last executing test programs:

2m37.276845846s ago: executing program 3 (id=2887):
memfd_secret(0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/disk', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000001340)={0x2020}, 0x2020)

2m35.629151353s ago: executing program 3 (id=2889):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = gettid()
process_vm_writev(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

2m35.36543169s ago: executing program 3 (id=2891):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
open(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x0, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000107000000000000000026", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x0, 0x0, 0x1}, 0x48)
r5 = socket$inet6(0xa, 0x2, 0x27)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r7 = socket(0xa, 0x3, 0x3a)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$MRT6_DEL_MIF(r7, 0x29, 0xc8, 0x0, 0xc000000)
setsockopt$MRT6_ADD_MFC(r7, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @local}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
setsockopt$MRT6_ADD_MFC(r7, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}}, 0x5c)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, 0x0, 0x0)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @private2}, 0x1c)

2m33.796412896s ago: executing program 3 (id=2897):
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00', 0xfffffffd})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket(0x0, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000480)=@newqdisc={0x68, 0x14, 0xf0b, 0x0, 0x0, {0x2}, [@TCA_STAB={0x44, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}, {{0x1c, 0x1, {0x2, 0x1}}, {0x4}}]}]}, 0x68}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000240)={0x0, 0x7}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
r3 = syz_open_dev$usbfs(0x0, 0x76, 0x141201)
ioctl$USBDEVFS_RELEASEINTERFACE(r3, 0x80045510, &(0x7f00000002c0)=0x5)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$inet6(0xa, 0x2, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)

2m30.933103907s ago: executing program 4 (id=2903):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
msgget$private(0x0, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x3, 0x2000)
msgsnd(0x0, &(0x7f0000000400)={0x3}, 0x8, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000080)={{0x0, 0x0, 0xee01}})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)

2m29.749831812s ago: executing program 3 (id=2906):
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, r0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x8, 0x8e}}]}, 0x4c}}, 0x0)

2m28.699562483s ago: executing program 4 (id=2908):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f0000002080)={0x2, 0x0, {&(0x7f0000001f80)=""/152, 0x98, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f00000005c0)={0x2, 0x0, {&(0x7f0000000440)=""/246, 0xf6, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000640)={0x2, 0x0, {&(0x7f0000010140)=""/248, 0xf8, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000001f00)={0x2, 0x0, {&(0x7f0000000180)=""/114, 0x72, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000840)=""/211, 0xd3, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f00000003c0)={0x2, 0x0, {&(0x7f00000002c0)=""/119, 0xfca2, 0x0, 0x0, 0x3}}, 0x48)

2m28.354114574s ago: executing program 3 (id=2911):
socket$packet(0x11, 0xa, 0x300)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000580)=ANY=[], 0x0)

2m26.839768577s ago: executing program 0 (id=2914):
r0 = gettid()
prlimit64(0x0, 0xb, &(0x7f0000000040), 0x0)
tkill(r0, 0xb)

2m26.822015303s ago: executing program 4 (id=2916):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
ioctl$VIDIOC_G_PARM(r0, 0xc0cc5615, &(0x7f0000000140)={0x8})

2m26.681549124s ago: executing program 4 (id=2917):
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00', 0xfffffffd})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket(0x0, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000480)=@newqdisc={0x68, 0x14, 0xf0b, 0x0, 0x0, {0x2}, [@TCA_STAB={0x44, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}, {{0x1c, 0x1, {0x2, 0x1}}, {0x4}}]}]}, 0x68}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000240)={0x0, 0x7}, 0x4)
setsockopt$packet_fanout_data(r2, 0x107, 0x16, 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
r3 = syz_open_dev$usbfs(0x0, 0x76, 0x141201)
ioctl$USBDEVFS_RELEASEINTERFACE(r3, 0x80045510, &(0x7f00000002c0)=0x5)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$inet6(0xa, 0x2, 0x0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)

2m26.449079271s ago: executing program 0 (id=2919):
r0 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0})
io_uring_enter(r0, 0x50, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x1a, &(0x7f0000000000)={0x0}, 0x1)

2m25.904109009s ago: executing program 0 (id=2921):
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, r0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x8, 0x8e}}]}, 0x4c}}, 0x0)

2m25.388162065s ago: executing program 4 (id=2925):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f0000002080)={0x2, 0x0, {&(0x7f0000001f80)=""/152, 0x98, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f00000005c0)={0x2, 0x0, {&(0x7f0000000440)=""/246, 0xf6, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000640)={0x2, 0x0, {&(0x7f0000010140)=""/248, 0xf8, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000001f00)={0x2, 0x0, {&(0x7f0000000180)=""/114, 0x72, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000840)=""/211, 0xd3, 0x0, 0x0, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f00000003c0)={0x2, 0x0, {&(0x7f00000002c0)=""/119, 0xfca2, 0x0, 0x0, 0x3}}, 0x48)

2m25.375263773s ago: executing program 0 (id=2926):
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x0, 0x0, 0xfffffffffffeffff})
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
syz_emit_ethernet(0xba, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000003, 0x12, 0xffffffffffffffff, 0x0)
preadv(r1, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x5, 0x0, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
unshare(0x22020400)
r5 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r5, 0x3b85, &(0x7f00000000c0)={0x28, 0x8, 0x0, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f90d, 0x86, '\x00', @ptr}})

2m21.489494809s ago: executing program 0 (id=2929):
socket$packet(0x11, 0x0, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0xfffd)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x11, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x30, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_PKTS={0x8}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x20000}]}]}, 0x30}}, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x20000023896)

2m21.085167779s ago: executing program 4 (id=2930):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x48, &(0x7f0000000000)=0x1000005, 0x4)
getsockopt$inet6_int(r0, 0x29, 0x48, 0x0, &(0x7f00007d0000))

2m16.699082766s ago: executing program 0 (id=2939):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000900)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
r4 = mq_open(&(0x7f0000000340)='*,-[+[H+]\x00\xb1\xb6\xa3\xf2\xb7\x90\x14\xca\xef\x1fkd\xa6\xf72\xcb\xb86\xc6\xaaw\xe7\xfc\xcd\xa2\xad\x00|\x9bW\x7f\xe4\xd5\xd8\xfe\xb9\xecu6P\x04C\a\xf8l\xe5\r\t%\xbc\x1a\x98\x16\x91\vF\xa6#\xdahP\x87b\xb9B\xda\xa7\xfc\xdc\xe2\x85\xc2\xdc\x10\x89{~&v.\xbc:jNx\xaak\x94\x8b\xe5}^\xb2\xfc\x99\x10\xd7*J\xb9\xe1rM\xde\xc1\xab<eH.o\xf9#Y\xbf6\xfd9\x0f\xc8H\xe9al\x9e\xde\x02\xb3\xb8\x06(5r\x89\x84k\x8at!\x10\xb4\'\xa3\x96u\xf7\x96\xa4\xd4\x0f\x14\x1a\xf6\xcb\xb2\x97|\xb9;\xee\x18\xd6\x02\xa6\xc2\x0f\xa0\xc0\f5\x9c\x06\x16NSC\xab\xfd\xe4\xd8~e,\x1dn:\xf8\xac|\x0f2\xad\xa9f\x1f\xad>\xa9I\xe2p\xdfHls\xfek\xfcDs\x05\xe4\x19.\xbd\x0f\xb5\xbb\\\xd7\xa6\xed\x86Fl\xdf\xd6\xb8.\xb8(\xc8)3\xad\x80y(\xb3\xe5\xba\xcb\x02\xc3\x8dK\xc2\x9b\x17\\\x04^\xf2*\x92k\xb5\xc4\x8c\xf8G\xf0\x89%\x91\xbf\x1c\t\v\xc3\x0f]\xfb\xea\xb8\xdb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00{\b\x9cX!\x1c4\x83\vF\r\xedht\x14h\xe4\xa1\xd37\xf5\x10\x84t\xc8\x87D\xd7\xe9\xe8', 0x40, 0x0, 0x0)
mq_getsetattr(r4, &(0x7f0000000000), 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
r5 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f0000000240)={0xa, 0x0, 0x6, {0x0, 0x0, 0x0, 0x8}})
listen(0xffffffffffffffff, 0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000440), 0x10)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f00000004c0)="580000001400192340834b00000d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010e", 0x2f}], 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x12, 0x4, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff8}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000007c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)

51.052976207s ago: executing program 1 (id=3112):
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r0, &(0x7f0000000040)=@name={0x1e, 0x2, 0xc5d116e9899720b9, {{0x42, 0x200000}}}, 0x10)

50.763091642s ago: executing program 1 (id=3114):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x38, r1, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @empty}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e23}]}, 0x38}}, 0x0)

49.578909641s ago: executing program 1 (id=3115):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0x18, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CODE={0x8}]}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd0}}, 0x0)

49.359947607s ago: executing program 1 (id=3116):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x2}, 0x10)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2, 0x2}, 0x10)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r4, 0x2, 0x1, 0x0, &(0x7f0000000140)=[0x0, 0x0], 0x2, 0x0, 0x0, 0x0, 0x0}, 0x40)

49.007965387s ago: executing program 1 (id=3117):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='huge=within_size'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r0, 0x8208200)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14117e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x604100, 0x7ffffe, 0x4002011, r1, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

42.076878147s ago: executing program 1 (id=3120):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f0000000000)=0x1)
write$dsp(r0, &(0x7f00000001c0)="d1", 0x1)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x8012, r0, 0x0)
close(r0)

1.466702961s ago: executing program 2 (id=3180):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_setup(0xa94, &(0x7f0000000300), &(0x7f0000000040)=<r2=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0})
io_uring_enter(r0, 0xb15, 0x0, 0x0, 0x0, 0x0)

1.3058498s ago: executing program 2 (id=3181):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f0000000600)={'syztnl1\x00', 0x0, 0x20, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @loopback}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r1, &(0x7f0000000480)=[{{&(0x7f0000000240)={0xa, 0x0, 0x0, @dev}, 0x1c, 0x0}}, {{&(0x7f0000000140)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000290000003e"], 0x30}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r2)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)={0x48, r3, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x6}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x4}]}, 0x48}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10003)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(0xffffffffffffffff, 0x104, 0x4, 0x0, &(0x7f0000000140))
preadv(0xffffffffffffffff, &(0x7f0000001880), 0x0, 0x400000, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001140), 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-avx2\x00'}, 0x58)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003400)=@ipv4_newroute={0x1c, 0x1a, 0x1}, 0x1c}}, 0x0)
r6 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r6, &(0x7f00000000c0)={0x2, 0x0, @rand_addr, 0x4}, 0x10)
sendto$l2tp(r6, &(0x7f0000000040)="e5786a0d000000000000c83b", 0xc, 0x0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
ioctl$sock_TIOCINQ(r6, 0x541b, &(0x7f0000000240))

844.893299ms ago: executing program 2 (id=3182):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0xfff)
r1 = getpgid(0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x2, 0x0, 0x7, r1, 0x0, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000380))
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_PCM_IOCTL_DROP(0xffffffffffffffff, 0x4143, 0x0)

647.088339ms ago: executing program 2 (id=3183):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="500000001000090c00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800800010073697400240002800500090035"], 0x50}}, 0x0)

250.877644ms ago: executing program 2 (id=3184):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$user(&(0x7f0000000080), &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000540)="0706675823b8a37f19b37e0f9f120663b78a6a322f28cb301825eddc42c667fc68923d7df9f4c1843c5f11b63d2684fff43955079736fa4c80100487c31c09706b6bf145eb1baf416d2681491bd6a3098fe1a6741d65b085b4075db8419d9e6d17b1eec4dfb860a71d61af753459bcc5ea1f20d6c1c74afda3b0c08bf98886eaac01b08aa753b8727f25773c98cd6a78c06b758992b03b81e2e09cf103dc16a5658a3b58626b457ee4773d41b3548f2258a2e11cc22555da4ef9035cbfe8dc1e", 0xc0, r0)
r2 = add_key$user(&(0x7f0000000180), &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000140)="04", 0x1, r0)
keyctl$dh_compute(0x17, &(0x7f00000001c0)={r2, r1, r2}, &(0x7f0000000440)=""/242, 0xf2, &(0x7f00000002c0)={&(0x7f0000000400)={'crct10dif-generic\x00'}})

0s ago: executing program 2 (id=3185):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
keyctl$search(0xa, 0x0, &(0x7f0000000400)='dns_resolver\x00', 0x0, 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

ns } for  pid=13128 comm="syz.3.2387" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[ 1046.241664][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1046.269887][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1047.078833][T13156] overlayfs: failed to resolve './file1': -2
[ 1047.314500][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1047.334572][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1047.784611][T13177] Bluetooth: hci3: invalid len left 7, exp >= 119
[ 1048.528810][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1048.818813][T13207] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2410'.
[ 1049.068939][T13216] overlayfs: failed to resolve './file1': -2
[ 1049.217284][T13219] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1049.315123][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1050.087223][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1050.454451][ T5169] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1050.490904][T13228] cgroup: release_agent respecified
[ 1050.654393][ T5169] usb 4-1: Using ep0 maxpacket: 8
[ 1050.681449][ T5169] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1050.733827][ T5169] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1050.764040][ T5169] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1050.816043][ T5169] usb 4-1: config 0 descriptor??
[ 1051.062953][ T5169] iowarrior 4-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[ 1051.155521][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1051.404749][T13248] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2427'.
[ 1052.001753][ T5169] libceph: connect (1)[c::]:6789 error -101
[ 1052.016712][ T5169] libceph: mon0 (1)[c::]:6789 connect error
[ 1052.031631][ T5169] libceph: connect (1)[c::]:6789 error -101
[ 1052.052465][ T5169] libceph: mon0 (1)[c::]:6789 connect error
[ 1052.215370][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1052.337840][ T5169] libceph: connect (1)[c::]:6789 error -101
[ 1052.355388][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1052.355816][ T5169] libceph: mon0 (1)[c::]:6789 connect error
[ 1052.751948][T13258] ceph: No mds server is up or the cluster is laggy
[ 1052.789322][T13269] loop0: detected capacity change from 0 to 7
[ 1052.832352][T13269]  loop0: [POWERTEC] p1 p2 p3 p4 p5 p6
[ 1052.864342][T13269] loop0: p1 start 1633826104 is beyond EOD, truncated
[ 1052.893946][T13269] loop0: p2 start 1869768547 is beyond EOD, truncated
[ 1052.924452][T13269] loop0: p3 start 1651750999 is beyond EOD, truncated
[ 1052.925538][ T5169] libceph: connect (1)[c::]:6789 error -101
[ 1052.947823][T13269] loop0: p4 start 2012721161 is beyond EOD, truncated
[ 1052.957885][T13269] loop0: p5 size 196621 extends beyond EOD, truncated
[ 1052.981284][ T5169] libceph: mon0 (1)[c::]:6789 connect error
[ 1052.987302][T13269] loop0: p6 start 2147942412 is beyond EOD, truncated
[ 1053.268715][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1053.428078][T13276] syzkaller1: entered promiscuous mode
[ 1053.448695][T13276] syzkaller1: entered allmulticast mode
[ 1053.463093][   T25] usb 4-1: USB disconnect, device number 13
[ 1053.501124][   T25] iowarrior 4-1:0.0: I/O-Warror #0 now disconnected
[ 1053.510892][   T29] audit: type=1400 audit(1721230524.208:851): avc:  denied  { setattr } for  pid=13273 comm="syz.0.2436" name="tty3" dev="devtmpfs" ino=22 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[ 1053.964671][  T930] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[ 1054.032276][T13286] overlayfs: failed to resolve './file1': -2
[ 1054.060253][   T29] audit: type=1326 audit(1721230524.768:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1054.184128][   T29] audit: type=1326 audit(1721230524.808:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1054.289245][  T930] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1054.308614][   T29] audit: type=1326 audit(1721230524.818:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1054.344375][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1054.361588][  T930] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1054.393240][  T930] usb 1-1: New USB device found, idVendor=0925, idProduct=0005, bcdDevice= 0.00
[ 1054.438029][   T29] audit: type=1326 audit(1721230524.818:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1054.464233][  T930] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1054.496736][  T930] usb 1-1: config 0 descriptor??
[ 1054.548139][   T29] audit: type=1326 audit(1721230524.818:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1054.646993][   T29] audit: type=1326 audit(1721230524.818:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1054.703863][   T29] audit: type=1326 audit(1721230524.818:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1054.789497][   T29] audit: type=1326 audit(1721230524.818:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1054.859999][   T29] audit: type=1326 audit(1721230524.828:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13287 comm="syz.2.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f7451575a99 code=0x7ffc0000
[ 1055.056624][  T930] smartjoyplus 0003:0925:0005.000D: unknown main item tag 0x0
[ 1055.105261][ T5101] Bluetooth: hci2: unexpected event for opcode 0x200f
[ 1055.118069][  T930] smartjoyplus 0003:0925:0005.000D: unknown main item tag 0x0
[ 1055.125862][  T930] smartjoyplus 0003:0925:0005.000D: unbalanced collection at end of report description
[ 1055.140178][  T930] smartjoyplus 0003:0925:0005.000D: parse failed
[ 1055.146959][  T930] smartjoyplus 0003:0925:0005.000D: probe with driver smartjoyplus failed with error -22
[ 1055.394840][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1055.427529][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1055.831225][ T5169] usb 1-1: USB disconnect, device number 19
[ 1055.880172][T13316] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1057.146238][ T5139] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1057.262112][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1057.279154][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1057.374731][ T5139] usb 3-1: Using ep0 maxpacket: 8
[ 1057.397534][ T5139] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1057.434424][ T5139] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1057.463035][ T5139] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1057.508762][ T5139] usb 3-1: config 0 descriptor??
[ 1057.838820][ T5139] iowarrior 3-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[ 1057.899969][T13334] 9pnet: Could not find request transport: Xd
[ 1058.320943][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1058.434876][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1059.154853][ T5101] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1059.165988][ T5101] Bluetooth: hci2: Injecting HCI hardware error event
[ 1059.175506][ T5099] Bluetooth: hci2: hardware error 0x00
[ 1059.395664][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1059.524222][ T5139] usb 3-1: USB disconnect, device number 15
[ 1061.185092][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[ 1061.223650][ T5139] iowarrior 3-1:0.0: I/O-Warror #0 now disconnected
[ 1061.234975][ T5099] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1061.242738][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1061.477968][ T5141] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1061.594395][  T930] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[ 1061.665917][T13362] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1061.676116][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1061.756079][   T29] kauditd_printk_skb: 3 callbacks suppressed
[ 1061.756104][   T29] audit: type=1400 audit(1721230532.468:864): avc:  denied  { ioctl } for  pid=13361 comm="syz.0.2465" path="socket:[50671]" dev="sockfs" ino=50671 ioctlcmd=0x5828 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1061.827005][T13362] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1061.835903][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1061.848628][  T930] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1061.860710][  T930] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1062.119817][  T930] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1062.128986][  T930] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1062.137220][  T930] usb 2-1: Manufacturer: syz
[ 1062.145276][  T930] usb 2-1: config 0 descriptor??
[ 1062.261973][T13376] binder: 13364:13376 ioctl c0306201 20000680 returned -14
[ 1062.275491][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1063.164504][T13372] netlink: 'syz.0.2465': attribute type 4 has an invalid length.
[ 1063.318364][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1063.459308][T13362] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1063.502704][  T930] rc_core: IR keymap rc-hauppauge not found
[ 1063.524350][ T5169] IPVS: starting estimator thread 0...
[ 1063.535679][  T930] Registered IR keymap rc-empty
[ 1063.542080][  T930] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[ 1063.626957][  T930] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input28
[ 1063.634943][T13381] IPVS: using max 24 ests per chain, 57600 per kthread
[ 1063.668759][T13383] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2469'.
[ 1063.716702][  T930] usb 2-1: USB disconnect, device number 16
[ 1064.670376][ T5139] net_ratelimit: 3 callbacks suppressed
[ 1064.670396][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1064.756892][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1065.340374][  T930] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[ 1065.592736][  T930] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1065.685041][  T930] usb 1-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd
[ 1065.734830][  T930] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1065.770374][  T930] usb 1-1: Product: syz
[ 1065.802466][  T930] usb 1-1: Manufacturer: syz
[ 1065.822719][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1066.155440][  T930] usb 1-1: SerialNumber: syz
[ 1067.059685][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1067.085619][  T930] usb 1-1: config 0 descriptor??
[ 1067.165577][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1067.541901][   T29] audit: type=1400 audit(1721230538.248:865): avc:  denied  { create } for  pid=13424 comm="syz.3.2484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 1067.571811][T13393] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1067.628534][   T29] audit: type=1400 audit(1721230538.288:866): avc:  denied  { setopt } for  pid=13424 comm="syz.3.2484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 1067.705077][T13393] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1067.727383][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1068.165303][T13393] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1068.195776][T13437] overlayfs: failed to resolve './file1': -2
[ 1068.206688][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1068.226600][T13393] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1069.701790][T13442] binder: 13438:13442 ioctl c0306201 20000680 returned -14
[ 1069.949421][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1070.108296][ T5139] usb 1-1: USB disconnect, device number 20
[ 1070.357802][T13452] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2493'.
[ 1070.425590][T13452] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2493'.
[ 1070.561854][T13455] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2493'.
[ 1070.687778][ T5099] Bluetooth: hci0: unexpected event for opcode 0x200f
[ 1070.765646][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1071.037319][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1072.288986][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1072.543941][T13480] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2504'.
[ 1072.990428][   T29] audit: type=1400 audit(1721230543.698:867): avc:  denied  { mount } for  pid=13487 comm="syz.2.2510" name="/" dev="selinuxfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[ 1073.796808][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1074.075342][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1074.240923][   T29] audit: type=1400 audit(1721230544.948:868): avc:  denied  { unmount } for  pid=11406 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1
[ 1074.365856][   T29] audit: type=1400 audit(1721230545.078:869): avc:  denied  { bind } for  pid=13500 comm="syz.0.2513" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 1074.442623][T13501] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2512'.
[ 1074.467385][T13501] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2512'.
[ 1074.510692][T13507] overlayfs: failed to resolve './file1': -2
[ 1074.525586][T13502] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1074.627989][T13508] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2512'.
[ 1074.684759][T13502] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1074.754518][ T5099] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1074.765715][ T5099] Bluetooth: hci0: Injecting HCI hardware error event
[ 1074.777616][ T5099] Bluetooth: hci0: hardware error 0x00
[ 1074.789263][T13510] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1074.797656][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1075.155879][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1075.615114][T13516] tipc: Started in network mode
[ 1075.620040][T13516] tipc: Node identity 2, cluster identity 4711
[ 1075.668014][T13516] tipc: Node number set to 2
[ 1076.115795][T13526] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2519'.
[ 1076.144291][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1077.098053][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1077.104293][ T5099] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1077.174424][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1077.187366][T13532] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1078.132801][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1078.152667][   T25] usb 5-1: new low-speed USB device number 16 using dummy_hcd
[ 1078.217406][T13548] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2526'.
[ 1078.286134][T13548] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2526'.
[ 1078.427657][   T25] usb 5-1: No LPM exit latency info found, disabling LPM.
[ 1078.434994][T13550] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2526'.
[ 1078.506860][   T25] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1078.552530][   T25] usb 5-1: string descriptor 0 read error: -22
[ 1078.586096][   T25] usb 5-1: New USB device found, idVendor=6666, idProduct=8801, bcdDevice= 0.40
[ 1078.627972][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1078.736577][   T25] usbhid 5-1:1.0: couldn't find an input interrupt endpoint
[ 1079.095162][   T25] usb 5-1: USB disconnect, device number 16
[ 1079.225293][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1080.205892][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1080.292110][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1080.603115][T13574] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2535'.
[ 1080.611792][   T29] audit: type=1400 audit(1721230551.318:870): avc:  denied  { read } for  pid=13566 comm="syz.0.2533" name="loop-control" dev="devtmpfs" ino=647 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[ 1080.695159][   T29] audit: type=1400 audit(1721230551.348:871): avc:  denied  { open } for  pid=13566 comm="syz.0.2533" path="/dev/loop-control" dev="devtmpfs" ino=647 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[ 1080.783506][   T29] audit: type=1400 audit(1721230551.378:872): avc:  denied  { ioctl } for  pid=13566 comm="syz.0.2533" path="/dev/loop-control" dev="devtmpfs" ino=647 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[ 1081.110322][T13580] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2539'.
[ 1081.119549][    T9] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[ 1081.213701][   T29] audit: type=1400 audit(1721230551.918:873): avc:  denied  { getopt } for  pid=13579 comm="syz.1.2539" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[ 1081.348029][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1081.378805][    T9] usb 3-1: Using ep0 maxpacket: 16
[ 1081.399405][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1081.428166][    T9] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1081.494490][    T9] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1081.524031][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1081.586703][    T9] usb 3-1: config 0 descriptor??
[ 1082.134103][   T29] audit: type=1400 audit(1721230552.828:874): avc:  denied  { relabelfrom } for  pid=13606 comm="syz.3.2550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1082.254782][   T29] audit: type=1400 audit(1721230552.838:875): avc:  denied  { relabelto } for  pid=13606 comm="syz.3.2550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[ 1082.279505][ T5169] usb 1-1: new low-speed USB device number 21 using dummy_hcd
[ 1082.383359][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1082.534499][ T5169] usb 1-1: No LPM exit latency info found, disabling LPM.
[ 1082.627571][T13610] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[ 1082.676766][ T5169] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1082.800152][ T5169] usb 1-1: string descriptor 0 read error: -22
[ 1082.812291][ T5169] usb 1-1: New USB device found, idVendor=6666, idProduct=8801, bcdDevice= 0.40
[ 1082.822993][ T5169] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1082.919811][ T5169] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
[ 1083.244799][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1083.445679][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1083.505977][  T930] usb 1-1: USB disconnect, device number 21
[ 1084.040660][    T9] usbhid 3-1:0.0: can't add hid device: -71
[ 1084.101236][    T9] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 1084.206331][    T9] usb 3-1: USB disconnect, device number 16
[ 1084.565173][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1085.641495][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1085.724757][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1085.760632][T13644] 9pnet: Could not find request transport: Xd
[ 1086.132856][T13654] ceph: No mds server is up or the cluster is laggy
[ 1086.365228][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1086.542683][T13675] fuse: Invalid rootmode
[ 1086.724021][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1087.114304][    T9] usb 5-1: new low-speed USB device number 17 using dummy_hcd
[ 1087.398806][    T9] usb 5-1: No LPM exit latency info found, disabling LPM.
[ 1087.431803][    T9] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1087.504339][    T9] usb 5-1: string descriptor 0 read error: -22
[ 1087.510774][    T9] usb 5-1: New USB device found, idVendor=6666, idProduct=8801, bcdDevice= 0.40
[ 1087.554504][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1087.601299][    T9] usbhid 5-1:1.0: couldn't find an input interrupt endpoint
[ 1087.793514][T13699] xt_cgroup: xt_cgroup: no path or classid specified
[ 1087.866592][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1087.984906][  T930] usb 5-1: USB disconnect, device number 17
[ 1088.813591][   T29] audit: type=1326 audit(1721230559.508:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13719 comm="syz.0.2585" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5ef7375a99 code=0x0
[ 1088.915923][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1089.173976][T13715] ceph: No mds server is up or the cluster is laggy
[ 1090.111381][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1090.191734][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1091.913491][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1092.939203][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1093.174789][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1093.907037][T13781] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1094.028149][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1096.328815][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1096.336981][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1096.345112][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1097.481766][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1098.698352][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1099.419227][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1100.510681][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1100.766270][T13824] Invalid ELF section name index: 32768 || e_shstrndx (32768) >= e_shnum (0)
[ 1100.782415][   T29] audit: type=1400 audit(1721230571.478:877): avc:  denied  { module_load } for  pid=13822 comm="syz.2.2619" path=2F6D656D66643A1037202864656C6574656429 dev="tmpfs" ino=1184 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[ 1101.018956][T13827] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[ 1101.025514][T13827] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1101.074546][T13827] vhci_hcd vhci_hcd.0: Device attached
[ 1101.269844][T13834] vhci_hcd: cannot find a urb of seqnum 3 max seqnum 0
[ 1101.331443][   T47] vhci_hcd: stop threads
[ 1101.367301][   T47] vhci_hcd: release socket
[ 1101.415785][ T5169] usb 15-1: new high-speed USB device number 2 using vhci_hcd
[ 1101.431115][   T47] vhci_hcd: disconnect device
[ 1101.486767][ T5169] usb 15-1: enqueue for inactive port 0
[ 1101.570957][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1101.584930][ T5169] vhci_hcd: vhci_device speed not set
[ 1101.947762][T13851] Bluetooth: MGMT ver 1.23
[ 1103.398126][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1103.502757][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1103.607466][   T29] audit: type=1400 audit(1721230574.318:878): avc:  denied  { mounton } for  pid=13867 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[ 1103.700586][ T5101] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1103.717607][ T5101] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1103.726898][ T5101] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1103.737261][ T5101] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1103.747381][ T5101] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1103.755878][ T5101] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1104.370195][T13896] input: syz0 as /devices/virtual/input/input29
[ 1105.742338][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1105.831261][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1105.924645][ T5101] Bluetooth: hci6: command tx timeout
[ 1106.618386][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1107.831028][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1107.970088][ T5101] Bluetooth: hci6: command tx timeout
[ 1109.047387][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1109.127403][T13867] chnl_net:caif_netlink_parms(): no params data found
[ 1109.289277][T13926] xt_cgroup: xt_cgroup: no path or classid specified
[ 1110.078482][ T5101] Bluetooth: hci6: command tx timeout
[ 1110.215555][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1110.263624][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1110.604814][T13867] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1110.612067][T13867] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1110.639900][T13942] binder: 13941:13942 ioctl c018620b 20000240 returned -14
[ 1110.689984][T13867] bridge_slave_0: entered allmulticast mode
[ 1110.730230][T13867] bridge_slave_0: entered promiscuous mode
[ 1110.766971][T13867] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1110.784369][T13867] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1110.809040][T13867] bridge_slave_1: entered allmulticast mode
[ 1110.828653][T13867] bridge_slave_1: entered promiscuous mode
[ 1111.275584][T13867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1111.324021][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1111.339758][T13867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1111.398404][T13953] VFS: could not find a valid V7 on nullb0.
[ 1111.428522][   T29] audit: type=1400 audit(1721230582.138:879): avc:  denied  { map } for  pid=13952 comm="syz.3.2645" path="/dev/nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 1111.504524][   T29] audit: type=1400 audit(1721230582.138:880): avc:  denied  { execute } for  pid=13952 comm="syz.3.2645" path="/dev/nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 1111.618954][T13886] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1112.053855][T13886] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1112.114508][ T5101] Bluetooth: hci6: command tx timeout
[ 1112.301747][T13867] team0: Port device team_slave_0 added
[ 1112.359196][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1113.437064][T13886] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1113.448309][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1113.456463][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1113.590320][T13867] team0: Port device team_slave_1 added
[ 1113.682325][   T29] audit: type=1400 audit(1721230584.388:881): avc:  denied  { watch } for  pid=13974 comm="syz.2.2652" path="pipe:[52116]" dev="pipefs" ino=52116 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[ 1113.927948][T13886] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1114.005538][T13867] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1114.062271][T13867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1114.204811][T13867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1114.502225][T13867] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1115.267918][T13867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1115.313263][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1115.322475][T13867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1115.342631][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1115.929919][T13986] syz.2.2655: attempt to access beyond end of device
[ 1115.929919][T13986] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1116.908635][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1116.957606][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1117.080079][T13867] hsr_slave_0: entered promiscuous mode
[ 1117.132663][T13867] hsr_slave_1: entered promiscuous mode
[ 1117.187196][T13867] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1117.200030][T13867] Cannot create hsr debugfs directory
[ 1117.287582][T13993] UBIFS error (pid: 13993): cannot open "ubifs", error -22
[ 1118.134965][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1118.190884][T13998] netlink: 'syz.4.2659': attribute type 1 has an invalid length.
[ 1118.245795][ T8827] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1118.304965][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1118.338588][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1118.347375][T13999] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1118.409426][T13999] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1118.723562][T13886] bridge_slave_1: left allmulticast mode
[ 1118.737646][T13886] bridge_slave_1: left promiscuous mode
[ 1118.839273][T13886] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1118.869069][   T29] audit: type=1326 audit(1721230589.538:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13991 comm="syz.0.2657" exe="/root/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7f5ef73a7a85 code=0x0
[ 1118.935851][T13886] bridge_slave_0: left allmulticast mode
[ 1118.954659][T13886] bridge_slave_0: left promiscuous mode
[ 1118.991387][   T29] audit: type=1326 audit(1721230589.578:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13991 comm="syz.0.2657" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5ef7375a99 code=0x0
[ 1119.030058][T13886] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1120.416435][T13994] net_ratelimit: 9 callbacks suppressed
[ 1120.416458][T13994] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1120.454098][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1120.873411][T14027] syz.4.2667: attempt to access beyond end of device
[ 1120.873411][T14027] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1121.563945][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1121.601807][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.844798][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1122.048203][T13886] bond0 (unregistering): Released all slaves
[ 1122.443415][T13886] IPVS: stopping master sync thread 12708 ...
[ 1122.915669][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1123.004905][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1123.967047][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1124.311878][T14054] syz.3.2679: attempt to access beyond end of device
[ 1124.311878][T14054] nbd3: rw=0, sector=0, nr_sectors = 8 limit=0
[ 1124.765867][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1124.807456][T13886] hsr_slave_0: left promiscuous mode
[ 1124.867049][T13886] hsr_slave_1: left promiscuous mode
[ 1124.915559][T13886] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1124.937609][T13886] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1124.959563][T13886] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1124.991075][T13886] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1125.053714][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1125.118187][T13886] veth1_macvtap: left promiscuous mode
[ 1125.128514][T13886] veth0_macvtap: left promiscuous mode
[ 1125.139167][T13886] veth1_vlan: left promiscuous mode
[ 1125.164572][T13886] veth0_vlan: left promiscuous mode
[ 1126.010921][T13886] pimreg (unregistering): left allmulticast mode
[ 1126.114453][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1126.721706][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1127.800856][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1128.452023][T13886] team0 (unregistering): Port device team_slave_1 removed
[ 1128.567130][T13886] team0 (unregistering): Port device team_slave_0 removed
[ 1128.840377][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1129.171730][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1129.886718][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1129.924495][T14060] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2680'.
[ 1130.085636][T14058] (unnamed net_device) (uninitialized): ARP target 1.0.0.0 is already present
[ 1130.114317][T14058] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (1)
[ 1130.895032][T13867] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1130.961825][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1131.266705][T13867] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1132.034741][T14090] netlink: 'syz.3.2692': attribute type 16 has an invalid length.
[ 1132.050738][T14090] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2692'.
[ 1132.085608][T14090] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1132.095432][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1132.144881][T13867] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1132.197296][T13867] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1132.204801][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1132.670745][T14104] netlink: 'syz.0.2696': attribute type 3 has an invalid length.
[ 1132.792636][T13867] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1132.849625][T13867] 8021q: adding VLAN 0 to HW filter on device team0
[ 1132.888417][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1132.895790][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1133.049833][ T5143] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1133.057032][ T5143] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1133.285761][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1134.355578][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1134.366368][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1134.832428][T13867] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1135.801537][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1135.830816][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1135.973327][T13867] veth0_vlan: entered promiscuous mode
[ 1136.061685][T13867] veth1_vlan: entered promiscuous mode
[ 1137.368146][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1137.999059][T13867] veth0_macvtap: entered promiscuous mode
[ 1138.069426][T13867] veth1_macvtap: entered promiscuous mode
[ 1138.195553][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1138.195584][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.195599][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1138.195621][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.195637][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1138.195658][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.195673][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1138.195703][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.195719][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1138.195740][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.198276][T13867] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1138.252231][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1138.252256][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.252267][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1138.252282][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.252292][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1138.252308][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.252320][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1138.252334][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.252345][T13867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1138.252359][T13867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1138.268797][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1138.481255][T13867] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1138.501763][T13867] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1138.549373][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1138.549827][T13867] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1138.549891][T13867] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1138.549943][T13867] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1138.804360][ T9196] IPVS: starting estimator thread 0...
[ 1138.934290][T14170] IPVS: using max 23 ests per chain, 55200 per kthread
[ 1138.945078][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1139.278782][ T8821] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1139.334702][ T8821] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1139.558462][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1139.710811][ T8800] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1139.793317][ T8800] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1140.237408][T14175] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2621'.
[ 1140.615330][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1141.640582][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1142.012533][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1143.629008][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1143.974408][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1144.198050][ T8800] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1144.325509][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1144.514542][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1145.099715][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1145.128807][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1145.449849][T14206] syz.0.2728: attempt to access beyond end of device
[ 1145.449849][T14206] nbd0: rw=0, sector=0, nr_sectors = 8 limit=0
[ 1145.582449][T14218] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1146.228974][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1146.843132][T14231] (unnamed net_device) (uninitialized): ARP target 1.0.0.0 is already present
[ 1146.862219][T14231] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (1)
[ 1147.170562][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1147.236050][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1150.114353][   T29] audit: type=1400 audit(1721230619.618:884): avc:  denied  { setopt } for  pid=14256 comm="syz.3.2746" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 1152.048439][   T25] net_ratelimit: 2 callbacks suppressed
[ 1152.048459][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1152.116763][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1152.324597][ T2468] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1152.334746][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1152.684941][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1153.122371][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1153.450929][T14280] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1153.881930][T14285] cgroup: noprefix used incorrectly
[ 1154.051335][   T29] audit: type=1400 audit(1721230624.758:885): avc:  denied  { bind } for  pid=14284 comm="syz.2.2754" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[ 1154.256853][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1154.471580][T14302] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2762'.
[ 1154.725794][T14302] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2762'.
[ 1155.359841][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1155.592774][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1157.011836][T14342] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2775'.
[ 1157.048037][T14342] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2775'.
[ 1157.682429][ T5137] net_ratelimit: 2 callbacks suppressed
[ 1157.682452][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1157.685945][T14345] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2776'.
[ 1157.926571][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1158.435229][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1159.413565][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1159.941175][T14372] netlink: 'syz.2.2786': attribute type 2 has an invalid length.
[ 1161.494827][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1161.504685][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1161.559332][T14382] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2787'.
[ 1161.654397][T14382] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2787'.
[ 1161.685784][T14371] input input30: cannot allocate more than FF_MAX_EFFECTS effects
[ 1161.884561][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1162.486895][T14401] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2793'.
[ 1162.525082][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1162.986598][T14418] netlink: 'syz.4.2799': attribute type 2 has an invalid length.
[ 1164.269731][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1164.524823][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1165.349721][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1165.383772][T14449] dlm: plock device version mismatch: kernel (1.2.0), user (1768304430.3171692.0)
[ 1165.407430][T14449] ptrace attach of "./syz-executor exec"[11406] was attempted by "./syz-executor exec"[14449]
[ 1166.648720][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1166.775266][T14464] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1166.802417][T14464] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1166.884856][T14472] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1166.979533][T14472] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1167.022291][T14472] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1167.097014][T14468] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2820'.
[ 1167.128432][T14463] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1167.144455][T14468] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2820'.
[ 1169.509549][ T5169] net_ratelimit: 2 callbacks suppressed
[ 1169.509573][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1169.544705][   T29] audit: type=1326 audit(1721230640.248:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14501 comm="syz.3.2833" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f23cf775a99 code=0x0
[ 1169.736409][T14496] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2831'.
[ 1169.863944][T14513] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2833'.
[ 1171.069581][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1171.271192][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1171.487836][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1172.840594][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1174.274559][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1175.417171][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1176.508939][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1177.104370][   T29] audit: type=1400 audit(1721230647.588:887): avc:  denied  { accept } for  pid=14571 comm="syz.3.2857" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1177.469174][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1177.504404][   T29] audit: type=1400 audit(1721230647.598:888): avc:  denied  { bind } for  pid=14571 comm="syz.3.2857" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[ 1178.029926][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1178.064340][   T29] audit: type=1400 audit(1721230647.698:889): avc:  denied  { recv } for  pid=14571 comm="syz.3.2857" saddr=10.128.0.169 src=30006 daddr=10.128.1.16 dest=59912 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[ 1178.252920][T14589] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[ 1179.677014][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1179.890674][T14608] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.2871'.
[ 1180.755058][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1181.148558][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1181.174693][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1181.334472][T14620] 9p: Unknown access argument 18446744073709551615: -34
[ 1182.299565][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1183.088837][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[ 1183.263227][   T29] audit: type=1400 audit(1721230653.718:890): avc:  denied  { egress } for  pid=14628 comm="syz.0.2879" saddr=fe80::1c daddr=ff02::2 netif=teql0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[ 1183.328632][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1183.339188][   T29] audit: type=1400 audit(1721230653.718:891): avc:  denied  { sendto } for  pid=14628 comm="syz.0.2879" saddr=fe80::1c daddr=ff02::2 netif=teql0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[ 1183.544832][ T5169] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[ 1183.835605][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1184.865580][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1184.895143][ T5169] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1184.915188][ T5169] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[ 1184.927167][ T5169] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1184.975517][ T5169] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1184.998182][ T5169] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1185.007450][ T5169] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1185.020900][ T5169] usb 5-1: config 0 descriptor??
[ 1185.029643][T14634] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1185.044283][    T9] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[ 1185.482311][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1185.500446][ T5169] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving
[ 1185.511014][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1185.539804][ T5169] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[ 1185.583329][    T9] usb 2-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[ 1185.614335][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1185.658962][    T9] usb 2-1: config 0 descriptor??
[ 1185.955921][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1186.759009][T14644] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1186.794618][T14644] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1186.891308][    T9] samsung 0003:0419:0600.000F: unknown main item tag 0x0
[ 1186.915010][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1186.932903][    T9] samsung 0003:0419:0600.000F: unknown main item tag 0x0
[ 1186.952427][    T9] samsung 0003:0419:0600.000F: unknown main item tag 0x0
[ 1186.979129][    T9] samsung 0003:0419:0600.000F: unknown main item tag 0x0
[ 1187.003822][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1187.017106][    T9] samsung 0003:0419:0600.000F: unknown main item tag 0x0
[ 1187.062570][    T9] samsung 0003:0419:0600.000F: hidraw1: USB HID v0.00 Device [HID 0419:0600] on usb-dummy_hcd.1-1/input0
[ 1187.122526][    T9] usb 2-1: USB disconnect, device number 17
[ 1188.071780][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1188.253356][   T46] usb 5-1: USB disconnect, device number 18
[ 1189.658581][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1189.955318][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1190.679821][  T930] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1191.024758][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1192.236183][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1192.301896][T14706] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2907'.
[ 1192.322646][T14706] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2907'.
[ 1193.012710][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1193.679046][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1193.726185][ T8814] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1194.330193][ T8814] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1194.658886][ T8814] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1194.762381][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1194.971773][ T8814] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1195.168385][ T5099] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1195.186233][ T5099] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1195.197001][ T5099] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1195.208474][ T5099] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1195.224556][ T5099] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1195.233850][ T5099] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1196.074568][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1198.976611][ T5099] Bluetooth: hci0: command tx timeout
[ 1199.046198][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1199.404303][ T5143] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1199.781633][ T8814] bridge_slave_1: left allmulticast mode
[ 1199.793075][ T8814] bridge_slave_1: left promiscuous mode
[ 1199.806031][ T8814] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1199.908104][ T8814] bridge_slave_0: left promiscuous mode
[ 1199.915351][ T8814] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1200.879696][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1200.931562][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1200.994335][ T5099] Bluetooth: hci0: command tx timeout
[ 1201.990408][ T5169] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1202.635950][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1202.996928][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1203.074321][ T5099] Bluetooth: hci0: command tx timeout
[ 1203.148806][ T5101] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1203.180038][ T5101] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1203.216672][ T5101] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1203.241221][ T5101] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1203.249870][ T5101] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1203.260258][ T5101] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1203.572101][ T8814] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1203.615672][ T8814] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1203.643254][ T8814] bond0 (unregistering): Released all slaves
[ 1204.000792][ T8814] tipc: Left network mode
[ 1204.040454][ T9196] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1205.093396][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1205.120747][ T8814] hsr_slave_0: left promiscuous mode
[ 1205.143395][ T8814] hsr_slave_1: left promiscuous mode
[ 1205.156035][ T5099] Bluetooth: hci0: command tx timeout
[ 1205.176855][ T8814] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1205.211296][ T8814] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1205.233236][ T8814] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1205.244328][ T8814] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1205.369738][ T8814] veth1_macvtap: left promiscuous mode
[ 1205.383316][ T8814] veth0_macvtap: left promiscuous mode
[ 1205.396116][ T5101] Bluetooth: hci2: command tx timeout
[ 1205.416495][ T8814] veth1_vlan: left promiscuous mode
[ 1205.434054][ T8814] veth0_vlan: left promiscuous mode
[ 1205.793900][T14768] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1206.194427][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1206.645471][ T5101] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1206.661126][ T5101] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1206.670424][ T5101] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1206.685006][ T5101] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1206.693462][ T5101] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1206.701178][ T5101] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1207.243756][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1207.484738][ T5101] Bluetooth: hci2: command tx timeout
[ 1207.877367][   T29] audit: type=1400 audit(1721230678.588:892): avc:  denied  { write } for  pid=14845 comm="syz.2.2951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 1208.294536][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1208.539631][ T8814] team0 (unregistering): Port device team_slave_1 removed
[ 1208.742360][ T8814] team0 (unregistering): Port device team_slave_0 removed
[ 1208.849268][ T5101] Bluetooth: hci3: command tx timeout
[ 1208.868162][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1209.363728][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1209.654257][ T5101] Bluetooth: hci2: command tx timeout
[ 1209.768165][T14860] sg_write: data in/out 624/1 bytes for SCSI command 0xcb-- guessing data in;
[ 1209.768165][T14860]    program syz.2.2956 not setting count and/or reply_len properly
[ 1209.912520][T14860] fuse: Unknown parameter 'Z$ +]f{v¼ùkZ`J9ãH#ººßl±	¯HvJþ¾ÙÑÊÖì;"DÔSu·×��V>5LŸ&Š**û¯þß뿾߶(þ7ŸZè&ó'
[ 1210.514727][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1210.612659][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1210.914224][ T5101] Bluetooth: hci3: command tx timeout
[ 1211.636260][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1211.714833][ T5101] Bluetooth: hci2: command tx timeout
[ 1211.894952][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1211.932987][T14827] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition
[ 1211.944216][T14827] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0)
[ 1211.975855][T14834] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 1212.693238][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1212.873514][T14877] netlink: 'syz.2.2960': attribute type 11 has an invalid length.
[ 1213.008348][ T5101] Bluetooth: hci3: command tx timeout
[ 1213.298333][T14876] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2960'.
[ 1213.786564][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1213.899289][T14880] ieee802154 phy0 wpan0: encryption failed: -22
[ 1214.013990][T14746] chnl_net:caif_netlink_parms(): no params data found
[ 1214.307950][T14790] chnl_net:caif_netlink_parms(): no params data found
[ 1214.377781][T14888] Cannot find set identified by id 0 to match
[ 1214.836037][ T5137] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1214.948609][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1215.025767][T14900] ubi0: attaching mtd0
[ 1215.050889][T14900] ubi0: scanning is finished
[ 1215.055765][T14900] ubi0: empty MTD device detected
[ 1215.154353][ T5101] Bluetooth: hci3: command tx timeout
[ 1215.797473][T14900] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[ 1215.892631][ T5140] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1216.069797][T14909] xt_socket: unknown flags 0x4
[ 1216.144394][T14746] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1216.152557][T14746] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1216.165529][T14746] bridge_slave_0: entered allmulticast mode
[ 1216.185112][T14746] bridge_slave_0: entered promiscuous mode
[ 1216.245255][T14746] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1216.252514][T14746] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1216.294562][T14746] bridge_slave_1: entered allmulticast mode
[ 1216.320341][T14746] bridge_slave_1: entered promiscuous mode
[ 1217.055664][ T5140] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1217.955443][ T5139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1218.161064][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1218.171807][T14790] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1218.208214][T14790] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1218.246331][T14790] bridge_slave_0: entered allmulticast mode
[ 1218.270404][T14790] bridge_slave_0: entered promiscuous mode
[ 1218.325390][T14746] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1218.377231][T14746] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1218.454838][T14790] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1218.480951][T14790] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1218.514684][T14790] bridge_slave_1: entered allmulticast mode
[ 1218.523212][T14790] bridge_slave_1: entered promiscuous mode
[ 1218.713607][T14925] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2970'.
[ 1218.735554][T14790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1218.838278][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1218.859158][T14930] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.2972'.
[ 1218.876977][T14927] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2970'.
[ 1218.915471][T14790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1218.954348][T14926] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2970'.
[ 1219.224431][T14937] xt_socket: unknown flags 0x4
[ 1219.235025][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1219.303791][T14832] chnl_net:caif_netlink_parms(): no params data found
[ 1219.388876][T14746] team0: Port device team_slave_0 added
[ 1219.389160][ T8814] IPVS: stop unused estimator thread 0...
[ 1219.469243][T14746] team0: Port device team_slave_1 added
[ 1219.571700][T14790] team0: Port device team_slave_0 added
[ 1219.669828][T14941] netlink: 212404 bytes leftover after parsing attributes in process `syz.1.2976'.
[ 1219.749181][T14941] netlink: 211388 bytes leftover after parsing attributes in process `syz.1.2976'.
[ 1219.855080][T14790] team0: Port device team_slave_1 added
[ 1220.253863][T14746] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1220.263135][T14746] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1220.290445][T14746] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1220.307543][T14746] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1220.314615][T14746] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1220.318538][   T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1220.342462][T14746] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1220.394893][T14790] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1220.434566][T14790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1220.544221][T14790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1220.809259][T14790] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1220.832096][T14790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1220.884523][T14790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1221.008760][T14832] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1221.033305][T14832] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1221.064454][T14832] bridge_slave_0: entered allmulticast mode
[ 1221.086903][T14832] bridge_slave_0: entered promiscuous mode
[ 1221.299622][ T8814] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1221.599471][T14961] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1221.606110][T14832] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1221.633437][T14832] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1221.643550][T14967] ALSA: seq fatal error: cannot create timer (-22)
[ 1221.654619][T14832] bridge_slave_1: entered allmulticast mode
[ 1221.662299][T14832] bridge_slave_1: entered promiscuous mode
[ 1221.745781][T14968] ALSA: seq fatal error: cannot create timer (-22)
[ 1221.871622][ T8814] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1222.350679][   T29] audit: type=1400 audit(1721230692.968:893): avc:  granted  { setsecparam } for  pid=14970 comm="syz.1.2986" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1223.165194][T14790] hsr_slave_0: entered promiscuous mode
[ 1223.228395][T14790] hsr_slave_1: entered promiscuous mode
[ 1223.272577][T14790] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1223.300656][T14790] Cannot create hsr debugfs directory
[ 1223.459147][T14746] hsr_slave_0: entered promiscuous mode
[ 1223.564803][T14746] hsr_slave_1: entered promiscuous mode
[ 1223.624458][T14746] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1223.632076][T14746] Cannot create hsr debugfs directory
[ 1223.749215][ T8814] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.190742][T14832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1224.993884][T14832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1225.119190][ T8814] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1225.675638][T14832] team0: Port device team_slave_0 added
[ 1225.961209][T14832] team0: Port device team_slave_1 added
[ 1226.046932][ T5099] Bluetooth: hci6: command 0x0406 tx timeout
[ 1226.465465][T14832] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1226.486600][T14832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1226.570715][T14832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1226.803361][T14832] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1226.814421][T14832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1226.887021][T14832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1227.279842][T14790] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1227.292589][T14790] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1227.463338][T14832] hsr_slave_0: entered promiscuous mode
[ 1227.499483][T14832] hsr_slave_1: entered promiscuous mode
[ 1227.519999][T14832] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1227.531954][T14832] Cannot create hsr debugfs directory
[ 1227.700346][T14790] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1227.754511][T14790] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1229.099545][T14790] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1229.136013][T14790] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1229.175484][T15018] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2999'.
[ 1229.373246][   T29] audit: type=1400 audit(1721230700.038:894): avc:  granted  { setsecparam } for  pid=15021 comm="syz.1.3001" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1230.526512][T14790] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1230.554205][T14790] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1230.925112][ T8814] bridge_slave_1: left allmulticast mode
[ 1230.938984][ T8814] bridge_slave_1: left promiscuous mode
[ 1230.961863][ T8814] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1230.984666][ T8814] bridge_slave_0: left allmulticast mode
[ 1230.998239][ T8814] bridge_slave_0: left promiscuous mode
[ 1231.014723][ T8814] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1231.061519][ T8814] bridge_slave_1: left allmulticast mode
[ 1231.084993][ T8814] bridge_slave_1: left promiscuous mode
[ 1231.109028][ T8814] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1231.132769][ T8814] bridge_slave_0: left allmulticast mode
[ 1231.146531][ T8814] bridge_slave_0: left promiscuous mode
[ 1231.169862][ T8814] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1232.182323][   T29] audit: type=1400 audit(1721230702.888:895): avc:  denied  { write } for  pid=15039 comm="syz.2.3007" name="card0" dev="devtmpfs" ino=629 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[ 1233.185818][T15042] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3008'.
[ 1233.298756][   T29] audit: type=1400 audit(1721230704.008:896): avc:  denied  { listen } for  pid=15041 comm="syz.2.3008" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[ 1233.737716][ T8814] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1233.761797][ T8814] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1233.786775][ T8814] bond0 (unregistering): Released all slaves
[ 1233.834334][ T8814] bond1 (unregistering): Released all slaves
[ 1234.156026][ T8814] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1234.182050][ T8814] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1234.199511][ T8814] bond0 (unregistering): Released all slaves
[ 1234.570668][T15048] dlm: no local IP address has been set
[ 1234.605871][T15048] dlm: cannot start dlm midcomms -107
[ 1234.613238][ T8814] : left promiscuous mode
[ 1234.797054][T14790] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1234.876928][ T8814] IPVS: stopping master sync thread 12754 ...
[ 1235.211690][T14790] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1235.590686][   T29] audit: type=1400 audit(1721230706.048:897): avc:  denied  { connect } for  pid=15051 comm="syz.2.3012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[ 1236.562492][T14790] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1236.680056][T14790] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1236.716268][T15063] ieee802154 phy0 wpan0: encryption failed: -22
[ 1237.114526][T15069] netlink: 'syz.2.3015': attribute type 11 has an invalid length.
[ 1237.955241][T15068] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3015'.
[ 1238.529995][T15074] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3017'.
[ 1238.813826][ T8814] hsr_slave_0: left promiscuous mode
[ 1238.824723][ T8814] 0·: left promiscuous mode
[ 1238.841876][ T8814] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1238.853602][ T8814] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1238.887666][ T8814] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1238.901315][ T8814] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1239.174797][ T8814] hsr_slave_0: left promiscuous mode
[ 1239.193783][ T8814] hsr_slave_1: left promiscuous mode
[ 1239.224721][ T8814] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1239.246821][ T8814] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1239.276362][ T8814] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1239.283793][ T8814] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1239.621451][ T8814] veth1_macvtap: left promiscuous mode
[ 1239.627166][ T8814] veth0_macvtap: left promiscuous mode
[ 1239.633168][ T8814] veth1_vlan: left promiscuous mode
[ 1239.641857][ T8814] veth0_vlan: left promiscuous mode
[ 1239.656660][ T8814] veth1_macvtap: left promiscuous mode
[ 1239.682902][ T8814] veth0_macvtap: left promiscuous mode
[ 1239.693233][ T8814] veth1_vlan: left promiscuous mode
[ 1239.733732][ T8814] veth0_vlan: left promiscuous mode
[ 1242.385502][ T8814] team0 (unregistering): Port device team_slave_1 removed
[ 1242.515693][ T8814] team0 (unregistering): Port device team_slave_0 removed
[ 1244.442805][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[ 1245.471881][ T8814] team0 (unregistering): Port device team_slave_1 removed
[ 1245.605641][ T8814] team0 (unregistering): Port device team_slave_0 removed
[ 1247.139429][T14790] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1247.210235][T14790] 8021q: adding VLAN 0 to HW filter on device team0
[ 1247.235315][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1247.242618][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1247.280893][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1247.288170][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1248.049316][T14832] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1248.124995][T14832] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1248.268880][T14832] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1249.446994][T14832] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1250.205631][T14746] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1250.242364][T14746] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1250.263756][ T8814] IPVS: stop unused estimator thread 0...
[ 1250.272960][T14746] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1250.332262][ T8814] IPVS: stop unused estimator thread 0...
[ 1250.409507][T14746] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1250.497329][T14790] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1251.894694][T14832] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1252.028688][T14832] 8021q: adding VLAN 0 to HW filter on device team0
[ 1252.155882][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1252.163053][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1252.291228][T14768] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1252.298594][T14768] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1252.446217][T14746] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1252.603963][   T29] audit: type=1400 audit(1721230723.308:898): avc:  denied  { read write } for  pid=15131 comm="syz.2.3031" name="uhid" dev="devtmpfs" ino=1083 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[ 1252.693618][   T29] audit: type=1400 audit(1721230723.308:899): avc:  denied  { open } for  pid=15131 comm="syz.2.3031" path="/dev/uhid" dev="devtmpfs" ino=1083 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[ 1253.141230][T14746] 8021q: adding VLAN 0 to HW filter on device team0
[ 1253.285628][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1253.292807][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1253.347102][T15142] netlink: 'syz.1.3032': attribute type 10 has an invalid length.
[ 1253.603166][T15142] team0: Failed to send options change via netlink (err -105)
[ 1253.648572][T15142] team0: Port device netdevsim0 added
[ 1253.758803][T15144] netlink: 'syz.1.3032': attribute type 10 has an invalid length.
[ 1253.806015][T15144] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[ 1253.937081][T15144] team0: Failed to send options change via netlink (err -105)
[ 1253.961041][T15144] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[ 1253.972710][T15144] team0: Port device netdevsim0 removed
[ 1253.986973][T15144] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1254.003993][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1254.011266][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1254.241341][T14790] veth0_vlan: entered promiscuous mode
[ 1254.419962][T14790] veth1_vlan: entered promiscuous mode
[ 1254.697308][T14832] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1254.955186][T14790] veth0_macvtap: entered promiscuous mode
[ 1255.038540][T14790] veth1_macvtap: entered promiscuous mode
[ 1255.331069][T14832] veth0_vlan: entered promiscuous mode
[ 1255.366519][T14790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1255.400871][T14790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1255.440346][T14790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1255.495138][T14790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1255.513498][T14790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1255.524936][ T5101] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1255.564130][ T5101] Bluetooth: hci6: command 0x0406 tx timeout
[ 1255.570304][ T5101] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1255.604578][T14790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1255.614674][ T5101] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1255.635770][T14790] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1255.646941][ T5101] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1255.655029][ T5101] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1255.662536][ T5101] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1255.680408][T14832] veth1_vlan: entered promiscuous mode
[ 1256.164688][T14790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1256.190505][T14790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1256.214136][   T29] audit: type=1400 audit(1721230726.908:900): avc:  denied  { execute } for  pid=15169 comm="syz.1.3037" path="/dev/hwrng" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[ 1256.256272][T14790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1256.340587][T14790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1256.360609][T14790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1256.386663][T14790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1256.496542][T14790] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1256.786902][T14790] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.858834][T14790] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.891964][T14790] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1256.905817][T14790] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1257.733240][T14832] veth0_macvtap: entered promiscuous mode
[ 1257.806270][ T5101] Bluetooth: hci0: command tx timeout
[ 1257.883139][T14832] veth1_macvtap: entered promiscuous mode
[ 1258.072224][T15186] netlink: 'syz.1.3042': attribute type 10 has an invalid length.
[ 1258.128206][T15186] bond0: (slave netdevsim0): Releasing backup interface
[ 1258.164038][ T5101] Bluetooth: hci6: Ignoring HCI_Connection_Complete for existing connection
[ 1258.187574][ T5101] Bluetooth: Unexpected start frame (len 18)
[ 1258.217548][T15186] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[ 1258.324586][T15186] team0: Failed to send options change via netlink (err -105)
[ 1258.345898][T15186] team0: Port device netdevsim0 added
[ 1258.492422][T15187] netlink: 'syz.1.3042': attribute type 10 has an invalid length.
[ 1258.543657][T15187] team0: Failed to send options change via netlink (err -105)
[ 1258.656058][T15187] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[ 1258.702414][T15187] team0: Port device netdevsim0 removed
[ 1258.736629][T15187] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1258.940920][ T8814] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1258.959453][ T8814] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1259.130358][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1259.179710][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1259.224318][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1259.266550][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1259.276578][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1259.287168][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1259.297316][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1259.307966][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1259.347795][T14832] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1259.492612][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1259.543889][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1259.566080][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1259.586921][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1259.610509][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1259.631447][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1259.643791][T14832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1259.674999][T14832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1259.698302][T14832] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1259.876360][ T5101] Bluetooth: hci0: command tx timeout
[ 1260.241029][ T8814] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1260.247304][T14832] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.284151][ T8814] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1260.301531][T14832] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.357631][T14832] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.402952][T14832] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.491555][   T29] audit: type=1400 audit(1721230731.198:901): avc:  granted  { setsecparam } for  pid=15208 comm="syz.1.3049" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1260.684769][ T8827] bridge_slave_1: left allmulticast mode
[ 1260.692027][ T8827] bridge_slave_1: left promiscuous mode
[ 1260.736733][ T8827] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1261.638113][ T8827] bridge_slave_0: left allmulticast mode
[ 1261.643805][ T8827] bridge_slave_0: left promiscuous mode
[ 1261.665551][ T8827] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1261.959769][ T5101] Bluetooth: hci0: command tx timeout
[ 1262.912914][ T5099] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1262.932432][ T5099] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1262.940625][ T5099] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1262.975097][ T5099] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1263.017876][ T5099] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1263.067172][ T5099] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1263.644684][ T8827] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1263.661206][ T8827] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1263.680154][ T8827] bond0 (unregistering): Released all slaves
[ 1263.707243][T15167] chnl_net:caif_netlink_parms(): no params data found
[ 1264.049666][ T5099] Bluetooth: hci0: command tx timeout
[ 1264.431117][ T8827] hsr_slave_0: left promiscuous mode
[ 1264.455813][ T8827] hsr_slave_1: left promiscuous mode
[ 1264.462212][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1264.472392][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1264.770807][ T5141] SELinux: failure in sel_netif_sid_slow(), invalid network interface (16)
[ 1264.985062][   T29] audit: type=1400 audit(1721230735.698:902): avc:  denied  { append } for  pid=15240 comm="syz.1.3060" name="nullb0" dev="devtmpfs" ino=681 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 1265.162773][ T5099] Bluetooth: hci2: command tx timeout
[ 1265.400022][ T8827] team0 (unregistering): Port device team_slave_1 removed
[ 1265.477961][ T5139] SELinux: failure in sel_netif_sid_slow(), invalid network interface (16)
[ 1265.500872][ T8827] team0 (unregistering): Port device team_slave_0 removed
[ 1266.493193][ T5101] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1266.518412][ T5101] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1266.544593][ T5101] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1266.564582][ T5101] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1266.573883][ T5101] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1266.581637][ T5101] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1267.244252][ T5101] Bluetooth: hci2: command tx timeout
[ 1268.766346][ T5101] Bluetooth: hci5: command tx timeout
[ 1268.944984][T15167] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1268.984347][T15167] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1268.991713][T15167] bridge_slave_0: entered allmulticast mode
[ 1269.022283][T15167] bridge_slave_0: entered promiscuous mode
[ 1269.090901][T15167] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1269.144641][T15167] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1269.152802][T15167] bridge_slave_1: entered allmulticast mode
[ 1269.175817][T15167] bridge_slave_1: entered promiscuous mode
[ 1269.314260][ T5101] Bluetooth: hci2: command tx timeout
[ 1269.751385][T15167] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1269.939782][T15167] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1270.479803][T15167] team0: Port device team_slave_0 added
[ 1270.501726][T15167] team0: Port device team_slave_1 added
[ 1270.834308][ T5101] Bluetooth: hci5: command tx timeout
[ 1271.011427][T15167] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1271.024139][T15167] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1271.082061][T15167] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1271.164463][T15167] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1271.181683][T15167] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1271.225036][T15167] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1271.240226][T15290] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1271.397121][ T5101] Bluetooth: hci2: command tx timeout
[ 1272.019150][ T8827] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1272.411023][ T8827] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1272.456959][T15296] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3074'.
[ 1272.514228][T15296] netlink: 108 bytes leftover after parsing attributes in process `syz.1.3074'.
[ 1272.618155][T15167] hsr_slave_0: entered promiscuous mode
[ 1272.652865][T15167] hsr_slave_1: entered promiscuous mode
[ 1272.673691][T15167] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1272.691925][T15167] Cannot create hsr debugfs directory
[ 1272.726750][T15225] chnl_net:caif_netlink_parms(): no params data found
[ 1272.868922][ T8827] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1272.914321][ T5101] Bluetooth: hci5: command tx timeout
[ 1274.386151][ T8827] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.994448][ T5101] Bluetooth: hci5: command tx timeout
[ 1275.713453][T15245] chnl_net:caif_netlink_parms(): no params data found
[ 1275.792961][T15225] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1275.849909][T15225] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1275.863951][T15225] bridge_slave_0: entered allmulticast mode
[ 1275.876020][T15225] bridge_slave_0: entered promiscuous mode
[ 1275.899342][T15225] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1275.915451][T15225] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1275.947788][T15225] bridge_slave_1: entered allmulticast mode
[ 1276.004382][T15225] bridge_slave_1: entered promiscuous mode
[ 1277.102857][ T8827] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1277.251974][T15225] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1277.504083][T15225] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1277.737126][ T8827] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1277.811384][T15245] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1277.838988][T15245] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1277.873538][T15245] bridge_slave_0: entered allmulticast mode
[ 1277.903478][T15245] bridge_slave_0: entered promiscuous mode
[ 1277.963477][T15245] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1277.991091][T15245] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1278.014642][T15245] bridge_slave_1: entered allmulticast mode
[ 1278.022832][T15245] bridge_slave_1: entered promiscuous mode
[ 1278.248057][T15225] team0: Port device team_slave_0 added
[ 1278.310871][ T8827] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1278.416535][T15225] team0: Port device team_slave_1 added
[ 1278.517752][T15348] netlink: 'syz.2.3090': attribute type 10 has an invalid length.
[ 1278.768787][T15348] team0: Failed to send options change via netlink (err -105)
[ 1278.777801][T15348] team0: Port device netdevsim0 added
[ 1278.910826][ T8827] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1279.053202][T15349] netlink: 'syz.2.3090': attribute type 10 has an invalid length.
[ 1279.073226][T15349] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[ 1279.117801][T15349] team0: Failed to send options change via netlink (err -105)
[ 1279.168953][T15349] team0: Port device netdevsim0 removed
[ 1279.303126][T15349] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1279.394828][T15225] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1279.434218][T15225] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1279.512581][T15225] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1279.539533][T15225] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1279.600038][T15225] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1279.611287][T15358] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2576 sclass=netlink_route_socket pid=15358 comm=syz.2.3092
[ 1279.638224][T15225] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1279.705226][T15245] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1279.751601][T15358] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3092'.
[ 1279.756848][T15245] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1280.060713][T15245] team0: Port device team_slave_0 added
[ 1280.359090][T15245] team0: Port device team_slave_1 added
[ 1280.617423][T15225] hsr_slave_0: entered promiscuous mode
[ 1280.671706][T15225] hsr_slave_1: entered promiscuous mode
[ 1280.698662][T15225] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1280.723033][T15225] Cannot create hsr debugfs directory
[ 1280.815335][T15245] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1280.823362][T15245] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1280.903443][T15245] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1281.108754][T15245] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1281.164663][T15245] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1281.237884][T15245] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1281.504461][T15167] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1281.736858][T15167] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1281.808350][T15167] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1282.013091][T15245] hsr_slave_0: entered promiscuous mode
[ 1282.041180][T15245] hsr_slave_1: entered promiscuous mode
[ 1282.074250][T15245] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1282.102724][T15245] Cannot create hsr debugfs directory
[ 1282.134219][T15167] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1282.192682][ T8827] bridge_slave_1: left allmulticast mode
[ 1282.217945][ T8827] bridge_slave_1: left promiscuous mode
[ 1282.223829][ T8827] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1282.257426][ T8827] bridge_slave_0: left allmulticast mode
[ 1282.263104][ T8827] bridge_slave_0: left promiscuous mode
[ 1282.270511][ T8827] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1282.297226][ T8827] bridge_slave_1: left allmulticast mode
[ 1282.302917][ T8827] bridge_slave_1: left promiscuous mode
[ 1282.319713][ T8827] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1282.365632][ T8827] bridge_slave_0: left allmulticast mode
[ 1282.371308][ T8827] bridge_slave_0: left promiscuous mode
[ 1282.424482][ T8827] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1285.173444][ T8827] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1285.213978][ T8827] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1285.261028][ T8827] bond0 (unregistering): Released all slaves
[ 1285.654688][ T8827] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1285.715863][ T8827] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1285.756475][ T8827] bond0 (unregistering): Released all slaves
[ 1287.367306][T15402] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3103'.
[ 1288.036966][ T5101] Bluetooth: hci6: unexpected event for opcode 0x0c46
[ 1288.344875][T15409] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1288.505682][ T5101] Bluetooth: hci6: ACL packet for unknown connection handle 200
[ 1288.599122][ T8827] hsr_slave_0: left promiscuous mode
[ 1288.606094][ T8827] hsr_slave_1: left promiscuous mode
[ 1288.613593][T15408] input: syz0 as /devices/virtual/input/input32
[ 1288.650687][ T8827] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1288.673170][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1288.707289][ T8827] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1288.745887][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1288.785035][ T8827] hsr_slave_0: left promiscuous mode
[ 1288.804849][ T8827] hsr_slave_1: left promiscuous mode
[ 1288.937469][ T8827] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1288.955379][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1289.016675][ T8827] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1289.074369][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1289.293055][ T8827] veth1_macvtap: left promiscuous mode
[ 1289.299179][ T8827] veth0_macvtap: left promiscuous mode
[ 1289.309982][ T8827] veth1_vlan: left promiscuous mode
[ 1289.326031][ T8827] veth0_vlan: left promiscuous mode
[ 1289.446934][ T8827] veth1_macvtap: left promiscuous mode
[ 1289.466233][T15422] input: syz1 as /devices/virtual/input/input33
[ 1289.506325][ T8827] veth0_macvtap: left promiscuous mode
[ 1289.512145][ T8827] veth1_vlan: left promiscuous mode
[ 1289.545157][ T8827] veth0_vlan: left promiscuous mode
[ 1290.694471][ T5141] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[ 1290.936525][ T5141] usb 3-1: config 0 has an invalid interface number: 208 but max is 0
[ 1291.244252][ T5141] usb 3-1: config 0 has no interface number 0
[ 1291.254447][ T5141] usb 3-1: too many endpoints for config 0 interface 208 altsetting 167: 211, using maximum allowed: 30
[ 1291.314813][ T5141] usb 3-1: config 0 interface 208 altsetting 167 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1291.339649][ T5141] usb 3-1: config 0 interface 208 altsetting 167 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1291.370327][ T5141] usb 3-1: config 0 interface 208 altsetting 167 has 1 endpoint descriptor, different from the interface descriptor's value: 211
[ 1291.394537][ T5141] usb 3-1: config 0 interface 208 has no altsetting 0
[ 1291.412575][ T5141] usb 3-1: New USB device found, idVendor=0eef, idProduct=72d0, bcdDevice= 0.00
[ 1291.422696][ T5141] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1291.455118][ T5141] usb 3-1: config 0 descriptor??
[ 1293.210925][   T46] usb 3-1: USB disconnect, device number 17
[ 1293.585872][ T8827] team0 (unregistering): Port device team_slave_1 removed
[ 1293.874992][ T8827] team0 (unregistering): Port device team_slave_0 removed
[ 1295.153911][   T29] audit: type=1400 audit(1721230765.858:903): avc:  denied  { recv } for  pid=0 comm="swapper/1" saddr=10.128.0.169 src=44138 daddr=10.128.1.16 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[ 1296.703229][ T8827] team0 (unregistering): Port device team_slave_1 removed
[ 1296.867890][ T8827] team0 (unregistering): Port device team_slave_0 removed
[ 1298.889738][T15167] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1298.930153][T15451] input: syz1 as /devices/virtual/input/input34
[ 1299.051526][T15167] 8021q: adding VLAN 0 to HW filter on device team0
[ 1299.126110][ T5139] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1299.133268][ T5139] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1299.195353][ T5139] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1299.202708][ T5139] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1299.713068][T15225] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1300.046231][T15225] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1300.120432][T15225] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1300.190858][T15225] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1301.511946][ T5099] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1301.524631][ T5099] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1301.533360][ T5099] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1301.545726][ T5099] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1301.553831][ T5099] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1301.562822][ T5099] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1302.318925][ T8827] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1302.799633][ T8827] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1302.858097][T15245] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1302.919503][T15245] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1303.025952][ T8827] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1303.099411][T15245] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1303.239586][ T8827] bond0: (slave netdevsim0): Releasing backup interface
[ 1303.264796][ T8827] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1303.301357][T15245] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1303.427823][T15167] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1303.717374][ T5099] Bluetooth: hci3: command tx timeout
[ 1303.919510][T15225] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1303.956801][T14768] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[ 1304.167470][T14768] usb 3-1: Using ep0 maxpacket: 32
[ 1304.177049][T15167] veth0_vlan: entered promiscuous mode
[ 1304.190968][T14768] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36
[ 1304.225059][T14768] usb 3-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 1304.248695][T14768] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1304.264134][T14768] usb 3-1: Product: syz
[ 1304.268349][T14768] usb 3-1: Manufacturer: syz
[ 1304.313968][T14768] usb 3-1: SerialNumber: syz
[ 1304.345398][T14768] usb 3-1: config 0 descriptor??
[ 1304.351288][T15486] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1304.410543][ T8827] bridge_slave_1: left allmulticast mode
[ 1304.420914][T14768] hub 3-1:0.0: bad descriptor, ignoring hub
[ 1304.435718][T14768] hub 3-1:0.0: probe with driver hub failed with error -5
[ 1304.438146][ T8827] bridge_slave_1: left promiscuous mode
[ 1304.448045][T14768] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input35
[ 1304.484668][ T8827] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1304.566513][ T8827] bridge_slave_0: left allmulticast mode
[ 1304.572222][ T8827] bridge_slave_0: left promiscuous mode
[ 1304.591304][ T8827] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1304.788404][ T5137] usb 3-1: USB disconnect, device number 18
[ 1304.788408][    C0] usbtouchscreen 3-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[ 1305.800856][ T5099] Bluetooth: hci3: command tx timeout
[ 1305.885957][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[ 1306.145323][ T8827] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1306.206550][ T8827] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1306.229913][ T8827] bond0 (unregistering): Released all slaves
[ 1306.311330][T15167] veth1_vlan: entered promiscuous mode
[ 1306.557208][T15225] 8021q: adding VLAN 0 to HW filter on device team0
[ 1306.618135][   T29] audit: type=1804 audit(1721230777.328:904): pid=15493 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.2.3131" name="/newroot/325/file0" dev="fuse" ino=1 res=1 errno=0
[ 1306.738508][T15467] chnl_net:caif_netlink_parms(): no params data found
[ 1307.057800][T14768] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1307.065117][T14768] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1307.138063][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1307.145315][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1307.665421][   T29] audit: type=1326 audit(1721230778.378:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15504 comm="syz.2.3136" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7451575a99 code=0x0
[ 1307.789282][T15167] veth0_macvtap: entered promiscuous mode
[ 1307.874497][ T5099] Bluetooth: hci3: command tx timeout
[ 1307.918029][T15245] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1308.093798][T15167] veth1_macvtap: entered promiscuous mode
[ 1308.194537][ T8827] hsr_slave_0: left promiscuous mode
[ 1308.216609][ T8827] hsr_slave_1: left promiscuous mode
[ 1308.236385][ T8827] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1308.255648][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1308.307109][ T8827] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1308.324021][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1308.492554][ T8827] veth1_macvtap: left promiscuous mode
[ 1308.511794][ T8827] veth0_macvtap: left promiscuous mode
[ 1308.530870][ T8827] veth1_vlan: left promiscuous mode
[ 1308.537613][ T8827] veth0_vlan: left promiscuous mode
[ 1308.750753][T15511] binder: 15510:15511 ioctl c018620c 20000740 returned -22
[ 1309.955583][ T5099] Bluetooth: hci3: command tx timeout
[ 1310.812597][ T8827] team0 (unregistering): Port device team_slave_1 removed
[ 1310.928912][ T8827] team0 (unregistering): Port device team_slave_0 removed
[ 1312.246486][T15467] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1312.253730][T15467] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1312.269162][T15467] bridge_slave_0: entered allmulticast mode
[ 1312.286031][T15467] bridge_slave_0: entered promiscuous mode
[ 1312.328278][T15467] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1312.354311][T15467] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1312.361852][T15467] bridge_slave_1: entered allmulticast mode
[ 1312.406114][T15467] bridge_slave_1: entered promiscuous mode
[ 1312.436749][T15167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1312.474147][T15167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1312.494258][T15167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1312.534116][T15167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1312.556701][T15167] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1312.642122][T15245] 8021q: adding VLAN 0 to HW filter on device team0
[ 1312.820985][T15167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1312.890388][T15167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1312.901972][T15167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1312.924314][T15167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1312.945996][T15167] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1312.972189][T15467] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1313.127089][T15467] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1313.166800][ T5137] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1313.174025][ T5137] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1313.323912][T15167] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1313.385532][T15167] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1313.419263][T15167] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1313.444167][T15167] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1313.454421][   T29] audit: type=1326 audit(1721230784.148:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.3142" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7451575a99 code=0x0
[ 1313.548851][   T29] audit: type=1400 audit(1721230784.258:907): avc:  granted  { setsecparam } for  pid=15525 comm="syz.2.3142" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[ 1313.743514][ T5137] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1313.750860][ T5137] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1313.802794][T15467] team0: Port device team_slave_0 added
[ 1313.878489][T15467] team0: Port device team_slave_1 added
[ 1314.176206][ T1036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1314.209817][ T1036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1314.363892][T15467] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1314.414366][T15467] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1314.486458][T15467] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1314.644322][T15467] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1314.651291][T15467] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1314.774196][T15467] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1314.975551][T15537] binder: 15536:15537 ioctl 4004f50d 20000380 returned -22
[ 1315.195579][T15467] hsr_slave_0: entered promiscuous mode
[ 1315.233455][T15467] hsr_slave_1: entered promiscuous mode
[ 1315.274452][T15467] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1315.282253][T15467] Cannot create hsr debugfs directory
[ 1315.472164][T15225] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1315.672027][ T5101] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1315.683883][ T5101] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1315.703468][ T5101] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1315.712205][ T5101] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1315.723124][ T5101] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1315.733383][ T5101] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1316.196250][ T8827] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1316.541519][ T8827] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1317.057380][ T8827] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1317.307390][ T8827] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1317.796582][ T5101] Bluetooth: hci0: command tx timeout
[ 1317.862036][T15245] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1319.353406][T15225] veth0_vlan: entered promiscuous mode
[ 1319.813534][ T8827] bridge_slave_1: left allmulticast mode
[ 1319.834345][ T8827] bridge_slave_1: left promiscuous mode
[ 1319.840166][ T8827] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1319.875476][ T5101] Bluetooth: hci0: command tx timeout
[ 1319.904625][ T8827] bridge_slave_0: left allmulticast mode
[ 1319.910408][ T8827] bridge_slave_0: left promiscuous mode
[ 1319.920569][ T8827] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1320.934099][ T8827] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1320.958245][ T8827] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1320.987569][ T8827] bond0 (unregistering): Released all slaves
[ 1321.247294][T15245] veth0_vlan: entered promiscuous mode
[ 1321.425904][T15225] veth1_vlan: entered promiscuous mode
[ 1321.703234][T15245] veth1_vlan: entered promiscuous mode
[ 1321.954238][ T5101] Bluetooth: hci0: command tx timeout
[ 1322.166485][T15541] chnl_net:caif_netlink_parms(): no params data found
[ 1322.734347][ T8827] hsr_slave_0: left promiscuous mode
[ 1322.826703][ T8827] hsr_slave_1: left promiscuous mode
[ 1322.850882][ T8827] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1322.874225][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1322.935349][ T8827] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1322.942833][ T8827] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1323.099193][ T8827] veth1_macvtap: left promiscuous mode
[ 1323.134226][ T8827] veth0_macvtap: left promiscuous mode
[ 1323.151785][ T8827] veth1_vlan: left promiscuous mode
[ 1323.194281][ T8827] veth0_vlan: left promiscuous mode
[ 1323.325714][ T5099] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1323.338642][ T5099] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1323.359047][ T5099] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1323.396706][ T5099] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1323.426314][ T5099] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1323.433889][ T5099] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1324.034212][ T5101] Bluetooth: hci0: command tx timeout
[ 1325.474458][ T5101] Bluetooth: hci6: command tx timeout
[ 1326.403955][ T5099] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1326.424490][ T5099] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1326.441458][ T5099] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1326.464483][ T5099] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1326.485690][ T5099] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1326.493506][ T5099] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1326.541784][ T8827] team0 (unregistering): Port device team_slave_1 removed
[ 1326.785201][ T8827] team0 (unregistering): Port device team_slave_0 removed
[ 1326.845503][   T29] audit: type=1400 audit(1721230797.538:908): avc:  denied  { execute } for  pid=15609 comm="syz.2.3163" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=62317 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[ 1327.557631][ T5099] Bluetooth: hci6: command tx timeout
[ 1328.518199][ T5099] Bluetooth: hci2: command tx timeout
[ 1329.634416][ T5099] Bluetooth: hci6: command tx timeout
[ 1329.930024][T15467] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1330.464527][T15467] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1330.594355][ T5099] Bluetooth: hci2: command tx timeout
[ 1330.601591][T15467] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1331.034222][T15467] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1331.585014][T15541] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1331.592212][T15541] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1331.617217][T15541] bridge_slave_0: entered allmulticast mode
[ 1331.627490][T15541] bridge_slave_0: entered promiscuous mode
[ 1331.644778][T15541] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1331.652898][T15541] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1331.689931][T15541] bridge_slave_1: entered allmulticast mode
[ 1331.712006][T15541] bridge_slave_1: entered promiscuous mode
[ 1331.724373][ T5099] Bluetooth: hci6: command tx timeout
[ 1332.181953][T15541] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1332.229903][T15541] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1332.599925][T15541] team0: Port device team_slave_0 added
[ 1332.632054][T15541] team0: Port device team_slave_1 added
[ 1332.674777][ T5099] Bluetooth: hci2: command tx timeout
[ 1332.980604][T15541] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1333.010146][T15541] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1333.084146][T15541] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1333.196321][T15541] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1333.203320][T15541] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1333.304263][T15541] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1333.911589][T15541] hsr_slave_0: entered promiscuous mode
[ 1333.926826][T15541] hsr_slave_1: entered promiscuous mode
[ 1333.964614][T15541] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1333.972315][T15541] Cannot create hsr debugfs directory
[ 1334.143928][T15654] veth0_vlan: entered allmulticast mode
[ 1334.587960][T15657] veth0_vlan: left promiscuous mode
[ 1334.637250][T15657] veth0_vlan: entered promiscuous mode
[ 1334.755228][ T5099] Bluetooth: hci2: command tx timeout
[ 1335.304902][T15467] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1335.645683][T15467] 8021q: adding VLAN 0 to HW filter on device team0
[ 1335.684697][T15585] chnl_net:caif_netlink_parms(): no params data found
[ 1336.471265][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1336.478544][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1336.647100][T15607] chnl_net:caif_netlink_parms(): no params data found
[ 1336.806459][T15668] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3175'.
[ 1336.929198][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1336.936451][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1337.231794][T15585] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1337.251594][T15585] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1337.261798][T15585] bridge_slave_0: entered allmulticast mode
[ 1337.274608][T15585] bridge_slave_0: entered promiscuous mode
[ 1337.308665][T15585] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1337.782965][T15585] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1337.854738][T15585] bridge_slave_1: entered allmulticast mode
[ 1337.863533][T15585] bridge_slave_1: entered promiscuous mode
[ 1339.222531][T15585] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1339.250509][T15585] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1339.588095][T15585] team0: Port device team_slave_0 added
[ 1339.613011][T15585] team0: Port device team_slave_1 added
[ 1339.947485][T15607] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1340.000115][T15607] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1340.044464][T15607] bridge_slave_0: entered allmulticast mode
[ 1340.072174][T15607] bridge_slave_0: entered promiscuous mode
[ 1340.148932][T15607] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1340.195501][T15607] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1340.202873][T15607] bridge_slave_1: entered allmulticast mode
[ 1340.244789][T15607] bridge_slave_1: entered promiscuous mode
[ 1340.417423][T15585] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1340.429091][T15585] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1340.459455][T15585] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1340.473197][T15696] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3183'.
[ 1340.538490][T15607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1340.607999][T15607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1340.659170][T15585] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1340.694174][T15585] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1340.764289][T15585] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1340.989041][T15700] ==================================================================
[ 1340.997165][T15700] BUG: KASAN: slab-out-of-bounds in filter_chain+0xf6/0x110
[ 1341.004507][T15700] Read of size 8 at addr ffff8880239b34b0 by task syz.2.3185/15700
[ 1341.012431][T15700] 
[ 1341.014804][T15700] CPU: 0 PID: 15700 Comm: syz.2.3185 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0
[ 1341.024648][T15700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1341.034746][T15700] Call Trace:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1341.038076][T15700]  <TASK>
[ 1341.041038][T15700]  dump_stack_lvl+0x116/0x1f0
[ 1341.045777][T15700]  print_report+0xc3/0x620
[ 1341.050251][T15700]  ? __virt_addr_valid+0x5e/0x590
[ 1341.055324][T15700]  ? __phys_addr+0xc6/0x150
[ 1341.059873][T15700]  kasan_report+0xd9/0x110
[ 1341.064329][T15700]  ? filter_chain+0xf6/0x110
[ 1341.068970][T15700]  ? filter_chain+0xf6/0x110
[ 1341.073616][T15700]  filter_chain+0xf6/0x110
[ 1341.078072][T15700]  uprobe_mmap+0x46b/0x1240
[ 1341.082604][T15700]  ? __pfx_uprobe_mmap+0x10/0x10
[ 1341.087568][T15700]  ? khugepaged_enter_vma+0x177/0x2e0
[ 1341.092951][T15700]  mmap_region+0x1228/0x2760
[ 1341.097554][T15700]  ? __pfx_mmap_region+0x10/0x10
[ 1341.102500][T15700]  ? security_mmap_addr+0x8e/0xb0
[ 1341.107568][T15700]  ? __get_unmapped_area+0x271/0x3a0
[ 1341.112862][T15700]  do_mmap+0xbc7/0xf60
[ 1341.116953][T15700]  ? security_mmap_file+0x192/0x1d0
[ 1341.122203][T15700]  vm_mmap_pgoff+0x1ba/0x360
[ 1341.126808][T15700]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1341.131954][T15700]  ksys_mmap_pgoff+0x332/0x5d0
[ 1341.136743][T15700]  __x64_sys_mmap+0x125/0x190
[ 1341.141426][T15700]  do_syscall_64+0xcd/0x250
[ 1341.145963][T15700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1341.151878][T15700] RIP: 0033:0x7f7451575a99
[ 1341.156304][T15700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1341.175917][T15700] RSP: 002b:00007f7450fff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1341.184361][T15700] RAX: ffffffffffffffda RBX: 00007f7451703f60 RCX: 00007f7451575a99
[ 1341.192361][T15700] RDX: 0000000000000001 RSI: 0000000000003000 RDI: 0000000020000000
[ 1341.200347][T15700] RBP: 00007f74515e4e5d R08: 0000000000000004 R09: 0000000000000000
[ 1341.208351][T15700] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000
[ 1341.216363][T15700] R13: 000000000000000b R14: 00007f7451703f60 R15: 00007ffd6c994378
[ 1341.224348][T15700]  </TASK>
[ 1341.227396][T15700] 
[ 1341.229730][T15700] Allocated by task 15467:
[ 1341.234144][T15700]  kasan_save_stack+0x33/0x60
[ 1341.238864][T15700]  kasan_save_track+0x14/0x30
[ 1341.243583][T15700]  __kasan_kmalloc+0xaa/0xb0
[ 1341.248173][T15700]  mpls_dev_notify+0x33d/0xa10
[ 1341.252939][T15700]  notifier_call_chain+0xb9/0x410
[ 1341.257979][T15700]  call_netdevice_notifiers_info+0xbe/0x140
[ 1341.263883][T15700]  register_netdevice+0x17a0/0x1e90
[ 1341.269112][T15700]  nsim_create+0x740/0xb20
[ 1341.273535][T15700]  __nsim_dev_port_add+0x42c/0x7d0
[ 1341.278672][T15700]  nsim_drv_probe+0xdbf/0x1490
[ 1341.283449][T15700]  really_probe+0x23e/0xa90
[ 1341.287960][T15700]  __driver_probe_device+0x1de/0x440
[ 1341.293249][T15700]  driver_probe_device+0x4c/0x1b0
[ 1341.298275][T15700]  __device_attach_driver+0x1df/0x310
[ 1341.303657][T15700]  bus_for_each_drv+0x157/0x1e0
[ 1341.308526][T15700]  __device_attach+0x1e8/0x4b0
[ 1341.313303][T15700]  bus_probe_device+0x17f/0x1c0
[ 1341.318157][T15700]  device_add+0x114b/0x1a70
[ 1341.322677][T15700]  new_device_store+0x41d/0x730
[ 1341.327547][T15700]  bus_attr_store+0x76/0xa0
[ 1341.332064][T15700]  sysfs_kf_write+0x117/0x170
[ 1341.336747][T15700]  kernfs_fop_write_iter+0x343/0x500
[ 1341.342051][T15700]  vfs_write+0x6b6/0x1140
[ 1341.346416][T15700]  ksys_write+0x12f/0x260
[ 1341.350756][T15700]  do_syscall_64+0xcd/0x250
[ 1341.355266][T15700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1341.361169][T15700] 
[ 1341.363511][T15700] The buggy address belongs to the object at ffff8880239b3480
[ 1341.363511][T15700]  which belongs to the cache kmalloc-64 of size 64
[ 1341.377399][T15700] The buggy address is located 0 bytes to the right of
[ 1341.377399][T15700]  allocated 48-byte region [ffff8880239b3480, ffff8880239b34b0)
[ 1341.391814][T15700] 
[ 1341.394161][T15700] The buggy address belongs to the physical page:
[ 1341.400609][T15700] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x239b3
[ 1341.409390][T15700] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1341.416502][T15700] page_type: 0xffffefff(slab)
[ 1341.421181][T15700] raw: 00fff00000000000 ffff8880154418c0 ffffea0000b94f80 dead000000000006
[ 1341.429765][T15700] raw: 0000000000000000 0000000000200020 00000001ffffefff 0000000000000000
[ 1341.438389][T15700] page dumped because: kasan: bad access detected
[ 1341.444806][T15700] page_owner tracks the page as allocated
[ 1341.450514][T15700] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 4539, tgid 4539 (udevd), ts 62977124961, free_ts 62909068815
[ 1341.469029][T15700]  post_alloc_hook+0x2d1/0x350
[ 1341.473843][T15700]  get_page_from_freelist+0x1353/0x2e50
[ 1341.479423][T15700]  __alloc_pages_noprof+0x22b/0x2460
[ 1341.484824][T15700]  alloc_slab_page+0x56/0x110
[ 1341.489523][T15700]  new_slab+0x84/0x260
[ 1341.493628][T15700]  ___slab_alloc+0xdac/0x1870
[ 1341.498315][T15700]  __slab_alloc.constprop.0+0x56/0xb0
[ 1341.503739][T15700]  __kmalloc_noprof+0x36d/0x410
[ 1341.508604][T15700]  tomoyo_encode2+0x100/0x3e0
[ 1341.513324][T15700]  tomoyo_encode+0x29/0x50
[ 1341.517763][T15700]  tomoyo_realpath_from_path+0x19d/0x720
[ 1341.523416][T15700]  tomoyo_path_perm+0x273/0x450
[ 1341.528323][T15700]  security_inode_getattr+0xf4/0x160
[ 1341.533632][T15700]  vfs_fstat+0x53/0xd0
[ 1341.537716][T15700]  vfs_fstatat+0x146/0x160
[ 1341.542161][T15700]  __do_sys_newfstatat+0xa2/0x130
[ 1341.547235][T15700] page last free pid 4547 tgid 4547 stack trace:
[ 1341.553559][T15700]  free_unref_page+0x64a/0xe40
[ 1341.558342][T15700]  qlist_free_all+0x4e/0x140
[ 1341.562958][T15700]  kasan_quarantine_reduce+0x192/0x1e0
[ 1341.568426][T15700]  __kasan_slab_alloc+0x69/0x90
[ 1341.573290][T15700]  kmem_cache_alloc_noprof+0x121/0x2f0
[ 1341.578784][T15700]  getname_flags.part.0+0x4c/0x550
[ 1341.583933][T15700]  getname_flags+0x93/0xf0
[ 1341.588374][T15700]  do_readlinkat+0xb5/0x390
[ 1341.592907][T15700]  __x64_sys_readlink+0x78/0xc0
[ 1341.597773][T15700]  do_syscall_64+0xcd/0x250
[ 1341.602300][T15700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1341.608199][T15700] 
[ 1341.610519][T15700] Memory state around the buggy address:
[ 1341.616149][T15700]  ffff8880239b3380: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1341.624229][T15700]  ffff8880239b3400: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1341.632303][T15700] >ffff8880239b3480: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc
[ 1341.640370][T15700]                                      ^
[ 1341.646005][T15700]  ffff8880239b3500: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 1341.654082][T15700]  ffff8880239b3580: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 1341.662177][T15700] ==================================================================
[ 1341.695146][T15700] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1341.702405][T15700] CPU: 1 PID: 15700 Comm: syz.2.3185 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0
[ 1341.712250][T15700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 1341.722341][T15700] Call Trace:
[ 1341.725644][T15700]  <TASK>
[ 1341.728601][T15700]  dump_stack_lvl+0x3d/0x1f0
[ 1341.733247][T15700]  panic+0x6f5/0x7a0
[ 1341.737168][T15700]  ? __pfx_panic+0x10/0x10
[ 1341.741612][T15700]  ? preempt_schedule_thunk+0x1a/0x30
[ 1341.747021][T15700]  ? preempt_schedule_common+0x44/0xc0
[ 1341.752537][T15700]  check_panic_on_warn+0xab/0xb0
[ 1341.757514][T15700]  end_report+0x117/0x180
[ 1341.761887][T15700]  kasan_report+0xe9/0x110
[ 1341.766343][T15700]  ? filter_chain+0xf6/0x110
[ 1341.770994][T15700]  ? filter_chain+0xf6/0x110
[ 1341.775628][T15700]  filter_chain+0xf6/0x110
[ 1341.780087][T15700]  uprobe_mmap+0x46b/0x1240
[ 1341.784657][T15700]  ? __pfx_uprobe_mmap+0x10/0x10
[ 1341.789663][T15700]  ? khugepaged_enter_vma+0x177/0x2e0
[ 1341.795249][T15700]  mmap_region+0x1228/0x2760
[ 1341.799888][T15700]  ? __pfx_mmap_region+0x10/0x10
[ 1341.804862][T15700]  ? security_mmap_addr+0x8e/0xb0
[ 1341.810033][T15700]  ? __get_unmapped_area+0x271/0x3a0
[ 1341.815351][T15700]  do_mmap+0xbc7/0xf60
[ 1341.819464][T15700]  ? security_mmap_file+0x192/0x1d0
[ 1341.824740][T15700]  vm_mmap_pgoff+0x1ba/0x360
[ 1341.829391][T15700]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1341.834553][T15700]  ksys_mmap_pgoff+0x332/0x5d0
[ 1341.839374][T15700]  __x64_sys_mmap+0x125/0x190
[ 1341.844097][T15700]  do_syscall_64+0xcd/0x250
[ 1341.848644][T15700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1341.854591][T15700] RIP: 0033:0x7f7451575a99
[ 1341.859041][T15700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1341.878699][T15700] RSP: 002b:00007f7450fff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1341.887166][T15700] RAX: ffffffffffffffda RBX: 00007f7451703f60 RCX: 00007f7451575a99
[ 1341.895175][T15700] RDX: 0000000000000001 RSI: 0000000000003000 RDI: 0000000020000000
[ 1341.903175][T15700] RBP: 00007f74515e4e5d R08: 0000000000000004 R09: 0000000000000000
[ 1341.911172][T15700] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000000
[ 1341.919164][T15700] R13: 000000000000000b R14: 00007f7451703f60 R15: 00007ffd6c994378
[ 1341.927170][T15700]  </TASK>
[ 1341.930307][T15700] Kernel Offset: disabled
[ 1341.934645][T15700] Rebooting in 86400 seconds..