered allmulticast mode
[  656.235768][T21022] TCP: TCP_TX_DELAY enabled
[  656.314845][    T9] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  656.468640][    T9] usb 5-1: config 0 has no interfaces?
[  656.468676][    T9] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  656.468696][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  656.483569][    T9] usb 5-1: config 0 descriptor??
[  657.001113][   T10] usb 5-1: USB disconnect, device number 41
[  657.342033][T21076] input: syz1 as /devices/virtual/input/input23
[  657.370568][T21080] netlink: 'syz.0.6891': attribute type 4 has an invalid length.
[  659.131579][T21166] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  660.687910][T21234] netlink: 'syz.3.6965': attribute type 4 has an invalid length.
[  660.757100][T21240] netlink: 'syz.3.6965': attribute type 4 has an invalid length.
[  661.466123][T21274] vcan0: entered allmulticast mode
[  661.466432][T21274] vcan0: left allmulticast mode
[  662.599496][T21323] ip6gretap0: entered promiscuous mode
[  662.599771][T21323] macsec1: entered allmulticast mode
[  662.599786][T21323] ip6gretap0: entered allmulticast mode
[  662.646658][T21323] ip6gretap0: left allmulticast mode
[  662.646799][T21323] ip6gretap0: left promiscuous mode
[  662.839128][T21329] netlink: 'syz.4.7010': attribute type 19 has an invalid length.
[  662.839150][T21329] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7010'.
[  662.880273][  T811] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  662.882935][  T811] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  662.882999][  T811] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  662.883033][  T811] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  662.883310][T21329] netlink: 'syz.4.7010': attribute type 19 has an invalid length.
[  662.883326][T21329] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7010'.
[  663.618367][T21359] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  667.504777][ T5887] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[  667.654719][ T5887] usb 4-1: Using ep0 maxpacket: 16
[  667.657033][ T5887] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  667.657058][ T5887] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  667.661823][ T5887] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  667.661853][ T5887] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  667.661872][ T5887] usb 4-1: Product: syz
[  667.661886][ T5887] usb 4-1: Manufacturer: syz
[  667.661900][ T5887] usb 4-1: SerialNumber: syz
[  668.138398][ T5887] usb 4-1: 0:2 : does not exist
[  668.544488][ T5887] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  668.637578][ T5887] usb 4-1: USB disconnect, device number 40
[  670.635653][T21658] pim6reg1: entered promiscuous mode
[  670.635680][T21658] pim6reg1: entered allmulticast mode
[  671.265829][T21689] input: syz0 as /devices/virtual/input/input25
[  672.379903][T21735] hsr_slave_0: left promiscuous mode
[  672.431398][T21735] hsr_slave_1: left promiscuous mode
[  673.147869][   T37] kauditd_printk_skb: 3 callbacks suppressed
[  673.147886][   T37] audit: type=1326 audit(672.916:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21768 comm="syz.0.7197" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x0
[  674.254781][ T5887] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  674.419908][ T5887] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  674.419939][ T5887] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  674.423410][ T5887] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  674.423438][ T5887] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  674.423456][ T5887] usb 5-1: Product: syz
[  674.423469][ T5887] usb 5-1: Manufacturer: syz
[  674.423483][ T5887] usb 5-1: SerialNumber: syz
[  674.432504][ T5887] usb 5-1: config 0 descriptor??
[  674.445108][T21812] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  674.445279][T21812] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  674.684298][T21812] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  674.684428][T21812] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  674.826619][T21847] netlink: 'syz.0.7237': attribute type 29 has an invalid length.
[  674.828120][T21847] netlink: 'syz.0.7237': attribute type 29 has an invalid length.
[  674.832521][T21847] netlink: 500 bytes leftover after parsing attributes in process `syz.0.7237'.
[  675.108227][ T5887] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  675.313101][T21871] pimreg: entered allmulticast mode
[  675.325892][T21871] pimreg: left allmulticast mode
[  675.711027][ T5887] dm9601 5-1:0.0 (unnamed net_device) (uninitialized): Error reading MODE_CTRL
[  675.728351][ T5887] usb 5-1: USB disconnect, device number 42
[  677.617496][T21971] tls_set_device_offload: netdev not found
[  678.184089][T22001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7309'.
[  680.215147][   T44] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[  680.365964][   T44] usb 4-1: Using ep0 maxpacket: 8
[  680.372692][   T44] usb 4-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  680.372721][   T44] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  680.372740][   T44] usb 4-1: Product: syz
[  680.372754][   T44] usb 4-1: Manufacturer: syz
[  680.372768][   T44] usb 4-1: SerialNumber: syz
[  680.390204][   T44] usb 4-1: config 0 descriptor??
[  680.398871][   T44] gspca_main: sq930x-2.14.0 probing 2770:930c
[  680.836459][T22109] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  681.207743][T22125] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7368'.
[  681.444743][   T44] gspca_sq930x: reg_w 0105 0f00 failed -71
[  681.675060][   T44] gspca_sq930x: Sensor ov9630 not yet treated
[  681.675165][   T44] sq930x 4-1:0.0: probe with driver sq930x failed with error -22
[  681.678373][   T44] usb 4-1: USB disconnect, device number 41
[  682.407558][T22180] IPVS: Scheduler module ip_vs_ not found
[  683.241160][    T9] hid_parser_main: 5 callbacks suppressed
[  683.241181][    T9] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[  683.326387][    T9] hid-generic 0000:0000:0000.0025: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  683.624601][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  683.624937][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  683.626064][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  683.627185][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  683.628341][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  683.744589][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  685.540711][T22272] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  685.583493][T22277] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  685.965882][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  685.965952][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  686.776613][T22300] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7446'.
[  686.776635][T22300] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7446'.
[  686.776661][T22300] netlink: 'syz.3.7446': attribute type 7 has an invalid length.
[  686.829638][T22300] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7446'.
[  686.829660][T22300] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7446'.
[  686.829684][T22300] netlink: 'syz.3.7446': attribute type 7 has an invalid length.
[  686.927394][T22306] netlink: 'syz.4.7449': attribute type 1 has an invalid length.
[  686.991720][T22306] 8021q: adding VLAN 0 to HW filter on device bond1
[  687.129423][T22311] bond1: (slave ip6erspan0): making interface the new active one
[  687.133227][T22311] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  687.592047][T22340] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7464'.
[  687.702165][T22340] vxlan0: entered promiscuous mode
[  689.033925][T22398] syz.4.7491 (22398) used greatest stack depth: 15496 bytes left
[  689.152696][T22415] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7501'.
[  689.717409][T22441] netlink: 36 bytes leftover after parsing attributes in process `syz.4.7513'.
[  690.268842][T22465] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7526'.
[  690.268866][T22465] tipc: Started in network mode
[  690.268881][T22465] tipc: Node identity 7, cluster identity 4711
[  690.268891][T22465] tipc: Node number set to 7
[  690.831432][T22483] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7533'.
[  690.850808][T22483] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7533'.
[  692.491804][T22560] netlink: 51 bytes leftover after parsing attributes in process `syz.0.7567'.
[  692.988594][   T37] audit: type=1326 audit(692.756:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22574 comm="syz.0.7576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x7fc00000
[  693.279123][T22596] binder: 22595:22596 unknown command 0
[  693.279144][T22596] binder: 22595:22596 ioctl c0306201 200000000640 returned -22
[  693.571181][   T37] audit: type=1326 audit(693.336:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22574 comm="syz.0.7576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe24e5feec9 code=0x7fc00000
[  693.906286][T22617] Invalid ELF header magic: != ELF
[  694.154765][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  694.154801][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  694.292579][T22633] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  694.293737][T22630] IPVS: stopping master sync thread 22633 ...
[  694.472538][T22638] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  694.493013][T22638] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  694.500809][T22638] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  694.506444][T22638] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  694.507132][T22638] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  694.779991][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  694.780025][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  695.273309][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  695.273341][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  695.444798][   T10] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  695.583328][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  695.583363][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  695.624743][   T10] usb 4-1: Using ep0 maxpacket: 16
[  695.628405][   T10] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  695.628464][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  695.628490][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  695.628511][   T10] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  695.628612][   T10] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  695.630083][   T10] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  695.630107][   T10] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  695.630126][   T10] usb 4-1: Manufacturer: syz
[  695.665303][   T10] usb 4-1: config 0 descriptor??
[  696.065426][   T10] rc_core: IR keymap rc-hauppauge not found
[  696.065446][   T10] Registered IR keymap rc-empty
[  696.066179][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.100014][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.121347][   T10] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  696.140363][   T10] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input26
[  696.172206][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.189553][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.204827][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.224753][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.245473][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.264816][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.284738][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.306328][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.324936][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.344756][   T10] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  696.360602][T22719] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  696.383542][   T10] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  696.383575][   T10] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  696.425377][   T10] usb 4-1: USB disconnect, device number 42
[  696.575469][ T5828] Bluetooth: hci3: command tx timeout
[  696.945716][   T13] dummy0: left allmulticast mode
[  696.946170][   T13] bridge0: port 3(dummy0) entered disabled state
[  697.048381][   T13] bridge_slave_1: left allmulticast mode
[  697.048410][   T13] bridge_slave_1: left promiscuous mode
[  697.048684][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  697.155929][T22744] vxcan1: tx drop: invalid da for name 0x0000000000000001
[  697.159520][   T13] bridge_slave_0: left allmulticast mode
[  697.159543][   T13] bridge_slave_0: left promiscuous mode
[  697.175110][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  697.546903][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805a27c400: rx timeout, send abort
[  698.049329][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805a27c400: abort rx timeout. Force session deactivation
[  698.515373][   T13] bond1 (unregistering): (slave ip6erspan0): Releasing active interface
[  698.655265][ T5828] Bluetooth: hci3: command tx timeout
[  699.529236][T22848] 9pnet: p9_errstr2errno: server reported unknown error 00000004,group_id=
[  700.029911][   T37] audit: type=1326 audit(699.796:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22871 comm="syz.0.7711" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x0
[  700.759019][ T5828] Bluetooth: hci3: command tx timeout
[  701.990736][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  702.070104][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  702.120821][   T13] bond0 (unregistering): Released all slaves
[  702.824961][ T5828] Bluetooth: hci3: command tx timeout
[  703.414011][   T13] bond1 (unregistering): Released all slaves
[  703.514246][T22635] chnl_net:caif_netlink_parms(): no params data found
[  703.843421][   T13] : left promiscuous mode
[  704.667520][   T13] IPVS: stopping master sync thread 10935 ...
[  705.347648][T23109] netlink: 'syz.0.7822': attribute type 4 has an invalid length.
[  705.414024][T23111] netlink: 'syz.0.7822': attribute type 4 has an invalid length.
[  705.495273][T22635] bridge0: port 1(bridge_slave_0) entered blocking state
[  705.495413][T22635] bridge0: port 1(bridge_slave_0) entered disabled state
[  705.495646][T22635] bridge_slave_0: entered allmulticast mode
[  705.498335][T22635] bridge_slave_0: entered promiscuous mode
[  705.600113][T22635] bridge0: port 2(bridge_slave_1) entered blocking state
[  705.600243][T22635] bridge0: port 2(bridge_slave_1) entered disabled state
[  705.600457][T22635] bridge_slave_1: entered allmulticast mode
[  705.603061][T22635] bridge_slave_1: entered promiscuous mode
[  706.486111][T22635] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  706.500263][T22635] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  706.577815][T23161] sg_write: process 2454 (syz.3.7847) changed security contexts after opening file descriptor, this is not allowed.
[  706.647230][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  706.647259][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  706.688234][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  706.688261][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  706.934294][   T13] veth1_macvtap: left promiscuous mode
[  706.934399][   T13] veth0_macvtap: left promiscuous mode
[  706.941900][   T13] veth1_vlan: left promiscuous mode
[  706.942077][   T13] veth0_vlan: left promiscuous mode
[  707.653518][   T13] pimreg (unregistering): left allmulticast mode
[  707.745675][   T13] pim6reg527 (unregistering): left allmulticast mode
[  708.290260][T23232] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7879'.
[  711.496987][   T13] team0 (unregistering): Port device team_slave_1 removed
[  711.911959][   T13] team0 (unregistering): Port device team_slave_0 removed
[  716.379721][T22635] team0: Port device team_slave_0 added
[  716.403316][T22635] team0: Port device team_slave_1 added
[  716.801773][T22635] batman_adv: batadv0: Adding interface: batadv_slave_0
[  716.801790][T22635] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  716.801814][T22635] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  716.972123][T22635] batman_adv: batadv0: Adding interface: batadv_slave_1
[  716.972141][T22635] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  716.972165][T22635] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  717.377016][T22635] hsr_slave_0: entered promiscuous mode
[  717.378311][T22635] hsr_slave_1: entered promiscuous mode
[  717.379183][T22635] debugfs: 'hsr0' already exists in 'hsr'
[  717.379206][T22635] Cannot create hsr debugfs directory
[  718.125458][   T13] IPVS: stop unused estimator thread 0...
[  718.522890][T22635] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  718.578979][T22635] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  718.607391][T22635] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  718.695032][T22635] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  719.417770][T22635] 8021q: adding VLAN 0 to HW filter on device bond0
[  719.501538][T22635] 8021q: adding VLAN 0 to HW filter on device team0
[  719.580312][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  719.580512][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  719.582891][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  719.583033][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  720.499449][T22635] 8021q: adding VLAN 0 to HW filter on device batadv0
[  721.570796][T22635] veth0_vlan: entered promiscuous mode
[  721.597737][T22635] veth1_vlan: entered promiscuous mode
[  721.668452][T22635] veth0_macvtap: entered promiscuous mode
[  721.673367][T22635] veth1_macvtap: entered promiscuous mode
[  721.798563][T22635] batman_adv: batadv0: Interface activated: batadv_slave_0
[  721.820792][T22635] batman_adv: batadv0: Interface activated: batadv_slave_1
[  721.855534][ T3396] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  721.857541][ T3396] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  721.858441][ T3396] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  721.891601][ T3396] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  722.146229][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  722.146247][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  722.264314][  T811] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  722.264334][  T811] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  722.854857][   T10] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  723.006463][   T10] usb 7-1: Using ep0 maxpacket: 8
[  723.011653][   T10] usb 7-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  723.011683][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  723.011703][   T10] usb 7-1: Product: syz
[  723.011718][   T10] usb 7-1: Manufacturer: syz
[  723.011733][   T10] usb 7-1: SerialNumber: syz
[  723.038030][   T10] usb 7-1: config 0 descriptor??
[  723.076558][   T10] gspca_main: se401-2.14.0 probing 047d:5003
[  723.461136][   T10] gspca_se401: Frame size: 0x2 1/4th janggu
[  723.461156][   T10] gspca_se401: Frame size: 0x127 bayer
[  723.461167][   T10] gspca_se401: Frame size: 256x0 bayer
[  723.461177][   T10] gspca_se401: Frame size: 0x0 1/16th janggu
[  723.461190][   T10] gspca_se401: Frame size: 0x4 bayer
[  723.671222][   T10] input: se401 as /devices/platform/dummy_hcd.6/usb7/7-1/input/input27
[  723.750612][   T10] usb 7-1: USB disconnect, device number 2
[  724.091706][T23926] overlayfs: failed to clone upperpath
[  725.525943][T23993] netlink: 'syz.3.8243': attribute type 4 has an invalid length.
[  725.577184][T24002] netlink: 'syz.3.8243': attribute type 4 has an invalid length.
[  728.673546][T24153] netlink: 'syz.6.8317': attribute type 21 has an invalid length.
[  728.673659][T24153] netlink: 156 bytes leftover after parsing attributes in process `syz.6.8317'.
[  728.772489][T24161] netlink: 'syz.6.8317': attribute type 21 has an invalid length.
[  728.772511][T24161] netlink: 6 bytes leftover after parsing attributes in process `syz.6.8317'.
[  729.016943][T24171] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8324'.
[  729.273083][T24183] syzkaller1: entered promiscuous mode
[  729.273111][T24183] syzkaller1: entered allmulticast mode
[  732.194991][ T5822] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  732.348741][ T5822] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  732.348784][ T5822] usb 4-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  732.348808][ T5822] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  732.392754][ T5822] usb 4-1: config 0 descriptor??
[  732.613466][ T5822] usbhid 4-1:0.0: can't add hid device: -71
[  732.613605][ T5822] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  732.645676][ T5822] usb 4-1: USB disconnect, device number 43
[  735.065849][T24404] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8430'.
[  735.756655][   T37] audit: type=1326 audit(735.526:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.756965][   T37] audit: type=1326 audit(735.526:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.757219][   T37] audit: type=1326 audit(735.526:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.757462][   T37] audit: type=1326 audit(735.526:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.763431][   T37] audit: type=1326 audit(735.526:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.763481][   T37] audit: type=1326 audit(735.526:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.763520][   T37] audit: type=1326 audit(735.526:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.763559][   T37] audit: type=1326 audit(735.526:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.763597][   T37] audit: type=1326 audit(735.526:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  735.763636][   T37] audit: type=1326 audit(735.526:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=24399 comm="syz.3.8429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c24dceec9 code=0x7fc00000
[  737.022337][T24473] overlayfs: failed to clone upperpath
[  740.022777][T24583] evm: overlay not supported
[  741.945862][T24659] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8548'.
[  742.445532][T24689] netlink: 'syz.6.8562': attribute type 1 has an invalid length.
[  742.492545][T24689] 8021q: adding VLAN 0 to HW filter on device bond1
[  742.660729][T24689] bond1: (slave veth3): Enslaving as an active interface with a down link
[  742.738380][T24695] bond1: (slave veth0_to_bond): making interface the new active one
[  742.755635][T24695] veth0_to_bond: entered promiscuous mode
[  742.756140][T24695] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  747.094602][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  747.388265][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  747.388904][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  747.564598][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  749.165065][ T5956] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  749.354970][ T5956] usb 7-1: Using ep0 maxpacket: 8
[  749.361183][ T5956] usb 7-1: New USB device found, idVendor=0c45, idProduct=6128, bcdDevice=c4.6d
[  749.361212][ T5956] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  749.361231][ T5956] usb 7-1: Product: syz
[  749.361245][ T5956] usb 7-1: Manufacturer: syz
[  749.361259][ T5956] usb 7-1: SerialNumber: syz
[  749.402361][ T5956] usb 7-1: config 0 descriptor??
[  749.413171][ T5956] gspca_main: sonixj-2.14.0 probing 0c45:6128
[  750.374099][T22638] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  750.389067][T22638] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  750.391606][T22638] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  750.405068][T22638] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  750.420601][T22638] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  750.651245][ T5956] input: sonixj as /devices/platform/dummy_hcd.6/usb7/7-1/input/input28
[  750.860473][T22688] usb 7-1: USB disconnect, device number 3
[  751.215689][T24971] chnl_net:caif_netlink_parms(): no params data found
[  751.761128][T24971] bridge0: port 1(bridge_slave_0) entered blocking state
[  751.761987][T24971] bridge0: port 1(bridge_slave_0) entered disabled state
[  751.762206][T24971] bridge_slave_0: entered allmulticast mode
[  751.775378][T24971] bridge_slave_0: entered promiscuous mode
[  751.778557][T24971] bridge0: port 2(bridge_slave_1) entered blocking state
[  751.778680][T24971] bridge0: port 2(bridge_slave_1) entered disabled state
[  751.778856][T24971] bridge_slave_1: entered allmulticast mode
[  751.786775][T24971] bridge_slave_1: entered promiscuous mode
[  751.814980][    T9] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[  751.969965][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  751.970024][    T9] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  751.970071][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[  751.970097][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  751.970118][    T9] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  751.972894][    T9] usb 7-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  751.972921][    T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  751.972940][    T9] usb 7-1: Product: syz
[  751.972954][    T9] usb 7-1: Manufacturer: syz
[  751.972968][    T9] usb 7-1: SerialNumber: syz
[  752.066993][    T9] usb 7-1: config 0 descriptor??
[  752.200491][T24971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  752.227781][T24971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  752.282258][    T9] radio-si470x 7-1:0.0: DeviceID=0x0000 ChipID=0x0000
[  752.282284][    T9] radio-si470x 7-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[  752.484722][    T9] radio-si470x 7-1:0.0: software version 0, hardware version 0
[  752.484748][    T9] radio-si470x 7-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0.
[  752.484769][    T9] radio-si470x 7-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[  752.496808][ T5828] Bluetooth: hci4: command tx timeout
[  752.598848][T24971] team0: Port device team_slave_0 added
[  752.607544][T24971] team0: Port device team_slave_1 added
[  752.686191][    T9] radio-si470x 7-1:0.0: submitting int urb failed (-90)
[  752.937416][T24971] batman_adv: batadv0: Adding interface: batadv_slave_0
[  752.937440][T24971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  752.937464][T24971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  752.945527][T24971] batman_adv: batadv0: Adding interface: batadv_slave_1
[  752.945543][T24971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  752.945568][T24971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  753.494144][T24971] hsr_slave_0: entered promiscuous mode
[  753.523555][T24971] hsr_slave_1: entered promiscuous mode
[  753.538648][T24971] debugfs: 'hsr0' already exists in 'hsr'
[  753.538674][T24971] Cannot create hsr debugfs directory
[  753.670575][   T37] kauditd_printk_skb: 15 callbacks suppressed
[  753.670592][   T37] audit: type=1326 audit(753.436:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.703588][    T9] radio-si470x 7-1:0.0: si470x_set_report: usb_control_msg returned -71
[  753.703903][    T9] radio-si470x 7-1:0.0: probe with driver radio-si470x failed with error -22
[  753.713760][   T37] audit: type=1326 audit(753.466:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.713810][   T37] audit: type=1326 audit(753.466:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.713849][   T37] audit: type=1326 audit(753.466:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.713886][   T37] audit: type=1326 audit(753.466:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.713923][   T37] audit: type=1326 audit(753.476:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.725771][   T37] audit: type=1326 audit(753.486:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.725822][   T37] audit: type=1326 audit(753.486:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.725862][   T37] audit: type=1326 audit(753.486:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.725900][   T37] audit: type=1326 audit(753.486:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=25093 comm="syz.0.8749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe24e5feec9 code=0x7ffc0000
[  753.937162][    T9] usb 7-1: USB disconnect, device number 4
[  754.091266][T25106] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8754'.
[  754.575181][ T5828] Bluetooth: hci4: command tx timeout
[  754.660646][T25129] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  755.743328][T24971] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  756.012126][T24971] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  756.092023][T24971] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  756.269207][T24971] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  756.664733][ T5828] Bluetooth: hci4: command tx timeout
[  756.665537][   T44] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  756.684219][T24971] 8021q: adding VLAN 0 to HW filter on device bond0
[  756.836706][   T44] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  756.836753][   T44] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  756.836887][   T44] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  756.840304][   T44] usb 7-1: config 0 descriptor??
[  756.844004][   T44] pwc: Askey VC010 type 2 USB webcam detected.
[  756.911579][T24971] 8021q: adding VLAN 0 to HW filter on device team0
[  757.008443][  T811] bridge0: port 1(bridge_slave_0) entered blocking state
[  757.012553][  T811] bridge0: port 1(bridge_slave_0) entered forwarding state
[  757.127650][  T811] bridge0: port 2(bridge_slave_1) entered blocking state
[  757.127746][  T811] bridge0: port 2(bridge_slave_1) entered forwarding state
[  757.249428][   T44] pwc: recv_control_msg error -32 req 02 val 2b00
[  757.297877][   T44] pwc: recv_control_msg error -32 req 02 val 2700
[  757.299242][   T44] pwc: recv_control_msg error -32 req 02 val 2c00
[  757.300106][   T44] pwc: recv_control_msg error -32 req 04 val 1000
[  757.339087][   T44] pwc: recv_control_msg error -32 req 04 val 1300
[  757.340207][   T44] pwc: recv_control_msg error -32 req 04 val 1400
[  757.544063][   T44] pwc: recv_control_msg error -71 req 02 val 2100
[  757.544738][   T44] pwc: recv_control_msg error -71 req 04 val 1500
[  757.545213][   T44] pwc: recv_control_msg error -71 req 02 val 2500
[  757.545668][   T44] pwc: recv_control_msg error -71 req 02 val 2400
[  757.546124][   T44] pwc: recv_control_msg error -71 req 02 val 2600
[  757.546579][   T44] pwc: recv_control_msg error -71 req 02 val 2900
[  757.548078][   T44] pwc: recv_control_msg error -71 req 02 val 2800
[  757.605744][   T44] pwc: recv_control_msg error -71 req 04 val 1100
[  757.608772][   T44] pwc: recv_control_msg error -71 req 04 val 1200
[  757.674905][ T3345] veth0_to_bond: left promiscuous mode
[  757.725992][   T44] pwc: Registered as video103.
[  757.737990][   T44] input: PWC snapshot button as /devices/platform/dummy_hcd.6/usb7/7-1/input/input29
[  757.808281][   T44] usb 7-1: USB disconnect, device number 5
[  758.328768][T24971] 8021q: adding VLAN 0 to HW filter on device batadv0
[  758.736978][ T5828] Bluetooth: hci4: command tx timeout
[  759.201459][T24971] veth0_vlan: entered promiscuous mode
[  759.228212][T24971] veth1_vlan: entered promiscuous mode
[  759.349225][T24971] veth0_macvtap: entered promiscuous mode
[  759.383402][T24971] veth1_macvtap: entered promiscuous mode
[  759.418278][T24971] batman_adv: batadv0: Interface activated: batadv_slave_0
[  759.457587][T24971] batman_adv: batadv0: Interface activated: batadv_slave_1
[  759.508581][  T147] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  759.511080][  T147] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  759.511312][  T147] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  759.514299][  T147] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  759.994635][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  759.994834][ T1507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  759.994845][ T1507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  760.120700][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  760.120721][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  760.334871][T25197] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[  760.493041][T25197] usb 7-1: config 0 interface 0 altsetting 32 endpoint 0x81 has invalid wMaxPacketSize 0
[  760.493070][T25197] usb 7-1: config 0 interface 0 has no altsetting 0
[  760.493103][T25197] usb 7-1: New USB device found, idVendor=054c, idProduct=0ba0, bcdDevice= 0.00
[  760.493126][T25197] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  760.527022][T25197] usb 7-1: config 0 descriptor??
[  760.973520][T25197] playstation 0003:054C:0BA0.0026: unknown main item tag 0x0
[  760.973555][T25197] playstation 0003:054C:0BA0.0026: unknown main item tag 0x0
[  760.973582][T25197] playstation 0003:054C:0BA0.0026: unknown main item tag 0x0
[  760.973608][T25197] playstation 0003:054C:0BA0.0026: unknown main item tag 0x0
[  760.973633][T25197] playstation 0003:054C:0BA0.0026: unknown main item tag 0x0
[  760.973659][T25197] playstation 0003:054C:0BA0.0026: unknown main item tag 0x0
[  760.994204][T25197] playstation 0003:054C:0BA0.0026: hidraw0: USB HID v0.00 Device [HID 054c:0ba0] on usb-dummy_hcd.6-1/input0
[  761.158052][T25197] playstation 0003:054C:0BA0.0026: Failed to retrieve feature with reportID 18: -71
[  761.158080][T25197] playstation 0003:054C:0BA0.0026: Failed to retrieve DualShock4 pairing info: -71
[  761.158129][T25197] playstation 0003:054C:0BA0.0026: Failed to get MAC address from DualShock4
[  761.158144][T25197] playstation 0003:054C:0BA0.0026: Failed to create dualshock4.
[  761.163039][T25197] playstation 0003:054C:0BA0.0026: probe with driver playstation failed with error -71
[  761.245047][T25197] usb 7-1: USB disconnect, device number 6
[  761.534745][T22688] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  761.684725][T22688] usb 8-1: Using ep0 maxpacket: 16
[  761.687132][T22688] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  761.687157][T22688] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  761.690150][T22688] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  761.690178][T22688] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  761.690198][T22688] usb 8-1: Product: syz
[  761.690212][T22688] usb 8-1: Manufacturer: syz
[  761.690226][T22688] usb 8-1: SerialNumber: syz
[  761.971873][T22688] usb 8-1: 0:2 : does not exist
[  761.971960][T22688] usb 8-1: usbmixer: too many channels (33) in unit 5
[  762.016061][T22688] usb 8-1: USB disconnect, device number 2
[  762.911611][T22635] overlayfs: failed lookup in lower (newroot/71, name='file0', err=-40): overlapping layers
[  762.912144][T22635] overlayfs: failed lookup in lower (newroot/71, name='file0', err=-40): overlapping layers
[  764.694201][   T37] kauditd_printk_skb: 9 callbacks suppressed
[  764.694220][   T37] audit: type=1400 audit(764.456:360): lsm=SMACK fn=smack_inet_conn_request action=denied subject="?" object="_" requested=w pid=25452 comm="syz.7.8912" saddr=172.20.20.187 src=20002 daddr=172.20.20.187 dest=20002 netif=wpan0
[  764.712135][   T37] audit: type=1400 audit(764.476:361): lsm=SMACK fn=smack_inet_conn_request action=denied subject="?" object="_" requested=w pid=25452 comm="syz.7.8912" saddr=100.1.1.1 daddr=172.20.20.170 dest=20002 netif=wpan0
[  764.729236][   T37] audit: type=1400 audit(764.486:362): lsm=SMACK fn=smack_inet_conn_request action=denied subject="?" object="_" requested=w pid=25452 comm="syz.7.8912" saddr=172.30.1.8 src=17 daddr=172.20.20.170 dest=20002 netif=wpan0
[  765.175886][T22638] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  765.198575][T22638] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  765.203077][T22638] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  765.214407][T22638] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  765.238632][T22638] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  765.516073][T25477] overlayfs: failed to clone upperpath
[  765.859334][T25468] chnl_net:caif_netlink_parms(): no params data found
[  766.668503][T25538] overlayfs: failed to clone upperpath
[  766.726358][T25468] bridge0: port 1(bridge_slave_0) entered blocking state
[  766.728077][T25468] bridge0: port 1(bridge_slave_0) entered disabled state
[  766.728315][T25468] bridge_slave_0: entered allmulticast mode
[  766.732344][T25468] bridge_slave_0: entered promiscuous mode
[  766.740600][T25468] bridge0: port 2(bridge_slave_1) entered blocking state
[  766.742016][T25468] bridge0: port 2(bridge_slave_1) entered disabled state
[  766.742222][T25468] bridge_slave_1: entered allmulticast mode
[  766.750902][T25468] bridge_slave_1: entered promiscuous mode
[  767.014613][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  767.161949][T25468] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  767.172340][T25468] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  767.316082][T22638] Bluetooth: hci3: command tx timeout
[  767.542553][T25468] team0: Port device team_slave_0 added
[  767.573640][T25468] team0: Port device team_slave_1 added
[  768.279690][T25468] batman_adv: batadv0: Adding interface: batadv_slave_0
[  768.279707][T25468] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  768.279730][T25468] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  768.336882][T25468] batman_adv: batadv0: Adding interface: batadv_slave_1
[  768.336898][T25468] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  768.336922][T25468] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  768.770537][T25468] hsr_slave_0: entered promiscuous mode
[  768.795525][T25468] hsr_slave_1: entered promiscuous mode
[  768.796419][T25468] debugfs: 'hsr0' already exists in 'hsr'
[  768.796442][T25468] Cannot create hsr debugfs directory
[  769.375028][T22638] Bluetooth: hci3: command tx timeout
[  769.547577][T25620] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8985'.
[  769.549101][T25620] bridge_slave_1: left allmulticast mode
[  769.549127][T25620] bridge_slave_1: left promiscuous mode
[  769.549403][T25620] bridge0: port 2(bridge_slave_1) entered disabled state
[  769.636659][T25620] bridge_slave_0: left allmulticast mode
[  769.636686][T25620] bridge_slave_0: left promiscuous mode
[  769.636939][T25620] bridge0: port 1(bridge_slave_0) entered disabled state
[  771.184214][T25468] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  771.252123][T25468] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  771.292201][T25468] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  771.334329][T25468] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  771.455646][T22638] Bluetooth: hci3: command tx timeout
[  772.087922][T25468] 8021q: adding VLAN 0 to HW filter on device bond0
[  772.193817][T25468] 8021q: adding VLAN 0 to HW filter on device team0
[  772.243196][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  772.243323][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  772.316265][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  772.316388][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  773.252192][T25468] 8021q: adding VLAN 0 to HW filter on device batadv0
[  773.535333][T22638] Bluetooth: hci3: command tx timeout
[  773.810332][T25759] binder: 25758:25759 ioctl c0306201 200000000080 returned -14
[  774.201197][T25468] veth0_vlan: entered promiscuous mode
[  774.245407][T25468] veth1_vlan: entered promiscuous mode
[  774.319818][T25468] veth0_macvtap: entered promiscuous mode
[  774.335140][T25468] veth1_macvtap: entered promiscuous mode
[  774.370639][T25468] batman_adv: batadv0: Interface activated: batadv_slave_0
[  774.422198][T25468] batman_adv: batadv0: Interface activated: batadv_slave_1
[  774.466042][T10644] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  774.490102][T10644] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  774.505175][T10644] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  774.515025][T10644] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  775.139820][ T3345] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  775.139841][ T3345] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  775.331416][ T3345] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  775.331430][ T3345] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  778.281095][T25880] overlayfs: failed to clone upperpath
[  785.137269][T26130] netlink: 12 bytes leftover after parsing attributes in process `syz.8.9204'.
[  785.178538][T26130] macvlan2: entered promiscuous mode
[  785.178564][T26130] macvlan2: entered allmulticast mode
[  786.140590][    T9] IPVS: starting estimator thread 0...
[  786.265677][T26184] IPVS: using max 9 ests per chain, 21600 per kthread
[  786.895448][    T9] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  787.046129][    T9] usb 9-1: Using ep0 maxpacket: 32
[  787.050023][    T9] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  787.050056][    T9] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  787.050083][    T9] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  787.050125][    T9] usb 9-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  787.050149][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  787.083232][T26222] overlayfs: failed to clone upperpath
[  787.127707][    T9] usb 9-1: config 0 descriptor??
[  787.128872][T26202] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  787.131812][    T9] hub 9-1:0.0: USB hub found
[  787.336380][    T9] hub 9-1:0.0: 2 ports detected
[  787.618396][T26241] overlayfs: failed to clone upperpath
[  788.738577][ T5887] usb 9-1: reset high-speed USB device number 2 using dummy_hcd
[  789.563407][ T5887] hub 9-1:0.0: set hub depth failed
[  789.570243][    T9] usb 9-1: USB disconnect, device number 2
[  790.275163][ T4540] kworker/u8:16 (4540) used greatest stack depth: 12904 bytes left
[  791.565506][T26372] netlink: 24 bytes leftover after parsing attributes in process `syz.7.9314'.
[  791.737660][T26372] netlink: 4 bytes leftover after parsing attributes in process `syz.7.9314'.
[  794.125000][   T37] audit: type=1326 audit(793.886:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26438 comm="syz.7.9341" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x0
[  796.757742][T26511] overlayfs: upper fs does not support file handles, falling back to index=off.
[  802.109717][T26633] overlayfs: failed to clone upperpath
[  802.704825][ T5822] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  802.856900][ T5822] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  802.856958][ T5822] usb 9-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  802.856981][ T5822] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  802.907655][ T5822] usb 9-1: config 0 descriptor??
[  802.912999][ T5822] pwc: Askey VC010 type 2 USB webcam detected.
[  803.331492][ T5822] pwc: recv_control_msg error -32 req 02 val 2b00
[  803.349972][ T5822] pwc: recv_control_msg error -32 req 02 val 2700
[  803.363185][ T5822] pwc: recv_control_msg error -32 req 02 val 2c00
[  803.373576][ T5822] pwc: recv_control_msg error -32 req 04 val 1000
[  803.382326][ T5822] pwc: recv_control_msg error -32 req 04 val 1300
[  803.383656][ T5822] pwc: recv_control_msg error -32 req 04 val 1400
[  803.384324][ T5822] pwc: recv_control_msg error -32 req 02 val 2000
[  803.608063][ T5822] pwc: recv_control_msg error -71 req 04 val 1500
[  803.610525][ T5822] pwc: recv_control_msg error -71 req 02 val 2500
[  803.611036][ T5822] pwc: recv_control_msg error -71 req 02 val 2400
[  803.611496][ T5822] pwc: recv_control_msg error -71 req 02 val 2600
[  803.611949][ T5822] pwc: recv_control_msg error -71 req 02 val 2900
[  803.612419][ T5822] pwc: recv_control_msg error -71 req 02 val 2800
[  803.613078][ T5822] pwc: recv_control_msg error -71 req 04 val 1100
[  803.613538][ T5822] pwc: recv_control_msg error -71 req 04 val 1200
[  803.676276][ T5822] pwc: Registered as video103.
[  803.679418][ T5822] input: PWC snapshot button as /devices/platform/dummy_hcd.8/usb9/9-1/input/input30
[  803.705922][ T5822] usb 9-1: USB disconnect, device number 3
[  807.139535][    T9] usb 8-1: new low-speed USB device number 3 using dummy_hcd
[  807.298322][    T9] usb 8-1: config 1 interface 0 has no altsetting 0
[  807.303011][    T9] usb 8-1: string descriptor 0 read error: -22
[  807.303153][    T9] usb 8-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.40
[  807.303176][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  807.586914][    T9] usbhid 8-1:1.0: can't add hid device: -71
[  807.587037][    T9] usbhid 8-1:1.0: probe with driver usbhid failed with error -71
[  807.610473][    T9] usb 8-1: USB disconnect, device number 3
[  808.865749][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  808.865818][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  811.931098][T26939] binder: 26934:26939 ioctl c0306201 200000000000 returned -14
[  812.506434][T26935] binder: 26934:26935 ioctl c0306201 200000000680 returned -14
[  815.352914][T26991] overlayfs: failed to resolve './file1': -2
[  831.162416][   T37] audit: type=1800 audit(830.856:364): pid=27287 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.8.9710" name="/" dev="9p" ino=2 res=0 errno=0
[  831.870554][T27315] netlink: 'syz.8.9717': attribute type 2 has an invalid length.
[  837.091199][T27398] netlink: 4 bytes leftover after parsing attributes in process `syz.8.9753'.
[  840.081049][T27444] ptrace attach of "./syz-executor exec"[25468] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
[  867.260659][T27732] delete_channel: no stack
[  870.419687][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  870.419758][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  878.355770][T22638] Bluetooth: hci4: command 0x0406 tx timeout
[  883.009048][   T44] usb 9-1: new full-speed USB device number 4 using dummy_hcd
[  883.605531][   T44] usb 9-1: unable to read config index 0 descriptor/start: -71
[  883.605669][   T44] usb 9-1: can't read configurations, error -71
[  886.076768][T27910] Bluetooth: MGMT ver 1.23
[  887.844066][ T5828] Bluetooth: hci3: command 0x0406 tx timeout
[  903.794575][T28150] lo speed is unknown, defaulting to 1000
[  903.796585][T28150] lo speed is unknown, defaulting to 1000
[  903.876980][T28150] lo speed is unknown, defaulting to 1000
[  904.220306][T28150] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  904.276126][T28150] lo speed is unknown, defaulting to 1000
[  904.281442][T28150] lo speed is unknown, defaulting to 1000
[  904.284230][T28150] lo speed is unknown, defaulting to 1000
[  904.286958][T28150] lo speed is unknown, defaulting to 1000
[  904.289799][T28150] lo speed is unknown, defaulting to 1000
[  904.292542][T28150] lo speed is unknown, defaulting to 1000
[  904.295395][T28150] lo speed is unknown, defaulting to 1000
[  906.712783][T28172] kvm: kvm [28170]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x800
[  907.146907][ T5887] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  907.526474][T28203] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10040'.
[  907.534746][T28203] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10040'.
[  908.397108][ T5887] usb 8-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  908.397142][ T5887] usb 8-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  908.397168][ T5887] usb 8-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  908.397210][ T5887] usb 8-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  908.397232][ T5887] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  908.406588][T28187] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  909.966850][ T5887] aiptek 8-1:17.0: Aiptek using 400 ms programming speed
[  909.970218][ T5887] input: Aiptek as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:17.0/input/input31
[  911.704473][    C1] vkms_vblank_simulate: vblank timer overrun
[  911.973540][    C1] vkms_vblank_simulate: vblank timer overrun
[  911.981649][   T10] usb 8-1: USB disconnect, device number 4
[  912.579179][    C1] vkms_vblank_simulate: vblank timer overrun
[  912.754084][    C1] vkms_vblank_simulate: vblank timer overrun
[  913.087097][    C1] vkms_vblank_simulate: vblank timer overrun
[  914.024595][    C1] vkms_vblank_simulate: vblank timer overrun
[  914.205417][    C1] vkms_vblank_simulate: vblank timer overrun
[  914.586982][    C1] vkms_vblank_simulate: vblank timer overrun
[  916.727585][    C1] vkms_vblank_simulate: vblank timer overrun
[  917.355354][    C1] vkms_vblank_simulate: vblank timer overrun
[  927.414989][   T44] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  927.564951][   T44] usb 9-1: Using ep0 maxpacket: 32
[  927.567502][   T44] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[  927.567528][   T44] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  928.233204][   T44] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  928.233236][   T44] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  928.233256][   T44] usb 9-1: Product: syz
[  928.233270][   T44] usb 9-1: Manufacturer: syz
[  928.233285][   T44] usb 9-1: SerialNumber: syz
[  928.407918][   T44] usb 9-1: config 0 descriptor??
[  928.423357][   T44] ldusb 9-1:0.0: Interrupt in endpoint not found
[  928.641090][T28425] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  928.641465][T28425] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  929.420383][   T44] usb 9-1: USB disconnect, device number 6
[  934.015614][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  934.015686][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  938.963021][    C0] vkms_vblank_simulate: vblank timer overrun
[  939.177338][    C0] vkms_vblank_simulate: vblank timer overrun
[  939.239056][    C0] vkms_vblank_simulate: vblank timer overrun
[  939.928063][    C0] vkms_vblank_simulate: vblank timer overrun
[  939.958482][    C0] vkms_vblank_simulate: vblank timer overrun
[  940.550067][    C0] vkms_vblank_simulate: vblank timer overrun
[  940.597613][T25197] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  941.429904][T28551] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10173'.
[  941.484213][    C0] vkms_vblank_simulate: vblank timer overrun
[  941.706627][    C0] vkms_vblank_simulate: vblank timer overrun
[  941.816968][T25197] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  941.817028][T25197] usb 9-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  941.817052][T25197] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  941.833232][T25197] usb 9-1: config 0 descriptor??
[  941.851139][T25197] pwc: Askey VC010 type 2 USB webcam detected.
[  942.021710][    C0] vkms_vblank_simulate: vblank timer overrun
[  942.521070][T25197] pwc: recv_control_msg error -32 req 02 val 2b00
[  942.524984][T25197] pwc: recv_control_msg error -32 req 02 val 2700
[  942.526481][T25197] pwc: recv_control_msg error -32 req 02 val 2c00
[  942.527137][T25197] pwc: recv_control_msg error -32 req 04 val 1000
[  942.528258][T25197] pwc: recv_control_msg error -32 req 04 val 1300
[  942.529320][T25197] pwc: recv_control_msg error -32 req 04 val 1400
[  942.530284][T25197] pwc: recv_control_msg error -32 req 02 val 2000
[  942.531414][T25197] pwc: recv_control_msg error -32 req 02 val 2100
[  942.532225][T25197] pwc: recv_control_msg error -32 req 04 val 1500
[  942.533420][T25197] pwc: recv_control_msg error -32 req 02 val 2500
[  942.534078][T25197] pwc: recv_control_msg error -32 req 02 val 2400
[  942.535253][T25197] pwc: recv_control_msg error -32 req 02 val 2600
[  942.538690][T25197] pwc: recv_control_msg error -32 req 02 val 2900
[  942.540921][T25197] pwc: recv_control_msg error -32 req 02 val 2800
[  943.219714][T28571] overlay: Unknown parameter '\'
[  943.363204][    C0] vkms_vblank_simulate: vblank timer overrun
[  943.369044][T25197] pwc: Registered as video103.
[  943.371969][T25197] input: PWC snapshot button as /devices/platform/dummy_hcd.8/usb9/9-1/input/input32
[  943.655521][    T9] usb 9-1: USB disconnect, device number 7
[  945.089025][T28597] netlink: 64 bytes leftover after parsing attributes in process `syz.8.10190'.
[  947.422608][T28620] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  952.121926][    C0] vkms_vblank_simulate: vblank timer overrun
[  954.940143][    C0] vkms_vblank_simulate: vblank timer overrun
[  956.845453][    C0] vkms_vblank_simulate: vblank timer overrun
[  961.589031][T28759] kvm: kvm [28757]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x8c00008e73
[  961.589084][T28759] kvm: kvm [28757]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x8c0000ce73
[  961.595824][T28759] kvm_intel: kvm [28757]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xc900009a49
[  961.597584][T28759] kvm_intel: kvm [28757]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x410000b442
[  961.981644][T28771] lo speed is unknown, defaulting to 1000
[  964.346002][T28816] veth0_virt_wifi: renamed from ipvlan0
[  971.019399][T22638] Bluetooth: hci3: command 0x0406 tx timeout
[  973.320321][T28925] comedi comedi1: bad chanlist[0]=0x00000004 chan=4 range length=4
[  995.847679][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  995.847748][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  996.416142][    C1] vkms_vblank_simulate: vblank timer overrun
[  997.048626][    C1] vkms_vblank_simulate: vblank timer overrun
[  997.594013][T29085] siw: device registration error -23
[  997.914912][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1000.510158][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1000.765313][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1001.036435][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1002.748669][T29156] netlink: 316 bytes leftover after parsing attributes in process `syz.0.10390'.
[ 1003.283770][T29151] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1003.672015][T25197] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[ 1003.929876][T25197] usb 9-1: Using ep0 maxpacket: 16
[ 1004.221850][T25197] usb 9-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[ 1004.221881][T25197] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1004.221900][T25197] usb 9-1: Product: syz
[ 1004.221914][T25197] usb 9-1: Manufacturer: syz
[ 1004.221927][T25197] usb 9-1: SerialNumber: syz
[ 1004.229317][T25197] usb 9-1: config 0 descriptor??
[ 1004.730652][T25197] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[ 1004.734682][T25197] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1004.741387][T25197] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[ 1004.741442][T25197] usb 9-1: media controller created
[ 1005.088608][T29151] dtv5100: wlen = 0, aborting.
[ 1005.209322][T25197] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1005.337318][T25197] zl10353_read_register: readreg error (reg=127, ret==0)
[ 1005.337379][T25197] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[ 1005.337393][T25197] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[ 1005.353947][T25197] usb 9-1: USB disconnect, device number 8
[ 1005.455397][T25197] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[ 1010.749722][T29275] netlink: 'syz.7.10433': attribute type 4 has an invalid length.
[ 1010.854627][   T10] lo speed is unknown, defaulting to 1000
[ 1010.854910][   T10] syz0: Port: 1 Link DOWN
[ 1012.554528][T29294] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized
[ 1015.234414][T29335] netlink: 452 bytes leftover after parsing attributes in process `syz.8.10450'.
[ 1026.734429][ T5887] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1027.223341][ T5887] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1027.223376][ T5887] usb 9-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1027.223388][ T5887] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1027.227833][ T5887] usb 9-1: config 0 descriptor??
[ 1027.312734][ T5887] pwc: Askey VC010 type 2 USB webcam detected.
[ 1027.885000][ T5887] pwc: recv_control_msg error -32 req 02 val 2b00
[ 1027.888005][ T5887] pwc: recv_control_msg error -32 req 02 val 2700
[ 1027.893616][ T5887] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1027.904203][ T5887] pwc: recv_control_msg error -32 req 04 val 1000
[ 1028.733972][ T5887] pwc: recv_control_msg error -32 req 04 val 1300
[ 1030.369800][ T5887] pwc: recv_control_msg error -71 req 04 val 1400
[ 1030.373204][ T5887] pwc: recv_control_msg error -71 req 02 val 2000
[ 1030.373753][ T5887] pwc: recv_control_msg error -71 req 02 val 2100
[ 1030.374486][ T5887] pwc: recv_control_msg error -71 req 04 val 1500
[ 1030.375428][ T5887] pwc: recv_control_msg error -71 req 02 val 2500
[ 1030.451729][ T5887] pwc: recv_control_msg error -71 req 02 val 2400
[ 1030.452266][ T5887] pwc: recv_control_msg error -71 req 02 val 2600
[ 1030.452751][ T5887] pwc: recv_control_msg error -71 req 02 val 2900
[ 1030.453234][ T5887] pwc: recv_control_msg error -71 req 02 val 2800
[ 1030.453984][ T5887] pwc: recv_control_msg error -71 req 04 val 1100
[ 1030.458793][ T5887] pwc: recv_control_msg error -71 req 04 val 1200
[ 1030.469756][ T5887] pwc: Registered as video103.
[ 1030.473972][ T5887] input: PWC snapshot button as /devices/platform/dummy_hcd.8/usb9/9-1/input/input33
[ 1030.632163][ T5887] usb 9-1: USB disconnect, device number 9
[ 1030.651951][T29468] netlink: 188 bytes leftover after parsing attributes in process `syz.0.10500'.
[ 1031.447119][   T37] audit: type=1326 audit(1026.613:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29464 comm="syz.7.10502" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x0
[ 1034.814878][T29505] netlink: 44 bytes leftover after parsing attributes in process `syz.7.10511'.
[ 1044.739187][T29596] nfs: Unknown parameter 'mºœ¶bz#hÁ5[W"'
[ 1046.008917][T29610] ufs: You didn't specify the type of your ufs filesystem
[ 1046.008917][T29610] 
[ 1046.008917][T29610] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[ 1046.008917][T29610] 
[ 1046.008917][T29610] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[ 1046.009116][T29610] ufs: ufstype=old is supported read-only
[ 1048.845105][T29642] openvswitch: netlink: Flow actions attr not present in new flow.
[ 1056.527446][ T5828] Bluetooth: hci4: unexpected event for opcode 0x0c5b
[ 1058.571534][T25197] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[ 1058.734462][T25197] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1058.734537][T25197] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1058.766364][T25197] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1058.766393][T25197] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1058.766412][T25197] usb 9-1: Product: syz
[ 1058.766425][T25197] usb 9-1: Manufacturer: syz
[ 1058.766437][T25197] usb 9-1: SerialNumber: syz
[ 1058.830668][T25197] cdc_mbim 9-1:1.0: MBIM functional descriptor missing
[ 1058.830714][T25197] cdc_mbim 9-1:1.0: bind() failure
[ 1059.024568][ T5828] Bluetooth: hci1: unexpected event for opcode 0x0c6d
[ 1059.084977][    T9] usb 9-1: USB disconnect, device number 10
[ 1060.566797][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1060.567271][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1062.761507][ T5808] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[ 1063.172201][ T5808] usb 8-1: config 0 has an invalid interface number: 73 but max is 0
[ 1063.172227][ T5808] usb 8-1: config 0 has no interface number 0
[ 1063.175082][ T5808] usb 8-1: New USB device found, idVendor=06f8, idProduct=300c, bcdDevice=39.64
[ 1063.175106][ T5808] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1063.175123][ T5808] usb 8-1: Product: syz
[ 1063.175135][ T5808] usb 8-1: Manufacturer: syz
[ 1063.175147][ T5808] usb 8-1: SerialNumber: syz
[ 1063.250934][ T5808] usb 8-1: config 0 descriptor??
[ 1064.092854][ T5808] uvcvideo 8-1:0.73: probe with driver uvcvideo failed with error -22
[ 1064.106485][ T5808] usb 8-1: USB disconnect, device number 5
[ 1064.760657][ T5822] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[ 1064.931641][ T5822] usb 9-1: Using ep0 maxpacket: 8
[ 1064.957474][ T5822] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1064.965097][ T5822] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1064.965150][ T5822] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[ 1064.995963][ T5822] usb 9-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84
[ 1064.995991][ T5822] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1064.996009][ T5822] usb 9-1: Product: syz
[ 1064.996022][ T5822] usb 9-1: Manufacturer: syz
[ 1064.996036][ T5822] usb 9-1: SerialNumber: syz
[ 1065.001386][ T5822] usb 9-1: config 0 descriptor??
[ 1065.011898][ T5822] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[ 1065.280907][ T5822] snd-usb-audio 9-1:0.0: probe with driver snd-usb-audio failed with error -2
[ 1065.305877][ T5822] usb 9-1: USB disconnect, device number 11
[ 1065.850708][    T9] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1066.013382][    T9] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1066.013408][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1066.013482][    T9] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1066.018978][    T9] usb 8-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5
[ 1066.019005][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1066.019025][    T9] usb 8-1: Product: syz
[ 1066.019040][    T9] usb 8-1: Manufacturer: syz
[ 1066.019054][    T9] usb 8-1: SerialNumber: syz
[ 1066.102728][    T9] usb 8-1: config 0 descriptor??
[ 1066.122387][    T9] uvcvideo 8-1:0.0: probe with driver uvcvideo failed with error -22
[ 1066.236182][ T5887] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[ 1067.028418][    T9] usb 8-1: USB disconnect, device number 6
[ 1067.186777][ T5887] usb 9-1: Using ep0 maxpacket: 8
[ 1067.189375][ T5887] usb 9-1: config 5 has an invalid interface number: 35 but max is 1
[ 1067.189398][ T5887] usb 9-1: config 5 has an invalid interface number: 4 but max is 1
[ 1067.189417][ T5887] usb 9-1: config 5 has an invalid interface number: 4 but max is 1
[ 1067.189435][ T5887] usb 9-1: config 5 has no interface number 0
[ 1067.189450][ T5887] usb 9-1: config 5 has no interface number 1
[ 1067.189506][ T5887] usb 9-1: config 5 interface 35 altsetting 10 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1067.189545][ T5887] usb 9-1: config 5 interface 4 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 7
[ 1067.189570][ T5887] usb 9-1: config 5 interface 35 has no altsetting 0
[ 1067.189586][ T5887] usb 9-1: config 5 interface 4 has no altsetting 0
[ 1067.189602][ T5887] usb 9-1: config 5 interface 4 has no altsetting 1
[ 1067.192785][ T5887] usb 9-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=d4.1b
[ 1067.192812][ T5887] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1067.192832][ T5887] usb 9-1: Product: syz
[ 1067.192846][ T5887] usb 9-1: Manufacturer: syz
[ 1067.192860][ T5887] usb 9-1: SerialNumber: syz
[ 1067.542926][ T5828] Bluetooth: hci1: unexpected event for opcode 0x080e
[ 1067.593533][ T5887] ttusbir 9-1:5.35: cannot find expected altsetting
[ 1067.599503][ T5887] ttusbir 9-1:5.4: cannot find expected altsetting
[ 1067.630467][ T5887] usb 9-1: USB disconnect, device number 12
[ 1068.213032][ T5887] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[ 1068.375250][ T5887] usb 8-1: Using ep0 maxpacket: 16
[ 1068.379318][ T5887] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1068.382592][ T5887] usb 8-1: config 13 has an invalid interface number: 50 but max is 0
[ 1068.382617][ T5887] usb 8-1: config 13 has no interface number 0
[ 1068.382665][ T5887] usb 8-1: config 13 interface 50 altsetting 167 bulk endpoint 0x8 has invalid maxpacket 16
[ 1068.382690][ T5887] usb 8-1: config 13 interface 50 has no altsetting 0
[ 1068.433249][ T5887] usb 8-1: New USB device found, idVendor=1aca, idProduct=b28e, bcdDevice=92.32
[ 1068.433277][ T5887] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1068.433297][ T5887] usb 8-1: Product: syz
[ 1068.433310][ T5887] usb 8-1: Manufacturer: syz
[ 1068.433323][ T5887] usb 8-1: SerialNumber: syz
[ 1068.472706][T30044] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 1068.713675][ T5887] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[ 1068.713730][ T5887] usb 8-1: MIDIStreaming interface descriptor not found
[ 1068.775990][ T5887] usb 8-1: USB disconnect, device number 7
[ 1070.228270][T30087] syz.8.10768 (30087): drop_caches: 2
[ 1071.815358][ T5822] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1071.986247][ T5822] usb 8-1: Using ep0 maxpacket: 32
[ 1071.991643][ T5822] usb 8-1: config 0 has an invalid interface number: 35 but max is 0
[ 1071.991671][ T5822] usb 8-1: config 0 has no interface number 0
[ 1071.996485][ T5822] usb 8-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[ 1071.996514][ T5822] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1071.996534][ T5822] usb 8-1: Product: syz
[ 1071.996548][ T5822] usb 8-1: Manufacturer: syz
[ 1071.996562][ T5822] usb 8-1: SerialNumber: syz
[ 1072.044265][ T5822] usb 8-1: config 0 descriptor??
[ 1072.054755][ T5822] radio-si470x 8-1:0.35: could not find interrupt in endpoint
[ 1072.054842][ T5822] radio-si470x 8-1:0.35: probe with driver radio-si470x failed with error -5
[ 1072.263812][ T5822] radio-raremono 8-1:0.35: Thanko's Raremono connected: (10C4:818A)
[ 1072.480215][ T5822] radio-raremono 8-1:0.35: raremono_cmd_main failed (-71)
[ 1072.483231][ T5822] radio-raremono 8-1:0.35: V4L2 device registered as radio48
[ 1072.500992][ T5822] usb 8-1: USB disconnect, device number 8
[ 1072.502162][ T5822] radio-raremono 8-1:0.35: Thanko's Raremono disconnected
[ 1072.677875][   T43] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1073.378391][   T37] audit: type=1326 audit(1066.485:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30258 comm="syz.7.10854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1073.378442][   T37] audit: type=1326 audit(1066.485:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30258 comm="syz.7.10854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1073.416455][   T37] audit: type=1326 audit(1066.494:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30258 comm="syz.7.10854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1073.417165][   T37] audit: type=1326 audit(1066.504:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30258 comm="syz.7.10854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1073.417206][   T37] audit: type=1326 audit(1066.504:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30258 comm="syz.7.10854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1073.508016][   T43] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1073.898394][ T5828] Bluetooth: hci3: command 0x0406 tx timeout
[ 1074.873894][T30294] netlink: 17 bytes leftover after parsing attributes in process `syz.8.10869'.
[ 1074.873959][T30294] netlink: zone id is out of range
[ 1074.873968][T30294] netlink: zone id is out of range
[ 1074.873975][T30294] netlink: zone id is out of range
[ 1074.873983][T30294] netlink: zone id is out of range
[ 1074.873990][T30294] netlink: zone id is out of range
[ 1074.873997][T30294] netlink: zone id is out of range
[ 1074.874004][T30294] netlink: zone id is out of range
[ 1074.874018][T30294] netlink: zone id is out of range
[ 1074.874026][T30294] netlink: zone id is out of range
[ 1074.874033][T30294] netlink: zone id is out of range
[ 1075.160442][   T43] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1075.626319][   T43] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1075.876739][T30342] comedi comedi0: No channels found!
[ 1076.200682][   T43] bridge_slave_1: left allmulticast mode
[ 1076.200710][   T43] bridge_slave_1: left promiscuous mode
[ 1076.201005][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1076.379910][   T43] bridge_slave_0: left allmulticast mode
[ 1076.379938][   T43] bridge_slave_0: left promiscuous mode
[ 1076.380222][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1077.840619][   T37] audit: type=1326 audit(1070.657:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30408 comm="syz.0.10926" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe24e5feec9 code=0x0
[ 1078.753253][T25197] usb 8-1: new full-speed USB device number 9 using dummy_hcd
[ 1078.977521][T25197] usb 8-1: config 0 has an invalid interface number: 160 but max is 0
[ 1078.977548][T25197] usb 8-1: config 0 has no interface number 0
[ 1078.977597][T25197] usb 8-1: config 0 interface 160 altsetting 64 endpoint 0x4 has invalid wMaxPacketSize 0
[ 1078.977620][T25197] usb 8-1: config 0 interface 160 has no altsetting 0
[ 1078.980650][T25197] usb 8-1: New USB device found, idVendor=3612, idProduct=d032, bcdDevice=56.e4
[ 1078.980675][T25197] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1078.980693][T25197] usb 8-1: Product: syz
[ 1078.980706][T25197] usb 8-1: Manufacturer: syz
[ 1078.980720][T25197] usb 8-1: SerialNumber: syz
[ 1079.935506][T25197] usb 8-1: config 0 descriptor??
[ 1079.946294][T25197] usb-storage 8-1:0.160: USB Mass Storage device detected
[ 1080.248223][T25197] usb 8-1: USB disconnect, device number 9
[ 1081.478627][ T5808] usb 8-1: new full-speed USB device number 10 using dummy_hcd
[ 1081.643936][ T5808] usb 8-1: config 0 has an invalid interface number: 52 but max is 0
[ 1081.643962][ T5808] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1081.643980][ T5808] usb 8-1: config 0 has no interface number 0
[ 1081.644028][ T5808] usb 8-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0x13, changing to 0x3
[ 1081.644051][ T5808] usb 8-1: config 0 interface 52 altsetting 1 endpoint 0x3 has an invalid bInterval 0, changing to 10
[ 1081.644076][ T5808] usb 8-1: config 0 interface 52 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1081.644104][ T5808] usb 8-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1081.644129][ T5808] usb 8-1: config 0 interface 52 has no altsetting 0
[ 1081.646217][ T5808] usb 8-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[ 1081.646244][ T5808] usb 8-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[ 1081.646264][ T5808] usb 8-1: Product: syz
[ 1081.646278][ T5808] usb 8-1: SerialNumber: syz
[ 1081.788655][ T5808] usb 8-1: config 0 descriptor??
[ 1082.241910][T22688] usb 8-1: USB disconnect, device number 10
[ 1083.044865][T30564] netlink: 56 bytes leftover after parsing attributes in process `syz.0.10994'.
[ 1085.702603][T30589] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1085.877549][   T43] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1085.979537][   T43] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1086.043195][   T43] bond0 (unregistering): Released all slaves
[ 1086.053481][    T9] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[ 1086.214027][    T9] usb 8-1: Using ep0 maxpacket: 16
[ 1086.219860][    T9] usb 8-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[ 1086.219889][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1086.219909][    T9] usb 8-1: Product: syz
[ 1086.219922][    T9] usb 8-1: Manufacturer: syz
[ 1086.219936][    T9] usb 8-1: SerialNumber: syz
[ 1086.226361][    T9] usb 8-1: config 0 descriptor??
[ 1086.669242][    T9] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[ 1086.719737][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1086.726189][    T9] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[ 1086.726260][    T9] usb 8-1: media controller created
[ 1086.847637][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1086.883972][T30589] dtv5100: wlen = 0, aborting.
[ 1086.909010][    T9] zl10353_read_register: readreg error (reg=127, ret==0)
[ 1086.909083][    T9] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[ 1086.909102][    T9] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[ 1086.930678][    T9] usb 8-1: USB disconnect, device number 11
[ 1087.085021][    T9] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[ 1087.945879][   T43] bond1 (unregistering): (slave veth3): Releasing active interface
[ 1087.945932][   T43] veth0_to_bond: entered promiscuous mode
[ 1088.096369][   T43] bond1 (unregistering): (slave veth0_to_bond): Releasing active interface
[ 1088.164002][   T43] bond1 (unregistering): Released all slaves
[ 1091.733991][T30773] IPVS: length: 93 != 24
[ 1091.825864][ T5887] usb 9-1: new full-speed USB device number 13 using dummy_hcd
[ 1092.020745][ T5887] usb 9-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1092.020779][ T5887] usb 9-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1092.020818][ T5887] usb 9-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1092.020844][ T5887] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1092.037467][ T5887] hub 9-1:4.0: USB hub found
[ 1092.270235][ T5887] hub 9-1:4.0: 13 ports detected
[ 1092.270305][ T5887] usb 9-1: selecting invalid altsetting 1
[ 1092.270325][ T5887] hub 9-1:4.0: Using single TT (err -22)
[ 1092.273067][ T5887] hub 9-1:4.0: insufficient power available to use all downstream ports
[ 1092.486577][ T5887] hub 9-1:4.0: hub_hub_status failed (err = -71)
[ 1092.486602][ T5887] hub 9-1:4.0: config failed, can't get hub status (err -71)
[ 1092.522689][ T5887] usb 9-1: USB disconnect, device number 13
[ 1093.301375][T30831] netlink: 28 bytes leftover after parsing attributes in process `syz.8.11122'.
[ 1093.487379][   T43] hsr_slave_0: left promiscuous mode
[ 1093.576754][   T43] hsr_slave_1: left promiscuous mode
[ 1093.577746][   T43] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1093.577770][   T43] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1093.662271][   T43] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1093.662299][   T43] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1093.911521][   T43] veth1_macvtap: left promiscuous mode
[ 1093.911627][   T43] veth0_macvtap: left promiscuous mode
[ 1093.911886][   T43] veth1_vlan: left promiscuous mode
[ 1093.912087][   T43] veth0_vlan: left promiscuous mode
[ 1094.094850][T30870] netlink: 'syz.7.11143': attribute type 1 has an invalid length.
[ 1094.154578][T30872] netlink: 'syz.7.11144': attribute type 10 has an invalid length.
[ 1095.684005][T30885] trusted_key: syz.8.11146 sent an empty control message without MSG_MORE.
[ 1098.434623][T30935] netlink: 'syz.8.11169': attribute type 10 has an invalid length.
[ 1100.133022][T31010] netlink: 32 bytes leftover after parsing attributes in process `syz.0.11206'.
[ 1102.671503][   T43] team0 (unregistering): Port device team_slave_1 removed
[ 1103.114980][   T43] team0 (unregistering): Port device team_slave_0 removed
[ 1107.929201][T30872] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1107.932770][T30872] bond0: (slave batadv0): Enslaving as an active interface with an up link
[ 1107.933988][T30935] macvlan1: entered allmulticast mode
[ 1107.934007][T30935] veth1_vlan: entered allmulticast mode
[ 1107.934604][T30935] team0: Device macvlan1 is up. Set it down before adding it as a team port
[ 1108.661843][T31382] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11401'.
[ 1108.712132][T31384] comedi comedi0: No channels found!
[ 1110.706510][T31440] binder: BC_ATTEMPT_ACQUIRE not supported
[ 1110.706534][T31440] binder: 31437:31440 ioctl c0306201 2000000001c0 returned -22
[ 1111.759709][T31497] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11449'.
[ 1112.570681][T31519] net_ratelimit: 74 callbacks suppressed
[ 1112.570704][T31519] openvswitch: netlink: IPv4 tunnel dst address is zero
[ 1113.625091][T31563] 9pnet_virtio: no channels available for device syz
[ 1115.641731][ T5907] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[ 1115.802567][ T5907] usb 8-1: Using ep0 maxpacket: 8
[ 1115.805143][ T5907] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1115.805201][ T5907] usb 8-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[ 1115.805225][ T5907] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1115.826066][ T5907] usb 8-1: config 0 descriptor??
[ 1115.842212][ T5907] gspca_main: vc032x-2.14.0 probing 046d:0892
[ 1116.011869][T31680] IPVS: length: 93 != 24
[ 1116.283783][ T5907] gspca_vc032x: reg_w err -71
[ 1116.283881][ T5907] vc032x 8-1:0.0: probe with driver vc032x failed with error -71
[ 1116.289416][ T5907] usb 8-1: USB disconnect, device number 12
[ 1117.775658][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1117.786741][   T37] audit: type=1326 audit(1108.022:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31762 comm="syz.7.11578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1117.791295][   T37] audit: type=1326 audit(1108.031:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31762 comm="syz.7.11578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1117.803126][   T37] audit: type=1326 audit(1108.031:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31762 comm="syz.7.11578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1117.803176][   T37] audit: type=1326 audit(1108.041:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31762 comm="syz.7.11578" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a9e09eec9 code=0x7ffc0000
[ 1118.475895][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1118.965691][T31787] tmpfs: Bad value for 'mpol'
[ 1119.442733][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1119.608786][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1120.197692][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1121.320915][T31861] netlink: 56 bytes leftover after parsing attributes in process `syz.7.11615'.
[ 1125.186712][   T44] usb 8-1: new full-speed USB device number 13 using dummy_hcd
[ 1125.351080][   T44] usb 8-1: config 0 has an invalid interface number: 215 but max is 0
[ 1125.351108][   T44] usb 8-1: config 0 has an invalid interface number: 117 but max is 0
[ 1125.351128][   T44] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1125.351147][   T44] usb 8-1: config 0 has 2 interfaces, different from the descriptor's value: 1
[ 1125.351167][   T44] usb 8-1: config 0 has no interface number 0
[ 1125.351183][   T44] usb 8-1: config 0 has no interface number 1
[ 1125.351246][   T44] usb 8-1: config 0 interface 215 altsetting 0 endpoint 0x7 has invalid maxpacket 1024, setting to 64
[ 1125.351272][   T44] usb 8-1: config 0 interface 215 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 10
[ 1125.351299][   T44] usb 8-1: too many endpoints for config 0 interface 117 altsetting 88: 155, using maximum allowed: 30
[ 1125.351335][   T44] usb 8-1: config 0 interface 117 altsetting 88 has 0 endpoint descriptors, different from the interface descriptor's value: 155
[ 1125.351361][   T44] usb 8-1: config 0 interface 117 has no altsetting 0
[ 1125.351394][   T44] usb 8-1: New USB device found, idVendor=0a12, idProduct=5d10, bcdDevice=1a.b9
[ 1125.351416][   T44] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1125.509062][   T44] usb 8-1: config 0 descriptor??
[ 1125.636500][   T44] ushc 8-1:0.215: probe with driver ushc failed with error -110
[ 1125.702290][   T44] usb 8-1: string descriptor 0 read error: -32
[ 1125.736458][   T10] usb 8-1: USB disconnect, device number 13
[ 1126.080137][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1126.080204][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1126.214106][   T37] audit: type=1326 audit(1115.918:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32074 comm="syz.8.11727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f606599eec9 code=0x7ffc0000
[ 1126.238559][   T37] audit: type=1326 audit(1115.936:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32074 comm="syz.8.11727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f606599eec9 code=0x7ffc0000
[ 1126.238608][   T37] audit: type=1326 audit(1115.936:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32074 comm="syz.8.11727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f606599eec9 code=0x7ffc0000
[ 1126.238646][   T37] audit: type=1326 audit(1115.936:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32074 comm="syz.8.11727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f606599eec9 code=0x7ffc0000
[ 1127.775284][ T5828] Bluetooth: hci1: unexpected event for opcode 0x0c26
[ 1127.879789][T32161] bond0: option all_slaves_active: invalid value (141)
[ 1128.049840][T32171] netlink: 8 bytes leftover after parsing attributes in process `syz.8.11773'.
[ 1128.821724][T25197] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[ 1128.981521][T25197] usb 8-1: Using ep0 maxpacket: 8
[ 1128.992409][T25197] usb 8-1: config 135 has an invalid interface number: 230 but max is 0
[ 1128.992436][T25197] usb 8-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[ 1128.992454][T25197] usb 8-1: config 135 has no interface number 0
[ 1128.992498][T25197] usb 8-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1129.000244][T25197] usb 8-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[ 1129.000272][T25197] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1129.000290][T25197] usb 8-1: Product: syz
[ 1129.000303][T25197] usb 8-1: Manufacturer: syz
[ 1129.000316][T25197] usb 8-1: SerialNumber: syz
[ 1129.313430][T25197] usb 8-1: Found UVC 0.00 device syz (18ec:3288)
[ 1129.313763][T25197] usb 8-1: No valid video chain found.
[ 1129.318577][T25197] usb 8-1: USB disconnect, device number 14
[ 1129.847368][ T5887] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[ 1130.029463][ T5887] usb 9-1: Using ep0 maxpacket: 8
[ 1130.031788][ T5887] usb 9-1: config 0 has an invalid interface number: 31 but max is 0
[ 1130.031812][ T5887] usb 9-1: config 0 has no interface number 0
[ 1130.034922][ T5887] usb 9-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[ 1130.034947][ T5887] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1130.034966][ T5887] usb 9-1: Product: syz
[ 1130.034980][ T5887] usb 9-1: Manufacturer: syz
[ 1130.034993][ T5887] usb 9-1: SerialNumber: syz
[ 1130.065695][ T5887] usb 9-1: config 0 descriptor??
[ 1130.287909][ T5887] usb 9-1: Found UVC 0.04 device syz (046d:08c3)
[ 1130.288023][ T5887] usb 9-1: No valid video chain found.
[ 1130.296746][ T5887] usb 9-1: USB disconnect, device number 14
[ 1132.148513][T32381] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1132.148567][T32381] comedi comedi3: 8255: I/O port conflict (0x3,4)
[ 1132.148610][T32381] comedi comedi3: 8255: I/O port conflict (0x4,4)
[ 1132.148653][T32381] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1132.148697][T32381] comedi comedi3: 8255: I/O port conflict (0xc,4)
[ 1132.148739][T32381] comedi comedi3: 8255: I/O port conflict (0x12,4)
[ 1132.148787][T32381] comedi comedi3: 8255: I/O port conflict (0x4,4)
[ 1132.148855][T32381] comedi comedi3: 8255: I/O port conflict (0x81,4)
[ 1132.148900][T32381] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffc,4)
[ 1132.148947][T32381] comedi comedi3: 8255: I/O port conflict (0x2,4)
[ 1132.148997][T32381] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4)
[ 1132.149043][T32381] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1132.149087][T32381] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1132.149131][T32381] comedi comedi3: 8255: I/O port conflict (0x2,4)
[ 1132.149218][T32381] comedi comedi3: 8255: I/O port conflict (0x8,4)
[ 1132.149265][T32381] comedi comedi3: 8255: I/O port conflict (0x400009,4)
[ 1132.149312][T32381] comedi comedi3: 8255: I/O port conflict (0x3,4)
[ 1132.149358][T32381] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1132.149488][T32381] comedi comedi3: 8255: I/O port conflict (0x80,4)
[ 1132.676309][T32409] smc: net device bond0 applied user defined pnetid SYZ0
[ 1132.708180][T32411] new mount options do not match the existing superblock, will be ignored
[ 1133.353391][ T5907] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[ 1133.481979][    T9] usb 9-1: new high-speed USB device number 15 using dummy_hcd
[ 1133.524870][ T5907] usb 8-1: Using ep0 maxpacket: 16
[ 1133.527501][ T5907] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1133.527530][ T5907] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1133.527553][ T5907] usb 8-1: config 0 interface 0 has no altsetting 0
[ 1133.527585][ T5907] usb 8-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[ 1133.527607][ T5907] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1133.533571][ T5907] usb 8-1: config 0 descriptor??
[ 1133.644725][    T9] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1133.644778][    T9] usb 9-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1133.644802][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1133.650121][    T9] usb 9-1: config 0 descriptor??
[ 1133.662156][    T9] pwc: Askey VC010 type 2 USB webcam detected.
[ 1134.038924][ T5907] hid (null): unknown global tag 0xc
[ 1134.043771][ T5907] hid (null): unknown global tag 0xd
[ 1134.075293][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.075330][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.075357][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.075383][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.075408][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.075432][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.075458][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.075482][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.078811][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.078845][ T5907] cougar 0003:060B:500A.0027: unknown main item tag 0x0
[ 1134.079654][ T5907] cougar 0003:060B:500A.0027: unexpected long global item
[ 1134.159414][ T5907] cougar 0003:060B:500A.0027: parse failed
[ 1134.159518][ T5907] cougar 0003:060B:500A.0027: probe with driver cougar failed with error -22
[ 1134.253166][ T5907] usb 8-1: USB disconnect, device number 15
[ 1134.305218][    T9] pwc: recv_control_msg error -71 req 02 val 2700
[ 1134.315780][    T9] pwc: recv_control_msg error -71 req 02 val 2c00
[ 1134.324352][    T9] pwc: recv_control_msg error -71 req 04 val 1000
[ 1134.326160][    T9] pwc: recv_control_msg error -71 req 04 val 1300
[ 1134.326633][    T9] pwc: recv_control_msg error -71 req 04 val 1400
[ 1134.327116][    T9] pwc: recv_control_msg error -71 req 02 val 2000
[ 1134.327561][    T9] pwc: recv_control_msg error -71 req 02 val 2100
[ 1134.328006][    T9] pwc: recv_control_msg error -71 req 04 val 1500
[ 1134.328457][    T9] pwc: recv_control_msg error -71 req 02 val 2500
[ 1134.328906][    T9] pwc: recv_control_msg error -71 req 02 val 2400
[ 1134.329355][    T9] pwc: recv_control_msg error -71 req 02 val 2600
[ 1134.329804][    T9] pwc: recv_control_msg error -71 req 02 val 2900
[ 1134.330239][    T9] pwc: recv_control_msg error -71 req 02 val 2800
[ 1134.330867][    T9] pwc: recv_control_msg error -71 req 04 val 1100
[ 1134.331323][    T9] pwc: recv_control_msg error -71 req 04 val 1200
[ 1134.346546][    T9] pwc: Registered as video103.
[ 1134.350215][    T9] input: PWC snapshot button as /devices/platform/dummy_hcd.8/usb9/9-1/input/input37
[ 1134.382302][    T9] usb 9-1: USB disconnect, device number 15
[ 1134.905189][T32503] ptrace attach of "./syz-executor exec"[5815] was attempted by ""[32503]
[ 1136.673246][ T5828] Bluetooth: hci1: unexpected event for opcode 0x2031
[ 1136.785130][T32608] syz.7.11989 uses old SIOCAX25GETINFO
[ 1137.426279][ T5887] usb 9-1: new high-speed USB device number 16 using dummy_hcd
[ 1137.612581][ T5887] usb 9-1: Using ep0 maxpacket: 8
[ 1137.615810][ T5887] usb 9-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1137.615842][ T5887] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1137.615875][ T5887] usb 9-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[ 1137.615895][ T5887] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1137.621119][ T5887] usb 9-1: config 0 descriptor??
[ 1138.087697][ T5887] uclogic 0003:5543:0042.0028: unbalanced delimiter at end of report description
[ 1138.088528][ T5887] uclogic 0003:5543:0042.0028: parse failed
[ 1138.088844][ T5887] uclogic 0003:5543:0042.0028: probe with driver uclogic failed with error -22
[ 1138.310383][ T5907] usb 9-1: USB disconnect, device number 16
[ 1138.430718][T25197] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[ 1138.615296][T25197] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1138.615331][T25197] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1138.616879][T25197] usb 8-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00
[ 1138.616906][T25197] usb 8-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[ 1138.616925][T25197] usb 8-1: Manufacturer: syz
[ 1138.674125][T25197] usb 8-1: config 0 descriptor??
[ 1139.153335][T25197] cougar 0003:060B:700A.0029: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.7-1/input0
[ 1139.347522][ T5887] usb 8-1: USB disconnect, device number 16
[ 1139.595637][T32738] xt_l2tp: missing protocol rule (udp|l2tpip)
[ 1141.789801][  T388] Bluetooth: MGMT ver 1.23
[ 1152.991292][  T676] devtmpfs: Too few inodes for current use
[ 1154.775618][  T720] 9pnet_virtio: no channels available for device syz
[ 1158.396738][  T779] 9pnet_virtio: no channels available for device syz
[ 1163.267141][  T873] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1163.302449][  T873] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1163.304462][  T873] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1163.321364][  T873] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1163.325731][  T873] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1163.719143][  T870] lo speed is unknown, defaulting to 1000
[ 1164.637186][  T897] bridge0: entered promiscuous mode
[ 1164.683692][  T897] macvlan2: entered promiscuous mode
[ 1165.581997][  T873] Bluetooth: hci5: command tx timeout
[ 1165.725157][  T870] chnl_net:caif_netlink_parms(): no params data found
[ 1167.804946][  T873] Bluetooth: hci5: command tx timeout
[ 1170.028415][  T873] Bluetooth: hci5: command tx timeout
[ 1171.419221][  T870] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1171.419350][  T870] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1171.419599][  T870] bridge_slave_0: entered allmulticast mode
[ 1171.422299][  T870] bridge_slave_0: entered promiscuous mode
[ 1171.425180][  T870] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1171.425305][  T870] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1171.425493][  T870] bridge_slave_1: entered allmulticast mode
[ 1171.428161][  T870] bridge_slave_1: entered promiscuous mode
[ 1172.257607][  T873] Bluetooth: hci5: command tx timeout
[ 1176.136251][  T870] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1176.140572][  T870] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1179.162914][  T870] team0: Port device team_slave_0 added
[ 1179.166419][  T870] team0: Port device team_slave_1 added
[ 1183.551951][ T5828] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1183.592099][ T5828] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1183.602646][ T5828] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1183.614092][ T5828] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1183.623665][ T5828] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1184.823821][ T5828] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1184.850528][ T5828] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1184.869603][ T5828] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1184.871106][ T5828] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1184.871924][ T5828] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1185.023873][  T870] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1185.023888][  T870] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1185.023912][  T870] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1185.060757][  T870] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1185.060773][  T870] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1185.060797][  T870] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1185.848671][ T5828] Bluetooth: hci6: command tx timeout
[ 1187.045894][ T5828] Bluetooth: hci7: command tx timeout
[ 1188.074809][ T5828] Bluetooth: hci6: command tx timeout
[ 1189.269072][ T5828] Bluetooth: hci7: command tx timeout
[ 1189.388788][  T870] hsr_slave_0: entered promiscuous mode
[ 1189.390192][  T870] hsr_slave_1: entered promiscuous mode
[ 1189.391158][  T870] debugfs: 'hsr0' already exists in 'hsr'
[ 1189.391181][  T870] Cannot create hsr debugfs directory
[ 1189.464231][ T1401] lo speed is unknown, defaulting to 1000
[ 1189.507799][ T1376] lo speed is unknown, defaulting to 1000
[ 1190.295150][ T5828] Bluetooth: hci6: command tx timeout
[ 1191.492448][ T5828] Bluetooth: hci7: command tx timeout
[ 1191.755508][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1191.755580][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1192.521277][ T5828] Bluetooth: hci6: command tx timeout
[ 1193.728248][ T5828] Bluetooth: hci7: command tx timeout
[ 1195.968123][ T1401] chnl_net:caif_netlink_parms(): no params data found
[ 1198.449009][  T870] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1198.589136][ T1376] chnl_net:caif_netlink_parms(): no params data found
[ 1198.692353][  T870] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1199.905429][  T870] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1200.278919][  T870] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1209.739230][ T1401] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1209.739410][ T1401] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1209.739660][ T1401] bridge_slave_0: entered allmulticast mode
[ 1209.745886][ T1401] bridge_slave_0: entered promiscuous mode
[ 1210.340111][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1213.459309][ T1401] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1213.459441][ T1401] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1213.459707][ T1401] bridge_slave_1: entered allmulticast mode
[ 1213.462423][ T1401] bridge_slave_1: entered promiscuous mode
[ 1220.254475][ T1376] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1220.254609][ T1376] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1220.254832][ T1376] bridge_slave_0: entered allmulticast mode
[ 1220.292616][ T1376] bridge_slave_0: entered promiscuous mode
[ 1220.316158][ T1401] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1220.317544][ T1376] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1220.317674][ T1376] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1220.317879][ T1376] bridge_slave_1: entered allmulticast mode
[ 1220.320622][ T1376] bridge_slave_1: entered promiscuous mode
[ 1223.063110][ T1401] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1225.016498][ T1376] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1225.576659][  T873] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1225.613595][  T873] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1225.615551][  T873] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1225.641130][  T873] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1225.652191][  T873] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1227.739315][ T1376] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1227.766386][ T1401] team0: Port device team_slave_0 added
[ 1227.837585][  T873] Bluetooth: hci4: command tx timeout
[ 1229.828697][ T1401] team0: Port device team_slave_1 added
[ 1230.061283][  T873] Bluetooth: hci4: command tx timeout
[ 1232.295857][  T873] Bluetooth: hci4: command tx timeout
[ 1233.795137][ T1376] team0: Port device team_slave_0 added
[ 1233.877598][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1234.506552][  T873] Bluetooth: hci4: command tx timeout
[ 1236.079475][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1236.496807][ T1376] team0: Port device team_slave_1 added
[ 1239.233854][ T1401] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1239.233871][ T1401] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1239.233895][ T1401] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1242.269059][ T1401] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1242.269075][ T1401] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1242.269099][ T1401] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1242.271518][ T2236] lo speed is unknown, defaulting to 1000
[ 1242.351251][ T1376] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1242.351268][ T1376] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1242.351294][ T1376] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1242.467238][ T1376] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1242.467255][ T1376] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1242.467280][ T1376] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1247.283068][ T5828] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1247.307059][ T5828] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1247.308661][ T5828] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1247.344252][ T5828] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1247.350520][ T5828] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1247.737583][ T2779] lo speed is unknown, defaulting to 1000
[ 1249.234378][  T873] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1249.273761][  T873] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1249.277382][  T873] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1249.300734][  T873] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1249.332451][  T873] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1249.642594][ T5828] Bluetooth: hci5: command tx timeout
[ 1251.331148][ T2798] lo speed is unknown, defaulting to 1000
[ 1251.550325][ T2236] chnl_net:caif_netlink_parms(): no params data found
[ 1251.609790][ T5828] Bluetooth: hci8: command tx timeout
[ 1251.866895][ T5828] Bluetooth: hci5: command tx timeout
[ 1253.837290][ T5828] Bluetooth: hci8: command tx timeout
[ 1254.089221][ T5828] Bluetooth: hci5: command tx timeout
[ 1254.307982][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1256.055841][ T5828] Bluetooth: hci8: command tx timeout
[ 1256.312580][ T5828] Bluetooth: hci5: command tx timeout
[ 1256.459827][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1257.446971][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1257.447040][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1258.279352][ T5828] Bluetooth: hci8: command tx timeout
[ 1262.645085][ T2779] chnl_net:caif_netlink_parms(): no params data found
[ 1267.926280][ T2236] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1267.926446][ T2236] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1267.926705][ T2236] bridge_slave_0: entered allmulticast mode
[ 1267.952255][ T2236] bridge_slave_0: entered promiscuous mode
[ 1268.059929][ T2236] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1268.060060][ T2236] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1268.060652][ T2236] bridge_slave_1: entered allmulticast mode
[ 1268.063428][ T2236] bridge_slave_1: entered promiscuous mode
[ 1272.138459][ T2236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1272.181483][ T2779] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1272.181637][ T2779] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1272.181878][ T2779] bridge_slave_0: entered allmulticast mode
[ 1272.228673][ T2779] bridge_slave_0: entered promiscuous mode
[ 1272.235484][ T2236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1272.498611][ T2779] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1272.498749][ T2779] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1272.498970][ T2779] bridge_slave_1: entered allmulticast mode
[ 1272.537168][ T2779] bridge_slave_1: entered promiscuous mode
[ 1281.214407][ T2236] team0: Port device team_slave_0 added
[ 1281.249716][ T2779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1281.279521][ T2236] team0: Port device team_slave_1 added
[ 1281.314248][ T2779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1283.467478][ T2798] chnl_net:caif_netlink_parms(): no params data found
[ 1286.953779][ T2236] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1286.953796][ T2236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1286.953821][ T2236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1287.040200][ T2779] team0: Port device team_slave_0 added
[ 1288.393365][ T2236] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1288.393380][ T2236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1288.393404][ T2236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1288.564083][ T2779] team0: Port device team_slave_1 added
[ 1290.334226][T22638] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1290.375303][T22638] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1290.376907][T22638] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1290.380610][T22638] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1290.406902][T22638] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1291.882129][ T2779] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1291.882145][ T2779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1291.882171][ T2779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1291.985295][ T2779] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1291.985312][ T2779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1291.985337][ T2779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1293.944449][ T5828] Bluetooth: hci6: command tx timeout
[ 1296.162364][ T5828] Bluetooth: hci6: command tx timeout
[ 1298.387592][ T5828] Bluetooth: hci6: command tx timeout
[ 1300.284612][ T2798] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1300.284737][ T2798] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1300.284966][ T2798] bridge_slave_0: entered allmulticast mode
[ 1300.363673][ T2798] bridge_slave_0: entered promiscuous mode
[ 1300.383923][ T3735] lo speed is unknown, defaulting to 1000
[ 1300.390276][ T2798] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1300.390406][ T2798] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1300.390663][ T2798] bridge_slave_1: entered allmulticast mode
[ 1300.450506][ T2798] bridge_slave_1: entered promiscuous mode
[ 1300.609026][ T5828] Bluetooth: hci6: command tx timeout
[ 1305.810952][ T2779] hsr_slave_0: entered promiscuous mode
[ 1305.828482][ T2779] hsr_slave_1: entered promiscuous mode
[ 1305.829487][ T2779] debugfs: 'hsr0' already exists in 'hsr'
[ 1305.829512][ T2779] Cannot create hsr debugfs directory
[ 1305.934888][ T2798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1306.025155][ T2798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1311.333526][T22638] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1311.373047][T22638] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1311.390570][T22638] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1311.396412][T22638] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1311.397139][T22638] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1311.645642][ T5828] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1311.671487][ T5828] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1311.671952][ T5828] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1311.688903][ T5828] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1311.689711][ T5828] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1311.996695][ T2798] team0: Port device team_slave_0 added
[ 1312.462146][ T4199] lo speed is unknown, defaulting to 1000
[ 1312.489521][ T4196] lo speed is unknown, defaulting to 1000
[ 1313.613815][ T5828] Bluetooth: hci4: command tx timeout
[ 1313.866676][ T5828] Bluetooth: hci7: command tx timeout
[ 1314.798192][ T3735] chnl_net:caif_netlink_parms(): no params data found
[ 1315.837729][ T5828] Bluetooth: hci4: command tx timeout
[ 1316.089257][ T5828] Bluetooth: hci7: command tx timeout
[ 1317.156394][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1318.054269][ T5828] Bluetooth: hci4: command tx timeout
[ 1318.313446][ T5828] Bluetooth: hci7: command tx timeout
[ 1318.561903][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1319.843379][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1320.277457][ T5828] Bluetooth: hci4: command tx timeout
[ 1320.533930][ T5828] Bluetooth: hci7: command tx timeout
[ 1321.303107][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1322.923912][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1323.121395][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[ 1323.121472][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[ 1324.909252][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1330.224218][ T4199] chnl_net:caif_netlink_parms(): no params data found
[ 1330.288023][ T3735] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1330.288199][ T3735] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1330.288494][ T3735] bridge_slave_0: entered allmulticast mode
[ 1330.304122][ T3735] bridge_slave_0: entered promiscuous mode
[ 1330.361314][ T4196] chnl_net:caif_netlink_parms(): no params data found
[ 1330.423184][ T3735] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1330.423314][ T3735] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1330.423594][ T3735] bridge_slave_1: entered allmulticast mode
[ 1330.435875][ T3735] bridge_slave_1: entered promiscuous mode
[ 1334.480656][   T38] INFO: task syz.0.12369:923 blocked for more than 143 seconds.
[ 1334.480694][   T38]       Not tainted syzkaller #0
[ 1334.480705][   T38]       Blocked by coredump.
[ 1334.480710][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1334.480719][   T38] task:syz.0.12369     state:D stack:25128 pid:923   tgid:923   ppid:5815   task_flags:0x40004c flags:0x00080000
[ 1334.480770][   T38] Call Trace:
[ 1334.480779][   T38]  <TASK>
[ 1334.480792][   T38]  __schedule+0x16f3/0x4c20
[ 1334.480847][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1334.480873][   T38]  ? __pfx___schedule+0x10/0x10
[ 1334.480914][   T38]  ? schedule+0x91/0x360
[ 1334.480941][   T38]  schedule+0x165/0x360
[ 1334.480967][   T38]  schedule_timeout+0x9a/0x270
[ 1334.480990][   T38]  ? __pfx_schedule_timeout+0x10/0x10
[ 1334.481032][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1334.481056][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1334.481077][   T38]  ? wait_for_completion+0x267/0x5d0
[ 1334.481103][   T38]  wait_for_completion+0x2bf/0x5d0
[ 1334.481141][   T38]  ? __pfx_wait_for_completion+0x10/0x10
[ 1334.481180][   T38]  exit_aio+0x2f1/0x3b0
[ 1334.481211][   T38]  ? __pfx_exit_aio+0x10/0x10
[ 1334.481245][   T38]  ? uprobe_clear_state+0x288/0x2a0
[ 1334.481263][   T38]  ? mm_update_next_owner+0xa7/0x870
[ 1334.481289][   T38]  __mmput+0x68/0x3d0
[ 1334.481314][   T38]  exit_mm+0x1da/0x2c0
[ 1334.481336][   T38]  ? __pfx_exit_mm+0x10/0x10
[ 1334.481358][   T38]  ? rcu_is_watching+0x15/0xb0
[ 1334.481383][   T38]  do_exit+0x648/0x2300
[ 1334.481400][   T38]  ? preempt_schedule_thunk+0x16/0x30
[ 1334.481429][   T38]  ? rt_mutex_slowunlock+0x668/0x8a0
[ 1334.481453][   T38]  ? __pfx_do_exit+0x10/0x10
[ 1334.481472][   T38]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1334.481498][   T38]  ? __rcu_read_unlock+0x84/0xe0
[ 1334.481522][   T38]  ? rt_spin_unlock+0x161/0x200
[ 1334.481546][   T38]  do_group_exit+0x21c/0x2d0
[ 1334.481571][   T38]  __x64_sys_exit_group+0x3f/0x40
[ 1334.481590][   T38]  x64_sys_call+0x21f7/0x2200
[ 1334.481609][   T38]  do_syscall_64+0xfa/0x3b0
[ 1334.481626][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1334.481649][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1334.481667][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1334.481690][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1334.481707][   T38] RIP: 0033:0x7fe24e5feec9
[ 1334.481728][   T38] RSP: 002b:00007ffe146e1728 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 1334.481747][   T38] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe24e5feec9
[ 1334.481760][   T38] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 1334.481771][   T38] RBP: 00007ffe146e178c R08: 00000003146e181f R09: 00000000000927c0
[ 1334.481784][   T38] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000078a
[ 1334.481795][   T38] R13: 00000000000927c0 R14: 00000000001195e8 R15: 00007ffe146e17e0
[ 1334.481827][   T38]  </TASK>
[ 1334.481858][   T38] 
[ 1334.481858][   T38] Showing all locks held in the system:
[ 1334.481867][   T38] 2 locks held by rcuc/0/20:
[ 1334.481880][   T38] 1 lock held by khungtaskd/38:
[ 1334.481889][   T38]  #0: ffffffff8d3a9b40 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1334.481954][   T38] 2 locks held by kworker/u8:15/3396:
[ 1334.481966][   T38] 2 locks held by getty/5574:
[ 1334.481976][   T38]  #0: ffff88823bf368a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1334.482029][   T38]  #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1400
[ 1334.482077][   T38] 9 locks held by syz-executor/9201:
[ 1334.482091][   T38] 3 locks held by kworker/1:2/25197:
[ 1334.482103][   T38] 3 locks held by kworker/u8:13/27153:
[ 1334.482113][   T38]  #0: ffff888019481138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1334.482162][   T38]  #1: ffffc90005317bc0 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1334.482207][   T38]  #2: ffffffff8e668c78 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[ 1334.482252][   T38] 1 lock held by syz.7.12150/462:
[ 1334.482263][   T38]  #0: ffffffff8d3af4f0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1334.482306][   T38] 1 lock held by syz-executor/870:
[ 1334.482317][   T38]  #0: ffffffff8d3af4f0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1334.482361][   T38] 1 lock held by syz.8.12363/908:
[ 1334.482370][   T38]  #0: ffffffff8d3af4f0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1334.482429][   T38] 1 lock held by syz-executor/1376:
[ 1334.482440][   T38]  #0: ffffffff8d3af4f0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1334.482482][   T38] 1 lock held by syz-executor/1401:
[ 1334.482493][   T38]  #0: ffffffff8d3af4f0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1334.482537][   T38] 1 lock held by syz-executor/2236:
[ 1334.482548][   T38]  #0: ffffffff8d3af4f0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1334.482591][   T38] 1 lock held by syz-executor/2779:
[ 1334.482601][   T38]  #0: ffffffff8d3af4f0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1334.482644][   T38] 1 lock held by syz-executor/2798:
[ 1334.482654][   T38]  #0: ffffffff8d3af4f0 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[ 1334.482698][   T38] 2 locks held by syz-executor/3735:
[ 1334.482708][   T38]  #0: ffffffff8ddd0ce0 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 1334.482760][   T38]  #1: ffffffff8e668c78 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1334.482804][   T38] 2 locks held by syz-executor/4196:
[ 1334.482815][   T38]  #0: ffffffff8ddd0ce0 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 1334.482864][   T38]  #1: ffffffff8e668c78 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1334.482908][   T38] 2 locks held by syz-executor/4199:
[ 1334.482918][   T38]  #0: ffffffff8eb6aee8 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 1334.482967][   T38]  #1: ffffffff8e668c78 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1334.483027][   T38] 4 locks held by syz.1.14103/4649:
[ 1334.483038][   T38] 
[ 1334.483042][   T38] =============================================
[ 1334.483042][   T38] 
[ 1334.483058][   T38] NMI backtrace for cpu 0
[ 1334.483079][   T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1334.483104][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1334.483113][   T38] Call Trace:
[ 1334.483120][   T38]  <TASK>
[ 1334.483128][   T38]  dump_stack_lvl+0x189/0x250
[ 1334.483148][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1334.483165][   T38]  ? __pfx__printk+0x10/0x10
[ 1334.483198][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1334.483224][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1334.483248][   T38]  ? __pfx__printk+0x10/0x10
[ 1334.483273][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1334.483298][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1334.483322][   T38]  watchdog+0xf93/0xfe0
[ 1334.483345][   T38]  ? watchdog+0x1de/0xfe0
[ 1334.483367][   T38]  kthread+0x711/0x8a0
[ 1334.483388][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1334.483403][   T38]  ? __pfx_kthread+0x10/0x10
[ 1334.483418][   T38]  ? rt_spin_unlock+0x150/0x200
[ 1334.483442][   T38]  ? rt_spin_unlock+0x161/0x200
[ 1334.483460][   T38]  ? __pfx_kthread+0x10/0x10
[ 1334.483479][   T38]  ret_from_fork+0x439/0x7d0
[ 1334.483504][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1334.483532][   T38]  ? __switch_to_asm+0x39/0x70
[ 1334.483548][   T38]  ? __switch_to_asm+0x33/0x70
[ 1334.483565][   T38]  ? __pfx_kthread+0x10/0x10
[ 1334.483583][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1334.483617][   T38]  </TASK>
[ 1334.483664][   T38] Sending NMI from CPU 0 to CPUs 1:
[ 1334.483688][    C1] NMI backtrace for cpu 1
[ 1334.483704][    C1] CPU: 1 UID: 0 PID: 3396 Comm: kworker/u8:15 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1334.483743][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1334.483766][    C1] Workqueue: bat_events batadv_nc_worker
[ 1334.483786][    C1] RIP: 0010:lock_acquire+0xcd/0x360
[ 1334.483806][    C1] Code: 0f 85 eb 00 00 00 65 48 8b 04 25 08 90 80 91 83 b8 5c 0b 00 00 00 0f 85 d5 00 00 00 48 c7 44 24 30 00 00 00 00 9c 8f 44 24 30 <4c> 89 74 24 10 4d 89 fe 4c 8b 7c 24 30 fa 48 c7 c7 da ea bc 8c e8
[ 1334.483818][    C1] RSP: 0018:ffffc9000da0f948 EFLAGS: 00000246
[ 1334.483830][    C1] RAX: ffff888030a50000 RBX: 0000000000000000 RCX: fac82fbdce27c300
[ 1334.483841][    C1] RDX: 0000000000000000 RSI: ffffffff8a838b1b RDI: 1ffffffff1a75368
[ 1334.483851][    C1] RBP: ffffffff8a838afa R08: 0000000000000000 R09: 0000000000000000
[ 1334.483860][    C1] R10: dffffc0000000000 R11: ffffffff8a8389e0 R12: 0000000000000002
[ 1334.483870][    C1] R13: ffffffff8d3a9b40 R14: 0000000000000000 R15: 0000000000000000
[ 1334.483880][    C1] FS:  0000000000000000(0000) GS:ffff888127117000(0000) knlGS:0000000000000000
[ 1334.483892][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1334.483902][    C1] CR2: 00007fcf4015c470 CR3: 000000000d1a6000 CR4: 00000000003526f0
[ 1334.483915][    C1] Call Trace:
[ 1334.483921][    C1]  <TASK>
[ 1334.483930][    C1]  ? batadv_nc_worker+0x11a/0xbc0
[ 1334.483950][    C1]  batadv_nc_worker+0x13b/0xbc0
[ 1334.483966][    C1]  ? batadv_nc_worker+0x11a/0xbc0
[ 1334.483983][    C1]  ? batadv_nc_worker+0x11a/0xbc0
[ 1334.484001][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1334.484019][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[ 1334.484038][    C1]  process_scheduled_works+0xae1/0x17b0
[ 1334.484070][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1334.484095][    C1]  worker_thread+0x8a0/0xda0
[ 1334.484114][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1334.484137][    C1]  ? __kthread_parkme+0x7b/0x200
[ 1334.484159][    C1]  kthread+0x711/0x8a0
[ 1334.484174][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 1334.484191][    C1]  ? __pfx_kthread+0x10/0x10
[ 1334.484203][    C1]  ? rt_spin_unlock+0x150/0x200
[ 1334.484221][    C1]  ? rt_spin_unlock+0x161/0x200
[ 1334.484236][    C1]  ? __pfx_kthread+0x10/0x10
[ 1334.484250][    C1]  ret_from_fork+0x439/0x7d0
[ 1334.484269][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 1334.484289][    C1]  ? __switch_to_asm+0x39/0x70
[ 1334.484302][    C1]  ? __switch_to_asm+0x33/0x70
[ 1334.484316][    C1]  ? __pfx_kthread+0x10/0x10
[ 1334.484330][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1334.484351][    C1]  </TASK>
[ 1334.484732][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 1334.484749][   T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1334.484768][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1334.484777][   T38] Call Trace:
[ 1334.484785][   T38]  <TASK>
[ 1334.484792][   T38]  dump_stack_lvl+0x99/0x250
[ 1334.484810][   T38]  ? __asan_memcpy+0x40/0x70
[ 1334.484828][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1334.484845][   T38]  ? __pfx__printk+0x10/0x10
[ 1334.484877][   T38]  vpanic+0x281/0x750
[ 1334.484897][   T38]  ? __pfx_vpanic+0x10/0x10
[ 1334.484912][   T38]  ? __x2apic_send_IPI_mask+0x1e4/0x260
[ 1334.484931][   T38]  ? preempt_schedule+0xae/0xc0
[ 1334.484956][   T38]  ? preempt_schedule_common+0x83/0xd0
[ 1334.484984][   T38]  panic+0xb9/0xc0
[ 1334.485001][   T38]  ? __pfx_panic+0x10/0x10
[ 1334.485026][   T38]  ? preempt_schedule_thunk+0x16/0x30
[ 1334.485052][   T38]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[ 1334.485076][   T38]  watchdog+0xfd2/0xfe0
[ 1334.485097][   T38]  ? watchdog+0x1de/0xfe0
[ 1334.485119][   T38]  kthread+0x711/0x8a0
[ 1334.485140][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1334.485155][   T38]  ? __pfx_kthread+0x10/0x10
[ 1334.485170][   T38]  ? rt_spin_unlock+0x150/0x200
[ 1334.485194][   T38]  ? rt_spin_unlock+0x161/0x200
[ 1334.485212][   T38]  ? __pfx_kthread+0x10/0x10
[ 1334.485231][   T38]  ret_from_fork+0x439/0x7d0
[ 1334.485256][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1334.485284][   T38]  ? __switch_to_asm+0x39/0x70
[ 1334.485300][   T38]  ? __switch_to_asm+0x33/0x70
[ 1334.485316][   T38]  ? __pfx_kthread+0x10/0x10
[ 1334.485335][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1334.485368][   T38]  </TASK>
[ 1334.485628][   T38] Kernel Offset: disabled