last executing test programs:

6.307940296s ago: executing program 2 (id=1089):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4000)
fcntl$setstatus(r0, 0x407, 0x94c402a0)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r2, 0x641f)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
recvmmsg(r4, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x17}}], 0x400000000000179, 0x0, 0x0)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r3, &(0x7f0000000200), 0xfffffd9d)
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc00c64b5, &(0x7f0000000280)={&(0x7f0000000140)=[<r7=>0x0, 0x0, 0x0, 0x0], 0x4})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f0000000400)={&(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[<r8=>0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0], 0x9, 0x5, 0x1, 0x3})
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f0000000500)={0x0, 0x0, <r9=>0x0, 0x0, 0x0, 0x6, &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f0000000580)={r7, r8, r9, 0x0, 0x0, 0x7, &(0x7f0000000540)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r2, 0x4008941a, &(0x7f0000000100)=0x2)
write$sndseq(r6, &(0x7f0000002200)=[{0x84, 0x77, 0x0, 0xfc, @time={0x0, 0xee}, {}, {}, @raw32={[0x2]}}, {0x0, 0x0, 0x0, 0x83, @time={0x0, 0x7}, {}, {}, @note={0x81}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x0, 0x0}}], 0x54)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r10 = inotify_init1(0x800)
fcntl$setown(r10, 0x8, 0xffffffffffffffff)
fcntl$getownex(r10, 0x10, &(0x7f0000000440)={0x0, <r11=>0x0})
r12 = syz_open_procfs(r11, &(0x7f0000000600)='fd/4\x00')
write$RDMA_USER_CM_CMD_QUERY(r12, 0x0, 0xfffffffffffffe9a)
setrlimit(0xf, &(0x7f0000000040)={0x3, 0xfff})

5.435443982s ago: executing program 2 (id=1092):
openat$snapshot(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0xfffffffa, 0x4200)
read(r0, &(0x7f0000000480)=""/241, 0xf1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r4, @ANYBLOB], 0x70}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="01000a00"})

5.337213736s ago: executing program 2 (id=1096):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r3, 0x720, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x118)
ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07)
r4 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0185648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)={0x98f90d, 0x9, '\x00', @string=&(0x7f0000000140)}})
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
setsockopt$bt_hci_HCI_FILTER(r5, 0x0, 0x2, &(0x7f0000000440)={0xfffa, [0x0, 0xffffffff], 0x1000}, 0x10)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mq_open(0x0, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040), 0x0, &(0x7f00000000c0), 0xfffffffffffffdeb, 0xfffffffffffffffd)

3.127922804s ago: executing program 0 (id=1114):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
timer_create(0x9, &(0x7f0000000100)={0x0, 0x0, 0x1}, &(0x7f0000000500))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000700)={{}, {0x77359400}}, &(0x7f0000000380))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x3}}, 0x14}}, 0x0)
r2 = syz_open_procfs(0x0, 0x0)
fchdir(r2)
write$P9_RSETATTR(r2, 0x0, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x3d, &(0x7f00000003c0)="4587c668db643e9ad34b91b8d5d960380bbb0b08e4d2923c9c4fb357b68a68cb5c9afddb953278c0a46420702a53c4577ccc700ed81d32a42bcfef7128a9a3ac4bdf025d89d81a271ae62d9d6c8b07b186235db3f124b8b1467011cd9b9e241741dd550bff3a612c84aa4d6d5bcefae0fa3af64b8277dc1ac4f6767b73549c88704b6be7a7beebdb62af4be4ced66e199e569864e035fc2ee564c3d8ad6d2f9fe5fdd93f138b5ad2297fba3c1d7c155830c4b454c62d79f39c2984c313cdb2ac3f134a6228745c1e", 0xc8)
r3 = fanotify_init(0x0, 0x0)
fanotify_mark(r3, 0x1, 0x4000101b, 0xffffffffffffffff, 0x0)
fanotify_mark(r3, 0x2, 0x8001020, 0xffffffffffffffff, 0x0)
r4 = accept4(r0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad0000", 0x3)
recvmmsg(r4, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r5, &(0x7f0000002140)=[{{&(0x7f00000001c0)={0xa, 0x4e21, 0x8, @empty, 0x1}, 0x1c, 0x0, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="140000002900000037000000"], 0x14}}], 0x1, 0x20000045)

2.986473957s ago: executing program 0 (id=1115):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=@newtaction={0xec4, 0x30, 0x1, 0x0, 0x0, {}, [{0xeb0, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}, @m_pedit={0xe60, 0x2, 0x0, 0x0, {{0xa}, {0xe34, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x10, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x6}]}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x8}, [{}, {}, {}, {0x0, 0x700}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xec4}}, 0x0)

2.985389872s ago: executing program 0 (id=1116):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
timer_create(0x3, &(0x7f0000000040)={0x0, 0x2e, 0x6, @thr={&(0x7f0000000300)="c6f670f200c25293c9f397627a68f362e6e00ef17e2b2628627c463f14bd0a0c064e8e649ea7947216642fe4bad5048da6e05baf814c462095a3ebed081f72c906479b399f3b49e45eaa05bbfc07dba4916d1897733dd35dc254a37b3d1146d5fd7eb8b019e9676979", 0x0}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102376, 0x18fe8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents(r2, 0x0, 0x0)
syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x18202, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x0, 0x213f, &(0x7f0000000380)=ANY=[@ANYRESDEC], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r4, &(0x7f00000002c0)={&(0x7f0000000000)={0xa, 0x4e23, 0x7, @ipv4={'\x00', '\xff\xff', @multicast2}, 0xb1}, 0x1c, &(0x7f0000000280)=[{&(0x7f00000003c0)="bdcf5722ba942a31e139d8f8d79984f586440ad354177c8882da6be77b8278", 0x1f}], 0x1, &(0x7f0000000680)=ANY=[@ANYBLOB="6400000029000000390000002c0a00090000000010000000290000003e000000020000008c000000296a1527454a6eeb65218dd87a00000037000000040e000000000000010300000000010005020009085471ea28af473f2d9b1e52e6fb16d7cd2d17a321b6b8b2a7018959dd5a11580da2c963ce2e0adfa391910eced718f8b3a220834028b88a8f5293b9bfbd137c6fe803bcce07416117150d84bf14d30917fc37ed858a00010007100000000302f7ac0b090000000000000000940000002900000039000000872800f200000000fe8000000000000000000000000000aaff020000000000000000000000000001ff01000000"], 0x1ec}, 0x4000)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30)
read$FUSE(r5, &(0x7f00000021c0)={0x2020, 0x0, <r6=>0x0, 0x0, 0x0, <r7=>0x0}, 0x2020)
r8 = getpgid(r7)
capset(&(0x7f00000000c0)={0x20071026, r8}, &(0x7f0000000240)={0x5, 0x101, 0xf7b, 0x7f, 0x8, 0xa61e})
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
write$FUSE_NOTIFY_DELETE(r5, 0x0, 0x36)
write$FUSE_INIT(r5, &(0x7f0000000040)={0x50, 0x0, r6}, 0x50)

2.518453358s ago: executing program 2 (id=1117):
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a440000102030109025c0002010000000904000001a3f45747d649f9a30105240000000d240f8100000000000000000006241a0000000905810300000000000904010000020d00000904010102020d000009058202000000000009050302"], 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r0, &(0x7f0000001300)="92", 0x2)
fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, <r1=>0x0})
process_vm_readv(r1, &(0x7f0000001200)=[{&(0x7f0000000040)=""/126, 0x7e}, {&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f0000001140)=""/173, 0xad}], 0x3, &(0x7f0000002440)=[{&(0x7f0000001340)=""/4096, 0x1000}, {&(0x7f0000002340)=""/217, 0xd9}, {&(0x7f0000001240)=""/129, 0x81}], 0x3, 0x0)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000040)={0x0, 0x8, 0xffffff8a})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000020000000009500008f00000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = socket(0x10, 0x803, 0x0)
sendto(r4, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0xdc}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x188}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5800f1de2ddb18709ec700000000000000000000100001800c0002800500010000000000300003802c00018014000300fc00000000000000000000000000000014000400fe8000000000000000000000000000bb04"], 0x58}}, 0x0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="d824000028000100020000080000000008"], 0x24d8}], 0x1}, 0x0)

2.007589387s ago: executing program 0 (id=1122):
openat$snapshot(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0xfffffffa, 0x4200)
read(r0, &(0x7f0000000480)=""/241, 0xf1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r4, @ANYBLOB='\n\x00'], 0x70}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="01000a00"})

1.947409988s ago: executing program 0 (id=1124):
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0x0, 0x0) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x55af) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
fsetxattr$security_capability(r0, &(0x7f0000000140), &(0x7f0000000080)=@v3={0x3000000, [], 0xee00}, 0x18, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) (async)
getxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.metacopy\x00', 0x0, 0x0) (async)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0) (async)
r3 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0xb, &(0x7f0000000000)=0x2, 0x4) (async)
sendmsg$ETHTOOL_MSG_RINGS_SET(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)={0x14, 0x0, 0x204, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20000044}, 0x8894) (async)
write$binfmt_script(r2, &(0x7f0000000040), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0) (async)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000180)={{{@in=@local, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@empty}, 0x0, @in6=@local}}, &(0x7f0000000280)=0xe4)
r5 = gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000029000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}) (async)
r8 = socket(0x11, 0xa, 0x0) (async)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000400)=@target={'target ', {'PCI:', '1', ':', '12', ':', '16', '.', '16'}}, 0x16)
sendmsg$can_bcm(r8, &(0x7f0000000140)={&(0x7f0000000000), 0x10, &(0x7f0000000080)={0x0}, 0x8}, 0x0)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r9, 0x80047213, &(0x7f0000000340)) (async)
ioctl$int_in(r6, 0x5452, &(0x7f0000000180)=0xffffffffffffffff) (async)
fcntl$setsig(r6, 0xa, 0x12) (async)
ppoll(&(0x7f0000000100)=[{r7}], 0x1, 0x0, &(0x7f0000000080)={[0x8001a0ffffffff]}, 0x8) (async)
dup2(r6, r7) (async)
fcntl$setown(r7, 0x8, r5)
tkill(r5, 0x13) (async)
mount$pvfs2(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x14008, &(0x7f00000002c0)={[{}, {'#! '}, {'net_prio.prioidx\x00'}, {')!&\'.^\xcd\\]'}], [{@audit}, {@pcr={'pcr', 0x3d, 0x14}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@fowner_eq={'fowner', 0x3d, r4}}, {@obj_user}]})
getsockopt$inet6_mptcp_buf(r1, 0x11c, 0x4, 0x0, &(0x7f00000000c0))

1.877925761s ago: executing program 0 (id=1125):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r3, 0x720, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x118)
ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07)
r4 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0185648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300)={0x98f90d, 0x9, '\x00', @string=&(0x7f0000000140)}})
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0x3}, 0x4)
setsockopt$bt_hci_HCI_FILTER(r5, 0x0, 0x2, 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mq_open(0x0, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040), 0x0, &(0x7f00000000c0), 0xfffffffffffffdeb, 0xfffffffffffffffd)

1.058410478s ago: executing program 1 (id=1126):
r0 = socket$inet6(0xa, 0x2, 0x3a) (async, rerun: 64)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0) (rerun: 64)
close(r1)
socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0) (async)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001400add427323b470c45b45602067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1) (async)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000040)=0x9, 0x4) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0x3}]}, 0x3c}, 0x1, 0xd}, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xa}, 0x1c) (async, rerun: 32)
r4 = socket$inet6(0xa, 0x2, 0x3a) (rerun: 32)
setsockopt$inet6_int(r4, 0x29, 0x4e, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xa}, 0x1c) (async)
r5 = syz_open_procfs(0x0, &(0x7f0000000480)='net/icmp6\x00')
preadv(r5, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/133, 0x85}], 0x1, 0x114a, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = openat$ttyS3(0xffffff9c, &(0x7f00000000c0), 0x480000, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000080)=0x15)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0xf) (async)
landlock_create_ruleset(&(0x7f0000000100)={0x2000, 0x2, 0x3}, 0x18, 0x0)

1.058175722s ago: executing program 1 (id=1127):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=@newtaction={0xec4, 0x30, 0x1, 0x0, 0x0, {}, [{0xeb0, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}, @m_pedit={0xe60, 0x2, 0x0, 0x0, {{0xa}, {0xe34, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x10, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x6}]}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x8}, [{}, {}, {}, {0x0, 0xe4ff}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xec4}}, 0x0)

987.609312ms ago: executing program 1 (id=1128):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000000)={0x7fffffff, 0x0, 0x0, 0xffffffff, 0x0, "ff3f66fa733f1b33e356d25b90c98fe587b88a"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba0700000000ebffffff0000f7ffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000180))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f00000004c0)={0x24, 0x0, 0x10, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_FEATURES_WANTED={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x22000000}, 0x4040080)
set_mempolicy(0x3, &(0x7f0000000080)=0x5, 0x9)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYBLOB, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x95, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

867.607352ms ago: executing program 1 (id=1129):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x1, 0x4, 0x6, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000002700)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r0, &(0x7f0000000580)={&(0x7f0000000240)={0x2, 0x4e24, @multicast2}, 0x10, &(0x7f0000000340)=[{&(0x7f0000002740)="9faa09795a0cf4473055210735542f33cebe8bf409e92ef71ef09418ccccb16b9d8d5fa9a69aac1cc0b5429a36e4037abb11df0e3bc783948b01931aa85451029642150015a71919046541fb2f3ea12e53c52b142287207289815ebd66d5c480a514256544fa37ebbfc86f593b5e787d0c6d7a1b9e795129ec0ef24a3cfdf302f85b40ec427f638f42b79820e6907e63b731669ea4d181deb20342632c9153ca8787c12475d6dcab5b6e9b3fc577bef94488e887f1dbfd1a50b023a8cbe722bd3d17637cd3aa5423931731da4a4f7ec7e868dfd2106363c5f29a0c64bf645e02af0d97d2f44ef0bbd04b3eb71b4a66683a88b06b9285bd45fc2a6b883be8642b0a164bccdd36f48e4ca7d6142429370de796e4c3a2a11840bdee3bd0228e1a51ea8acf0eaacc8c15c49774630dbf48ebc939ef5dc265089f67237668738f5de21594c6bcefac3134b5328a512bafb3bb63d5168fc304b9d362dcdd9b70e3231f7db7d6ebf9147cb6574c980e91538e3f789cd7ed51eaa5f7bb3b968da925439d2012d5d085e1c4be48ee27a039f7e68da5dc527d16b02764004851db1dd4f2bcd5c6796b8c1fb5a760f0a57cc97ecf24c1d9cf19e2067f8523ab61e5326d1267ceb21fd6ee81d39e62d0454eb3dfff0d25fa4c19d281c62ecdd7c0986e0dd5d876b9e3e24d3a3f45b12c172238580e2c6893f19e38bbd9038699083caedbd9cd819049df2ed590c3061c9d1a243caae8a75f444f2bccc6b0da01600cf93fc30e20c69c0aa299af761b38ccf6eba5a4500f98fc7cdee7d48802b7be0c3d467d445706ff1d9a8748bc0ca4c2af3c375eb037290cab9825823f3cc594f2ae3be153666c4e709cb74ce92883e313efa016f1de09abe0d4270c9aa6eb6465da42be2bcdd7467d87fe0765adfdd5cd71aca0ffaf0021109709764fbfdc09d0f58bfa7ccfbbdd682530ca2bc94243801abe03458101db9bf2ac913e29bfae0c518dfe7539e73f13141af23f4e93059d43abea1fd549cebe503faac0ac541a814ba7e1f86966e68e99361009e566f7a629ed708d09dd5788b3cf19f148f48f43b38b2395b32ab767751466347221d9ceb46dd41e5669173bbb2cf0e0732ac4680246f9e8ff0adc18f97ff059c80cdbab5b7707ab76ff99ac6e065ea210289d8b5b4aa7545da66af1cbcea3a4d3406fda56a3afb7cd077292a357cd45e7772dfd98a06269c683f6e9e28cb4cee612dab81ce548c8ea4b30f112b5f70ad8635306a10af1007cae1855ac613cd0321b4e7224222e8865bc3408e38f9d6e882365485cce8fb69376bc10bdc83d2c82492d347fa9475d52e54aa06ddf032c08a7ddb4633edd81fd58edd4b06f63e88bc1cd3f5fe0cd761110d491feba11ad7ae421aec387490b31aa19549f14fdf2afd4f55479323487d5bce3fd3ec09b11513642147b1ba946548348e3a769777ae2ed7059c283afe56f82449a6ef59a8ae0d3060c3bc6d4a3d0754006bc8fca52b1b978784701541fe24c24ae99c0aebd3088a54ab8314f7d645ae2e7e7ae4b10ce284ad6e469760fe74f45a3aca4d2293edc7d1db52f71304816e7a067331bd3618491523a438809c80bd222b5a83c8fcf461ed3f8dff4698f8655d38ac12b1343a45a3fab465a0199782bf63d80e93f88f1278cb8a267858f64dacf902b4ca9134bd3a180bb7fc7e0a02154363f0779f1163cdc6f61fcadcaa156e658b9c92cb0ecbacc547a30bc8aa839c2fcbc090ad4f027a7821e0b9a4e578e5b8f061fbeab50b1935b6486f90b53bbb05d1564bccfb8a4eae074af0342b224092e09ec645395b75cd27f612b482f1f3b9039a8a03990f9c2e6c0f8e8ccae9658b56034e81ee57049b825e5aaec9f339145664f77a6cb3bc41f29f9bd86c9dabde5aac99423282fce3729be595abbe396b6019f94045e6cfe6108ff293a9eb6bab813d9444a17aa328a8a4dc89a6051a3cd58148ffe26ec9399332b8814a523cca1a501049babf27a4bff8b6b692933c4d9e9633c3be030b589539bb8a7046af6c5e024bd80f7cb7e30685a348d01f67e265d70332041496c42e224464ad68903e0ea0eee8ccbcf59c2b82ae6f8fa92689b4fc4a18f04f25cd6467aac6aa3fee523398d3c2622624ccab0a67157835f71eb2c74a8e210980e62eb1a1a6fc86378799b41e606fded249327d201e98c5391e83235f40b30491a9ab0005e833604cfaaf421346206d059a2b4370af9a0409512c60eafcd3f9434d00131175405f3d3a64359fe4b9b20b4f753b0ce7969c7197e80bb1bca653cabe9e17012dda39f8a002d7b828175b72e8211ed6fac7e3924af529db9185024e5f85f2e1e3dda660d3297aac548779f3495ed530dd53953bc8c5063328d40f6aaab9b7defc54c111b7324f9326585b7151f00638207eca7179b970a6299fe1481aea198a24a75a25eb14231d2b7b19383afcbeced521df83fab1c79de34ab9fc839b622b96c4ecd1c2ac7620746e9449ea33147132595993c660d78152d4eaf1bee313636d53252f09d37d588f4b6b219c9e2b3faba901d9ab8801532fd43d95c8590d49ca24073ab4bb15ee6e0c6fd9d94cb6c8b07bdf8008bb4fff52489ae5277ae4e866187fccf9b3285b9007ed3f09857fa3c6a10b651e80a0028b6ef860128a657f2819e73f5236ae50fb181c20f2a4a0cb842fcde2fc3a9ceb5127b389eef7afab91e43d7ee85e43bbc9f889add0bde091abe716cac74810e5191843bbe5e8fabd9d7aff6396756e4875abc0e2dd46af5d8aba9e3c81c13b9fe90d184181d1e299d21bea7602a74dc547a43309f0cfb6933029b186fb6c6d22ff9a4452cb7da54019275ea9ae5ad21148a2726eac7c4218ce3a013a7068e049de8769fcef13ee9ee178f8b5e1c8bcaf90cf8ccdf834865c437ccb0794d0d6af6c93d22f4fbed28fed14494fe85c66ea2fecc9c9b15af76cd9734a90ffa1052edead322d4e30f77d62e05a31c3918f0251887d579031e1fa609c1f9e7fb10db68c9988d35dbb2716a05ce882fed2af10725a4141a28faa7417fd4305b27585ff13ffa9c5dbf2ba890ee47cc8924e5dd30bce2d4da522785f35a5ed8eab5939408fb33bd6bde3cf55e20b14412efcd7f59edb23833120e5e25439ec974b92271afec9768f70f447dd27b4a33e3f698953a74480006290b8ed61b5ae357b2c82ef4a59f2929fe3a1aa70e69a94a07618b1aa698d9da1a0be8293ae63276eb48dfae5580d2d28544b4e7d8f4bb86cc00c169239f8cbece55c0f1dbbfa627f626ee64f820797a811cebb039da2a62bb7fe021a85cc1d1bfe8da7a1bca833f1affa5a34d9d95d5523769e31b6551d4d75d1798d72e72c6062b239c6cc8420929b22e1d73c8a3c4ab3a54f4d85bb1961fd198cf1f7bb156178fad2bfa226840b0035dee4aff009aaafd974982f3807b0c863e40b73d9831282cb6b04de748583d23db02ba6b354b88a1ade67b562d731c3b4c9487cf2355c2d978606ed7032d1df0f6364974b361d96a01dfc3b693ecde9f312230afa692421bfdbfcf5a7af78dc44ea8b6ace6ef8124c4ac19f349683cee84cd7d3f7c34070854d8197a151dcc15b31d9fe2573769c5e4bfd9301f99cdcfcf3a6a63aea63c7a1c5f90bbbdd79985fe523aa8b8aaddf7f2e2af831fd19bd27b69a828c08576eb4fed4c5249e1288daedac6ed8979ac14e96cf0056568ed3c142fca74875c9a74c34d832f0c5762dbfb000f76fc6404ef1a3b2cf8265e95f4ac3a163fa7270c10ff8cc189d4ffa489c7610d4170ad43408d7f6f8f20ee071ea55bbbe79b164921ca2e7e2b037b8c5f732913da127c40a003e5b6f00482702e48f48a90e4396aa747b6a8753e2983f8a3162d1404ff0834437e2ef706f1570ef71cda5e8edb5c81ac81b4f312bb453e90711dcd0d66bdebabec069ce39fdc6bf50a8b8a86391606171f0af1ddfefcd1f680013aab5b70fd67758a5d8d05eb4b6fa1cfd7166a46c7ea285da3a5d9bc3e7ebcd1d25abdebb94d98aac49fb3702fc0729a3baee2b56bce0e3d92dad29acac62108d151bebf90935d57f59c5143b4a855729fc7a384953d2353237c50b1cdea69af9c460da14e5c9c423eb5d85823441f9f9c34cab9c5e0f5fad31f1d858358a45b8fba2944f7c13866ebeb907e84ab6fbecf1330951ebba84af3ce3bedacc2f3f850bcee4db304e693d0ffdad8a3f84a5786a018a7633c6fadf8f92e349e4bbbbc2e548f74be9c2012590b5dfa1cc8c292df6a1c8eb6603ea19738b7f4b4fc411bdbf838d9f3ca2e75346f1e41847e47afb6fe3592749bf8d44ef421c2b86db075c0d60fdac4ed93753865f93948657d4f258f6d34e95dd64c8e8baaf6e182b9158339efd448a7aedef18f8478ee61af6c78659dd8e8791cf225bb2d78bed7761f812a30067a17e70186fa17c01e984461850559c71469acd86d136866f7d14738cad631696954165472bd491f810755cc5d438288beaeed58ff164f5d56757fc7574611c2aca790791aa5bbef01ec01cd1b15311494e50d8bb0cd131d2d5f715d4748c0447f8bacaeaf5cbb7701dc8d677fac576211008816a02862b5d4a307c054eba507c19e6967d4578f22e1d961fb645560a0734a5da9e759b0e7c27dd504038dae5d1b35d0cdc18640d59a0fb828b7f24259a422495978b0fb7eb5ad9221c1323ed5955a51e8d8d1654f0aacf8405afa41b7227a9509b461e9f1dd5f9391542598a278678ccd537fe2b8edfe5d17a35f957080ca5ca1f1add5c208607f7c79de238884d57fb9d6c498986dc86201a6ba41361e9922d9de84f6e8b79f9a7e0ce075562e89f30a6573feb4d698a11f4e341df95491b2b9f94b79889e3dd928271a2e3cd55658b1f8b2867e1dc910ba763afb7c90bae52254ed3f85b622f5d21fdad5c2a7f13c02270111c7c582d11125ebcd5582a2decf2a000e88626a8b2aae8d4ea5bfad43c7cb788085faf343a4f41ea46ae8b7983d86f1dd127b8634f1b68e995861acb1499477d73492323ca5173323cd18c480c39cfd73ed988d0708e5a53ff55e8bb6195952889f76000418c2d9d9a21204074ae20605049ac6692695ea6eff54438def14115c05ba9ff173fc70b44e02b70824060a7396b52f1a390fdc38893bae3f90100fef5940500f357bae7097237ca9ceadf78651061e3e23d8b5950523b10f5b3fd8bd3f4e34eebf0e7a155eb405d681951069e0378fad24583e0965a10270a4497dc468ea4daa518dc4f317b5f2497d6d252a455694e891e5a640769478bb6b1d6bad5e1efa837ad778a2ea2b54caaa15906808990dbb9ce7565536a999f6518c74208f90b737e86d31150c53ac0642dd1bd6d6fb7aba9bea06e150127930b3e241e1deff7c535006e7a22d3d6f376117a8940493048f83eed778a258c4733020587575c925f587b53c0751f6e7a15641bb085d437ec0580367e19a407c6bdca17129e7ddfcc2ce7cf68ae24ab2ed7448c4f91e838fa4f400abcdcf84d284caaa46e00da66d57d12b5136ddab8508b7410c8ea406d272d167b98405f17565819f124791fefe5e991e196db880b8bbc3bd29ca9a9ee1c642e4a61c8dc641d2290177c956de94a75183eeaf892ffda361511e3fccc869ca2330b14c77ec35ab204206bd980eb8958f4c26dc5e0fb7529aef145464fdb8798f5a4dcfd0741f5e301d14453fa03b2c0ad00550a9c85c52ef9d06fcbecd6adf5e039c6deb63ac5efef5649af4a00b3531d5e682720bf79b85a021c79701f54f722adca94a1f7a71", 0x1000}, {&(0x7f0000000280)="705a876515b46fbb2dfa4537949d302ee1d7df5450a31503e2c6ff3aae6dcfc14003508622b577a8", 0x28}], 0x2, &(0x7f0000000740)=[@ip_ttl={{0x10, 0x0, 0x2, 0x8}}, @ip_retopts={{0x54, 0x0, 0x7, {[@lsrr={0x83, 0x1b, 0x87, [@rand_addr=0x64010100, @multicast1, @broadcast, @multicast2, @empty, @remote]}, @ssrr={0x89, 0x2b, 0x8, [@rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @private=0xa010100, @multicast1, @private=0xa010101, @broadcast, @rand_addr=0x64010100, @multicast2, @broadcast]}]}}}, @ip_retopts={{0x10, 0x0, 0x7, {[@end]}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x60}}], 0x84}, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000005c0))
socket$nl_generic(0x11, 0x3, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r4 = io_uring_setup(0x19ad, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x14)

867.160558ms ago: executing program 1 (id=1130):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r3 = dup(r2)
bind$bt_l2cap(r3, &(0x7f0000000300)={0x1f, 0x0, @none}, 0xe)
listen(r3, 0x0)
sendmmsg$alg(r1, &(0x7f0000000b80)=[{0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000001600)="b516d83ea10c0490eee71cc46da0385dc73ab74ac73c471213199401b78fc1421d7d5c8c00bfd08e24b495f7c0", 0x2d}], 0x1, 0x0, 0x0, 0x4000000}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000000480)=[{{&(0x7f0000000100)=@alg, 0x80, &(0x7f0000000400)=[{&(0x7f00000001c0)=""/211, 0xd3}, {&(0x7f0000000040)=""/22, 0x16}, {&(0x7f00000002c0)=""/36, 0x24}, {&(0x7f0000000340)=""/180, 0xb4}], 0x4, &(0x7f0000000440)=""/60, 0x3c}, 0x4}], 0x1, 0x2, 0x0)
recvmsg(r1, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000000)=""/7, 0x7}, {&(0x7f0000000180)=""/37, 0x25}], 0x2}, 0x40002000)

568.437877ms ago: executing program 3 (id=1131):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
timer_create(0x3, &(0x7f0000000040)={0x0, 0x2e, 0x6, @thr={&(0x7f0000000300)="c6f670f200c25293c9f397627a68f362e6e00ef17e2b2628627c463f14bd0a0c064e8e649ea7947216642fe4bad5048da6e05baf814c462095a3ebed081f72c906479b399f3b49e45eaa05bbfc07dba4916d1897733dd35dc254a37b3d1146d5fd7eb8b019e9676979", 0x0}}, &(0x7f0000000100))
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102376, 0x18fe8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents(r2, 0x0, 0x0)
syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x18202, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x0, 0x213f, &(0x7f0000000380)=ANY=[@ANYRESDEC], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r4, &(0x7f00000002c0)={&(0x7f0000000000)={0xa, 0x4e23, 0x7, @ipv4={'\x00', '\xff\xff', @multicast2}, 0xb1}, 0x1c, &(0x7f0000000280)=[{&(0x7f00000003c0)="bdcf5722ba942a31e139d8f8d79984f586440ad354177c8882da6be77b8278", 0x1f}], 0x1, &(0x7f0000000680)=ANY=[@ANYBLOB="6400000029000000390000002c0a00090000000010000000290000003e000000020000008c000000296a1527454a6eeb65218dd87a00000037000000040e000000000000010300000000010005020009085471ea28af473f2d9b1e52e6fb16d7cd2d17a321b6b8b2a7018959dd5a11580da2c963ce2e0adfa391910eced718f8b3a220834028b88a8f5293b9bfbd137c6fe803bcce07416117150d84bf14d30917fc37ed858a00010007100000000302f7ac0b090000000000000000940000002900000039000000872800f200000000fe8000000000000000000000000000aaff020000000000000000000000000001ff01000000"], 0x1ec}, 0x4000)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x1}}, 0x30)
read$FUSE(r5, &(0x7f00000021c0)={0x2020, 0x0, <r6=>0x0, 0x0, 0x0, <r7=>0x0}, 0x2020)
r8 = getpgid(r7)
capset(&(0x7f00000000c0)={0x20071026, r8}, &(0x7f0000000240)={0x5, 0x101, 0xf7b, 0x7f, 0x8, 0xa61e})
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
write$FUSE_NOTIFY_DELETE(r5, 0x0, 0x36)
write$FUSE_INIT(r5, &(0x7f0000000040)={0x50, 0x0, r6}, 0x50)

358.492985ms ago: executing program 3 (id=1132):
openat$snapshot(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0xfffffffa, 0x4200)
read(r0, &(0x7f0000000480)=""/241, 0xf1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r4, @ANYBLOB='\n\x00'], 0x70}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="01000a00"})

358.122137ms ago: executing program 3 (id=1133):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
timer_create(0x9, &(0x7f0000000100)={0x0, 0x0, 0x1}, &(0x7f0000000500))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000700)={{}, {0x77359400}}, &(0x7f0000000380))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x30000, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x3}}, 0x14}}, 0x0)
r2 = syz_open_procfs(0x0, 0x0)
fchdir(r2)
write$P9_RSETATTR(r2, 0x0, 0x0)
r3 = fanotify_init(0x0, 0x0)
fanotify_mark(r3, 0x1, 0x4000101b, 0xffffffffffffffff, 0x0)
fanotify_mark(r3, 0x2, 0x8001020, 0xffffffffffffffff, 0x0)
r4 = accept4(r0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad0000", 0x3)
recvmmsg(r4, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r5, &(0x7f0000002140)=[{{&(0x7f00000001c0)={0xa, 0x4e21, 0x8, @empty, 0x1}, 0x1c, 0x0, 0x0, &(0x7f00000008c0)=[@dstopts={{0x14, 0x29, 0x37, {0x6c}}}], 0x14}}], 0x1, 0x20000045)

233.296134ms ago: executing program 2 (id=1134):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
timer_create(0x9, &(0x7f0000000100)={0x0, 0x0, 0x1}, &(0x7f0000000500))
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x77359400}, {0x0, 0x989680}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000700)={{}, {0x77359400}}, &(0x7f0000000380))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x3}}, 0x14}}, 0x0)
r2 = syz_open_procfs(0x0, 0x0)
fchdir(r2)
write$P9_RSETATTR(r2, 0x0, 0x0)
r3 = fanotify_init(0x0, 0x0)
fanotify_mark(r3, 0x1, 0x4000101b, 0xffffffffffffffff, 0x0)
splice(r3, &(0x7f0000000040)=0x5, r0, &(0x7f0000000080)=0x6, 0x0, 0x0)
fanotify_mark(r3, 0x2, 0x8001020, 0xffffffffffffffff, 0x0)
r4 = accept4(r0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad0000", 0x3)
recvmmsg(r4, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r5, &(0x7f0000002140)=[{{&(0x7f00000001c0)={0xa, 0x4e21, 0x8, @empty, 0x1}, 0x1c, 0x0, 0x0, &(0x7f00000008c0)=[@dstopts={{0x14, 0x29, 0x37, {0x6c}}}], 0x14}}], 0x1, 0x20000045)

148.002721ms ago: executing program 3 (id=1135):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f0000001dc0)=[{{0x0, 0x0, 0x0}}], 0x400000000000150, 0x0, 0x0)

68.010057ms ago: executing program 3 (id=1136):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=@newtaction={0xec4, 0x30, 0x1, 0x0, 0x0, {}, [{0xeb0, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}, @m_pedit={0xe60, 0x2, 0x0, 0x0, {{0xa}, {0xe34, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x10, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x6}]}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x8}, [{}, {}, {}, {0x0, 0xffe4}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xec4}}, 0x0)

67.75144ms ago: executing program 2 (id=1137):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000000)={0x7fffffff, 0x0, 0x0, 0xffffffff, 0x0, "ff3f66fa733f1b33e356d25b90c98fe587b88a"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba0700000000ebffffff0000f7ffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000180))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f00000004c0)={0x24, 0x0, 0x10, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_FEATURES_WANTED={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x22000000}, 0x4040080)
set_mempolicy(0x3, &(0x7f0000000080)=0x5, 0x9)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0500000004000000ff0f00000500000000000000", @ANYBLOB, @ANYRES32=0x0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x97, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

67.29961ms ago: executing program 3 (id=1138):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000280)={0x0, 0x0, 0x100000}, 0x20)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00')
r1 = open_tree(r0, &(0x7f0000000640)='\x00', 0x89901)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(0xffffffffffffffff, 0x0)
ioctl$SIOCX25SDTEFACILITIES(r4, 0x89eb, &(0x7f0000000180)={0x4, 0x0, 0x3, 0x0, 0x4, 0x80, 0x6, "195847a0aa45de6b85eae3efca1b99bbc529f7cf", "39e8599818f836f17fc62ac05f77a36d35695c8b"})
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r5 = open_tree(r1, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r6, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000000340)=ANY=[@ANYBLOB="5742966141ecda0e5ca84f6b72af00000000000000005d82c6cc7b12733f4027584dcb642ba8a34ca3ca7f9da5e52eb7b19fc11ddbb69c2bec2daddaaf51b638c9c902c662200f76ab6f4b551be6f6efe70deadc184d43103ac9cc523d0be919b48e3711a7f6dc20cec9e85a301f17ae8c9bb5fcb0a7ee3eca308f15564666cb68502b138d52a78a11c7004d1c2c9ddd7e73ceca189a3b76b50a514883de9556b64f4cca2502a536a5631649c1ee9ace63496d92", @ANYRESDEC=r3], 0xe84}, 0x1, 0x0, 0x0, 0x240040c0}, 0x40014)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = getpid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r7, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640), 0x0, 0x0)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ipv6_route\x00')
r9 = openat$dlm_plock(0xffffff9c, &(0x7f0000001dc0), 0x101002, 0x0)
ppoll(&(0x7f0000001fc0)=[{r9, 0x2402}], 0x1, &(0x7f0000002040)={0x0, 0x3938700}, 0x0, 0x0)
lseek(r8, 0xae7d, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000001c0))
openat$pmem0(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

0s ago: executing program 1 (id=1139):
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x6, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000340)=ANY=[@ANYRES64=<r1=>0x0, @ANYBLOB="0000000000000000050000080000008441d000a50007000000000000dc8c19230ce33474853edcc52f1ff01c17b605fb8f408d58b037e71297c615dffb25c4b1eb7550c4cc6522a0f6f9f4b413b9dd8ec7ec53052066f3a50cffdaffe65a9863415ee61382bb7844fb3fac07d9a21188737a38b0df4cf23c736c5245ae69dbe78d8a94e6"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000240)=[{0x1, 0x5, 0xf, 0x4}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r5, &(0x7f0000000100)={0x2, 0x0, @empty, 0x40}, 0x10)
bind$inet(r5, &(0x7f00000000c0)={0x2, 0x3, @rand_addr=0x64010100}, 0x10)
r6 = socket(0xa, 0x1, 0x0)
setreuid(0x0, 0x0)
setresuid(0x0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="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", @ANYRESDEC=r6, @ANYBLOB="7f0000017f000001000000001c000000000000000000000008000000", @ANYRESHEX=0x0, @ANYRES32=r1], 0x230}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90324fc60100005000a000248053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
pselect6(0x40, &(0x7f0000000000)={0x101, 0x4, 0x4, 0x8000, 0x5, 0x320000000000000, 0x1}, &(0x7f0000000040)={0x3, 0x0, 0x356, 0x5, 0xff, 0x8, 0x8, 0x2}, &(0x7f0000000080)={0x400, 0x5, 0xcc99, 0x1000, 0x5, 0x60, 0x1059, 0x8}, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000140)={&(0x7f0000000100)={[0x8, 0x5]}, 0x8})
ioctl$SNDCTL_SEQ_PANIC(r0, 0x5111)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:10417' (ED25519) to the list of known hosts.
[   32.795251][ T5266] cgroup: Unknown subsys name 'net'
[   32.940726][ T5266] cgroup: Unknown subsys name 'cpuset'
[   32.943800][ T5266] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   33.671655][ T5266] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   36.232724][ T5347] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   36.233380][ T4776] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   36.235644][ T5347] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   36.237750][ T4776] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   36.239628][ T5347] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   36.241704][ T4776] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   36.242932][ T5347] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   36.244853][ T4776] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   36.247550][ T5347] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   36.248798][ T4776] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   36.250266][ T5356] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   36.250270][ T5347] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   36.250994][ T5356] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   36.251551][ T5356] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   36.251929][ T5356] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   36.252702][ T4776] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   36.254686][ T5347] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   36.255722][ T5355] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   36.256718][ T5356] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   36.257278][ T5355] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   36.258961][ T5355] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   36.261873][ T5356] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   36.281348][ T5356] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   36.283476][ T5356] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   36.424688][ T5341] chnl_net:caif_netlink_parms(): no params data found
[   36.471473][ T5349] chnl_net:caif_netlink_parms(): no params data found
[   36.510219][ T5350] chnl_net:caif_netlink_parms(): no params data found
[   36.513362][ T5340] chnl_net:caif_netlink_parms(): no params data found
[   36.520907][ T5341] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.523446][ T5341] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.525619][ T5341] bridge_slave_0: entered allmulticast mode
[   36.527740][ T5341] bridge_slave_0: entered promiscuous mode
[   36.531778][ T5341] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.533723][ T5341] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.535689][ T5341] bridge_slave_1: entered allmulticast mode
[   36.537719][ T5341] bridge_slave_1: entered promiscuous mode
[   36.604348][ T5341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.667284][ T5341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.681455][ T5349] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.683387][ T5349] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.685268][ T5349] bridge_slave_0: entered allmulticast mode
[   36.687237][ T5349] bridge_slave_0: entered promiscuous mode
[   36.740090][ T5349] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.742022][ T5349] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.743912][ T5349] bridge_slave_1: entered allmulticast mode
[   36.746078][ T5349] bridge_slave_1: entered promiscuous mode
[   36.780290][ T5341] team0: Port device team_slave_0 added
[   36.799733][ T5350] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.801654][ T5350] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.803490][ T5350] bridge_slave_0: entered allmulticast mode
[   36.805529][ T5350] bridge_slave_0: entered promiscuous mode
[   36.809566][ T5350] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.811435][ T5350] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.813330][ T5350] bridge_slave_1: entered allmulticast mode
[   36.815800][ T5350] bridge_slave_1: entered promiscuous mode
[   36.826462][ T5340] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.828393][ T5340] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.830257][ T5340] bridge_slave_0: entered allmulticast mode
[   36.832394][ T5340] bridge_slave_0: entered promiscuous mode
[   36.835682][ T5341] team0: Port device team_slave_1 added
[   36.838301][ T5349] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.848473][ T5340] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.850925][ T5340] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.853372][ T5340] bridge_slave_1: entered allmulticast mode
[   36.856097][ T5340] bridge_slave_1: entered promiscuous mode
[   36.885046][ T5349] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.896313][ T5350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.912344][ T5341] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.914334][ T5341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.921379][ T5341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.933341][ T5350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.937435][ T5340] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.940266][ T5341] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.942107][ T5341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.949912][ T5341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.955104][ T5349] team0: Port device team_slave_0 added
[   36.967247][ T5340] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.983778][ T5349] team0: Port device team_slave_1 added
[   37.004293][ T5350] team0: Port device team_slave_0 added
[   37.016974][ T5340] team0: Port device team_slave_0 added
[   37.035923][ T5350] team0: Port device team_slave_1 added
[   37.047143][ T5340] team0: Port device team_slave_1 added
[   37.049681][ T5349] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.051506][ T5349] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.058336][ T5349] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.087707][ T5349] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.090220][ T5349] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.096850][ T5349] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.102213][ T5341] hsr_slave_0: entered promiscuous mode
[   37.104242][ T5341] hsr_slave_1: entered promiscuous mode
[   37.106998][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.109419][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.117671][ T5350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.131427][ T5340] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.133746][ T5340] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.141437][ T5340] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.145755][ T5340] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.147548][ T5340] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.154338][ T5340] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.157793][ T5350] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.160209][ T5350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.168791][ T5350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.248720][ T5349] hsr_slave_0: entered promiscuous mode
[   37.250668][ T5349] hsr_slave_1: entered promiscuous mode
[   37.253018][ T5349] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.255117][ T5349] Cannot create hsr debugfs directory
[   37.272329][ T5350] hsr_slave_0: entered promiscuous mode
[   37.274972][ T5350] hsr_slave_1: entered promiscuous mode
[   37.277477][ T5350] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.280489][ T5350] Cannot create hsr debugfs directory
[   37.305745][ T5340] hsr_slave_0: entered promiscuous mode
[   37.308547][ T5340] hsr_slave_1: entered promiscuous mode
[   37.311583][ T5340] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.314301][ T5340] Cannot create hsr debugfs directory
[   37.540336][ T5341] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   37.547088][ T5341] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   37.551125][ T5341] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   37.557709][ T5341] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   37.576574][ T5350] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   37.579932][ T5350] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   37.583298][ T5350] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   37.587892][ T5350] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   37.620278][ T5340] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   37.625360][ T5340] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   37.632508][ T5340] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   37.641294][ T5340] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   37.664518][ T5349] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   37.667562][ T5349] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   37.675292][ T5349] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   37.679562][ T5349] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   37.702212][ T5350] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.718492][ T5350] 8021q: adding VLAN 0 to HW filter on device team0
[   37.731766][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.733744][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.741466][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.743348][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.749015][ T5341] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.760940][ T5341] 8021q: adding VLAN 0 to HW filter on device team0
[   37.775902][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.777774][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.781945][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.783874][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.792305][ T5349] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.795654][ T5340] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.804639][ T5349] 8021q: adding VLAN 0 to HW filter on device team0
[   37.815577][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.817263][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.832160][ T5340] 8021q: adding VLAN 0 to HW filter on device team0
[   37.834433][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.836301][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.850321][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.852134][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.865977][ T1101] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.867850][ T1101] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.906908][ T5350] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.929361][ T5350] veth0_vlan: entered promiscuous mode
[   37.933348][ T5350] veth1_vlan: entered promiscuous mode
[   37.949978][ T5350] veth0_macvtap: entered promiscuous mode
[   37.956863][ T5350] veth1_macvtap: entered promiscuous mode
[   37.976848][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.982014][ T5341] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.987689][ T5350] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.991373][ T5349] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.999321][ T5350] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.001696][ T5350] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.003937][ T5350] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.006197][ T5350] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.039118][ T5340] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.065327][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.067487][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.074715][ T5349] veth0_vlan: entered promiscuous mode
[   38.080836][ T5341] veth0_vlan: entered promiscuous mode
[   38.094355][ T5349] veth1_vlan: entered promiscuous mode
[   38.094618][   T93] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.098627][   T93] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.101686][ T5341] veth1_vlan: entered promiscuous mode
[   38.127032][ T5340] veth0_vlan: entered promiscuous mode
[   38.136373][ T5341] veth0_macvtap: entered promiscuous mode
[   38.138724][ T5349] veth0_macvtap: entered promiscuous mode
[   38.143393][ T5340] veth1_vlan: entered promiscuous mode
[   38.147407][ T5341] veth1_macvtap: entered promiscuous mode
[   38.150286][ T5350] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   38.150753][ T5349] veth1_macvtap: entered promiscuous mode
[   38.174963][ T5341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.178922][ T5341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.182122][ T5341] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.184844][ T5349] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.187569][ T5349] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.190525][ T5349] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.193517][ T5349] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.196699][ T5349] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.203984][ T5341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.206818][ T5341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.211806][ T5341] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.216339][ T5341] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.217681][ T5356] Bluetooth: min 3 > max 0
[   38.219622][ T5341] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.222998][ T5341] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.225551][ T5341] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.229958][ T5340] veth0_macvtap: entered promiscuous mode
[   38.232506][ T5349] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.235305][ T5349] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.237924][ T5349] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.241230][ T5349] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.245052][ T5349] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.254203][ T5349] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.259310][ T5349] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.262074][ T5349] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.264719][ T5349] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.269691][ T5340] veth1_macvtap: entered promiscuous mode
[   38.289639][ T5356] Bluetooth: hci1: command tx timeout
[   38.289816][ T5348] Bluetooth: hci0: command tx timeout
[   38.293200][ T5354] Bluetooth: hci2: command tx timeout
[   38.293904][ T5348] Bluetooth: hci3: command tx timeout
[   38.307428][ T5340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.311137][ T5340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.313664][ T5340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.316216][ T5340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.319076][ T5340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.321798][ T5340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.325045][ T5340] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.327658][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.329829][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.334090][ T5340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.337584][ T5340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.342143][ T5340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.345639][ T5340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.349321][ T5340] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.352406][ T5340] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.355596][ T5340] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.362162][ T5340] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.364662][ T5340] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.367022][ T5340] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.370134][ T5340] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.386233][ T5409] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6'.
[   38.387567][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.391289][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.404848][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.406974][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.407159][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.410029][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.441477][   T93] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.443587][   T93] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.459538][   T93] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.462028][   T93] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.477206][ T5415] trusted_key: encrypted_key: insufficient parameters specified
[   38.541789][ T5421] openvswitch: netlink: Missing key (keys=44, expected=2000)
[   38.542569][ T5418] syz.0.1 uses obsolete (PF_INET,SOCK_PACKET)
[   38.692403][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[   38.967133][ T5438] netlink: 12 bytes leftover after parsing attributes in process `syz.0.14'.
[   39.078232][ T5351] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   39.222823][ T5443] capability: warning: `syz.0.15' uses deprecated v2 capabilities in a way that may be insecure
[   39.231848][ T5351] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   39.234656][ T5351] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   39.237706][ T5351] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   39.240443][ T5351] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   39.247898][ T5433] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   39.255745][ T5351] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   39.590694][ T5433] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.12'.
[   40.266262][   T35] usb 7-1: USB disconnect, device number 2
[   40.332032][ T5454] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.17'.
[   40.368761][ T5356] Bluetooth: hci1: command tx timeout
[   40.368986][ T5355] Bluetooth: hci2: command tx timeout
[   40.370520][ T5356] Bluetooth: hci0: command tx timeout
[   40.379432][ T5356] Bluetooth: hci3: command tx timeout
[   40.768465][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   40.768703][ T5356] Bluetooth: hci4: command 0x1003 tx timeout
[   40.974836][ T5462] binder_alloc: 5459: binder_install_single_page failed to insert page at offset 1000 with -14
[   41.547268][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   41.854496][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   42.058455][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   42.161683][    T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!!
[   42.448313][ T5348] Bluetooth: hci2: command tx timeout
[   42.448470][ T5356] Bluetooth: hci1: command tx timeout
[   42.458258][ T5356] Bluetooth: hci3: command tx timeout
[   42.458486][ T5348] Bluetooth: hci0: command tx timeout
[   42.660120][ T5485] netlink: 72 bytes leftover after parsing attributes in process `syz.3.26'.
[   42.663237][ T5485] warning: `syz.3.26' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   42.716767][ T5348] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[   42.719486][ T5348] CPU: 1 UID: 0 PID: 5348 Comm: kworker/u33:4 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[   42.722312][ T5348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   42.724997][ T5348] Workqueue: hci2 hci_rx_work
[   42.726207][ T5348] Call Trace:
[   42.727056][ T5348]  <TASK>
[   42.727817][ T5348]  dump_stack_lvl+0x16c/0x1f0
[   42.729064][ T5348]  sysfs_warn_dup+0x7f/0xa0
[   42.730271][ T5348]  sysfs_create_dir_ns+0x24d/0x2b0
[   42.731626][ T5348]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   42.733104][ T5348]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   42.734516][ T5348]  ? kobject_add_internal+0x12d/0x990
[   42.735926][ T5348]  ? do_raw_spin_unlock+0x172/0x230
[   42.737211][ T5348]  kobject_add_internal+0x2c8/0x990
[   42.738491][ T5348]  kobject_add+0x16f/0x240
[   42.739591][ T5348]  ? __pfx_kobject_add+0x10/0x10
[   42.740831][ T5348]  ? class_to_subsys+0x3e/0x160
[   42.742009][ T5348]  ? do_raw_spin_unlock+0x172/0x230
[   42.743363][ T5348]  ? kobject_put+0xab/0x5a0
[   42.744518][ T5348]  device_add+0x289/0x1a70
[   42.745614][ T5348]  ? __pfx_dev_set_name+0x10/0x10
[   42.746863][ T5348]  ? __pfx_device_add+0x10/0x10
[   42.748128][ T5348]  ? mgmt_send_event_skb+0x2f2/0x460
[   42.749520][ T5348]  hci_conn_add_sysfs+0x17e/0x230
[   42.750838][ T5348]  le_conn_complete_evt+0xfc7/0x1cf0
[   42.752201][ T5348]  ? __pfx_le_conn_complete_evt+0x10/0x10
[   42.753671][ T5348]  ? trace_contention_end+0xea/0x140
[   42.755052][ T5348]  ? __mutex_lock+0x1a6/0x9c0
[   42.756293][ T5348]  hci_le_enh_conn_complete_evt+0x23d/0x380
[   42.757871][ T5348]  ? skb_pull_data+0x166/0x210
[   42.759137][ T5348]  hci_le_meta_evt+0x2e2/0x5d0
[   42.760415][ T5348]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[   42.762122][ T5348]  hci_event_packet+0x666/0x1190
[   42.763421][ T5348]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   42.764802][ T5348]  ? __pfx_hci_event_packet+0x10/0x10
[   42.766211][ T5348]  ? mark_held_locks+0x9f/0xe0
[   42.767471][ T5348]  ? kcov_remote_start+0x3cf/0x6e0
[   42.768824][ T5348]  ? lockdep_hardirqs_on+0x7c/0x110
[   42.770143][ T5348]  hci_rx_work+0x2c6/0x16c0
[   42.771298][ T5348]  ? lock_acquire+0x2f/0xb0
[   42.772494][ T5348]  ? process_one_work+0x8bb/0x1b30
[   42.773847][ T5348]  process_one_work+0x958/0x1b30
[   42.775115][ T5348]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   42.776557][ T5348]  ? __pfx_process_one_work+0x10/0x10
[   42.777941][ T5348]  ? assign_work+0x1a0/0x250
[   42.779124][ T5348]  worker_thread+0x6c8/0xf00
[   42.780370][ T5348]  ? __pfx_worker_thread+0x10/0x10
[   42.781682][ T5348]  kthread+0x2c1/0x3a0
[   42.782731][ T5348]  ? _raw_spin_unlock_irq+0x23/0x50
[   42.784064][ T5348]  ? __pfx_kthread+0x10/0x10
[   42.785282][ T5348]  ret_from_fork+0x45/0x80
[   42.786449][ T5348]  ? __pfx_kthread+0x10/0x10
[   42.787670][ T5348]  ret_from_fork_asm+0x1a/0x30
[   42.788950][ T5348]  </TASK>
[   42.790249][ T5348] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   42.793796][ T5348] Bluetooth: hci2: failed to register connection device
[   42.938357][   T65] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   43.088892][   T65] usb 8-1: Using ep0 maxpacket: 32
[   43.091870][   T65] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[   43.094061][   T65] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   43.096275][   T65] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[   43.102347][   T65] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   43.104863][   T65] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   43.107373][   T65] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   43.111775][ T5497] netlink: 72 bytes leftover after parsing attributes in process `syz.0.30'.
[   43.114438][   T65] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   43.116731][   T65] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   43.118399][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   43.125816][   T65] usb 8-1: config 0 descriptor??
[   43.339119][   T65] usblp 8-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   43.345284][   T65] usb 8-1: USB disconnect, device number 2
[   43.352190][   T65] usblp0: removed
[   43.418661][ T1421] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   43.571467][ T1421] usb 5-1: Using ep0 maxpacket: 8
[   43.574182][ T1421] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   43.576438][ T1421] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   43.579302][ T1421] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   43.581884][ T1421] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   43.584860][ T1421] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   43.589207][ T1421] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   43.591598][ T1421] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   43.760631][ T5502] capability: warning: `syz.2.32' uses 32-bit capabilities (legacy support in use)
[   43.802238][   T57] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   43.813635][ T1421] usb 5-1: usb_control_msg returned -32
[   43.815150][ T1421] usbtmc 5-1:16.0: can't read capabilities
[   43.850292][ T5506] netlink: 72 bytes leftover after parsing attributes in process `syz.1.34'.
[   43.879809][ T5509] netlink: 24 bytes leftover after parsing attributes in process `syz.1.35'.
[   43.958502][   T57] usb 8-1: Using ep0 maxpacket: 32
[   43.962018][   T57] usb 8-1: config index 0 descriptor too short (expected 29220, got 36)
[   43.964110][   T57] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   43.966459][   T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81
[   43.969699][   T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   43.972193][   T57] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   43.974719][   T57] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   43.979055][   T57] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   43.981368][   T57] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   43.985157][   T57] usb 8-1: config 0 descriptor??
[   43.993150][ T5512] process 'syz.1.36' launched './file2' with NULL argv: empty string added
[   44.014045][ T5513] vivid-003: =================  START STATUS  =================
[   44.017049][ T5513] vivid-003: RDS Tx I/O Mode: Controls
[   44.020423][ T5513] vivid-003: RDS Program ID: 32904
[   44.022373][ T5513] vivid-003: RDS Program Type: 3
[   44.024174][ T5513] vivid-003: RDS PS Name: VIVID-TX
[   44.025981][ T5513] vivid-003: RDS Radio Text: This is a VIVID default Radio Text template text, change at will
[   44.029526][ T5513] vivid-003: RDS Stereo: true
[   44.030995][ T5513] vivid-003: RDS Artificial Head: false
[   44.032432][ T5513] vivid-003: RDS Compressed: false
[   44.033778][ T5513] vivid-003: RDS Dynamic PTY: false
[   44.035064][ T5513] vivid-003: RDS Traffic Announcement: false
[   44.036574][ T5513] vivid-003: RDS Traffic Program: true
[   44.039621][   T35] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   44.043484][ T5513] vivid-003: RDS Music: true
[   44.045000][ T5513] vivid-003: ==================  END STATUS  ==================
[   44.190212][   T35] usb 7-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[   44.193001][   T35] usb 7-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[   44.195684][   T35] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   44.198819][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   44.201780][   T57] usblp 8-1:0.0: usblp1: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   44.528298][ T5348] Bluetooth: hci3: command tx timeout
[   44.529842][ T5356] Bluetooth: hci0: command tx timeout
[   44.531997][ T5355] Bluetooth: hci2: command tx timeout
[   44.533702][ T5354] Bluetooth: hci1: command tx timeout
[   44.670414][ T5522] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.33'.
[   45.640166][   T42] Bluetooth: hci4: Frame reassembly failed (-84)
[   46.618900][ T5348] Bluetooth: hci2: command tx timeout
[   46.620381][ T5356] Bluetooth: hci3: command tx timeout
[   46.842271][   T30] usb 7-1: USB disconnect, device number 3
[   46.954655][ T5537] infiniband syz2: set down
[   46.956287][ T5537] infiniband syz2: added ipvlan0
[   46.976553][ T5537] RDS/IB: syz2: added
[   46.978021][ T5537] smc: adding ib device syz2 with port count 1
[   46.980579][ T5537] smc:    ib device syz2 port 1 has pnetid 
[   47.280642][   T39] audit: type=1326 audit(1729704400.169:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.286374][   T39] audit: type=1326 audit(1729704400.169:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.291900][   T39] audit: type=1326 audit(1729704400.169:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=152 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.297457][   T39] audit: type=1326 audit(1729704400.169:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.304654][   T39] audit: type=1326 audit(1729704400.169:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.310847][   T39] audit: type=1326 audit(1729704400.169:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.317974][   T39] audit: type=1326 audit(1729704400.169:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.325531][   T39] audit: type=1326 audit(1729704400.179:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.332618][   T39] audit: type=1326 audit(1729704400.179:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.339756][   T39] audit: type=1326 audit(1729704400.179:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5546 comm="syz.2.42" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf7fb0579 code=0x7ffc0000
[   47.648250][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   47.648318][ T5356] Bluetooth: hci4: command 0x1003 tx timeout
[   47.741921][ T5550] netlink: 72 bytes leftover after parsing attributes in process `syz.1.43'.
[   48.151664][ T5560] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   48.338265][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[   48.408907][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   48.411922][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   48.458977][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.152089][ T5580] mmap: syz.2.48 (5580) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   49.160892][ T5580] Zero length message leads to an empty skb
[   49.529196][ T5583] 9pnet_fd: Insufficient options for proto=fd
[   49.580865][ T5518] usbtmc 5-1:16.0: usb_control_msg returned -110
[   49.584093][   T30] usb 8-1: USB disconnect, device number 3
[   49.589887][   T30] usblp1: removed
[   49.590325][ T5351] usb 5-1: USB disconnect, device number 2
[   49.766378][ T5591] binder: 5590:5591 ioctl c0305302 200001c0 returned -22
[   49.952037][ T5602] netlink: 4 bytes leftover after parsing attributes in process `syz.0.56'.
[   49.998302][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.021661][ T5595] netlink: 'syz.3.54': attribute type 4 has an invalid length.
[   50.024779][ T5595] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.54'.
[   50.318357][ T5410] usb 5-1: new low-speed USB device number 3 using dummy_hcd
[   50.444073][ T5639] netlink: 'syz.2.63': attribute type 8 has an invalid length.
[   50.446937][ T5639] ata3.00: invalid multi_count 1 ignored
[   50.490308][ T5410] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   50.492193][ T5639] 9pnet: p9_errstr2errno: server reported unknown error œæçæÎsÅ‚Ün02Ös9_¬»¬5
[   50.492970][ T5410] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[   50.498097][ T5410] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[   50.501083][ T5410] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   50.503595][ T5410] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   50.508836][ T5620] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   50.511464][ T5410] hub 5-1:1.0: bad descriptor, ignoring hub
[   50.513552][ T5410] hub 5-1:1.0: probe with driver hub failed with error -5
[   50.516428][ T5410] cdc_wdm 5-1:1.0: skipping garbage
[   50.518093][ T5410] cdc_wdm 5-1:1.0: skipping garbage
[   50.520368][ T5410] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[   50.521868][ T5410] cdc_wdm 5-1:1.0: Unknown control protocol
[   50.568796][ T5642] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   50.573119][ T5644] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   50.581196][ T5640] netlink: 24 bytes leftover after parsing attributes in process `syz.1.59'.
[   51.148433][    T8] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   51.308446][    T8] usb 7-1: Using ep0 maxpacket: 32
[   51.316925][    T8] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[   51.322450][    T8] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   51.325133][    T8] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[   51.327884][    T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   51.330572][    T8] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   51.333484][    T8] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   51.337125][    T8] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   51.339716][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   51.344233][    T8] usb 7-1: config 0 descriptor??
[   51.436726][ T5674] netlink: 4 bytes leftover after parsing attributes in process `syz.1.71'.
[   51.439328][ T5674] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   51.441213][ T5674] batman_adv: batadv0: Removing interface: batadv_slave_0
[   51.443933][ T5674] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   51.445976][ T5674] batman_adv: batadv0: Removing interface: batadv_slave_1
[   51.639722][ T5677] ptrace attach of "/syz-executor exec"[5341] was attempted by "/syz-executor exec"[5677]
[   51.642541][ T5410] usb 5-1: USB disconnect, device number 3
[   51.644893][ T5620] cdc_wdm 5-1:1.0: Error autopm - -16
[   51.893981][    T8] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   51.912339][    T8] usb 7-1: USB disconnect, device number 4
[   51.916187][    T8] usblp0: removed
[   52.018248][   T35] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   52.171119][   T35] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   52.174088][   T35] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   52.176805][   T35] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   52.179368][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.183714][ T5683] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   52.189353][   T35] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   52.656217][ T5689] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.73'.
[   52.721586][ T5692] netlink: 16 bytes leftover after parsing attributes in process `syz.2.75'.
[   53.163612][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.172863][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.182912][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.192913][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.202922][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.213734][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.222900][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.229829][ T5704] syz.3.78: attempt to access beyond end of device
[   53.229829][ T5704] nbd3: rw=2048, sector=0, nr_sectors = 8 limit=0
[   53.237859][ T5704] SQUASHFS error: Failed to read block 0x0: -5
[   53.238265][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.240027][ T5704] unable to read squashfs_super_block
[   53.242943][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.253187][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.262926][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.272930][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.282923][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.292960][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.302900][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.312947][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.322942][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.332951][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.342907][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.352916][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.362927][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.372904][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.382923][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.392912][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.402926][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.412895][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.422900][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.432916][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.442907][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.452916][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.462891][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.472915][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.482915][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.492943][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.502917][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.512931][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.522925][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.532908][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.542921][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.553190][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.562888][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.572892][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.582880][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.592890][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.602912][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.612893][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.622916][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.632895][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.642967][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.652912][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.662899][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.672877][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.682881][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.692944][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.702890][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.712874][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.722879][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.732873][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.742895][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.752871][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.762871][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.772875][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.782878][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.792873][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.802900][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.812875][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.822890][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.832891][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.842876][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.852915][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.862907][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.872930][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.882873][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.892903][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.902894][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.912875][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.922905][ T5701] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   53.969200][ T5348] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   53.974098][ T5348] Bluetooth: hci0: Injecting HCI hardware error event
[   53.977448][ T5354] Bluetooth: hci0: hardware error 0x00
[   54.325750][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[   54.505281][ T5356] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[   54.510840][ T5729] netlink: 'syz.2.84': attribute type 9 has an invalid length.
[   54.512936][ T5729] netlink: 134660 bytes leftover after parsing attributes in process `syz.2.84'.
[   54.790886][    T8] usb 6-1: USB disconnect, device number 2
[   54.935953][ T5750] syz.1.89: attempt to access beyond end of device
[   54.935953][ T5750] loop1: rw=0, sector=64, nr_sectors = 2 limit=0
[   54.940435][ T5750] isofs_fill_super: bread failed, dev=loop1, iso_blknum=16, block=32
[   55.816219][ T5762] program syz.1.94 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   55.857353][ T5768] netlink: 72 bytes leftover after parsing attributes in process `syz.1.95'.
[   55.892897][ T5770] tmpfs: Unknown parameter 'indo64'
[   55.938342][   T35] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   56.048325][ T5354] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[   56.068306][   T57] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   56.088361][   T35] usb 7-1: Using ep0 maxpacket: 8
[   56.091621][   T35] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   56.094349][   T35] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   56.096878][   T35] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   56.099670][   T35] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   56.103110][   T35] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   56.105506][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   56.219715][   T57] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   56.223242][   T57] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   56.226694][   T57] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   56.230042][   T57] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   56.239602][ T5766] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   56.243247][   T57] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[   56.288275][ T5354] Bluetooth: hci4: command 0x1003 tx timeout
[   56.288317][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   56.332933][   T35] usb 7-1: GET_CAPABILITIES returned 0
[   56.334929][   T35] usbtmc 7-1:16.0: can't read capabilities
[   56.450186][ T5782] can0: slcan on ttyS3.
[   56.534149][ T5758] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.538406][ T5758] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.579191][ T5782] can0 (unregistered): slcan off ttyS3.
[   56.614263][ T5797] mac80211_hwsim hwsim7 ÿÿÿÿÿÿ: renamed from wlan1 (while UP)
[   56.639378][ T5794] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.93'.
[   57.635708][ T5808] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.639100][ T5808] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.766818][ T5811] netlink: 12 bytes leftover after parsing attributes in process `syz.0.102'.
[   57.770579][ T5811] netlink: 'syz.0.102': attribute type 25 has an invalid length.
[   57.779792][ T5811] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   57.782978][ T5811] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   57.785384][ T5811] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   57.788458][ T5811] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   58.738856][   T65] usb 7-1: USB disconnect, device number 5
[   58.841620][   T30] usb 8-1: USB disconnect, device number 4
[   59.138666][ T5354] Bluetooth: hci4: sending frame failed (-49)
[   59.141307][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -49
[   59.579747][ T5834] netlink: 1264 bytes leftover after parsing attributes in process `syz.3.108'.
[   59.594176][    T9] kernel write not supported for file /cpu/0/msr (pid: 9 comm: kworker/0:1)
[   59.871692][ T5846] autofs: Unknown parameter 'ÿ0xffffffffffffffff'
[   59.923421][ T5853] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   60.477815][   T30] IPVS: starting estimator thread 0...
[   60.501624][ T5873] ieee802154 phy0 wpan0: encryption failed: -22
[   60.588284][ T5872] IPVS: using max 36 ests per chain, 86400 per kthread
[   60.849420][   T65] usb 8-1: new full-speed USB device number 5 using dummy_hcd
[   61.054674][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[   61.195539][   T65] usb 8-1: device descriptor read/64, error -71
[   61.273113][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[   61.275273][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[   61.311145][ T5891] tipc: MTU too low for tipc bearer
[   61.317007][   T57] kernel write not supported for file /sequencer2 (pid: 57 comm: kworker/3:1)
[   61.448227][   T65] usb 8-1: new full-speed USB device number 6 using dummy_hcd
[   61.588259][   T65] usb 8-1: device descriptor read/64, error -71
[   61.698672][   T65] usb usb8-port1: attempt power cycle
[   62.048316][   T65] usb 8-1: new full-speed USB device number 7 using dummy_hcd
[   62.068939][   T65] usb 8-1: device descriptor read/8, error -71
[   62.308304][   T65] usb 8-1: new full-speed USB device number 8 using dummy_hcd
[   62.328746][   T65] usb 8-1: device descriptor read/8, error -71
[   62.439138][   T65] usb usb8-port1: unable to enumerate USB device
[   63.088318][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   63.088529][ T5356] Bluetooth: hci4: command 0x1003 tx timeout
[   63.135351][ T5909] 9pnet_fd: Insufficient options for proto=fd
[   63.328301][ T5354] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   63.328317][ T5348] Bluetooth: hci5: command 0x1003 tx timeout
[   63.677599][ T5923] netlink: 'syz.2.130': attribute type 4 has an invalid length.
[   63.692210][ T5923] syz.2.130 (5923) used greatest stack depth: 21296 bytes left
[   63.903085][ T5907] [U] 
[   64.013065][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[   64.321599][ T5939] netlink: 32 bytes leftover after parsing attributes in process `syz.0.135'.
[   64.698216][ T5410] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   64.938390][ T5410] usb 5-1: Using ep0 maxpacket: 32
[   64.940956][ T5410] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[   64.944892][ T5410] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   64.947195][ T5410] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   64.949441][ T5410] usb 5-1: Product: syz
[   64.950524][ T5410] usb 5-1: Manufacturer: syz
[   64.951727][ T5410] usb 5-1: SerialNumber: syz
[   64.953973][ T5410] usb 5-1: config 0 descriptor??
[   64.955893][ T5947] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   65.049496][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[   66.048237][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   66.048342][ T5356] Bluetooth: hci4: command 0x1003 tx timeout
[   66.398257][    T8] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   66.548270][    T8] usb 7-1: Using ep0 maxpacket: 16
[   66.551262][    T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[   66.555800][    T8] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[   66.558439][    T8] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   66.560724][    T8] usb 7-1: Product: syz
[   66.561935][    T8] usb 7-1: Manufacturer: syz
[   66.563249][    T8] usb 7-1: SerialNumber: syz
[   66.567032][    T8] usb 7-1: config 0 descriptor??
[   66.571439][    T8] hub 7-1:0.0: bad descriptor, ignoring hub
[   66.573264][    T8] hub 7-1:0.0: probe with driver hub failed with error -5
[   66.576706][    T8] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input5
[   66.799606][ T5351] usb 7-1: USB disconnect, device number 6
[   67.088287][ T5354] Bluetooth: hci5: command 0x1003 tx timeout
[   67.088327][ T5348] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   67.468533][ T5410] usb 5-1: USB disconnect, device number 4
[   67.518069][ T5979] sp0: Synchronizing with TNC
[   67.525071][ T5979] trusted_key: encrypted_key: keylen parameter is missing
[   67.528794][ T5979] netlink: 68 bytes leftover after parsing attributes in process `syz.0.144'.
[   67.531739][ T5979] trusted_key: encrypted_key: keylen parameter is missing
[   67.537105][ T5979] ubi0: attaching mtd0
[   67.542131][ T5979] ubi0: scanning is finished
[   67.543693][ T5979] ubi0: empty MTD device detected
[   67.655834][ T5979] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[   67.655857][ T5979] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   67.655866][ T5979] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[   67.655875][ T5979] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[   67.655883][ T5979] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   67.655891][ T5979] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[   67.655899][ T5979] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2037015859
[   67.655909][ T5979] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   67.656406][ T5985] ubi0: background thread "ubi_bgt0d" started, PID 5985
[   67.657312][ T5980] ubi0: detaching mtd0
[   67.667649][ T5980] ubi0: mtd0 is detached
[   68.338216][   T39] kauditd_printk_skb: 36 callbacks suppressed
[   68.338255][   T39] audit: type=1326 audit(1729704421.199:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="syz.1.148" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x0
[   68.503866][   T93] Bluetooth: hci4: Frame reassembly failed (-84)
[   69.121485][ T6019] team_slave_0: entered promiscuous mode
[   69.123135][ T6019] team_slave_1: entered promiscuous mode
[   69.207494][ T6024] netlink: 'syz.0.155': attribute type 10 has an invalid length.
[   69.209711][ T6024] ipvlan1: entered promiscuous mode
[   69.219399][ T6024] team0: Device ipvlan1 failed to register rx_handler
[   69.229477][ T6024] autofs: Bad value for 'fd'
[   69.511449][ T6032] ptrace attach of "/syz-executor exec"[5341] was attempted by "/syz-executor exec"[6032]
[   69.863377][ T6036] netlink: 'syz.2.158': attribute type 25 has an invalid length.
[   69.970559][ T6037] kernel profiling enabled (shift: 0)
[   70.461213][ T6069] netlink: 72 bytes leftover after parsing attributes in process `syz.1.165'.
[   70.525747][ T6071] hub 2-0:1.0: USB hub found
[   70.528762][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   70.548588][ T6071] hub 2-0:1.0: 2 ports detected
[   70.550838][ T6063] /dev/sr0: Can't open blockdev
[   70.621180][ T6080] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   70.691596][ T1373] ieee802154 phy0 wpan0: encryption failed: -22
[   70.693466][ T1373] ieee802154 phy1 wpan1: encryption failed: -22
[   70.748243][   T35] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   70.908542][   T35] usb 6-1: Using ep0 maxpacket: 32
[   70.914229][   T35] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[   70.922595][   T35] usb 6-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[   70.925651][   T35] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   70.938290][   T35] usb 6-1: Product: syz
[   70.939670][   T35] usb 6-1: Manufacturer: syz
[   70.941706][   T35] usb 6-1: SerialNumber: syz
[   70.948935][   T35] usb 6-1: config 0 descriptor??
[   70.951049][ T6075] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   70.954372][   T35] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   71.165576][   T25] usb 6-1: USB disconnect, device number 3
[   71.483470][ T6094] netlink: 48 bytes leftover after parsing attributes in process `syz.2.170'.
[   71.674481][ T6104] netlink: 256 bytes leftover after parsing attributes in process `syz.3.172'.
[   71.676763][ T6104] openvswitch: netlink: Missing key (keys=40, expected=200000)
[   71.743323][ T6108] netlink: 72 bytes leftover after parsing attributes in process `syz.1.174'.
[   72.011800][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[   72.418090][   T39] audit: type=1804 audit(1729704425.299:49): pid=6121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.173" name="/newroot/37/file0/bus" dev="ramfs" ino=9186 res=1 errno=0
[   73.549086][ T6142] netlink: 72 bytes leftover after parsing attributes in process `syz.2.183'.
[   73.670506][ T6148] cdrom: dropping to single frame dma
[   73.790148][ T6160] netlink: 'syz.0.187': attribute type 4 has an invalid length.
[   74.048469][ T5348] Bluetooth: hci4: command 0x1003 tx timeout
[   74.050838][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   74.208634][ T6185] 9pnet_fd: p9_fd_create_tcp (6185): problem binding to privport
[   74.332604][ T6195] bridge_slave_1: left allmulticast mode
[   74.334777][ T6195] bridge_slave_1: left promiscuous mode
[   74.336472][ T6195] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.340364][ T6195] bridge_slave_0: left allmulticast mode
[   74.342336][ T6195] bridge_slave_0: left promiscuous mode
[   74.344383][ T6195] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.550604][ T6202] netlink: 8 bytes leftover after parsing attributes in process `syz.0.197'.
[   74.564946][ T6204] netlink: 'syz.3.198': attribute type 11 has an invalid length.
[   74.566982][ T6204] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.198'.
[   74.666286][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[   74.896032][   T93] Bluetooth: hci5: Frame reassembly failed (-84)
[   74.898441][   T93] Bluetooth: hci5: Frame reassembly failed (-84)
[   75.338266][    T8] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   75.421784][ T6217] syz.3.202[6217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.421860][ T6217] syz.3.202[6217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.425851][ T6217] syz.3.202[6217] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.430832][ T6217] netlink: 'syz.3.202': attribute type 10 has an invalid length.
[   75.437430][ T6217] netlink: 40 bytes leftover after parsing attributes in process `syz.3.202'.
[   75.441423][ T6217] bridge0: port 3(syz_tun) entered blocking state
[   75.443566][ T6217] bridge0: port 3(syz_tun) entered disabled state
[   75.445516][ T6217] syz_tun: entered allmulticast mode
[   75.447659][ T6217] syz_tun: entered promiscuous mode
[   75.449536][ T6217] bridge0: port 3(syz_tun) entered blocking state
[   75.451264][ T6217] bridge0: port 3(syz_tun) entered forwarding state
[   75.499919][    T8] usb 7-1: Using ep0 maxpacket: 32
[   75.502494][    T8] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[   75.504729][    T8] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   75.506948][    T8] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[   75.509872][    T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   75.513537][    T8] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   75.517119][    T8] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   75.520815][    T8] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   75.523190][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.529803][    T8] usb 7-1: config 0 descriptor??
[   75.734871][    T8] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   75.785950][ T6228] vivid-004: disconnect
[   75.789053][ T6215] vivid-004: reconnect
[   75.791548][ T5387] usb 7-1: USB disconnect, device number 7
[   75.795663][ T5387] usblp0: removed
[   75.798268][ T5351] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[   75.810326][  T979] cfg80211: failed to load regulatory.db
[   75.948276][ T5351] usb 8-1: Using ep0 maxpacket: 8
[   75.951445][ T5351] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[   75.954244][ T5351] usb 8-1: config 0 has no interface number 0
[   75.956433][ T5351] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   75.960313][ T5351] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   75.962924][ T5351] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.966190][ T5351] usb 8-1: config 0 descriptor??
[   75.970908][ T5351] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   76.228704][ T6229] program syz.3.205 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   76.476509][ T6229] netlink: 'syz.3.205': attribute type 1 has an invalid length.
[   76.478617][ T6229] netlink: 'syz.3.205': attribute type 1 has an invalid length.
[   76.480610][ T6229] netlink: 9108 bytes leftover after parsing attributes in process `syz.3.205'.
[   76.482896][ T6229] netlink: 'syz.3.205': attribute type 1 has an invalid length.
[   76.484863][ T6229] netlink: 6 bytes leftover after parsing attributes in process `syz.3.205'.
[   76.489558][ T6229] netlink: 'syz.3.205': attribute type 1 has an invalid length.
[   76.491574][ T6229] netlink: 'syz.3.205': attribute type 1 has an invalid length.
[   76.493566][ T6229] netlink: 9108 bytes leftover after parsing attributes in process `syz.3.205'.
[   76.495894][ T6229] netlink: 'syz.3.205': attribute type 1 has an invalid length.
[   76.497904][ T6229] netlink: 6 bytes leftover after parsing attributes in process `syz.3.205'.
[   76.502146][ T5410] usb 8-1: USB disconnect, device number 9
[   76.503752][    C2] iowarrior 8-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[   76.507719][ T5410] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[   76.688295][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   76.754391][ T6236] netlink: 20 bytes leftover after parsing attributes in process `syz.1.207'.
[   76.928312][ T5348] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   76.928331][ T5354] Bluetooth: hci5: command 0x1003 tx timeout
[   77.095174][ T6245] netlink: 'syz.1.208': attribute type 15 has an invalid length.
[   77.212865][ T6249] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.209'.
[   77.601095][ T6262] netlink: zone id is out of range
[   77.602496][ T6262] netlink: zone id is out of range
[   77.604271][ T6262] netlink: zone id is out of range
[   77.634583][ T6268] program syz.2.214 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   77.750259][ T6273] ip6t_srh: unknown srh invflags 6BE9
[   78.014381][   T93] Bluetooth: hci4: Frame reassembly failed (-84)
[   78.322611][ T5354] Bluetooth: hci3: SCO packet for unknown connection handle 0
[   78.742470][ T6293] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   79.602821][ T6307] netlink: 24 bytes leftover after parsing attributes in process `syz.2.224'.
[   79.655401][ T6310] Driver unsupported XDP return value 0 on prog  (id 36) dev N/A, expect packet loss!
[   80.048303][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   80.048371][ T5354] Bluetooth: hci4: command 0x1003 tx timeout
[   80.252416][ T6322] netlink: 156 bytes leftover after parsing attributes in process `syz.1.229'.
[   80.255614][ T6322] netlink: 'syz.1.229': attribute type 2 has an invalid length.
[   80.258539][ T6322] netlink: 60 bytes leftover after parsing attributes in process `syz.1.229'.
[   80.460844][ T6326] fuse: Bad value for 'fd'
[   80.642041][ T6330] overlayfs: failed to resolve '/IBàƒ<²Ò/-ÍYß­™¾R’�': -2
[   82.066798][ T6362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   82.293664][ T6370] kvm: requested 6704 ns i8254 timer period limited to 200000 ns
[   82.318904][   T65] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   82.488349][   T65] usb 7-1: Using ep0 maxpacket: 8
[   82.491465][   T65] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   82.494272][   T65] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[   82.496633][   T65] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[   82.499629][   T65] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   82.503097][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   82.506458][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[   82.526590][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   82.532874][   T65] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   82.535250][   T65] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[   82.537179][   T65] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[   82.539809][   T65] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   82.542947][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   82.550323][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[   82.553215][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   82.561333][   T65] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[   82.563605][   T65] usb 7-1: config 246 descriptor has 1 excess byte, ignoring
[   82.565516][   T65] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42
[   82.567956][   T65] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[   82.571689][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[   82.574865][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[   82.577750][   T65] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   82.588380][   T65] usb 7-1: string descriptor 0 read error: -22
[   82.590287][   T65] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   82.593020][   T65] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.621324][   T65] adutux 7-1:246.0: ADU100  now attached to /dev/usb/adutux0
[   82.701616][ T6390] ebtables: wrong size: *len 80, entries_size 144, replsz 144
[   82.705903][ T6390] netlink: 12 bytes leftover after parsing attributes in process `syz.0.245'.
[   82.778710][ T6399] netlink: 4 bytes leftover after parsing attributes in process `syz.1.248'.
[   82.866350][ T6407] x_tables: ip6_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[   82.888456][ T6405] netlink: 8 bytes leftover after parsing attributes in process `syz.1.249'.
[   83.032383][ T6428] netlink: 'syz.0.255': attribute type 10 has an invalid length.
[   83.335520][ T6450] syz.3.261: attempt to access beyond end of device
[   83.335520][ T6450] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[   83.339063][ T6450] isofs_fill_super: bread failed, dev=nbd3, iso_blknum=16, block=32
[   84.119079][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[   84.580969][  T979] usb 7-1: USB disconnect, device number 8
[   84.929568][ T6483] block nbd0: NBD_DISCONNECT
[   85.187835][ T6487] netlink: 4 bytes leftover after parsing attributes in process `syz.0.271'.
[   85.327086][ T6500] fuse: Bad value for 'rootmode'
[   85.378437][ T5410] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   85.408436][  T979] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[   85.531472][ T5410] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   85.535251][ T5410] usb 7-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   85.539928][ T5410] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   85.542688][ T5410] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.548047][ T5410] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   85.552106][ T5410] usb 7-1: invalid MIDI out EP 0
[   85.568271][ T5410] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -22
[   85.573915][  T979] usb 8-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[   85.578199][ T6092] udevd[6092]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   85.588344][  T979] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   85.592200][  T979] usb 8-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   85.599990][  T979] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   85.603416][  T979] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.609225][ T6506] fuse: Unknown parameter 'rootmgde'
[   85.614250][  T979] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[   85.617004][  T979] usb 8-1: invalid MIDI out EP 0
[   85.666456][  T979] snd-usb-audio 8-1:27.0: probe with driver snd-usb-audio failed with error -22
[   85.973994][ T6510] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.272'.
[   86.088384][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   86.162365][ T6513] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.274'.
[   86.666844][ T6517] input: syz0 as /devices/virtual/input/input6
[   88.163708][ T2782] usb 7-1: USB disconnect, device number 9
[   88.186490][ T5410] usb 8-1: USB disconnect, device number 10
[   88.489677][   T39] audit: type=1326 audit(1729704441.379:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6532 comm="syz.2.284" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x0
[   88.617161][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[   88.878951][ T6547] syzkaller0: entered promiscuous mode
[   88.881273][ T6547] syzkaller0: entered allmulticast mode
[   89.322036][ T6557] syz.2.290[6557] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.322092][ T6557] syz.2.290[6557] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.325210][ T6557] syz.2.290[6557] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.618303][   T65] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[   89.778347][   T65] usb 7-1: Using ep0 maxpacket: 8
[   89.782287][   T65] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[   89.784795][   T65] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   89.787267][   T65] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   89.789969][   T65] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   89.792511][   T65] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   89.795901][   T65] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   89.798707][   T65] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.927251][ T6564] netlink: 'syz.0.293': attribute type 1 has an invalid length.
[   89.929386][ T6564] netlink: 9396 bytes leftover after parsing attributes in process `syz.0.293'.
[   90.083015][   T65] usb 7-1: usb_control_msg returned -32
[   90.083039][   T65] usbtmc 7-1:16.0: can't read capabilities
[   90.251483][   T59] Bluetooth: hci5: Frame reassembly failed (-84)
[   90.528705][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   90.529403][ T5356] Bluetooth: hci4: command 0x1003 tx timeout
[   90.544656][ T6584] FAULT_INJECTION: forcing a failure.
[   90.544656][ T6584] name failslab, interval 1, probability 0, space 0, times 1
[   90.547966][ T6584] CPU: 1 UID: 0 PID: 6584 Comm: syz.1.296 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[   90.550583][ T6584] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.553228][ T6584] Call Trace:
[   90.554082][ T6584]  <TASK>
[   90.554834][ T6584]  dump_stack_lvl+0x16c/0x1f0
[   90.556090][ T6584]  should_fail_ex+0x497/0x5b0
[   90.557263][ T6584]  ? fs_reclaim_acquire+0xae/0x150
[   90.558548][ T6584]  should_failslab+0xc2/0x120
[   90.559800][ T6584]  __kmalloc_noprof+0xcb/0x410
[   90.561161][ T6584]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   90.562566][ T6584]  tomoyo_realpath_from_path+0xbf/0x710
[   90.563986][ T6584]  ? tomoyo_path_number_perm+0x232/0x5b0
[   90.565434][ T6584]  tomoyo_path_number_perm+0x245/0x5b0
[   90.566804][ T6584]  ? tomoyo_path_number_perm+0x232/0x5b0
[   90.568220][ T6584]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   90.569774][ T6584]  ? trace_lock_acquire+0x14a/0x1d0
[   90.571114][ T6584]  ? lock_acquire+0x2f/0xb0
[   90.572301][ T6584]  ? __fget_files+0x40/0x3f0
[   90.573495][ T6584]  ? __fget_files+0x244/0x3f0
[   90.574717][ T6584]  security_file_ioctl_compat+0x9b/0x240
[   90.576252][ T6584]  __do_compat_sys_ioctl+0x52/0x2b0
[   90.577861][ T6584]  __do_fast_syscall_32+0x73/0x120
[   90.579209][ T6584]  do_fast_syscall_32+0x32/0x80
[   90.580522][ T6584]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   90.582150][ T6584] RIP: 0023:0xf7fe6579
[   90.583258][ T6584] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   90.589227][ T6584] RSP: 002b:00000000f572456c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   90.591357][ T6584] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000720
[   90.593397][ T6584] RDX: 0000000020003080 RSI: 0000000000000000 RDI: 0000000000000000
[   90.595533][ T6584] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   90.597553][ T6584] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   90.599547][ T6584] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   90.601590][ T6584]  </TASK>
[   90.602548][ T6584] ERROR: Out of memory at tomoyo_realpath_from_path.
[   90.923289][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[   90.927883][ T6604] netlink: 16 bytes leftover after parsing attributes in process `syz.1.301'.
[   91.750187][ T6610] tmpfs: Bad value for 'mpol'
[   91.761367][ T6610] netlink: 40 bytes leftover after parsing attributes in process `syz.1.303'.
[   91.847572][ T6612] usb 1-1: USB disconnect, device number 2
[   92.223020][   T85] Bluetooth: hci6: Frame reassembly failed (-84)
[   92.226562][   T85] Bluetooth: hci6: Frame reassembly failed (-84)
[   92.229132][   T85] Bluetooth: hci6: Frame reassembly failed (-84)
[   92.288369][ T5354] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   92.288388][ T5355] Bluetooth: hci5: command 0x1003 tx timeout
[   92.506645][   T57] usb 7-1: USB disconnect, device number 10
[   92.536104][ T6625] netlink: 4 bytes leftover after parsing attributes in process `syz.2.308'.
[   92.658200][ T6629] pimreg: entered allmulticast mode
[   92.868279][ T6638] libceph: resolve '.
[   92.868279][ T6638] #)|.زf͹Ç�²a×ïÅ2sˆoÖw¿úÕ?£'Ê%Ð�KAq‰f»�CÖê¨Âz¿e­Sb3L)Hyúo¤¶ÿÿÿÿÿÿÿ÷ǤÜYšM�¤¨ìó¤h‡E$
[   92.868279][ T6638] ' (ret=-3): failed
[   92.938266][ T5354] Bluetooth: hci4: command 0x1003 tx timeout
[   92.940503][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   93.220418][ T6657] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.313'.
[   93.935249][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[   94.289202][ T5356] Bluetooth: hci6: Opcode 0x1003 failed: -110
[   94.291118][ T5354] Bluetooth: hci6: command 0x1003 tx timeout
[   94.414878][ T6682] overlayfs: conflicting options: nfs_export=on,metacopy=on
[   94.554055][ T6688] netlink: 132 bytes leftover after parsing attributes in process `syz.0.321'.
[   94.618656][   T85] Bluetooth: hci5: Frame reassembly failed (-84)
[   95.395526][ T6691] =======================================================
[   95.395526][ T6691] WARNING: The mand mount option has been deprecated and
[   95.395526][ T6691]          and is ignored by this kernel. Remove the mand
[   95.395526][ T6691]          option from the mount to silence this warning.
[   95.395526][ T6691] =======================================================
[   95.838316][ T2782] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   95.968297][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   95.968372][ T5355] Bluetooth: hci4: command 0x1003 tx timeout
[   96.167317][ T2782] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   96.170834][ T2782] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[   96.173820][ T2782] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   96.179679][ T2782] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   96.182503][ T2782] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.184560][ T2782] usb 5-1: Product: syz
[   96.185626][ T2782] usb 5-1: Manufacturer: syz
[   96.186801][ T2782] usb 5-1: SerialNumber: syz
[   96.190817][ T2782] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[   96.192562][ T2782] cdc_ncm 5-1:1.0: bind() failure
[   96.298196][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[   96.307309][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[   96.410307][   T39] audit: type=1326 audit(1729704449.299:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.0.323" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x0
[   96.529582][ T2782] usb 5-1: USB disconnect, device number 5
[   96.698310][ T5356] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   96.698377][ T5355] Bluetooth: hci5: command 0x1003 tx timeout
[   97.029306][ T6722] sp0: Synchronizing with TNC
[   97.444512][ T6730] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.333'.
[   97.900648][ T6735] netlink: 20 bytes leftover after parsing attributes in process `syz.3.335'.
[   97.956566][ T6734] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   97.958946][ T6734] IPv6: NLM_F_CREATE should be set when creating new route
[   97.960729][ T6734] IPv6: NLM_F_CREATE should be set when creating new route
[   97.963373][ T6734] overlayfs: missing 'lowerdir'
[   98.368292][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   98.612842][ T6749] netlink: 12 bytes leftover after parsing attributes in process `syz.2.339'.
[   98.850740][ T6758] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117
[   98.853154][ T6758] PKCS7: Only support pkcs7_signedData type
[   99.608244][   T35] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[   99.691323][   T39] audit: type=1400 audit(1729704452.579:52): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=6765 comm="syz.2.343"
[   99.758214][   T35] usb 8-1: Using ep0 maxpacket: 8
[   99.762376][   T35] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[   99.767264][   T35] usb 8-1: config 0 has no interface number 0
[   99.769592][   T35] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   99.773175][   T35] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   99.776183][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.780775][   T35] usb 8-1: config 0 descriptor??
[   99.793988][   T35] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  100.046562][ T6779] program syz.3.342 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  100.448240][ T6770] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.492442][ T6786] netlink: 28 bytes leftover after parsing attributes in process `syz.1.348'.
[  100.494779][ T6786] netlink: 8 bytes leftover after parsing attributes in process `syz.1.348'.
[  100.797396][   T42] Bluetooth: hci4: Frame reassembly failed (-84)
[  100.848832][ T5356] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  100.851851][ T5356] Bluetooth: hci1: Injecting HCI hardware error event
[  100.854943][ T5356] Bluetooth: hci1: hardware error 0x00
[  101.011040][   T35] usb 8-1: USB disconnect, device number 11
[  101.021085][   T35] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[  101.546732][ T6837] tipc: Started in network mode
[  101.548059][ T6837] tipc: Node identity ac1414aa, cluster identity 4711
[  101.550896][ T6837] tipc: Enabled bearer <udp:s>, priority 10
[  102.679840][ T5351] tipc: Node number set to 2886997162
[  102.832243][ T6852] block nbd0: shutting down sockets
[  102.848252][ T5354] Bluetooth: hci4: command 0x1003 tx timeout
[  102.848285][ T5348] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  102.939653][ T5356] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  103.531652][ T6889] netlink: 28 bytes leftover after parsing attributes in process `syz.1.371'.
[  103.538764][ T2782] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  103.644626][ T6894] rtc_cmos 00:05: Alarms can be up to one day in the future
[  103.708201][ T2782] usb 8-1: Using ep0 maxpacket: 8
[  103.710942][ T2782] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  103.713065][ T2782] usb 8-1: config 0 has no interface number 0
[  103.714689][ T2782] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  103.717719][ T2782] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  103.720208][ T2782] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.723094][ T2782] usb 8-1: config 0 descriptor??
[  103.726901][ T2782] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  103.984604][ T6899] program syz.3.370 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  104.108234][ T1421] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  104.271751][ T1421] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  104.274890][ T1421] usb 5-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  104.277930][ T1421] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  104.281021][ T1421] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.288917][ T1421] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  104.291204][ T1421] usb 5-1: invalid MIDI out EP 0
[  104.325504][ T6913] : entered promiscuous mode
[  104.329578][ T1421] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -22
[  104.333580][ T6913] bridge0: port 3(syz_tun) entered blocking state
[  104.336873][ T6913] bridge0: port 3(syz_tun) entered disabled state
[  104.339261][ T6913] syz_tun: entered allmulticast mode
[  104.341888][ T6913] syz_tun: entered promiscuous mode
[  104.343734][ T6913] bridge0: port 3(syz_tun) entered blocking state
[  104.346366][ T6913] bridge0: port 3(syz_tun) entered forwarding state
[  104.383865][ T6092] udevd[6092]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  104.393142][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  104.402898][ T6916] bond0: Error: Cannot enslave bond to itself.
[  104.413806][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[  104.704449][ T6926] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.373'.
[  105.011737][ T2782] usb 8-1: USB disconnect, device number 12
[  105.017018][ T2782] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[  105.749723][   T35] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  105.920419][   T35] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  105.923321][   T35] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  105.925866][   T35] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  105.928994][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.934497][ T6928] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  105.939010][   T35] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  106.122356][   T39] audit: type=1326 audit(1729704459.009:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6953 comm="syz.3.387" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x0
[  106.190782][   T35] usb 7-1: USB disconnect, device number 11
[  106.448263][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  106.448461][ T5348] Bluetooth: hci4: command 0x1003 tx timeout
[  106.904494][ T2782] usb 5-1: USB disconnect, device number 6
[  106.950665][ T6966] netlink: 12 bytes leftover after parsing attributes in process `syz.0.390'.
[  107.003509][ T6978] random: crng reseeded on system resumption
[  107.011963][ T6978] No such timeout policy "syz0"
[  107.041259][ T6981] netlink: 4 bytes leftover after parsing attributes in process `syz.3.393'.
[  107.043990][ T6981] netlink: 4 bytes leftover after parsing attributes in process `syz.3.393'.
[  107.046373][ T6967] netlink: 'syz.0.390': attribute type 20 has an invalid length.
[  107.378276][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  107.447496][ T7004] netlink: 12 bytes leftover after parsing attributes in process `syz.1.398'.
[  107.452676][ T7004] netlink: 'syz.1.398': attribute type 15 has an invalid length.
[  107.457482][ T7004] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 256 - 0
[  107.459870][ T7004] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 256 - 0
[  107.462104][ T7004] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 256 - 0
[  107.464294][ T7004] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 256 - 0
[  107.466940][ T7004] vxlan0: entered promiscuous mode
[  107.836919][ T7006] netlink: 3 bytes leftover after parsing attributes in process `syz.0.399'.
[  108.024818][ T7027] exFAT-fs (nullb0): invalid boot record signature
[  108.027781][ T7027] exFAT-fs (nullb0): failed to read boot sector
[  108.032442][ T7027] exFAT-fs (nullb0): failed to recognize exfat type
[  108.291948][ T7032] netlink: 20 bytes leftover after parsing attributes in process `syz.1.405'.
[  109.049266][ T7056] netlink: 8 bytes leftover after parsing attributes in process `syz.1.412'.
[  109.079566][ T7056] fuse: Unknown parameter 'ûd¡'
[  109.408435][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  109.408444][ T5348] Bluetooth: hci4: command 0x1003 tx timeout
[  109.677333][ T7053] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  109.873063][ T7059] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  109.875963][ T7059] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  109.885105][ T7059] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  109.891743][ T7059] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  109.895773][ T7059] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  109.897600][ T7059] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  109.902298][ T7059] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  110.441311][ T7085] team_slave_0: left promiscuous mode
[  110.443498][ T7085] team_slave_1: left promiscuous mode
[  110.522228][ T7085] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  110.541869][ T7085] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  110.634024][ T7085] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.637059][ T7085] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.639448][ T7085] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.641808][ T7085] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.651353][   T39] audit: type=1326 audit(1729704463.539:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7099 comm="syz.3.423" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x0
[  110.675728][ T7085] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  110.679262][ T7085] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  110.682269][ T7085] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  110.685259][ T7085] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  110.718025][ T5356] Bluetooth: hci3: unexpected event 0x34 length: 10 > 6
[  111.097211][ T7118] netlink: 36 bytes leftover after parsing attributes in process `syz.2.427'.
[  111.663763][ T7121] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  111.743566][ T7123] netlink: 64 bytes leftover after parsing attributes in process `syz.1.428'.
[  111.809802][ T5356] Bluetooth: hci2: command 0x0c1a tx timeout
[  111.968273][ T5356] Bluetooth: hci3: command 0x0c1a tx timeout
[  112.325227][   T42] Bluetooth: hci4: Frame reassembly failed (-84)
[  112.327112][   T42] Bluetooth: hci4: Frame reassembly failed (-84)
[  112.329019][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  112.988618][ T5351] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  113.128663][ T7217] sctp: [Deprecated]: syz.0.445 (pid 7217) Use of struct sctp_assoc_value in delayed_ack socket option.
[  113.128663][ T7217] Use struct sctp_sack_info instead
[  113.148221][ T5351] usb 8-1: Using ep0 maxpacket: 8
[  113.151005][ T5351] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  113.153183][ T5351] usb 8-1: config 0 has no interface number 0
[  113.154789][ T5351] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  113.157608][ T5351] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  113.160163][ T5351] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.163407][ T5351] usb 8-1: config 0 descriptor??
[  113.167264][ T5351] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  113.424677][ T7243] program syz.3.440 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  113.668783][ T7243] netlink: 9412 bytes leftover after parsing attributes in process `syz.3.440'.
[  113.888344][ T5348] Bluetooth: hci2: command 0x0c1a tx timeout
[  114.048331][ T5348] Bluetooth: hci3: command 0x0c1a tx timeout
[  114.288278][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  114.413921][ T7268] syz.1.454 (7268) used greatest stack depth: 20832 bytes left
[  114.473820][ T5351] usb 8-1: USB disconnect, device number 13
[  114.477628][ T5351] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[  114.490828][ T7274] vivid-007: disconnect
[  114.493557][ T7273] vivid-007: reconnect
[  114.528227][ T2782] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  114.678213][ T2782] usb 7-1: Using ep0 maxpacket: 8
[  114.681460][ T2782] usb 7-1: config 0 has an invalid interface number: 52 but max is 0
[  114.684147][ T2782] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.687553][ T2782] usb 7-1: config 0 has no interface number 0
[  114.689778][ T2782] usb 7-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  114.692840][ T2782] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  114.696485][ T2782] usb 7-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  114.700338][ T2782] usb 7-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  114.704632][ T2782] usb 7-1: config 0 interface 52 has no altsetting 0
[  114.706908][ T2782] usb 7-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[  114.710076][ T2782] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.715705][ T2782] usb 7-1: config 0 descriptor??
[  114.921437][ T2782] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.52/input/input9
[  115.025870][ T7279] overlayfs: failed to resolve './file0': -2
[  115.044331][ T7279] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  115.054670][ T7279] CIFS: Unable to determine destination address
[  115.157549][ T5351] usb 7-1: USB disconnect, device number 12
[  115.230800][ T7301] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  115.234292][ T7301] overlayfs: maximum fs stacking depth exceeded
[  115.242802][ T7302] bridge0: entered promiscuous mode
[  115.244153][ T7302] bridge0: entered allmulticast mode
[  115.462331][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[  115.464082][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  115.768223][ T2782] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  115.930116][ T2782] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  115.933067][ T2782] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  115.935929][ T2782] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  115.938589][ T2782] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  115.941065][ T2782] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.945930][ T2782] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  115.964277][ T6092] udevd[6092]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  115.967723][ T2782] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -12
[  115.968419][ T5348] Bluetooth: hci2: command 0x0c1a tx timeout
[  116.128256][ T5348] Bluetooth: hci3: command 0x0c1a tx timeout
[  116.328349][ T7089] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  116.345044][ T7321] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.466'.
[  116.504063][ T7089] usb 8-1: Using ep0 maxpacket: 8
[  116.508942][ T7089] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  116.511107][ T7089] usb 8-1: config 0 has no interface number 0
[  116.512786][ T7089] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  116.515638][ T7089] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  116.518029][ T7089] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.521551][ T7089] usb 8-1: config 0 descriptor??
[  116.525808][ T7089] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  116.781738][ T7323] program syz.3.467 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  117.009307][ T7323] netlink: 9412 bytes leftover after parsing attributes in process `syz.3.467'.
[  117.498292][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  117.499652][ T5348] Bluetooth: hci4: command 0x1003 tx timeout
[  117.811944][ T1421] usb 8-1: USB disconnect, device number 14
[  117.814398][ T1421] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[  118.048341][ T5356] Bluetooth: hci2: command 0x0c1a tx timeout
[  118.365823][ T7372] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  118.369288][ T7372] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  118.534288][ T2782] usb 5-1: USB disconnect, device number 7
[  118.675698][ T7387] hub 2-0:1.0: USB hub found
[  118.684738][ T7387] hub 2-0:1.0: 2 ports detected
[  119.386876][ T7406] netlink: 8 bytes leftover after parsing attributes in process `syz.2.486'.
[  119.928224][ T1421] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  120.064113][   T39] audit: type=1326 audit(1729704472.949:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.2.489" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x0
[  120.088207][ T1421] usb 6-1: Using ep0 maxpacket: 8
[  120.090853][ T1421] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  120.093256][ T1421] usb 6-1: config 0 has no interface number 0
[  120.095544][ T1421] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  120.099979][ T1421] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  120.103429][ T1421] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.107883][ T1421] usb 6-1: config 0 descriptor??
[  120.113133][ T1421] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  120.365369][ T7424] program syz.1.488 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  120.583349][ T7424] netlink: 'syz.1.488': attribute type 1 has an invalid length.
[  120.585516][ T7424] netlink: 9344 bytes leftover after parsing attributes in process `syz.1.488'.
[  120.588983][ T5351] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  120.590424][ T7424] netlink: 'syz.1.488': attribute type 1 has an invalid length.
[  120.739622][ T5351] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  120.742913][ T5351] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  120.746246][ T5351] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  120.749995][ T5351] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  120.753346][ T5351] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.760697][ T5351] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  120.789381][ T5351] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -12
[  121.193228][ T7432] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.491'.
[  121.343187][ T1421] usb 6-1: USB disconnect, device number 4
[  121.349569][ T1421] iowarrior 6-1:0.1: I/O-Warror #0 now disconnected
[  123.095146][ T7462] overlayfs: missing 'lowerdir'
[  123.479073][   T30] usb 5-1: USB disconnect, device number 8
[  123.664101][ T5356] Bluetooth: hci3: SCO packet for unknown connection handle 201
[  123.948323][   T65] usb 8-1: new full-speed USB device number 15 using dummy_hcd
[  123.978242][   T30] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  124.101127][   T65] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  124.103587][   T65] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.108457][   T65] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  124.111122][   T65] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  124.113260][   T65] usb 8-1: Manufacturer: syz
[  124.115986][   T65] usb 8-1: config 0 descriptor??
[  124.128207][   T30] usb 5-1: Using ep0 maxpacket: 8
[  124.133010][   T30] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  124.135515][   T30] usb 5-1: config 0 has no interface number 0
[  124.141431][   T30] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  124.144586][   T30] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  124.147042][   T30] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.158296][   T65] rc_core: IR keymap rc-hauppauge not found
[  124.160468][   T30] usb 5-1: config 0 descriptor??
[  124.162382][   T65] Registered IR keymap rc-empty
[  124.166580][   T30] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  124.167411][   T65] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  124.176781][   T65] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input11
[  124.331158][ T7480] netlink: 4 bytes leftover after parsing attributes in process `syz.3.505'.
[  124.421019][ T7485] program syz.0.504 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  124.656194][ T7485] netlink: 'syz.0.504': attribute type 1 has an invalid length.
[  124.658413][ T7485] netlink: 9344 bytes leftover after parsing attributes in process `syz.0.504'.
[  124.660908][ T7485] netlink: 'syz.0.504': attribute type 1 has an invalid length.
[  125.420406][ T1421] usb 5-1: USB disconnect, device number 9
[  125.424216][ T1421] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected
[  125.948291][ T7089] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  126.100743][ T7089] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  126.103758][ T7089] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  126.106425][ T7089] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  126.110144][ T7089] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.143824][ T7510] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  126.147214][ T7089] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  126.549777][ T7522] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.511'.
[  126.677517][   T30] usb 8-1: USB disconnect, device number 15
[  126.798370][ T5351] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  126.965374][ T5351] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  126.968565][ T5351] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  126.971165][ T5351] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  126.973657][ T5351] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.982659][ T7520] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  126.996458][ T5351] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  127.423405][ T7536] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.514'.
[  128.024489][ T7538] netlink: 28 bytes leftover after parsing attributes in process `syz.0.518'.
[  128.026927][ T7538] netlink: 28 bytes leftover after parsing attributes in process `syz.0.518'.
[  128.032432][ T7538] ip6gretap0: entered promiscuous mode
[  128.034640][ T7538] batadv_slave_1: entered promiscuous mode
[  128.038295][ T7538] hsr1: Slave A (ip6gretap0) is not up; please bring it up to get a fully working HSR network
[  128.041128][ T7538] hsr1: Slave B (batadv_slave_1) is not up; please bring it up to get a fully working HSR network
[  128.428224][ T1421] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  128.588270][ T1421] usb 8-1: Using ep0 maxpacket: 8
[  128.594728][ T1421] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  128.597873][ T1421] usb 8-1: config 0 has no interface number 0
[  128.600728][ T1421] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  128.603961][ T1421] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  128.607141][ T1421] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.613018][ T1421] usb 8-1: config 0 descriptor??
[  128.621634][ T1421] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  128.746961][ T2782] usb 7-1: USB disconnect, device number 13
[  128.827008][ T7551] FAULT_INJECTION: forcing a failure.
[  128.827008][ T7551] name failslab, interval 1, probability 0, space 0, times 0
[  128.830688][ T7551] CPU: 1 UID: 0 PID: 7551 Comm: syz.2.522 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  128.833389][ T7551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.836095][ T7551] Call Trace:
[  128.836969][ T7551]  <TASK>
[  128.837748][ T7551]  dump_stack_lvl+0x16c/0x1f0
[  128.838999][ T7551]  should_fail_ex+0x497/0x5b0
[  128.840260][ T7551]  ? lock_acquire.part.0+0x11b/0x380
[  128.841650][ T7551]  should_failslab+0xc2/0x120
[  128.842889][ T7551]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  128.844295][ T7551]  ? dst_alloc+0x99/0x1a0
[  128.845430][ T7551]  ? trace_lock_acquire+0x14a/0x1d0
[  128.846792][ T7551]  ? __pfx_ip6_dst_gc+0x10/0x10
[  128.848076][ T7551]  dst_alloc+0x99/0x1a0
[  128.849166][ T7551]  ip6_dst_alloc+0x2c/0xa0
[  128.850341][ T7551]  ip6_pol_route+0x956/0x1120
[  128.851649][ T7551]  ? __pfx_ip6_pol_route+0x10/0x10
[  128.853214][ T7551]  ? __pfx___lock_acquire+0x10/0x10
[  128.854571][ T7551]  ? mark_lock+0xb5/0xc60
[  128.855706][ T7551]  ? widen_string+0xd8/0x2a0
[  128.856929][ T7551]  ? __pfx_ip6_pol_route_output+0x10/0x10
[  128.858404][ T7551]  fib6_rule_lookup+0x24c/0x720
[  128.859694][ T7551]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  128.861093][ T7551]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  128.862550][ T7551]  ? rcu_is_watching+0x12/0xc0
[  128.863804][ T7551]  ? trace_lock_acquire+0x14a/0x1d0
[  128.865151][ T7551]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  128.866694][ T7551]  ip6_route_output_flags+0x1d0/0x640
[  128.868101][ T7551]  ip6_dst_lookup_tail.constprop.0+0x56e/0x19e0
[  128.869725][ T7551]  ? hlock_class+0x4e/0x130
[  128.870871][ T7551]  ? __lock_acquire+0xbdd/0x3ce0
[  128.872149][ T7551]  ? __pfx_ip6_dst_lookup_tail.constprop.0+0x10/0x10
[  128.873879][ T7551]  ? find_held_lock+0x2d/0x110
[  128.875099][ T7551]  ? sk_dst_check+0x220/0x540
[  128.876314][ T7551]  ip6_dst_lookup_flow+0x99/0x1d0
[  128.877610][ T7551]  ? __pfx_ip6_dst_lookup_flow+0x10/0x10
[  128.879047][ T7551]  ip6_sk_dst_lookup_flow+0x568/0x960
[  128.880450][ T7551]  udpv6_sendmsg+0x1c46/0x3030
[  128.881652][ T7551]  ? __pfx_udplite_getfrag+0x10/0x10
[  128.883013][ T7551]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  128.884290][ T7551]  ? mark_held_locks+0x9f/0xe0
[  128.885521][ T7551]  ? release_sock+0x21/0x220
[  128.886710][ T7551]  ? find_held_lock+0x2d/0x110
[  128.887973][ T7551]  ? __local_bh_enable_ip+0xa4/0x120
[  128.889349][ T7551]  ? lockdep_hardirqs_on+0x7c/0x110
[  128.890709][ T7551]  ? inet_autobind+0x145/0x1a0
[  128.891972][ T7551]  ? __local_bh_enable_ip+0xa4/0x120
[  128.893345][ T7551]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  128.894681][ T7551]  ? inet6_sendmsg+0x105/0x140
[  128.895943][ T7551]  inet6_sendmsg+0x105/0x140
[  128.897151][ T7551]  __sys_sendto+0x36b/0x4d0
[  128.898344][ T7551]  ? __pfx___sys_sendto+0x10/0x10
[  128.899684][ T7551]  ? ksys_write+0x1ad/0x260
[  128.900873][ T7551]  ? __pfx_ksys_write+0x10/0x10
[  128.902146][ T7551]  __ia32_sys_sendto+0xdd/0x1b0
[  128.903416][ T7551]  ? lockdep_hardirqs_on+0x7c/0x110
[  128.904785][ T7551]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  128.906461][ T7551]  __do_fast_syscall_32+0x73/0x120
[  128.907793][ T7551]  do_fast_syscall_32+0x32/0x80
[  128.909062][ T7551]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  128.910698][ T7551] RIP: 0023:0xf7fb0579
[  128.911767][ T7551] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  128.916729][ T7551] RSP: 002b:00000000f571556c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  128.918838][ T7551] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000000
[  128.920887][ T7551] RDX: 0000000000000000 RSI: 000000000004c004 RDI: 0000000020002880
[  128.922919][ T7551] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  128.924958][ T7551] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  128.926990][ T7551] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  128.929026][ T7551]  </TASK>
[  128.932874][ T7552] program syz.3.520 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.165387][ T7552] netlink: 'syz.3.520': attribute type 1 has an invalid length.
[  129.168371][ T7552] netlink: 9344 bytes leftover after parsing attributes in process `syz.3.520'.
[  129.170782][ T7552] netlink: 'syz.3.520': attribute type 1 has an invalid length.
[  129.423091][ T7089] usb 6-1: USB disconnect, device number 5
[  129.633324][ T7560] netlink: 8 bytes leftover after parsing attributes in process `syz.2.524'.
[  129.641963][ T7560] netlink: 32 bytes leftover after parsing attributes in process `syz.2.524'.
[  129.891517][ T7089] usb 8-1: USB disconnect, device number 16
[  129.894057][ T7089] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[  129.925169][ T7577] binder: 7576:7577 ioctl 4018620d 0 returned -22
[  130.258285][    T9] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  130.413879][    T9] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  130.416747][    T9] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  130.419904][    T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  130.422315][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.426291][ T7581] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  130.431180][    T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  130.601690][ T7599] netlink: 20 bytes leftover after parsing attributes in process `syz.3.535'.
[  130.867428][ T7604] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.531'.
[  131.460215][ T7618] syz.0.538: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  131.467282][ T7618] CPU: 0 UID: 0 PID: 7618 Comm: syz.0.538 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  131.471039][ T7618] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.474912][ T7618] Call Trace:
[  131.476151][ T7618]  <TASK>
[  131.477237][ T7618]  dump_stack_lvl+0x16c/0x1f0
[  131.478976][ T7618]  warn_alloc+0x24d/0x3a0
[  131.480583][ T7618]  ? __pfx_warn_alloc+0x10/0x10
[  131.482378][ T7618]  ? __pfx_stack_trace_save+0x10/0x10
[  131.484311][ T7618]  ? kasan_save_stack+0x42/0x60
[  131.486090][ T7618]  ? kasan_save_stack+0x33/0x60
[  131.487875][ T7618]  ? kasan_save_track+0x14/0x30
[  131.489645][ T7618]  ? __kasan_kmalloc+0xaa/0xb0
[  131.491384][ T7618]  ? xskq_create+0x52/0x1d0
[  131.493076][ T7618]  ? do_sock_setsockopt+0x222/0x480
[  131.494974][ T7618]  ? __sys_setsockopt+0x1a4/0x270
[  131.496800][ T7618]  ? __ia32_sys_setsockopt+0xbc/0x160
[  131.498730][ T7618]  __vmalloc_node_range_noprof+0x11a7/0x15a0
[  131.500349][ T7618]  ? xskq_create+0xfb/0x1d0
[  131.501539][ T7618]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  131.503198][ T7618]  ? xskq_create+0xfb/0x1d0
[  131.504575][ T7618]  vmalloc_user_noprof+0x6b/0x90
[  131.505868][ T7618]  ? xskq_create+0xfb/0x1d0
[  131.507060][ T7618]  xskq_create+0xfb/0x1d0
[  131.508212][ T7618]  xsk_setsockopt+0x869/0xac0
[  131.509441][ T7618]  ? __pfx_xsk_setsockopt+0x10/0x10
[  131.510805][ T7618]  ? __pfx_xsk_setsockopt+0x10/0x10
[  131.512179][ T7618]  do_sock_setsockopt+0x222/0x480
[  131.513519][ T7618]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  131.514955][ T7618]  ? fdget+0x176/0x210
[  131.516021][ T7618]  __sys_setsockopt+0x1a4/0x270
[  131.517306][ T7618]  ? __pfx___sys_setsockopt+0x10/0x10
[  131.518702][ T7618]  ? rcu_is_watching+0x12/0xc0
[  131.519965][ T7618]  __ia32_sys_setsockopt+0xbc/0x160
[  131.521313][ T7618]  ? lockdep_hardirqs_on+0x7c/0x110
[  131.522675][ T7618]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  131.524428][ T7618]  __do_fast_syscall_32+0x73/0x120
[  131.525756][ T7618]  do_fast_syscall_32+0x32/0x80
[  131.527035][ T7618]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  131.528687][ T7618] RIP: 0023:0xf7ff0579
[  131.529751][ T7618] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  131.534741][ T7618] RSP: 002b:00000000f575556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  131.536894][ T7618] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 000000000000011b
[  131.538926][ T7618] RDX: 0000000000000005 RSI: 0000000020000840 RDI: 0000000000000004
[  131.541115][ T7618] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  131.543180][ T7618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  131.545229][ T7618] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  131.547379][ T7618]  </TASK>
[  131.548492][ T7618] Mem-Info:
[  131.549785][ T7618] active_anon:20911 inactive_anon:0 isolated_anon:0
[  131.549785][ T7618]  active_file:7240 inactive_file:39128 isolated_file:0
[  131.549785][ T7618]  unevictable:768 dirty:138 writeback:0
[  131.549785][ T7618]  slab_reclaimable:6386 slab_unreclaimable:53824
[  131.549785][ T7618]  mapped:21098 shmem:16798 pagetables:701
[  131.549785][ T7618]  sec_pagetables:312 bounce:0
[  131.549785][ T7618]  kernel_misc_reclaimable:0
[  131.549785][ T7618]  free:64514 free_pcp:2559 free_cma:0
[  131.566698][ T7618] Node 0 active_anon:17180kB inactive_anon:0kB active_file:6736kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:5236kB dirty:32kB writeback:0kB shmem:15348kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9156kB pagetables:1080kB sec_pagetables:1180kB all_unreclaimable? yes
[  131.579443][ T7618] Node 1 active_anon:68564kB inactive_anon:0kB active_file:22224kB inactive_file:156512kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:81256kB dirty:520kB writeback:0kB shmem:53944kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2372kB pagetables:1724kB sec_pagetables:68kB all_unreclaimable? no
[  131.588744][ T7618] Node 0 DMA free:2920kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:480kB inactive_anon:0kB active_file:228kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:268kB local_pcp:52kB free_cma:0kB
[  131.596509][ T7618] lowmem_reserve[]: 0 273 0 0 0
[  131.598027][ T7618] Node 0 DMA32 free:21268kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:16584kB inactive_anon:0kB active_file:6508kB inactive_file:0kB unevictable:1536kB writepending:32kB present:1032196kB managed:306288kB mlocked:0kB bounce:0kB free_pcp:1448kB local_pcp:368kB free_cma:0kB
[  131.607342][ T7618] lowmem_reserve[]: 0 0 0 0 0
[  131.609397][ T7618] Node 1 DMA32 free:233868kB boost:4096kB min:51240kB low:63024kB high:74808kB reserved_highatomic:0KB active_anon:70964kB inactive_anon:0kB active_file:22224kB inactive_file:156512kB unevictable:1536kB writepending:520kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:4196kB local_pcp:172kB free_cma:0kB
[  131.617861][ T7618] lowmem_reserve[]: 0 0 0 0 0
[  131.637814][ T7618] Node 0 DMA: 20*4kB (UE) 133*8kB (UE) 104*16kB (UE) 6*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 3000kB
[  131.643339][ T7618] Node 0 DMA32: 231*4kB (UEH) 414*8kB (UMEH) 93*16kB (UMEH) 137*32kB (UMEH) 66*64kB (UMEH) 18*128kB (UMEH) 7*256kB (UME) 3*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 20988kB
[  131.648797][ T7618] Node 1 DMA32: 200*4kB (UME) 186*8kB (UME) 123*16kB (UM) 159*32kB (UME) 266*64kB (UME) 147*128kB (UME) 106*256kB (UME) 81*512kB (UME) 58*1024kB (UM) 19*2048kB (UM) 5*4096kB (UM) = 232576kB
[  131.655029][ T7618] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  131.658007][ T7618] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  131.660835][ T7618] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  131.663976][ T7618] Node 1 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  131.666829][ T7618] 65289 total pagecache pages
[  131.668379][ T7618] 188 pages in swap cache
[  131.669903][ T7618] Free swap  = 119476kB
[  131.671215][ T7618] Total swap = 124996kB
[  131.672703][ T7618] 524155 pages RAM
[  131.674070][ T7618] 0 pages HighMem/MovableOnly
[  131.676232][ T7618] 206680 pages reserved
[  131.678266][ T7618] 0 pages cma reserved
[  131.746125][ T7628] netlink: 32 bytes leftover after parsing attributes in process `syz.3.542'.
[  131.749421][ T7628] netlink: 32 bytes leftover after parsing attributes in process `syz.3.542'.
[  131.887283][ T7635] FAULT_INJECTION: forcing a failure.
[  131.887283][ T7635] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  131.893199][ T7635] CPU: 3 UID: 0 PID: 7635 Comm: syz.2.545 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  131.896075][ T7635] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.898823][ T7635] Call Trace:
[  131.899737][ T7635]  <TASK>
[  131.900514][ T7635]  dump_stack_lvl+0x16c/0x1f0
[  131.901890][ T7635]  should_fail_ex+0x497/0x5b0
[  131.903439][ T7635]  _copy_to_user+0x30/0xc0
[  131.904951][ T7635]  simple_read_from_buffer+0xd0/0x160
[  131.906365][ T7635]  proc_fail_nth_read+0x198/0x270
[  131.908028][ T7635]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  131.909569][ T7635]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  131.911413][ T7635]  vfs_read+0x1ce/0xbd0
[  131.912831][ T7635]  ? __fget_files+0x23a/0x3f0
[  131.914363][ T7635]  ? fdget_pos+0x24c/0x360
[  131.915979][ T7635]  ? __pfx_lock_release+0x10/0x10
[  131.917820][ T7635]  ? trace_lock_acquire+0x14a/0x1d0
[  131.919186][ T7635]  ? __pfx_vfs_read+0x10/0x10
[  131.920532][ T7635]  ? __pfx___mutex_lock+0x10/0x10
[  131.922154][ T7635]  ? __fget_files+0x244/0x3f0
[  131.923729][ T7635]  ksys_read+0x12f/0x260
[  131.925151][ T7635]  ? __pfx_ksys_read+0x10/0x10
[  131.926396][ T7635]  __do_fast_syscall_32+0x73/0x120
[  131.927850][ T7635]  do_fast_syscall_32+0x32/0x80
[  131.929144][ T7635]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  131.931023][ T7635] RIP: 0023:0xf7fb0579
[  131.932089][ T7635] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  131.937339][ T7635] RSP: 002b:00000000f57155a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  131.939897][ T7635] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f5715620
[  131.942371][ T7635] RDX: 000000000000000f RSI: 00000000f743bff4 RDI: 0000000000000000
[  131.944397][ T7635] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  131.946572][ T7635] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  131.948639][ T7635] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  131.950730][ T7635]  </TASK>
[  132.030915][ T7638] netlink: 'syz.2.546': attribute type 10 has an invalid length.
[  132.046766][ T7638] team0: Port device netdevsim0 added
[  132.048354][ T7089] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  132.130440][ T1373] ieee802154 phy0 wpan0: encryption failed: -22
[  132.132041][ T1373] ieee802154 phy1 wpan1: encryption failed: -22
[  132.147172][ T7642] evm: overlay not supported
[  132.198603][ T7089] usb 8-1: Using ep0 maxpacket: 8
[  132.214993][ T7089] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  132.217455][ T7089] usb 8-1: config 0 has no interface number 0
[  132.219192][ T7089] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  132.222194][ T7089] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  132.224832][ T7089] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.235270][ T7089] usb 8-1: config 0 descriptor??
[  132.238844][ T7089] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  132.504337][ T7647] program syz.3.543 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  132.777789][ T7647] netlink: 'syz.3.543': attribute type 1 has an invalid length.
[  132.780849][ T7647] netlink: 9344 bytes leftover after parsing attributes in process `syz.3.543'.
[  132.783589][ T7647] netlink: 'syz.3.543': attribute type 1 has an invalid length.
[  133.068799][ T1421] usb 6-1: USB disconnect, device number 6
[  133.107389][   T39] audit: type=1326 audit(1729704485.979:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.119254][   T39] audit: type=1326 audit(1729704485.979:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.125028][   T39] audit: type=1326 audit(1729704485.989:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.130743][   T39] audit: type=1326 audit(1729704485.989:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.138264][   T39] audit: type=1326 audit(1729704485.989:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.145562][   T39] audit: type=1326 audit(1729704485.989:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=447 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.154286][   T39] audit: type=1326 audit(1729704485.989:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.162101][   T39] audit: type=1326 audit(1729704485.989:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.167634][   T39] audit: type=1326 audit(1729704485.989:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.174823][   T39] audit: type=1326 audit(1729704485.989:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7649 comm="syz.1.550" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  133.501048][ T1421] usb 8-1: USB disconnect, device number 17
[  133.503579][ T1421] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[  134.004971][ T7688] syzkaller0: entered promiscuous mode
[  134.006503][ T7688] syzkaller0: entered allmulticast mode
[  134.040994][ T7688] syzkaller0: create flow: hash 3969492532 index 1
[  134.096197][ T7688] syzkaller0: delete flow: hash 3969492532 index 1
[  135.519769][ T7710] fuse: Bad value for 'fd'
[  135.747513][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  135.752567][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.848255][   T35] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  135.983894][ T7737] can0: slcan on ptm0.
[  135.998496][   T35] usb 7-1: Using ep0 maxpacket: 8
[  136.001777][   T35] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  136.003907][   T35] usb 7-1: config 0 has no interface number 0
[  136.005493][   T35] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  136.008983][   T35] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  136.011408][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.014282][   T35] usb 7-1: config 0 descriptor??
[  136.020809][   T35] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  136.098786][ T7736] can0 (unregistered): slcan off ptm0.
[  136.282636][ T7769] program syz.2.565 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  136.506892][ T7769] netlink: 'syz.2.565': attribute type 1 has an invalid length.
[  136.509072][ T7769] netlink: 9344 bytes leftover after parsing attributes in process `syz.2.565'.
[  136.511541][ T7769] netlink: 'syz.2.565': attribute type 1 has an invalid length.
[  136.556903][ T7779] netlink: 'syz.1.578': attribute type 2 has an invalid length.
[  136.567087][ T7779] : entered promiscuous mode
[  137.214000][ T7792] netlink: 4 bytes leftover after parsing attributes in process `syz.1.584'.
[  137.280524][    T9] usb 7-1: USB disconnect, device number 14
[  137.320082][    T9] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected
[  137.631657][ T7799] netlink: 8 bytes leftover after parsing attributes in process `syz.1.586'.
[  137.845556][ T7812] netlink: 16 bytes leftover after parsing attributes in process `syz.2.590'.
[  137.878295][ T7089] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  138.017283][ T7817] netlink: 24 bytes leftover after parsing attributes in process `syz.3.591'.
[  138.038344][ T7089] usb 5-1: Using ep0 maxpacket: 8
[  138.051166][ T7089] usb 5-1: unable to get BOS descriptor or descriptor too short
[  138.053934][ T7089] usb 5-1: config 62 has an invalid descriptor of length 0, skipping remainder of the config
[  138.056510][ T7089] usb 5-1: config 62 has 0 interfaces, different from the descriptor's value: 1
[  138.061588][ T7089] usb 5-1: string descriptor 0 read error: -22
[  138.063205][ T7089] usb 5-1: New USB device found, idVendor=1415, idProduct=0003, bcdDevice=65.5d
[  138.065534][ T7089] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.086812][ T7821] netlink: 48 bytes leftover after parsing attributes in process `syz.1.592'.
[  138.282731][ T7801] netlink: 'syz.0.585': attribute type 10 has an invalid length.
[  138.690804][ T5351] usb 5-1: USB disconnect, device number 10
[  138.699464][ T5356] Bluetooth: hci2: unexpected event for opcode 0x0c14
[  138.830077][ T7843] netlink: 4 bytes leftover after parsing attributes in process `syz.2.596'.
[  138.836621][ T7843] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  138.839965][ T7843] batman_adv: batadv0: Removing interface: batadv_slave_0
[  138.848416][ T7843] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.850388][ T7843] batman_adv: batadv0: Removing interface: batadv_slave_1
[  139.070289][ T7844] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  139.128433][ T5351] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  139.213771][ T7847] netlink: 'syz.1.599': attribute type 25 has an invalid length.
[  139.398574][ T5351] usb 5-1: Using ep0 maxpacket: 8
[  139.421388][ T5351] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  139.424934][ T5351] usb 5-1: config 0 has no interface number 0
[  139.427184][ T5351] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  139.431831][ T5351] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  139.435100][ T5351] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.458986][ T5351] usb 5-1: config 0 descriptor??
[  139.461412][ T1104] Bluetooth: hci4: Frame reassembly failed (-84)
[  139.540395][ T5351] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  139.680442][ T7870] overlay: Unknown parameter '/'
[  139.770745][ T7871] program syz.0.597 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  140.024083][ T7871] netlink: 'syz.0.597': attribute type 1 has an invalid length.
[  140.026102][ T7871] netlink: 9344 bytes leftover after parsing attributes in process `syz.0.597'.
[  140.029314][ T7871] netlink: 'syz.0.597': attribute type 1 has an invalid length.
[  140.283069][   T39] kauditd_printk_skb: 20 callbacks suppressed
[  140.283079][   T39] audit: type=1326 audit(1729704493.169:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.298313][   T39] audit: type=1326 audit(1729704493.179:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.314533][   T39] audit: type=1326 audit(1729704493.189:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.329393][   T39] audit: type=1326 audit(1729704493.189:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.341265][   T39] audit: type=1326 audit(1729704493.189:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.348942][   T39] audit: type=1326 audit(1729704493.189:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.356139][   T39] audit: type=1326 audit(1729704493.189:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.363507][   T39] audit: type=1326 audit(1729704493.189:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.370744][   T39] audit: type=1326 audit(1729704493.189:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.376279][   T39] audit: type=1326 audit(1729704493.189:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.2.603" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb0579 code=0x7fc00000
[  140.783083][ T5351] usb 5-1: USB disconnect, device number 11
[  140.786152][ T5351] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected
[  141.453196][ T7904] syz_tun: entered allmulticast mode
[  141.468969][ T7903] syz_tun: left allmulticast mode
[  141.488266][ T5356] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  141.490728][ T5348] Bluetooth: hci4: command 0xfc11 tx timeout
[  141.811042][   T59] Bluetooth: hci4: Frame reassembly failed (-84)
[  142.169867][ T7921] netlink: 8 bytes leftover after parsing attributes in process `syz.1.618'.
[  142.860312][ T7936] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.620'.
[  143.071847][ T7938] bridge0: port 4(team0) entered blocking state
[  143.074560][ T7938] bridge0: port 4(team0) entered disabled state
[  143.076320][ T7938] team0: entered allmulticast mode
[  143.077688][ T7938] team_slave_0: entered allmulticast mode
[  143.079668][ T7938] team_slave_1: entered allmulticast mode
[  143.081298][ T7938] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  143.083962][ T7938] team0: entered promiscuous mode
[  143.085317][ T7938] team_slave_0: entered promiscuous mode
[  143.086936][ T7938] team_slave_1: entered promiscuous mode
[  143.088611][ T7938] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  143.091741][ T7938] bridge0: port 4(team0) entered blocking state
[  143.093519][ T7938] bridge0: port 4(team0) entered forwarding state
[  143.888387][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  145.488578][ T7984] netlink: 132 bytes leftover after parsing attributes in process `syz.1.633'.
[  145.878557][ T7993] nbd0: detected capacity change from 0 to 20
[  145.886346][ T5343] block nbd0: Send control failed (result -89)
[  145.892461][ T5343] block nbd0: Request send failed, requeueing
[  145.897862][ T5356] block nbd0: Receive control failed (result -32)
[  145.899871][   T71] block nbd0: Dead connection, failed to find a fallback
[  145.903142][   T71] block nbd0: shutting down sockets
[  145.904941][   T71] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.907917][   T71] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.910698][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.914178][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.917380][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.920745][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.923621][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.926743][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.929844][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.933490][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.936567][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.940642][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.944231][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.947351][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.950443][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.953692][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.957766][ T5343] ldm_validate_partition_table(): Disk read failed.
[  145.960764][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.963963][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.966736][ T5343] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  145.970038][ T5343] Buffer I/O error on dev nbd0, logical block 0, async page read
[  145.972920][ T5343] Dev nbd0: unable to read RDB block 0
[  145.974536][ T5343]  nbd0: unable to read partition table
[  145.976208][ T5343] nbd0: partition table beyond EOD, truncated
[  145.989483][ T7993] ldm_validate_partition_table(): Disk read failed.
[  145.994622][ T7993] Dev nbd0: unable to read RDB block 0
[  145.996906][ T7993]  nbd0: unable to read partition table
[  145.999238][ T7993] nbd0: partition table beyond EOD, truncated
[  146.009503][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  146.016209][ T5343] ldm_validate_partition_table(): Disk read failed.
[  146.018094][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=9, location=9
[  146.019076][ T5343] Dev nbd0: unable to read RDB block 0
[  146.023344][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8, location=8
[  146.026043][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=7, location=7
[  146.030791][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  146.032743][ T5343]  nbd0: unable to read partition table
[  146.035010][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  146.035356][ T5343] nbd0: partition table beyond EOD, truncated
[  146.040704][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=4, location=4
[  146.044017][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=3, location=3
[  146.047172][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=2, location=2
[  146.050333][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  146.053852][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  146.056971][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=1, location=1
[  146.060852][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=0, location=0
[  146.063914][ T7993] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  146.066603][ T7993] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1)
[  146.279529][ T8001] hub 2-0:1.0: USB hub found
[  146.280967][ T8001] hub 2-0:1.0: 2 ports detected
[  146.289962][ T8001] binder: 7996:8001 ioctl 4018620d 0 returned -22
[  146.328284][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  146.331725][ T1104] Bluetooth: hci4: Frame reassembly failed (-84)
[  146.581321][ T8010] overlayfs: workdir and upperdir must be separate subtrees
[  147.775773][ T8030] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  147.777625][ T8030] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  147.806263][   T39] kauditd_printk_skb: 11979 callbacks suppressed
[  147.806273][   T39] audit: type=1326 audit(1729704500.689:12075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.812944][   T39] audit: type=1326 audit(1729704500.699:12076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=151 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.825732][   T39] audit: type=1326 audit(1729704500.699:12077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.830964][   T39] audit: type=1326 audit(1729704500.699:12078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.836000][   T39] audit: type=1326 audit(1729704500.699:12079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.841978][   T39] audit: type=1326 audit(1729704500.699:12080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.847789][   T39] audit: type=1326 audit(1729704500.699:12081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.853871][   T39] audit: type=1326 audit(1729704500.699:12082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.859091][   T39] audit: type=1326 audit(1729704500.699:12083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.864298][   T39] audit: type=1326 audit(1729704500.699:12084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.1.647" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fe6579 code=0x7ffc0000
[  147.950581][ T8039] netlink: 15 bytes leftover after parsing attributes in process `syz.0.648'.
[  147.952858][ T8039] netlink: 4 bytes leftover after parsing attributes in process `syz.0.648'.
[  147.955202][ T8039] netlink: 4 bytes leftover after parsing attributes in process `syz.0.648'.
[  147.957473][ T8039] netlink: 4 bytes leftover after parsing attributes in process `syz.0.648'.
[  147.959860][ T8039] netlink: 4 bytes leftover after parsing attributes in process `syz.0.648'.
[  147.962200][ T8039] netlink: 4 bytes leftover after parsing attributes in process `syz.0.648'.
[  148.005240][ T8040] netlink: 16 bytes leftover after parsing attributes in process `syz.1.647'.
[  148.368391][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  148.368893][ T5348] Bluetooth: hci4: command 0x1003 tx timeout
[  148.389497][ T8046] netlink: 64 bytes leftover after parsing attributes in process `syz.3.651'.
[  148.796237][ T8068] netlink: 36 bytes leftover after parsing attributes in process `syz.1.655'.
[  149.485281][ T8087] program syz.3.657 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  149.623648][ T8089] netlink: 16 bytes leftover after parsing attributes in process `syz.2.658'.
[  150.116766][   T42] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 256 - 0
[  150.120743][   T42] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.238314][ T2782] usb 7-1: new full-speed USB device number 15 using dummy_hcd
[  150.276263][ T5348] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  150.283259][ T5348] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  150.289488][ T5348] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  150.292504][ T5348] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  150.296417][ T5348] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  150.298718][ T5348] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  150.300644][   T42] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 256 - 0
[  150.303571][   T42] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.458804][   T42] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 256 - 0
[  150.461730][   T42] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.476152][ T8121] chnl_net:caif_netlink_parms(): no params data found
[  150.523971][ T8136] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  150.547062][   T42] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 256 - 0
[  150.553172][   T42] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.561945][ T8121] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.564110][ T8121] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.566657][ T8121] bridge_slave_0: entered allmulticast mode
[  150.571037][ T8121] bridge_slave_0: entered promiscuous mode
[  150.576018][ T8121] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.578705][ T8121] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.581291][ T8121] bridge_slave_1: entered allmulticast mode
[  150.584110][ T8121] bridge_slave_1: entered promiscuous mode
[  150.604112][ T8121] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  150.607838][ T8121] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  150.639660][ T8121] team0: Port device team_slave_0 added
[  150.643965][ T8121] team0: Port device team_slave_1 added
[  150.649576][ T2782] usb 7-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  150.652315][ T2782] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  150.654629][ T2782] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[  150.657606][ T2782] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  150.660208][ T2782] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.664487][ T8106] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  150.667151][ T2782] hub 7-1:1.0: bad descriptor, ignoring hub
[  150.668938][ T2782] hub 7-1:1.0: probe with driver hub failed with error -5
[  150.671877][ T2782] cdc_wdm 7-1:1.0: skipping garbage
[  150.673380][ T2782] cdc_wdm 7-1:1.0: skipping garbage
[  150.676231][ T2782] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  150.677881][ T2782] cdc_wdm 7-1:1.0: Unknown control protocol
[  150.704692][ T8121] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.707301][ T8121] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.716887][ T8121] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.731117][ T8121] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.733024][ T8121] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.739900][ T8121] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  150.758889][   T42] bridge_slave_1: left allmulticast mode
[  150.761744][   T42] bridge_slave_1: left promiscuous mode
[  150.764486][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.772159][   T42] bridge_slave_0: left allmulticast mode
[  150.774258][   T42] bridge_slave_0: left promiscuous mode
[  150.776495][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.268963][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  151.281892][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  151.286784][   T42] bond0 (unregistering): Released all slaves
[  151.356304][ T8121] hsr_slave_0: entered promiscuous mode
[  151.358541][ T8121] hsr_slave_1: entered promiscuous mode
[  151.360550][ T8121] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  151.362535][ T8121] Cannot create hsr debugfs directory
[  151.364481][   T42] : left promiscuous mode
[  151.664035][ T5351] usb 7-1: USB disconnect, device number 15
[  151.666340][ T8104] cdc_wdm 7-1:1.0: Error autopm - -16
[  151.712662][ T8162] fuse: Bad value for 'fd'
[  151.781097][   T42] hsr_slave_0: left promiscuous mode
[  151.784312][   T42] hsr_slave_1: left promiscuous mode
[  151.801425][ T5351] usb 7-1: new low-speed USB device number 16 using dummy_hcd
[  151.835550][   T42] veth1_macvtap: left promiscuous mode
[  151.837844][   T42] veth0_macvtap: left promiscuous mode
[  151.840450][   T42] veth1_vlan: left promiscuous mode
[  151.842977][   T42] veth0_vlan: left promiscuous mode
[  151.972523][ T5351] usb 7-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  151.975518][ T5351] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  151.977856][ T5351] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8
[  151.989811][ T5351] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  151.993054][ T5351] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.005503][ T8106] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  152.008882][ T5351] hub 7-1:1.0: bad descriptor, ignoring hub
[  152.010932][ T5351] hub 7-1:1.0: probe with driver hub failed with error -5
[  152.013577][ T5351] cdc_wdm 7-1:1.0: skipping garbage
[  152.015526][ T5351] cdc_wdm 7-1:1.0: skipping garbage
[  152.020190][ T5351] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  152.021765][ T5351] cdc_wdm 7-1:1.0: Unknown control protocol
[  152.368369][ T5348] Bluetooth: hci1: command tx timeout
[  152.677558][   T42] team0 (unregistering): Port device team_slave_1 removed
[  152.757764][   T42] team0 (unregistering): Port device team_slave_0 removed
[  153.325984][ T8180] bond0: (slave vlan2): Opening slave failed
[  153.448358][ T5351] usb 7-1: USB disconnect, device number 16
[  153.449890][ T8121] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  153.467297][ T8121] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  153.470856][ T8192] netlink: 12 bytes leftover after parsing attributes in process `syz.0.683'.
[  153.479461][ T8121] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  153.493005][ T8121] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  153.547517][ T8121] 8021q: adding VLAN 0 to HW filter on device bond0
[  153.561632][ T8121] 8021q: adding VLAN 0 to HW filter on device team0
[  153.572617][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.574628][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  153.579619][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.581487][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  153.734362][ T8121] 8021q: adding VLAN 0 to HW filter on device batadv0
[  153.764839][ T8121] veth0_vlan: entered promiscuous mode
[  153.774307][ T8121] veth1_vlan: entered promiscuous mode
[  153.790084][ T8121] veth0_macvtap: entered promiscuous mode
[  153.793935][ T8121] veth1_macvtap: entered promiscuous mode
[  153.800323][ T8121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.803023][ T8121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.806312][ T8121] batman_adv: batadv0: Interface activated: batadv_slave_0
[  153.812621][ T8121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  153.815324][ T8121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.819583][ T8121] batman_adv: batadv0: Interface activated: batadv_slave_1
[  153.823465][ T8121] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.825893][ T8121] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.829499][ T8121] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.832005][ T8121] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.868288][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.870747][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.878933][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.881222][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.008302][ T5351] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  154.208678][ T5351] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  154.221811][ T5351] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  154.233613][ T5351] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  154.243949][ T5351] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.258450][ T8226] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  154.263041][ T5351] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  154.448233][ T5348] Bluetooth: hci1: command 0x041b tx timeout
[  154.754012][ T8245] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.688'.
[  154.898278][ T7089] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  155.058183][ T7089] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  155.061137][ T7089] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  155.063751][ T7089] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  155.066609][ T7089] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.072316][ T8244] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  155.076269][ T7089] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  155.544694][ T8278] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.691'.
[  155.997790][ T8282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.703'.
[  156.269607][ T8293] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.704'.
[  156.293847][ T8294] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.705'.
[  156.528230][ T5356] Bluetooth: hci1: command 0x041b tx timeout
[  156.785976][ T5383] usb 7-1: USB disconnect, device number 17
[  156.910824][ T8303] XFS (nullb0): Invalid superblock magic number
[  157.021353][ T8309] random: crng reseeded on system resumption
[  157.696889][ T5383] usb 5-1: USB disconnect, device number 12
[  157.995037][ T8319] tipc: Started in network mode
[  157.996451][ T8319] tipc: Node identity aaaaaaaaaa35, cluster identity 4711
[  157.999642][ T8319] tipc: Enabled bearer <eth:macvlan1>, priority 0
[  158.002993][ T8319] netlink: 'syz.0.710': attribute type 10 has an invalid length.
[  158.007181][ T8319] 8021q: adding VLAN 0 to HW filter on device team0
[  158.009927][ T8319] bond0: (slave team0): Enslaving as an active interface with an up link
[  158.013739][ T8319] netlink: 12 bytes leftover after parsing attributes in process `syz.0.710'.
[  158.579358][ T8311] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  158.585261][ T8311] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  158.586986][ T8311] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  158.588662][ T8311] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  158.591016][ T8311] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  158.851765][ T8324] autofs: Unknown parameter './file1'
[  159.129404][ T7089] tipc: Node number set to 10463914
[  159.177020][   T39] kauditd_printk_skb: 34 callbacks suppressed
[  159.177031][   T39] audit: type=1326 audit(1729704512.059:12119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.182413][ T8341] team0: entered promiscuous mode
[  159.184503][   T39] audit: type=1326 audit(1729704512.059:12120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.185780][ T8341] team_slave_0: entered promiscuous mode
[  159.191715][   T39] audit: type=1326 audit(1729704512.059:12121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.193214][ T8341] team_slave_1: entered promiscuous mode
[  159.199307][   T39] audit: type=1326 audit(1729704512.059:12122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.206320][   T39] audit: type=1326 audit(1729704512.059:12123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.212079][   T39] audit: type=1326 audit(1729704512.059:12124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.218004][   T39] audit: type=1326 audit(1729704512.059:12125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.224091][   T39] audit: type=1326 audit(1729704512.059:12126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.224471][ T8341] overlay: Unknown parameter '/'
[  159.230264][   T39] audit: type=1326 audit(1729704512.059:12127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.237677][   T39] audit: type=1326 audit(1729704512.069:12128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8340 comm="syz.3.716" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf741e579 code=0x7ffc0000
[  159.270855][ T8342] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 0
[  159.273010][ T8343] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 1
[  159.279074][ T8344] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 2
[  159.279489][ T8345] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 3
[  159.279862][ T8346] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 4
[  159.280133][ T8347] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 5
[  159.283022][ T8348] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 6
[  159.283521][ T8349] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 7
[  159.292055][ T8350] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 8
[  159.308808][ T8352] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 9
[  159.323836][ T8353] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 10
[  159.328063][ T8354] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 11
[  159.330457][ T8355] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 12
[  159.334368][ T8356] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 13
[  159.340097][ T8357] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 14
[  159.343260][ T8359] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 15
[  159.347985][ T8360] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 16
[  159.348840][ T8361] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 17
[  159.358284][ T8362] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 18
[  159.365690][ T8358] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  159.365944][ T8364] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 19
[  159.366289][ T8367] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 21
[  159.366330][ T8366] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 20
[  159.367929][ T8358] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  159.368851][ T8368] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 22
[  159.383008][ T8358] vhci_hcd vhci_hcd.0: Device attached
[  159.383565][ T8369] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 23
[  159.389583][ T8370] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 24
[  159.395023][ T8371] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 25
[  159.411040][ T8372] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 26
[  159.414003][ T8373] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 27
[  159.418341][ T8374] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 28
[  159.418934][ T8375] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 29
[  159.421466][ T8376] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 30
[  159.424076][ T8377] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 31
[  159.428078][ T8378] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 32
[  159.448481][ T8379] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 33
[  159.448808][ T8380] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 34
[  159.456367][ T8381] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 35
[  159.462763][ T8382] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 36
[  159.465805][ T8383] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 37
[  159.466608][ T8384] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 38
[  159.474312][ T8385] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 39
[  159.474661][ T8386] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 40
[  159.474974][ T8387] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 41
[  159.475293][ T8388] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 42
[  159.475640][ T8389] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 43
[  159.489915][ T8390] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 44
[  159.498381][ T8391] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 45
[  159.510829][ T8393] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 47
[  159.520447][ T8392] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 46
[  159.521342][ T8394] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 48
[  159.524466][ T8395] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 49
[  159.528799][ T8396] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 50
[  159.542925][ T8397] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 51
[  159.543206][ T8398] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 52
[  159.549175][ T8399] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 53
[  159.549343][ T8400] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 54
[  159.553060][ T8401] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 55
[  159.568241][   T35] vhci_hcd: vhci_device speed not set
[  159.577694][ T8402] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 56
[  159.584116][ T8403] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 57
[  159.587225][ T8404] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 58
[  159.589820][ T8405] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 59
[  159.593375][ T8406] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 60
[  159.596836][ T8407] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 61
[  159.597492][ T8408] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 62
[  159.603174][ T8340] team0: left promiscuous mode
[  159.604582][ T8340] team_slave_0: left promiscuous mode
[  159.606584][ T8340] team_slave_1: left promiscuous mode
[  159.613033][ T8409] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_batadv, syncid = 0, id = 63
[  159.630314][   T35] usb 15-1: new full-speed USB device number 2 using vhci_hcd
[  159.743688][ T8363] vhci_hcd: connection reset by peer
[  159.778508][   T42] vhci_hcd: stop threads
[  159.781004][   T42] vhci_hcd: release socket
[  159.783169][   T42] vhci_hcd: disconnect device
[  159.898307][ T5348] Bluetooth: hci2: command 0x0c1a tx timeout
[  159.900173][ T5356] Bluetooth: hci2: Opcode 0x206c failed: -110
[  160.250124][ T8425] /dev/sr0: Can't open blockdev
[  160.487146][ T8433] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.724'.
[  160.608315][ T5348] Bluetooth: hci3: command 0x0c1a tx timeout
[  160.610135][ T5348] Bluetooth: hci1: command 0x041b tx timeout
[  161.288227][ T5351] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  161.448215][ T5351] usb 6-1: Using ep0 maxpacket: 32
[  161.451578][ T5351] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[  161.454232][ T5351] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  161.457953][ T5351] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 42555, setting to 1024
[  161.461881][ T5351] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  161.466073][ T5351] usb 6-1: config 0 interface 0 has no altsetting 0
[  161.469951][ T5351] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  161.472105][ T5351] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  161.474096][ T5351] usb 6-1: Product: syz
[  161.475127][ T5351] usb 6-1: Manufacturer: syz
[  161.476311][ T5351] usb 6-1: SerialNumber: syz
[  161.479297][ T5351] usb 6-1: config 0 descriptor??
[  161.480975][ T8440] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  161.483518][ T5351] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  161.486186][ T5351] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  161.688784][ T8440] netlink: 'syz.1.726': attribute type 7 has an invalid length.
[  161.691589][ T8440] netlink: 'syz.1.726': attribute type 39 has an invalid length.
[  161.968327][ T5356] Bluetooth: hci2: Opcode 0x2046 failed: -110
[  161.968355][ T5354] Bluetooth: hci2: command 0x0c1a tx timeout
[  162.098983][ T8447] netlink: 'syz.1.726': attribute type 7 has an invalid length.
[  162.101619][ T8447] netlink: 'syz.1.726': attribute type 39 has an invalid length.
[  162.128646][ T5354] Bluetooth: hci3: unexpected event for opcode 0x0c22
[  162.233171][ T8457] geneve0: entered promiscuous mode
[  162.235017][ T8457] macvlan2: entered promiscuous mode
[  162.236574][ T8457] macvlan2: entered allmulticast mode
[  162.237967][ T8457] geneve0: entered allmulticast mode
[  162.688287][ T5354] Bluetooth: hci1: command 0x041b tx timeout
[  163.199860][ T8470] pipefs: Unknown parameter 'GPL'
[  163.238042][ T8472] netlink: 16 bytes leftover after parsing attributes in process `syz.2.736'.
[  163.344655][ T8484] netlink: 8 bytes leftover after parsing attributes in process `syz.0.741'.
[  163.346995][ T8484] netlink: 8 bytes leftover after parsing attributes in process `syz.0.741'.
[  163.463055][ T8484] IPVS: set_ctl: invalid protocol: 1 255.255.255.255:0
[  163.557121][ T8490] 9pnet_fd: Insufficient options for proto=fd
[  164.058227][ T5354] Bluetooth: hci2: command 0x0c1a tx timeout
[  164.065677][ T5351] usb 6-1: USB disconnect, device number 7
[  164.071554][ T5351] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[  164.758324][   T35] vhci_hcd: vhci_device speed not set
[  164.768245][ T5354] Bluetooth: hci1: command 0x041b tx timeout
[  165.066196][ T8523] netlink: 20 bytes leftover after parsing attributes in process `syz.2.752'.
[  165.867770][ T8557] netlink: 'syz.3.755': attribute type 10 has an invalid length.
[  165.872389][ T8557] netlink: 212412 bytes leftover after parsing attributes in process `syz.3.755'.
[  165.875440][ T8557] openvswitch: netlink: Flow key attr not present in new flow.
[  165.915956][ T8522] netlink: 8 bytes leftover after parsing attributes in process `syz.1.753'.
[  165.920209][ T8522] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  165.922468][ T8522] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  165.924702][ T8522] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  165.926927][ T8522] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  165.929278][ T8522] vxlan0: entered promiscuous mode
[  165.930602][ T8522] vxlan0: entered allmulticast mode
[  165.933068][ T8522] netlink: 8 bytes leftover after parsing attributes in process `syz.1.753'.
[  165.938050][ T8522] netlink: 8 bytes leftover after parsing attributes in process `syz.1.753'.
[  166.134564][ T8579] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  166.738269][ T5383] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  166.848223][ T5354] Bluetooth: hci1: command 0x041b tx timeout
[  166.929598][ T5383] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  166.933344][ T5383] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  166.936576][ T5383] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  166.943099][ T5383] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  166.946380][ T5383] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.951217][ T5383] usb 5-1: Product: syz
[  166.952772][ T5383] usb 5-1: Manufacturer: syz
[  166.954350][ T5383] usb 5-1: SerialNumber: syz
[  166.957895][ T5383] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[  166.960088][ T5383] cdc_ncm 5-1:1.0: bind() failure
[  167.248274][   T35] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  167.408264][   T35] usb 7-1: Using ep0 maxpacket: 8
[  167.411408][   T35] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  167.413955][   T35] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  167.416570][   T35] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  167.420195][   T35] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  167.423841][   T35] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  167.427492][   T35] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  167.430180][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.635477][   T35] usb 7-1: GET_CAPABILITIES returned 0
[  167.636993][   T35] usbtmc 7-1:16.0: can't read capabilities
[  167.664458][ T7089] usb 7-1: USB disconnect, device number 18
[  168.115490][ T8624] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.772'.
[  168.390929][ T8626] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0
[  168.956272][ T8633] netlink: 72 bytes leftover after parsing attributes in process `syz.2.775'.
[  169.449418][ T5385] usb 5-1: USB disconnect, device number 13
[  170.538405][ T5385] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  170.663212][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  170.665230][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  170.819739][ T5385] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  170.823506][ T5385] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  170.826889][ T5385] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  170.830048][ T5385] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.834933][ T8655] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  170.839232][ T5385] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  171.345293][ T8683] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.782'.
[  171.532315][ T8709] syzkaller0: entered promiscuous mode
[  171.533788][ T8709] syzkaller0: entered allmulticast mode
[  171.609618][ T8715] syzkaller0: entered promiscuous mode
[  171.611145][ T8715] syzkaller0: entered allmulticast mode
[  172.610572][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  173.360106][ T2782] usb 6-1: USB disconnect, device number 8
[  174.168875][ T8780] tap0: tun_chr_ioctl cmd 1074025677
[  174.170397][ T8780] tap0: linktype set to 100
[  175.522928][ T8901] tun0: tun_chr_ioctl cmd 2147767506
[  175.721820][ T8937] tap0: tun_chr_ioctl cmd 1074812117
[  175.923168][ T8981] veth0_vlan: entered allmulticast mode
[  176.263012][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  176.265022][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  176.266915][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  176.276970][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  176.958255][ T5351] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  177.117449][ T9012] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.944'.
[  177.241245][ T5351] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  177.244201][ T5351] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  177.246773][ T5351] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  177.249172][ T5351] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.257764][ T8997] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  177.261244][ T5351] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  177.671982][ T9015] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.940'.
[  178.208636][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  178.277537][ T9019] netlink: 92 bytes leftover after parsing attributes in process `syz.0.946'.
[  178.280164][ T9019] netlink: 92 bytes leftover after parsing attributes in process `syz.0.946'.
[  178.289583][ T5351] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  178.438230][ T5351] usb 6-1: Using ep0 maxpacket: 8
[  178.443123][ T5351] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  178.447208][ T5351] usb 6-1: config 0 has no interface number 0
[  178.450463][ T5351] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  178.455221][ T5351] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  178.459609][ T5351] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.465287][ T5351] usb 6-1: config 0 descriptor??
[  178.473871][ T5351] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  178.724711][ T9023] program syz.1.945 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  178.728265][   T65] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  178.888246][   T65] usb 5-1: Using ep0 maxpacket: 8
[  178.890944][   T65] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  178.893050][   T65] usb 5-1: config 0 has no interface number 0
[  178.894664][   T65] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  178.897539][   T65] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  178.899909][   T65] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.902970][   T65] usb 5-1: config 0 descriptor??
[  178.907112][   T65] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1
[  178.945483][ T9023] netlink: 'syz.1.945': attribute type 1 has an invalid length.
[  178.947489][ T9023] netlink: 'syz.1.945': attribute type 1 has an invalid length.
[  178.949525][ T9023] netlink: 9108 bytes leftover after parsing attributes in process `syz.1.945'.
[  178.951859][ T9023] netlink: 'syz.1.945': attribute type 1 has an invalid length.
[  178.953866][ T9023] netlink: 6 bytes leftover after parsing attributes in process `syz.1.945'.
[  179.161841][ T9025] program syz.0.947 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  179.408911][ T9025] netlink: 'syz.0.947': attribute type 1 has an invalid length.
[  179.410839][ T9025] netlink: 'syz.0.947': attribute type 1 has an invalid length.
[  179.412727][ T9025] netlink: 9108 bytes leftover after parsing attributes in process `syz.0.947'.
[  179.414935][ T9025] netlink: 'syz.0.947': attribute type 1 has an invalid length.
[  179.416826][ T9025] netlink: 6 bytes leftover after parsing attributes in process `syz.0.947'.
[  179.730161][   T35] usb 6-1: USB disconnect, device number 9
[  179.732532][   T35] iowarrior 6-1:0.1: I/O-Warror #0 now disconnected
[  179.733232][   T65] usb 5-1: USB disconnect, device number 14
[  179.738997][   T65] iowarrior 5-1:0.1: I/O-Warror #1 now disconnected
[  179.742432][ T5351] usb 7-1: USB disconnect, device number 19
[  179.894383][ T9031] loop7: detected capacity change from 0 to 16384
[  179.962065][ T9034] netlink: 892 bytes leftover after parsing attributes in process `syz.3.950'.
[  180.232058][ T1104] Bluetooth: hci4: Frame reassembly failed (-84)
[  180.333310][ T9047] TCP: request_sock_TCP: Possible SYN flooding on port 0.0.0.0:20002. Sending cookies.
[  180.348293][ T9047] netlink: 'syz.1.953': attribute type 10 has an invalid length.
[  180.353676][ T9047] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.355737][ T9047] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.409320][ T9047] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.411172][ T9047] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.413015][ T9047] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.415122][ T9047] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.425716][ T9047] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  181.538375][   T65] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  181.634678][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[  181.689424][   T65] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  181.692398][   T65] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  181.695196][   T65] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  181.697524][   T65] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.705027][ T9066] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  181.711033][   T65] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  182.140565][ T9078] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.958'.
[  182.292042][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  182.294900][ T5348] Bluetooth: hci4: command 0x1003 tx timeout
[  182.498239][   T35] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  182.650420][   T35] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  182.654348][   T35] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  182.657362][   T35] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  182.660406][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.666420][ T9080] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  182.670189][   T35] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  183.114700][ T9088] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.962'.
[  183.648256][ T5356] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  183.648265][ T5354] Bluetooth: hci5: command 0x1003 tx timeout
[  183.786512][ T9095] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.965'.
[  184.324734][    T9] usb 5-1: USB disconnect, device number 15
[  184.338258][   T65] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  184.488467][   T65] usb 7-1: Using ep0 maxpacket: 8
[  184.493734][   T65] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  184.496423][   T65] usb 7-1: config 0 has no interface number 0
[  184.498324][   T65] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  184.501155][   T65] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  184.503647][   T65] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.506837][   T65] usb 7-1: config 0 descriptor??
[  184.512556][   T65] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  184.766727][ T9116] program syz.2.967 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  184.793452][ T9116] netlink: 'syz.2.967': attribute type 1 has an invalid length.
[  184.795431][ T9116] netlink: 'syz.2.967': attribute type 1 has an invalid length.
[  184.797325][ T9116] netlink: 9108 bytes leftover after parsing attributes in process `syz.2.967'.
[  184.799973][ T9116] netlink: 'syz.2.967': attribute type 1 has an invalid length.
[  184.801915][ T9116] netlink: 6 bytes leftover after parsing attributes in process `syz.2.967'.
[  185.294613][ T5351] usb 6-1: USB disconnect, device number 10
[  185.713014][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  185.715619][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  185.731901][   T35] usb 7-1: USB disconnect, device number 20
[  185.735207][   T35] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected
[  187.200773][   T85] Bluetooth: hci5: Frame reassembly failed (-84)
[  187.648317][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  189.248331][ T5354] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  189.248347][ T5356] Bluetooth: hci5: command 0x1003 tx timeout
[  190.608209][ T7089] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  190.828270][ T7089] usb 7-1: Using ep0 maxpacket: 16
[  190.849347][ T7089] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  190.852114][ T7089] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  190.855054][ T7089] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 152, changing to 11
[  190.857913][ T7089] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024
[  192.058183][ T7089] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  192.518178][ T7089] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  192.520516][ T7089] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.522508][ T7089] usb 7-1: Product: syz
[  192.523602][ T7089] usb 7-1: Manufacturer: syz
[  192.524813][ T7089] usb 7-1: SerialNumber: syz
[  193.125944][ T7089] usb 7-1: config 0 descriptor??
[  193.142937][ T7089] usb 7-1: can't set config #0, error -71
[  193.145030][ T7089] usb 7-1: USB disconnect, device number 21
[  193.269667][ T9173] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  193.298370][ T9173] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  193.586352][   T85] Bluetooth: hci4: Frame reassembly failed (-84)
[  193.596879][ T1373] ieee802154 phy0 wpan0: encryption failed: -22
[  193.599977][ T1373] ieee802154 phy1 wpan1: encryption failed: -22
[  193.807209][ T9181] FAULT_INJECTION: forcing a failure.
[  193.807209][ T9181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.810635][ T9181] CPU: 1 UID: 0 PID: 9181 Comm: syz.0.990 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  193.813186][ T9181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.815881][ T9181] Call Trace:
[  193.816726][ T9181]  <TASK>
[  193.817499][ T9181]  dump_stack_lvl+0x16c/0x1f0
[  193.818727][ T9181]  should_fail_ex+0x497/0x5b0
[  193.819946][ T9181]  _copy_from_user+0x30/0xf0
[  193.821111][ T9181]  get_compat_msghdr+0xa8/0x170
[  193.822288][ T9181]  ? __pfx_get_compat_msghdr+0x10/0x10
[  193.823655][ T9181]  ? __pfx___lock_acquire+0x10/0x10
[  193.824983][ T9181]  ___sys_sendmsg+0x1b0/0x1e0
[  193.826193][ T9181]  ? __pfx____sys_sendmsg+0x10/0x10
[  193.827534][ T9181]  ? lock_acquire+0x2f/0xb0
[  193.828713][ T9181]  ? __fget_files+0x40/0x3f0
[  193.829917][ T9181]  ? fdget+0x176/0x210
[  193.830980][ T9181]  __sys_sendmsg+0x117/0x1f0
[  193.832185][ T9181]  ? __pfx___sys_sendmsg+0x10/0x10
[  193.833513][ T9181]  ? __fget_files+0x244/0x3f0
[  193.834740][ T9181]  __do_fast_syscall_32+0x73/0x120
[  193.836080][ T9181]  do_fast_syscall_32+0x32/0x80
[  193.837349][ T9181]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.838995][ T9181] RIP: 0023:0xf7ff0579
[  193.840053][ T9181] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  193.844959][ T9181] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  193.847089][ T9181] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  193.849154][ T9181] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  193.851186][ T9181] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  193.853206][ T9181] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  193.855178][ T9181] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.857173][ T9181]  </TASK>
[  193.861151][ T5348] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  193.868452][ T5348] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  193.871423][ T5348] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  193.876688][ T5348] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  193.880103][ T5348] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  193.882245][ T5348] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  194.014379][ T6955] bridge0: port 3(syz_tun) entered disabled state
[  194.029972][ T6955] syz_tun (unregistering): left allmulticast mode
[  194.031838][ T6955] syz_tun (unregistering): left promiscuous mode
[  194.033690][ T6955] bridge0: port 3(syz_tun) entered disabled state
[  194.053812][ T9182] chnl_net:caif_netlink_parms(): no params data found
[  194.131465][ T9182] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.133350][ T9182] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.135233][ T9182] bridge_slave_0: entered allmulticast mode
[  194.137232][ T9182] bridge_slave_0: entered promiscuous mode
[  194.139912][ T9182] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.141878][ T9182] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.143730][ T9182] bridge_slave_1: entered allmulticast mode
[  194.146324][ T9182] bridge_slave_1: entered promiscuous mode
[  194.185433][ T9182] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  194.192479][ T9182] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  194.250732][ T1101] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.265280][ T9182] team0: Port device team_slave_0 added
[  194.269199][ T9182] team0: Port device team_slave_1 added
[  194.293245][ T9182] batman_adv: batadv0: Adding interface: batadv_slave_0
[  194.295068][ T9182] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  194.302128][ T9182] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  194.321579][ T1101] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.331902][ T9182] batman_adv: batadv0: Adding interface: batadv_slave_1
[  194.333770][ T9182] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  194.341088][ T9182] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  194.374683][ T9182] hsr_slave_0: entered promiscuous mode
[  194.376710][ T9182] hsr_slave_1: entered promiscuous mode
[  194.413783][ T1101] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.495634][ T1101] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.587555][ T1101] bridge_slave_1: left allmulticast mode
[  194.589186][ T1101] bridge_slave_1: left promiscuous mode
[  194.591242][ T1101] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.599933][ T1101] bridge_slave_0: left allmulticast mode
[  194.601537][ T1101] bridge_slave_0: left promiscuous mode
[  194.603081][ T1101] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.848789][    T9] sound midiC3D0: rawmidi drain error (avail = 4027, buffer_size = 4096)
[  194.965839][ T1101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  194.969984][ T1101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  194.973512][ T1101] bond0 (unregistering): Released all slaves
[  195.037143][ T1101] tipc: Disabling bearer <udp:s>
[  195.040348][ T1101] tipc: Left network mode
[  195.219140][ T5351] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  195.298258][ T9207] delete_channel: no stack
[  195.351650][ T1101] hsr_slave_0: left promiscuous mode
[  195.366559][ T1101] hsr_slave_1: left promiscuous mode
[  195.369443][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  195.370041][ T5351] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  195.372048][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_0
[  195.375190][ T5351] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  195.390435][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  195.393168][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_1
[  195.396008][ T5351] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  195.404523][ T5351] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.418359][ T9197] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  195.426066][ T5351] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  195.430421][ T1101] veth1_macvtap: left promiscuous mode
[  195.431833][ T1101] veth0_macvtap: left promiscuous mode
[  195.433177][ T1101] veth1_vlan: left promiscuous mode
[  195.434543][ T1101] veth0_vlan: left promiscuous mode
[  195.651008][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  195.651909][ T5356] Bluetooth: hci4: command 0x1003 tx timeout
[  195.968233][ T5354] Bluetooth: hci5: command tx timeout
[  196.018630][ T9213] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.993'.
[  196.244697][ T9204] delete_channel: no stack
[  196.636861][ T1101] team0 (unregistering): Port device team_slave_1 removed
[  196.730527][ T1101] team0 (unregistering): Port device team_slave_0 removed
[  197.408690][ T9182] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  197.421312][ T9182] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  197.433016][ T9182] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  197.443112][ T9182] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  197.474308][ T9182] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.492769][ T9182] 8021q: adding VLAN 0 to HW filter on device team0
[  197.496914][   T85] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.498841][   T85] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.516025][   T85] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.517983][   T85] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.624770][ T9182] 8021q: adding VLAN 0 to HW filter on device batadv0
[  197.628285][ T5385] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  197.641437][ T9182] veth0_vlan: entered promiscuous mode
[  197.647392][ T9182] veth1_vlan: entered promiscuous mode
[  197.663546][ T9182] veth0_macvtap: entered promiscuous mode
[  197.667269][ T9182] veth1_macvtap: entered promiscuous mode
[  197.674356][ T9182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  197.676982][ T9182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.680075][ T9182] batman_adv: batadv0: Interface activated: batadv_slave_0
[  197.685725][ T9182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  197.687652][ T1101] IPVS: stop unused estimator thread 0...
[  197.688728][ T9182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.693498][ T9182] batman_adv: batadv0: Interface activated: batadv_slave_1
[  197.698321][ T9182] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  197.700681][ T9182] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  197.702996][ T9182] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.705304][ T9182] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  197.718218][   T35] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  197.735443][   T85] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.737538][   T85] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.751525][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.753631][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.778227][ T5385] usb 7-1: Using ep0 maxpacket: 8
[  197.781557][ T5385] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  197.785097][ T5385] usb 7-1: config 0 has no interface number 0
[  197.786723][ T5385] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  197.790040][ T5385] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  197.793144][ T5385] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.796629][ T5385] usb 7-1: config 0 descriptor??
[  197.800435][ T5385] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  197.869435][   T35] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  197.872319][   T35] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  197.874835][   T35] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  197.877177][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.880672][ T9230] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  197.883831][   T35] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  197.923733][ T5383] usb 6-1: USB disconnect, device number 11
[  197.965545][ T9245] FAULT_INJECTION: forcing a failure.
[  197.965545][ T9245] name failslab, interval 1, probability 0, space 0, times 0
[  197.969905][ T9245] CPU: 1 UID: 0 PID: 9245 Comm: syz.1.1001 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  197.972663][ T9245] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.975433][ T9245] Call Trace:
[  197.976310][ T9245]  <TASK>
[  197.977092][ T9245]  dump_stack_lvl+0x16c/0x1f0
[  197.978353][ T9245]  should_fail_ex+0x497/0x5b0
[  197.979714][ T9245]  ? fs_reclaim_acquire+0xae/0x150
[  197.981072][ T9245]  should_failslab+0xc2/0x120
[  197.982311][ T9245]  kmem_cache_alloc_node_noprof+0x71/0x310
[  197.983853][ T9245]  ? __alloc_skb+0x2b3/0x380
[  197.985052][ T9245]  __alloc_skb+0x2b3/0x380
[  197.986207][ T9245]  ? __pfx___alloc_skb+0x10/0x10
[  197.987524][ T9245]  ? lock_acquire+0x2f/0xb0
[  197.988726][ T9245]  netlink_alloc_large_skb+0x69/0x130
[  197.990129][ T9245]  netlink_sendmsg+0x689/0xd70
[  197.991399][ T9245]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.992784][ T9245]  ? lock_acquire+0x2f/0xb0
[  197.993964][ T9245]  ____sys_sendmsg+0x9ae/0xb40
[  197.995200][ T9245]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.996584][ T9245]  ? get_compat_msghdr+0x11b/0x170
[  197.997930][ T9245]  ? __pfx___lock_acquire+0x10/0x10
[  197.999317][ T9245]  ___sys_sendmsg+0x135/0x1e0
[  198.000558][ T9245]  ? __pfx____sys_sendmsg+0x10/0x10
[  198.001929][ T9245]  ? lock_acquire+0x2f/0xb0
[  198.003132][ T9245]  ? __fget_files+0x40/0x3f0
[  198.004350][ T9245]  ? fdget+0x176/0x210
[  198.005421][ T9245]  __sys_sendmsg+0x117/0x1f0
[  198.006630][ T9245]  ? __pfx___sys_sendmsg+0x10/0x10
[  198.007980][ T9245]  ? __fget_files+0x244/0x3f0
[  198.009219][ T9245]  __do_fast_syscall_32+0x73/0x120
[  198.010566][ T9245]  do_fast_syscall_32+0x32/0x80
[  198.011856][ T9245]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  198.013512][ T9245] RIP: 0023:0xf7fe5579
[  198.014581][ T9245] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  198.019571][ T9245] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  198.021732][ T9245] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  198.023790][ T9245] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  198.025837][ T9245] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  198.027887][ T9245] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  198.029940][ T9245] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  198.032193][ T9245]  </TASK>
[  198.048294][ T5354] Bluetooth: hci5: command tx timeout
[  198.053537][ T9248] program syz.2.998 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  198.070687][ T9248] netlink: 'syz.2.998': attribute type 1 has an invalid length.
[  198.072766][ T9248] netlink: 'syz.2.998': attribute type 1 has an invalid length.
[  198.074722][ T9248] netlink: 9108 bytes leftover after parsing attributes in process `syz.2.998'.
[  198.077135][ T9248] netlink: 'syz.2.998': attribute type 1 has an invalid length.
[  198.080301][ T9248] netlink: 6 bytes leftover after parsing attributes in process `syz.2.998'.
[  198.311483][ T9252] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1000'.
[  198.760545][   T59] Bluetooth: hci3: Frame reassembly failed (-84)
[  199.014980][ T5351] usb 7-1: USB disconnect, device number 22
[  199.028434][ T5351] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected
[  199.352467][ T9273] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1004'.
[  199.355610][ T9273] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1004'.
[  199.358960][ T9273] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1004'.
[  199.361949][ T9273] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1004'.
[  199.364230][ T9273] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1004'.
[  199.366500][ T9273] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1004'.
[  199.778279][ T7089] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  199.930811][ T7089] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  199.933677][ T7089] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  199.936216][ T7089] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  199.938686][ T7089] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.943349][ T9286] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  199.946480][ T7089] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  200.128254][ T5356] Bluetooth: hci5: command tx timeout
[  200.617424][ T5383] usb 5-1: USB disconnect, device number 16
[  200.768245][ T5354] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  201.118254][   T35] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  201.278247][   T35] usb 5-1: Using ep0 maxpacket: 8
[  201.281937][   T35] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  201.284091][   T35] usb 5-1: config 0 has no interface number 0
[  201.286225][   T35] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  201.290512][   T35] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  201.293052][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.298546][   T35] usb 5-1: config 0 descriptor??
[  201.306448][   T35] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  201.566145][ T9328] program syz.0.1017 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  201.605694][ T9328] netlink: 'syz.0.1017': attribute type 1 has an invalid length.
[  201.607939][ T9328] netlink: 'syz.0.1017': attribute type 1 has an invalid length.
[  201.610331][ T9328] __nla_validate_parse: 1 callbacks suppressed
[  201.610337][ T9328] netlink: 9108 bytes leftover after parsing attributes in process `syz.0.1017'.
[  201.614376][ T9328] netlink: 'syz.0.1017': attribute type 1 has an invalid length.
[  201.616411][ T9328] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1017'.
[  202.208219][ T5354] Bluetooth: hci5: command tx timeout
[  202.218225][   T35] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  202.281885][ T9339] FAULT_INJECTION: forcing a failure.
[  202.281885][ T9339] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.285225][ T9339] CPU: 1 UID: 0 PID: 9339 Comm: syz.3.1024 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  202.287875][ T9339] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  202.291450][ T9339] Call Trace:
[  202.292358][ T9339]  <TASK>
[  202.293165][ T9339]  dump_stack_lvl+0x16c/0x1f0
[  202.294392][ T9339]  should_fail_ex+0x497/0x5b0
[  202.295637][ T9339]  _copy_from_iter+0x29b/0x13e0
[  202.296901][ T9339]  ? __pfx__copy_from_iter+0x10/0x10
[  202.298421][ T9339]  ? __virt_addr_valid+0x1a4/0x590
[  202.299855][ T9339]  ? __virt_addr_valid+0x5e/0x590
[  202.301203][ T9339]  ? __phys_addr_symbol+0x30/0x80
[  202.302544][ T9339]  ? __check_object_size+0x488/0x710
[  202.303995][ T9339]  netlink_sendmsg+0x813/0xd70
[  202.305280][ T9339]  ? __pfx_netlink_sendmsg+0x10/0x10
[  202.306691][ T9339]  ? lock_acquire+0x2f/0xb0
[  202.307954][ T9339]  ____sys_sendmsg+0x9ae/0xb40
[  202.309255][ T9339]  ? __pfx_____sys_sendmsg+0x10/0x10
[  202.310647][ T9339]  ? get_compat_msghdr+0x11b/0x170
[  202.312022][ T9339]  ? __pfx___lock_acquire+0x10/0x10
[  202.313437][ T9339]  ___sys_sendmsg+0x135/0x1e0
[  202.314696][ T9339]  ? __pfx____sys_sendmsg+0x10/0x10
[  202.316175][ T9339]  ? lock_acquire+0x2f/0xb0
[  202.317387][ T9339]  ? __fget_files+0x40/0x3f0
[  202.318664][ T9339]  ? fdget+0x176/0x210
[  202.319784][ T9339]  __sys_sendmsg+0x117/0x1f0
[  202.321018][ T9339]  ? __pfx___sys_sendmsg+0x10/0x10
[  202.322376][ T9339]  ? __fget_files+0x244/0x3f0
[  202.323650][ T9339]  __do_fast_syscall_32+0x73/0x120
[  202.325021][ T9339]  do_fast_syscall_32+0x32/0x80
[  202.326330][ T9339]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  202.327995][ T9339] RIP: 0023:0xf746e579
[  202.329076][ T9339] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  202.334388][ T9339] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  202.336660][ T9339] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  202.338882][ T9339] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  202.340986][ T9339] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  202.343077][ T9339] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  202.345191][ T9339] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  202.347305][ T9339]  </TASK>
[  202.429562][   T35] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  202.432576][   T35] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  202.435179][   T35] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  202.437586][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.443830][ T9331] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  202.447236][   T35] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  202.544950][   T35] usb 5-1: USB disconnect, device number 17
[  202.548359][   T35] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected
[  202.568071][   T30] usb 7-1: USB disconnect, device number 23
[  202.634324][   T39] kauditd_printk_skb: 66 callbacks suppressed
[  202.634335][   T39] audit: type=1400 audit(1729704555.519:12195): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3A2F2F269BF7B1F61C pid=9347 comm="syz.2.1028"
[  202.860575][ T9359] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1021'.
[  203.109261][ T9364] FAULT_INJECTION: forcing a failure.
[  203.109261][ T9364] name failslab, interval 1, probability 0, space 0, times 0
[  203.112882][ T9364] CPU: 1 UID: 0 PID: 9364 Comm: syz.0.1033 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  203.115619][ T9364] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  203.118390][ T9364] Call Trace:
[  203.119286][ T9364]  <TASK>
[  203.120065][ T9364]  dump_stack_lvl+0x16c/0x1f0
[  203.121329][ T9364]  should_fail_ex+0x497/0x5b0
[  203.122566][ T9364]  ? fs_reclaim_acquire+0xae/0x150
[  203.123920][ T9364]  should_failslab+0xc2/0x120
[  203.125158][ T9364]  kmem_cache_alloc_node_noprof+0x71/0x310
[  203.126687][ T9364]  ? __alloc_skb+0x2b3/0x380
[  203.127925][ T9364]  __alloc_skb+0x2b3/0x380
[  203.129109][ T9364]  ? __pfx___alloc_skb+0x10/0x10
[  203.130373][ T9364]  nfsd_nl_threads_get_doit+0xbb/0x740
[  203.131770][ T9364]  ? hlock_class+0x4e/0x130
[  203.132963][ T9364]  ? __kernel_text_address+0xd/0x40
[  203.134321][ T9364]  ? unwind_get_return_address+0x59/0xa0
[  203.135792][ T9364]  ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10
[  203.137375][ T9364]  ? mark_lock+0xb5/0xc60
[  203.138519][ T9364]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  203.140457][ T9364]  genl_family_rcv_msg_doit+0x202/0x2f0
[  203.141910][ T9364]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  203.143503][ T9364]  ? __radix_tree_lookup+0x21f/0x2c0
[  203.144889][ T9364]  genl_rcv_msg+0x565/0x800
[  203.146087][ T9364]  ? __pfx_genl_rcv_msg+0x10/0x10
[  203.147415][ T9364]  ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10
[  203.149001][ T9364]  ? __pfx___lock_acquire+0x10/0x10
[  203.150371][ T9364]  netlink_rcv_skb+0x165/0x410
[  203.151630][ T9364]  ? __pfx_genl_rcv_msg+0x10/0x10
[  203.152949][ T9364]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  203.154333][ T9364]  ? down_read+0xc9/0x330
[  203.155476][ T9364]  ? __pfx_down_read+0x10/0x10
[  203.156734][ T9364]  ? netlink_deliver_tap+0x1ae/0xcf0
[  203.158115][ T9364]  genl_rcv+0x28/0x40
[  203.159195][ T9364]  netlink_unicast+0x53c/0x7f0
[  203.160450][ T9364]  ? __pfx_netlink_unicast+0x10/0x10
[  203.161831][ T9364]  ? __phys_addr_symbol+0x30/0x80
[  203.163154][ T9364]  ? __check_object_size+0x488/0x710
[  203.164534][ T9364]  netlink_sendmsg+0x8b8/0xd70
[  203.165788][ T9364]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.167188][ T9364]  ? lock_acquire+0x2f/0xb0
[  203.168379][ T9364]  ____sys_sendmsg+0x9ae/0xb40
[  203.169631][ T9364]  ? __pfx_____sys_sendmsg+0x10/0x10
[  203.171008][ T9364]  ? get_compat_msghdr+0x11b/0x170
[  203.172356][ T9364]  ? __pfx___lock_acquire+0x10/0x10
[  203.173712][ T9364]  ___sys_sendmsg+0x135/0x1e0
[  203.174956][ T9364]  ? __pfx____sys_sendmsg+0x10/0x10
[  203.176328][ T9364]  ? lock_acquire+0x2f/0xb0
[  203.177520][ T9364]  ? __fget_files+0x40/0x3f0
[  203.178733][ T9364]  ? fdget+0x176/0x210
[  203.179826][ T9364]  __sys_sendmsg+0x117/0x1f0
[  203.181039][ T9364]  ? __pfx___sys_sendmsg+0x10/0x10
[  203.182372][ T9364]  ? __fget_files+0x244/0x3f0
[  203.183617][ T9364]  __do_fast_syscall_32+0x73/0x120
[  203.184955][ T9364]  do_fast_syscall_32+0x32/0x80
[  203.186240][ T9364]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  203.187889][ T9364] RIP: 0023:0xf7ff0579
[  203.188956][ T9364] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  203.193915][ T9364] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  203.196083][ T9364] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  203.198126][ T9364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  203.200191][ T9364] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  203.202243][ T9364] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  203.204301][ T9364] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  203.206346][ T9364]  </TASK>
[  203.648547][ T5351] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  203.732889][ T9379] input: syz0 as /devices/virtual/input/input13
[  203.800673][ T5351] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  203.803491][ T5351] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  203.806135][ T5351] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  203.810673][ T5351] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.816508][ T9375] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  203.824147][ T5351] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  204.258325][ T9386] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1036'.
[  204.278306][ T5351] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  204.458273][ T5351] usb 5-1: Using ep0 maxpacket: 8
[  204.461679][ T5351] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  204.464515][ T5351] usb 5-1: config 0 has no interface number 0
[  204.466686][ T5351] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  204.471273][ T5351] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  204.474360][ T5351] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.478220][ T5351] usb 5-1: config 0 descriptor??
[  204.483508][ T5351] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  204.490973][ T9388] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1041'.
[  204.737115][ T9392] program syz.0.1040 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  204.759232][ T9392] netlink: 'syz.0.1040': attribute type 1 has an invalid length.
[  204.761319][ T9392] netlink: 'syz.0.1040': attribute type 1 has an invalid length.
[  204.763403][ T9392] netlink: 9108 bytes leftover after parsing attributes in process `syz.0.1040'.
[  204.765807][ T9392] netlink: 'syz.0.1040': attribute type 1 has an invalid length.
[  204.767900][ T9392] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1040'.
[  204.998686][   T30] usb 6-1: USB disconnect, device number 12
[  205.200159][ T9400] FAULT_INJECTION: forcing a failure.
[  205.200159][ T9400] name failslab, interval 1, probability 0, space 0, times 0
[  205.203571][ T9400] CPU: 1 UID: 0 PID: 9400 Comm: syz.1.1045 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  205.206324][ T9400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.209125][ T9400] Call Trace:
[  205.210012][ T9400]  <TASK>
[  205.210797][ T9400]  dump_stack_lvl+0x16c/0x1f0
[  205.212055][ T9400]  should_fail_ex+0x497/0x5b0
[  205.213307][ T9400]  ? fs_reclaim_acquire+0xae/0x150
[  205.214657][ T9400]  should_failslab+0xc2/0x120
[  205.215917][ T9400]  kmem_cache_alloc_node_noprof+0x71/0x310
[  205.217448][ T9400]  ? __alloc_skb+0x2b3/0x380
[  205.218675][ T9400]  __alloc_skb+0x2b3/0x380
[  205.219873][ T9400]  ? __pfx___alloc_skb+0x10/0x10
[  205.221181][ T9400]  nfsd_nl_threads_get_doit+0xbb/0x740
[  205.222620][ T9400]  ? lockdep_hardirqs_on+0x7c/0x110
[  205.224017][ T9400]  ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10
[  205.225618][ T9400]  ? mark_lock+0xb5/0xc60
[  205.226768][ T9400]  ? kmem_cache_free+0x152/0x4b0
[  205.228098][ T9400]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  205.230133][ T9400]  genl_family_rcv_msg_doit+0x202/0x2f0
[  205.231671][ T9400]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  205.233264][ T9400]  ? __radix_tree_lookup+0x21f/0x2c0
[  205.234647][ T9400]  genl_rcv_msg+0x565/0x800
[  205.235857][ T9400]  ? __pfx_genl_rcv_msg+0x10/0x10
[  205.237183][ T9400]  ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10
[  205.238783][ T9400]  netlink_rcv_skb+0x165/0x410
[  205.240063][ T9400]  ? __pfx_genl_rcv_msg+0x10/0x10
[  205.241395][ T9400]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  205.242794][ T9400]  ? down_read+0xc9/0x330
[  205.243943][ T9400]  ? __pfx_down_read+0x10/0x10
[  205.245212][ T9400]  ? netlink_deliver_tap+0x1ae/0xcf0
[  205.246602][ T9400]  genl_rcv+0x28/0x40
[  205.247675][ T9400]  netlink_unicast+0x53c/0x7f0
[  205.248951][ T9400]  ? __pfx_netlink_unicast+0x10/0x10
[  205.250342][ T9400]  ? __phys_addr_symbol+0x30/0x80
[  205.251679][ T9400]  ? __check_object_size+0x488/0x710
[  205.253068][ T9400]  netlink_sendmsg+0x8b8/0xd70
[  205.254332][ T9400]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.255747][ T9400]  ? lock_acquire+0x2f/0xb0
[  205.256957][ T9400]  ____sys_sendmsg+0x9ae/0xb40
[  205.258223][ T9400]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.259716][ T9400]  ? get_compat_msghdr+0x11b/0x170
[  205.261055][ T9400]  ? __pfx___lock_acquire+0x10/0x10
[  205.262409][ T9400]  ___sys_sendmsg+0x135/0x1e0
[  205.263659][ T9400]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.265026][ T9400]  ? lock_acquire+0x2f/0xb0
[  205.266219][ T9400]  ? __fget_files+0x40/0x3f0
[  205.267454][ T9400]  ? fdget+0x176/0x210
[  205.268520][ T9400]  __sys_sendmsg+0x117/0x1f0
[  205.269729][ T9400]  ? __pfx___sys_sendmsg+0x10/0x10
[  205.271061][ T9400]  ? __fget_files+0x244/0x3f0
[  205.272299][ T9400]  __do_fast_syscall_32+0x73/0x120
[  205.273640][ T9400]  do_fast_syscall_32+0x32/0x80
[  205.274908][ T9400]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  205.276586][ T9400] RIP: 0023:0xf7fe5579
[  205.277647][ T9400] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  205.282586][ T9400] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  205.284734][ T9400] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  205.286766][ T9400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  205.288802][ T9400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  205.290834][ T9400] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  205.292881][ T9400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  205.294912][ T9400]  </TASK>
[  205.732400][ T5385] usb 5-1: USB disconnect, device number 18
[  205.737114][ T5385] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected
[  205.848297][   T35] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  206.000307][   T35] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  206.004235][   T35] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  206.007629][   T35] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  206.010308][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.013689][ T9420] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  206.016740][   T35] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  206.502383][ T5383] usb 8-1: USB disconnect, device number 18
[  206.505826][ T9439] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1051'.
[  206.546524][ T9443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1057'.
[  206.562827][ T9443] netlink: 'syz.3.1057': attribute type 1 has an invalid length.
[  206.573442][ T9443] netlink: 'syz.3.1057': attribute type 2 has an invalid length.
[  206.833823][ T9459] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1063'.
[  207.118228][   T65] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  207.188231][ T5385] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  207.268165][   T65] usb 5-1: Using ep0 maxpacket: 8
[  207.270822][   T65] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  207.272980][   T65] usb 5-1: config 0 has no interface number 0
[  207.274616][   T65] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  207.277439][   T65] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  207.279900][   T65] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.283255][   T65] usb 5-1: config 0 descriptor??
[  207.287539][   T65] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  207.339491][ T5385] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  207.342336][ T5385] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  207.344897][ T5385] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  207.347208][ T5385] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.350690][ T9466] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  207.354527][ T5385] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  207.520360][ T9470] 9pnet_fd: Insufficient options for proto=fd
[  207.540402][ T9471] program syz.0.1064 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  207.563164][ T9471] netlink: 'syz.0.1064': attribute type 1 has an invalid length.
[  207.565296][ T9471] netlink: 'syz.0.1064': attribute type 1 has an invalid length.
[  207.567360][ T9471] netlink: 9108 bytes leftover after parsing attributes in process `syz.0.1064'.
[  207.570380][ T9471] netlink: 'syz.0.1064': attribute type 1 has an invalid length.
[  207.572473][ T9471] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1064'.
[  207.710494][ T9476] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  207.810891][ T9477] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.1065'.
[  208.540261][   T65] usb 5-1: USB disconnect, device number 19
[  208.545277][   T65] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected
[  208.624211][ T5351] usb 7-1: USB disconnect, device number 24
[  208.988684][ T5351] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  209.084356][ T1104] Bluetooth: hci3: Frame reassembly failed (-84)
[  209.141020][ T5351] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  209.143299][ T5351] usb 7-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config
[  209.145921][ T5351] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  209.149240][ T5351] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10
[  209.152667][ T5351] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10100, setting to 1024
[  209.157289][ T5351] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  209.160002][ T5351] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  209.162546][ T5351] usb 7-1: Product: syz
[  209.163792][ T5351] usb 7-1: Manufacturer: syz
[  209.166955][ T9486] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  209.171856][ T5351] cdc_wdm 7-1:1.0: skipping garbage
[  209.173623][ T5351] cdc_wdm 7-1:1.0: skipping garbage
[  209.176815][ T5351] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  209.179347][ T5351] cdc_wdm 7-1:1.0: Unknown control protocol
[  209.185158][ T9497] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1072'.
[  209.379011][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.380882][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.383079][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.384829][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.387007][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.388758][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.390529][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.392274][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.394021][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.395771][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.397549][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.399241][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.400882][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.402628][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.404423][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.406143][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.407784][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.409524][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.411300][    C1] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[  209.413039][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[  209.439175][    C1] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1
[  209.442081][   T65] usb 7-1: USB disconnect, device number 25
[  209.972590][ T5383] usb 6-1: USB disconnect, device number 13
[  210.016157][ T9518] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1078'.
[  210.020077][ T9518] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1078'.
[  210.337191][ T1101] Bluetooth: hci4: Frame reassembly failed (-84)
[  210.348217][ T1101] Bluetooth: hci4: Frame reassembly failed (-84)
[  210.888200][    T8] usb 7-1: new high-speed USB device number 26 using dummy_hcd
[  211.038220][    T8] usb 7-1: Using ep0 maxpacket: 8
[  211.040905][    T8] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  211.042984][    T8] usb 7-1: config 0 has no interface number 0
[  211.044656][    T8] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  211.047423][    T8] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  211.049876][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.052815][    T8] usb 7-1: config 0 descriptor??
[  211.055842][    T8] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  211.088296][ T5348] Bluetooth: hci3: command 0x1003 tx timeout
[  211.098201][ T5354] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  211.142915][ T9534] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1082'.
[  211.257762][ T9541] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1085'.
[  211.260505][ T9541] openvswitch: netlink: Geneve option length err (len 3060, max 255).
[  211.312035][ T9544] program syz.2.1080 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  211.331013][ T9544] netlink: 'syz.2.1080': attribute type 1 has an invalid length.
[  211.333112][ T9544] netlink: 'syz.2.1080': attribute type 1 has an invalid length.
[  211.335169][ T9544] netlink: 9108 bytes leftover after parsing attributes in process `syz.2.1080'.
[  211.337554][ T9544] netlink: 'syz.2.1080': attribute type 1 has an invalid length.
[  211.538231][   T35] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  211.689481][   T35] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  211.692351][   T35] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  211.694846][   T35] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  211.697810][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.701386][ T9543] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  211.705620][   T35] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  212.138866][ T9553] __nla_validate_parse: 1 callbacks suppressed
[  212.138928][ T9553] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1086'.
[  212.301039][ T7089] usb 7-1: USB disconnect, device number 26
[  212.305015][ T7089] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected
[  212.368253][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  212.369593][ T5354] Bluetooth: hci4: command 0x1003 tx timeout
[  212.427663][ T9555] FAULT_INJECTION: forcing a failure.
[  212.427663][ T9555] name failslab, interval 1, probability 0, space 0, times 0
[  212.440736][ T9555] CPU: 1 UID: 0 PID: 9555 Comm: syz.3.1088 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  212.443549][ T9555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.446358][ T9555] Call Trace:
[  212.447256][ T9555]  <TASK>
[  212.448048][ T9555]  dump_stack_lvl+0x16c/0x1f0
[  212.449341][ T9555]  should_fail_ex+0x497/0x5b0
[  212.450600][ T9555]  should_failslab+0xc2/0x120
[  212.451864][ T9555]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  212.453290][ T9555]  ? skb_clone+0x190/0x3f0
[  212.454479][ T9555]  skb_clone+0x190/0x3f0
[  212.455611][ T9555]  netlink_deliver_tap+0xb26/0xcf0
[  212.456967][ T9555]  netlink_unicast+0x6b4/0x7f0
[  212.458241][ T9555]  ? __pfx_netlink_unicast+0x10/0x10
[  212.459663][ T9555]  nfsd_nl_threads_get_doit+0x5af/0x740
[  212.461330][ T9555]  ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10
[  212.462963][ T9555]  ? kmem_cache_free+0x152/0x4b0
[  212.464289][ T9555]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  212.466257][ T9555]  genl_family_rcv_msg_doit+0x202/0x2f0
[  212.467736][ T9555]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  212.469363][ T9555]  ? __radix_tree_lookup+0x21f/0x2c0
[  212.470779][ T9555]  genl_rcv_msg+0x565/0x800
[  212.472029][ T9555]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.473373][ T9555]  ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10
[  212.475011][ T9555]  netlink_rcv_skb+0x165/0x410
[  212.476297][ T9555]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.477643][ T9555]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  212.479077][ T9555]  ? down_read+0xc9/0x330
[  212.480233][ T9555]  ? __pfx_down_read+0x10/0x10
[  212.481509][ T9555]  ? rcu_is_watching+0x12/0xc0
[  212.482788][ T9555]  genl_rcv+0x28/0x40
[  212.483866][ T9555]  netlink_unicast+0x53c/0x7f0
[  212.485138][ T9555]  ? __pfx_netlink_unicast+0x10/0x10
[  212.486544][ T9555]  ? __phys_addr_symbol+0x30/0x80
[  212.487894][ T9555]  ? __check_object_size+0x4a1/0x710
[  212.489308][ T9555]  netlink_sendmsg+0x8b8/0xd70
[  212.490591][ T9555]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.492003][ T9555]  ? lock_acquire+0x2f/0xb0
[  212.493219][ T9555]  ____sys_sendmsg+0x9ae/0xb40
[  212.494499][ T9555]  ? __pfx_____sys_sendmsg+0x10/0x10
[  212.495911][ T9555]  ? get_compat_msghdr+0x11b/0x170
[  212.497271][ T9555]  ? __pfx___lock_acquire+0x10/0x10
[  212.498658][ T9555]  ___sys_sendmsg+0x135/0x1e0
[  212.499940][ T9555]  ? __pfx____sys_sendmsg+0x10/0x10
[  212.501328][ T9555]  ? lock_acquire+0x2f/0xb0
[  212.502539][ T9555]  ? __fget_files+0x40/0x3f0
[  212.503784][ T9555]  ? fdget+0x176/0x210
[  212.504876][ T9555]  __sys_sendmsg+0x117/0x1f0
[  212.506106][ T9555]  ? __pfx___sys_sendmsg+0x10/0x10
[  212.507466][ T9555]  ? __fget_files+0x244/0x3f0
[  212.508727][ T9555]  __do_fast_syscall_32+0x73/0x120
[  212.510094][ T9555]  do_fast_syscall_32+0x32/0x80
[  212.511400][ T9555]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.513076][ T9555] RIP: 0023:0xf746e579
[  212.514164][ T9555] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.519221][ T9555] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  212.521409][ T9555] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  212.523487][ T9555] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  212.525560][ T9555] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.527641][ T9555] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.529723][ T9555] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.531818][ T9555]  </TASK>
[  212.989669][ T9567] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  212.993340][ T9567] Error parsing options; rc = [-22]
[  213.761163][ T9572] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1092'.
[  213.820563][ T9582] kernel read not supported for file /eth0 (pid: 9582 comm: syz.3.1095)
[  213.824341][   T39] audit: type=1800 audit(1729704566.709:12196): pid=9582 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1095" name="eth0" dev="mqueue" ino=27142 res=0 errno=0
[  214.071716][   T85] Bluetooth: hci3: Frame reassembly failed (-84)
[  214.319048][ T5383] usb 5-1: USB disconnect, device number 20
[  214.679800][ T9600] FAULT_INJECTION: forcing a failure.
[  214.679800][ T9600] name failslab, interval 1, probability 0, space 0, times 0
[  214.683133][ T9600] CPU: 1 UID: 0 PID: 9600 Comm: syz.3.1100 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  214.685870][ T9600] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  214.688641][ T9600] Call Trace:
[  214.689521][ T9600]  <TASK>
[  214.690300][ T9600]  dump_stack_lvl+0x16c/0x1f0
[  214.691562][ T9600]  should_fail_ex+0x497/0x5b0
[  214.692807][ T9600]  should_failslab+0xc2/0x120
[  214.694049][ T9600]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  214.695465][ T9600]  ? skb_clone+0x190/0x3f0
[  214.696643][ T9600]  skb_clone+0x190/0x3f0
[  214.697770][ T9600]  netlink_deliver_tap+0xb26/0xcf0
[  214.699304][ T9600]  netlink_unicast+0x6b4/0x7f0
[  214.700625][ T9600]  ? __pfx_netlink_unicast+0x10/0x10
[  214.702014][ T9600]  nfsd_nl_threads_get_doit+0x5af/0x740
[  214.703473][ T9600]  ? lockdep_hardirqs_on+0x7c/0x110
[  214.704839][ T9600]  ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10
[  214.706422][ T9600]  ? kmem_cache_free+0x152/0x4b0
[  214.707735][ T9600]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  214.709658][ T9600]  genl_family_rcv_msg_doit+0x202/0x2f0
[  214.711154][ T9600]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  214.712725][ T9600]  ? __radix_tree_lookup+0x21f/0x2c0
[  214.714091][ T9600]  genl_rcv_msg+0x565/0x800
[  214.715269][ T9600]  ? __pfx_genl_rcv_msg+0x10/0x10
[  214.716563][ T9600]  ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10
[  214.718120][ T9600]  netlink_rcv_skb+0x165/0x410
[  214.719372][ T9600]  ? __pfx_genl_rcv_msg+0x10/0x10
[  214.720690][ T9600]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  214.722072][ T9600]  ? down_read+0xc9/0x330
[  214.723215][ T9600]  ? __pfx_down_read+0x10/0x10
[  214.724472][ T9600]  ? netlink_deliver_tap+0x1ae/0xcf0
[  214.725856][ T9600]  genl_rcv+0x28/0x40
[  214.726925][ T9600]  netlink_unicast+0x53c/0x7f0
[  214.728199][ T9600]  ? __pfx_netlink_unicast+0x10/0x10
[  214.729580][ T9600]  ? __phys_addr_symbol+0x30/0x80
[  214.730900][ T9600]  ? __check_object_size+0x488/0x710
[  214.732298][ T9600]  netlink_sendmsg+0x8b8/0xd70
[  214.733557][ T9600]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.734948][ T9600]  ? lock_acquire+0x2f/0xb0
[  214.736144][ T9600]  ____sys_sendmsg+0x9ae/0xb40
[  214.737397][ T9600]  ? __pfx_____sys_sendmsg+0x10/0x10
[  214.738791][ T9600]  ? get_compat_msghdr+0x11b/0x170
[  214.740139][ T9600]  ? __pfx___lock_acquire+0x10/0x10
[  214.741499][ T9600]  ___sys_sendmsg+0x135/0x1e0
[  214.742740][ T9600]  ? __pfx____sys_sendmsg+0x10/0x10
[  214.744119][ T9600]  ? lock_acquire+0x2f/0xb0
[  214.745318][ T9600]  ? __fget_files+0x40/0x3f0
[  214.746540][ T9600]  ? fdget+0x176/0x210
[  214.747626][ T9600]  __sys_sendmsg+0x117/0x1f0
[  214.748842][ T9600]  ? __pfx___sys_sendmsg+0x10/0x10
[  214.750175][ T9600]  ? __fget_files+0x244/0x3f0
[  214.751436][ T9600]  __do_fast_syscall_32+0x73/0x120
[  214.752783][ T9600]  do_fast_syscall_32+0x32/0x80
[  214.754068][ T9600]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  214.755739][ T9600] RIP: 0023:0xf746e579
[  214.756812][ T9600] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  214.761811][ T9600] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  214.763991][ T9600] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  214.766051][ T9600] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  214.768115][ T9600] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  214.770176][ T9600] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  214.772241][ T9600] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  214.774310][ T9600]  </TASK>
[  215.482744][ T9610] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1104'.
[  215.701294][ T9623] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1108'.
[  215.768238][   T35] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  215.919359][   T35] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  215.921996][   T35] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  215.924292][   T35] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  215.926413][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.934164][ T9614] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  215.938265][   T35] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  215.995204][ T9640] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1113'.
[  216.128257][ T5354] Bluetooth: hci3: command 0x1003 tx timeout
[  216.128663][ T5356] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  216.339230][ T9651] fuse: Bad value for 'fd'
[  216.381495][ T9652] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1106'.
[  216.432510][ T9619] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  216.439777][ T9619] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  216.444878][ T9619] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  216.453215][ T9619] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  216.473972][ T9619] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  216.908326][   T35] usb 7-1: new high-speed USB device number 27 using dummy_hcd
[  217.058231][   T35] usb 7-1: Using ep0 maxpacket: 8
[  217.062211][   T35] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  217.064351][   T35] usb 7-1: config 0 has no interface number 0
[  217.072133][   T35] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  217.074924][   T35] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  217.077418][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.082609][   T35] usb 7-1: config 0 descriptor??
[  217.093387][   T35] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  217.146175][ T9664] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  217.199904][ T9666] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1122'.
[  217.370996][ T9677] program syz.2.1117 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  217.425305][ T9677] netlink: 'syz.2.1117': attribute type 1 has an invalid length.
[  217.427391][ T9677] netlink: 'syz.2.1117': attribute type 1 has an invalid length.
[  217.429547][ T9677] netlink: 9108 bytes leftover after parsing attributes in process `syz.2.1117'.
[  217.432075][ T9677] netlink: 'syz.2.1117': attribute type 1 has an invalid length.
[  217.434097][ T9677] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1117'.
[  217.590924][   T85] Bluetooth: hci3: Frame reassembly failed (-84)
[  217.592685][   T85] Bluetooth: hci3: Frame reassembly failed (-84)
[  217.595012][   T85] Bluetooth: hci3: Frame reassembly failed (-84)
[  217.648346][ T5356] Bluetooth: hci2: command 0x0c1a tx timeout
[  218.372730][ T5383] usb 7-1: USB disconnect, device number 27
[  218.375990][ T5383] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected
[  218.528363][ T5356] Bluetooth: hci5: command 0x0c1a tx timeout
[  218.530180][ T5356] Bluetooth: hci1: command 0x041b tx timeout
[  218.575051][ T5383] usb 8-1: USB disconnect, device number 19
[  218.788858][ T9699] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1132'.
Connection to localhost closed by remote host.
[  219.346248][ T9721] bridge0: port 3(syz_tun) entered disabled state
[  219.356653][ T9721] syz_tun (unregistering): left allmulticast mode
[  219.358441][ T9721] syz_tun (unregistering): left promiscuous mode
[  219.360142][ T9721] bridge0: port 3(syz_tun) entered disabled state
[  219.438216][ T5383] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  219.555586][ T1101] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  219.559058][ T1101] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.578227][ T5354] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  219.648056][ T1101] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  219.650781][ T1101] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.722631][ T1101] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  219.725404][ T1101] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.918307][ T1101] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  219.921162][ T1101] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.020712][ T1101] bridge_slave_1: left allmulticast mode
[  220.022517][ T1101] bridge_slave_1: left promiscuous mode
[  220.024396][ T1101] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.027672][ T1101] bridge_slave_0: left allmulticast mode
[  220.029175][ T1101] bridge_slave_0: left promiscuous mode
[  220.030689][ T1101] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.143297][ T1101] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  220.370697][ T1101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  220.374384][ T1101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  220.377747][ T1101] bond0 (unregistering): Released all slaves
[  220.519131][ T1101] IPVS: stopping backup sync thread 8409 ...
[  220.521792][ T1101] IPVS: stopping backup sync thread 8408 ...
[  220.525624][ T1101] IPVS: stopping backup sync thread 8407 ...
[  220.527470][ T1101] IPVS: stopping backup sync thread 8406 ...
[  220.529380][ T1101] IPVS: stopping backup sync thread 8405 ...
[  220.531125][ T1101] IPVS: stopping backup sync thread 8404 ...
[  220.532842][ T1101] IPVS: stopping backup sync thread 8403 ...
[  220.534995][ T1101] IPVS: stopping backup sync thread 8402 ...
[  220.537074][ T1101] IPVS: stopping backup sync thread 8401 ...
[  220.539194][ T1101] IPVS: stopping backup sync thread 8400 ...
[  220.542225][ T1101] IPVS: stopping backup sync thread 8399 ...
[  220.544035][ T1101] IPVS: stopping backup sync thread 8398 ...
[  220.545717][ T1101] IPVS: stopping backup sync thread 8397 ...
[  220.547502][ T1101] IPVS: stopping backup sync thread 8396 ...
[  220.551364][ T1101] IPVS: stopping backup sync thread 8395 ...
[  220.553047][ T1101] IPVS: stopping backup sync thread 8394 ...
[  220.554755][ T1101] IPVS: stopping backup sync thread 8393 ...
[  220.556361][ T1101] IPVS: stopping backup sync thread 8392 ...
[  220.558004][ T1101] IPVS: stopping backup sync thread 8391 ...
[  220.559634][ T1101] IPVS: stopping backup sync thread 8390 ...
[  220.561253][ T1101] IPVS: stopping backup sync thread 8389 ...
[  220.562864][ T1101] IPVS: stopping backup sync thread 8388 ...
[  220.564442][ T1101] IPVS: stopping backup sync thread 8387 ...
[  220.566105][ T1101] IPVS: stopping backup sync thread 8386 ...
[  220.567777][ T1101] IPVS: stopping backup sync thread 8385 ...
[  220.569901][ T1101] IPVS: stopping backup sync thread 8384 ...
[  220.571465][ T1101] IPVS: stopping backup sync thread 8383 ...
[  220.573254][ T1101] IPVS: stopping backup sync thread 8382 ...
[  220.575358][ T1101] IPVS: stopping backup sync thread 8381 ...
[  220.577390][ T1101] IPVS: stopping backup sync thread 8380 ...
[  220.579163][ T1101] IPVS: stopping backup sync thread 8379 ...
[  220.580837][ T1101] IPVS: stopping backup sync thread 8378 ...
[  220.582487][ T1101] IPVS: stopping backup sync thread 8377 ...
[  220.584148][ T1101] IPVS: stopping backup sync thread 8376 ...
[  220.585829][ T1101] IPVS: stopping backup sync thread 8375 ...
[  220.587506][ T1101] IPVS: stopping backup sync thread 8374 ...
[  220.589216][ T1101] IPVS: stopping backup sync thread 8373 ...
[  220.591043][ T1101] IPVS: stopping backup sync thread 8372 ...
[  220.593066][ T1101] IPVS: stopping backup sync thread 8371 ...
[  220.594717][ T1101] IPVS: stopping backup sync thread 8370 ...
[  220.596397][ T1101] IPVS: stopping backup sync thread 8369 ...
[  220.598043][ T1101] IPVS: stopping backup sync thread 8368 ...
[  220.599754][ T1101] IPVS: stopping backup sync thread 8367 ...
[  220.601420][ T1101] IPVS: stopping backup sync thread 8366 ...
[  220.603097][ T1101] IPVS: stopping backup sync thread 8364 ...
[  220.604754][ T1101] IPVS: stopping backup sync thread 8362 ...
[  220.606412][ T1101] IPVS: stopping backup sync thread 8361 ...
[  220.608091][ T1101] IPVS: stopping backup sync thread 8360 ...
[  220.609804][ T1101] IPVS: stopping backup sync thread 8359 ...
[  220.611497][ T1101] IPVS: stopping backup sync thread 8357 ...
[  220.613090][ T1101] IPVS: stopping backup sync thread 8356 ...
[  220.614751][ T1101] IPVS: stopping backup sync thread 8355 ...
[  220.616430][ T1101] IPVS: stopping backup sync thread 8354 ...
[  220.618385][ T1101] IPVS: stopping backup sync thread 8353 ...
[  220.621445][ T1101] IPVS: stopping backup sync thread 8352 ...
[  220.623126][ T1101] IPVS: stopping backup sync thread 8350 ...
[  220.624780][ T1101] IPVS: stopping backup sync thread 8349 ...
[  220.626418][ T1101] IPVS: stopping backup sync thread 8348 ...
[  220.628162][ T1101] IPVS: stopping backup sync thread 8347 ...
[  220.629799][ T1101] IPVS: stopping backup sync thread 8346 ...
[  220.631484][ T1101] IPVS: stopping backup sync thread 8345 ...
[  220.633170][ T1101] IPVS: stopping backup sync thread 8344 ...
[  220.634838][ T1101] IPVS: stopping backup sync thread 8343 ...
[  220.636530][ T1101] IPVS: stopping backup sync thread 8342 ...
[  220.830331][ T1101] hsr_slave_0: left promiscuous mode
[  220.832101][ T1101] hsr_slave_1: left promiscuous mode
[  220.833818][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  220.835734][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_0
[  220.839229][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  220.841046][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_1
[  220.860358][ T1101] veth1_macvtap: left promiscuous mode
[  220.861818][ T1101] veth0_macvtap: left promiscuous mode
[  220.863283][ T1101] veth1_vlan: left promiscuous mode
[  221.513132][ T1101] team0 (unregistering): Port device team_slave_1 removed
[  221.583954][ T1101] team0 (unregistering): Port device team_slave_0 removed
[  222.902732][ T1101] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.041742][ T1101] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.111091][ T1101] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.189407][ T1101] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.279384][ T1101] bridge_slave_1: left allmulticast mode
[  223.280916][ T1101] bridge_slave_1: left promiscuous mode
[  223.282434][ T1101] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.285212][ T1101] bridge_slave_0: left allmulticast mode
[  223.286702][ T1101] bridge_slave_0: left promiscuous mode
[  223.288398][ T1101] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.325544][ T1101] ip6gretap0 (unregistering): left promiscuous mode
[  223.812952][ T1101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  223.815876][ T1101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  223.819210][ T1101] bond0 (unregistering): (slave team0): Releasing backup interface
[  223.824073][ T1101] bond0 (unregistering): Released all slaves
[  223.828308][ T1101] bond1 (unregistering): Released all slaves
[  223.902274][ T1101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  223.905926][ T1101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  223.910643][ T1101] bond0 (unregistering): Released all slaves
[  223.995345][ T1101] tipc: Disabling bearer <eth:macvlan1>
[  224.001074][ T1101] tipc: Left network mode
[  224.476736][ T1101] batadv_slave_1: left promiscuous mode
[  224.481490][ T1101] hsr_slave_0: left promiscuous mode
[  224.483251][ T1101] hsr_slave_1: left promiscuous mode
[  224.485057][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_0
[  224.487245][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_1
[  224.493726][ T1101] hsr_slave_0: left promiscuous mode
[  224.495507][ T1101] hsr_slave_1: left promiscuous mode
[  224.497281][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  224.499661][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_0
[  224.501749][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  224.503684][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_1
[  224.532082][ T1101] veth1_macvtap: left promiscuous mode
[  224.533588][ T1101] veth0_macvtap: left promiscuous mode
[  224.535084][ T1101] veth1_vlan: left promiscuous mode
[  224.536483][ T1101] veth0_vlan: left promiscuous mode
[  225.163008][ T1101] team0 (unregistering): Port device team_slave_1 removed
[  225.238201][ T1101] team0 (unregistering): Port device team_slave_0 removed
[  226.364224][ T1101] team0 (unregistering): Port device team_slave_1 removed
[  226.437950][ T1101] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
17:29:42  Registers:
info registers vcpu 0

CPU#0
RAX=000000000095eafb RBX=0000000000000000 RCX=ffffffff8b139ef9 RDX=0000000000000000
RSI=ffffffff8b4cc960 RDI=ffffffff8bb12d60 RBP=fffffbfff1b52af8 RSP=ffffffff8da07e20
R8 =0000000000000001 R9 =ffffed1005687025 R10=ffff88802b43812b R11=0000000000000000
R12=0000000000000000 R13=ffffffff8da957c0 R14=ffffffff901ce608 R15=0000000000000000
RIP=ffffffff8b13b2df RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5734d40 CR3=000000000db7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffffe00 Opmask01=0000000000000000 Opmask02=0000000019f801ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 18de4cecb93c1036 548f20f3a90b2d86
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fd09e8e27f086fac 9de12032b99371e5
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a84985e0ad90fbb c205079d929e7c4b
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 97c4b21f8ea9324a b8b87f09ef578d7f
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002180
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e581e34c5315d1e 5c6eaa4687ac1ee6
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 139b058e6aead0a8 000000000000008a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 008a39c569ea0000 3cc6a8320000008a
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a21ad824000312c4 49345f241dc18566
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3ac5f3452fc12a72 dd22a745dd48a8bc
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 be82275f60525af9 3849fdcfa757e8c6
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000148000055 b8eda729c0000000 0000000000000072 656c6c616b7a7973
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6864203a73250070 6475646e65735f70 636864203a732500 73646e6f63657320
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4d41051f56000055 4150414b40565f55 464d41051f560000 56414b4a46405605
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f7220735f656e64 6420706920726164 616120203420656e 6120383400656e65
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6420615f0a2030 35206464205f6164 0a6120203420615f 5f20383400656964
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 1

CPU#1
RAX=0000000000dcd61d RBX=0000000000000001 RCX=ffffffff8b139ef9 RDX=0000000000000000
RSI=ffffffff8b4cc960 RDI=ffffffff8bb12d60 RBP=ffffed10036ec910 RSP=ffffc90000477e08
R8 =0000000000000001 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000000
R12=0000000000000001 R13=ffff88801b764880 R14=ffffffff901ce608 R15=0000000000000000
RIP=ffffffff8b13b2df RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f5735da4 CR3=000000000db7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffffe00 Opmask01=0000000000000000 Opmask02=0000000019f801ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d945f66fce9bdb3c 04a3237b045fa5cd
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8c2d6af365c45619 885c68398398a118
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e5de2f25f5ffec07 01a437f63b1fe4f8
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 25d4d47458f4f8f7 e5a6ee8242c5c6c0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000040
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 66c51a08f39e07ba 819d5c972581e79e
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 32d58a4520c883c9 1c69bfcd3cc22309
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b7e89322659ce10e 666c9c2ddb431269
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9fae25d9573cf562 8e9f894b61b31122
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856b08e647
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000148000055 b8eda729c0000000 0000000000000072 656c6c616b7a7973
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6864203a73250070 6475646e65735f70 636864203a732500 73646e6f63657320
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4d41051f56000055 4150414b40565f55 464d41051f560000 56414b4a46405605
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f7220735f656e64 6420706920726164 616120203420656e 6120383400656e65
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6420615f0a2030 35206464205f6164 0a6120203420615f 5f20383400656964
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 2

CPU#2
RAX=00000000005ad513 RBX=0000000000000002 RCX=ffffffff8b139ef9 RDX=0000000000000000
RSI=ffffffff8b4cc960 RDI=ffffffff8bb12d60 RBP=ffffed100376d000 RSP=ffffc90000487e08
R8 =0000000000000001 R9 =ffffed10056c7025 R10=ffff88802b63812b R11=ffffffff8b4f7d60
R12=0000000000000002 R13=ffff88801bb68000 R14=ffffffff901ce608 R15=0000000000000000
RIP=ffffffff8b13b2df RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020000200 CR3=000000000db7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffffe00 Opmask01=0000000000000000 Opmask02=0000000019f801ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3ac5f3452fc12a72 dd22a745dd48a8bc
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 be82275f60525af9 3849fdcfa757e8c6
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0efcc0377f7428b8 9507df5ce4c64a89
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 540576170fb8eb58 5c0bbef1960cbd3f
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002140
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b37f0768b397a6c2 00000089b3a0ad5c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0080010000800100 e26434b9be82124a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008900800100 b38a476400000089
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00800100b7491d42 0000008900800100
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1d4405dd59971846 9e550bb8eaccc5f5
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9be18497941a6b96 e47414035bfa741e
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000148000055 b8eda729c0000000 0000000000000072 656c6c616b7a7973
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6864203a73250070 6475646e65735f70 636864203a732500 73646e6f63657320
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4d41051f56000055 4150414b40565f55 464d41051f560000 56414b4a46405605
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f7220735f656e64 6420706920726164 616120203420656e 6120383400656e65
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6420615f0a2030 35206464205f6164 0a6120203420615f 5f20383400656964
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 3

CPU#3
RAX=00000000004c77e5 RBX=0000000000000003 RCX=ffffffff8b139ef9 RDX=0000000000000000
RSI=ffffffff8b4cc960 RDI=ffffffff8bb12d60 RBP=ffffed100376d488 RSP=ffffc90000497e08
R8 =0000000000000001 R9 =ffffed10056e7025 R10=ffff88802b73812b R11=0000000000000000
R12=0000000000000003 R13=ffff88801bb6a440 R14=ffffffff901ce608 R15=0000000000000000
RIP=ffffffff8b13b2df RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f66e40 CR3=000000000db7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080000010 Opmask01=0000000000001d1f Opmask02=00000000ff001fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000007000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8c1728ab3dd500a2 8fb3f6b77796e5cb
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 26c786580600fc55 b12326f1781caae5
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bb663822949c9f17 ffb156f6ab04dac9
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 add6366be1a36e3c ce725fab63034c6d
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000021c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008a00000000 cd4f2d96000182b8
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000008a 000000000000008a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008a0002835e c2baa0e40004acac
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ddb3ffde0001d4ad 00000000b599231a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 18de4cecb93c1036 548f20f3a90b2d86
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fd09e8e27f086fac 9de12032b99371e5
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f766e6f63675f5f 0000000000000000 000000706d74752f 6e75722f7261762f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 706d742f73666d61 7220746f6e207369 206d657473797365 6c696620746f6f72
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00656c6966207261 6c75676572206120 746f6e2073692027 7325270074696e69
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 24bf242d282b232c 22ee222e312feebf 222e312feebf2435 283232282c31242f
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2bdf3228df3822 282b2e2fdf37342d 280b0412bfc92435 283232282c31242f
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020