last executing test programs:

9m59.835398053s ago: executing program 2 (id=88):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, 0x0, &(0x7f00000000c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
setsockopt$CAN_RAW_ERR_FILTER(0xffffffffffffffff, 0x65, 0x2, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
pread64(0xffffffffffffffff, &(0x7f0000001440)=""/4084, 0xff4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0)="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", 0xfc)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000280)=0x2)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r4, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000180)={{0x2, 0x4e23, @empty}, {0x20000010304, @local}, 0x4, {0x2, 0x4e20, @rand_addr=0x64010102}})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)

9m58.746415042s ago: executing program 2 (id=92):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26})
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
geteuid()
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x2208004, 0x0)
sched_getattr(0x0, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$HCIINQUIRY(r3, 0x400448ca, 0x0)
ioctl$sock_bt_hci(r3, 0x400448c9, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
unshare(0x40020000)

9m57.788871868s ago: executing program 2 (id=95):
r0 = socket$inet(0x2, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0xe2, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0xfe1e}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r4, 0x29, 0x39, &(0x7f0000000040)="ff02040000b5ffffffffffffffff2e2be82db1af00000000", 0x18)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x4e20, 0x74df82a6, @private1={0xfc, 0x1, '\x00', 0xa}, 0xae3e}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000002940)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}}], 0x62, 0x0)
lseek(0xffffffffffffffff, 0x9, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340), 0x10, &(0x7f0000000380)={&(0x7f0000000480)=ANY=[@ANYBLOB="050000000406000000000100", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xea60, @ANYBLOB="03000060010000000000002004c60000652754942db1c5b6397121c4f5609c2f954286147e628cd5ab14e2b3537a6e7dd3316d85d82f748856290cb0eaacd63d83e6455c4b46fabfccff81f145950d2e"], 0x6c}, 0x1, 0x0, 0x0, 0x24024005}, 0x40040)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000540)={[{0x0, 0x93, 0x4, 0x1, 0xf0, 0x6, 0x86, 0xf7, 0x8, 0x8, 0xa, 0xa}, {0x9, 0x9, 0x8, 0x6, 0x6, 0x8, 0x0, 0x4, 0x0, 0x1, 0x1, 0x32, 0xf0cb}, {0x5, 0x0, 0xc9, 0x6, 0x7, 0x67, 0x6, 0x2e, 0x0, 0x48, 0x2, 0x6, 0xfffffffffffff0a2}], 0x8048dc5})
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYRES8=r5], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

9m56.686569913s ago: executing program 2 (id=98):
socket$nl_generic(0x10, 0x3, 0x10)
landlock_create_ruleset(&(0x7f0000000500)={0x21c1, 0x3, 0x3}, 0x18, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9801}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPVLAN_MODE={0x6, 0x1, 0x3}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006300)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x20000000, 0x4041}}, 0x50)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0x24, 0x0, 0x0)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
r5 = syz_open_dev$loop(&(0x7f0000000000), 0x4, 0x2080)
ioctl$LOOP_SET_FD(r5, 0x4c00, r4)
ioctl$LOOP_SET_FD(r5, 0x4c00, r5)
dup2(r4, r1)
r6 = socket$inet6(0xa, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x0, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x33, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(0xffffffffffffffff, 0xc0045009, &(0x7f0000000100)=0xfffffff7)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@getspdinfo={0x14, 0x25, 0x1, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x3, 0xfd}, 0x8)
write$rfkill(r7, &(0x7f0000000340)={0x6, 0x0, 0x3, 0x0, 0x1}, 0x8)

9m56.141000257s ago: executing program 2 (id=100):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioprio_set$pid(0x2, 0x0, 0x6000)
syz_clone(0x80280, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0xe, &(0x7f00000001c0))
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendto$inet6(r2, &(0x7f0000847fff)='X', 0x1, 0x14000180, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x3, 0x9, 0x8, 0x6, 0x3}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000000)={r5, 0x8}, &(0x7f0000000040)=0x8)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f0000000040)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x80000000}])
io_getevents(r7, 0x2, 0x2, &(0x7f0000001340)=[{}, {}], 0x0)
io_submit(r7, 0x1, &(0x7f0000000140)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r6, 0x0}])
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040))
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r8, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x8, 0x530, 0xc, 0xfffffffffffffffd, 0x59c})
socket$kcm(0x10, 0x2, 0x0)

9m55.78869389s ago: executing program 2 (id=102):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000003c00070100000000"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = fsopen(&(0x7f0000000100)='binder\x00', 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
r5 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=@base={0x12, 0x2, 0x8, 0x2}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x7}, 0x10)
fsmount(r3, 0x0, 0x3)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000002b00"], 0x14}}, 0x84)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000780)={0x0, 0xf0, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x33, 0x1, 0x70bd2b, 0x25dbdbfe, {0x4}, [@typed={0x8, 0x4, 0x0, 0x0, @u32=0x2}, @typed={0x8, 0x5, 0x0, 0x0, @uid}]}, 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x4000000)
sendmsg$nl_generic(r7, 0x0, 0x4002000)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00'})

9m55.72600608s ago: executing program 32 (id=102):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000003c00070100000000"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = fsopen(&(0x7f0000000100)='binder\x00', 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
r5 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=@base={0x12, 0x2, 0x8, 0x2}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x7}, 0x10)
fsmount(r3, 0x0, 0x3)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000002b00"], 0x14}}, 0x84)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000780)={0x0, 0xf0, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x33, 0x1, 0x70bd2b, 0x25dbdbfe, {0x4}, [@typed={0x8, 0x4, 0x0, 0x0, @u32=0x2}, @typed={0x8, 0x5, 0x0, 0x0, @uid}]}, 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x4000000)
sendmsg$nl_generic(r7, 0x0, 0x4002000)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00'})

14.194118803s ago: executing program 3 (id=1862):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, 0x0, &(0x7f00000000c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
setsockopt$CAN_RAW_ERR_FILTER(0xffffffffffffffff, 0x65, 0x2, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
pread64(0xffffffffffffffff, &(0x7f0000001440)=""/4084, 0xff4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0)="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", 0xfc)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000280)=0x2)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r4, 0x0, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000180)={{0x2, 0x4e23, @empty}, {0x20000010304, @local}, 0x4, {0x2, 0x4e20, @rand_addr=0x64010102}})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)

13.253128388s ago: executing program 3 (id=1864):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000001980)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e78, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x80}}]}, {0x2}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x141)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000300)='./file0\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmsg(r5, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x7, &(0x7f0000000000), 0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000100), 0x4)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x30)
keyctl$clear(0x7, 0xfffffffffffffffb)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[], 0x134}}, 0x0)
lseek(r7, 0xfffffffc, 0x1)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {}, [{0x54, 0x1, [@m_ife={0x50, 0x1, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xffffffff, 0x0, 0x0, 0xa}}}, @TCA_IFE_METALST={0x8, 0x6, [@IFE_META_TCINDEX={0x4, 0x2, @void}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

10.706582351s ago: executing program 3 (id=1875):
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$apparmor_exec(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB='exec  :'], 0x15)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
timer_create(0x3, &(0x7f0000000140)={0x0, 0x3a, 0x2, @thr={&(0x7f0000000000)="d5db83aa1d3451ccd13675a34859f629b37e1cc1d1885d9213e4128b7bdde2aa1011891b81c2c5e608e9d48f0f4a61499b8d", 0x0}}, &(0x7f0000000180))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a74000000060a010400000000000000000200000048000480440001800c0001007061796c6f616400340002800800044000000000080005400000000008000340000000610800024000000003080006400000000208000740000000080900010073797a30000000000900020073797a32"], 0x9c}}, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x499f, 0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x22001)
ioctl$NBD_PRINT_DEBUG(r6, 0xab06)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r5)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x5c, r9, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0x48, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e3de3d7b4cd07ec3ee777de774fc7987cca41989"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xffffffff}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)
sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r7, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

9.215274375s ago: executing program 3 (id=1881):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = syz_open_dev$video4linux(&(0x7f0000000000), 0x3, 0x40)
ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r4, 0xc0845658, 0x0)
sendmsg(r3, &(0x7f0000000280)={0x0, 0x0, 0x0, 0xfffffffffffffeeb, 0x0, 0x52}, 0x4004800)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000003c0))
getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, 0x0)
syz_clone(0xba05d480, 0x0, 0x11, 0x0, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
getsockopt(r6, 0x6c9, 0x9, &(0x7f00000002c0)=""/247, &(0x7f0000000000)=0xf7)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r6, 0x0, r8, 0x0, 0x88000cc, 0x0)
fcntl$setpipe(r7, 0x407, 0x100004)
write$eventfd(r7, &(0x7f0000000240), 0xffffff14)
sendmsg$nl_route_sched(r5, 0x0, 0x2400c800)
r9 = inotify_init1(0x80800)
inotify_add_watch(r9, &(0x7f0000000180)='./control\x00', 0x64000ba6)
ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x40000, 0x19)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x64, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x30, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFLA_GRE_REMOTE={0x14, 0x7, @private2}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x64}}, 0x0)

7.614089038s ago: executing program 3 (id=1888):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
r1 = socket(0x11, 0x2, 0xfffffffe)
prlimit64(0x0, 0xf, &(0x7f00000003c0)={0xa, 0x73c}, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
write(r1, &(0x7f0000000040)="2600000022004701050007108980e8ff06006d20002b1f00c0", 0x19)
socket$nl_rdma(0x10, 0x3, 0x14)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x40, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000001f80), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f0000001fc0)={0x80, 0x1000, 0x6, 0x89f0, 0x4e, 0x7c})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timer_create(0x0, &(0x7f0000000340)={0x0, 0x11}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, 0x0, &(0x7f00000002c0))
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
modify_ldt$write(0x1, &(0x7f0000000380)={0x7, 0xffffffffffffffff, 0x2000, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x10)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
readv(r5, &(0x7f00000002c0)=[{&(0x7f0000001300)=""/244, 0xf4}, {&(0x7f00000000c0)=""/164, 0xa4}, {&(0x7f00000001c0)=""/180, 0xfffffffffffffed1}, {&(0x7f0000000280)=""/57, 0x39}], 0x4)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000300)={0x1, 0xffffff1e, 0xfffffffb, 0x4, 0x15, "001bf100eeff0000a20000090000000004eece"})
r6 = syz_open_pts(r5, 0x381001)
r7 = dup3(r2, r6, 0x0)
ioctl$TIOCSETD(r7, 0x5423, 0x0)
syz_clone(0x68000080, 0x0, 0x0, 0x0, 0x0, 0x0)

5.682958877s ago: executing program 3 (id=1896):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000680)={@map=0x1, 0x7, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x3, 0x0)
prlimit64(0x0, 0xd, &(0x7f0000000140)={0x3112, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000004300)=""/102400, 0x19000)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000001600)=ANY=[@ANYBLOB="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"/3262], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
r2 = openat$ptp0(0xffffffffffffff9c, 0x0, 0x481, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='task\x00')
fchdir(r4)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)={0x58, r5, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PEERS={0xc, 0x8, 0x0, 0x1, [{0x4}, {0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r6 = dup(r2)
ioctl$sock_inet_udp_SIOCINQ(r6, 0x541b, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
setsockopt$inet_int(r0, 0x0, 0x5, &(0x7f0000000040)=0x3, 0x4)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x81, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
unshare(0x6a040000)

5.498796194s ago: executing program 4 (id=1897):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
process_madvise(r4, &(0x7f00000015c0)=[{0x0, 0xb3c9de750fa141ee}, {&(0x7f0000001600)="7fe370522d6af6625215f1793293827ec1fbafd2669ec71d6ec4f18aaa71edae948611d70900e80e4116a3c114041430f19bd4f37e3c7238ed6e6d46979c2220bde96ffe55c88d2e697fd133e5733e1bbb159ba81a1e8e2fb2e51596", 0x1}, {&(0x7f0000001300)="0454c96113b0da138a30557b0c026d7c7ba28c5cf82e468ed91537d279936ddcf06ef737e0943554457a28db61aea38a154bf19b456388daf4df61c9febcd9b8a2b14929c6f097f4ff11e686a8a37381b9321ae19dd77be474863e35633dec7003568e91eab8e870a93a73b6dea475547a826b25021aecd727c201c9cea0bfba0122b00573c286b821d43d0b4e38ec90b7d08565bf81862bdf5115e75886e742c51e058d0752982da309d53a7c0d320fdbd38bfaa998ff981d15928f783b2728ecc210898685dfc72398e665b7892024c0ab0dcfe9d3fc", 0xd7}, {&(0x7f0000001400)="3e519bc4eb7b0a55b33bdb22cc7ca76aba33506ebcf89e67b16583e68404bbca008b995a73322a4cc7a3c436e94da49121c4f225ccd342612b46beb2f569a7a0423c0cf79f2d94c015b7b47bc11d5fe599214dbe7f92c8a14b6d254a8daa074ece2708f10e912eb72cb22efc14a0d0cc7cea79311ead3200c7aca0e920d83c8d7b92db", 0x83}, {&(0x7f00000017c0)="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", 0x1000}, {&(0x7f00000014c0)="6b553f4de4ed875c9fadc16852f54981bcd646a5262fc3900592194638585e3d2e79f074f796720749ddc1a2661dcb2471a47d963fb4d817dfdb5f52dc8ab642030c2c771646051d08609527b36368b80794b8cb63fe817c3379951a047c5026c2e99eae6dc05c6845529fb603666d78c0e1e5f7bca8f1d8584b7409ccaf0da598af64d7bdd2ae21ac4fb4e07dee96a92a8dddecee7ccbede2d0a7d4f2da90dc3eb4ae8895091f05db58a786519f6fc924a465cc46ae6a9b8705de0705b8bab4f10cddc7756c53eadf4aa6e2379fd85e9c5e7bfc", 0xd4}], 0x6, 0x9, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x23b, &(0x7f0000000380)={0x0, 0xce0a, 0x10100, 0x3, 0x370, 0x0, r2}, &(0x7f0000000180), &(0x7f0000000100))
io_pgetevents(0x0, 0x2, 0x2, &(0x7f00000000c0)=[{}, {}], 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
r6 = gettid()
timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000000380))
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r9=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x20, r8, 0x1, 0x4000, 0x0, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000050}, 0x0)
pipe2(&(0x7f0000001440)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff}, 0x0)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
r13 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x48)
r14 = bpf$PROG_LOAD(0x5, &(0x7f0000002380)={0x1f, 0x18, &(0x7f0000001540)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xc}}, @snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r13}, {}, {0x85, 0x0, 0x0, 0xb3}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r14}, 0xc)
splice(r12, 0x0, r11, 0x0, 0x3, 0x0)
fcntl$setpipe(r10, 0x4, 0xfffffffffffff000)

5.259796558s ago: executing program 1 (id=1899):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@volatile={0xa, 0x0, 0x0, 0x9, 0x3}]}}, &(0x7f0000000440)=""/212, 0x26, 0xd4, 0x1, 0x2, 0x10000}, 0x28)
cachestat(r2, &(0x7f0000000540)={0x0, 0x200}, &(0x7f0000000580), 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x6, 0x22, &(0x7f0000000880)=ANY=[@ANYBLOB="1811", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000b7080000000000007b8af8ff00000000b7080000020000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000000000", @ANYBLOB="0000000000000000b70500000800", @ANYRES32=r3, @ANYBLOB="00000000f7ffffff1848000007000000000000000000000018400000faffffff00", @ANYRES32=r3, @ANYBLOB="00000000000000001857000010000000000000000000000018250000", @ANYRES32, @ANYBLOB="00000000bf030000"], &(0x7f00000005c0)='syzkaller\x00', 0x101, 0x16, &(0x7f0000000600)=""/22, 0x41000, 0x10, '\x00', 0x0, 0x25, r2, 0x8, &(0x7f0000000780)={0xa, 0x1}, 0x8, 0x10, &(0x7f00000007c0)={0x4, 0x1, 0x7d, 0x10}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000800)=[{0x2, 0x1, 0xb, 0xc}, {0x4, 0x5, 0xc, 0x5}, {0x4, 0x2, 0x4, 0x9}, {0x3, 0x1, 0xf, 0x2}], 0x10, 0x5}, 0x94)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x1}, 0x94)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
clock_adjtime(0x0, &(0x7f0000000680)={0x19b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x10000, 0xe5, 0x4, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x4f, 0x0, 0x0, 0xf4b})
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000180)={0x1, 0x5}, 0x8)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x80000)
socket$inet6(0xa, 0x1, 0x100)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000000c0)="6880a642beaf34317f0dd3122a90ad0d2b", 0x11}], 0x1}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r5, &(0x7f0000000540)={0x0, 0xc027, &(0x7f0000000340)=[{&(0x7f00000000c0)="97eb000014006bcd9e", 0xeb97}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r2)
sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x1c, r6, 0x301, 0x0, 0xffffffff, {{0x11}, {@val={0x8, 0x3, r1}, @void}}}, 0x1c}}, 0x0)

5.049817123s ago: executing program 1 (id=1900):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x1)
removexattr(&(0x7f0000000200)='./cgroup\x00', &(0x7f0000000240)=@known='user.incfs.metadata\x00')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x19)
set_mempolicy(0x2, &(0x7f0000000080)=0x51e1, 0x3ff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r1, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_genetlink_get_family_id$gtp(&(0x7f00000000c0), r1)
recvmmsg(r3, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000001b80)=""/112, 0x70}], 0x1}}], 0x1, 0x700, 0x0)
sendfile(r2, r1, 0x0, 0x578410eb)
process_vm_readv(0x0, &(0x7f0000008400), 0x0, &(0x7f0000008640), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socket$kcm(0x29, 0x5, 0x0)
pipe(&(0x7f0000000040))
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r4, 0x40045564, 0x12)
ioctl$UI_DEV_SETUP(r4, 0x405c5503, &(0x7f0000000280)={{0xfffe, 0x60}, 'syz0\x00', 0x19})
ioctl$UI_DEV_CREATE(r4, 0x5501)
write$uinput_user_dev(r4, &(0x7f0000000e80)={'syz0\x00', {0x3f, 0x9, 0x8, 0xe}, 0x200012, [0x3, 0x8, 0x76f, 0x3, 0x8001, 0x7, 0xf, 0xfffffffd, 0x3, 0xc, 0x9, 0x1, 0x8, 0x9, 0xab47, 0xb0c, 0x8, 0x1417d221, 0x7, 0x7b, 0x5, 0xbc2f, 0x4, 0xfffffffe, 0xfffffffe, 0x3, 0xa, 0x12, 0x8, 0xd2f1, 0x7, 0x7, 0x3, 0x3, 0x3, 0x2, 0x1ff, 0x47f2, 0x80000000, 0x4, 0xfffffffd, 0x7, 0x5, 0x29e, 0x2, 0x2, 0x9, 0xdf26, 0x1, 0x40, 0x4, 0x8, 0x80, 0x3, 0x9, 0x1a, 0x17ca, 0x5, 0x5, 0x9, 0x8000, 0x80000000, 0xcd, 0xfff], [0x80000000, 0x227, 0x1ff, 0x7, 0x8, 0x5, 0x81, 0x45, 0xc322, 0x6000, 0x7, 0x2, 0xf0, 0x1, 0x4, 0x8001, 0x801, 0x7, 0xa, 0xb, 0x9e, 0xd9, 0x0, 0x1, 0x2, 0xa, 0x0, 0x5, 0x2, 0x101, 0xfff, 0xfff, 0x1, 0x403, 0x5, 0x0, 0x1020, 0x5, 0x10, 0x4, 0x7fffffff, 0x3ea1, 0xffbffffa, 0x2, 0xfffffff9, 0x1, 0x6, 0x3fc, 0x2243ccfc, 0x8455, 0x0, 0xc2, 0xffffffa8, 0xdc9b, 0x0, 0x1553e2a8, 0xff, 0x80000005, 0x1, 0x4, 0x2, 0xd5c, 0x6, 0x8], [0x1, 0x7fff, 0x1, 0x0, 0x9, 0x3, 0x8, 0x7ffffffc, 0x2, 0x7, 0x6, 0x0, 0x4, 0x440, 0x7, 0x2, 0x7, 0x8, 0xe2, 0x80000001, 0x7fffffff, 0x7, 0x401, 0x4, 0xc7, 0x4, 0x2, 0x1, 0x2, 0x80000001, 0x1, 0x10001, 0x4f68, 0x5, 0x10001, 0x5, 0xc, 0x3, 0x10003, 0x7, 0x9, 0x1, 0xc0c, 0xcd, 0x9, 0x2, 0x401, 0x0, 0xd, 0x9, 0x0, 0x10, 0x7ff, 0x0, 0x7, 0x8a, 0x5, 0x2, 0xf53e, 0x2, 0x5, 0x7f, 0xf, 0x3], [0xc51, 0x2, 0x8, 0x1, 0x9, 0x3, 0x7fff, 0x10000, 0x1, 0x406, 0x200, 0x40, 0x5, 0x40000000, 0x9, 0x8, 0x3, 0x10, 0x6, 0xd2, 0x8, 0x7, 0x400, 0x4, 0xb, 0x9, 0x1, 0x9, 0x0, 0x2, 0x1, 0x7fffffff, 0x6, 0x2, 0x3, 0xfff, 0xe79, 0x2, 0xe0, 0x2, 0x3ff, 0xfffffffa, 0x6, 0xa, 0x100, 0x9, 0x3ff, 0x8e6, 0x3, 0x200, 0x9, 0x2, 0x9, 0x0, 0xb7, 0xc, 0x0, 0x9, 0x4, 0x4, 0x3, 0xcd87, 0x8001, 0x9]}, 0x45c)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={0x0, &(0x7f0000000380)="c75f16175bb69c4013d0479f629c0ba46ff8ac8dc98098b878545ed70bb5bc1bacf36b28b91a23b1365fa8e67059f7c1fc1ade5eb855207f7066f96bdafb14234e8d9afeee1f3fd22e4b4fe5a61f4afde21805ae5206b87bb22d882df14583a3"}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

4.62210084s ago: executing program 4 (id=1901):
socket$nl_generic(0x10, 0x3, 0x10)
mremap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000, 0x7, &(0x7f0000ffb000/0x1000)=nil)
r0 = syz_io_uring_setup(0x45, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x20, &(0x7f0000000380)={0x0}, 0x1)
r1 = socket(0xa, 0x5, 0x0)
eventfd2(0xd, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r2 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x8916, &(0x7f0000000000))
socket$nl_route(0x10, 0x3, 0x0)
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1e, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000340)=[{0x20, 0xc, 0x77, 0xfffff034}, {0x6, 0x0, 0x0, 0x2}]}, 0x8)
sendmmsg(r6, &(0x7f0000001c00), 0x400000000000159, 0x40840)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x4e24, @empty}], 0x10)
sendmsg$inet_sctp(r1, &(0x7f0000001640)={&(0x7f0000000080)=@in={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000040)=')', 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="100000008400000007000000ac14143b1b2526d6f649a69ed349f69108be2eca76a430f7"], 0x10, 0x8000}, 0x2800c051)

4.01456957s ago: executing program 0 (id=1902):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000200)="6fb355bb7c1e85390de40d0df22a", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
socket$rds(0x15, 0x5, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r2)
r3 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r3, 0x84, 0x17, &(0x7f0000000000), 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r4)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
r6 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, 0x0, 0x0)
sendmsg$NFT_BATCH(r7, 0x0, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r6, 0x800448d2, &(0x7f0000000000)={0x0, &(0x7f0000000300)})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x4c, r9, 0x7, 0x2, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x20, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x1c, 0x3, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x32}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '@{/.-\x00'}]}]}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc0}, 0x8040)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x1)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'veth0_to_bridge\x00', @multicast})

3.902901476s ago: executing program 1 (id=1903):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond0\x00'})
r1 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000080)={r1})
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000001500), 0xffffffffffffffff)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000000380)=ANY=[@ANYBLOB="446d40285d47e6bcc8bc2b841b360f17a9c9236e7ac124337393c50d9dbb64e9368be4ee1fa43e5781b9d39f16ea98c049aafc96049c022160adefb0c2d051592286d9b5356088977b4cbc93d8438347e757d4b5e3c5a694e2a2ef9f065b7f1b06109621f7486a243d8e39a3a780b2c44abdeed7f14a1732d739155a7b", @ANYRES16=r2, @ANYBLOB="00010000000000ff"], 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x40000)
socket(0x29, 0x5, 0x969)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0xfffc, @broadcast}, 0x2}}, 0x2e)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="180000006800013ece9381e7a01c91c9b2642b4f808d54bb"], 0x18}, 0x1, 0x0, 0x0, 0x8810}, 0x40040d0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x301a01, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000640)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="796104f5f94970d957000000fddbf471559f26fef7b776bb3ab69ac5ad1bf8b28d7a5859e721ddfdc0226f17d1c43604c1083343cac2d282d8bd0ec036245eb2b8b7029eaffda465859f3370d1b0353f769231ec8f1e22b98ba7c590007f1534489a0c7cb63dea27f7e3e1a6e209f2f07839635234e9ade5d2bd1102ff3f514df6df4edfa86f9314cc87a15586b26c11e48447f8df8acbe7228df66c1f4da12ddb61e3"], 0x14}}, 0x40000)
syz_emit_ethernet(0xf8, &(0x7f0000000780)=ANY=[], 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r6, 0xffffffffffffffff, 0x0)

3.752912251s ago: executing program 0 (id=1904):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = syz_open_dev$video4linux(&(0x7f0000000000), 0x3, 0x40)
ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r4, 0xc0845658, 0x0)
sendmsg(r3, &(0x7f0000000280)={0x0, 0x0, 0x0, 0xfffffffffffffeeb, 0x0, 0x52}, 0x4004800)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000003c0))
getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, 0x0)
syz_clone(0xba05d480, 0x0, 0x11, 0x0, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
getsockopt(r6, 0x6c9, 0x9, &(0x7f00000002c0)=""/247, &(0x7f0000000000)=0xf7)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r6, 0x0, r8, 0x0, 0x88000cc, 0x0)
fcntl$setpipe(r7, 0x407, 0x100004)
write$eventfd(r7, &(0x7f0000000240), 0xffffff14)
sendmsg$nl_route_sched(r5, 0x0, 0x2400c800)
r9 = inotify_init1(0x80800)
inotify_add_watch(r9, &(0x7f0000000180)='./control\x00', 0x64000ba6)
ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x40000, 0x19)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x64, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x30, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFLA_GRE_REMOTE={0x14, 0x7, @private2}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x64}}, 0x0)

3.672357113s ago: executing program 4 (id=1905):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond0\x00'})
r1 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000080)={r1})
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000001500), 0xffffffffffffffff)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000000380)=ANY=[@ANYBLOB="446d40285d47e6bcc8bc2b841b360f17a9c9236e7ac124337393c50d9dbb64e9368be4ee1fa43e5781b9d39f16ea98c049aafc96049c022160adefb0c2d051592286d9b5356088977b4cbc93d8438347e757d4b5e3c5a694e2a2ef9f065b7f1b06109621f7486a243d8e39a3a780b2c44abdeed7f14a1732d739155a7b", @ANYRES16=r2, @ANYBLOB="00010000000000ff"], 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x40000)
socket(0x29, 0x5, 0x969)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0xfffc, @broadcast}, 0x2}}, 0x2e)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="180000006800013ece9381e7a01c91c9b2642b4f808d54bb"], 0x18}, 0x1, 0x0, 0x0, 0x8810}, 0x40040d0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x301a01, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000640)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="796104f5f94970d957000000fddbf471559f26fef7b776bb3ab69ac5ad1bf8b28d7a5859e721ddfdc0226f17d1c43604c1083343cac2d282d8bd0ec036245eb2b8b7029eaffda465859f3370d1b0353f769231ec8f1e22b98ba7c590007f1534489a0c7cb63dea27f7e3e1a6e209f2f07839635234e9ade5d2bd1102ff3f514df6df4edfa86f9314cc87a15586b26c11e48447f8df8acbe7228df66c1f4da12ddb61e3"], 0x14}}, 0x40000)
syz_emit_ethernet(0xf8, &(0x7f0000000780)=ANY=[], 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r6, 0xffffffffffffffff, 0x0)

3.173064336s ago: executing program 4 (id=1906):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000001980)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e78, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x80}}]}, {0x2}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x141)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000300)='./file0\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmsg(r5, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x7, &(0x7f0000000000), 0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000100), 0x4)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x30)
keyctl$clear(0x7, 0xfffffffffffffffb)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[], 0x134}}, 0x0)
lseek(r7, 0xfffffffc, 0x1)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {}, [{0x54, 0x1, [@m_ife={0x50, 0x1, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0xffffffff, 0x0, 0x0, 0xa}}}, @TCA_IFE_METALST={0x8, 0x6, [@IFE_META_TCINDEX={0x4, 0x2, @void}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

2.960691607s ago: executing program 1 (id=1907):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, 0x0, &(0x7f00000000c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
setsockopt$CAN_RAW_ERR_FILTER(0xffffffffffffffff, 0x65, 0x2, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
pread64(0xffffffffffffffff, &(0x7f0000001440)=""/4084, 0xff4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0)="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", 0xfc)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000280)=0x2)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r4, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)

2.835043988s ago: executing program 0 (id=1908):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010000304000000000000000000007400", @ANYRES32], 0x44}, 0x1, 0x0, 0x0, 0x40800}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
r0 = socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f00000001c0)=<r3=>0x0)
sched_setattr(r3, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
symlink(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000000)='./file0\x00')
rename(&(0x7f0000000580)='./file0\x00', &(0x7f0000000780)='./file2\x00')
r4 = add_key$user(&(0x7f0000000040), 0x0, &(0x7f0000000100)='\x00', 0x1, 0xfffffffffffffffb)
pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r5, 0x5760, 0x14)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TCFLSH(r6, 0x400455c8, 0x4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x8004)
rseq(&(0x7f0000000240)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x4, 0x0)
io_setup(0x4, &(0x7f00000000c0)=<r7=>0x0)
io_destroy(r7)
ioctl$TIOCVHANGUP(r6, 0x5437, 0x0)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, &(0x7f0000000080)={{&(0x7f0000a4d000/0x1000)=nil, 0x20a4d000}})
keyctl$revoke(0x3, r4)

2.081534201s ago: executing program 4 (id=1909):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, 0x0, &(0x7f00000000c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
setsockopt$CAN_RAW_ERR_FILTER(0xffffffffffffffff, 0x65, 0x2, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
pread64(0xffffffffffffffff, &(0x7f0000001440)=""/4084, 0xff4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000280)=0x2)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, 0x0, 0x0)
sendmmsg$inet(r4, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000180)={{0x2, 0x4e23, @empty}, {0x20000010304, @local}, 0x4, {0x2, 0x4e20, @rand_addr=0x64010102}})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)

1.985097826s ago: executing program 1 (id=1910):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x34, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x8, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x4}]}]}], {0x14, 0x10}}, 0x7c}}, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x24fd, &(0x7f0000000180)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000440)=@ethtool_channels={0x3d, 0xffffffff, 0x0, 0x0, 0x200004, 0x2, 0xff}})
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}})
r7 = openat$rdma_cm(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
r8 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pwritev(r8, &(0x7f0000000240)=[{&(0x7f0000000140)="f9", 0x1}], 0x1, 0x3, 0xd4bd)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r7, &(0x7f0000000300)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0xc, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @private=0xa010100}, @in6={0xa, 0x4e21, 0x9, @mcast2, 0x2}}}, 0x118)
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x800})
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r9, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848360000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)

1.741350116s ago: executing program 0 (id=1911):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
semctl$IPC_STAT(0x0, 0x0, 0x2, 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file5\x00', 0x2)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f00000000c0)={0x1d, r2}, 0x18)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xfc, {"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", 0x1000}}, 0x1006)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="5d5800200000000008003a80040007001400030074756e6c30"], 0x3c}}, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e24, @multicast1}, 0x10)
writev(r5, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
r6 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
pread64(r6, &(0x7f00000001c0)=""/142, 0x8e, 0x6)

944.840823ms ago: executing program 4 (id=1912):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x18, 0x0, &(0x7f00000000c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, 0x0, 0x0)
setsockopt$CAN_RAW_ERR_FILTER(0xffffffffffffffff, 0x65, 0x2, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
pread64(0xffffffffffffffff, &(0x7f0000001440)=""/4084, 0xff4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000200)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
r3 = socket(0x8000000010, 0x2, 0x0)
write(r3, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000280)=0x2)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r4, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r5, 0x8955, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)

906.917511ms ago: executing program 0 (id=1913):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_virt_wifi\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0xfffffffffffffe1e, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x8)
r3 = socket(0x2, 0x80805, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$evdev(0x0, 0x40800400, 0x2b6a41)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x3bf, 0x3, 0x14a}})
ioctl$TCSETS2(r5, 0x402c542b, &(0x7f0000000080)={0xfffe7527, 0x10000, 0xefc9, 0x7f9, 0xb2, "20ab9809006ea4a7446c180000cd681ec267a0", 0x7, 0x200008})
ioctl$TIOCL_PASTESEL(r5, 0x541c, &(0x7f0000000000))
syz_io_uring_setup(0x64ee, &(0x7f0000000100)={0x0, 0xdf0d, 0x8000, 0x2, 0x21a}, &(0x7f0000000400), &(0x7f00000003c0))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0xfffffffffffffdd6, &(0x7f00000016c0)='(/\x00`\xa8:\x11\xf9\xe5\xfa\xda\x92\xac\x04F\xa5S\xc9\xbd\x1b\xb5(\xa6\x0f\xc2\x92\x88\xc3!,d\xa8\xeaN\xfb[\x06\xc8\xe1\x84?\xc0\x1b\x11\x05\x00\x00\x00\x02^2\xbc\xf4Z>G\xee\xb9K\xa9V\xf3\xef|f\x05\\Yg\x82\xea\xe1%\x94v\xbf\xff\xf7\xa4\x9d{\xd6\xbe\x9c\x93Y\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x02\x99\xe1\xa6\xcc\x19c\xd7`\x17t\x8a.Z\x140F\xb2\x8b\xc9\xdd\x00'/137)
io_uring_setup(0x40b8, &(0x7f0000000000)={0x0, 0x4a1f, 0x800, 0x0, 0x385})

331.149155ms ago: executing program 1 (id=1914):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond0\x00'})
r1 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000080)={r1})
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000001500), 0xffffffffffffffff)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000001640)={0x0, 0x0, &(0x7f0000001600)={&(0x7f0000000380)=ANY=[@ANYBLOB="446d40285d47e6bcc8bc2b841b360f17a9c9236e7ac124337393c50d9dbb64e9368be4ee1fa43e5781b9d39f16ea98c049aafc96049c022160adefb0c2d051592286d9b5356088977b4cbc93d8438347e757d4b5e3c5a694e2a2ef9f065b7f1b06109621f7486a243d8e39a3a780b2c44abdeed7f14a1732d739155a7b", @ANYRES16=r2, @ANYBLOB="00010000000000ff"], 0x14}, 0x1, 0x0, 0x0, 0x8044}, 0x40000)
socket(0x29, 0x5, 0x969)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0xfffc, @broadcast}, 0x2}}, 0x2e)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="180000006800013ece9381e7a01c91c9b2642b4f808d54bb"], 0x18}, 0x1, 0x0, 0x0, 0x8810}, 0x40040d0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240), 0x301a01, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000640)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="796104f5f94970d957000000fddbf471559f26fef7b776bb3ab69ac5ad1bf8b28d7a5859e721ddfdc0226f17d1c43604c1083343cac2d282d8bd0ec036245eb2b8b7029eaffda465859f3370d1b0353f769231ec8f1e22b98ba7c590007f1534489a0c7cb63dea27f7e3e1a6e209f2f07839635234e9ade5d2bd1102ff3f514df6df4edfa86f9314cc87a15586b26c11e48447f8df8acbe7228df66c1f4da12ddb61e3"], 0x14}}, 0x40000)
syz_emit_ethernet(0xf8, &(0x7f0000000780)=ANY=[], 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r6, 0xffffffffffffffff, 0x0)

0s ago: executing program 0 (id=1915):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@volatile={0xa, 0x0, 0x0, 0x9, 0x3}]}}, &(0x7f0000000440)=""/212, 0x26, 0xd4, 0x1, 0x2, 0x10000}, 0x28)
cachestat(r2, &(0x7f0000000540)={0x0, 0x200}, &(0x7f0000000580), 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x6, 0x22, &(0x7f0000000880)=ANY=[@ANYBLOB="1811", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000b7080000000000007b8af8ff00000000b7080000020000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000000000", @ANYBLOB="0000000000000000b70500000800", @ANYRES32=r3, @ANYBLOB="00000000f7ffffff1848000007000000000000000000000018400000faffffff00", @ANYRES32=r3, @ANYBLOB="00000000000000001857000010000000000000000000000018250000", @ANYRES32, @ANYBLOB="00000000bf030000"], &(0x7f00000005c0)='syzkaller\x00', 0x101, 0x16, &(0x7f0000000600)=""/22, 0x41000, 0x10, '\x00', 0x0, 0x25, r2, 0x8, &(0x7f0000000780)={0xa, 0x1}, 0x8, 0x10, &(0x7f00000007c0)={0x4, 0x1, 0x7d, 0x10}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000800)=[{0x2, 0x1, 0xb, 0xc}, {0x4, 0x5, 0xc, 0x5}, {0x4, 0x2, 0x4, 0x9}, {0x3, 0x1, 0xf, 0x2}], 0x10, 0x5}, 0x94)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00'}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
clock_adjtime(0x0, &(0x7f0000000680)={0x19b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x10000, 0xe5, 0x4, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x4f, 0x0, 0x0, 0xf4b})
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000180)={0x1, 0x5}, 0x8)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x80000)
socket$inet6(0xa, 0x1, 0x100)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000000c0)="6880a642beaf34317f0dd3122a90ad0d2b", 0x11}], 0x1}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r5, &(0x7f0000000540)={0x0, 0xc027, &(0x7f0000000340)=[{&(0x7f00000000c0)="97eb000014006bcd9e", 0xeb97}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r2)
sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x1c, r6, 0x301, 0x0, 0xffffffff, {{0x11}, {@val={0x8, 0x3, r1}, @void}}}, 0x1c}}, 0x0)

kernel console output (not intermixed with test programs):

23][   T59] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  323.011901][   T59] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  323.015794][   T59] usb 6-1: config 0 interface 0 has no altsetting 0
[  323.020063][   T59] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  323.023486][T10565] vhci_hcd: connection closed
[  323.023762][   T59] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  323.024655][   T61] vhci_hcd: stop threads
[  323.025533][   T59] usb 6-1: Product: syz
[  323.029090][   T61] vhci_hcd: release socket
[  323.030591][   T59] usb 6-1: Manufacturer: syz
[  323.032467][   T61] vhci_hcd: disconnect device
[  323.033744][   T59] usb 6-1: SerialNumber: syz
[  323.040187][   T59] usb 6-1: config 0 descriptor??
[  323.046617][   T59] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[  323.304984][    C2] usb 6-1: yurex_control_callback - control failed: -71
[  323.305160][ T5990] usb 6-1: USB disconnect, device number 7
[  323.313945][ T5990] yurex 6-1:0.0: USB YUREX #0 now disconnected
[  324.626126][ T2300] usb 38-1: device descriptor read/8, error -110
[  324.916000][T10590] lo speed is unknown, defaulting to 1000
[  325.080336][ T2300] usb usb38-port1: attempt power cycle
[  325.146096][ T6041] vhci_hcd: vhci_device speed not set
[  325.479699][ T5983] Bluetooth: hci3: unexpected event for opcode 0x2024
[  326.516257][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.518870][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.638228][ T2300] usb usb38-port1: unable to enumerate USB device
[  327.300615][T10617] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.383636][T10617] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.389109][T10618] ufs: You didn't specify the type of your ufs filesystem
[  327.389109][T10618] 
[  327.389109][T10618] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  327.389109][T10618] 
[  327.389109][T10618] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  327.401540][T10618] ufs: ufstype=old is supported read-only
[  327.404139][T10618] I/O error, dev loop7, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  327.460963][T10617] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.550098][T10617] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.792291][   T61] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  327.875801][   T12] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  327.888504][   T12] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  327.906106][   T12] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  328.042356][T10627] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  328.044496][T10627] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  328.094295][T10627] vhci_hcd vhci_hcd.0: Device attached
[  328.503864][ T2300] usb 38-1: SetAddress Request (14) to port 0
[  328.512376][ T2300] usb 38-1: new SuperSpeed USB device number 14 using vhci_hcd
[  328.546125][ T5983] Bluetooth: hci2: command 0x0406 tx timeout
[  328.625790][T10628] vhci_hcd: connection reset by peer
[  328.629673][   T61] vhci_hcd: stop threads
[  328.631281][   T61] vhci_hcd: release socket
[  328.632893][   T61] vhci_hcd: disconnect device
[  329.624219][   T59] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  330.135997][T10669] random: crng reseeded on system resumption
[  331.419959][T10687] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  332.413533][T10697] netlink: 'syz.3.725': attribute type 12 has an invalid length.
[  332.623487][T10698] ufs: You didn't specify the type of your ufs filesystem
[  332.623487][T10698] 
[  332.623487][T10698] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  332.623487][T10698] 
[  332.623487][T10698] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  332.635746][T10698] ufs: ufstype=old is supported read-only
[  332.638374][T10698] I/O error, dev loop1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  333.586003][ T2300] usb 38-1: device descriptor read/8, error -110
[  334.046992][ T2300] usb usb38-port1: attempt power cycle
[  334.606912][ T2300] usb usb38-port1: unable to enumerate USB device
[  340.193915][T10728] siw: device registration error -23
[  340.344784][T10729] netlink: 8 bytes leftover after parsing attributes in process `syz.4.731'.
[  340.344814][   T40] audit: type=1326 audit(1757200273.609:2730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.359231][   T40] audit: type=1326 audit(1757200273.609:2731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.369152][   T40] audit: type=1326 audit(1757200273.619:2732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.379557][   T40] audit: type=1326 audit(1757200273.619:2733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.387753][   T40] audit: type=1326 audit(1757200273.619:2734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.398928][   T40] audit: type=1326 audit(1757200273.619:2735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.408318][   T40] audit: type=1326 audit(1757200273.619:2736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.418118][   T40] audit: type=1326 audit(1757200273.619:2737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.427280][   T40] audit: type=1326 audit(1757200273.619:2738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.449309][   T40] audit: type=1326 audit(1757200273.619:2739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10723 comm="syz.4.731" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  340.751599][T10734] lo speed is unknown, defaulting to 1000
[  341.004633][T10742] overlayfs: failed to clone upperpath
[  341.986724][T10759] ufs: You didn't specify the type of your ufs filesystem
[  341.986724][T10759] 
[  341.986724][T10759] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  341.986724][T10759] 
[  341.986724][T10759] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  341.999161][T10759] ufs: ufstype=old is supported read-only
[  342.002005][T10759] I/O error, dev loop9, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  342.280290][T10766] netlink: 'syz.0.738': attribute type 12 has an invalid length.
[  342.391032][T10768] random: crng reseeded on system resumption
[  344.312097][T10789] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9)
[  344.314587][T10789] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  344.325673][T10789] vhci_hcd vhci_hcd.0: Device attached
[  344.526499][   T24] vhci_hcd: vhci_device speed not set
[  344.773897][   T24] usb 43-1: new high-speed USB device number 2 using vhci_hcd
[  345.048988][T10792] vhci_hcd: connection reset by peer
[  345.050954][ T1148] vhci_hcd: stop threads
[  345.052190][ T1148] vhci_hcd: release socket
[  345.053529][ T1148] vhci_hcd: disconnect device
[  346.076758][T10816] netlink: 4 bytes leftover after parsing attributes in process `syz.4.758'.
[  347.558213][T10844] random: crng reseeded on system resumption
[  347.577749][T10844] netlink: 32 bytes leftover after parsing attributes in process `syz.3.754'.
[  347.580689][T10844] netlink: 32 bytes leftover after parsing attributes in process `syz.3.754'.
[  347.656043][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  347.696065][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  347.696080][   T40] audit: type=1804 audit(1757200280.809:2753): pid=10835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.753" name="file0" dev="tmpfs" ino=1064 res=1 errno=0
[  347.915468][T10844] netlink: 32 bytes leftover after parsing attributes in process `syz.3.754'.
[  347.915536][T10844] netlink: 32 bytes leftover after parsing attributes in process `syz.3.754'.
[  347.995581][T10844] netlink: 32 bytes leftover after parsing attributes in process `syz.3.754'.
[  347.995623][T10844] netlink: 32 bytes leftover after parsing attributes in process `syz.3.754'.
[  348.978531][ T5983] Bluetooth: hci2: unexpected event 0x14 length: 20 > 6
[  349.118153][T10861] ufs: You didn't specify the type of your ufs filesystem
[  349.118153][T10861] 
[  349.118153][T10861] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  349.118153][T10861] 
[  349.118153][T10861] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  349.130265][T10861] ufs: ufstype=old is supported read-only
[  349.132641][T10861] I/O error, dev loop3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  349.591183][T10866] siw: device registration error -23
[  349.670632][T10870] netlink: 'syz.3.760': attribute type 12 has an invalid length.
[  349.906140][   T24] vhci_hcd: vhci_device speed not set
[  350.075574][T10882] ufs: You didn't specify the type of your ufs filesystem
[  350.075574][T10882] 
[  350.075574][T10882] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  350.075574][T10882] 
[  350.075574][T10882] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  350.085323][T10882] ufs: ufstype=old is supported read-only
[  350.087529][T10882] I/O error, dev loop9, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  350.259036][   T40] audit: type=1804 audit(1757200283.539:2754): pid=10884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.764" name="/newroot/179/file0/file0" dev="9p" ino=35913869 res=1 errno=0
[  350.546252][T10886] netlink: 4 bytes leftover after parsing attributes in process `syz.3.765'.
[  350.951757][T10892] tmpfs: Unknown parameter 'hash'
[  351.589084][T10903] pim6reg: entered allmulticast mode
[  351.600086][T10903] pim6reg: left allmulticast mode
[  351.603560][   T40] audit: type=1326 audit(1757200284.859:2755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.4.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  351.610540][   T40] audit: type=1326 audit(1757200284.859:2756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.4.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  351.622441][   T40] audit: type=1326 audit(1757200284.859:2757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.4.767" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf707e579 code=0x7ffc0000
[  351.659998][   T40] audit: type=1326 audit(1757200284.859:2758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.4.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  351.677011][   T40] audit: type=1326 audit(1757200284.859:2759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.4.767" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf707e579 code=0x7ffc0000
[  351.694179][   T40] audit: type=1326 audit(1757200284.859:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.4.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  351.745999][   T40] audit: type=1326 audit(1757200284.859:2761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.4.767" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf707e579 code=0x7ffc0000
[  351.748765][T10910] random: crng reseeded on system resumption
[  351.759827][   T40] audit: type=1326 audit(1757200284.859:2762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10898 comm="syz.4.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  353.661875][T10939] ufs: You didn't specify the type of your ufs filesystem
[  353.661875][T10939] 
[  353.661875][T10939] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  353.661875][T10939] 
[  353.661875][T10939] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  353.671316][T10939] ufs: ufstype=old is supported read-only
[  353.673211][T10939] I/O error, dev loop3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  354.434474][T10953] ufs: You didn't specify the type of your ufs filesystem
[  354.434474][T10953] 
[  354.434474][T10953] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  354.434474][T10953] 
[  354.434474][T10953] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  354.444004][T10953] ufs: ufstype=old is supported read-only
[  354.445967][T10953] I/O error, dev loop9, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  354.527115][T10954] ufs: You didn't specify the type of your ufs filesystem
[  354.527115][T10954] 
[  354.527115][T10954] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  354.527115][T10954] 
[  354.527115][T10954] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  354.536422][T10954] ufs: ufstype=old is supported read-only
[  354.538310][T10954] I/O error, dev loop1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  356.068302][T10972] netlink: 4 bytes leftover after parsing attributes in process `syz.1.782'.
[  357.688557][T10998] netlink: 'syz.4.788': attribute type 12 has an invalid length.
[  357.793790][T11001] ufs: You didn't specify the type of your ufs filesystem
[  357.793790][T11001] 
[  357.793790][T11001] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  357.793790][T11001] 
[  357.793790][T11001] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  357.803332][T11001] ufs: ufstype=old is supported read-only
[  357.805122][T11001] I/O error, dev loop7, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  358.570245][T11014] syz.3.790 (11014): drop_caches: 2
[  358.574900][T11014] syz.3.790 (11014): drop_caches: 2
[  361.047122][T11040] random: crng reseeded on system resumption
[  361.289177][T11050] ufs: You didn't specify the type of your ufs filesystem
[  361.289177][T11050] 
[  361.289177][T11050] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  361.289177][T11050] 
[  361.289177][T11050] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  361.298811][T11050] ufs: ufstype=old is supported read-only
[  361.301070][T11050] I/O error, dev loop1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  362.232423][T11062] netlink: 'syz.4.800': attribute type 12 has an invalid length.
[  363.434686][   T24] IPVS: starting estimator thread 0...
[  363.526060][T11078] IPVS: using max 43 ests per chain, 103200 per kthread
[  363.940590][T11084] netlink: 'syz.3.807': attribute type 12 has an invalid length.
[  364.148140][T11085] netlink: 4 bytes leftover after parsing attributes in process `syz.0.802'.
[  364.458297][T11091] lo speed is unknown, defaulting to 1000
[  364.820832][T11104] ufs: You didn't specify the type of your ufs filesystem
[  364.820832][T11104] 
[  364.820832][T11104] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  364.820832][T11104] 
[  364.820832][T11104] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  364.833386][T11104] ufs: ufstype=old is supported read-only
[  364.836095][T11104] I/O error, dev loop1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  364.867291][T11105] netlink: 'syz.3.811': attribute type 12 has an invalid length.
[  365.778446][T11116] ufs: You didn't specify the type of your ufs filesystem
[  365.778446][T11116] 
[  365.778446][T11116] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  365.778446][T11116] 
[  365.778446][T11116] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  365.787984][T11116] ufs: ufstype=old is supported read-only
[  365.790281][T11116] I/O error, dev loop9, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  367.497789][T11138] netlink: 'syz.1.819': attribute type 12 has an invalid length.
[  367.798115][T11144] lo speed is unknown, defaulting to 1000
[  368.356165][T11156] ufs: You didn't specify the type of your ufs filesystem
[  368.356165][T11156] 
[  368.356165][T11156] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  368.356165][T11156] 
[  368.356165][T11156] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  368.366092][T11156] ufs: ufstype=old is supported read-only
[  368.368311][T11156] I/O error, dev loop1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  369.165562][T11165] overlayfs: failed to clone upperpath
[  370.098008][T11175] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  371.802797][T11198] netlink: 4 bytes leftover after parsing attributes in process `syz.1.834'.
[  371.993457][T11206] netlink: 'syz.3.835': attribute type 12 has an invalid length.
[  372.572653][T11217] ufs: You didn't specify the type of your ufs filesystem
[  372.572653][T11217] 
[  372.572653][T11217] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  372.572653][T11217] 
[  372.572653][T11217] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  372.582193][T11217] ufs: ufstype=old is supported read-only
[  372.584531][T11217] I/O error, dev loop3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  372.933479][T11219] pim6reg: entered allmulticast mode
[  373.312761][T11229] 9pnet_virtio: no channels available for device syz
[  373.622321][T11224] netlink: 4 bytes leftover after parsing attributes in process `syz.4.838'.
[  373.625412][T11224] bridge_slave_1: left allmulticast mode
[  373.627592][T11224] bridge_slave_1: left promiscuous mode
[  373.629756][T11224] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.639339][T11224] bridge_slave_0: left allmulticast mode
[  373.641295][T11224] bridge_slave_0: left promiscuous mode
[  373.643644][T11224] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.437318][T11246] netlink: 'syz.3.843': attribute type 12 has an invalid length.
[  375.742024][T11260] syz.0.848 (11260): drop_caches: 2
[  375.744448][T11260] syz.0.848 (11260): drop_caches: 2
[  375.779482][T11264] netlink: 120 bytes leftover after parsing attributes in process `syz.4.851'.
[  376.521099][T11276] netlink: 'syz.0.853': attribute type 12 has an invalid length.
[  377.075052][T11283] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  377.361354][T11291] netlink: 'syz.0.857': attribute type 12 has an invalid length.
[  377.430353][T11292] netlink: 'syz.4.856': attribute type 12 has an invalid length.
[  378.877313][T11313] random: crng reseeded on system resumption
[  379.824752][T11323] netlink: 4 bytes leftover after parsing attributes in process `syz.3.863'.
[  380.288187][   T40] kauditd_printk_skb: 19 callbacks suppressed
[  380.288201][   T40] audit: type=1804 audit(1757200313.559:2782): pid=11332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.864" name="/newroot/206/file0/file0" dev="9p" ino=35913869 res=1 errno=0
[  380.692850][T11335] netlink: 'syz.3.866': attribute type 12 has an invalid length.
[  381.248809][T11348] 9pnet_virtio: no channels available for device syz
[  382.752142][T11370] syz.0.874 (11370): drop_caches: 2
[  382.755302][T11370] syz.0.874 (11370): drop_caches: 2
[  383.268180][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  383.270204][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  383.511498][T11385] netlink: 'syz.1.877': attribute type 12 has an invalid length.
[  383.528745][T11379] lo speed is unknown, defaulting to 1000
[  383.605673][T11390] netlink: 'syz.0.878': attribute type 1 has an invalid length.
[  383.661168][T11390] 8021q: adding VLAN 0 to HW filter on device bond1
[  383.664200][T11393] netlink: 4 bytes leftover after parsing attributes in process `syz.0.878'.
[  383.810327][T11393] bond1 (unregistering): Released all slaves
[  383.996064][   T60] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  384.148648][   T60] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  384.152727][   T60] usb 5-1: config 0 interface 0 has no altsetting 0
[  384.157827][   T60] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  384.161559][   T60] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  384.164871][   T60] usb 5-1: Product: syz
[  384.167150][   T60] usb 5-1: Manufacturer: syz
[  384.169072][   T60] usb 5-1: SerialNumber: syz
[  384.173117][   T60] usb 5-1: config 0 descriptor??
[  384.184885][   T60] usb 5-1: selecting invalid altsetting 0
[  385.590875][T11415] netlink: 4 bytes leftover after parsing attributes in process `syz.4.880'.
[  385.620229][T11416] netlink: 'syz.1.882': attribute type 12 has an invalid length.
[  385.767615][T11408] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  385.770598][T11408] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  385.794079][T11408] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  386.609031][   T10] usb 5-1: USB disconnect, device number 3
[  387.063159][   T40] audit: type=1326 audit(1757200320.331:2783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.078541][T11444] netlink: 8 bytes leftover after parsing attributes in process `syz.3.886'.
[  387.136045][   T40] audit: type=1326 audit(1757200320.351:2784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.144889][   T40] audit: type=1326 audit(1757200320.351:2785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.152935][   T40] audit: type=1326 audit(1757200320.351:2786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.160624][   T40] audit: type=1326 audit(1757200320.351:2787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.170774][   T40] audit: type=1326 audit(1757200320.351:2788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.180865][   T40] audit: type=1326 audit(1757200320.351:2789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.189629][   T40] audit: type=1326 audit(1757200320.351:2790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.246013][   T40] audit: type=1326 audit(1757200320.351:2791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.265536][   T40] audit: type=1326 audit(1757200320.351:2792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11434 comm="syz.3.886" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  387.275943][ T5983] Bluetooth: hci2: command 0x0406 tx timeout
[  387.830753][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout
[  387.839769][T11449] A link change request failed with some changes committed already. Interface 
3
0
 may have been left with an inconsistent configuration, please check.
[  388.354259][ T5983] Bluetooth: hci2: unexpected event for opcode 0x2024
[  389.209080][T11472] lo speed is unknown, defaulting to 1000
[  389.443869][T11467] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  389.446222][T11467] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  389.648505][T11483] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  389.803722][T11483] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.048805][T11483] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.090045][T11483] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  390.172616][ T1141] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  390.180893][ T1141] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  390.190309][ T1141] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  390.200949][ T1141] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  390.258352][T11485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.894'.
[  390.516886][T11494] netlink: 'syz.1.896': attribute type 12 has an invalid length.
[  390.946048][ T5983] Bluetooth: hci2: command 0x0406 tx timeout
[  390.980419][T11502] netlink: 'syz.0.906': attribute type 12 has an invalid length.
[  391.506875][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout
[  392.801908][   T40] kauditd_printk_skb: 36 callbacks suppressed
[  392.801918][   T40] audit: type=1326 audit(1757200326.071:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.816136][T11526] netlink: 224 bytes leftover after parsing attributes in process `syz.3.900'.
[  392.823451][   T40] audit: type=1326 audit(1757200326.081:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=393 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.835376][   T40] audit: type=1326 audit(1757200326.081:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.843842][   T40] audit: type=1326 audit(1757200326.081:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.854428][   T40] audit: type=1326 audit(1757200326.081:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.863463][   T40] audit: type=1326 audit(1757200326.081:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.874711][   T40] audit: type=1326 audit(1757200326.081:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.883032][   T40] audit: type=1326 audit(1757200326.081:2836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.893583][   T40] audit: type=1326 audit(1757200326.081:2837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  392.901801][   T40] audit: type=1326 audit(1757200326.081:2838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11512 comm="syz.3.900" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  393.857128][T11535] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  394.140865][T11539] netlink: 4 bytes leftover after parsing attributes in process `syz.1.903'.
[  394.742213][T11543] lo speed is unknown, defaulting to 1000
[  396.366782][T11560] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  396.368863][T11560] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  396.371716][T11560] vhci_hcd vhci_hcd.0: Device attached
[  396.550014][T11551] netlink: 4 bytes leftover after parsing attributes in process `syz.1.908'.
[  396.578344][T11565] netlink: 16 bytes leftover after parsing attributes in process `syz.3.910'.
[  396.676177][ T6041] usb 44-1: SetAddress Request (10) to port 0
[  396.678219][ T6041] usb 44-1: new SuperSpeed USB device number 10 using vhci_hcd
[  397.467944][T11561] vhci_hcd: connection reset by peer
[  397.476040][ T1147] vhci_hcd: stop threads
[  397.477401][ T1147] vhci_hcd: release socket
[  397.481955][ T1147] vhci_hcd: disconnect device
[  398.244614][T11581] netlink: 48 bytes leftover after parsing attributes in process `syz.1.913'.
[  398.248461][T11582] netlink: 'syz.4.914': attribute type 12 has an invalid length.
[  399.129547][T11599] netlink: 'syz.4.916': attribute type 12 has an invalid length.
[  399.274900][T11592] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  399.296150][T11592] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  400.786449][ T5983] Bluetooth: hci2: command 0x0406 tx timeout
[  400.911007][T11617] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  400.913064][T11617] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  400.915749][T11617] vhci_hcd vhci_hcd.0: Device attached
[  401.055243][T11620] lo speed is unknown, defaulting to 1000
[  401.187036][T11624] netlink: 16 bytes leftover after parsing attributes in process `syz.1.922'.
[  401.236058][ T2300] usb 40-1: SetAddress Request (14) to port 0
[  401.238059][ T2300] usb 40-1: new SuperSpeed USB device number 14 using vhci_hcd
[  401.377619][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout
[  401.542264][   T40] kauditd_printk_skb: 25 callbacks suppressed
[  401.542299][   T40] audit: type=1326 audit(1757200334.811:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.544789][T11634] netlink: 8 bytes leftover after parsing attributes in process `syz.0.923'.
[  401.558512][   T40] audit: type=1326 audit(1757200334.811:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.571093][   T40] audit: type=1326 audit(1757200334.811:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.598351][   T40] audit: type=1326 audit(1757200334.811:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.606059][   T40] audit: type=1326 audit(1757200334.811:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.614687][   T40] audit: type=1326 audit(1757200334.811:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.645401][   T40] audit: type=1326 audit(1757200334.811:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.652294][   T40] audit: type=1326 audit(1757200334.811:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.659087][   T40] audit: type=1326 audit(1757200334.811:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.666247][   T40] audit: type=1326 audit(1757200334.831:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.0.923" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  401.681087][T11618] vhci_hcd: connection reset by peer
[  401.716801][ T1147] vhci_hcd: stop threads
[  401.718501][ T1147] vhci_hcd: release socket
[  401.720092][ T1147] vhci_hcd: disconnect device
[  401.746062][ T6041] usb 44-1: device descriptor read/8, error -110
[  402.291952][ T6041] usb usb44-port1: attempt power cycle
[  402.589675][T11647] netlink: 'syz.0.926': attribute type 12 has an invalid length.
[  402.680487][T11650] overlayfs: failed to resolve './file0': -2
[  403.217522][T11658] netlink: 24 bytes leftover after parsing attributes in process `syz.4.928'.
[  403.684740][ T6041] usb usb44-port1: unable to enumerate USB device
[  403.997371][T11663] lo speed is unknown, defaulting to 1000
[  404.328117][T11677] netlink: 12 bytes leftover after parsing attributes in process `syz.1.932'.
[  404.346658][T11677] lo speed is unknown, defaulting to 1000
[  404.396631][T11679] =======================================================
[  404.396631][T11679] WARNING: The mand mount option has been deprecated and
[  404.396631][T11679]          and is ignored by this kernel. Remove the mand
[  404.396631][T11679]          option from the mount to silence this warning.
[  404.396631][T11679] =======================================================
[  404.881417][T11671] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  404.905537][T11671] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  405.251010][T11687] lo speed is unknown, defaulting to 1000
[  406.306049][ T2300] usb 40-1: device descriptor read/8, error -110
[  406.465967][ T5983] Bluetooth: hci2: command 0x0406 tx timeout
[  406.946055][ T5983] Bluetooth: hci3: command 0x0c1a tx timeout
[  406.987346][T11700] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  406.990505][T11700] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  407.055056][T11708] netlink: 'syz.1.939': attribute type 12 has an invalid length.
[  407.116623][ T2300] usb usb40-port1: attempt power cycle
[  407.963643][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  407.963656][   T40] audit: type=1326 audit(1757200341.236:2903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  407.973329][   T40] audit: type=1326 audit(1757200341.236:2904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  407.976528][T11727] lo speed is unknown, defaulting to 1000
[  407.980490][   T40] audit: type=1326 audit(1757200341.236:2905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  407.989115][   T40] audit: type=1326 audit(1757200341.236:2906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  407.997873][   T40] audit: type=1326 audit(1757200341.236:2907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  408.007080][   T40] audit: type=1326 audit(1757200341.236:2908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  408.014320][   T40] audit: type=1326 audit(1757200341.236:2909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  408.023639][   T40] audit: type=1326 audit(1757200341.246:2910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  408.033921][   T40] audit: type=1326 audit(1757200341.246:2911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  408.042562][   T40] audit: type=1326 audit(1757200341.246:2912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11723 comm="syz.3.942" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  408.097035][ T2300] usb usb40-port1: unable to enumerate USB device
[  408.163879][T11730] vlan0: entered promiscuous mode
[  408.166333][T11730] vlan0: entered allmulticast mode
[  408.168494][T11730] hsr_slave_1: entered allmulticast mode
[  408.188729][T11711] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  408.248705][T11730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.943'.
[  408.465094][T11736] lo speed is unknown, defaulting to 1000
[  408.545956][ T5983] Bluetooth: hci2: command 0x0406 tx timeout
[  408.607807][T11740] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  408.609899][T11740] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  408.612608][T11740] vhci_hcd vhci_hcd.0: Device attached
[  408.632548][T11740] xt_limit: Overflow, try lower: 271964/0
[  408.896027][ T2300] usb 40-1: SetAddress Request (18) to port 0
[  408.898057][ T2300] usb 40-1: new SuperSpeed USB device number 18 using vhci_hcd
[  409.025992][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  409.213746][T11741] vhci_hcd: connection reset by peer
[  409.222281][ T1148] vhci_hcd: stop threads
[  409.224432][ T1148] vhci_hcd: release socket
[  409.226956][ T1148] vhci_hcd: disconnect device
[  409.662874][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  409.665367][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  409.997640][T11764] lo speed is unknown, defaulting to 1000
[  410.107799][T11767] netlink: 4 bytes leftover after parsing attributes in process `syz.4.947'.
[  411.287586][T11772] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  411.290358][T11772] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  412.352945][T11789] overlayfs: missing 'lowerdir'
[  412.377379][T11795] lo speed is unknown, defaulting to 1000
[  412.565725][T11800] overlayfs: failed to clone upperpath
[  413.042187][T11814] netlink: 'syz.1.960': attribute type 12 has an invalid length.
[  413.350340][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  413.357695][T11807] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  413.360105][T11807] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  413.744372][T11822] netlink: 'syz.1.963': attribute type 12 has an invalid length.
[  414.007658][ T2300] usb 40-1: device descriptor read/8, error -110
[  414.839809][ T2300] usb usb40-port1: attempt power cycle
[  414.866174][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  415.428949][ T2300] usb usb40-port1: unable to enumerate USB device
[  415.436032][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  415.999252][T11851] netlink: 'syz.3.968': attribute type 12 has an invalid length.
[  416.289011][T11858] netlink: 'syz.0.969': attribute type 12 has an invalid length.
[  416.446762][T11864] lo speed is unknown, defaulting to 1000
[  416.947139][T11866] lo speed is unknown, defaulting to 1000
[  418.001543][T11875] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  418.009416][T11875] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  419.703676][T11919] netlink: 'syz.4.980': attribute type 12 has an invalid length.
[  419.854951][T11907] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  419.857915][T11907] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  421.167017][T11935] netlink: 'syz.4.983': attribute type 12 has an invalid length.
[  421.406014][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  421.445041][T11940] netlink: 4 bytes leftover after parsing attributes in process `syz.0.986'.
[  421.712295][T11946] loop6: detected capacity change from 0 to 524287999
[  421.723304][T11946] netlink: 24 bytes leftover after parsing attributes in process `syz.1.985'.
[  421.906090][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  422.000862][T11938] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  422.006142][T11938] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  422.229488][T11953] lo speed is unknown, defaulting to 1000
[  423.040637][T11956] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  423.043287][T11956] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  423.410542][T11975] overlayfs: failed to clone upperpath
[  423.601577][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  424.627932][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  425.115998][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  426.727755][T12030] overlayfs: failed to resolve './file1': -2
[  427.734088][T12036] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  427.736722][T12036] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  427.878056][T12040] lo speed is unknown, defaulting to 1000
[  429.275996][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  429.746107][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  434.113520][T12061] overlayfs: failed to resolve './file1': -2
[  434.951416][T12082] overlayfs: failed to resolve './file1': -2
[  436.257808][T12088] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  436.263811][T12088] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  436.854914][T12114] overlayfs: failed to resolve './file1': -2
[  437.048931][T12086] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1008'.
[  437.887677][T12128] loop6: detected capacity change from 0 to 524287999
[  437.897368][T12128] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1015'.
[  437.906458][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  438.070512][T12125] lo speed is unknown, defaulting to 1000
[  438.306236][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  438.505187][T12136] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1020'.
[  438.775752][T12140] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  439.867230][T12152] netlink: 'syz.1.1021': attribute type 1 has an invalid length.
[  439.892354][T12152] 8021q: adding VLAN 0 to HW filter on device bond4
[  440.092272][T12152] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1021'.
[  440.348161][T12152] bond4 (unregistering): Released all slaves
[  440.395983][  T840] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  440.568033][  T840] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  440.573473][  T840] usb 6-1: config 0 interface 0 has no altsetting 0
[  440.581220][  T840] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  440.677787][  T840] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.682254][  T840] usb 6-1: Product: syz
[  440.684284][  T840] usb 6-1: Manufacturer: syz
[  440.710374][  T840] usb 6-1: SerialNumber: syz
[  440.856954][  T840] usb 6-1: config 0 descriptor??
[  440.885572][  T840] usb 6-1: selecting invalid altsetting 0
[  441.358317][T12173] overlayfs: failed to resolve './file1': -2
[  442.653045][T12187] loop6: detected capacity change from 0 to 524287999
[  442.693573][T12186] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1029'.
[  442.761335][ T5990] usb 6-1: USB disconnect, device number 8
[  443.806038][ T5990] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  443.955971][ T5990] usb 5-1: Using ep0 maxpacket: 8
[  443.961950][ T5990] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  443.968122][ T5990] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  443.974531][ T5990] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  443.981490][ T5990] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  443.988606][ T5990] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  443.998301][ T5990] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  444.005417][ T5990] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.258708][ T5990] usb 5-1: GET_CAPABILITIES returned 0
[  444.260365][ T5990] usbtmc 5-1:16.0: can't read capabilities
[  444.475471][ T5990] usb 5-1: USB disconnect, device number 4
[  444.716835][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  444.726077][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  445.371171][T12217] netlink: 'syz.0.1036': attribute type 12 has an invalid length.
[  448.818265][T12265] 9pnet_fd: Insufficient options for proto=fd
[  449.145342][T12274] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1051'.
[  449.314642][T12275] syz.1.1050 (12275): drop_caches: 2
[  449.343087][T12275] syz.1.1050 (12275): drop_caches: 2
[  449.630929][T12284] netlink: 'syz.4.1052': attribute type 4 has an invalid length.
[  449.638077][T12284] netlink: 17 bytes leftover after parsing attributes in process `syz.4.1052'.
[  449.673104][T12284] delete_channel: no stack
[  449.806841][T12266] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  449.812643][T12266] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  450.449049][T12297] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1054'.
[  450.823635][T12297] netlink: 'syz.3.1054': attribute type 10 has an invalid length.
[  450.843399][T12288] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  450.845505][T12288] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  451.022837][T12297] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  451.563756][T12312] netlink: 'syz.1.1058': attribute type 12 has an invalid length.
[  452.318070][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  452.377036][T12323] netlink: 'syz.0.1059': attribute type 12 has an invalid length.
[  452.685615][T12304] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1056'.
[  452.864443][T12332] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  452.867076][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  452.869979][T12332] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  453.152777][T12340] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  454.230772][T12350] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  454.232865][T12350] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  454.557463][T12367] netlink: 'syz.3.1067': attribute type 12 has an invalid length.
[  454.917119][T12362] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  454.923450][T12362] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  455.338668][T12380] loop6: detected capacity change from 0 to 524287999
[  455.564358][T12385] netlink: 'syz.1.1072': attribute type 12 has an invalid length.
[  455.605201][T12382] netlink: 'syz.4.1071': attribute type 12 has an invalid length.
[  455.813273][T12391] syzkaller1: entered promiscuous mode
[  455.815527][T12391] syzkaller1: entered allmulticast mode
[  456.820501][T12399] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1074'.
[  457.030864][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  457.032837][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  457.048615][T12412] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  457.050697][T12412] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  457.068359][T12412] vhci_hcd vhci_hcd.0: Device attached
[  457.366217][ T2300] usb 44-1: SetAddress Request (14) to port 0
[  457.368383][ T2300] usb 44-1: new SuperSpeed USB device number 14 using vhci_hcd
[  457.469977][T12412] netlink: 'syz.3.1077': attribute type 10 has an invalid length.
[  457.501080][T12412] batman_adv: batadv0: Removing interface: batadv_slave_0
[  457.603961][T12412] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  457.880107][T12413] vhci_hcd: connection reset by peer
[  457.883889][   T13] vhci_hcd: stop threads
[  457.885264][   T13] vhci_hcd: release socket
[  457.888197][   T13] vhci_hcd: disconnect device
[  458.454656][T12439] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  458.456857][T12439] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  458.572915][T12451] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1081'.
[  458.576008][T12451] bridge_slave_1: left allmulticast mode
[  458.577949][T12451] bridge_slave_1: left promiscuous mode
[  458.580676][T12451] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.611992][T12451] bridge_slave_0: left allmulticast mode
[  458.614250][T12451] bridge_slave_0: left promiscuous mode
[  458.616739][T12451] bridge0: port 1(bridge_slave_0) entered disabled state
[  458.954897][T12465] netlink: 'syz.3.1083': attribute type 12 has an invalid length.
[  459.943928][T12478] netlink: 'syz.3.1086': attribute type 4 has an invalid length.
[  459.946513][T12478] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1086'.
[  459.971076][T12478] delete_channel: no stack
[  460.148697][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  460.466053][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  460.533479][  T840] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  460.686010][  T840] usb 5-1: Using ep0 maxpacket: 32
[  460.690274][  T840] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  460.692733][  T840] usb 5-1: config 0 has no interface number 0
[  460.694660][  T840] usb 5-1: config 0 interface 12 has no altsetting 0
[  460.719526][  T840] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  460.722956][  T840] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  460.726149][  T840] usb 5-1: Product: syz
[  460.727686][  T840] usb 5-1: Manufacturer: syz
[  460.729462][  T840] usb 5-1: SerialNumber: syz
[  460.735466][  T840] usb 5-1: config 0 descriptor??
[  461.163841][  T840] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  461.177643][  T840] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  461.179742][  T840] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  461.181900][  T840] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  461.200590][  T840] usb 5-1: USB disconnect, device number 5
[  461.293543][T12497] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_team, syncid = 0, id = 0
[  462.257348][T12504] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  462.297636][T12504] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  462.336451][T12513] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1094'.
[  462.469932][ T2300] usb 44-1: device descriptor read/8, error -110
[  462.887840][T12523] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1096'.
[  462.999662][ T2300] usb usb44-port1: attempt power cycle
[  463.609138][T12524] netlink: 'syz.4.1097': attribute type 4 has an invalid length.
[  463.799542][T12534] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  463.802166][T12534] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  464.096545][ T2300] usb usb44-port1: unable to enumerate USB device
[  464.968134][T12558] netlink: 'syz.0.1103': attribute type 1 has an invalid length.
[  465.013881][T12558] 8021q: adding VLAN 0 to HW filter on device bond1
[  465.085221][T12558] bond1: (slave geneve2): making interface the new active one
[  465.089870][T12558] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  465.288460][ T1141] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  465.293828][   T13] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  465.299564][   T13] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  465.303066][   T13] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  465.346006][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  465.835985][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  466.397825][T12567] lo speed is unknown, defaulting to 1000
[  467.285686][   T40] kauditd_printk_skb: 37 callbacks suppressed
[  467.285697][   T40] audit: type=1326 audit(1757200400.551:2950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.316080][   T40] audit: type=1326 audit(1757200400.571:2951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.325679][   T40] audit: type=1326 audit(1757200400.581:2952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.358702][   T40] audit: type=1326 audit(1757200400.581:2953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.413029][T12591] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.417231][   T40] audit: type=1326 audit(1757200400.581:2954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.429294][   T40] audit: type=1326 audit(1757200400.581:2955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.438981][   T40] audit: type=1326 audit(1757200400.581:2956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.447993][   T40] audit: type=1326 audit(1757200400.581:2957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.502642][T12591] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.539715][   T40] audit: type=1326 audit(1757200400.581:2958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.550449][   T40] audit: type=1326 audit(1757200400.581:2959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12584 comm="syz.4.1110" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf707e579 code=0x7ffc0000
[  467.612746][T12591] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.719592][T12591] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.862269][ T1141] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  467.881273][ T1141] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  467.884178][ T1141] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  467.887198][ T1141] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  468.492052][T12601] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1112'.
[  469.732743][T12628] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.750882][T12629] netlink: 4860 bytes leftover after parsing attributes in process `syz.1.1115'.
[  469.810428][T12628] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.897723][T12628] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.024911][T12628] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.146080][ T1147] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  470.152933][ T1147] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  470.175959][ T1141] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  470.188897][ T1147] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  470.225158][T12632] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1117'.
[  470.256037][T12632] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1117'.
[  471.367334][T12656] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1124'.
[  471.427112][T12661] vivid-006: disconnect
[  472.182914][T12655] vivid-006: reconnect
[  472.586844][T12679] netlink: 288 bytes leftover after parsing attributes in process `syz.3.1129'.
[  473.268927][T12680] orangefs_mount: mount request failed with -4
[  473.282171][T12686] netlink: 'syz.4.1131': attribute type 12 has an invalid length.
[  473.663199][T12691] lo speed is unknown, defaulting to 1000
[  474.686276][T12706] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  474.689954][T12706] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  475.547983][T12716] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  475.550928][T12716] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  475.743868][T12730] openvswitch: netlink: Message has 8 unknown bytes.
[  475.746478][T12730] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  475.790796][T12731] netlink: 'syz.1.1139': attribute type 12 has an invalid length.
[  476.071316][T12736] Bluetooth: hci4: Frame reassembly failed (-84)
[  476.074944][   T61] Bluetooth: hci4: Frame reassembly failed (-84)
[  476.078710][   T61] Bluetooth: hci4: Frame reassembly failed (-84)
[  476.700597][T12750] netlink: 'syz.1.1143': attribute type 12 has an invalid length.
[  476.982425][T12752] netlink: 'syz.4.1144': attribute type 12 has an invalid length.
[  477.108714][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  477.585995][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  477.640272][T12761] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1146'.
[  477.643654][T12761] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1146'.
[  478.034401][T12770] overlayfs: missing 'lowerdir'
[  478.147465][T11739] Bluetooth: hci4: command 0x1003 tx timeout
[  478.152199][ T5979] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  478.247172][T12777] netlink: 4860 bytes leftover after parsing attributes in process `syz.4.1150'.
[  478.357522][T12776] /dev/sr0: Can't open blockdev
[  478.389049][T12781] lo speed is unknown, defaulting to 1000
[  478.746150][T12787] netlink: 'syz.1.1152': attribute type 12 has an invalid length.
[  479.235022][T12795] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  479.237164][T12795] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  479.257018][T12795] vhci_hcd vhci_hcd.0: Device attached
[  479.349662][T12795] netlink: 'syz.0.1153': attribute type 10 has an invalid length.
[  479.355115][T12795] batman_adv: batadv0: Removing interface: batadv_slave_0
[  479.373443][T12795] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  479.595952][ T2300] usb 38-1: SetAddress Request (18) to port 0
[  479.598252][ T2300] usb 38-1: new SuperSpeed USB device number 18 using vhci_hcd
[  479.874471][T12807] netlink: 'syz.1.1155': attribute type 12 has an invalid length.
[  479.923349][T12798] vhci_hcd: connection reset by peer
[  479.925609][ T1147] vhci_hcd: stop threads
[  479.927551][ T1147] vhci_hcd: release socket
[  479.929550][ T1147] vhci_hcd: disconnect device
[  481.269271][T12823] lo speed is unknown, defaulting to 1000
[  481.907226][T12835] evm: overlay not supported
[  481.954822][ T5979] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  481.993206][T12837] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.075064][T12837] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.244025][T12837] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.348689][T12837] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.464620][   T61] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  482.549992][   T61] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  482.589800][   T61] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  482.596056][ T1147] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  482.665327][   T40] kauditd_printk_skb: 38 callbacks suppressed
[  482.665342][   T40] audit: type=1326 audit(1757200415.931:2998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.679554][   T40] audit: type=1326 audit(1757200415.931:2999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.689153][   T40] audit: type=1326 audit(1757200415.931:3000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.764456][   T40] audit: type=1326 audit(1757200415.931:3001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.836003][   T40] audit: type=1326 audit(1757200415.931:3002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.843273][   T40] audit: type=1326 audit(1757200415.931:3003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.850076][   T40] audit: type=1326 audit(1757200415.931:3004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.857229][   T40] audit: type=1326 audit(1757200415.931:3005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.863933][   T40] audit: type=1326 audit(1757200415.931:3006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.875842][   T40] audit: type=1326 audit(1757200415.931:3007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12845 comm="syz.3.1164" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  482.896068][T12855] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  482.942151][T12842] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  482.947079][T12842] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  483.272251][T12859] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1165'.
[  483.602552][T12859] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  483.623572][T12859] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  483.634365][T12859] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[  483.654096][T12859] bond0 (unregistering): Released all slaves
[  483.708975][T12868] lo speed is unknown, defaulting to 1000
[  483.783529][T12868] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1168'.
[  483.819496][T12864] lo speed is unknown, defaulting to 1000
[  483.819841][T12868] netlink: 360 bytes leftover after parsing attributes in process `syz.4.1168'.
[  484.396357][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  484.635958][ T2300] usb 38-1: device descriptor read/8, error -110
[  485.025991][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  485.056736][ T2300] usb usb38-port1: attempt power cycle
[  485.194701][T12884] lo speed is unknown, defaulting to 1000
[  485.494597][T12891] overlayfs: missing 'lowerdir'
[  485.532996][T12892] netlink: 'syz.0.1174': attribute type 12 has an invalid length.
[  485.616580][ T2300] usb usb38-port1: unable to enumerate USB device
[  487.040019][T12913] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1179'.
[  487.110284][T12906] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  487.112710][T12906] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  487.778687][T12929] netlink: 'syz.3.1182': attribute type 12 has an invalid length.
[  488.131754][T12933] lo speed is unknown, defaulting to 1000
[  488.444935][T12938] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1184'.
[  488.546122][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  488.842014][T12946] mac80211_hwsim hwsim4 syzkaller0: entered promiscuous mode
[  488.850887][T12951] netlink: 'syz.0.1185': attribute type 12 has an invalid length.
[  489.185970][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  490.988744][T12969] netlink: 'syz.1.1191': attribute type 1 has an invalid length.
[  491.007045][T12969] 8021q: adding VLAN 0 to HW filter on device bond4
[  491.056821][T12969] bond4: (slave geneve2): making interface the new active one
[  491.061719][T12969] bond4: (slave geneve2): Enslaving as an active interface with an up link
[  491.283837][   T40] kauditd_printk_skb: 88 callbacks suppressed
[  491.283853][   T40] audit: type=1326 audit(1757200424.551:3096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12974 comm="syz.4.1193" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e579 code=0x0
[  491.670858][T12986] netlink: 'syz.3.1195': attribute type 12 has an invalid length.
[  492.184553][T12984] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  492.214260][T12984] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  492.422622][T12999] netlink: 'syz.4.1197': attribute type 12 has an invalid length.
[  492.561151][T13005] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.850890][T13005] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  493.598699][T13005] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  493.946120][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  494.132462][T13005] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  494.263305][ T1141] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  494.306130][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  494.471466][   T13] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  494.474911][   T13] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  494.478484][   T13] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  494.748107][T13043] netlink: 'syz.4.1205': attribute type 1 has an invalid length.
[  494.801603][T13043] 8021q: adding VLAN 0 to HW filter on device bond3
[  494.889762][T13043] bond3: (slave geneve2): making interface the new active one
[  494.894283][T13043] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  495.107090][T13033] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  495.109870][T13033] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  496.025104][T13065] lo speed is unknown, defaulting to 1000
[  496.027455][T13065] lo speed is unknown, defaulting to 1000
[  496.033654][T13065] lo speed is unknown, defaulting to 1000
[  496.068392][T13065] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  496.322716][T13053] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  496.325204][T13053] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  496.359168][T13065] lo speed is unknown, defaulting to 1000
[  496.359918][T13064] lo speed is unknown, defaulting to 1000
[  496.372530][T13065] lo speed is unknown, defaulting to 1000
[  496.384851][T13065] lo speed is unknown, defaulting to 1000
[  496.391706][T13064] lo speed is unknown, defaulting to 1000
[  496.530527][T13065] lo speed is unknown, defaulting to 1000
[  496.920450][T13079] team0: Port device team_slave_0 removed
[  496.977152][T13072] input: syz1 as /devices/virtual/input/input18
[  496.996405][T13079] team0: Port device team_slave_1 removed
[  497.007448][T13079] batman_adv: batadv0: Removing interface: batadv_slave_1
[  497.029295][T13083] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1211'.
[  497.211822][T13079] bond1: (slave geneve2): Releasing active interface
[  497.329365][T13081] team0: Mode changed to "loadbalance"
[  497.430110][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  497.589128][   T12] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  497.632442][   T12] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  497.636415][   T12] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  497.646211][   T12] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  498.351669][   T40] audit: type=1326 audit(1757200431.626:3097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.398615][   T40] audit: type=1326 audit(1757200431.626:3098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.407435][   T40] audit: type=1326 audit(1757200431.626:3099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.416646][   T40] audit: type=1326 audit(1757200431.626:3100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.425837][   T40] audit: type=1326 audit(1757200431.626:3101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.429590][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  498.435580][   T40] audit: type=1326 audit(1757200431.626:3102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.447161][   T40] audit: type=1326 audit(1757200431.626:3103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.456861][   T40] audit: type=1326 audit(1757200431.626:3104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.466023][   T40] audit: type=1326 audit(1757200431.626:3105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.474866][   T40] audit: type=1326 audit(1757200431.626:3106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13101 comm="syz.0.1217" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  498.556751][T13112] loop6: detected capacity change from 0 to 524287999
[  499.223132][T13122] netlink: 'syz.1.1221': attribute type 12 has an invalid length.
[  499.671007][T13135] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1225'.
[  499.890345][T13135] bond0 (unregistering): (slave 
3
0
): Releasing backup interface
[  499.912629][T13135] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  499.932437][T13135] bond0 (unregistering): Released all slaves
[  500.190083][T13143] input: syz1 as /devices/virtual/input/input19
[  500.540680][T13146] lo speed is unknown, defaulting to 1000
[  500.549886][T13146] lo speed is unknown, defaulting to 1000
[  501.751313][T13164] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  501.753471][T13164] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  501.947395][T13168] overlayfs: failed to clone upperpath
[  502.921682][T13186] capability: warning: `syz.4.1232' uses 32-bit capabilities (legacy support in use)
[  503.405993][T13201] netlink: 'syz.4.1243': attribute type 12 has an invalid length.
[  503.826037][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  503.925811][T13196] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  503.928789][T13196] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  504.038584][T13206] mac80211_hwsim hwsim9 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  504.471876][T13219] siw: device registration error -23
[  504.813205][T13222] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  504.815321][T13222] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  504.818357][T13222] vhci_hcd vhci_hcd.0: Device attached
[  504.893382][T13222] netlink: 'syz.1.1239': attribute type 10 has an invalid length.
[  504.896272][T13222] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  504.973913][T13222] batman_adv: batadv0: Removing interface: batadv_slave_0
[  505.113240][T13222] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  505.218977][ T2300] usb 40-1: SetAddress Request (22) to port 0
[  505.221047][ T2300] usb 40-1: new SuperSpeed USB device number 22 using vhci_hcd
[  505.426044][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  505.427183][T13231] lo speed is unknown, defaulting to 1000
[  505.432899][T13231] lo speed is unknown, defaulting to 1000
[  505.671303][T13223] vhci_hcd: connection reset by peer
[  505.673922][ T1148] vhci_hcd: stop threads
[  505.675304][ T1148] vhci_hcd: release socket
[  505.677290][ T1148] vhci_hcd: disconnect device
[  505.823610][T13242] netlink: 'syz.3.1242': attribute type 12 has an invalid length.
[  505.986049][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  506.085674][T13246] lo speed is unknown, defaulting to 1000
[  506.088545][T13246] lo speed is unknown, defaulting to 1000
[  506.158605][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  506.161366][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  507.192798][T13251] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  507.194871][T13251] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  507.226878][T13267] netlink: 'syz.0.1249': attribute type 12 has an invalid length.
[  508.081580][T13275] mac80211_hwsim hwsim13 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  508.241013][T13286] lo speed is unknown, defaulting to 1000
[  508.244500][T13286] lo speed is unknown, defaulting to 1000
[  508.956081][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  509.026551][   T40] kauditd_printk_skb: 24 callbacks suppressed
[  509.026563][   T40] audit: type=1326 audit(1757200442.306:3131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.240714][T13306] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1258'.
[  509.249368][   T40] audit: type=1326 audit(1757200442.306:3132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.256087][   T40] audit: type=1326 audit(1757200442.306:3133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.262647][   T40] audit: type=1326 audit(1757200442.306:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.269248][   T40] audit: type=1326 audit(1757200442.306:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.276042][   T40] audit: type=1326 audit(1757200442.306:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.276046][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  509.276069][   T40] audit: type=1326 audit(1757200442.306:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.291982][   T40] audit: type=1326 audit(1757200442.306:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.298812][   T40] audit: type=1326 audit(1757200442.316:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  509.305375][   T40] audit: type=1326 audit(1757200442.316:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13296 comm="syz.1.1256" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  510.306251][ T2300] usb 40-1: device descriptor read/8, error -110
[  510.697572][ T2300] usb usb40-port1: attempt power cycle
[  511.001493][T13332] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  511.003789][T13332] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  511.025969][T13332] vhci_hcd vhci_hcd.0: Device attached
[  511.263342][ T2300] usb usb40-port1: unable to enumerate USB device
[  511.286259][ T6041] usb 44-1: SetAddress Request (18) to port 0
[  511.289756][ T6041] usb 44-1: new SuperSpeed USB device number 18 using vhci_hcd
[  511.315442][T13343] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  511.319408][T13343] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  512.161439][T13333] vhci_hcd: connection reset by peer
[  512.166160][ T1148] vhci_hcd: stop threads
[  512.167518][ T1148] vhci_hcd: release socket
[  512.175924][ T1148] vhci_hcd: disconnect device
[  513.126906][T13361] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  513.130005][T13361] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  513.376213][T13366] overlayfs: failed to clone upperpath
[  514.906656][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  515.196154][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  516.045814][T13392] can0: slcan on ttyS3.
[  516.138306][T13392] can0 (unregistered): slcan off ttyS3.
[  516.267842][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  516.267859][   T40] audit: type=1800 audit(1757200449.546:3149): pid=13407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1275" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[  517.059379][ T6041] usb 44-1: device descriptor read/8, error -110
[  517.335301][T13415] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  517.350998][T13415] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  517.706110][T13437] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  517.799232][ T6041] usb usb44-port1: attempt power cycle
[  518.539832][ T6041] usb usb44-port1: unable to enumerate USB device
[  519.211590][T13464] netlink: 'syz.4.1288': attribute type 12 has an invalid length.
[  519.412811][T13449] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  519.414962][T13449] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  519.601674][T13472] netlink: 'syz.1.1290': attribute type 12 has an invalid length.
[  519.901437][T13478] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  520.955986][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  521.332261][T13487] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  521.334553][T13487] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  522.047047][T13508] netlink: 'syz.1.1301': attribute type 12 has an invalid length.
[  522.242352][T13500] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  522.244771][T13500] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  522.448303][T13526] veth0_to_bridge: entered promiscuous mode
[  522.452743][T13524] veth0_to_bridge: left promiscuous mode
[  522.586004][   T60] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  522.635792][T13528] netlink: 4860 bytes leftover after parsing attributes in process `syz.0.1304'.
[  523.315974][   T60] usb 8-1: Using ep0 maxpacket: 32
[  523.320116][   T60] usb 8-1: config 0 has an invalid interface number: 12 but max is 0
[  523.323322][   T60] usb 8-1: config 0 has no interface number 0
[  523.382394][T13538] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1307'.
[  523.614581][   T60] usb 8-1: config 0 interface 12 has no altsetting 0
[  523.618923][   T60] usb 8-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  523.621723][   T60] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  523.624184][   T60] usb 8-1: Product: syz
[  523.625528][   T60] usb 8-1: Manufacturer: syz
[  523.629892][   T60] usb 8-1: SerialNumber: syz
[  523.635026][   T60] usb 8-1: config 0 descriptor??
[  523.748799][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  524.098543][   T60] f81534 8-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  524.101179][   T60] f81534 8-1:0.12: f81534_find_config_idx: read failed: -71
[  524.103463][   T60] f81534 8-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  524.110830][   T60] f81534 8-1:0.12: probe with driver f81534 failed with error -71
[  524.127026][   T60] usb 8-1: USB disconnect, device number 4
[  524.166534][T13555] netlink: 'syz.1.1312': attribute type 12 has an invalid length.
[  524.306072][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  524.635386][T13568] lo speed is unknown, defaulting to 1000
[  524.648223][T13568] lo speed is unknown, defaulting to 1000
[  524.704547][T13571] netlink: 212 bytes leftover after parsing attributes in process `syz.3.1315'.
[  525.043114][T13574] fuse: Bad value for 'fd'
[  525.074219][T13561] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  525.076567][T13561] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  525.233495][T13583] lo speed is unknown, defaulting to 1000
[  525.238590][T13583] lo speed is unknown, defaulting to 1000
[  525.401318][T13586] netlink: 'syz.4.1316': attribute type 12 has an invalid length.
[  525.639374][T13593] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  526.545987][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  527.105967][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  527.511286][T13610] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  527.513589][T13610] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  527.909477][T13617] random: crng reseeded on system resumption
[  528.923129][T13637] netlink: 'syz.3.1329': attribute type 12 has an invalid length.
[  529.024486][T13638] lo speed is unknown, defaulting to 1000
[  529.028413][T13638] lo speed is unknown, defaulting to 1000
[  529.106040][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  529.303883][T13644] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  529.586146][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  530.215270][T13657] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1334'.
[  530.229669][T13657] bridge_slave_0: default FDB implementation only supports local addresses
[  530.235697][T13657] netlink: 320 bytes leftover after parsing attributes in process `syz.3.1334'.
[  530.261960][T13660] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1335'.
[  530.304611][T13664] IPVS: Unknown mcast interface: bond0
[  530.311004][T13664] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1337'.
[  530.314719][T13664] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1337'.
[  530.694284][T13654] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  530.697016][T13654] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  530.742647][T13667] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1336'.
[  530.824459][T13675] netlink: 'syz.0.1339': attribute type 12 has an invalid length.
[  531.206770][T13682] netlink: 'syz.0.1340': attribute type 12 has an invalid length.
[  531.328821][T13686] netlink: 'syz.4.1341': attribute type 12 has an invalid length.
[  532.419519][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  532.786063][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  533.460631][T13718] netlink: 'syz.1.1349': attribute type 12 has an invalid length.
[  533.828106][T13730] netlink: 'syz.1.1352': attribute type 12 has an invalid length.
[  533.892641][T13712] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  533.895381][T13712] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  535.425958][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  535.986094][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  535.993654][T13756] netlink: 'syz.1.1357': attribute type 12 has an invalid length.
[  536.122376][T13758] lo speed is unknown, defaulting to 1000
[  536.134496][T13758] lo speed is unknown, defaulting to 1000
[  536.147566][T13761] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  537.279272][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  540.509237][T13825] netlink: 'syz.4.1368': attribute type 12 has an invalid length.
[  540.733503][T13826] netlink: 'syz.3.1369': attribute type 12 has an invalid length.
[  541.522927][T13847] netlink: 'syz.3.1382': attribute type 12 has an invalid length.
[  542.416786][T13855] overlayfs: failed to clone upperpath
[  542.974013][T13878] lo speed is unknown, defaulting to 1000
[  542.977056][T13878] lo speed is unknown, defaulting to 1000
[  543.547286][T13884] netlink: 'syz.4.1383': attribute type 12 has an invalid length.
[  544.727710][T13904] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  546.430584][T13917] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  546.442682][T13917] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  546.579675][T13930] lo speed is unknown, defaulting to 1000
[  546.588519][T13930] lo speed is unknown, defaulting to 1000
[  548.002696][T13953] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  548.142393][T13947] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  548.145915][T13947] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  549.668960][T13960] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  549.671813][T13960] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  549.741572][T13974] lo speed is unknown, defaulting to 1000
[  549.748571][T13974] lo speed is unknown, defaulting to 1000
[  550.033675][T13992] netlink: 'syz.0.1408': attribute type 12 has an invalid length.
[  550.056685][T13995] overlayfs: failed to clone upperpath
[  550.764334][T13993] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  550.770435][T13993] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  550.960953][T14007] netlink: 'syz.4.1412': attribute type 12 has an invalid length.
[  551.853254][T14013] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  551.856119][T14013] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  553.071327][T14036] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  553.226147][T14024] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  553.231150][T14024] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  554.546156][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  554.603427][T14061] netlink: 'syz.0.1426': attribute type 12 has an invalid length.
[  554.896292][T14074] fuse: Unknown parameter '0xffffffffffffffff00000000000000000000'
[  555.266086][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  555.411165][T14080] netlink: 'syz.0.1430': attribute type 12 has an invalid length.
[  555.474637][T14066] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  555.478390][T14066] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  555.842130][T14090] overlayfs: failed to clone upperpath
[  557.106177][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  557.506039][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  558.516832][T14114] netlink: 'syz.0.1442': attribute type 4 has an invalid length.
[  558.848094][T14124] netlink: 'syz.1.1439': attribute type 12 has an invalid length.
[  560.851144][T14134] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  560.855175][T14134] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  562.706013][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  562.840557][T14179] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  562.843484][T14179] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  562.859950][T14182] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1452'.
[  564.532152][T14208] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  564.867324][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  564.869955][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  565.686456][T14221] wireguard0: entered promiscuous mode
[  565.688276][T14221] wireguard0: entered allmulticast mode
[  566.341001][T14216] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  566.357204][T14216] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  566.690936][T14236] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  567.696955][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  567.702101][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  568.145974][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  568.386020][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  569.062658][T14276] netlink: 'syz.4.1474': attribute type 10 has an invalid length.
[  569.069332][T14276] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1474'.
[  569.083067][T14276] dummy0: entered promiscuous mode
[  569.089450][T14276] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  570.173590][T14296] lo speed is unknown, defaulting to 1000
[  570.180343][T14296] lo speed is unknown, defaulting to 1000
[  570.543139][T14302] netlink: 'syz.1.1481': attribute type 3 has an invalid length.
[  570.545365][T14302] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1481'.
[  570.650350][T14305] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  571.474188][T14307] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1483'.
[  571.642660][T14322] netlink: 'syz.3.1484': attribute type 12 has an invalid length.
[  572.566678][T14332] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  572.572523][T14332] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  572.873744][T14354] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  573.711085][T14363] lo speed is unknown, defaulting to 1000
[  573.716693][T14363] lo speed is unknown, defaulting to 1000
[  573.854726][T14356] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  573.859149][T14356] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  573.909072][T14371] lo speed is unknown, defaulting to 1000
[  573.912521][T14371] lo speed is unknown, defaulting to 1000
[  573.967958][T14371] netlink: 360 bytes leftover after parsing attributes in process `syz.4.1498'.
[  575.832762][T14401] fuse: Bad value for 'fd'
[  575.916014][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  576.005471][T14390] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  576.010430][T14390] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  576.235479][T14408] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  576.354974][T14411] fuse: Bad value for 'fd'
[  577.426089][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  578.067676][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  578.211887][T14425] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  578.214327][T14425] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  579.443038][    C0] sr 2:0:0:0: [sr0] tag#21 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  579.447455][    C0] sr 2:0:0:0: [sr0] tag#21 CDB: opcode=0x9b 9b 72 36 7c 00 00 00 00 00 00 00 00
[  579.911835][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  580.234026][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  581.531230][T14497] lo speed is unknown, defaulting to 1000
[  581.535040][T14497] lo speed is unknown, defaulting to 1000
[  581.848158][T14481] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  581.850312][T14481] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  583.277676][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  583.378942][T14524] wireguard0: entered promiscuous mode
[  583.381093][T14524] wireguard0: entered allmulticast mode
[  583.975289][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  584.446081][  T840] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  584.606033][  T840] usb 6-1: Using ep0 maxpacket: 8
[  584.610458][  T840] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  584.614127][  T840] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  584.617316][  T840] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  584.620720][  T840] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  584.624783][  T840] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  584.627904][  T840] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  584.899619][  T840] usb 6-1: GET_CAPABILITIES returned 0
[  584.906086][  T840] usbtmc 6-1:16.0: can't read capabilities
[  585.066176][T14536] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  585.069301][T14536] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  585.308219][T14553] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1535'.
[  585.972592][T14549] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  585.978271][T14549] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  587.054653][   T24] usb 6-1: USB disconnect, device number 9
[  587.346027][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  587.552773][T14581] tipc: Started in network mode
[  587.554467][T14581] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  587.560931][T14581] tipc: Enabled bearer <eth:team0>, priority 0
[  587.642103][   T40] audit: type=1326 audit(1757204642.918:3150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  587.650717][   T40] audit: type=1326 audit(1757204642.918:3151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  587.706009][   T40] audit: type=1326 audit(1757204642.918:3152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  587.712917][   T40] audit: type=1326 audit(1757204642.918:3153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  587.726475][   T40] audit: type=1326 audit(1757204642.918:3154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  587.734010][   T40] audit: type=1326 audit(1757204642.928:3155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f18579 code=0x7ffc0000
[  587.756052][   T40] audit: type=1326 audit(1757204642.928:3156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f18598 code=0x7ffc0000
[  587.762970][   T40] audit: type=1326 audit(1757204642.928:3157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f18598 code=0x7ffc0000
[  587.805942][   T40] audit: type=1326 audit(1757204642.928:3158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f18598 code=0x7ffc0000
[  587.903258][   T40] audit: type=1326 audit(1757204642.928:3159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14583 comm="syz.1.1544" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f18598 code=0x7ffc0000
[  587.988733][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  588.145333][T14584] lo speed is unknown, defaulting to 1000
[  588.161687][T14584] lo speed is unknown, defaulting to 1000
[  588.458885][T14595] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1546'.
[  588.601345][T14594] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  588.686927][ T6041] tipc: Node number set to 11578026
[  589.083964][T14601] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  589.087104][T14601] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  589.465490][T14599] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  589.468288][T14599] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  589.866535][T14628] lo speed is unknown, defaulting to 1000
[  589.870158][T14628] lo speed is unknown, defaulting to 1000
[  590.311171][T14634] syz.4.1556 (14634): attempted to duplicate a private mapping with mremap.  This is not supported.
[  590.360395][T14622] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  590.364331][T14622] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  590.438673][T14641] netlink: 212 bytes leftover after parsing attributes in process `syz.0.1559'.
[  591.635710][T14663] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  591.746045][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  592.393116][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  592.633289][T14670] overlayfs: failed to clone upperpath
[  592.982420][T14682] lo speed is unknown, defaulting to 1000
[  593.002636][T14682] lo speed is unknown, defaulting to 1000
[  594.357725][T14692] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  594.360938][T14692] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  594.838139][T14716] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1572'.
[  595.271725][T14709] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  595.274347][T14709] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  595.492470][T14730] netlink: 88 bytes leftover after parsing attributes in process `syz.3.1577'.
[  595.496520][T14730] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1577'.
[  595.612292][T14733] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1576'.
[  596.327679][T14749] lo speed is unknown, defaulting to 1000
[  596.331270][T14749] lo speed is unknown, defaulting to 1000
[  596.797844][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  597.346181][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  598.272891][T14763] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  598.275471][T14763] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  599.687742][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  600.393321][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  601.358372][T14811] netlink: 'syz.4.1597': attribute type 3 has an invalid length.
[  601.360831][T14811] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1597'.
[  601.408009][T14813] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1598'.
[  602.182154][T14831] lo speed is unknown, defaulting to 1000
[  602.210429][T14831] lo speed is unknown, defaulting to 1000
[  602.370302][T14819] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  602.375194][T14819] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  603.915971][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  604.218732][T14863] wireguard0: entered promiscuous mode
[  604.221224][T14863] wireguard0: entered allmulticast mode
[  604.396040][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  606.385941][   T60] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  606.555927][   T60] usb 5-1: Using ep0 maxpacket: 32
[  606.559849][   T60] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  606.564431][   T60] usb 5-1: config 0 has no interface number 0
[  606.567566][   T60] usb 5-1: config 0 interface 12 has no altsetting 0
[  606.575056][   T60] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  606.584615][   T60] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  606.587271][   T60] usb 5-1: Product: syz
[  606.590080][   T60] usb 5-1: Manufacturer: syz
[  606.592278][   T60] usb 5-1: SerialNumber: syz
[  606.602469][   T60] usb 5-1: config 0 descriptor??
[  607.003061][T14899] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  607.005067][T14899] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  607.072268][   T60] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  607.074663][   T60] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  607.077287][   T60] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  607.079674][   T60] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  607.088630][   T60] usb 5-1: USB disconnect, device number 6
[  607.179298][T14913] lo speed is unknown, defaulting to 1000
[  607.184880][T14913] lo speed is unknown, defaulting to 1000
[  607.388871][T14921] lo speed is unknown, defaulting to 1000
[  607.393946][T14921] lo speed is unknown, defaulting to 1000
[  607.416764][T14922] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  608.484150][T14926] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  608.486655][T14926] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  609.370420][T14949] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  609.372688][T14949] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  609.512871][T14966] lo speed is unknown, defaulting to 1000
[  609.515356][T14966] lo speed is unknown, defaulting to 1000
[  610.472837][T14971] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  610.479239][T14971] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  611.315581][T14987] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  611.318728][T14987] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  611.886391][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  612.123983][T15015] lo speed is unknown, defaulting to 1000
[  612.127638][T15015] lo speed is unknown, defaulting to 1000
[  612.786022][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  612.941524][T15037] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  612.943598][T15037] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  612.951406][T15037] vhci_hcd vhci_hcd.0: Device attached
[  613.186088][ T6041] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  613.346615][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  613.433238][T15053] lo speed is unknown, defaulting to 1000
[  613.437225][T15053] lo speed is unknown, defaulting to 1000
[  613.949979][T15038] vhci_hcd: connection reset by peer
[  613.954391][   T94] vhci_hcd: stop threads
[  613.956181][   T94] vhci_hcd: release socket
[  613.958066][   T94] vhci_hcd: disconnect device
[  617.911484][T15098] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  617.914123][T15098] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  618.295967][ T6041] vhci_hcd: vhci_device speed not set
[  619.329739][T15128] netlink: 'syz.4.1660': attribute type 4 has an invalid length.
[  619.345994][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  619.994154][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  620.224770][T15129] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  620.229266][T15129] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  621.286702][T15152] overlayfs: failed to clone upperpath
[  622.248704][T15157] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  622.251227][T15157] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  623.815984][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  624.411914][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  625.298695][T15192] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  625.301577][T15192] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  626.603812][T15226] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  626.653505][T15226] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  627.657066][T15246] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  627.660602][T15246] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  628.866385][T15275] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  628.876261][T15275] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  629.073890][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  629.076985][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  630.726279][T15310] fuse: Bad value for 'fd'
[  630.867311][T15301] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  630.870102][T15301] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  632.877156][T15329] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  632.886176][T15329] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  633.109746][T15355] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  633.127269][T15355] netlink: 'syz.0.1715': attribute type 29 has an invalid length.
[  633.134638][T15355] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1715'.
[  633.270775][T15355] lo speed is unknown, defaulting to 1000
[  633.278995][T15355] lo speed is unknown, defaulting to 1000
[  633.906020][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  634.767619][T15367] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  634.776256][T15367] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  635.971223][T15398] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  635.973383][T15398] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  636.389200][   T40] kauditd_printk_skb: 890 callbacks suppressed
[  636.389211][   T40] audit: type=1326 audit(1757212019.666:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.400056][   T40] audit: type=1326 audit(1757212019.666:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.407008][   T40] audit: type=1326 audit(1757212019.676:4052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=164 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.414128][   T40] audit: type=1326 audit(1757212019.676:4053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.421111][   T40] audit: type=1326 audit(1757212019.676:4054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.428042][   T40] audit: type=1326 audit(1757212019.676:4055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.435196][   T40] audit: type=1326 audit(1757212019.676:4056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.442558][   T40] audit: type=1326 audit(1757212019.676:4057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.451260][   T40] audit: type=1326 audit(1757212019.676:4058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.461492][   T40] audit: type=1326 audit(1757212019.676:4059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15414 comm="syz.4.1730" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000
[  636.669101][T15420] overlayfs: failed to clone upperpath
[  637.362185][T15423] wireguard0: entered promiscuous mode
[  637.363994][T15423] wireguard0: entered allmulticast mode
[  637.830041][   T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  637.986012][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  638.224794][T15427] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  638.227244][T15427] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  638.918398][T15476] wireguard0: entered promiscuous mode
[  638.920204][T15476] wireguard0: entered allmulticast mode
[  639.317130][T15483] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1737'.
[  639.478763][T15477] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  639.484088][T15477] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  640.618687][   T24] lo speed is unknown, defaulting to 1000
[  640.748485][T15508] wireguard0: entered promiscuous mode
[  640.750347][T15508] wireguard0: entered allmulticast mode
[  641.346144][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  641.505965][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  643.586129][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  656.215969][T15534] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  656.224173][T15534] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  656.446033][T15557] overlayfs: failed to clone upperpath
[  657.166390][T15558] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  657.186042][T15558] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  658.109782][T15576] lo speed is unknown, defaulting to 1000
[  658.130206][T15576] lo speed is unknown, defaulting to 1000
[  658.796043][T11739] Bluetooth: hci2: command 0x0406 tx timeout
[  659.052946][T15593] wireguard0: entered promiscuous mode
[  659.054440][T15593] wireguard0: entered allmulticast mode
[  659.186188][T11739] Bluetooth: hci3: command 0x0c1a tx timeout
[  659.452460][T15603] netlink: 'syz.0.1757': attribute type 12 has an invalid length.
[  659.994832][T15610] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1755'.
[  660.764696][T15616] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  660.767373][T15616] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  661.178789][T15637] lo speed is unknown, defaulting to 1000
[  661.181220][T15637] lo speed is unknown, defaulting to 1000
[  662.236201][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  662.530863][T15658] netlink: 'syz.0.1770': attribute type 12 has an invalid length.
[  662.796053][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  663.307411][T15659] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  663.310326][T15659] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  664.106162][T15670] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  664.108925][T15670] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  664.370322][T15697] netlink: 'syz.0.1780': attribute type 12 has an invalid length.
[  665.272235][T15715] netlink: 'syz.4.1783': attribute type 12 has an invalid length.
[  665.491063][T15703] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  665.493621][T15703] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  666.615252][   T40] kauditd_printk_skb: 40 callbacks suppressed
[  666.615264][   T40] audit: type=1800 audit(1757213423.885:4100): pid=15728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1787" name="SYSV00000000" dev="tmpfs" ino=3 res=0 errno=0
[  667.400132][T15729] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  667.402366][T15729] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  667.656962][T15752] netlink: 'syz.1.1792': attribute type 12 has an invalid length.
[  668.459002][T15771] netlink: 'syz.3.1793': attribute type 12 has an invalid length.
[  668.594867][T15774] netlink: 'syz.1.1797': attribute type 12 has an invalid length.
[  668.866123][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  669.438814][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  670.436581][T15799] lo speed is unknown, defaulting to 1000
[  670.439417][T15799] lo speed is unknown, defaulting to 1000
[  670.673408][T15799] fuse: Bad value for 'fd'
[  670.722073][T15790] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  670.724336][T15790] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  671.704064][T15825] netlink: 'syz.1.1806': attribute type 12 has an invalid length.
[  672.156032][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  672.800079][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  673.840720][T15854] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  674.231631][T15864] wireguard0: entered promiscuous mode
[  674.233927][T15864] wireguard0: entered allmulticast mode
[  674.666911][T15861] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  674.671320][T15861] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  674.829586][T15872] lo speed is unknown, defaulting to 1000
[  674.837955][T15872] lo speed is unknown, defaulting to 1000
[  676.146090][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  676.706052][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  676.739518][T15894] netlink: 'syz.4.1816': attribute type 12 has an invalid length.
[  676.746866][T15895] netlink: 'syz.0.1825': attribute type 12 has an invalid length.
[  678.659555][T15918] netlink: 'syz.3.1822': attribute type 12 has an invalid length.
[  678.754966][T15910] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1821'.
[  679.670890][T15944] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  679.678046][T15944] netlink: 'syz.4.1828': attribute type 29 has an invalid length.
[  679.680691][T15944] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1828'.
[  679.742491][T15944] lo speed is unknown, defaulting to 1000
[  679.750498][T15944] lo speed is unknown, defaulting to 1000
[  679.751714][T15932] lo speed is unknown, defaulting to 1000
[  679.760110][T15946] netlink: 'syz.0.1829': attribute type 12 has an invalid length.
[  679.760161][T15932] lo speed is unknown, defaulting to 1000
[  680.965538][T15962] wireguard0: entered promiscuous mode
[  680.967468][T15962] wireguard0: entered allmulticast mode
[  681.786046][T15976] netlink: 'syz.4.1834': attribute type 12 has an invalid length.
[  681.913064][T15977] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  682.100955][T15981] random: crng reseeded on system resumption
[  682.173983][T15982] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  682.177095][T15982] batman_adv: batadv0: Removing interface: batadv_slave_1
[  683.773962][T15991] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  683.777702][T15991] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  684.359414][T16001] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  684.995007][T16013] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  684.997391][T16013] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  685.233194][   T40] audit: type=1326 audit(1757214816.504:4101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  685.247628][   T40] audit: type=1326 audit(1757214816.504:4102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  685.272318][   T40] audit: type=1326 audit(1757214816.514:4103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70de579 code=0x7ffc0000
[  685.299557][   T40] audit: type=1326 audit(1757214816.514:4104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  685.312943][   T40] audit: type=1326 audit(1757214816.514:4105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  685.323556][   T40] audit: type=1326 audit(1757214816.514:4106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70de579 code=0x7ffc0000
[  685.331900][   T40] audit: type=1326 audit(1757214816.524:4107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  685.338952][   T40] audit: type=1326 audit(1757214816.524:4108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  685.348066][   T40] audit: type=1326 audit(1757214816.524:4109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000
[  685.355091][   T40] audit: type=1326 audit(1757214816.524:4110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16023 comm="syz.0.1843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  685.420250][T16024] lo speed is unknown, defaulting to 1000
[  685.422829][T16024] lo speed is unknown, defaulting to 1000
[  686.123507][T16035] lo speed is unknown, defaulting to 1000
[  686.129817][T16035] lo speed is unknown, defaulting to 1000
[  686.204185][T16047] lo speed is unknown, defaulting to 1000
[  686.207889][T16047] lo speed is unknown, defaulting to 1000
[  686.545957][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  686.679425][T16054] netlink: 'syz.0.1849': attribute type 12 has an invalid length.
[  687.026079][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  687.828186][T16073] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1853'.
[  688.307374][T16074] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  688.309748][T16074] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  689.197496][T16083] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  689.199662][T16083] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  689.719848][T16111] tipc: Started in network mode
[  689.721503][T16111] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  689.724129][T16111] tipc: Enabled bearer <eth:team0>, priority 0
[  689.842436][T16116] netlink: 'syz.3.1862': attribute type 12 has an invalid length.
[  690.201088][T16099] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  690.203896][T16099] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  690.496716][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  690.499379][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  690.741677][ T2300] tipc: Node number set to 11578026
[  691.413041][T16126] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  691.415131][T16126] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  692.771836][T16159] wireguard0: entered promiscuous mode
[  692.773677][T16159] wireguard0: entered allmulticast mode
[  692.948087][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  693.134664][T16171] netlink: 'syz.4.1874': attribute type 12 has an invalid length.
[  693.436068][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  693.536433][T16164] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  693.539850][T16164] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  693.911747][T16188] tipc: Started in network mode
[  693.913382][T16188] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  693.917803][T16188] tipc: Enabled bearer <eth:team0>, priority 0
[  694.447459][T16178] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  694.452404][T16178] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  694.675779][T16201] ip6gre1: entered promiscuous mode
[  694.678059][T16201] ip6gre1: entered allmulticast mode
[  694.806980][T16206] netlink: 'syz.0.1880': attribute type 12 has an invalid length.
[  694.905954][ T2300] tipc: Node number set to 11578026
[  695.312786][T16217] netlink: 'syz.4.1884': attribute type 12 has an invalid length.
[  695.924962][T16205] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  696.065933][T16205] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  696.318888][   T40] kauditd_printk_skb: 394 callbacks suppressed
[  696.318903][   T40] audit: type=1326 audit(1757215743.584:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  696.329464][   T40] audit: type=1326 audit(1757215743.604:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  696.346270][   T40] audit: type=1326 audit(1757215743.624:4507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  696.353074][   T40] audit: type=1326 audit(1757215743.624:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  696.361090][   T40] audit: type=1326 audit(1757215743.634:4509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  696.377911][   T40] audit: type=1326 audit(1757215743.634:4510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  696.386804][   T40] audit: type=1326 audit(1757215743.634:4511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  696.394737][   T40] audit: type=1326 audit(1757215743.634:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  696.405152][   T40] audit: type=1326 audit(1757215743.634:4513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  696.414047][   T40] audit: type=1326 audit(1757215743.634:4514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16230 comm="syz.3.1888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  696.522938][T16221] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  696.528827][T16221] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  696.601610][T16231] lo speed is unknown, defaulting to 1000
[  696.604170][T16231] lo speed is unknown, defaulting to 1000
[  697.009899][T16250] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1891'.
[  697.022549][ T5979] Bluetooth: hci3: unexpected event for opcode 0x200d
[  697.283616][T16238] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  697.286166][T16238] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  697.626757][T16267] netlink: 'syz.1.1894': attribute type 12 has an invalid length.
[  698.617441][T16273] lo speed is unknown, defaulting to 1000
[  698.622592][T16273] lo speed is unknown, defaulting to 1000
[  698.786085][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  699.346048][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  699.757000][T16281] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  699.759993][T16281] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  699.854668][T16296] siw: device registration error -23
[  699.907148][T16296] veth0_to_bridge: entered promiscuous mode
[  699.910489][T16296] veth0_to_bridge: entered allmulticast mode
[  700.883002][T16307] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  700.887884][T16307] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  701.018985][T16320] netlink: 'syz.1.1907': attribute type 12 has an invalid length.
[  701.953066][T16334] netlink: 'syz.4.1909': attribute type 12 has an invalid length.
[  702.294662][T16341] netlink: 'syz.1.1910': attribute type 10 has an invalid length.
[  702.466371][ T5979] Bluetooth: hci2: command 0x0406 tx timeout
[  702.943041][T16349] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1913'.
[  702.946030][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout
[  703.071711][T16355] netlink: 'syz.4.1912': attribute type 12 has an invalid length.
[  704.105728][T16366] Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 [#1] SMP KASAN NOPTI
[  704.109539][T16366] KASAN: maybe wild-memory-access in range [0xdead4ead00000018-0xdead4ead0000001f]
[  704.114187][T16366] CPU: 3 UID: 0 PID: 16366 Comm: syz.0.1915 Not tainted syzkaller #0 PREEMPT(full) 
[  704.117070][T16366] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  704.120527][T16366] RIP: 0010:__smc_diag_dump.constprop.0+0x3ca/0x2550
[  704.122587][T16366] Code: 4c 8b b3 40 06 00 00 4d 85 f6 0f 84 f6 02 00 00 e8 bb 33 7b f6 49 8d 7e 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 f6 1e 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b
[  704.128513][T16366] RSP: 0018:ffffc90002fff198 EFLAGS: 00010a06
[  704.130431][T16366] RAX: dffffc0000000000 RBX: ffff88807956ce00 RCX: ffffc90029631000
[  704.132888][T16366] RDX: 1bd5a9d5a0000003 RSI: ffffffff8b3fd735 RDI: dead4ead00000018
[  704.135364][T16366] RBP: ffff888058ac8000 R08: 0000000000000005 R09: 0000000000000000
[  704.137792][T16366] R10: 0000000080000001 R11: 0000000000000000 R12: ffff88804c8005f0
[  704.140252][T16366] R13: ffff888058e36b40 R14: dead4ead00000000 R15: ffff88807956d440
[  704.142776][T16366] FS:  0000000000000000(0000) GS:ffff8880977bd000(0063) knlGS:00000000f5069b40
[  704.145559][T16366] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  704.147615][T16366] CR2: 0000000080002000 CR3: 00000000557a9000 CR4: 0000000000352ef0
[  704.150095][T16366] Call Trace:
[  704.151169][T16366]  <TASK>
[  704.152105][T16366]  ? netlink_sendmsg+0x8d1/0xdd0
[  704.153689][T16366]  ? ____sys_sendmsg+0xa95/0xc70
[  704.155251][T16366]  ? ___sys_sendmsg+0x134/0x1d0
[  704.156769][T16366]  ? __pfx___smc_diag_dump.constprop.0+0x10/0x10
[  704.158732][T16366]  ? find_held_lock+0x2b/0x80
[  704.160516][T16366]  ? rcu_read_unlock+0x17/0x60
[  704.162154][T16366]  ? __lock_acquire+0xb97/0x1ce0
[  704.163827][T16366]  ? rcu_is_watching+0x12/0xc0
[  704.165327][T16366]  ? lock_acquire+0x179/0x350
[  704.166815][T16366]  ? smc_diag_dump_proto+0x2ce/0x420
[  704.168594][T16366]  smc_diag_dump_proto+0x26d/0x420
[  704.170220][T16366]  smc_diag_dump+0x84/0x90
[  704.171631][T16366]  netlink_dump+0x539/0xd30
[  704.173018][T16366]  ? __pfx_netlink_dump+0x10/0x10
[  704.174604][T16366]  ? __pfx___mutex_lock+0x10/0x10
[  704.176200][T16366]  __netlink_dump_start+0x6d6/0x990
[  704.177819][T16366]  smc_diag_handler_dump+0x1f9/0x240
[  704.179551][T16366]  ? __pfx_smc_diag_handler_dump+0x10/0x10
[  704.181599][T16366]  ? __pfx_smc_diag_dump+0x10/0x10
[  704.183249][T16366]  ? sock_diag_lock_handler+0x10f/0x2e0
[  704.185083][T16366]  sock_diag_rcv_msg+0x435/0x790
[  704.186716][T16366]  netlink_rcv_skb+0x158/0x420
[  704.188241][T16366]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  704.189964][T16366]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  704.191634][T16366]  ? netlink_deliver_tap+0x1ae/0xd30
[  704.193367][T16366]  netlink_unicast+0x5a7/0x870
[  704.194901][T16366]  ? __pfx_netlink_unicast+0x10/0x10
[  704.196574][T16366]  ? __asan_memset+0x23/0x50
[  704.198110][T16366]  ? __build_skb_around+0x278/0x3b0
[  704.199776][T16366]  ? is_vmalloc_addr+0x86/0xa0
[  704.201280][T16366]  netlink_sendmsg+0x8d1/0xdd0
[  704.202782][T16366]  ? __pfx_netlink_sendmsg+0x10/0x10
[  704.204525][T16366]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  704.206416][T16366]  ____sys_sendmsg+0xa95/0xc70
[  704.207930][T16366]  ? __pfx_____sys_sendmsg+0x10/0x10
[  704.209712][T16366]  ? get_compat_msghdr+0x11a/0x170
[  704.211322][T16366]  ? __pfx_futex_wake_mark+0x10/0x10
[  704.212986][T16366]  ___sys_sendmsg+0x134/0x1d0
[  704.214557][T16366]  ? __pfx____sys_sendmsg+0x10/0x10
[  704.216209][T16366]  ? find_held_lock+0x2b/0x80
[  704.217682][T16366]  __sys_sendmsg+0x16d/0x220
[  704.219153][T16366]  ? __pfx___sys_sendmsg+0x10/0x10
[  704.220781][T16366]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  704.222460][T16366]  ? rcu_is_watching+0x12/0xc0
[  704.223943][T16366]  __do_fast_syscall_32+0x7c/0x3a0
[  704.225559][T16366]  do_fast_syscall_32+0x32/0x80
[  704.227045][T16366]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  704.228922][T16366] RIP: 0023:0xf70de579
[  704.230304][T16366] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  704.236194][T16366] RSP: 002b:00000000f506955c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  704.238757][T16366] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000540
[  704.241322][T16366] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[  704.243722][T16366] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  704.246088][T16366] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  704.248546][T16366] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  704.251008][T16366]  </TASK>
[  704.252207][T16366] Modules linked in:
[  704.254036][T16366] ---[ end trace 0000000000000000 ]---
[  704.256357][T16366] RIP: 0010:__smc_diag_dump.constprop.0+0x3ca/0x2550
[  704.258654][T16366] Code: 4c 8b b3 40 06 00 00 4d 85 f6 0f 84 f6 02 00 00 e8 bb 33 7b f6 49 8d 7e 18 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 f6 1e 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b
[  704.264658][T16366] RSP: 0018:ffffc90002fff198 EFLAGS: 00010a06
[  704.266611][T16366] RAX: dffffc0000000000 RBX: ffff88807956ce00 RCX: ffffc90029631000
[  704.269069][T16366] RDX: 1bd5a9d5a0000003 RSI: ffffffff8b3fd735 RDI: dead4ead00000018
[  704.271885][T16366] RBP: ffff888058ac8000 R08: 0000000000000005 R09: 0000000000000000
[  704.274317][T16366] R10: 0000000080000001 R11: 0000000000000000 R12: ffff88804c8005f0
[  704.276902][T16366] R13: ffff888058e36b40 R14: dead4ead00000000 R15: ffff88807956d440
[  704.279332][T16366] FS:  0000000000000000(0000) GS:ffff8880977bd000(0063) knlGS:00000000f5069b40
[  704.281997][T16366] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  704.283943][T16366] CR2: 0000000080002000 CR3: 00000000557a9000 CR4: 0000000000352ef0
[  704.286454][T16366] Kernel panic - not syncing: Fatal exception
[  704.288984][T16366] Kernel Offset: disabled
[  704.290605][T16366] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:17:17  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff81acf380 RBX=ffff88801daa9900 RCX=ffffffff81acaf63 RDX=ffffffff8e207ba0
RSI=0000000000000000 RDI=ffff88801daa9900 RBP=dffffc0000000000 RSP=ffffffff8e207b10
R8 =0000000000000004 R9 =0000000000000000 R10=0000000000000002 R11=ffff88802b23b298
R12=0000000000000002 R13=ffffffff8e207ba0 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81acf38a RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974bd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000324ffff8 CR3=00000000448c2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000003ae6cf57a RBX=ffff88802b33a440 RCX=1ffff1100566762c RDX=00000003ae6cf57a
RSI=1ffffffff1beb5cd RDI=ffff88802b33b160 RBP=ffff88802b33af80 RSP=ffffc9000446f678
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffffff90abd334 R13=ffff88802b33b068 R14=ffff88802b33af78 R15=0000000000003fc3
RIP=ffffffff8188d49b RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975bd000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000008014d018 CR3=000000006724c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000002 RBX=ffffea0001fbf180 RCX=ffffc9000d943000 RDX=ffff88802883c880
RSI=ffffffff8b8fc943 RDI=0000000000000001 RBP=0000000000000002 RSP=ffffc9002161f2e0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000010402
R12=0000000000000000 R13=dffffc0000000000 R14=ffff8880525779f8 R15=ffff8880525779c0
RIP=ffffffff81bb0b31 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880976bd000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000560f893c4000 CR3=00000000557a9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7474ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000005d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85619cf5 RDI=ffffffff9b0ff700 RBP=ffffffff9b0ff6c0 RSP=ffffc90002ffeb90
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6d203a4e4153414b
R12=0000000000000000 R13=000000000000005d R14=ffffffff9b0ff6c0 R15=ffffffff85619c90
RIP=ffffffff85619d1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977bd000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080002000 CR3=00000000557a9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000