last executing test programs:

53.70052304s ago: executing program 2 (id=2212):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000580)=0x1)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x0, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xaf)
socket$nl_generic(0x10, 0x3, 0x10)
poll(&(0x7f0000000100), 0x0, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x103)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x14d35e, 0x0)
fallocate(r1, 0x0, 0x0, 0x1000f4)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r2, 0x0, 0x0, 0x7a00, 0x0, 0x0)

45.501668534s ago: executing program 3 (id=2228):
ioperm(0x0, 0xab4b, 0x21000000007)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$packet(0x11, 0x0, 0x300)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000001080)={0x0, 0x0, 0x0, {0x0, 0x1}, {0x46, 0x2}})
r3 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x0)
ioctl$EVIOCGKEY(r3, 0x80404518, 0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000040)=@security={'security\x00', 0x44, 0x4, 0x440, 0xffffffff, 0xd0, 0x2a0, 0x2a0, 0xffffffff, 0xffffffff, 0x370, 0x370, 0x370, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@private0, @mcast1, [], [], 'nr0\x00', 'nr0\x00'}, 0x203, 0xa8, 0xd0, 0x8502}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0xa8, 0x1d0}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:modem_device_t:s0\x00'}}}, {{@ipv6={@private2, @mcast2, [], [], 'hsr0\x00', 'bond0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@AUDIT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4a0)
setsockopt$packet_int(r2, 0x107, 0x12, &(0x7f0000006ffc), 0x4)
bind$packet(r2, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="05000000000000000000210073b308000300", @ANYRES32=r6, @ANYBLOB="11002a00dd0b6162636465666768696a6b00000010002d800a0000000202020202020000"], 0x40}}, 0x0)
r7 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r7, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a)
write(r7, &(0x7f0000000000), 0x0)
r8 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r8, 0x107, 0xc, 0x0, 0x0)
nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, 0x0)
syz_80211_inject_frame(0x0, &(0x7f0000000540)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac=@broadcast}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x4, [{}, {0x12}, {}, {0x24}]}, @void, @void, @void, @void, @val={0x72, 0x6}, @void}, 0x3a)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000200)={'ip6gre0\x00', &(0x7f0000000180)={'syztnl1\x00', <r9=>0x0, 0x2f, 0xa5, 0x8, 0x4ec2, 0x0, @mcast1, @loopback, 0x80, 0x80, 0x4320, 0x6}})
sendto$packet(r0, &(0x7f0000000140)="77a56c5a061f2e01b8f5e8ed040e3252f63447979baef199cc57002c557607ac45bbfa90aa", 0x25, 0x1, &(0x7f0000000280)={0x11, 0x19, r9, 0x1, 0xff, 0x6, @local}, 0x14)
ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x40106614, 0x0)

42.73787553s ago: executing program 3 (id=2234):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

42.369539238s ago: executing program 3 (id=2236):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x2}, 0x48)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'syztnl2\x00', &(0x7f0000000440)={'syztnl1\x00', 0x0, 0x4, 0x0, 0x38, 0x9, 0x30, @mcast2, @private2, 0x40, 0x40, 0x1b5b, 0x5}})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
nanosleep(&(0x7f0000000080), 0x0)
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
r5 = socket$inet6(0xa, 0x3, 0x2)
setsockopt$inet6_buf(r5, 0x29, 0x39, &(0x7f00000001c0)="0022040000ffffebfffffffeffffff0706000000ff000207835eeb1317b208feefaf234b4ff8b4cc4c39bdc8451792b903f4b7d8c8cf2153622652328c19ef68234f905557c4070000008735e9ab2f77c62e0a5cdd2cf9984c070400000000000003ff23353d8b2fc6a3ae1ebfcb49004a3ccd3560ae01010000079c60ed7449b842f3e253be8a62", 0x88)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, &(0x7f0000000400), 0x8)
write$binfmt_aout(r5, 0x0, 0x0)
inotify_init1(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00'}, 0x10)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
inotify_add_watch(0xffffffffffffffff, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)

40.951947508s ago: executing program 3 (id=2237):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = epoll_create1(0x0)
r2 = epoll_create1(0x0)
fanotify_init(0x0, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(0xffffffffffffffff, 0x7b2, &(0x7f0000000180)={&(0x7f00000029c0)=[0x400, 0x1f, 0x9ef, 0x6, 0x3, 0xe549, 0x5, 0x3, 0xeeed, 0x4, 0xfffffffa, 0x7f, 0x0, 0x2994, 0x0, 0x8001, 0x7, 0xb5, 0x81, 0x0, 0x0, 0x4, 0x0, 0x8, 0x3, 0x7, 0x0, 0x40, 0x0, 0x2a5, 0x4, 0x0, 0x4, 0x2, 0x80000000, 0x5, 0x0, 0x20, 0x0, 0x0, 0x0, 0x5, 0xa91, 0x2, 0x0, 0x3, 0x0, 0x7fffffff, 0x6, 0x5, 0x8, 0x3f, 0x8, 0x24, 0x2, 0x5, 0x9, 0x8000, 0x0, 0x40, 0x800, 0x15, 0xb535, 0xaa, 0x4, 0x8000, 0x0, 0x955, 0xfffff68b, 0x8000, 0x9, 0x0, 0x0, 0xff, 0x6, 0x7, 0x20, 0xfffffffa, 0x1, 0x8000, 0x2, 0x7ff, 0x1, 0x7f, 0xfffff801, 0x1f, 0x29ff, 0x2, 0x7, 0x9, 0x0, 0x8, 0x8, 0x8000, 0x2, 0x4, 0x0, 0x8, 0x0, 0x3, 0x80000000, 0x200, 0x0, 0x1, 0x7f, 0x3ff, 0x0, 0x0, 0x5, 0xffffffff, 0x400, 0x5, 0xcac, 0x0, 0x4, 0x8, 0x7fffffff, 0x4, 0x2, 0xfff, 0x8, 0x20, 0x5, 0x6, 0x7fff, 0x4, 0x1, 0x0, 0xcfb5, 0x0, 0x4, 0x0, 0xf7e55a3b, 0x5, 0x5, 0x2, 0x20, 0x0, 0x4d09, 0x7fffffff, 0x4, 0x200, 0x8, 0x3, 0x8000, 0x5, 0x2f, 0xffffffff, 0x2, 0x0, 0x81, 0xb511, 0xfffffffa, 0x3, 0x0, 0x8, 0x2, 0x8000, 0x800, 0x200, 0x5c6a, 0x2, 0x0, 0x7fff, 0x8, 0x800, 0x0, 0x100, 0x0, 0xba, 0x0, 0x2, 0x9, 0x6, 0x33, 0x5b, 0x8001, 0x0, 0x800, 0x0, 0x0, 0x3, 0xfffffffb, 0x4, 0x0, 0x7, 0x0, 0x8, 0xfffff001, 0x0, 0x101, 0x3, 0x9, 0x0, 0x2, 0xfffffffa, 0x20, 0x2, 0x1, 0x3ff, 0x6, 0x9, 0x6, 0xffff8001, 0x0, 0x9, 0x5, 0x3fff8000, 0x0, 0x1, 0x1, 0x0, 0x3, 0x2, 0x80000000, 0x7fffffff, 0x6, 0x8, 0x7a17, 0x8, 0x1000, 0x1, 0x0, 0x8, 0x0, 0x1, 0x40, 0x80, 0x0, 0x4, 0xdb5, 0x1, 0x8, 0xff, 0x7, 0x8, 0x3, 0x101, 0x1, 0x9, 0x4, 0x2cef34fa, 0x10000, 0x8, 0x0, 0x4, 0xc19, 0x10000, 0x8001, 0x0, 0xa5, 0x1f, 0x8000000, 0x1, 0x1, 0x77c, 0x3, 0x0, 0x7ff, 0x1000, 0x2, 0x3f, 0x660, 0x2, 0x10000, 0x3, 0x101, 0x8, 0x67, 0x5, 0x1, 0x3212, 0xce, 0x9, 0x0, 0xfa48, 0x0, 0x0, 0xffffffff, 0x5, 0x40, 0x4, 0xbfc0, 0x12, 0x9, 0x6, 0x0, 0x84a8, 0x81, 0x7fffffff, 0x6, 0x10000, 0xffff, 0x9, 0xd32c, 0x5, 0x4, 0x459, 0x0, 0x4, 0x0, 0x0, 0x5, 0x1, 0xffffffff, 0x75, 0x176f, 0x0, 0x3c, 0xb2, 0x9, 0x3, 0x9, 0x3f, 0x6, 0xfff00000, 0x8, 0x6, 0x401, 0x7f, 0x0, 0x9, 0x81a7, 0x1, 0x8, 0x55d, 0x0, 0x7e45, 0x1000, 0x11, 0x0, 0x4, 0x1, 0x4, 0xffff, 0xa4, 0x40, 0xfffffffc, 0x8, 0x0, 0x7, 0x10001, 0x0, 0x400, 0xffff, 0x3, 0x5, 0x0, 0x12ae, 0xf, 0x200, 0x9, 0x800, 0x25, 0x0, 0x0, 0x100, 0x200, 0x1, 0x7fff, 0x8, 0x2, 0x100, 0x3, 0x3, 0x0, 0x1, 0xff, 0x0, 0x3, 0x0, 0x6, 0x8, 0x7fffffff, 0xffff, 0xffffffe1, 0xa09e, 0x0, 0x6, 0x0, 0x0, 0x4, 0x5, 0x3, 0x6, 0x0, 0x9, 0x99, 0x7fff, 0x3ff, 0x3b4b, 0x9, 0x72cf3dab, 0x5, 0xa2, 0x5, 0x2d, 0x3, 0x1, 0x1, 0x0, 0x8, 0x5, 0x4, 0x6, 0x0, 0x8, 0x9, 0x7, 0x7fffffff, 0x0, 0x8, 0x0, 0x0, 0x1, 0xffffff6d, 0x2, 0x9, 0xf288, 0x0, 0x3e00000, 0x0, 0x40, 0x1, 0xf0c, 0x6, 0x8, 0x101, 0x6, 0x5, 0x20, 0x40, 0x80000001, 0x767, 0x20, 0xffff, 0x4b03, 0x80000001, 0x2, 0x80000000, 0x7, 0x7ff, 0x6, 0x2, 0x0, 0xec, 0x0, 0x7, 0x401, 0x1, 0x5cd, 0x5, 0x4, 0x1, 0x8, 0x0, 0x0, 0x7, 0x8, 0x9, 0x6, 0x8000, 0xfff, 0x9963, 0x9, 0x3, 0x7, 0x7, 0x4, 0x4, 0x800, 0x0, 0x100, 0x1, 0x6176, 0x3, 0x6, 0x2, 0x8, 0x1, 0xfffffeff, 0x0, 0xdb, 0x81, 0xffffff7f, 0x0, 0xffffffff, 0x3, 0x9, 0x4, 0x9, 0x8, 0x8001, 0x1f, 0x9, 0x9, 0x4, 0x7, 0x7f, 0x2, 0x80000000, 0x4, 0x6, 0x3f09, 0xad, 0x5, 0x8, 0x2, 0x7, 0x6f7d, 0x2, 0x7, 0x3, 0x1, 0xffff, 0x3, 0x7, 0x8000, 0x5, 0x7fff, 0x5, 0x799, 0x5, 0x4, 0x8000, 0x0, 0x3, 0x379, 0x3, 0x0, 0x3, 0xffff, 0x20, 0xe2, 0x7, 0x0, 0x5, 0x0, 0x31, 0x6, 0x3, 0x10000, 0x7, 0x2, 0x0, 0x255, 0x9d, 0x101, 0x0, 0xa00000, 0x0, 0x2, 0x6, 0x7d22, 0x8, 0x5, 0x5372, 0x975, 0xfffffffa, 0x81, 0x400, 0x8, 0x2, 0x0, 0x20, 0x5, 0x8, 0x1df, 0x2, 0x6, 0x4, 0xffffffff, 0xfff, 0xf19, 0x1, 0x2, 0x6, 0x0, 0x2, 0x401, 0x1000, 0x7, 0x6, 0x1, 0x84, 0x8001, 0x4, 0x3, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5, 0x5, 0x0, 0x80, 0x40, 0x7, 0x8, 0x1, 0x0, 0xffffffff, 0x4, 0xfffffffc, 0x1ff, 0x2, 0x0, 0x1ff, 0x1, 0x3f, 0x0, 0x0, 0xffffffc8, 0x0, 0x3, 0x2566aafb, 0x5, 0x8, 0x4, 0x8, 0x80000001, 0x401, 0x8e, 0x40, 0x9, 0xffff, 0x7, 0xd96, 0x0, 0x7, 0xdcea, 0x6, 0x2, 0xb6, 0xffff, 0x9, 0x1, 0xffff, 0x7, 0x7fff, 0x8, 0x80, 0x1000, 0xffffffff, 0xff, 0x2, 0x9dac, 0x1, 0x0, 0x101, 0xfffffc00, 0x7, 0xa50, 0x6, 0x101, 0x3ff, 0x0, 0x4, 0x0, 0x1ff, 0x0, 0xb7df, 0x8000, 0x28, 0x2, 0x6, 0x0, 0x7f, 0x3ff, 0x6, 0x4743, 0xfb5e, 0x8, 0x101, 0x88a, 0x100, 0x3f, 0x0, 0x4, 0x101, 0x1, 0x5, 0x0, 0x4000000, 0x8d, 0x3f, 0x0, 0x3, 0xfffffffe, 0x3, 0x0, 0x7, 0x53, 0x1ff, 0x0, 0x4, 0x9, 0x4, 0x5, 0x10000, 0x6, 0xffff, 0x6, 0xfff00, 0x8000, 0x2, 0xb51, 0x6, 0x9, 0x2, 0x10000, 0x8001, 0x7, 0x5a, 0x4, 0x3, 0x2, 0x87, 0xfffffffa, 0x3, 0x0, 0x3, 0x0, 0x6, 0x64, 0x5, 0x3ff, 0xffffff80, 0x80000001, 0x8, 0x7, 0xbfc, 0x0, 0x7, 0x0, 0x10000, 0x10000, 0x9, 0x0, 0xbd, 0x4000000, 0x401, 0x4, 0x200, 0x9b, 0x3, 0x3, 0x5, 0xfffffffb, 0xfffffffc, 0x8, 0x3f, 0x0, 0x0, 0x656, 0x8, 0x200, 0x401, 0x0, 0x8d14, 0xffffffff, 0x80000000, 0x0, 0x4, 0x0, 0x3, 0x0, 0x37, 0x2, 0x311, 0xffffffff, 0x5, 0x1f, 0x5, 0x7, 0x6, 0x0, 0x17bf, 0x8, 0x0, 0x100, 0x96, 0x0, 0x7ff, 0x8, 0x2, 0x4, 0x2, 0x7, 0x8, 0x3, 0x0, 0x6, 0x7, 0x3, 0x5, 0x80000001, 0x40, 0x3, 0x3, 0x0, 0x100, 0x10003, 0x101, 0xcafb, 0x200, 0x5, 0x38, 0xa48, 0x74, 0x5, 0xe1a6, 0x0, 0x0, 0x6, 0x0, 0x0, 0x2, 0x10000, 0xfffffffa, 0x7ff, 0x7ff, 0x3, 0x7, 0x39bf, 0x0, 0x400, 0x6, 0x81, 0xfffffff7, 0x4, 0x7, 0x3, 0x5, 0x8780, 0x1ff, 0x0, 0x8, 0x2c8e, 0x0, 0x6, 0x1, 0x5, 0x0, 0x2, 0x47f2d42a, 0x800, 0x1, 0x6c15, 0x7ff, 0x6, 0x25f, 0x0, 0x8, 0x4, 0x5a2a9c84, 0x2, 0x1, 0x3, 0x3, 0x7, 0x1ff, 0x0, 0x9594, 0x9, 0x0, 0x5, 0x0, 0xd7a9, 0xfffffffd, 0x7d, 0x1, 0x9, 0x1ff, 0x3169, 0x4, 0x0, 0x8286, 0xf8ea, 0x401, 0x3, 0x4, 0x3, 0x1, 0x1ff, 0x95be, 0x0, 0x1, 0x4, 0xfffffffe, 0x0, 0x9, 0x1f, 0x7, 0x0, 0x1, 0x9, 0x0, 0x78d87041, 0x80000000, 0x3ff, 0x7f, 0x0, 0x2, 0x6, 0x80000000, 0xff, 0x2, 0xe0, 0x5, 0xf3c, 0x8, 0x2, 0x7fff, 0x8, 0x85dd, 0x2, 0xfffffff8, 0x77b, 0xf45, 0x2e9, 0x0, 0xffffffff, 0x7f, 0x2, 0x8, 0x8, 0x16600000, 0x80000001, 0x1000, 0x0, 0x1, 0x0, 0x225, 0x8000, 0x1, 0x20, 0x800, 0x12, 0x0, 0x0, 0xff, 0x7fff, 0x3b, 0x0, 0x0, 0x80000001, 0x3, 0x2a, 0x9, 0x6, 0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x20, 0x8, 0x5, 0x9, 0x200, 0x2, 0xac, 0x0, 0x8001, 0x2, 0x7, 0x34535833, 0x1594, 0x1, 0x101, 0x2, 0x1, 0x4, 0x58f2, 0x1ff, 0x0, 0x6, 0x0, 0x800, 0x9, 0x20, 0x0, 0x7, 0x3f, 0x0, 0x80000000, 0x3ff, 0x0, 0x8001, 0x0, 0x1, 0xb8, 0x8, 0x3, 0xff, 0x101, 0x1000, 0x6, 0x0, 0x0, 0x6, 0x5, 0x0, 0x1, 0x3, 0x80000000, 0x9, 0x6, 0xfff, 0x0, 0xc4, 0x9, 0x0, 0x5b, 0x0, 0x1f, 0x6], 0x4, 0x400, 0xffffffff})
r4 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r4, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r5 = open(&(0x7f0000000200)='./bus\x00', 0x141a42, 0x0)
sendfile(r5, r3, 0x0, 0xffffffff)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000c85000))

10.043297477s ago: executing program 1 (id=2320):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_GET_NAME(0x10, 0x0)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14957e, 0x0)
socket(0x0, 0x0, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000280)='./bus\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$uhid(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x20000023896)

8.277371109s ago: executing program 4 (id=2324):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000580)=0x1)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, 0x0, 0x0, 0x7a00, 0x0, 0x0)

7.980411053s ago: executing program 4 (id=2326):
syz_emit_ethernet(0x3e, &(0x7f0000000dc0)=ANY=[@ANYBLOB="591a1d9a2bdbaaaaaaaaaaaa0800450000300000000000029078ac1414aa000097b113000014ee90780000000076b5e0cebd652f71c9"], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
ptrace$ARCH_SHSTK_ENABLE(0x1e, 0x0, 0x0, 0x5001)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x201, 0x53, &(0x7f00000003c0)=""/83}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000080)={0x1060, 0x2000})
creat(0x0, 0x0)
r6 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="64000000264a05c161c3c485ae94ba5fdebc0c1cc94953a8de3e29d2e50f73406451e0e077245d6b140a14d60632d52c514a1ba4045ae5c0377b4d63abdff8092af95baa318e7fdb1623b6275b96838a5e64059838dcfda75d44a6aee2014a810d93", @ANYRES16=0x0, @ANYBLOB="00012dbd7000fddbdf250300000008000200040000000c0006", @ANYRES32=0x0, @ANYBLOB="05000200080000000500020002000000060001000a00000008000300000000000800040009000000"], 0x64}, 0x1, 0x0, 0x0, 0x8048844}, 0x4000084)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xb3550aa4ba878396}, 0x9c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x1f, 0x0, &(0x7f0000000080))
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000003c0)={0x0, @in={{0x2, 0x4e20, @multicast2}}, 0x1, 0x3f, 0x6, 0x8, 0x20, 0x80000001, 0x4}, 0x9c)

6.368323906s ago: executing program 0 (id=2327):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000001480)="7800000018002507b9409b14ffff0b7a0204be04020714056402040c5c000900080006180a0000000d0085a168d0bf46d32345653610648d270005000a06024e49935ade4a460ceb3cc408b1dff673621bb5c05090580386c902007a00004a32000400160008030a0000000000e000e243f6ddf66ed538f2", 0x78, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001800000000000000000000000a0000000002fffffe00000014000100ff02"], 0x30}}, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000004a00010000400000000000000a008000", @ANYRES32=0x0], 0x30}}, 0x0)

6.15731922s ago: executing program 4 (id=2328):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000007580)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001340)=""/19, 0x13}}], 0x1, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r1 = signalfd(0xffffffffffffffff, &(0x7f00000001c0)={[0x7ffffffc]}, 0x8)
close(r1)
r2 = gettid()
r3 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$netlink(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)={0x1c, 0x5a, 0x30d, 0x0, 0x0, "", [@nested={0xfffffe08, 0x0, 0x0, 0x1, [@typed={0x8, 0x4, 0x0, 0x0, @fd}]}]}, 0x1c}], 0x1}, 0x846)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1200440, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cachetag={'cachetag', 0x3d, 'ext4\x00'}}, {@version_L}, {@dfltgid={'dfltgid', 0x3d, 0xee01}}, {@nodevmap}, {@cache_mmap}], [{@euid_lt={'euid<', 0xffffffffffffffff}}, {@context={'context', 0x3d, 'root'}}, {@subj_role}, {@flag='rw'}, {@smackfstransmute={'smackfstransmute', 0x3d, 'ext4\x00'}}, {@seclabel}]}})
fcntl$setown(0xffffffffffffffff, 0x8, r2)
fcntl$setown(r0, 0x8, r2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES64], 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@local=@item_4={0x3, 0x2, 0x0, "449bab59"}, @main=@item_4={0x3, 0x0, 0x0, "0d34b68a"}, @local=@item_4={0x3, 0x2, 0x0, "0f4b99cb"}]}}, 0x0}, 0x0)
syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
rmdir(&(0x7f0000000280)='./file2\x00')
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r5, 0xc0185879, &(0x7f0000000040)={@desc={0x1, 0x0, @desc1}})

5.682009248s ago: executing program 0 (id=2329):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

5.577864127s ago: executing program 1 (id=2330):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmsg(r0, 0x0, 0x0)

5.474328914s ago: executing program 1 (id=2331):
socket$netlink(0x10, 0x3, 0x0)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
socket$packet(0x11, 0x2, 0x300)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_link_settings={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x2]}})
socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x36, 0x0, 0x0)
syz_open_dev$ndb(&(0x7f0000000140), 0x0, 0x2421e0c1e292ae41)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xffffffd7}], 0x1, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
msync(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r2, 0x40045564, 0x3)
r3 = dup(r2)
write$uinput_user_dev(r3, &(0x7f0000000380)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000], [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200]}, 0x45c)
ioctl$UI_DEV_CREATE(r3, 0x5501)
signalfd(0xffffffffffffffff, &(0x7f0000000740), 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f0000000080), &(0x7f0000000180)={0x7ff}, 0x0, 0x0, 0x0)

5.406956014s ago: executing program 0 (id=2332):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
setsockopt$MRT6_DEL_MIF(0xffffffffffffffff, 0x29, 0xc8, 0x0, 0xc000000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsetxattr$trusted_overlay_origin(0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500), 0x2, 0x0)
r1 = socket$inet(0x2, 0x3, 0x2)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x10000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000001}, 0x4040000)
getsockopt$inet_buf(r1, 0x0, 0x29, 0x0, &(0x7f0000000100))
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
preadv(r2, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0x0, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x20902, 0x0)
write$sequencer(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="81050018a0"], 0x10)

5.151158873s ago: executing program 2 (id=2214):
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000180)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0xffffffff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @broadcast}}}})
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000010c0)={r2, 0x0, 0xa, 0x0, &(0x7f0000000a40)="070808d6aecb899c9c14", 0x0, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
fsetxattr$security_ima(r0, &(0x7f0000000300), &(0x7f0000000340)=@v2={0x5, 0x1, 0x2, 0x0, 0xaa, "5e8675e76b2c208ffd16135e2a390200373c9e351afbaf08ed20e5d1b699ef82b49e1e6b33c04f0254695dee1507b565895cff8d88a06ee874cb4a67cd99f3e8111427c7b6ea9fb22f2b33bf1b6b6f0f87bf02fd7a18726a8be8046e013b9744332818116498db9c2a32812435fb5f7eb49749b0dee7bb3fb18076fcc9245eddacad16e28639f757b9a15af4aeb9831b80b4bfd76aacf640413dcf7014c7b27f4960c14c50f8d1d29381"}, 0xb3, 0x2)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r3}, 0x10)
syz_emit_vhci(&(0x7f0000000280)=@HCI_EVENT_PKT={0x4, @HCI_EV_VENDOR={{0xff, 0x1}, "02"}}, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0x4}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000042a8000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='ext4_ext_remove_space_done\x00', r5}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r7 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
fcntl$setstatus(r7, 0x4, 0x6000)
ftruncate(r7, 0x2)
write$binfmt_misc(r7, &(0x7f00000001c0)={'syz0'}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0xe80, 0x6000002c, &(0x7f0000000100)="b9ff03316844268cb89e14f008004ce0050000000000008877fbac0c1416e000030a89079f03b18000440c0511e0845013f2325f000708050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014c0000c0adc043084617d7ecf41effff38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d7da058f6efa6d1f5f7ff400"/254, 0x0, 0xfe, 0x60000000, 0x0, 0xfffffffe}, 0x2c)

3.483546206s ago: executing program 1 (id=2333):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000011000500000000000000000007000000", @ANYRES32=r2, @ANYBLOB], 0x2c}}, 0x0)

3.364479865s ago: executing program 4 (id=2334):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000580)=0x1)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, 0x0, 0x0, 0x7a00, 0x0, 0x0)

3.330259158s ago: executing program 2 (id=2335):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
socket$inet(0x2, 0x0, 0x0)
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
close(r0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
write(r1, 0x0, 0x0)
creat(0x0, 0x0)

3.159869237s ago: executing program 1 (id=2336):
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000180)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0xffffffff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @broadcast}}}})
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x41}, @printk={@s}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000010c0)={r2, 0x0, 0xa, 0x0, &(0x7f0000000a40)="070808d6aecb899c9c14", 0x0, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
fsetxattr$security_ima(r0, &(0x7f0000000300), &(0x7f0000000340)=@v2={0x5, 0x1, 0x2, 0x0, 0xaa, "5e8675e76b2c208ffd16135e2a390200373c9e351afbaf08ed20e5d1b699ef82b49e1e6b33c04f0254695dee1507b565895cff8d88a06ee874cb4a67cd99f3e8111427c7b6ea9fb22f2b33bf1b6b6f0f87bf02fd7a18726a8be8046e013b9744332818116498db9c2a32812435fb5f7eb49749b0dee7bb3fb18076fcc9245eddacad16e28639f757b9a15af4aeb9831b80b4bfd76aacf640413dcf7014c7b27f4960c14c50f8d1d29381"}, 0xb3, 0x2)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r3}, 0x10)
syz_emit_vhci(&(0x7f0000000280)=@HCI_EVENT_PKT={0x4, @HCI_EV_VENDOR={{0xff, 0x1}, "02"}}, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x4, 0x4}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000042a8000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='ext4_ext_remove_space_done\x00', r5}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r7 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
fcntl$setstatus(r7, 0x4, 0x6000)
ftruncate(r7, 0x2)
write$binfmt_misc(r7, &(0x7f00000001c0)={'syz0'}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0xe80, 0x6000002c, &(0x7f0000000100)="b9ff03316844268cb89e14f008004ce0050000000000008877fbac0c1416e000030a89079f03b18000440c0511e0845013f2325f000708050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014c0000c0adc043084617d7ecf41effff38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d7da058f6efa6d1f5f7ff400"/254, 0x0, 0xfe, 0x60000000, 0x0, 0xfffffffe}, 0x2c)

3.008470269s ago: executing program 4 (id=2337):
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x43, &(0x7f0000000080), 0x4)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x14727d, 0x0)
r3 = syz_open_dev$media(0x0, 0x0, 0x0)
r4 = syz_open_dev$media(&(0x7f0000001a80), 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(r4, 0xc0287c02, &(0x7f00000002c0)={0x80000000, 0x0, &(0x7f0000000240)=[{{}, {<r5=>0x80000000}}, {{<r6=>0x80000000}}]})
ioctl$MEDIA_IOC_SETUP_LINK(r3, 0xc0347c03, &(0x7f0000000400)={{r5, 0x0, 0x0, [0x0, 0x10000]}, {r6, 0x0, 0x4}, 0x0, [0x3, 0x40000]})

1.671156594s ago: executing program 4 (id=2338):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_GET_NAME(0x10, 0x0)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14957e, 0x0)
socket(0x0, 0x0, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000280)='./bus\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$uhid(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x20000023896)

1.47930352s ago: executing program 2 (id=2339):
unshare(0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
recvmsg(r0, 0x0, 0x0)

1.287233345s ago: executing program 2 (id=2340):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

1.133126786s ago: executing program 3 (id=2240):
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(r1, 0x800)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r2, 0x0, 0xf800)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x26900, 0x182)
sendfile(r0, r3, 0x0, 0xf800)

904.17598ms ago: executing program 0 (id=2341):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
write(r0, &(0x7f0000000540)="953820a61a166fd5dd4b4b", 0xfdef)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.controllers\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f00000000c0), 0x12)
ioctl$SIOCSIFHWADDR(r1, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc, 0x2}})
io_setup(0x1, &(0x7f00000004c0)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)
io_submit(r2, 0x1, &(0x7f00000002c0)=[&(0x7f0000000280)={0xffffff7f00000000, 0x0, 0x11, 0x0, 0x0, r3, &(0x7f0000000200)="96", 0x1}])

740.501285ms ago: executing program 2 (id=2342):
signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
gettid()
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES64], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xa, {[@local=@item_4={0x3, 0x2, 0x0, "449bab59"}, @local=@item_4={0x3, 0x2, 0x0, "0f4b99cb"}]}}, 0x0}, 0x0)
syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

694.422722ms ago: executing program 3 (id=2343):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000007580)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001340)=""/19, 0x13}}], 0x1, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r1 = signalfd(0xffffffffffffffff, &(0x7f00000001c0)={[0x7ffffffc]}, 0x8)
close(r1)
r2 = gettid()
r3 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$netlink(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)={0x1c, 0x5a, 0x30d, 0x0, 0x0, "", [@nested={0xfffffe08, 0x0, 0x0, 0x1, [@typed={0x8, 0x4, 0x0, 0x0, @fd}]}]}, 0x1c}], 0x1}, 0x846)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1200440, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cachetag={'cachetag', 0x3d, 'ext4\x00'}}, {@version_L}, {@dfltgid={'dfltgid', 0x3d, 0xee01}}, {@nodevmap}, {@cache_mmap}], [{@euid_lt={'euid<', 0xffffffffffffffff}}, {@context={'context', 0x3d, 'root'}}, {@subj_role}, {@flag='rw'}, {@smackfstransmute={'smackfstransmute', 0x3d, 'ext4\x00'}}, {@seclabel}]}})
fcntl$setown(0xffffffffffffffff, 0x8, r2)
fcntl$setown(r0, 0x8, r2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES64], 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@local=@item_4={0x3, 0x2, 0x0, "449bab59"}, @main=@item_4={0x3, 0x0, 0x0, "0d34b68a"}, @local=@item_4={0x3, 0x2, 0x0, "0f4b99cb"}]}}, 0x0}, 0x0)
syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
rmdir(&(0x7f0000000280)='./file2\x00')

472.747403ms ago: executing program 1 (id=2344):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x8000f28, 0x0)
splice(r2, 0x0, r1, 0x0, 0x7f, 0x0)

331.267992ms ago: executing program 0 (id=2345):
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='ramfs\x00', 0x0, 0x0)
chdir(0x0)
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='./file0\x00', r0, &(0x7f00000000c0)='./file0\x00')
mkdirat(r0, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
symlinkat(&(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000003c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00')
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
renameat2(r1, 0x0, r1, &(0x7f0000000580)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))

0s ago: executing program 0 (id=2346):
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x64e00}], 0x1, 0x7800, 0x0, 0x3)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000600)={"c08af21d1d8ab3c82f45c51a36cef829", 0x0, 0x0, {0xffff}, {0x1ff}, 0x0, [0x4, 0x12, 0xffffffffffffffff, 0x10000, 0x0, 0x1, 0x5, 0x4, 0x7fffffffffffffff, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1fd, 0x2]})
signalfd(0xffffffffffffffff, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000001800)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha3-384-generic)\x00'}, 0x58)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x140, @multicast2}, 0x10)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, &(0x7f0000000080))
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000700)={{}, 0x0, 0x6, @unused=[0x5, 0x5, 0xffffffff], @subvolid})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r1, &(0x7f0000000200), 0x43451)
mkdir(0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c"], 0x7c}}, 0x0)

kernel console output (not intermixed with test programs):

the interface descriptor's value: 21
[  847.854428][ T1153] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  847.888778][ T1153] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  847.936833][ T1153] usb 2-1: config 0 descriptor??
[  847.974492][T11524] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  848.449945][   T53] Bluetooth: hci1: command tx timeout
[  848.477454][ T1153] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  848.493540][ T1153] plantronics 0003:047F:FFFF.0015: No inputs registered, leaving
[  848.512412][ T1153] plantronics 0003:047F:FFFF.0015: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  848.717378][   T81] team0 (unregistering): Port device team_slave_1 removed
[  848.832028][   T81] team0 (unregistering): Port device team_slave_0 removed
[  848.845395][   T53] Bluetooth: hci4: command tx timeout
[  849.261162][ T1153] usb 2-1: USB disconnect, device number 29
[  850.075491][   T29] audit: type=1804 audit(1719600490.331:1304): pid=11572 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1683" name="/root/syzkaller.kJGzwX/403/bus" dev="sda1" ino=2002 res=1 errno=0
[  850.108177][T11464] chnl_net:caif_netlink_parms(): no params data found
[  850.188824][   T29] audit: type=1800 audit(1719600490.331:1305): pid=11572 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1683" name="bus" dev="sda1" ino=2002 res=0 errno=0
[  850.276897][   T29] audit: type=1804 audit(1719600490.371:1306): pid=11572 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1683" name="/root/syzkaller.kJGzwX/403/bus" dev="sda1" ino=2002 res=1 errno=0
[  850.412017][   T29] audit: type=1800 audit(1719600490.371:1307): pid=11572 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1683" name="bus" dev="sda1" ino=2002 res=0 errno=0
[  850.446085][T11460] chnl_net:caif_netlink_parms(): no params data found
[  850.525237][   T53] Bluetooth: hci1: command tx timeout
[  850.925416][   T53] Bluetooth: hci4: command tx timeout
[  851.454291][T11464] bridge0: port 1(bridge_slave_0) entered blocking state
[  851.480971][T11464] bridge0: port 1(bridge_slave_0) entered disabled state
[  851.498086][T11464] bridge_slave_0: entered allmulticast mode
[  851.507911][T11464] bridge_slave_0: entered promiscuous mode
[  851.627546][T11601] netlink: 'syz.1.1690': attribute type 27 has an invalid length.
[  851.652740][T11464] bridge0: port 2(bridge_slave_1) entered blocking state
[  851.666000][T11464] bridge0: port 2(bridge_slave_1) entered disabled state
[  851.673451][T11464] bridge_slave_1: entered allmulticast mode
[  851.708420][T11464] bridge_slave_1: entered promiscuous mode
[  851.727590][T11460] bridge0: port 1(bridge_slave_0) entered blocking state
[  851.751670][T11460] bridge0: port 1(bridge_slave_0) entered disabled state
[  851.785813][T11460] bridge_slave_0: entered allmulticast mode
[  851.801016][T11460] bridge_slave_0: entered promiscuous mode
[  852.163777][T11460] bridge0: port 2(bridge_slave_1) entered blocking state
[  852.211027][T11460] bridge0: port 2(bridge_slave_1) entered disabled state
[  852.255526][T11460] bridge_slave_1: entered allmulticast mode
[  852.265517][T11460] bridge_slave_1: entered promiscuous mode
[  852.651454][T11464] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  852.739065][T11464] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  852.952432][T11460] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  854.699475][T11464] team0: Port device team_slave_0 added
[  854.723341][T11460] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  854.979452][T11464] team0: Port device team_slave_1 added
[  855.106355][T11253] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  855.203171][T11460] team0: Port device team_slave_0 added
[  855.326716][T11253] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 64, changing to 10
[  855.369587][T11253] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  855.403365][T11253] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  855.435939][T11464] batman_adv: batadv0: Adding interface: batadv_slave_0
[  855.442955][T11464] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  855.475594][T11253] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  855.511646][T11644] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  855.567213][T11464] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  855.620413][T11460] team0: Port device team_slave_1 added
[  855.765398][T11464] batman_adv: batadv0: Adding interface: batadv_slave_1
[  855.772422][T11464] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  855.875680][T11464] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  856.481529][T11460] batman_adv: batadv0: Adding interface: batadv_slave_0
[  856.510394][T11460] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  856.624845][T11460] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  856.659552][T11460] batman_adv: batadv0: Adding interface: batadv_slave_1
[  856.676605][T11460] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  856.775126][T11460] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  858.181351][T11464] hsr_slave_0: entered promiscuous mode
[  858.248991][T11464] hsr_slave_1: entered promiscuous mode
[  858.259586][T11253] usb 2-1: USB disconnect, device number 30
[  858.306901][T11464] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  858.314541][T11464] Cannot create hsr debugfs directory
[  858.408128][T11681] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  858.494149][   T29] audit: type=1326 audit(1719600498.751:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11680 comm="syz.4.1708" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a6f775b29 code=0x0
[  858.739694][T11460] hsr_slave_0: entered promiscuous mode
[  858.770409][T11460] hsr_slave_1: entered promiscuous mode
[  858.792542][T11460] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  858.810981][T11460] Cannot create hsr debugfs directory
[  859.071529][   T81] bridge_slave_1: left allmulticast mode
[  859.081846][   T81] bridge_slave_1: left promiscuous mode
[  859.094813][   T81] bridge0: port 2(bridge_slave_1) entered disabled state
[  859.176824][   T81] bridge_slave_0: left allmulticast mode
[  859.185215][   T81] bridge_slave_0: left promiscuous mode
[  859.191147][   T81] bridge0: port 1(bridge_slave_0) entered disabled state
[  862.211456][   T81] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  862.293110][   T81] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  862.374298][   T81] bond0 (unregistering): Released all slaves
[  863.287697][   T81] hsr_slave_0: left promiscuous mode
[  863.538082][   T81] hsr_slave_1: left promiscuous mode
[  863.588676][   T81] batman_adv: batadv0: Removing interface: batadv_slave_0
[  863.631425][   T81] batman_adv: batadv0: Removing interface: batadv_slave_1
[  864.340252][T11741] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  864.405608][   T29] audit: type=1326 audit(1719600504.661:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11740 comm="syz.4.1723" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a6f775b29 code=0x0
[  864.856122][   T81] team0 (unregistering): Port device team_slave_1 removed
[  864.902448][   T29] audit: type=1804 audit(1719600505.161:1310): pid=11750 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1727" name="/root/syzkaller.tF51j8/133/bus" dev="sda1" ino=1995 res=1 errno=0
[  864.926068][    C1] vkms_vblank_simulate: vblank timer overrun
[  864.965353][   T29] audit: type=1800 audit(1719600505.161:1311): pid=11750 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1727" name="bus" dev="sda1" ino=1995 res=0 errno=0
[  865.043380][   T29] audit: type=1804 audit(1719600505.161:1312): pid=11750 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1727" name="/root/syzkaller.tF51j8/133/bus" dev="sda1" ino=1995 res=1 errno=0
[  865.076309][   T81] team0 (unregistering): Port device team_slave_0 removed
[  865.102045][   T29] audit: type=1800 audit(1719600505.161:1313): pid=11750 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1727" name="bus" dev="sda1" ino=1995 res=0 errno=0
[  865.123818][    C1] vkms_vblank_simulate: vblank timer overrun
[  865.715257][ T5141] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  865.906500][ T5141] usb 4-1: Using ep0 maxpacket: 32
[  865.927039][ T5141] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  865.950278][ T5141] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  865.971796][ T5141] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  866.003911][ T5141] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  866.019814][ T5141] usb 4-1: Product: syz
[  866.024237][ T5141] usb 4-1: Manufacturer: syz
[  866.047748][ T5141] hub 4-1:4.0: USB hub found
[  866.304435][ T5141] hub 4-1:4.0: 2 ports detected
[  867.403933][T11232] usb 4-1: USB disconnect, device number 18
[  867.411895][ T5141] hub 4-1:4.0: hub_ext_port_status failed (err = -71)
[  868.058645][   T29] audit: type=1800 audit(1719600508.321:1314): pid=11786 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.1735" name="bus" dev="sda1" ino=1994 res=0 errno=0
[  868.165243][   T29] audit: type=1800 audit(1719600508.371:1315): pid=11786 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.1735" name="bus" dev="sda1" ino=1994 res=0 errno=0
[  868.434162][T11464] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  868.722672][T11464] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  868.735760][T11464] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  868.895244][T11797] syz.3.1737: attempt to access beyond end of device
[  868.895244][T11797] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  868.908117][T11797] (syz.3.1737,11797,0):ocfs2_get_sector:1771 ERROR: status = -5
[  868.915900][T11797] (syz.3.1737,11797,0):ocfs2_sb_probe:749 ERROR: status = -5
[  868.923347][T11797] (syz.3.1737,11797,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  868.932126][T11797] (syz.3.1737,11797,0):ocfs2_fill_super:1178 ERROR: status = -5
[  869.805484][T11464] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  872.252779][T11460] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  872.316092][T11460] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  872.369910][T11464] 8021q: adding VLAN 0 to HW filter on device bond0
[  872.404358][T11460] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  872.450897][T11460] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  872.573266][T11464] 8021q: adding VLAN 0 to HW filter on device team0
[  872.657704][ T5141] bridge0: port 1(bridge_slave_0) entered blocking state
[  872.665099][ T5141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  872.696277][   T53] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  872.767680][T11232] bridge0: port 2(bridge_slave_1) entered blocking state
[  872.774984][T11232] bridge0: port 2(bridge_slave_1) entered forwarding state
[  872.955494][   T29] audit: type=1800 audit(1719600513.211:1316): pid=11841 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1750" name="bus" dev="sda1" ino=1994 res=0 errno=0
[  873.914475][   T29] audit: type=1800 audit(1719600513.761:1317): pid=11849 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1751" name="bus" dev="sda1" ino=1994 res=0 errno=0
[  874.012215][   T29] audit: type=1800 audit(1719600514.251:1318): pid=11850 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1751" name="bus" dev="sda1" ino=1994 res=0 errno=0
[  874.112069][T11460] 8021q: adding VLAN 0 to HW filter on device bond0
[  874.264791][T11460] 8021q: adding VLAN 0 to HW filter on device team0
[  874.378676][T11251] bridge0: port 1(bridge_slave_0) entered blocking state
[  874.386047][T11251] bridge0: port 1(bridge_slave_0) entered forwarding state
[  874.477613][  T785] bridge0: port 2(bridge_slave_1) entered blocking state
[  874.484994][  T785] bridge0: port 2(bridge_slave_1) entered forwarding state
[  875.310357][T11876] syz.3.1754: attempt to access beyond end of device
[  875.310357][T11876] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  875.324034][T11876] (syz.3.1754,11876,1):ocfs2_get_sector:1771 ERROR: status = -5
[  875.333010][T11876] (syz.3.1754,11876,1):ocfs2_sb_probe:749 ERROR: status = -5
[  875.340613][T11876] (syz.3.1754,11876,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  875.349628][T11876] (syz.3.1754,11876,1):ocfs2_fill_super:1178 ERROR: status = -5
[  875.695921][T11464] 8021q: adding VLAN 0 to HW filter on device batadv0
[  876.157189][  T785] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  876.252981][T11464] veth0_vlan: entered promiscuous mode
[  876.310644][T11464] veth1_vlan: entered promiscuous mode
[  876.365528][  T785] usb 2-1: Using ep0 maxpacket: 8
[  876.385363][  T785] usb 2-1: config 32 has an invalid interface number: 77 but max is 1
[  876.407768][  T785] usb 2-1: config 32 contains an unexpected descriptor of type 0x1, skipping
[  876.439808][  T785] usb 2-1: config 32 contains an unexpected descriptor of type 0x2, skipping
[  876.463197][  T785] usb 2-1: config 32 has an invalid interface association descriptor of length 5, skipping
[  876.494343][  T785] usb 2-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config
[  876.534736][  T785] usb 2-1: config 32 has 1 interface, different from the descriptor's value: 2
[  876.569494][  T785] usb 2-1: config 32 has no interface number 0
[  876.580894][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64
[  876.593095][T11464] veth0_macvtap: entered promiscuous mode
[  876.656044][T11464] veth1_macvtap: entered promiscuous mode
[  876.684950][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  876.705524][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  876.775258][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64
[  876.803326][T11460] 8021q: adding VLAN 0 to HW filter on device batadv0
[  876.840133][  T785] usb 2-1: config 32 interface 77 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[  876.867227][T11464] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  876.905329][  T785] usb 2-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping
[  876.921531][T11464] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  876.942567][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64
[  876.967861][T11464] batman_adv: batadv0: Interface activated: batadv_slave_0
[  877.002854][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64
[  877.026633][T11464] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  877.037499][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  877.050838][T11464] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  877.065687][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  877.081594][T11464] batman_adv: batadv0: Interface activated: batadv_slave_1
[  877.098159][  T785] usb 2-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12
[  877.136275][  T785] usb 2-1: config 32 interface 77 has no altsetting 0
[  877.159453][T11464] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  877.169474][T11464] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  877.182226][  T785] usb 2-1: Dual-Role OTG device on HNP port
[  877.189131][T11464] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  877.198497][  T785] usb 2-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33
[  877.210220][  T785] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  877.218775][T11464] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  877.235372][  T785] usb 2-1: Product: syz
[  877.267437][  T785] usb 2-1: Manufacturer: syz
[  877.290172][  T785] usb 2-1: SerialNumber: syz
[  877.520279][T11460] veth0_vlan: entered promiscuous mode
[  877.621375][T11460] veth1_vlan: entered promiscuous mode
[  877.698707][  T785] option 2-1:32.77: GSM modem (1-port) converter detected
[  877.808321][  T785] usb 2-1: USB disconnect, device number 31
[  877.865720][  T785] option 2-1:32.77: device disconnected
[  877.982238][ T2469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  877.997192][T11460] veth0_macvtap: entered promiscuous mode
[  878.005351][ T2469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  878.074985][T11460] veth1_macvtap: entered promiscuous mode
[  878.163020][   T29] audit: type=1800 audit(1719600518.421:1319): pid=11894 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1759" name="bus" dev="sda1" ino=1991 res=0 errno=0
[  878.232724][   T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  878.261892][   T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  878.349874][T11460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  878.423042][T11460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  878.454746][T11460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  878.472211][T11460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  878.490013][T11460] batman_adv: batadv0: Interface activated: batadv_slave_0
[  878.522985][T11460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  878.567022][   T29] audit: type=1800 audit(1719600518.811:1320): pid=11904 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1761" name="bus" dev="sda1" ino=2006 res=0 errno=0
[  878.625150][T11460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  878.670516][T11460] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  878.681980][   T29] audit: type=1800 audit(1719600518.931:1321): pid=11906 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1761" name="bus" dev="sda1" ino=2006 res=0 errno=0
[  878.706200][T11460] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  878.709169][T11460] batman_adv: batadv0: Interface activated: batadv_slave_1
[  879.061035][T11460] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  879.074346][T11460] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  879.084707][T11460] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  879.098216][T11460] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  879.752336][T11917] syz.4.1764: attempt to access beyond end of device
[  879.752336][T11917] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  879.770290][T11917] (syz.4.1764,11917,0):ocfs2_get_sector:1771 ERROR: status = -5
[  879.778199][T11917] (syz.4.1764,11917,0):ocfs2_sb_probe:749 ERROR: status = -5
[  879.785707][T11917] (syz.4.1764,11917,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  879.794451][T11917] (syz.4.1764,11917,0):ocfs2_fill_super:1178 ERROR: status = -5
[  880.676037][   T53] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  880.924966][   T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  880.964347][   T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  880.974985][   T29] audit: type=1800 audit(1719600521.231:1322): pid=11928 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1769" name="bus" dev="sda1" ino=1989 res=0 errno=0
[  881.206076][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  881.232697][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  881.253407][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[  881.262288][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
[  882.647217][ T1153] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  883.486185][   T29] audit: type=1326 audit(1719600523.321:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11938 comm="syz.0.1773" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7aa6575b29 code=0x0
[  883.545901][ T1153] usb 2-1: Using ep0 maxpacket: 8
[  883.571262][ T1153] usb 2-1: config 32 has an invalid interface number: 77 but max is 1
[  883.598022][ T1153] usb 2-1: config 32 contains an unexpected descriptor of type 0x1, skipping
[  883.640156][ T1153] usb 2-1: config 32 contains an unexpected descriptor of type 0x2, skipping
[  883.675844][ T1153] usb 2-1: config 32 has an invalid interface association descriptor of length 5, skipping
[  883.712624][ T1153] usb 2-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config
[  883.743009][ T1153] usb 2-1: config 32 has 1 interface, different from the descriptor's value: 2
[  883.770992][   T29] audit: type=1800 audit(1719600524.021:1324): pid=11958 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1775" name="bus" dev="sda1" ino=2012 res=0 errno=0
[  883.802380][ T1153] usb 2-1: config 32 has no interface number 0
[  884.192004][ T1153] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64
[  884.364290][T11962] syz.2.1777: attempt to access beyond end of device
[  884.364290][T11962] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  884.378030][T11962] (syz.2.1777,11962,0):ocfs2_get_sector:1771 ERROR: status = -5
[  884.385947][T11962] (syz.2.1777,11962,0):ocfs2_sb_probe:749 ERROR: status = -5
[  884.393516][T11962] (syz.2.1777,11962,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  884.402597][T11962] (syz.2.1777,11962,0):ocfs2_fill_super:1178 ERROR: status = -5
[  885.627373][   T29] audit: type=1800 audit(1719600524.411:1325): pid=11958 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1775" name="bus" dev="sda1" ino=2012 res=0 errno=0
[  886.147240][ T1153] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  886.164310][ T1153] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  886.178099][ T1153] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64
[  886.190504][ T1153] usb 2-1: config 32 interface 77 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[  886.205127][ T1153] usb 2-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping
[  886.225183][ T1153] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64
[  886.413464][   T53] Bluetooth: hci3: Malformed MSFT vendor event: 0x02
[  886.616993][ T1153] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64
[  886.629705][ T1153] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  886.643185][ T1153] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  886.665155][ T1153] usb 2-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12
[  886.980382][ T1153] usb 2-1: config 32 interface 77 has no altsetting 0
[  887.861337][ T1153] usb 2-1: string descriptor 0 read error: -71
[  887.878775][ T1153] usb 2-1: Dual-Role OTG device on HNP port
[  887.886294][ T1153] usb 2-1: can't set HNP mode: -71
[  888.183058][   T53] Bluetooth: hci1: Malformed MSFT vendor event: 0x02
[  888.225416][ T5141] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  888.256473][T11991] trusted_key: encrypted_key: insufficient parameters specified
[  888.487287][ T5141] usb 1-1: Using ep0 maxpacket: 16
[  888.491429][   T29] audit: type=1326 audit(1719600528.751:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11984 comm="syz.1.1784" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x0
[  888.543768][ T5141] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 10
[  888.666710][ T5141] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  888.709918][ T5141] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  888.719111][ T5141] usb 1-1: Product: syz
[  888.726417][ T5141] usb 1-1: Manufacturer: syz
[  888.763945][ T5141] usb 1-1: SerialNumber: syz
[  888.803631][ T5141] usb 1-1: config 0 descriptor??
[  888.867078][ T5141] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  889.006586][ T5141] usb 1-1: Detected FT232H
[  889.602046][ T5141] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  889.630834][ T5141] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  889.655168][ T5141] ftdi_sio 1-1:0.0: GPIO initialisation failed: -71
[  889.738866][ T5141] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  889.813733][ T5141] usb 1-1: USB disconnect, device number 13
[  889.880149][ T5141] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  889.929238][ T5141] ftdi_sio 1-1:0.0: device disconnected
[  890.605169][  T785] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  890.815480][  T785] usb 2-1: Using ep0 maxpacket: 8
[  890.847319][  T785] usb 2-1: config 32 has an invalid interface number: 77 but max is 1
[  890.915245][  T785] usb 2-1: config 32 contains an unexpected descriptor of type 0x1, skipping
[  890.982634][  T785] usb 2-1: config 32 contains an unexpected descriptor of type 0x2, skipping
[  891.016644][  T785] usb 2-1: config 32 has an invalid interface association descriptor of length 5, skipping
[  891.064413][  T785] usb 2-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config
[  891.125143][  T785] usb 2-1: config 32 has 1 interface, different from the descriptor's value: 2
[  891.175150][  T785] usb 2-1: config 32 has no interface number 0
[  891.195232][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64
[  891.461119][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  891.525376][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  891.537707][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64
[  891.554841][  T785] usb 2-1: config 32 interface 77 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[  891.583813][  T785] usb 2-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping
[  891.612493][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64
[  891.626370][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64
[  891.637839][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  891.650348][  T785] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  891.662984][  T785] usb 2-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12
[  891.680279][  T785] usb 2-1: config 32 interface 77 has no altsetting 0
[  891.691779][  T785] usb 2-1: Dual-Role OTG device on HNP port
[  891.700058][  T785] usb 2-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33
[  891.712186][  T785] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  891.725725][  T785] usb 2-1: Product: syz
[  891.733535][  T785] usb 2-1: Manufacturer: syz
[  891.738884][  T785] usb 2-1: SerialNumber: syz
[  892.991615][  T785] option 2-1:32.77: GSM modem (1-port) converter detected
[  893.135456][  T785] usb 2-1: USB disconnect, device number 34
[  893.220503][  T785] option 2-1:32.77: device disconnected
[  893.429048][ T5096] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  893.443151][ T5096] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  893.454245][ T5096] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  893.490791][ T5096] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  893.528160][ T5096] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  893.536947][ T5096] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  893.600228][ T2469] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  893.973116][ T2469] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  894.283901][ T2469] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  894.846739][ T2469] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  895.566638][ T5096] Bluetooth: hci4: command tx timeout
[  895.788402][ T2469] bridge_slave_1: left allmulticast mode
[  895.800051][ T2469] bridge_slave_1: left promiscuous mode
[  895.824492][ T2469] bridge0: port 2(bridge_slave_1) entered disabled state
[  895.843494][ T2469] bridge_slave_0: left allmulticast mode
[  895.850805][ T2469] bridge_slave_0: left promiscuous mode
[  895.857300][ T2469] bridge0: port 1(bridge_slave_0) entered disabled state
[  895.904301][ T5096] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  897.675332][ T5096] Bluetooth: hci4: command tx timeout
[  898.004180][T12070] Falling back ldisc for ttyprintk.
[  898.466788][ T2469] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  898.496623][ T2469] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  898.541897][ T2469] bond0 (unregistering): Released all slaves
[  899.760941][ T5096] Bluetooth: hci4: command tx timeout
[  901.130955][ T2469] hsr_slave_0: left promiscuous mode
[  901.195453][ T2469] hsr_slave_1: left promiscuous mode
[  901.228575][ T2469] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  901.245182][ T2469] batman_adv: batadv0: Removing interface: batadv_slave_0
[  901.279574][   T29] audit: type=1326 audit(1719600541.531:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12111 comm="syz.2.1823" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18fcb75b29 code=0x0
[  901.315565][ T2469] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  901.352507][ T2469] batman_adv: batadv0: Removing interface: batadv_slave_1
[  901.875456][ T5096] Bluetooth: hci4: command tx timeout
[  902.020785][ T2469] veth1_macvtap: left promiscuous mode
[  902.059732][ T2469] veth0_macvtap: left promiscuous mode
[  902.111949][ T2469] veth1_vlan: left promiscuous mode
[  902.625383][ T2469] veth0_vlan: left promiscuous mode
[  904.150502][T12145] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1832'.
[  904.492052][   T29] audit: type=1326 audit(1719600544.751:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12155 comm="syz.4.1836" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a6f775b29 code=0x0
[  904.585168][   T29] audit: type=1804 audit(1719600544.841:1329): pid=12159 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1837" name="/root/syzkaller.tF51j8/157/bus" dev="sda1" ino=2008 res=1 errno=0
[  904.646125][   T29] audit: type=1800 audit(1719600544.841:1330): pid=12159 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1837" name="bus" dev="sda1" ino=2008 res=0 errno=0
[  904.703111][   T29] audit: type=1804 audit(1719600544.901:1331): pid=12162 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.1.1837" name="/root/syzkaller.tF51j8/157/bus" dev="sda1" ino=2008 res=1 errno=0
[  904.716012][T12159] netlink: 'syz.1.1837': attribute type 1 has an invalid length.
[  904.732576][   T29] audit: type=1804 audit(1719600544.951:1332): pid=12159 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.1.1837" name="/root/syzkaller.tF51j8/157/bus" dev="sda1" ino=2008 res=1 errno=0
[  904.785505][   T29] audit: type=1804 audit(1719600545.021:1333): pid=12159 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1837" name="/root/syzkaller.tF51j8/157/bus" dev="sda1" ino=2008 res=1 errno=0
[  904.809104][    C0] vkms_vblank_simulate: vblank timer overrun
[  904.829367][   T29] audit: type=1800 audit(1719600545.021:1334): pid=12159 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1837" name="bus" dev="sda1" ino=2008 res=0 errno=0
[  904.852724][   T29] audit: type=1804 audit(1719600545.091:1335): pid=12162 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1837" name="/root/syzkaller.tF51j8/157/bus" dev="sda1" ino=2008 res=1 errno=0
[  904.876222][    C0] vkms_vblank_simulate: vblank timer overrun
[  904.903379][   T29] audit: type=1800 audit(1719600545.091:1336): pid=12162 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1837" name="bus" dev="sda1" ino=2008 res=0 errno=0
[  904.925045][    C0] vkms_vblank_simulate: vblank timer overrun
[  905.436373][ T2469] team0 (unregistering): Port device team_slave_1 removed
[  905.538095][ T2469] team0 (unregistering): Port device team_slave_0 removed
[  906.102466][T12181] syz.4.1842: attempt to access beyond end of device
[  906.102466][T12181] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  906.115493][T12181] (syz.4.1842,12181,1):ocfs2_get_sector:1771 ERROR: status = -5
[  906.123193][T12181] (syz.4.1842,12181,1):ocfs2_sb_probe:749 ERROR: status = -5
[  906.130974][T12181] (syz.4.1842,12181,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  906.140645][T12181] (syz.4.1842,12181,1):ocfs2_fill_super:1178 ERROR: status = -5
[  907.286202][T12193] trusted_key: encrypted_key: insufficient parameters specified
[  907.489430][T11235] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  907.696544][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  907.696572][   T29] audit: type=1326 audit(1719600547.951:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12197 comm="syz.4.1850" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a6f775b29 code=0x0
[  907.736755][T11235] usb 3-1: Using ep0 maxpacket: 16
[  907.760856][T11235] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 10
[  907.787036][T11235] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  907.805263][T11235] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  907.813487][T11235] usb 3-1: Product: syz
[  907.825984][T11235] usb 3-1: Manufacturer: syz
[  907.830832][T11235] usb 3-1: SerialNumber: syz
[  907.847767][T11235] usb 3-1: config 0 descriptor??
[  907.866649][T11235] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  907.880461][T11235] usb 3-1: Detected FT232H
[  908.038268][T12034] chnl_net:caif_netlink_parms(): no params data found
[  908.097345][T11235] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  908.145602][T11235] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  908.163606][T11235] ftdi_sio 3-1:0.0: GPIO initialisation failed: -71
[  908.199180][T11235] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  908.265901][T11235] usb 3-1: USB disconnect, device number 17
[  908.292444][   T29] audit: type=1804 audit(1719600548.551:1340): pid=12200 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1851" name="/root/syzkaller.kJGzwX/459/bus" dev="sda1" ino=2008 res=1 errno=0
[  908.301883][T11235] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  908.357452][T11235] ftdi_sio 3-1:0.0: device disconnected
[  908.414092][T12200] netlink: 'syz.3.1851': attribute type 1 has an invalid length.
[  908.423274][   T29] audit: type=1800 audit(1719600548.551:1341): pid=12200 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1851" name="bus" dev="sda1" ino=2008 res=0 errno=0
[  908.486803][   T29] audit: type=1804 audit(1719600548.621:1342): pid=12200 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.1851" name="/root/syzkaller.kJGzwX/459/bus" dev="sda1" ino=2008 res=1 errno=0
[  908.665247][   T29] audit: type=1804 audit(1719600548.661:1343): pid=12200 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.1851" name="/root/syzkaller.kJGzwX/459/bus" dev="sda1" ino=2008 res=1 errno=0
[  908.727309][T12034] bridge0: port 1(bridge_slave_0) entered blocking state
[  908.766060][T12034] bridge0: port 1(bridge_slave_0) entered disabled state
[  908.773930][   T29] audit: type=1804 audit(1719600548.701:1344): pid=12200 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1851" name="/root/syzkaller.kJGzwX/459/bus" dev="sda1" ino=2008 res=1 errno=0
[  908.827667][T12034] bridge_slave_0: entered allmulticast mode
[  908.836605][T12034] bridge_slave_0: entered promiscuous mode
[  908.897056][T12034] bridge0: port 2(bridge_slave_1) entered blocking state
[  908.915615][   T29] audit: type=1800 audit(1719600548.701:1345): pid=12200 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1851" name="bus" dev="sda1" ino=2008 res=0 errno=0
[  908.955768][T12034] bridge0: port 2(bridge_slave_1) entered disabled state
[  908.978807][T12034] bridge_slave_1: entered allmulticast mode
[  909.008194][T12034] bridge_slave_1: entered promiscuous mode
[  909.015843][   T29] audit: type=1804 audit(1719600548.841:1346): pid=12204 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1851" name="/root/syzkaller.kJGzwX/459/bus" dev="sda1" ino=2008 res=1 errno=0
[  909.340463][   T29] audit: type=1800 audit(1719600548.841:1347): pid=12204 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1851" name="bus" dev="sda1" ino=2008 res=0 errno=0
[  910.379008][   T29] audit: type=1800 audit(1719600550.641:1348): pid=12219 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.1854" name="bus" dev="sda1" ino=1992 res=0 errno=0
[  910.524463][T12034] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  910.604338][T12034] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  910.901384][T12034] team0: Port device team_slave_0 added
[  910.991941][T12034] team0: Port device team_slave_1 added
[  911.447898][T12034] batman_adv: batadv0: Adding interface: batadv_slave_0
[  911.486419][T12034] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  911.541217][T12034] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  911.643562][T12034] batman_adv: batadv0: Adding interface: batadv_slave_1
[  911.674142][T12034] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  911.792400][T12034] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  912.033840][ T5096] Bluetooth: hci1: Malformed MSFT vendor event: 0x02
[  912.832430][T12248] [U] é
[  913.487447][T12034] hsr_slave_0: entered promiscuous mode
[  913.497911][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  913.497937][   T29] audit: type=1800 audit(1719600553.761:1350): pid=12265 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.1866" name="bus" dev="sda1" ino=2011 res=0 errno=0
[  913.536279][T12034] hsr_slave_1: entered promiscuous mode
[  913.548580][T12034] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  913.562643][T12034] Cannot create hsr debugfs directory
[  913.562829][   T29] audit: type=1800 audit(1719600553.761:1351): pid=12265 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.1866" name="bus" dev="sda1" ino=2011 res=0 errno=0
[  915.954103][T12270] netlink: 1272 bytes leftover after parsing attributes in process `syz.3.1865'.
[  917.924240][T12291] [U] é
[  919.255404][   T29] audit: type=1800 audit(1719600559.441:1352): pid=12326 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1881" name="bus" dev="sda1" ino=2004 res=0 errno=0
[  919.338023][   T29] audit: type=1800 audit(1719600559.481:1353): pid=12326 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1881" name="bus" dev="sda1" ino=2004 res=0 errno=0
[  919.382616][T12034] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  919.454363][T12034] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  919.502469][T12034] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  919.511630][   T29] audit: type=1800 audit(1719600559.771:1354): pid=12332 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.1883" name="bus" dev="sda1" ino=2005 res=0 errno=0
[  919.604819][T12034] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  919.656500][   T29] audit: type=1804 audit(1719600559.831:1355): pid=12332 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.1883" name="/root/syzkaller.kJGzwX/466/bus" dev="sda1" ino=2005 res=1 errno=0
[  920.534921][T12334] [U] é
[  920.874791][T12034] 8021q: adding VLAN 0 to HW filter on device bond0
[  920.991076][T12034] 8021q: adding VLAN 0 to HW filter on device team0
[  921.058981][ T1153] bridge0: port 1(bridge_slave_0) entered blocking state
[  921.066315][ T1153] bridge0: port 1(bridge_slave_0) entered forwarding state
[  921.148155][ T1153] bridge0: port 2(bridge_slave_1) entered blocking state
[  921.156059][ T1153] bridge0: port 2(bridge_slave_1) entered forwarding state
[  921.322125][   T29] audit: type=1800 audit(1719600561.571:1356): pid=12355 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.1891" name="bus" dev="sda1" ino=2005 res=0 errno=0
[  921.369281][   T29] audit: type=1800 audit(1719600561.581:1357): pid=12355 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.1891" name="bus" dev="sda1" ino=2005 res=0 errno=0
[  921.411884][   T29] audit: type=1800 audit(1719600561.671:1358): pid=12357 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1892" name="bus" dev="sda1" ino=2010 res=0 errno=0
[  923.289562][T12034] 8021q: adding VLAN 0 to HW filter on device batadv0
[  924.234690][T12034] veth0_vlan: entered promiscuous mode
[  924.361134][T12034] veth1_vlan: entered promiscuous mode
[  924.500241][   T29] audit: type=1800 audit(1719600564.761:1359): pid=12398 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1903" name="bus" dev="sda1" ino=1995 res=0 errno=0
[  924.674141][T12034] veth0_macvtap: entered promiscuous mode
[  924.754177][T12034] veth1_macvtap: entered promiscuous mode
[  924.773595][ T5096] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  924.869867][T12034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  924.882597][   T29] audit: type=1800 audit(1719600565.141:1360): pid=12411 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.1907" name="bus" dev="sda1" ino=2011 res=0 errno=0
[  924.923308][T12034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  924.956393][ T5140] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  925.013898][   T29] audit: type=1804 audit(1719600565.201:1361): pid=12413 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.1907" name="/root/syzkaller.f2WSJC/176/bus" dev="sda1" ino=2011 res=1 errno=0
[  925.045647][T12034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  925.068412][T12034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.112752][T12034] batman_adv: batadv0: Interface activated: batadv_slave_0
[  925.218115][ T5140] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  925.249990][ T5140] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  925.251238][T12034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  925.276681][ T5140] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  925.300268][ T5140] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  925.301460][T12034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.325261][T12034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  925.336155][ T5140] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  925.342950][T12034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  925.371766][T12034] batman_adv: batadv0: Interface activated: batadv_slave_1
[  925.392709][ T5140] usb 3-1: config 0 descriptor??
[  925.412655][T12405] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  925.412716][T12034] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  925.441247][T12034] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  925.450833][T12034] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  925.460271][T12034] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  925.913872][ T5140] plantronics 0003:047F:FFFF.0016: unknown main item tag 0x0
[  925.921853][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  925.938014][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  925.966962][ T5140] plantronics 0003:047F:FFFF.0016: No inputs registered, leaving
[  926.020458][ T5140] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  926.188159][ T5096] Bluetooth: hci2: Malformed MSFT vendor event: 0x02
[  926.202938][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  926.292927][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  926.561256][T12437] netlink: 1268 bytes leftover after parsing attributes in process `syz.3.1911'.
[  926.650361][   T29] audit: type=1800 audit(1719600566.911:1362): pid=12440 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.1914" name="bus" dev="sda1" ino=2011 res=0 errno=0
[  926.837763][ T5140] usb 3-1: USB disconnect, device number 18
[  927.109633][T12447] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  927.199667][   T29] audit: type=1326 audit(1719600567.461:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12445 comm="syz.0.1795" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f125a775b29 code=0x0
[  927.670390][T12461] syz.4.1916: attempt to access beyond end of device
[  927.670390][T12461] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  927.683350][T12461] (syz.4.1916,12461,0):ocfs2_get_sector:1771 ERROR: status = -5
[  927.692118][T12461] (syz.4.1916,12461,0):ocfs2_sb_probe:749 ERROR: status = -5
[  927.699664][T12461] (syz.4.1916,12461,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  927.708476][T12461] (syz.4.1916,12461,0):ocfs2_fill_super:1178 ERROR: status = -5
[  929.413213][   T29] audit: type=1800 audit(1719600569.661:1364): pid=12481 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.1925" name="bus" dev="sda1" ino=2011 res=0 errno=0
[  929.724960][   T29] audit: type=1326 audit(1719600569.981:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  929.814537][T12490] input: syz0 as /devices/virtual/input/input34
[  929.843458][   T29] audit: type=1326 audit(1719600569.981:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  929.898807][T12493] netlink: 1268 bytes leftover after parsing attributes in process `syz.4.1924'.
[  930.005458][   T29] audit: type=1326 audit(1719600569.991:1367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  930.101972][   T29] audit: type=1326 audit(1719600569.991:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  930.215130][   T29] audit: type=1326 audit(1719600569.991:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  930.371883][   T29] audit: type=1326 audit(1719600570.031:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  930.460974][   T29] audit: type=1326 audit(1719600570.031:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  930.556408][   T29] audit: type=1326 audit(1719600570.031:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  930.602680][T12506] netlink: 1268 bytes leftover after parsing attributes in process `syz.0.1928'.
[  930.689019][   T29] audit: type=1326 audit(1719600570.031:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  930.777314][T12511] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  930.798392][   T29] audit: type=1326 audit(1719600570.031:1374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12488 comm="syz.1.1927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x7ffc0000
[  936.484023][T12560] trusted_key: encrypted_key: insufficient parameters specified
[  937.150058][T12571] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  937.294948][   T29] kauditd_printk_skb: 17 callbacks suppressed
[  937.294982][   T29] audit: type=1326 audit(1719600577.531:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12570 comm="syz.2.1946" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18fcb75b29 code=0x0
[  939.470940][T12599] netlink: 1272 bytes leftover after parsing attributes in process `syz.4.1950'.
[  939.489071][T12601] syz.2.1952: attempt to access beyond end of device
[  939.489071][T12601] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  939.502102][T12601] (syz.2.1952,12601,0):ocfs2_get_sector:1771 ERROR: status = -5
[  939.509868][T12601] (syz.2.1952,12601,0):ocfs2_sb_probe:749 ERROR: status = -5
[  939.517335][T12601] (syz.2.1952,12601,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  939.527063][T12601] (syz.2.1952,12601,0):ocfs2_fill_super:1178 ERROR: status = -5
[  939.786650][   T29] audit: type=1400 audit(1719600580.031:1393): avc:  denied  { write } for  pid=12603 comm="syz.1.1954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  940.624925][T12617] syz.2.1956: attempt to access beyond end of device
[  940.624925][T12617] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  940.638349][T12617] (syz.2.1956,12617,1):ocfs2_get_sector:1771 ERROR: status = -5
[  940.648262][T12617] (syz.2.1956,12617,1):ocfs2_sb_probe:749 ERROR: status = -5
[  940.655862][T12617] (syz.2.1956,12617,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  940.664689][T12617] (syz.2.1956,12617,1):ocfs2_fill_super:1178 ERROR: status = -5
[  940.804053][T12621] trusted_key: encrypted_key: insufficient parameters specified
[  941.504538][T12629] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  941.592501][   T29] audit: type=1326 audit(1719600581.851:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12628 comm="syz.2.1959" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18fcb75b29 code=0x0
[  942.006738][ T1153] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  942.225498][ T1153] usb 4-1: Using ep0 maxpacket: 32
[  942.261641][ T1153] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  942.324883][ T1153] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  942.353827][ T1153] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  942.383738][ T1153] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  942.409270][ T1153] usb 4-1: Product: syz
[  942.413536][ T1153] usb 4-1: Manufacturer: syz
[  942.446624][ T1153] hub 4-1:4.0: USB hub found
[  942.709452][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[  942.716113][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
[  942.780113][ T1153] hub 4-1:4.0: 2 ports detected
[  944.695430][ T1153] hub 4-1:4.0: hub_ext_port_status failed (err = -71)
[  944.728699][ T1153] usb 4-1: USB disconnect, device number 19
[  944.735299][ T5141] usb 4-1: Failed to suspend device, error -19
[  946.905298][T12682] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  947.014103][   T29] audit: type=1400 audit(1719600587.231:1395): avc:  denied  { nlmsg_write } for  pid=12683 comm="syz.1.1975" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  947.756381][   T29] audit: type=1326 audit(1719600588.001:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12680 comm="syz.0.1974" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f125a775b29 code=0x0
[  953.529983][   T29] audit: type=1800 audit(1719600593.761:1397): pid=12740 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.1993" name="bus" dev="sda1" ino=1984 res=0 errno=0
[  953.658189][   T29] audit: type=1800 audit(1719600593.891:1398): pid=12741 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.1993" name="bus" dev="sda1" ino=1984 res=0 errno=0
[  954.222388][   T53] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  954.232600][   T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  954.242510][   T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  954.251330][   T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  954.260921][   T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  954.269999][   T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  954.899661][   T35] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  955.251175][   T35] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  955.657902][   T35] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  955.954959][   T35] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  956.365289][   T53] Bluetooth: hci1: command tx timeout
[  956.979991][T12752] chnl_net:caif_netlink_parms(): no params data found
[  957.494861][   T35] bridge_slave_1: left allmulticast mode
[  957.505140][   T35] bridge_slave_1: left promiscuous mode
[  957.511325][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  957.623714][   T35] bridge_slave_0: left allmulticast mode
[  957.695399][   T35] bridge_slave_0: left promiscuous mode
[  957.713404][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  957.925311][ T5140] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  958.125262][ T5140] usb 1-1: Using ep0 maxpacket: 8
[  958.142931][ T5140] usb 1-1: config 32 has an invalid interface number: 77 but max is 1
[  958.173765][ T5140] usb 1-1: config 32 contains an unexpected descriptor of type 0x1, skipping
[  958.192481][ T5140] usb 1-1: config 32 contains an unexpected descriptor of type 0x2, skipping
[  958.227976][ T5140] usb 1-1: config 32 has an invalid interface association descriptor of length 5, skipping
[  958.261353][ T5140] usb 1-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config
[  958.283029][ T5140] usb 1-1: config 32 has 1 interface, different from the descriptor's value: 2
[  958.293411][ T5140] usb 1-1: config 32 has no interface number 0
[  958.299954][ T5140] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64
[  958.313721][ T5140] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  958.326533][ T5140] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  958.339430][ T5140] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64
[  958.350809][ T5140] usb 1-1: config 32 interface 77 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[  958.364325][ T5140] usb 1-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping
[  958.378172][ T5140] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64
[  958.391944][ T5140] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64
[  958.405767][ T5140] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  958.418830][ T5140] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  958.430743][ T5140] usb 1-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12
[  958.445271][   T53] Bluetooth: hci1: command tx timeout
[  958.527929][ T5140] usb 1-1: config 32 interface 77 has no altsetting 0
[  958.586680][ T5140] usb 1-1: Dual-Role OTG device on HNP port
[  958.595916][ T5140] usb 1-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33
[  958.612343][ T5140] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  958.622334][ T5140] usb 1-1: Product: syz
[  958.630867][ T5140] usb 1-1: Manufacturer: syz
[  958.655297][ T5140] usb 1-1: SerialNumber: syz
[  959.232824][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  959.288277][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  959.326197][   T35] bond0 (unregistering): Released all slaves
[  959.564768][ T5140] option 1-1:32.77: GSM modem (1-port) converter detected
[  959.648834][ T5140] usb 1-1: USB disconnect, device number 14
[  959.780403][ T5140] option 1-1:32.77: device disconnected
[  960.533190][   T53] Bluetooth: hci1: command tx timeout
[  961.125678][T12752] bridge0: port 1(bridge_slave_0) entered blocking state
[  961.139810][   T53] Bluetooth: hci4: Malformed MSFT vendor event: 0x02
[  961.171262][T12752] bridge0: port 1(bridge_slave_0) entered disabled state
[  961.203044][T12752] bridge_slave_0: entered allmulticast mode
[  961.213325][T12752] bridge_slave_0: entered promiscuous mode
[  961.233897][T12836] netlink: 'syz.1.2020': attribute type 4 has an invalid length.
[  961.321233][T12849] sg_write: data in/out 624/1 bytes for SCSI command 0xcb-- guessing data in;
[  961.321233][T12849]    program syz.4.2019 not setting count and/or reply_len properly
[  962.126427][T12836] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2020'.
[  962.615145][   T53] Bluetooth: hci1: command tx timeout
[  964.264350][T12752] bridge0: port 2(bridge_slave_1) entered blocking state
[  964.740042][T12861] [U] é
[  965.087009][T12752] bridge0: port 2(bridge_slave_1) entered disabled state
[  965.106917][T12752] bridge_slave_1: entered allmulticast mode
[  965.154324][T12752] bridge_slave_1: entered promiscuous mode
[  966.115433][   T29] audit: type=1800 audit(1719600605.731:1399): pid=12881 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2027" name="bus" dev="sda1" ino=2014 res=0 errno=0
[  966.332392][T12883] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12883 comm=syz.1.2026
[  966.646484][   T29] audit: type=1800 audit(1719600606.631:1400): pid=12882 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2027" name="bus" dev="sda1" ino=2014 res=0 errno=0
[  967.278600][T12752] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  967.511237][T12752] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  967.785305][ T5142] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  967.792670][   T35] hsr_slave_0: left promiscuous mode
[  967.839967][   T35] hsr_slave_1: left promiscuous mode
[  967.873704][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  967.897464][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  967.935667][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  967.954721][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  967.965362][ T5142] usb 5-1: Using ep0 maxpacket: 8
[  967.984152][ T5142] usb 5-1: config 32 has an invalid interface number: 77 but max is 1
[  968.055059][ T5142] usb 5-1: config 32 contains an unexpected descriptor of type 0x1, skipping
[  968.080963][   T35] veth1_macvtap: left promiscuous mode
[  968.101866][ T5142] usb 5-1: config 32 contains an unexpected descriptor of type 0x2, skipping
[  968.102039][   T35] veth0_macvtap: left promiscuous mode
[  968.150414][   T35] veth1_vlan: left promiscuous mode
[  968.164925][   T35] veth0_vlan: left promiscuous mode
[  968.170551][ T5142] usb 5-1: config 32 has an invalid interface association descriptor of length 5, skipping
[  968.195157][ T5142] usb 5-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config
[  968.272390][ T5142] usb 5-1: config 32 has 1 interface, different from the descriptor's value: 2
[  968.333743][ T5142] usb 5-1: config 32 has no interface number 0
[  968.353343][ T5142] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64
[  968.407989][ T5142] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  968.498309][ T5142] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  968.540296][ T5142] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64
[  968.575194][ T5142] usb 5-1: config 32 interface 77 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[  968.618526][ T5142] usb 5-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping
[  968.883067][ T5142] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64
[  968.898801][ T5142] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64
[  968.910577][ T5142] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  968.943339][ T5142] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  968.956328][ T5142] usb 5-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12
[  968.973085][ T5142] usb 5-1: config 32 interface 77 has no altsetting 0
[  969.013199][T12911] syz.1.2037: attempt to access beyond end of device
[  969.013199][T12911] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  969.026078][T12911] (syz.1.2037,12911,0):ocfs2_get_sector:1771 ERROR: status = -5
[  969.033782][T12911] (syz.1.2037,12911,0):ocfs2_sb_probe:749 ERROR: status = -5
[  969.041522][T12911] (syz.1.2037,12911,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  969.050285][T12911] (syz.1.2037,12911,0):ocfs2_fill_super:1178 ERROR: status = -5
[  969.126992][ T5142] usb 5-1: Dual-Role OTG device on HNP port
[  969.141755][ T5142] usb 5-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33
[  969.195840][ T5142] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  969.252939][ T5142] usb 5-1: Product: syz
[  969.272536][ T5142] usb 5-1: Manufacturer: syz
[  969.309010][ T5142] usb 5-1: SerialNumber: syz
[  969.656234][   T29] audit: type=1800 audit(1719600609.871:1401): pid=12915 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2038" name="bus" dev="sda1" ino=2007 res=0 errno=0
[  970.485541][   T29] audit: type=1800 audit(1719600609.891:1402): pid=12915 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2038" name="bus" dev="sda1" ino=2007 res=0 errno=0
[  972.398155][T12937] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12937 comm=syz.0.2043
[  972.559911][   T35] team0 (unregistering): Port device team_slave_1 removed
[  972.848629][   T35] team0 (unregistering): Port device team_slave_0 removed
[  974.496076][ T5142] option 5-1:32.77: GSM modem (1-port) converter detected
[  976.118937][   T29] audit: type=1800 audit(1719600616.381:1403): pid=12960 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2050" name="bus" dev="sda1" ino=2006 res=0 errno=0
[  976.215612][   T29] audit: type=1804 audit(1719600616.381:1404): pid=12960 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2050" name="/root/syzkaller.kJGzwX/504/bus" dev="sda1" ino=2006 res=1 errno=0
[  976.239210][    C0] vkms_vblank_simulate: vblank timer overrun
[  976.295256][   T29] audit: type=1804 audit(1719600616.381:1405): pid=12960 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.2050" name="/root/syzkaller.kJGzwX/504/bus" dev="sda1" ino=2006 res=1 errno=0
[  976.318335][    C0] vkms_vblank_simulate: vblank timer overrun
[  976.366628][T12752] team0: Port device team_slave_0 added
[  976.377427][   T29] audit: type=1804 audit(1719600616.631:1406): pid=12962 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2051" name="/root/syzkaller.kJGzwX/505/bus" dev="sda1" ino=2013 res=1 errno=0
[  976.442516][   T29] audit: type=1800 audit(1719600616.631:1407): pid=12962 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2051" name="bus" dev="sda1" ino=2013 res=0 errno=0
[  976.517144][T12752] team0: Port device team_slave_1 added
[  976.540541][   T29] audit: type=1804 audit(1719600616.761:1408): pid=12963 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.2051" name="/root/syzkaller.kJGzwX/505/bus" dev="sda1" ino=2013 res=1 errno=0
[  976.570808][  T785] usb 5-1: USB disconnect, device number 20
[  976.631344][   T29] audit: type=1804 audit(1719600616.831:1409): pid=12962 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.2051" name="/root/syzkaller.kJGzwX/505/bus" dev="sda1" ino=2013 res=1 errno=0
[  976.654526][    C0] vkms_vblank_simulate: vblank timer overrun
[  976.703712][  T785] option 5-1:32.77: device disconnected
[  976.717531][T12962] netlink: 'syz.3.2051': attribute type 1 has an invalid length.
[  976.812194][   T29] audit: type=1804 audit(1719600617.071:1410): pid=12962 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2051" name="/root/syzkaller.kJGzwX/505/bus" dev="sda1" ino=2013 res=1 errno=0
[  976.821873][T12752] batman_adv: batadv0: Adding interface: batadv_slave_0
[  976.835804][    C0] vkms_vblank_simulate: vblank timer overrun
[  976.910552][   T29] audit: type=1800 audit(1719600617.101:1411): pid=12962 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2051" name="bus" dev="sda1" ino=2013 res=0 errno=0
[  976.984484][T12752] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  977.021577][   T29] audit: type=1804 audit(1719600617.201:1412): pid=12963 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2051" name="/root/syzkaller.kJGzwX/505/bus" dev="sda1" ino=2013 res=1 errno=0
[  977.103750][T12752] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  977.154041][T12752] batman_adv: batadv0: Adding interface: batadv_slave_1
[  977.192300][T12752] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  977.323777][T12752] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  977.891545][T12752] hsr_slave_0: entered promiscuous mode
[  977.925587][T12752] hsr_slave_1: entered promiscuous mode
[  977.935332][T12752] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  977.953063][T12752] Cannot create hsr debugfs directory
[  980.594764][T12752] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  980.662561][T12752] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  981.666269][T13022] Falling back ldisc for ttyprintk.
[  981.960325][T12752] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  982.076939][T12752] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  982.792007][T12752] 8021q: adding VLAN 0 to HW filter on device bond0
[  983.002544][T12752] 8021q: adding VLAN 0 to HW filter on device team0
[  983.172637][ T5141] bridge0: port 1(bridge_slave_0) entered blocking state
[  983.180075][ T5141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  983.298235][ T5141] bridge0: port 2(bridge_slave_1) entered blocking state
[  983.305557][ T5141] bridge0: port 2(bridge_slave_1) entered forwarding state
[  983.634681][T13052] sp0: Synchronizing with TNC
[  983.658503][T13052] sp0: Found TNC
[  984.268593][T13045] [U] è`
[  985.098075][T12752] 8021q: adding VLAN 0 to HW filter on device batadv0
[  985.491021][T12752] veth0_vlan: entered promiscuous mode
[  985.549978][   T29] kauditd_printk_skb: 5 callbacks suppressed
[  985.550003][   T29] audit: type=1326 audit(1719600625.811:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13074 comm="syz.0.2073" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f125a775b29 code=0x0
[  985.599931][T12752] veth1_vlan: entered promiscuous mode
[  985.819188][T12752] veth0_macvtap: entered promiscuous mode
[  985.909001][T12752] veth1_macvtap: entered promiscuous mode
[  985.967228][T13084] overlayfs: missing 'lowerdir'
[  986.019712][T12752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  986.052639][T12752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  986.081857][T12752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  986.119341][T12752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  986.187697][T12752] batman_adv: batadv0: Interface activated: batadv_slave_0
[  986.419948][T12752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  986.486387][T12752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  986.513837][T12752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  986.562940][T12752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  986.674886][T12752] batman_adv: batadv0: Interface activated: batadv_slave_1
[  986.734274][T12752] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  986.763603][T12752] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  986.804765][T12752] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  986.837733][T12752] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  987.487511][ T9832] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  987.518702][ T9832] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  987.910943][ T2489] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  987.957519][ T2489] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  988.782050][T13119] netlink: 'syz.0.2081': attribute type 4 has an invalid length.
[  988.825480][T13119] netlink: 17 bytes leftover after parsing attributes in process `syz.0.2081'.
[  989.636393][   T53] Bluetooth: hci2: unexpected event for opcode 0x0000
[  991.568190][ T5096] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  991.579967][ T5096] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  991.590980][ T5096] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  991.603055][ T5096] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  991.614492][ T5096] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  991.622620][ T5096] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  991.776801][ T2489] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  993.745482][   T53] Bluetooth: hci1: command tx timeout
[  993.752038][   T53] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  993.762617][   T53] Bluetooth: hci2: Injecting HCI hardware error event
[  993.781408][ T5096] Bluetooth: hci2: hardware error 0x00
[  993.830783][ T2489] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  993.978546][ T2489] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  994.256188][ T2489] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  995.425112][ T2489] bridge_slave_1: left allmulticast mode
[  995.432982][ T2489] bridge_slave_1: left promiscuous mode
[  995.467157][ T2489] bridge0: port 2(bridge_slave_1) entered disabled state
[  995.513055][ T2489] bridge_slave_0: left allmulticast mode
[  995.526002][ T2489] bridge_slave_0: left promiscuous mode
[  995.537095][ T2489] bridge0: port 1(bridge_slave_0) entered disabled state
[  995.806375][   T53] Bluetooth: hci1: command tx timeout
[  995.891279][ T5096] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  997.680282][ T2489] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  997.755986][ T2489] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  997.818679][ T2489] bond0 (unregistering): Released all slaves
[  997.891581][ T5096] Bluetooth: hci1: command tx timeout
[  997.933440][T13163] chnl_net:caif_netlink_parms(): no params data found
[  999.249164][T13163] bridge0: port 1(bridge_slave_0) entered blocking state
[  999.275257][T13163] bridge0: port 1(bridge_slave_0) entered disabled state
[  999.282642][T13163] bridge_slave_0: entered allmulticast mode
[  999.330732][T13163] bridge_slave_0: entered promiscuous mode
[  999.407377][T13163] bridge0: port 2(bridge_slave_1) entered blocking state
[  999.435302][T13163] bridge0: port 2(bridge_slave_1) entered disabled state
[  999.503589][T13163] bridge_slave_1: entered allmulticast mode
[  999.520660][T13163] bridge_slave_1: entered promiscuous mode
[  999.737493][ T2489] hsr_slave_0: left promiscuous mode
[  999.783789][ T2489] hsr_slave_1: left promiscuous mode
[  999.914215][ T2489] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  999.944225][ T2489] batman_adv: batadv0: Removing interface: batadv_slave_0
[  999.965697][ T5096] Bluetooth: hci1: command tx timeout
[  999.972568][ T2489] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  999.994565][ T2489] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1000.221130][ T2489] veth1_macvtap: left promiscuous mode
[ 1000.237118][ T2489] veth0_macvtap: left promiscuous mode
[ 1000.253892][ T2489] veth1_vlan: left promiscuous mode
[ 1000.263362][ T2489] veth0_vlan: left promiscuous mode
[ 1001.587259][T13285] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1001.596293][T13285] overlayfs: missing 'lowerdir'
[ 1001.933950][   T29] audit: type=1326 audit(1719600642.191:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.3.2125" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc613375b29 code=0x0
[ 1002.267450][T11251] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[ 1002.551225][T11251] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1002.595149][T11251] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1002.618967][T11251] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1002.649115][T11251] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1002.735089][T11251] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1002.815153][T11251] usb 5-1: config 0 descriptor??
[ 1002.837597][T13292] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1003.378945][T11251] usbhid 5-1:0.0: can't add hid device: -71
[ 1003.406938][T11251] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1003.453148][T11251] usb 5-1: USB disconnect, device number 21
[ 1003.552965][ T2489] team0 (unregistering): Port device team_slave_1 removed
[ 1003.655772][ T2489] team0 (unregistering): Port device team_slave_0 removed
[ 1004.263878][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[ 1004.272142][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
[ 1005.785262][T13163] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1005.856454][T13163] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1005.897749][T13317] overlayfs: failed to resolve './file0': -2
[ 1006.379238][T13163] team0: Port device team_slave_0 added
[ 1006.422545][T13163] team0: Port device team_slave_1 added
[ 1007.006867][T13163] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1007.018135][T13163] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1007.165686][T13163] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1007.257217][T13163] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1007.264244][T13163] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1007.362825][T13163] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1007.749908][T13163] hsr_slave_0: entered promiscuous mode
[ 1007.807119][T13163] hsr_slave_1: entered promiscuous mode
[ 1007.895232][T13163] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1007.918491][T13163] Cannot create hsr debugfs directory
[ 1008.435624][T13346] syz.1.2138: attempt to access beyond end of device
[ 1008.435624][T13346] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1008.502442][T13346] (syz.1.2138,13346,1):ocfs2_get_sector:1771 ERROR: status = -5
[ 1008.579756][T13346] (syz.1.2138,13346,1):ocfs2_sb_probe:749 ERROR: status = -5
[ 1008.625152][T13346] (syz.1.2138,13346,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[ 1008.675888][T13346] (syz.1.2138,13346,1):ocfs2_fill_super:1178 ERROR: status = -5
[ 1009.537186][   T29] audit: type=1326 audit(1719600649.801:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13360 comm="syz.3.2142" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc613375b29 code=0x0
[ 1010.756746][T13163] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1010.816901][T13163] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1010.909043][T13163] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1011.046189][T13163] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1011.716062][T13379] overlayfs: failed to resolve './file0': -2
[ 1011.844227][T13163] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1012.034200][T13163] 8021q: adding VLAN 0 to HW filter on device team0
[ 1012.143572][ T6530] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1012.151050][ T6530] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1012.481201][ T5140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1012.488701][ T5140] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1014.240182][T13414] sp0: Synchronizing with TNC
[ 1014.307374][T13414] sp0: Found TNC
[ 1014.949029][T13408] [U] è`
[ 1015.356920][T13419] syz.0.2151: attempt to access beyond end of device
[ 1015.356920][T13419] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1015.475534][T13419] (syz.0.2151,13419,0):ocfs2_get_sector:1771 ERROR: status = -5
[ 1015.665691][T13419] (syz.0.2151,13419,1):ocfs2_sb_probe:749 ERROR: status = -5
[ 1015.673180][T13419] (syz.0.2151,13419,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[ 1015.682045][T13419] (syz.0.2151,13419,1):ocfs2_fill_super:1178 ERROR: status = -5
[ 1016.357882][T13163] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1016.548917][   T53] Bluetooth: hci4: command 0x0406 tx timeout
[ 1016.897715][T13163] veth0_vlan: entered promiscuous mode
[ 1016.990683][T13163] veth1_vlan: entered promiscuous mode
[ 1017.232060][T13163] veth0_macvtap: entered promiscuous mode
[ 1017.303116][T13163] veth1_macvtap: entered promiscuous mode
[ 1017.392485][T13163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1017.428575][T13163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1017.455310][T13163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1017.516228][T13163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1017.559636][T13163] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1017.661751][T13163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1017.693209][T13163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1017.734041][T13163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1017.784919][T13163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1017.818963][T13163] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1017.980051][T13163] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1018.015159][T13163] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1018.054772][T13163] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1018.105165][T13163] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1018.731920][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1018.786744][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1018.971953][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1019.006611][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1021.919456][ T6530] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[ 1022.138286][ T6530] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1022.167675][ T6530] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1022.251718][ T6530] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1022.277772][ T5140] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[ 1022.331655][ T6530] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1022.381929][ T6530] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1022.422133][ T6530] usb 4-1: config 0 descriptor??
[ 1022.449722][T13473] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1022.500512][ T5140] usb 3-1: Using ep0 maxpacket: 8
[ 1022.534431][ T5140] usb 3-1: config 32 has an invalid interface number: 77 but max is 1
[ 1022.587020][ T5140] usb 3-1: config 32 contains an unexpected descriptor of type 0x1, skipping
[ 1022.619107][ T5140] usb 3-1: config 32 contains an unexpected descriptor of type 0x2, skipping
[ 1022.639675][ T5140] usb 3-1: config 32 has an invalid interface association descriptor of length 5, skipping
[ 1022.651427][ T5140] usb 3-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config
[ 1022.693506][ T5140] usb 3-1: config 32 has 1 interface, different from the descriptor's value: 2
[ 1022.721656][ T5140] usb 3-1: config 32 has no interface number 0
[ 1022.739779][ T5140] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64
[ 1022.803945][ T5140] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64
[ 1022.805403][   T29] audit: type=1326 audit(1719600663.051:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13488 comm="syz.4.2164" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a6f775b29 code=0x0
[ 1022.864598][ T5140] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64
[ 1022.879986][ T5140] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64
[ 1022.945036][ T5140] usb 3-1: config 32 interface 77 altsetting 64 has an invalid descriptor for endpoint zero, skipping
[ 1022.987013][ T6530] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[ 1023.011753][ T5140] usb 3-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping
[ 1023.046591][ T6530] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving
[ 1023.058567][ T5140] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64
[ 1023.092046][ T5140] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64
[ 1023.104591][ T6530] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[ 1023.134153][ T5140] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[ 1023.171237][ T5140] usb 3-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[ 1023.219600][ T5140] usb 3-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12
[ 1023.309293][ T5140] usb 3-1: config 32 interface 77 has no altsetting 0
[ 1023.339597][ T5140] usb 3-1: Dual-Role OTG device on HNP port
[ 1023.376560][ T5140] usb 3-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33
[ 1023.425439][ T5140] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1023.442739][ T5140] usb 3-1: Product: syz
[ 1023.474080][ T5140] usb 3-1: Manufacturer: syz
[ 1023.495689][ T5140] usb 3-1: SerialNumber: syz
[ 1023.758837][ T5142] usb 4-1: USB disconnect, device number 20
[ 1023.978610][ T5140] option 3-1:32.77: GSM modem (1-port) converter detected
[ 1024.063379][ T5140] usb 3-1: USB disconnect, device number 19
[ 1024.137926][ T5140] option 3-1:32.77: device disconnected
[ 1024.274254][ T5096] Bluetooth: hci3: Malformed MSFT vendor event: 0x02
[ 1024.454621][ T5096] Bluetooth: hci4: Malformed MSFT vendor event: 0x02
[ 1025.596943][T13544] trusted_key: encrypted_key: insufficient parameters specified
[ 1026.245076][ T5071] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1026.566630][   T29] audit: type=1326 audit(1719600666.631:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.1.2181" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc550775b29 code=0x0
[ 1027.049743][ T5071] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1027.066857][ T5071] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1027.086337][ T5071] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1027.428332][ T5071] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1027.439746][ T5071] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1027.462202][ T5071] usb 5-1: config 0 descriptor??
[ 1027.506217][T13542] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1028.276514][ T5071] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[ 1028.286312][ T5071] plantronics 0003:047F:FFFF.0018: No inputs registered, leaving
[ 1028.324532][ T5071] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[ 1029.675562][ T6530] usb 5-1: USB disconnect, device number 22
[ 1030.111784][T13589] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1030.138993][T13589] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1030.184601][T13591] trusted_key: encrypted_key: insufficient parameters specified
[ 1033.037544][T13626] overlayfs: missing 'lowerdir'
[ 1033.802819][   T29] audit: type=1326 audit(1719600674.061:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13619 comm="syz.3.2199" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc613375b29 code=0x0
[ 1034.603897][T13643] syz.0.2204: attempt to access beyond end of device
[ 1034.603897][T13643] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1034.695648][T13643] (syz.0.2204,13643,1):ocfs2_get_sector:1771 ERROR: status = -5
[ 1034.761750][T13643] (syz.0.2204,13643,1):ocfs2_sb_probe:749 ERROR: status = -5
[ 1034.815289][T13643] (syz.0.2204,13643,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[ 1034.863992][T13643] (syz.0.2204,13643,1):ocfs2_fill_super:1178 ERROR: status = -5
[ 1034.935389][ T5096] Bluetooth: hci1: Malformed MSFT vendor event: 0x02
[ 1034.981913][T13648] input: syz0 as /devices/virtual/input/input37
[ 1036.131547][T13656] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1036.161002][T13656] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1036.438336][   T29] audit: type=1800 audit(1719600676.691:1424): pid=13662 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.2212" name="bus" dev="sda1" ino=2009 res=0 errno=0
[ 1036.549852][   T29] audit: type=1800 audit(1719600676.761:1425): pid=13664 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.2212" name="bus" dev="sda1" ino=2009 res=0 errno=0
[ 1036.678112][T13669] xt_SECMARK: invalid mode: 0
[ 1037.372285][T13674] sp0: Synchronizing with TNC
[ 1037.393369][T13674] sp0: Found TNC
[ 1038.100197][T13670] [U] è`
[ 1038.377541][T13663] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1039.236096][   T53] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1039.254581][   T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1039.277398][   T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1039.325832][   T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1039.341366][   T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1039.350703][   T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1042.115285][   T53] Bluetooth: hci1: command tx timeout
[ 1042.339021][   T29] audit: type=1804 audit(1719600682.601:1426): pid=13684 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2219" name="/root/syzkaller.kJGzwX/547/bus" dev="sda1" ino=1990 res=1 errno=0
[ 1042.412265][   T29] audit: type=1800 audit(1719600682.631:1427): pid=13684 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2219" name="bus" dev="sda1" ino=1990 res=0 errno=0
[ 1042.480397][   T29] audit: type=1804 audit(1719600682.701:1428): pid=13690 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.2219" name="/root/syzkaller.kJGzwX/547/bus" dev="sda1" ino=1990 res=1 errno=0
[ 1042.540502][   T29] audit: type=1804 audit(1719600682.771:1429): pid=13684 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.3.2219" name="/root/syzkaller.kJGzwX/547/bus" dev="sda1" ino=1990 res=1 errno=0
[ 1042.567907][T13684] netlink: 'syz.3.2219': attribute type 1 has an invalid length.
[ 1042.708746][   T29] audit: type=1804 audit(1719600682.861:1430): pid=13690 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2219" name="/root/syzkaller.kJGzwX/547/bus" dev="sda1" ino=1990 res=1 errno=0
[ 1042.806833][ T2489] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1042.813890][   T29] audit: type=1800 audit(1719600682.861:1431): pid=13690 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2219" name="bus" dev="sda1" ino=1990 res=0 errno=0
[ 1042.824665][   T53] Bluetooth: hci4: Malformed MSFT vendor event: 0x02
[ 1042.909309][   T29] audit: type=1804 audit(1719600683.011:1432): pid=13690 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2219" name="/root/syzkaller.kJGzwX/547/bus" dev="sda1" ino=1990 res=1 errno=0
[ 1042.934151][   T29] audit: type=1800 audit(1719600683.011:1433): pid=13690 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2219" name="bus" dev="sda1" ino=1990 res=0 errno=0
[ 1043.172296][ T2489] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.440497][ T2489] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1044.097743][ T2489] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1044.134269][   T53] Bluetooth: hci1: command tx timeout
[ 1044.589823][   T29] audit: type=1804 audit(1719600684.851:1434): pid=13721 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.2227" name="/root/syzkaller.f2WSJC/245/bus" dev="sda1" ino=2003 res=1 errno=0
[ 1044.695173][   T29] audit: type=1804 audit(1719600684.851:1435): pid=13721 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.2227" name="/root/syzkaller.f2WSJC/245/bus" dev="sda1" ino=2003 res=1 errno=0
[ 1045.053910][T13730] xt_SECMARK: invalid mode: 0
[ 1046.214252][   T53] Bluetooth: hci1: command tx timeout
[ 1046.298223][T13740] syz.4.2230: attempt to access beyond end of device
[ 1046.298223][T13740] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1046.311211][T13740] (syz.4.2230,13740,1):ocfs2_get_sector:1771 ERROR: status = -5
[ 1046.319055][T13740] (syz.4.2230,13740,1):ocfs2_sb_probe:749 ERROR: status = -5
[ 1046.328754][T13740] (syz.4.2230,13740,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[ 1046.337593][T13740] (syz.4.2230,13740,1):ocfs2_fill_super:1178 ERROR: status = -5
[ 1046.363137][T13677] chnl_net:caif_netlink_parms(): no params data found
[ 1046.500074][T13724] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1047.017847][ T2489] bridge_slave_1: left allmulticast mode
[ 1047.086813][ T2489] bridge_slave_1: left promiscuous mode
[ 1047.123989][ T2489] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1047.256322][ T2489] bridge_slave_0: left allmulticast mode
[ 1047.264748][ T2489] bridge_slave_0: left promiscuous mode
[ 1047.315492][ T2489] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1048.287400][   T53] Bluetooth: hci1: command tx timeout
[ 1051.755881][ T2489] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1051.807048][ T2489] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1051.815342][T13794] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[ 1051.827225][ T5096] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1051.839670][ T5096] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1051.857683][   T29] audit: type=1326 audit(1719600692.111:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13791 comm="syz.0.2243" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f125a775b29 code=0x0
[ 1051.857986][ T2489] bond0 (unregistering): Released all slaves
[ 1051.901994][ T5096] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1051.920622][ T5096] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1051.938663][ T5096] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1051.946533][ T5096] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1053.009277][T13677] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1053.025976][T13677] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1053.045369][T13677] bridge_slave_0: entered allmulticast mode
[ 1053.066303][T13677] bridge_slave_0: entered promiscuous mode
[ 1053.194004][ T2489] hsr_slave_0: left promiscuous mode
[ 1053.305533][ T2489] hsr_slave_1: left promiscuous mode
[ 1053.388283][ T2489] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1053.416639][ T2489] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1053.456800][ T2489] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1053.486231][ T2489] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1053.600630][ T2489] veth1_macvtap: left promiscuous mode
[ 1053.633230][ T2489] veth0_macvtap: left promiscuous mode
[ 1053.645694][ T2489] veth1_vlan: left promiscuous mode
[ 1053.654778][ T2489] veth0_vlan: left promiscuous mode
[ 1054.045627][ T5096] Bluetooth: hci0: command tx timeout
[ 1054.600467][T13831] syz.1.2250: attempt to access beyond end of device
[ 1054.600467][T13831] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1054.613360][T13831] (syz.1.2250,13831,0):ocfs2_get_sector:1771 ERROR: status = -5
[ 1054.621097][T13831] (syz.1.2250,13831,0):ocfs2_sb_probe:749 ERROR: status = -5
[ 1054.628530][T13831] (syz.1.2250,13831,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[ 1054.637470][T13831] (syz.1.2250,13831,0):ocfs2_fill_super:1178 ERROR: status = -5
[ 1056.125177][ T5096] Bluetooth: hci0: command tx timeout
[ 1057.012449][ T2489] team0 (unregistering): Port device team_slave_1 removed
[ 1057.426087][ T2489] team0 (unregistering): Port device team_slave_0 removed
[ 1057.544180][T13857] sg_write: data in/out 624/1 bytes for SCSI command 0xcb-- guessing data in;
[ 1057.544180][T13857]    program syz.4.2258 not setting count and/or reply_len properly
[ 1058.205111][ T5096] Bluetooth: hci0: command tx timeout
[ 1059.108274][T13677] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1059.116786][T13677] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1059.177795][T13677] bridge_slave_1: entered allmulticast mode
[ 1059.198343][T13677] bridge_slave_1: entered promiscuous mode
[ 1059.563592][T13677] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1059.608414][T13677] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1059.653417][   T29] audit: type=1804 audit(1719600699.911:1437): pid=13866 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.2260" name="/root/syzkaller.f2WSJC/252/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1059.766937][T13866] netlink: 'syz.4.2260': attribute type 1 has an invalid length.
[ 1059.794515][   T29] audit: type=1800 audit(1719600699.911:1438): pid=13866 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.2260" name="bus" dev="sda1" ino=2012 res=0 errno=0
[ 1059.874017][   T29] audit: type=1804 audit(1719600699.981:1439): pid=13866 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.4.2260" name="/root/syzkaller.f2WSJC/252/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1059.920360][   T29] audit: type=1804 audit(1719600699.991:1440): pid=13866 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.4.2260" name="/root/syzkaller.f2WSJC/252/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1059.958449][   T29] audit: type=1804 audit(1719600700.041:1441): pid=13866 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.2260" name="/root/syzkaller.f2WSJC/252/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1059.996260][   T29] audit: type=1800 audit(1719600700.041:1442): pid=13866 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.2260" name="bus" dev="sda1" ino=2012 res=0 errno=0
[ 1060.024545][   T29] audit: type=1804 audit(1719600700.161:1443): pid=13869 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.4.2260" name="/root/syzkaller.f2WSJC/252/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1060.050490][   T29] audit: type=1800 audit(1719600700.171:1444): pid=13869 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.2260" name="bus" dev="sda1" ino=2012 res=0 errno=0
[ 1060.129070][T13677] team0: Port device team_slave_0 added
[ 1060.149325][T13677] team0: Port device team_slave_1 added
[ 1060.285418][ T5096] Bluetooth: hci0: command tx timeout
[ 1060.388933][T13677] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1060.435097][T13677] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1060.532795][T13677] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1060.713722][T13677] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1060.795449][T13677] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1060.832008][T13677] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1063.148578][ T5096] Bluetooth: hci4: Malformed MSFT vendor event: 0x02
[ 1063.410152][T13902] sg_write: data in/out 624/1 bytes for SCSI command 0xcb-- guessing data in;
[ 1063.410152][T13902]    program syz.4.2268 not setting count and/or reply_len properly
[ 1063.644237][T13677] hsr_slave_0: entered promiscuous mode
[ 1063.671232][T13677] hsr_slave_1: entered promiscuous mode
[ 1063.692556][T13677] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1063.700555][T13677] Cannot create hsr debugfs directory
[ 1064.269593][T13795] chnl_net:caif_netlink_parms(): no params data found
[ 1065.148393][T13795] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1065.166653][T13795] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1065.174070][T13795] bridge_slave_0: entered allmulticast mode
[ 1065.217797][T13795] bridge_slave_0: entered promiscuous mode
[ 1065.290257][T13795] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1065.317685][T13795] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1065.334116][T13795] bridge_slave_1: entered allmulticast mode
[ 1065.360204][T13795] bridge_slave_1: entered promiscuous mode
[ 1065.572942][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[ 1065.579687][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
[ 1067.678133][T13795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1067.790389][T13795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1068.981846][T13970] sg_write: data in/out 624/1 bytes for SCSI command 0xcb-- guessing data in;
[ 1068.981846][T13970]    program syz.4.2285 not setting count and/or reply_len properly
[ 1069.082340][T13795] team0: Port device team_slave_0 added
[ 1069.159716][ T2489] bridge_slave_1: left allmulticast mode
[ 1069.206947][ T2489] bridge_slave_1: left promiscuous mode
[ 1069.227860][ T2489] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1069.282754][ T2489] bridge_slave_0: left allmulticast mode
[ 1069.325259][ T2489] bridge_slave_0: left promiscuous mode
[ 1069.342559][ T2489] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1070.636352][ T2489] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1070.673701][ T2489] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1070.714376][ T2489] bond0 (unregistering): Released all slaves
[ 1070.727969][   T29] audit: type=1800 audit(1719600710.991:1445): pid=13975 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2287" name="bus" dev="sda1" ino=1956 res=0 errno=0
[ 1070.900309][T13795] team0: Port device team_slave_1 added
[ 1071.042848][T13795] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1071.063363][T13795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1071.142839][T13795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1071.223863][T13795] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1071.245523][T13795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1071.279848][T13795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1071.702930][   T29] audit: type=1800 audit(1719600711.971:1446): pid=13995 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2296" name="bus" dev="sda1" ino=2008 res=0 errno=0
[ 1071.758580][ T2489] hsr_slave_0: left promiscuous mode
[ 1071.795410][ T2489] hsr_slave_1: left promiscuous mode
[ 1071.823768][ T2489] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1071.837920][ T2489] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1071.929562][   T29] audit: type=1800 audit(1719600712.191:1447): pid=14000 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.2298" name="bus" dev="sda1" ino=2011 res=0 errno=0
[ 1072.027925][   T29] audit: type=1804 audit(1719600712.281:1448): pid=13998 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.2297" name="/root/syzkaller.eRM2ga/89/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1072.097847][   T29] audit: type=1800 audit(1719600712.281:1449): pid=13998 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2297" name="bus" dev="sda1" ino=2012 res=0 errno=0
[ 1072.186031][   T29] audit: type=1804 audit(1719600712.361:1450): pid=13998 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.0.2297" name="/root/syzkaller.eRM2ga/89/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1072.190888][T13998] netlink: 'syz.0.2297': attribute type 1 has an invalid length.
[ 1072.314000][   T29] audit: type=1804 audit(1719600712.411:1451): pid=13998 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.0.2297" name="/root/syzkaller.eRM2ga/89/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1072.390989][   T29] audit: type=1804 audit(1719600712.651:1452): pid=13998 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.2297" name="/root/syzkaller.eRM2ga/89/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1072.442461][   T29] audit: type=1800 audit(1719600712.651:1453): pid=13998 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2297" name="bus" dev="sda1" ino=2012 res=0 errno=0
[ 1072.558130][   T29] audit: type=1804 audit(1719600712.771:1454): pid=14004 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.0.2297" name="/root/syzkaller.eRM2ga/89/bus" dev="sda1" ino=2012 res=1 errno=0
[ 1073.368966][ T2489] team0 (unregistering): Port device team_slave_1 removed
[ 1073.441821][ T2489] team0 (unregistering): Port device team_slave_0 removed
[ 1073.905134][ T1153] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1074.130365][ T1153] usb 5-1: Using ep0 maxpacket: 32
[ 1074.147122][ T1153] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1074.165068][ T1153] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1074.184233][ T1153] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1074.201373][ T1153] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[ 1074.211018][ T1153] usb 5-1: Product: syz
[ 1074.225141][ T1153] usb 5-1: Manufacturer: syz
[ 1074.239054][ T1153] hub 5-1:4.0: USB hub found
[ 1074.440035][T13795] hsr_slave_0: entered promiscuous mode
[ 1074.484903][T13795] hsr_slave_1: entered promiscuous mode
[ 1074.511929][ T1153] hub 5-1:4.0: 2 ports detected
[ 1074.521301][T13795] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1074.552887][T13795] Cannot create hsr debugfs directory
[ 1074.619611][T13677] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1074.723911][T13677] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1074.785316][T13677] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1075.017769][T13677] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1076.098917][ T1153] hub 5-1:4.0: activate --> -90
[ 1076.648495][T11235] hub 5-1:4.0: hub_ext_port_status failed (err = -71)
[ 1076.649138][  T785] usb 5-1: USB disconnect, device number 23
[ 1076.770076][   T29] kauditd_printk_skb: 3 callbacks suppressed
[ 1076.770098][   T29] audit: type=1800 audit(1719600717.031:1458): pid=14060 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2315" name="bus" dev="sda1" ino=2014 res=0 errno=0
[ 1077.061365][T13677] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1077.071660][   T29] audit: type=1326 audit(1719600717.331:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14062 comm="syz.0.2316" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f125a775b29 code=0x0
[ 1077.105292][T11235] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1077.228936][T13677] 8021q: adding VLAN 0 to HW filter on device team0
[ 1077.348037][T11235] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1077.402606][T11235] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1077.464787][T11235] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1077.469176][ T6530] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1077.485172][ T6530] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1077.536002][ T6530] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1077.543440][ T6530] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1077.555419][T11235] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1077.600765][T11235] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1077.649070][T11235] usb 2-1: config 0 descriptor??
[ 1077.736872][T14061] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1077.865937][T13795] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1077.956605][T13795] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1078.060069][T13795] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1078.149517][T13795] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1078.229907][T11235] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[ 1078.278290][T13677] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1078.304762][T11235] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving
[ 1078.404674][T11235] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[ 1079.166744][T13795] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1079.311411][T13795] 8021q: adding VLAN 0 to HW filter on device team0
[ 1079.441985][  T785] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1079.449290][  T785] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1079.538321][  T785] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1079.545692][  T785] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1079.645613][ T5142] usb 2-1: reset high-speed USB device number 35 using dummy_hcd
[ 1079.837303][T13677] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1080.275711][T13677] veth0_vlan: entered promiscuous mode
[ 1080.350175][T13677] veth1_vlan: entered promiscuous mode
[ 1080.964092][T11235] usb 2-1: USB disconnect, device number 35
[ 1081.672095][T13677] veth0_macvtap: entered promiscuous mode
[ 1081.759886][T13677] veth1_macvtap: entered promiscuous mode
[ 1081.960343][T13677] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1081.992401][T13677] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.003546][   T29] audit: type=1800 audit(1719600722.241:1460): pid=14115 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.2324" name="bus" dev="sda1" ino=1984 res=0 errno=0
[ 1082.035040][T13677] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1082.083118][T13677] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.117230][T13677] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1082.146568][T13677] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1082.195075][T13677] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.212369][T13677] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1082.223546][T13677] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1082.255478][T13677] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1082.322731][T13677] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1082.398588][T13677] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1082.442758][T13677] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1082.493162][T13677] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1083.761205][T13795] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1084.313104][ T2489] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1084.345087][ T2489] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1084.465059][ T5142] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 1084.499882][T13795] veth0_vlan: entered promiscuous mode
[ 1084.599547][T13795] veth1_vlan: entered promiscuous mode
[ 1084.657731][ T9832] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1084.673556][ T9832] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1084.699586][ T5142] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1084.762995][ T5142] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1084.785831][T13795] veth0_macvtap: entered promiscuous mode
[ 1084.817201][ T5142] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1084.853402][T13795] veth1_macvtap: entered promiscuous mode
[ 1084.893794][ T5142] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1084.897118][T14151] input: syz0 as /devices/virtual/input/input38
[ 1084.911349][   T29] audit: type=1326 audit(1719600725.171:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14148 comm="syz.0.2332" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f125a775b29 code=0x0
[ 1084.943695][ T5142] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1085.019470][T13795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1085.022457][ T5142] usb 5-1: config 0 descriptor??
[ 1085.080241][T14137] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1085.112896][ T5096] Bluetooth: hci1: Malformed MSFT vendor event: 0x02
[ 1085.115277][T13795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1085.305204][T13795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1085.377618][T13795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1085.427054][T13795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1085.472721][T13795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1085.596346][T13795] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1085.610678][ T5142] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[ 1085.676144][ T5142] plantronics 0003:047F:FFFF.001A: No inputs registered, leaving
[ 1085.735408][T13795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1085.780754][ T5142] plantronics 0003:047F:FFFF.001A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[ 1085.794147][T13795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1085.842641][T13795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1085.905928][ T5071] usb 5-1: USB disconnect, device number 24
[ 1085.983823][T13795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1086.089632][T13795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1086.213108][T13795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1086.290384][T13795] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1086.380251][T13795] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1086.394642][T13795] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1086.416718][T13795] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1086.435468][T13795] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1086.938549][   T29] audit: type=1800 audit(1719600727.201:1462): pid=14173 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.4.2334" name="bus" dev="sda1" ino=2006 res=0 errno=0
[ 1087.226636][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1087.264043][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1088.549169][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1088.593804][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1089.160977][   T29] audit: type=1804 audit(1719600729.411:1463): pid=14199 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2240" name="/root/syzkaller.LJmstA/0/bus" dev="sda1" ino=2008 res=1 errno=0
[ 1089.281068][   T29] audit: type=1804 audit(1719600729.441:1464): pid=14199 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.3.2240" name="/root/syzkaller.LJmstA/0/bus" dev="sda1" ino=2008 res=1 errno=0
[ 1089.832309][ T5142] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[ 1089.907654][ T1153] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1090.171892][ T5142] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 255, changing to 11
[ 1090.186359][ T1153] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1090.214349][ T5142] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024
[ 1090.225838][ T1153] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1090.237287][ T5142] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1090.255761][ T1153] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1090.299578][ T5142] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1127.096034][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[ 1127.102614][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
[ 1195.314920][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1195.321948][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P14223/1:b..l
[ 1195.330636][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=97401, q=466 ncpus=2)
[ 1195.338493][    C1] task:modprobe        state:R  running task     stack:26528 pid:14223 tgid:14223 ppid:2469   flags:0x00000000
[ 1195.351686][    C1] Call Trace:
[ 1195.355013][    C1]  <TASK>
[ 1195.357986][    C1]  __schedule+0xf15/0x5d00
[ 1195.362543][    C1]  ? hlock_class+0x4e/0x130
[ 1195.367107][    C1]  ? __pfx_mark_lock+0x10/0x10
[ 1195.371962][    C1]  ? __pfx___schedule+0x10/0x10
[ 1195.376890][    C1]  ? mark_held_locks+0x9f/0xe0
[ 1195.381724][    C1]  preempt_schedule_irq+0x51/0x90
[ 1195.386806][    C1]  irqentry_exit+0x36/0x90
[ 1195.391350][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1195.397545][    C1] RIP: 0010:__sanitizer_cov_trace_pc+0x13/0x60
[ 1195.403761][    C1] Code: 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 65 48 8b 15 04 f3 75 7e 65 8b 05 05 f3 75 7e <a9> 00 01 ff 00 48 8b 34 24 74 0f f6 c4 01 74 35 8b 82 1c 16 00 00
[ 1195.423433][    C1] RSP: 0018:ffffc900034875c8 EFLAGS: 00000282
[ 1195.429557][    C1] RAX: 0000000080000000 RBX: 000000000000000e RCX: ffffffff8ad5a3f8
[ 1195.437575][    C1] RDX: ffff88806c15bc00 RSI: ffffffff8ad59ff7 RDI: 0000000000000005
[ 1195.445593][    C1] RBP: ffff8880413e36f0 R08: 0000000000000005 R09: 0000000000000300
[ 1195.453612][    C1] R10: 0000000000000300 R11: 0000000000000001 R12: ffff888015474d98
[ 1195.461718][    C1] R13: 0000000000000000 R14: 0000000000000300 R15: 0000000000000001
[ 1195.469752][    C1]  ? mt_validate+0x1aa8/0x4390
[ 1195.474660][    C1]  ? mt_validate+0x16a7/0x4390
[ 1195.480280][    C1]  mt_validate+0x16d0/0x4390
[ 1195.484936][    C1]  ? mas_wr_end_piv+0x1d1/0x800
[ 1195.489926][    C1]  ? __pfx_mt_validate+0x10/0x10
[ 1195.494931][    C1]  ? vma_complete+0x496/0xdb0
[ 1195.499718][    C1]  ? uprobe_mmap+0x12e/0x1240
[ 1195.504450][    C1]  validate_mm+0x9c/0x4b0
[ 1195.508923][    C1]  ? __pfx_uprobe_mmap+0x10/0x10
[ 1195.513914][    C1]  ? __pfx_validate_mm+0x10/0x10
[ 1195.518926][    C1]  ? vma_complete+0xa10/0xdb0
[ 1195.523676][    C1]  __split_vma+0xd68/0x11c0
[ 1195.528257][    C1]  ? __pfx___split_vma+0x10/0x10
[ 1195.533266][    C1]  do_vmi_align_munmap+0x362/0x19c0
[ 1195.538531][    C1]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[ 1195.544242][    C1]  do_vmi_munmap+0x231/0x410
[ 1195.548899][    C1]  mmap_region+0x17f/0x2760
[ 1195.553559][    C1]  ? mm_get_unmapped_area_vmflags+0x97/0xe0
[ 1195.559524][    C1]  ? __pfx_mmap_region+0x10/0x10
[ 1195.564526][    C1]  ? security_mmap_addr+0x8e/0xb0
[ 1195.569700][    C1]  ? __get_unmapped_area+0x271/0x3a0
[ 1195.575043][    C1]  do_mmap+0xbc7/0xf60
[ 1195.579294][    C1]  vm_mmap_pgoff+0x1ba/0x360
[ 1195.584053][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1195.589270][    C1]  ksys_mmap_pgoff+0x332/0x5d0
[ 1195.594126][    C1]  ? __pfx___x64_sys_pread64+0x10/0x10
[ 1195.599663][    C1]  __x64_sys_mmap+0x125/0x190
[ 1195.604421][    C1]  do_syscall_64+0xcd/0x250
[ 1195.609065][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1195.615043][    C1] RIP: 0033:0x7ff6cf925b74
[ 1195.619534][    C1] RSP: 002b:00007fff6926d2b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1195.628009][    C1] RAX: ffffffffffffffda RBX: 00007fff6926d368 RCX: 00007ff6cf925b74
[ 1195.636038][    C1] RDX: 0000000000000003 RSI: 0000000000006000 RDI: 00007ff6cf82c000
[ 1195.644110][    C1] RBP: 00007fff6926da50 R08: 0000000000000000 R09: 000000000019d000
[ 1195.652141][    C1] R10: 0000000000000812 R11: 0000000000000246 R12: 00007ff6cf9025c0
[ 1195.660169][    C1] R13: 00007fff6926dad8 R14: 000000000019d264 R15: 0000000000000000
[ 1195.668196][    C1]  </TASK>
[ 1195.671255][    C1] rcu: rcu_preempt kthread starved for 10165 jiffies! g97401 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1195.682516][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1195.692526][    C1] rcu: RCU grace-period kthread stack dump:
[ 1195.698447][    C1] task:rcu_preempt     state:R  running task     stack:27680 pid:17    tgid:17    ppid:2      flags:0x00004000
[ 1195.710341][    C1] Call Trace:
[ 1195.713835][    C1]  <TASK>
[ 1195.716812][    C1]  __schedule+0xf15/0x5d00
[ 1195.721295][    C1]  ? __pfx___lock_acquire+0x10/0x10
[ 1195.726594][    C1]  ? __pfx___schedule+0x10/0x10
[ 1195.731502][    C1]  ? schedule+0x298/0x350
[ 1195.735892][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1195.740989][    C1]  ? __pfx___mod_timer+0x10/0x10
[ 1195.745998][    C1]  ? lock_acquire+0x1b1/0x560
[ 1195.750741][    C1]  ? lockdep_init_map_type+0x16d/0x7d0
[ 1195.756270][    C1]  schedule+0xe7/0x350
[ 1195.760449][    C1]  schedule_timeout+0x136/0x2a0
[ 1195.765371][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1195.770807][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1195.776160][    C1]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1195.782105][    C1]  ? prepare_to_swait_event+0xf0/0x470
[ 1195.787638][    C1]  rcu_gp_fqs_loop+0x1eb/0xb00
[ 1195.792471][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1195.797823][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1195.803085][    C1]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 1195.808948][    C1]  rcu_gp_kthread+0x271/0x380
[ 1195.813708][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1195.818970][    C1]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1195.824227][    C1]  ? __kthread_parkme+0x148/0x220
[ 1195.829318][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1195.834581][    C1]  kthread+0x2c1/0x3a0
[ 1195.838714][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1195.843972][    C1]  ? __pfx_kthread+0x10/0x10
[ 1195.848618][    C1]  ret_from_fork+0x45/0x80
[ 1195.853105][    C1]  ? __pfx_kthread+0x10/0x10
[ 1195.857784][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1195.862625][    C1]  </TASK>
[ 1195.865683][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1195.872121][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.10.0-rc5-syzkaller-00200-g5bbd9b249880 #0
[ 1195.881942][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1195.892043][    C1] RIP: 0010:acpi_safe_halt+0x1a/0x20
[ 1195.897495][    C1] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 65 48 8b 05 38 53 1c 75 48 8b 00 a8 08 75 0c 66 90 0f 00 2d 08 b1 b3 00 fb f4 <fa> c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1195.917157][    C1] RSP: 0018:ffffc900001a7d58 EFLAGS: 00000246
[ 1195.923289][    C1] RAX: 0000000000004000 RBX: 0000000000000001 RCX: ffffffff8ae768e9
[ 1195.931324][    C1] RDX: 0000000000000001 RSI: ffff88801bee8000 RDI: ffff88801bee8064
[ 1195.939348][    C1] RBP: ffff88801bee8064 R08: 0000000000000001 R09: ffffed1017266fdd
[ 1195.947421][    C1] R10: ffff8880b9337eeb R11: 0000000000000000 R12: ffff88801afe3800
[ 1195.955446][    C1] R13: ffffffff8e742ce0 R14: 0000000000000001 R15: 0000000000000000
[ 1195.963486][    C1] FS:  0000000000000000(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[ 1195.972589][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1195.979225][    C1] CR2: 00007ff6cf8fd108 CR3: 000000002222e000 CR4: 00000000003506f0
[ 1195.987249][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1195.995267][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1196.003283][    C1] Call Trace:
[ 1196.006823][    C1]  <IRQ>
[ 1196.009718][    C1]  ? show_regs+0x8c/0xa0
[ 1196.014038][    C1]  ? rcu_check_gp_kthread_starvation+0x31b/0x450
[ 1196.020451][    C1]  ? do_raw_spin_unlock+0x172/0x230
[ 1196.025718][    C1]  ? rcu_sched_clock_irq+0x22a2/0x3100
[ 1196.031264][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1196.036360][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[ 1196.042065][    C1]  ? __asan_memcpy+0x3c/0x60
[ 1196.046723][    C1]  ? update_process_times+0x175/0x220
[ 1196.052161][    C1]  ? __pfx_update_process_times+0x10/0x10
[ 1196.057964][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 1196.063516][    C1]  ? update_wall_time+0x1c/0x40
[ 1196.068452][    C1]  ? tick_nohz_handler+0x376/0x530
[ 1196.073636][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 1196.079180][    C1]  ? __hrtimer_run_queues+0x657/0xcc0
[ 1196.084615][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1196.090391][    C1]  ? ktime_get_update_offsets_now+0x201/0x310
[ 1196.096532][    C1]  ? hrtimer_interrupt+0x31b/0x800
[ 1196.101705][    C1]  ? __sysvec_apic_timer_interrupt+0x10f/0x450
[ 1196.107962][    C1]  ? sysvec_apic_timer_interrupt+0x90/0xb0
[ 1196.113832][    C1]  </IRQ>
[ 1196.116804][    C1]  <TASK>
[ 1196.119768][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1196.126006][    C1]  ? ct_kernel_exit+0x139/0x190
[ 1196.130921][    C1]  ? acpi_safe_halt+0x1a/0x20
[ 1196.135673][    C1]  acpi_idle_enter+0xc5/0x160
[ 1196.140427][    C1]  cpuidle_enter_state+0x85/0x500
[ 1196.145553][    C1]  ? __pfx_tsc_verify_tsc_adjust+0x10/0x10
[ 1196.151427][    C1]  cpuidle_enter+0x4e/0xa0
[ 1196.155970][    C1]  do_idle+0x313/0x3f0
[ 1196.160094][    C1]  ? __pfx_do_idle+0x10/0x10
[ 1196.164739][    C1]  cpu_startup_entry+0x4f/0x60
[ 1196.169574][    C1]  start_secondary+0x220/0x2b0
[ 1196.174411][    C1]  ? __pfx_start_secondary+0x10/0x10
[ 1196.179760][    C1]  common_startup_64+0x13e/0x148
[ 1196.184761][    C1]  </TASK>
[ 1196.931443][ T1250] ieee802154 phy0 wpan0: encryption failed: -22
[ 1196.969814][ T1250] ieee802154 phy1 wpan1: encryption failed: -22
[ 1197.125079][ T1153] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1197.134217][ T1153] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1197.265071][ T5142] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
SYZFAIL: failed to send rpc
fd=3 want=25952 sent=0 n=-1 (errno 32: Broken pipe)
[ 1197.476151][ T1153] usb 4-1: config 0 descriptor??
[ 1197.521246][ T5142] usb 3-1: config 0 descriptor??
[ 1197.546016][ T1153] usb 4-1: can't set config #0, error -71
[ 1197.553042][ T5142] usb 3-1: can't set config #0, error -71
[ 1197.625088][ T5142] usb 3-1: USB disconnect, device number 20
[ 1197.636054][ T1153] usb 4-1: USB disconnect, device number 21