last executing test programs:

18.558074422s ago: executing program 1 (id=1210):
mount$tmpfs(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f00000002c0)=ANY=[@ANYBLOB='huge=within_size', @ANYRES8=0x0])
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001180)=ANY=[@ANYBLOB="140000001020010000000000000000000000000a140000001009010000000000000000000084000a0e6fa77cf4ede43cc0aff78d064ba6a42f68c7def19aa8ef98586a94e488f278d10aa32202725a503e8e64f0aa7ce601717d51890522f52276b011e2f27be9b374b82d104920aaaeab"], 0x28}}, 0x10000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
socket$alg(0x26, 0x5, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8912, &(0x7f0000000040)={'bridge_slave_1\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYRES32=r0], 0x28}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000000000000000000bb810000850000006d00000085000000d000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='hrtimer_start\x00', r3}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x400443c8, 0x20000002)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)

16.797154461s ago: executing program 1 (id=1222):
r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000))
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0)
write$fb(0xffffffffffffffff, &(0x7f0000000040)="f00c6513244ec4df78fc21c1992a8a12d46d4bb0e08f4a44a6fd7f78398fa383e4788c78f6bc21969e8388209fa339e495f6f65186b2c6ba3c27bbe3b2c45d8a0d38ae5afebd6de5353ed274a5a771185635ff36afadf314b950f9cab9336160eda8d214eeba689ccfa2ebbb8dff90a35ae2533e5fa211cb0e1b3571cb562732620c96e9daf122583c6a07583c051c97c754518d6f636a146ec4e44610a44d21d249fde3eb6c37", 0xa7)
syz_emit_ethernet(0xea, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @remote, @val={@val={0x88a8, 0x3, 0x1, 0x4}, {0x8100, 0x7, 0x0, 0x1}}, {@generic={0x17, "4570b92dc59f0fce5f7a297b6576991fac1e3c593b0b98c28c73b2359319f44b6e3d6a775dd0b3c730f4e4cb77844d381037d5d4d000cd080918273d8dfb3ac2a8a8370f34574ac1bf7f725fa6baf575547c3e6e8467d6556fb0095bbb224f7cf7d6d5acda82468307fa5e8357d771031fa8a2bb29568abde300cfcf3aa31ba3793f84537ced7d6be8749ce7e1e02b7efc0f0523f54b1d3b557f0d78f44aec5fb12a6dc48404dfbabca25a58c656548e0f880dfb19b5b9584648e889f3a9dd422d85f8034f430d83ba3a00793e8257a4f671a8bb"}}}, &(0x7f0000000200)={0x0, 0x4, [0xa85, 0xc7, 0x7f6, 0x751]})
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000240), 0x80000, 0x0)
sendmsg$NFT_MSG_GETCHAIN(r1, &(0x7f00000003c0)={&(0x7f0000000280), 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x9c, 0x4, 0xa, 0x801, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_CHAIN_COUNTERS={0x7c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xd}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x2}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xe4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x1}]}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}]}, 0x9c}, 0x1, 0x0, 0x0, 0x8080}, 0x1)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000540)={0x1, &(0x7f0000000500)=[{0x9, 0x4e, &(0x7f0000000480)="5b83bbf73afff10198748af944f8b6b805e4197bcf4b99e399454593a610aa42c2aeec6dd4ca1729cc30150fcfc981b3a40afa817f9ff815662dc24bc454dd499dc659f758f57858b9cde3c748b8", 0x1, 0x1}]})
ioctl$LOOP_GET_STATUS(r1, 0x4c03, &(0x7f0000000580))
ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000640)=0xffffffffffffffff)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000680)={0x0, 0xffffffffffffffff, 0x4, 0x1, 0x9, 0x3})
ioctl$HIDIOCGVERSION(r1, 0x80044801, &(0x7f00000006c0))
setsockopt$TIPC_IMPORTANCE(0xffffffffffffffff, 0x10f, 0x7f, &(0x7f0000000700)=0x7, 0x4)
close(r1)
r3 = socket(0x29, 0x800, 0x5)
ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000740)={@empty, 0x3a})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f0000000780)={0x10, 0x61b05320c6b92721, 0x7f})
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f00000007c0))
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000800))
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000840), 0x280000, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r6, 0x4008941a, &(0x7f0000000880))
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r5, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x28, 0x2, 0x7, 0x5, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x10}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
r7 = accept4$phonet_pipe(r1, &(0x7f00000009c0), &(0x7f0000000a00)=0x10, 0x80000)
dup3(r7, r6, 0x80000)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000b40)={0x0, @in6={{0xa, 0x4e20, 0x7, @empty, 0x4}}, 0x6, 0x18, 0x8, 0xfffffff8, 0x0, 0x1}, &(0x7f0000000c00)=0x9c)

16.699248532s ago: executing program 1 (id=1223):
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x8000000, 0x102, 0x0, "000000004a00040000001f00000000000400"})
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_TMR_CONTINUE(r2, 0x5404)
ioctl$SNDCTL_TMR_TEMPO(r2, 0xc0045405, &(0x7f0000000140)=0x6a)
ioctl$SNDCTL_TMR_START(r2, 0x5402)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x7, &(0x7f0000002200)={0x0, 0x2, 0x107, 0xfffffffffffffffd, 0xffffffffffffffff})
flock(r3, 0x2)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fdinfo/3\x00')
preadv(r2, &(0x7f00000003c0), 0x0, 0x4800, 0x0)
r5 = fanotify_init(0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000009060102000000000000000001000000be650eb40700000008000940000000ff080009400000007f"], 0x2c}}, 0x4)
writev(r5, &(0x7f0000000040), 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f00000006c0)=0xd)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000200)=0x8)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_freezer_state(r7, &(0x7f00000000c0), 0x2, 0x0)
r9 = openat$cgroup_procs(r7, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r9, &(0x7f0000000040), 0x12)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r10=>0xffffffffffffffff})
recvmsg$unix(r10, &(0x7f0000000400)={0x0, 0xe00, 0x0}, 0x20)
write$cgroup_freezer_state(r8, &(0x7f0000000400)='FROZEN\x00', 0x7)

5.607947979s ago: executing program 0 (id=1264):
r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000))
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0)
write$fb(0xffffffffffffffff, &(0x7f0000000040)="f00c6513244ec4df78fc21c1992a8a12d46d4bb0e08f4a44a6fd7f78398fa383e4788c78f6bc21969e8388209fa339e495f6f65186b2c6ba3c27bbe3b2c45d8a0d38ae5afebd6de5353ed274a5a771185635ff36afadf314b950f9cab9336160eda8d214eeba689ccfa2ebbb8dff90a35ae2533e5fa211cb0e1b3571cb562732620c96e9daf122583c6a07583c051c97c754518d6f636a146ec4e44610a44d21d249fde3eb6c37", 0xa7)
syz_emit_ethernet(0xea, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @remote, @val={@val={0x88a8, 0x3, 0x1, 0x4}, {0x8100, 0x7, 0x0, 0x1}}, {@generic={0x17, "4570b92dc59f0fce5f7a297b6576991fac1e3c593b0b98c28c73b2359319f44b6e3d6a775dd0b3c730f4e4cb77844d381037d5d4d000cd080918273d8dfb3ac2a8a8370f34574ac1bf7f725fa6baf575547c3e6e8467d6556fb0095bbb224f7cf7d6d5acda82468307fa5e8357d771031fa8a2bb29568abde300cfcf3aa31ba3793f84537ced7d6be8749ce7e1e02b7efc0f0523f54b1d3b557f0d78f44aec5fb12a6dc48404dfbabca25a58c656548e0f880dfb19b5b9584648e889f3a9dd422d85f8034f430d83ba3a00793e8257a4f671a8bb"}}}, &(0x7f0000000200)={0x0, 0x4, [0xa85, 0xc7, 0x7f6, 0x751]})
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000240), 0x80000, 0x0)
sendmsg$NFT_MSG_GETCHAIN(r1, &(0x7f00000003c0)={&(0x7f0000000280), 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x9c, 0x4, 0xa, 0x801, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_CHAIN_COUNTERS={0x7c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xd}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x2}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xe4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x3}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x1}]}, @NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x4}]}, 0x9c}, 0x1, 0x0, 0x0, 0x8080}, 0x1)
socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000400)={@mcast2, <r2=>0x0}, &(0x7f0000000440)=0x14)
ioctl$INCFS_IOC_FILL_BLOCKS(r1, 0x80106720, &(0x7f0000000540)={0x1, &(0x7f0000000500)=[{0x9, 0x4e, &(0x7f0000000480)="5b83bbf73afff10198748af944f8b6b805e4197bcf4b99e399454593a610aa42c2aeec6dd4ca1729cc30150fcfc981b3a40afa817f9ff815662dc24bc454dd499dc659f758f57858b9cde3c748b8", 0x1, 0x1}]})
ioctl$LOOP_GET_STATUS(r1, 0x4c03, &(0x7f0000000580))
ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000640)=0xffffffffffffffff)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000680)={0x0, 0xffffffffffffffff, 0x4, 0x1, 0x9, 0x3})
ioctl$HIDIOCGVERSION(r1, 0x80044801, &(0x7f00000006c0))
setsockopt$TIPC_IMPORTANCE(0xffffffffffffffff, 0x10f, 0x7f, &(0x7f0000000700)=0x7, 0x4)
close(r1)
r3 = socket(0x29, 0x800, 0x5)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000740)={@empty, 0x3a, r2})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f0000000780)={0x10, 0x61b05320c6b92721, 0x7f})
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f00000007c0))
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000800))
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000840), 0x280000, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r6, 0x4008941a, &(0x7f0000000880))
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r5, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x28, 0x2, 0x7, 0x5, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x10}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
r7 = accept4$phonet_pipe(r1, &(0x7f00000009c0), &(0x7f0000000a00)=0x10, 0x80000)
dup3(r7, r6, 0x80000)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000b40)={0x0, @in6={{0xa, 0x4e20, 0x7, @empty, 0x4}}, 0x6, 0x18, 0x8, 0xfffffff8, 0x0, 0x1}, &(0x7f0000000c00)=0x9c)

5.606873087s ago: executing program 0 (id=1266):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f00000002c0)=ANY=[@ANYBLOB='huge=within_size', @ANYRES8=0x0])
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001180)=ANY=[@ANYBLOB="140000001020010000000000000000000000000a140000001009010000000000000000000084000a0e6fa77cf4ede43cc0aff78d064ba6a42f68c7def19aa8ef98586a94e488f278d10aa32202725a503e8e64f0aa7ce601717d51890522f52276b011e2f27be9b374b82d104920aaaeab"], 0x28}}, 0x10000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
socket$alg(0x26, 0x5, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8912, &(0x7f0000000040)={'bridge_slave_1\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYRES32=r0], 0x28}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000000000000000000bb810000850000006d00000085000000d000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='hrtimer_start\x00', r3}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x400443c8, 0x20000002)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)
write$sequencer(r4, &(0x7f0000000040)=[@v={0x93, 0x0, 0x90}], 0x8)
r5 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r5, 0x8208200)
mmap(&(0x7f0000000000/0x600000)=nil, 0x604100, 0x7ffffe, 0x4002011, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

5.479349267s ago: executing program 3 (id=1268):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x0, 0x4d, 0x0, "8ddbb51a3cfd954e41e8ccb2650fa60067fb9bbcf0feeee4dc036d0675af58b39fa8d54ee8323507a61a95cf134ce8f605671338c7f8838a00bdfba71b43b828c7de258b6b9ca1fc52bcc83e2a016a00"}, 0xd8)
r1 = socket$netlink(0x10, 0x3, 0x0)
io_uring_setup(0x6505, &(0x7f0000001300))
r2 = syz_open_dev$radio(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0xf0f05e, 0x0, '\x00', @p_u32=0x0}})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000400)='yeah\x00', 0x5)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r3, &(0x7f0000000200), 0xfffffd9d)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f00000000c0)=@nat={'nat\x00', 0x19, 0x1, 0x198, [0x0, 0x0, 0x4, 0x2, 0x42912ba3, 0xffffffffffffffff], 0x0, 0x0, &(0x7f0000000700)=ANY=[]}, 0x78)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.numa_stat\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f00000001c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x800001, 0x28011, r4, 0x0)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(r5, 0x0, 0x81, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
listen(r6, 0x400000001ffffffd)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r7, 0x29, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="0000000000000000a436e3bdf9bf76479720686e9329bb4a53316c27b37bb7d13ed50f409e9e5ce46eb281d4eb391f580745f55b84686303f834ff9d3620d1bc86e5f9efa10f47f60a92a7bee5eafd65bf146dfc5ed6d32019bdea86075d6ade76f528073d"], 0x8)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
shmdt(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000a40)={'wlan0\x00'})
getsockopt$PNPIPE_HANDLE(r4, 0x113, 0x3, 0x0, &(0x7f0000000140))

4.885091012s ago: executing program 3 (id=1270):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'rmd160\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
r1 = fanotify_init(0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r1, 0x541b, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r4 = socket(0x11, 0xa, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r4, 0x8918, &(0x7f0000000240)={'veth0_to_bridge\x00', {0x2, 0x0, @multicast1}})
getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f0000000e00)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000000c40)=0xe8)
fsetxattr$security_capability(r3, &(0x7f0000000dc0), &(0x7f0000000f40)=@v3={0x3000000, [{0x9, 0x7fffffff}, {0x0, 0x8}], r5}, 0x18, 0x1)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETPERSIST(r7, 0x800454cf, 0x800000000000000)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
r8 = openat$cgroup_pressure(r6, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r8, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r9, &(0x7f0000000d80)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)=ANY=[@ANYBLOB="30000000070605000000000000000000020000060900020073797a3000000000050001002a0000000500010007000000"], 0x30}, 0x1, 0x0, 0x0, 0x80060}, 0x14)
r10 = openat$cgroup_pressure(r6, &(0x7f00000000c0)='io.pressure\x00', 0x2, 0x0)
ppoll(&(0x7f0000000180)=[{r8}], 0x1, 0x0, 0x0, 0x0)
r11 = openat$uinput(0xffffffffffffff9c, &(0x7f0000001800), 0x2, 0x0)
write$uinput_user_dev(r11, &(0x7f0000001840)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}, 0x45c)
ioctl$UI_SET_PROPBIT(r11, 0x4004556e, 0x0)
write$cgroup_pressure(r10, &(0x7f0000000340)={'some', 0x20, 0x7, 0x20, 0xffffa}, 0x2f)
close(r8)
close(r10)
unshare(0x42000000)

4.59395705s ago: executing program 3 (id=1271):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
sendfile(r4, r3, &(0x7f00000000c0)=0x8e, 0x180000508)
r5 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r8 = socket(0x200000000000011, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd608a37f200082c00fe800000c17614b3a09847ac0000"], 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, 0x0)
bind$packet(r8, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
bind$packet(r8, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r7, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @empty}}}})
syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)

3.629805591s ago: executing program 3 (id=1272):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f00000002c0)=ANY=[@ANYBLOB='huge=within_size', @ANYRES8=0x0])
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001180)=ANY=[@ANYBLOB="140000001020010000000000000000000000000a140000001009010000000000000000000084000a0e6fa77cf4ede43cc0aff78d064ba6a42f68c7def19aa8ef98586a94e488f278d10aa32202725a503e8e64f0aa7ce601717d51890522f52276b011e2f27be9b374b82d104920aaaeab"], 0x28}}, 0x10000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
socket$alg(0x26, 0x5, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8912, &(0x7f0000000040)={'bridge_slave_1\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYRES32=r0], 0x28}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000000000000000000bb810000850000006d00000085000000d000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='hrtimer_start\x00', r3}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x400443c8, 0x20000002)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)
write$sequencer(r4, &(0x7f0000000040)=[@v={0x93, 0x0, 0x90}], 0x8)
ftruncate(0xffffffffffffffff, 0x8208200)
r5 = open(&(0x7f0000000780)='./bus\x00', 0x14517e, 0xa8)
mmap(&(0x7f0000000000/0x600000)=nil, 0x604100, 0x7ffffe, 0x4002011, r5, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

3.405833s ago: executing program 0 (id=1273):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x10000, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001180)=ANY=[@ANYBLOB], 0x28}}, 0x10000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
socket$alg(0x26, 0x5, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8912, &(0x7f0000000040)={'bridge_slave_1\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYRES32=r0], 0x28}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000000000000000000bb810000850000006d00000085000000d000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='hrtimer_start\x00', r3}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x400443c8, 0x20000002)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)
write$sequencer(r4, &(0x7f0000000040)=[@v={0x93, 0x0, 0x90}], 0x8)
r5 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r5, 0x8208200)
r6 = open(&(0x7f0000000780)='./bus\x00', 0x14517e, 0xa8)
mmap(&(0x7f0000000000/0x600000)=nil, 0x604100, 0x7ffffe, 0x4002011, r6, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

3.28819344s ago: executing program 1 (id=1259):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f00000002c0)=ANY=[@ANYBLOB='huge=within_size', @ANYRES8=0x0])
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001180)=ANY=[@ANYBLOB="140000001020010000000000000000000000000a140000001009010000000000000000000084000a0e6fa77cf4ede43cc0aff78d064ba6a42f68c7def19aa8ef98586a94e488f278d10aa32202725a503e8e64f0aa7ce601717d51890522f52276b011e2f27be9b374b82d104920aaaeab"], 0x28}}, 0x10000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
socket$alg(0x26, 0x5, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8912, &(0x7f0000000040)={'bridge_slave_1\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000000000000000000bb810000850000006d00000085000000d000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='hrtimer_start\x00', r0}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x400443c8, 0x20000002)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)
write$sequencer(r1, &(0x7f0000000040)=[@v={0x93, 0x0, 0x90}], 0x8)
r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r2, 0x8208200)
r3 = open(&(0x7f0000000780)='./bus\x00', 0x14517e, 0xa8)
mmap(&(0x7f0000000000/0x600000)=nil, 0x604100, 0x7ffffe, 0x4002011, r3, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

2.663515229s ago: executing program 2 (id=1274):
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r1, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x335, @time})
syz_io_uring_setup(0x7a0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r1, 0x408c5333, &(0x7f0000000380)={0x0, 0x0, 0x0, 'queue0\x00'})
tkill(r0, 0x7)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r3, @ANYBLOB="00004000000000022800"], 0x48}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="20002abd70090000002c00038014000600fe8000000000000000000000000000b7bdbb1400020070696d36726567310000000000000000080006000400000008000600001000001800018007000600727200000c0007000400000014000000080006000700000008000600ff0f0000007d4275b7ac970d5f4bf96e7ace42ffe14bed9f16e2afd80bea5943c8a14e8b18709de4f10f7cfb3e9cbe090000000000000023bebf64c0b433460688f4c855b9fd405f76d41c262b720616396f6a532ebe2dce7aebb32489ac24535a10a417ea64115b38b93aebd3fe93e0f2f9a6a1352357bcc3b8cb83d25c91b677ec8b16abc2a657921cd81a2e011190fa7994e3d875897dde942caf7b5e4f00"/288], 0x78}, 0x1, 0x0, 0x0, 0x10}, 0x47df2f12af33afdb)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$can_j1939(0x1d, 0x2, 0x7)
r6 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x8, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="640000000206030000000000000000000000000005000100070000000900020073797a320000000014000780080013400000000008001240000020000500050002000000050004000000000015000300686173683a6970"], 0x64}}, 0x0)

2.348980327s ago: executing program 2 (id=1275):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000680)='/sys/power/disk', 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32, @ANYBLOB="38003300c0000000e7ffffffffff080211000000"], 0x54}}, 0x0)
ioperm(0x2, 0x7ff, 0x8)
fdatasync(0xffffffffffffffff)
readv(r3, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_open_dev$dri(&(0x7f0000000340), 0x5, 0x408041)
syz_emit_ethernet(0x72, &(0x7f0000000780)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "7f00ef", 0x7, 0x2c, 0x0, @remote, @mcast2, {[@hopopts={0x67, 0x4, '\x00', [@calipso={0x7, 0x18, {0x0, 0x4, 0x0, 0x0, [0x0, 0x0]}}, @calipso={0x7, 0x8}]}], {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}}, 0x0)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000380)='./file1\x00', 0x18b)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r7, &(0x7f0000000f80)=""/4096, 0x300)
io_setup(0x20, &(0x7f0000001140)=<r8=>0x0)
io_submit(r8, 0x1, &(0x7f00000001c0)=[&(0x7f0000002040)={0xf, 0x400000000000, 0x3000000, 0x1, 0x40, r0, &(0x7f00000000c0)="fc", 0x1, 0x4}])

1.894939557s ago: executing program 3 (id=1276):
syz_emit_ethernet(0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[]}, 0x78)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[]}, 0x78)
r0 = openat$selinux_create(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
write(r0, 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000800)={'xfrm0\x00'})
socket(0x11, 0x3, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x0, 0x20004840)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
futex(&(0x7f0000000180)=0x2, 0x8c, 0x1, 0x0, 0x0, 0x2)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000680)={@ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x75})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58)
inotify_init1(0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000002840)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000480)="5952d4bd4d9d5b5666ba7a844cd292c9845ca99020e22a25b08b893fc1cf14876bea655ee8cd68d0f975ee4582521f48584755eade596a38fa2ee21dd46c2663df8ee595d5e28ffb3fc471df74c7511cd6d9b893fee829e670dc53f622190587af2e7327c1960a588a1f82f8ac39dce3562f8e324e6844a50c1901a74755126b71e8565b9e3ef93c32dbc227d405505d6daadca7cf8667f7a2bd4c7dadb0f47dea9d9b7f664e9138004ef770485ff19de418a8701e50cadf0db6cb2e2f2ce7769660451308df001e4e0f17228807b5a240cf07cab9b663f75b34e739045f8068038165fca622b95731565e64525b107849f80aeb8edff2", 0xf7}, {&(0x7f0000000100)="d599a5a0", 0x4}, {&(0x7f0000000580)="398e94e2180a415d080736f7e054c660fc1fa06f48f9f5db4b57ab6ddc4780a7dd7d2a1b9e0c6a147ca39732aba5ae5a73e678410320baeb434c0685ba7cbb6d1fe8c6a7e42c6b15c5133c37fdda8377847749eb5c0241d46b05eabaabd79564a7abf979190cd266e6ebdfcf8cd6", 0x6e}, {&(0x7f0000000fc0)="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", 0x628}], 0x4}}], 0x1, 0x0)
ioctl$sock_bt_hci(r2, 0x400448cb, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r5, &(0x7f0000000040)="05000000010000", 0x7)

1.749596387s ago: executing program 3 (id=1278):
syz_emit_ethernet(0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, 0x0}, 0x27f)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[]}, 0x78)
r0 = openat$selinux_create(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
write(r0, 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000800)={'xfrm0\x00'})
socket(0x11, 0x3, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x0, 0x20004840)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
futex(&(0x7f0000000180)=0x2, 0x8c, 0x1, 0x0, 0x0, 0x2)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000680)={@ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x75})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58)
inotify_init1(0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000002840)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000480)="5952d4bd4d9d5b5666ba7a844cd292c9845ca99020e22a25b08b893fc1cf14876bea655ee8cd68d0f975ee4582521f48584755eade596a38fa2ee21dd46c2663df8ee595d5e28ffb3fc471df74c7511cd6d9b893fee829e670dc53f622190587af2e7327c1960a588a1f82f8ac39dce3562f8e324e6844a50c1901a74755126b71e8565b9e3ef93c32dbc227d405505d6daadca7cf8667f7a2bd4c7dadb0f47dea9d9b7f664e9138004ef770485ff19de418a8701e50cadf0db6cb2e2f2ce7769660451308df001e4e0f17228807b5a240cf07cab9b663f75b34e739045f8068038165fca622b95731565e64525b107849f80aeb8edff2", 0xf7}, {&(0x7f0000000100)="d599a5a0", 0x4}, {&(0x7f0000000580)="398e94e2180a415d080736f7e054c660fc1fa06f48f9f5db4b57ab6ddc4780a7dd7d2a1b9e0c6a147ca39732aba5ae5a73e678410320baeb434c0685ba7cbb6d1fe8c6a7e42c6b15c5133c37fdda8377847749eb5c0241d46b05eabaabd79564a7abf979190cd266e6ebdfcf8cd6", 0x6e}, {&(0x7f0000000fc0)="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", 0x628}], 0x4}}], 0x1, 0x0)
ioctl$sock_bt_hci(r2, 0x400448cb, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r5, &(0x7f0000000040)="05000000010000", 0x7)

1.619768226s ago: executing program 0 (id=1279):
socket$inet6(0xa, 0x3, 0x0)
socket(0x2, 0x80805, 0x0)
ioctl$VIDIOC_SUBDEV_G_SELECTION(0xffffffffffffffff, 0xc040563e, &(0x7f0000000100)={0x1, 0x2})
syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0)
add_key(&(0x7f0000000380)='encrypted\x00', 0x0, &(0x7f0000000440), 0x0, 0xffffffffffffffff)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="043e1f0a00c9000001aaaaaaaaaa"], 0x22)
ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f00000019c0)={{}, 0x1, &(0x7f00000002c0)=[0x6], 0x579a038c, 0xd, 0x1})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
syz_open_dev$sndctrl(&(0x7f0000000140), 0x800, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10)
getpid()

1.326653956s ago: executing program 0 (id=1281):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="10000000041401000000000000090002"], 0x10}}, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000180), 0x1, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000001e00), r1)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000000f14010000000000000d0045006f70615f766e6963000000002221075c28fcd48144e944dcce22389886f551a43bf4e9913dfa08f0fe18c76bf0eb6d0cd4ce131847a36bf8dd"], 0x20}}, 0x0)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r1, &(0x7f0000001f00)={0x0, 0x0, &(0x7f0000001ec0)={&(0x7f0000000500)={0x11c, r2, 0x1, 0x4001, 0x20, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x108, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1411f80d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x83}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x784c24b4}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x22}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1f9e268f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd7}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4b1ad714}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x21}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x60}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2a5e625c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3956ec06}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x73a78c73}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfc}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x39fe345}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3104508b}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbb}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56a41d52}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x32b036ec}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x233a5c85}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x541faaf2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3a7db0fe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x99}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3506ebe0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x49947a50}]}]}]}, 0x11c}}, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0xe6872e7379d37746)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
r6 = syz_io_uring_setup(0xd5, &(0x7f0000000480), &(0x7f0000000040)=<r7=>0x0, &(0x7f0000000080)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0xffffffffffffffff, 0x0})
io_uring_enter(r6, 0x47ba, 0x0, 0x0, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r9, 0x40046207, 0x0)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000000)={0x8, 0x0, &(0x7f00000003c0)=[@increfs], 0x0, 0x0, 0x0})
r11 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r11, 0xc04c6100, &(0x7f0000000040))
dup3(r10, 0xffffffffffffffff, 0x0)

1.209751107s ago: executing program 2 (id=1282):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x8000000010, 0x2, 0x0)
write(r1, &(0x7f00000002c0)="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", 0xfc)
setsockopt$packet_int(r1, 0x107, 0x0, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'erspan0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f0000000180)="0b051000e0ff030006004788aa96a13bb100000000000800400f", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

1.109535578s ago: executing program 2 (id=1283):
socket$nl_route(0x10, 0x3, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000280)={0x0, 0xffffffffffffffff, 0x0, 0x8000000000000000, 0x7f})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r3}, 0x10)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000001c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000032680)=""/102400, 0x19000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="7c0000001000010400"/20, @ANYRES32=r5, @ANYBLOB="00000000000000005c001280110001006272696467655f736c617665000000004400058005000900000000000500200001000000050028"], 0x7c}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x147101, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
mremap(&(0x7f0000000000/0x9000)=nil, 0xa00000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, 0x0, &(0x7f0000000140))

1.029617405s ago: executing program 1 (id=1284):
socket$inet6(0xa, 0x1, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x8000000, 0x102, 0x0, "000000004a00040000001f00000000000400"})
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_TMR_CONTINUE(r1, 0x5404)
ioctl$SNDCTL_TMR_TEMPO(r1, 0xc0045405, &(0x7f0000000140)=0x6a)
ioctl$SNDCTL_TMR_START(r1, 0x5402)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
preadv(r1, &(0x7f00000003c0), 0x0, 0x4800, 0x0)
fanotify_init(0x0, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000009060102000000000000000001000000be650eb40700000008000940000000ff080009400000007f"], 0x2c}}, 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_freezer_state(r2, &(0x7f00000000c0), 0x2, 0x0)
r4 = openat$cgroup_procs(r2, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000040), 0x12)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff})
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0xe00, 0x0}, 0x20)
write$cgroup_freezer_state(r3, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r3, &(0x7f0000000080)='THAWED\x00', 0x7)

755.606635ms ago: executing program 2 (id=1285):
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r1, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x335, @time})
syz_io_uring_setup(0x7a0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r1, 0x408c5333, &(0x7f0000000380)={0x0, 0x0, 0x0, 'queue0\x00'})
tkill(r0, 0x7)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000000000000002", @ANYRES32=r3, @ANYBLOB="00004000000000022800"], 0x48}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="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"/288], 0x78}, 0x1, 0x0, 0x0, 0x10}, 0x47df2f12af33afdb)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$can_j1939(0x1d, 0x2, 0x7)
r6 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x8, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="640000000206030000000000000000000000000005000100070000000900020073797a320000000014000780080013400000000008001240000020000500050002000000050004000000000015000300686173683a6970"], 0x64}}, 0x0)

616.787483ms ago: executing program 0 (id=1286):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), r1)
sendmsg$IEEE802154_START_REQ(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[], 0x44}}, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r2, 0x81044804, &(0x7f0000000400)={0x1})
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f00000002c0)='cdg\x00', 0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
listen(r3, 0x0)
r5 = syz_open_dev$hiddev(&(0x7f0000000240), 0x2, 0x440000)
ioctl$HIDIOCSFLAG(r5, 0x4004480f, &(0x7f0000000340)=0x2)
close(r3)
syz_usb_control_io(r0, &(0x7f0000000000)={0x2c, 0x0, &(0x7f0000000280)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x416}}, 0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000009380)={&(0x7f00000005c0)=@gettaction={0x21c, 0x32, 0x8, 0x70bd2d, 0x25dfdbfc, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x34, 0x1, [{0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x800}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x101}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}]}, @action_gd=@TCA_ACT_TAB={0x84, 0x1, [{0x10, 0x11, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0x10, 0x1f, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}, {0x10, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x12, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0x10, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x5c, 0x1, [{0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3ff}}, {0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}, {0x10, 0x17, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x1c, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x3c, 0x1, [{0x10, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x19, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}, {0x10, 0x10, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}, {0xc, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x44, 0x1, [{0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x100}}, {0xc, 0x15, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x8}, @action_gd=@TCA_ACT_TAB={0x60, 0x1, [{0x10, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0x14, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0x14, 0xa, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0x14, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40000009}}, {0xc, 0x18, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}]}, 0x21c}}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r6, &(0x7f0000000380)={0x2, 0x0, @remote}, 0x10)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
r7 = getpid()
process_vm_readv(r7, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100), 0x141a42, 0x0)
ioctl$SNDCTL_TMR_CONTINUE(r8, 0x5404)
write$sequencer(r8, &(0x7f0000000440)=ANY=[@ANYRES32=r4], 0x49)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000040)="8dd71a5e1c094da4d019afb33033", 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0x1c)
r9 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$inet_mtu(r9, 0x0, 0xa, &(0x7f0000000040)=0x5, 0x4)

519.605264ms ago: executing program 2 (id=1287):
mkdir(0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x10000, &(0x7f00000002c0)=ANY=[@ANYBLOB='huge=within_size', @ANYRES8=0x0])
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001180)=ANY=[@ANYBLOB="140000001020010000000000000000000000000a140000001009010000000000000000000084000a0e6fa77cf4ede43cc0aff78d064ba6a42f68c7def19aa8ef98586a94e488f278d10aa32202725a503e8e64f0aa7ce601717d51890522f52276b011e2f27be9b374b82d104920aaaeab"], 0x28}}, 0x10000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
socket$alg(0x26, 0x5, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8912, &(0x7f0000000040)={'bridge_slave_1\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYRES32=r0], 0x28}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000000000000000000bb810000850000006d00000085000000d000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='hrtimer_start\x00', r3}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x400443c8, 0x20000002)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)

0s ago: executing program 1 (id=1288):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x10000, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001180)=ANY=[@ANYBLOB], 0x28}}, 0x10000)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
socket$alg(0x26, 0x5, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8912, &(0x7f0000000040)={'bridge_slave_1\x00'})
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYRES32=r0], 0x28}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000000000000000000bb810000850000006d00000085000000d000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='hrtimer_start\x00', r3}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x400443c8, 0x20000002)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x0)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181c82, 0x0)
write$sequencer(r4, &(0x7f0000000040)=[@v={0x93, 0x0, 0x90}], 0x8)
r5 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r5, 0x8208200)
r6 = open(&(0x7f0000000780)='./bus\x00', 0x14517e, 0xa8)
mmap(&(0x7f0000000000/0x600000)=nil, 0x604100, 0x7ffffe, 0x4002011, r6, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

kernel console output (not intermixed with test programs):

4.155187][ T9192] RSP: 002b:00007f8907766038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  434.158789][ T9192] RAX: ffffffffffffffda RBX: 00007f8906b15f80 RCX: 00007f89069799f9
[  434.162204][ T9192] RDX: 000000000000000b RSI: 0000000000004c81 RDI: 0000000000000007
[  434.165608][ T9192] RBP: 00007f8907766090 R08: 0000000000000000 R09: 0000000000000000
[  434.169035][ T9192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  434.172409][ T9192] R13: 0000000000000000 R14: 00007f8906b15f80 R15: 00007ffcbbbd7ac8
[  434.175841][ T9192]  </TASK>
[  434.571626][ T5401] usb 8-1: new high-speed USB device number 39 using dummy_hcd
[  434.729403][ T5392] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  434.766244][ T5401] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  434.771494][ T5401] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  434.783004][ T5401] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  434.794685][ T5401] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  434.820943][ T9200] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  434.837955][ T5401] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  434.914469][ T5392] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  434.919570][ T5392] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  434.924992][ T5392] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  434.930256][ T5392] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  434.939879][ T9204] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  434.946197][ T5392] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  434.998590][   T35] usb 5-1: USB disconnect, device number 41
[  435.172754][  T836] usb 8-1: USB disconnect, device number 39
[  435.248168][   T35] usb 6-1: USB disconnect, device number 37
[  436.181676][ T9231] netlink: 24 bytes leftover after parsing attributes in process `syz.3.963'.
[  436.253135][ T9234] lo speed is unknown, defaulting to 1000
[  436.977488][   T39] audit: type=1400 audit(1723509915.534:571): avc:  denied  { associate } for  pid=9258 comm="syz.2.972" name="cpu.stat" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  437.449846][ T9270] netlink: 24 bytes leftover after parsing attributes in process `syz.0.976'.
[  437.463485][ T9262] overlayfs: failed to resolve './file1': -2
[  437.599340][  T836] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  437.801305][  T836] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  437.805885][  T836] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  437.819369][  T836] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  437.823140][  T836] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  437.846732][ T9266] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  437.852660][  T836] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  438.093616][ T9290] netlink: 24 bytes leftover after parsing attributes in process `syz.3.979'.
[  438.231752][ T5401] usb 6-1: USB disconnect, device number 38
[  438.269518][ T5421] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  438.461698][ T5421] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  438.466333][ T5421] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  438.471668][ T5421] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  438.475667][ T5421] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  438.483109][ T5421] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  438.487012][ T5421] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  438.490551][ T5421] usb 7-1: Manufacturer: syz
[  438.494892][ T5421] usb 7-1: config 0 descriptor??
[  438.604861][ T9296] netlink: 'syz.0.983': attribute type 34 has an invalid length.
[  438.923574][ T5421] appleir 0003:05AC:8243.0012: unknown main item tag 0x0
[  438.928616][ T5421] appleir 0003:05AC:8243.0012: No inputs registered, leaving
[  438.937538][ T5421] appleir 0003:05AC:8243.0012: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[  439.385759][ T5421] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[  439.591382][ T5421] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  439.596207][ T5421] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  439.602117][ T5421] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  439.606417][ T5421] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.616152][ T9307] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  439.624365][ T5421] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  439.742784][   T58] usb 7-1: USB disconnect, device number 35
[  439.829316][ T5713] usb 8-1: new high-speed USB device number 40 using dummy_hcd
[  439.903811][ T5421] usb 6-1: USB disconnect, device number 39
[  440.030978][ T5713] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  440.035258][ T5713] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  440.038996][ T5713] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  440.049041][ T5713] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.056428][ T9316] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  440.062778][ T5713] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  440.385832][ T5401] usb 8-1: USB disconnect, device number 40
[  441.339379][   T58] usb 8-1: new high-speed USB device number 41 using dummy_hcd
[  441.526089][   T58] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  441.531256][   T58] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  441.535385][   T58] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  441.539398][   T58] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.546484][ T9344] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  441.553074][   T58] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  441.650086][   T35] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  441.719418][ T5713] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  441.850504][   T35] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  441.855066][   T35] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  441.861445][   T35] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  441.866510][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.875657][ T9355] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  441.885726][   T35] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  441.913222][ T5713] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  441.917780][ T5713] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  441.929301][ T5713] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  441.933297][ T5713] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  441.946891][ T5713] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  441.952834][ T5713] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  441.956223][ T5713] usb 6-1: Manufacturer: syz
[  441.965317][ T5713] usb 6-1: config 0 descriptor??
[  442.050423][ T5130] usb 8-1: USB disconnect, device number 41
[  442.391960][ T5713] appleir 0003:05AC:8243.0013: unknown main item tag 0x0
[  442.395622][ T5713] appleir 0003:05AC:8243.0013: No inputs registered, leaving
[  442.404613][ T5713] appleir 0003:05AC:8243.0013: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  442.543091][   T57] usb 7-1: USB disconnect, device number 36
[  442.668052][ T9363] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1002'.
[  442.813874][ T5354] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  442.878153][   T39] audit: type=1400 audit(1723509921.434:572): avc:  denied  { accept } for  pid=9370 comm="syz.3.1004" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  443.186949][   T57] usb 6-1: USB disconnect, device number 40
[  443.261793][ T9380] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1007'.
[  444.185489][ T9394] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1011'.
[  444.433536][ T5354] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  444.579524][   T57] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  444.763338][   T57] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  444.768338][   T57] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  444.773168][   T57] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  444.777276][   T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.784689][ T9397] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  444.790992][   T57] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  444.899605][ T5392] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  445.078431][   T57] usb 6-1: USB disconnect, device number 41
[  445.099066][ T5392] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  445.107775][ T5392] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  445.114145][ T5392] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  445.123072][ T5392] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  445.132339][ T9407] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  445.145211][ T5392] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  445.419398][ T5713] usb 8-1: new high-speed USB device number 42 using dummy_hcd
[  445.427819][  T836] usb 7-1: USB disconnect, device number 37
[  445.449517][ T5421] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  445.619091][ T5713] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  445.625588][ T5713] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  445.630717][ T5713] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  445.639404][ T5713] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  445.651459][ T5421] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  445.660084][ T5421] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  445.673486][ T9413] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  445.678950][ T5713] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  445.693540][ T5421] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  445.697458][ T5421] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  445.706175][ T9415] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  445.713479][ T5421] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  446.008886][ T9420] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1019'.
[  446.010277][   T57] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[  446.221627][   T57] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  446.227049][   T57] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  446.247125][   T57] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  446.252631][   T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  446.266663][ T9417] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  446.273421][   T57] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  446.349538][ T5354] Bluetooth: hci5: command 0x0406 tx timeout
[  446.516905][ T5421] usb 8-1: USB disconnect, device number 42
[  446.983076][ T5713] usb 5-1: USB disconnect, device number 42
[  447.064234][ T9426] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1020'.
[  447.179107][   T68] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  447.237997][   T39] audit: type=1400 audit(1723509925.794:573): avc:  denied  { read } for  pid=9430 comm="syz.2.1022" laddr=::ffff:172.20.20.10 lport=20000 faddr=::ffff:172.20.20.170 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  447.292831][ T9437] bond0: (slave erspan0): Opening slave failed
[  448.689418][   T58] usb 8-1: new high-speed USB device number 43 using dummy_hcd
[  448.734296][ T9456] netlink: 'syz.0.1028': attribute type 10 has an invalid length.
[  448.737348][ T9456] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1028'.
[  448.741672][ T9456] bond0: entered promiscuous mode
[  448.743916][ T9456] bond_slave_0: entered promiscuous mode
[  448.747200][ T9456] bond_slave_1: entered promiscuous mode
[  448.750954][ T9456] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  448.758965][ T9456] bridge0: port 3(bond0) entered blocking state
[  448.763241][ T9456] bridge0: port 3(bond0) entered disabled state
[  448.767315][ T9456] bond0: entered allmulticast mode
[  448.769855][ T9456] bond_slave_0: entered allmulticast mode
[  448.772274][ T9456] bond_slave_1: entered allmulticast mode
[  448.774864][ T9456] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  448.783005][ T9456] bridge0: port 3(bond0) entered blocking state
[  448.785530][ T9456] bridge0: port 3(bond0) entered forwarding state
[  448.825453][   T39] audit: type=1400 audit(1723509927.384:574): avc:  denied  { shutdown } for  pid=9454 comm="syz.0.1028" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  448.857923][ T5421] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  448.902226][ T9456] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1028'.
[  448.907161][   T58] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  448.911635][   T58] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  448.915930][   T58] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  448.927311][   T58] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.934708][ T9451] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  449.043221][ T5421] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  449.048042][ T5421] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  449.054024][ T5421] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  449.057764][ T5421] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  449.065343][ T9453] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  449.278930][ T9459] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1029'.
[  451.469694][ T5354] Bluetooth: hci4: command 0x0406 tx timeout
[  456.107975][ T5354] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  456.122750][ T5354] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  456.126462][ T5354] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  456.131575][ T5354] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  456.134846][ T5354] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  456.137831][ T5354] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  456.176498][ T9462] lo speed is unknown, defaulting to 1000
[  456.319664][ T9462] chnl_net:caif_netlink_parms(): no params data found
[  456.455361][ T9462] bridge0: port 1(bridge_slave_0) entered blocking state
[  456.458252][ T9462] bridge0: port 1(bridge_slave_0) entered disabled state
[  456.464252][ T9462] bridge_slave_0: entered allmulticast mode
[  456.468061][ T9462] bridge_slave_0: entered promiscuous mode
[  456.473322][ T9462] bridge0: port 2(bridge_slave_1) entered blocking state
[  456.476127][ T9462] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.478950][ T9462] bridge_slave_1: entered allmulticast mode
[  456.485670][ T9462] bridge_slave_1: entered promiscuous mode
[  456.555830][ T9462] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  456.563232][ T9462] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  456.618097][ T9462] team0: Port device team_slave_0 added
[  456.624135][ T9462] team0: Port device team_slave_1 added
[  456.682782][ T9462] batman_adv: batadv0: Adding interface: batadv_slave_0
[  456.685813][ T9462] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  456.697122][ T9462] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  456.703868][ T9462] batman_adv: batadv0: Adding interface: batadv_slave_1
[  456.706592][ T9462] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  456.717378][ T9462] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  456.797457][ T9462] hsr_slave_0: entered promiscuous mode
[  456.801133][ T9462] hsr_slave_1: entered promiscuous mode
[  456.804412][ T9462] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  456.807734][ T9462] Cannot create hsr debugfs directory
[  457.007065][ T9462] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.120111][ T9462] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.216710][ T9462] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.336300][ T9462] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.526184][ T9462] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  457.534922][ T9462] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  457.542007][ T9462] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  457.548391][ T9462] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  457.642702][ T9462] 8021q: adding VLAN 0 to HW filter on device bond0
[  457.662017][ T9462] 8021q: adding VLAN 0 to HW filter on device team0
[  457.672696][  T624] bridge0: port 1(bridge_slave_0) entered blocking state
[  457.675281][  T624] bridge0: port 1(bridge_slave_0) entered forwarding state
[  457.687915][ T7196] bridge0: port 2(bridge_slave_1) entered blocking state
[  457.691185][ T7196] bridge0: port 2(bridge_slave_1) entered forwarding state
[  457.864438][ T9462] 8021q: adding VLAN 0 to HW filter on device batadv0
[  457.901586][ T9462] veth0_vlan: entered promiscuous mode
[  457.911520][ T9462] veth1_vlan: entered promiscuous mode
[  457.939633][ T9462] veth0_macvtap: entered promiscuous mode
[  457.945475][ T9462] veth1_macvtap: entered promiscuous mode
[  457.958374][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  457.964036][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  457.968471][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  457.974123][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  457.977997][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  457.982114][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  457.985616][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  457.989941][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  457.993837][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  457.998014][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.001950][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  458.006033][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.012197][ T9462] batman_adv: batadv0: Interface activated: batadv_slave_0
[  458.021923][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.025699][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.029110][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.035388][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.039864][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.044252][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.048223][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.052957][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.056898][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.061353][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.065121][ T9462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  458.068654][ T9462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  458.075115][ T9462] batman_adv: batadv0: Interface activated: batadv_slave_1
[  458.085120][ T9462] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  458.088179][ T9462] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  458.093148][ T9462] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  458.096756][ T9462] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  458.158263][  T624] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  458.162726][  T624] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  458.188663][ T7196] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  458.192223][ T7196] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  458.193033][   T68] Bluetooth: hci0: command tx timeout
[  458.508904][ T9482] Bluetooth: MGMT ver 1.23
[  458.644950][ T5354] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  458.650675][ T5354] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  458.654821][ T5354] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  458.658539][ T5354] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  458.662090][ T5354] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  458.665831][ T5354] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  458.718785][ T9486] lo speed is unknown, defaulting to 1000
[  458.885474][   T68] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  458.889789][ T9486] chnl_net:caif_netlink_parms(): no params data found
[  458.898400][   T68] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  458.919749][   T68] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  458.924653][   T68] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  458.927364][   T68] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  458.931300][   T68] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  458.981241][ T9488] overlayfs: failed to resolve './file0': -2
[  459.007446][ T5713] sound midiC4D0: rawmidi drain error (avail = 3968, buffer_size = 4096)
[  459.023818][   T58] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  459.038502][ T5629] usb 6-1: USB disconnect, device number 42
[  459.109822][ T5421] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  459.273931][ T9486] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.277137][ T9486] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.286965][ T9486] bridge_slave_0: entered allmulticast mode
[  459.297439][ T9486] bridge_slave_0: entered promiscuous mode
[  459.318803][ T9486] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.325560][ T9486] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.339569][ T9486] bridge_slave_1: entered allmulticast mode
[  459.343707][ T9486] bridge_slave_1: entered promiscuous mode
[  459.452526][ T9492] lo speed is unknown, defaulting to 1000
[  459.519662][ T5713] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  459.531965][ T5130] usb 7-1: USB disconnect, device number 38
[  459.548403][ T9486] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  459.556160][ T9486] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  459.651278][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[  459.708349][ T5713] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  459.714007][ T5713] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  459.718700][ T5713] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  459.722844][ T5713] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.739722][ T9499] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  459.759393][ T5713] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  459.783185][ T5421] usb 8-1: USB disconnect, device number 43
[  459.813533][ T9486] team0: Port device team_slave_0 added
[  459.847094][   T75] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.882174][ T9486] team0: Port device team_slave_1 added
[  460.014068][   T75] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.027684][ T9486] batman_adv: batadv0: Adding interface: batadv_slave_0
[  460.060432][ T9486] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.085221][ T9486] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  460.094855][ T9486] batman_adv: batadv0: Adding interface: batadv_slave_1
[  460.098080][ T9486] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  460.119409][ T9486] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  460.170616][   T75] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.279877][   T68] Bluetooth: hci0: command tx timeout
[  460.373263][   T75] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.420812][ T9486] hsr_slave_0: entered promiscuous mode
[  460.424379][ T9486] hsr_slave_1: entered promiscuous mode
[  460.427151][ T9486] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  460.434627][ T9486] Cannot create hsr debugfs directory
[  460.544730][ T9492] chnl_net:caif_netlink_parms(): no params data found
[  460.738361][   T75] bridge_slave_1: left allmulticast mode
[  460.743993][   T75] bridge_slave_1: left promiscuous mode
[  460.746863][   T75] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.750637][   T68] Bluetooth: hci1: command tx timeout
[  460.767480][   T75] bridge_slave_0: left allmulticast mode
[  460.770156][   T75] bridge_slave_0: left promiscuous mode
[  460.772898][   T75] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.973501][   T57] usb 5-1: USB disconnect, device number 43
[  460.989619][   T68] Bluetooth: hci6: command tx timeout
[  461.224253][   T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  461.239697][   T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  461.254562][   T75] bond0 (unregistering): Released all slaves
[  461.371032][ T9492] bridge0: port 1(bridge_slave_0) entered blocking state
[  461.374224][ T9492] bridge0: port 1(bridge_slave_0) entered disabled state
[  461.377512][ T9492] bridge_slave_0: entered allmulticast mode
[  461.385622][ T9492] bridge_slave_0: entered promiscuous mode
[  461.395480][ T9492] bridge0: port 2(bridge_slave_1) entered blocking state
[  461.398291][ T9492] bridge0: port 2(bridge_slave_1) entered disabled state
[  461.408313][ T9492] bridge_slave_1: entered allmulticast mode
[  461.416240][ T9492] bridge_slave_1: entered promiscuous mode
[  461.508515][ T9530] random: crng reseeded on system resumption
[  461.568461][ T9492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  461.589919][ T9492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  461.630936][ T9486] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  461.680223][ T9534] Bluetooth: MGMT ver 1.23
[  461.684367][ T9533] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  461.801783][ T9486] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  461.857973][ T9492] team0: Port device team_slave_0 added
[  461.881296][ T9492] team0: Port device team_slave_1 added
[  461.986554][ T9530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.991646][ T9530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.995867][ T9530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.003146][ T9530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.007400][ T9530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.012111][ T9530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.016325][ T9530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.021057][ T9530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.025149][ T9530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.029130][ T9530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.033265][ T9530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  462.037889][ T9530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  462.059724][ T9486] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.080212][ T9492] batman_adv: batadv0: Adding interface: batadv_slave_0
[  462.083469][ T9492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.099561][ T9492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  462.106265][ T9492] batman_adv: batadv0: Adding interface: batadv_slave_1
[  462.111503][ T9492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.122926][ T9492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  462.144331][   T75] hsr_slave_0: left promiscuous mode
[  462.147623][   T75] hsr_slave_1: left promiscuous mode
[  462.151141][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  462.154256][   T75] batman_adv: batadv0: Removing interface: batadv_slave_0
[  462.158293][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  462.162574][   T75] batman_adv: batadv0: Removing interface: batadv_slave_1
[  462.205981][   T75] veth1_macvtap: left promiscuous mode
[  462.208354][   T75] veth0_macvtap: left promiscuous mode
[  462.211089][   T75] veth1_vlan: left promiscuous mode
[  462.213528][   T75] veth0_vlan: left promiscuous mode
[  462.229505][ T5392] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[  462.430083][ T5392] usb 6-1: Using ep0 maxpacket: 8
[  462.436518][ T5392] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[  462.444183][ T5392] usb 6-1: config 179 has no interface number 0
[  462.447042][ T5392] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  462.453732][ T5392] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  462.458823][ T5392] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  462.464486][ T5392] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  462.468865][ T5392] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  462.479228][ T5392] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  462.483745][ T5392] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.493518][ T9531] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  462.504917][ T5392] xpad 6-1:179.65: probe with driver xpad failed with error -5
[  462.733599][ T5130] usb 6-1: USB disconnect, device number 43
[  462.842105][ T5354] Bluetooth: hci1: command tx timeout
[  463.079639][ T5354] Bluetooth: hci6: command tx timeout
[  463.369567][   T75] team0 (unregistering): Port device team_slave_1 removed
[  463.493809][   T39] audit: type=1400 audit(1723509942.054:575): avc:  denied  { ioctl } for  pid=9538 comm="syz.1.1043" path="/dev/sg0" dev="devtmpfs" ino=707 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  463.673556][   T75] team0 (unregistering): Port device team_slave_0 removed
[  463.709881][   T68] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  463.777009][ T9536] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  464.914677][   T68] Bluetooth: hci1: command tx timeout
[  465.085549][ T9486] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  465.154501][   T68] Bluetooth: hci6: command tx timeout
[  465.199338][ T9546] lo speed is unknown, defaulting to 1000
[  465.275191][ T9492] hsr_slave_0: entered promiscuous mode
[  465.279699][ T9492] hsr_slave_1: entered promiscuous mode
[  465.285853][ T9492] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  465.291417][ T9492] Cannot create hsr debugfs directory
[  465.532563][ T5130] usb 6-1: new high-speed USB device number 44 using dummy_hcd
[  465.662186][ T9486] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  465.699318][ T9486] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  465.719322][ T9486] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  465.731349][ T9486] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  465.736305][ T5130] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  465.741598][ T5130] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  465.747862][ T5130] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  465.755541][ T5130] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  465.762601][ T5130] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  465.766901][ T5130] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  465.771384][ T5130] usb 6-1: Manufacturer: syz
[  465.776947][ T5130] usb 6-1: config 0 descriptor??
[  465.951221][   T75] bridge_slave_1: left allmulticast mode
[  465.953835][   T75] bridge_slave_1: left promiscuous mode
[  465.956509][   T75] bridge0: port 2(bridge_slave_1) entered disabled state
[  465.963480][   T75] bridge_slave_0: left allmulticast mode
[  465.966300][   T75] bridge_slave_0: left promiscuous mode
[  465.968798][   T75] bridge0: port 1(bridge_slave_0) entered disabled state
[  465.982423][   T75] bridge_slave_1: left allmulticast mode
[  465.984927][   T75] bridge_slave_1: left promiscuous mode
[  465.987500][   T75] bridge0: port 2(bridge_slave_1) entered disabled state
[  466.022231][   T75] bridge_slave_0: left allmulticast mode
[  466.026824][   T75] bridge_slave_0: left promiscuous mode
[  466.033348][   T75] bridge0: port 1(bridge_slave_0) entered disabled state
[  466.222692][ T5130] appleir 0003:05AC:8243.0014: unknown main item tag 0x0
[  466.229121][ T5130] appleir 0003:05AC:8243.0014: No inputs registered, leaving
[  466.235755][ T5130] appleir 0003:05AC:8243.0014: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  466.499377][   T35] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[  466.539268][   T75] dvmrp0 (unregistering): left allmulticast mode
[  466.637079][   T75] team0: Port device bridge0 removed
[  466.697695][   T35] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  466.704226][   T35] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  466.708686][   T35] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  466.713388][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  466.720719][ T9553] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  466.727537][   T35] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  466.898050][   T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  466.913818][   T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  466.923274][   T75] bond0 (unregistering): Released all slaves
[  466.992181][   T68] Bluetooth: hci1: command tx timeout
[  467.105520][   T75] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  467.132968][   T75] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  467.142646][   T75] bond0 (unregistering): Released all slaves
[  467.167095][ T9486] 8021q: adding VLAN 0 to HW filter on device bond0
[  467.237244][   T68] Bluetooth: hci6: command tx timeout
[  467.257376][   T35] usb 6-1: USB disconnect, device number 44
[  467.358572][ T9486] 8021q: adding VLAN 0 to HW filter on device team0
[  467.371093][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.374456][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[  467.383117][  T288] usb 5-1: USB disconnect, device number 44
[  467.386087][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.389250][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[  467.654159][ T9492] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  467.660371][ T9492] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  467.672303][ T9492] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  467.746610][ T9492] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  467.890959][ T9486] 8021q: adding VLAN 0 to HW filter on device batadv0
[  468.031649][   T39] audit: type=1400 audit(1723509946.584:576): avc:  denied  { ioctl } for  pid=9561 comm="syz.1.1047" path="/dev/fuse" dev="devtmpfs" ino=105 ioctlcmd=0x5820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  468.212605][ T9492] 8021q: adding VLAN 0 to HW filter on device bond0
[  468.236483][ T9486] veth0_vlan: entered promiscuous mode
[  468.260979][ T9486] veth1_vlan: entered promiscuous mode
[  468.271603][ T9492] 8021q: adding VLAN 0 to HW filter on device team0
[  468.308446][ T1109] bridge0: port 1(bridge_slave_0) entered blocking state
[  468.312101][ T1109] bridge0: port 1(bridge_slave_0) entered forwarding state
[  468.381726][   T75] hsr_slave_0: left promiscuous mode
[  468.402423][   T75] hsr_slave_1: left promiscuous mode
[  468.406056][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  468.412822][   T75] batman_adv: batadv0: Removing interface: batadv_slave_0
[  468.422356][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  468.425593][   T75] batman_adv: batadv0: Removing interface: batadv_slave_1
[  468.464693][   T75] hsr_slave_0: left promiscuous mode
[  468.468864][   T75] hsr_slave_1: left promiscuous mode
[  468.493859][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  468.497108][   T75] batman_adv: batadv0: Removing interface: batadv_slave_0
[  468.515622][   T75] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  468.537943][   T75] batman_adv: batadv0: Removing interface: batadv_slave_1
[  468.641386][   T75] veth1_macvtap: left promiscuous mode
[  468.643774][   T75] veth0_macvtap: left promiscuous mode
[  468.646586][   T75] veth1_vlan: left promiscuous mode
[  468.649066][   T75] veth0_vlan: left promiscuous mode
[  468.659016][   T39] audit: type=1400 audit(1723509947.214:577): avc:  denied  { ioctl } for  pid=9572 comm="syz.0.1050" path="/dev/fb0" dev="devtmpfs" ino=639 ioctlcmd=0x4601 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  468.690360][   T75] veth1_macvtap: left promiscuous mode
[  468.693770][   T75] veth0_macvtap: left promiscuous mode
[  468.696686][   T75] veth1_vlan: left promiscuous mode
[  468.719461][   T75] veth0_vlan: left promiscuous mode
[  469.489287][ T5392] usb 6-1: new high-speed USB device number 45 using dummy_hcd
[  469.694172][ T5392] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  469.703335][ T5392] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  469.707727][ T5392] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  469.711765][ T5392] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  469.724781][ T5392] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  469.728595][ T5392] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  469.732015][ T5392] usb 6-1: Manufacturer: syz
[  469.735896][ T5392] usb 6-1: config 0 descriptor??
[  469.808895][ T9574] syz.0.1050 (9574): drop_caches: 2
[  469.878032][ T9577] syz.0.1050 (9577): drop_caches: 2
[  470.063995][   T39] audit: type=1400 audit(1723509948.624:578): avc:  denied  { setattr } for  pid=9582 comm="syz.0.1052" name="NETLINK" dev="sockfs" ino=32380 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  470.074758][   T39] audit: type=1400 audit(1723509948.634:579): avc:  denied  { write } for  pid=9582 comm="syz.0.1052" name="ptp0" dev="devtmpfs" ino=715 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  470.105325][ T9583] nfs: Unknown parameter 'nofscÚãbX5¹3À@bsþ¡µ•ùÂ�¯Ñ
[  470.105325][ T9583] À5ûepü.ԫώǵÙJåàÞ.fïú9æó0x0000000000000005'
[  470.178128][ T5392] appleir 0003:05AC:8243.0015: unknown main item tag 0x0
[  470.181912][ T5392] appleir 0003:05AC:8243.0015: No inputs registered, leaving
[  470.188885][ T5392] appleir 0003:05AC:8243.0015: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  470.763353][   T39] audit: type=1326 audit(1723509949.324:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9588 comm="syz.0.1054" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8b2f7799f9 code=0x0
[  470.923887][   T75] team0 (unregistering): Port device team_slave_1 removed
[  471.035158][ T5629] usb 6-1: USB disconnect, device number 45
[  471.052551][   T75] team0 (unregistering): Port device team_slave_0 removed
[  471.786345][ T9594] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  472.251210][ T9609] netlink: 'syz.0.1060': attribute type 4 has an invalid length.
[  472.254506][ T9609] netlink: 126052 bytes leftover after parsing attributes in process `syz.0.1060'.
[  472.295719][   T75] pimreg3 (unregistering): left allmulticast mode
[  473.399565][   T25] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[  473.478134][   T75] team0 (unregistering): Port device team_slave_1 removed
[  473.591266][   T25] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  473.597357][   T25] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  473.598367][   T75] team0 (unregistering): Port device team_slave_0 removed
[  473.606228][   T25] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  473.611803][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  473.618572][ T9611] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  473.627093][   T25] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  473.789335][   T68] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  474.186606][   T57] usb 5-1: USB disconnect, device number 45
[  474.445494][ T5713] lo speed is unknown, defaulting to 1000
[  474.465784][ T7196] bridge0: port 2(bridge_slave_1) entered blocking state
[  474.469110][ T7196] bridge0: port 2(bridge_slave_1) entered forwarding state
[  474.477085][ T9486] veth0_macvtap: entered promiscuous mode
[  474.494339][ T9486] veth1_macvtap: entered promiscuous mode
[  474.542831][ T9486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  474.547265][ T9486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.553328][ T9486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  474.557524][ T9486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.561722][ T9486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  474.565880][ T9486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.570074][ T9486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  474.574245][ T9486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.584100][ T9486] batman_adv: batadv0: Interface activated: batadv_slave_0
[  474.600315][ T9492] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  474.606755][ T9492] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  474.638694][ T9486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.643356][ T9486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.647441][ T9486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.652117][ T9486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.656289][ T9486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.660834][ T9486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.665908][ T9486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.670388][ T9486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.676302][ T9486] batman_adv: batadv0: Interface activated: batadv_slave_1
[  474.691063][ T9486] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  474.695135][ T9486] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  474.699048][ T9486] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  474.702992][ T9486] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  474.868605][   T25] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[  474.884378][   T91] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  474.887679][   T91] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  474.921492][   T91] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  474.924952][   T91] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  474.936578][ T9492] 8021q: adding VLAN 0 to HW filter on device batadv0
[  475.000846][ T9492] veth0_vlan: entered promiscuous mode
[  475.010072][ T9492] veth1_vlan: entered promiscuous mode
[  475.059143][   T25] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  475.076683][   T25] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  475.081399][   T25] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  475.085803][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.102809][ T9614] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  475.111041][   T25] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  475.135217][ T9492] veth0_macvtap: entered promiscuous mode
[  475.143617][ T9492] veth1_macvtap: entered promiscuous mode
[  475.179786][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.185887][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.190901][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.196221][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.201583][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.206706][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.211616][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.216667][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.221922][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  475.227160][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.243203][ T9492] batman_adv: batadv0: Interface activated: batadv_slave_0
[  475.250284][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.255403][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.260628][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.265291][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.270729][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.275452][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.282791][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.288214][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.292915][ T9492] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  475.297324][ T9492] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  475.304361][ T9492] batman_adv: batadv0: Interface activated: batadv_slave_1
[  475.323786][ T9492] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  475.327735][ T9492] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  475.349270][ T9492] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  475.353533][ T9492] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  475.422363][ T5401] usb 8-1: new high-speed USB device number 44 using dummy_hcd
[  475.495932][ T1112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  475.499723][ T1112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  475.526636][ T7196] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  475.535063][ T7196] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  475.614743][ T5401] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  475.619896][ T5401] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  475.624153][ T5401] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  475.628287][ T5401] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.646901][ T9624] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  475.661662][ T5401] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  475.823015][   T25] usb 6-1: USB disconnect, device number 46
[  476.026406][   T39] audit: type=1400 audit(1723509954.584:581): avc:  denied  { read } for  pid=9636 comm="syz.0.1066" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  476.059297][ T5401] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  476.112998][   T57] usb 8-1: USB disconnect, device number 44
[  476.265138][ T5401] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  476.270296][ T5401] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  476.274421][ T5401] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  476.278352][ T5401] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  476.303808][ T9632] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22
[  476.309789][ T5401] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  476.729593][   T57] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[  476.912773][   T57] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  476.920196][   T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  476.926815][   T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  476.931948][   T57] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  476.939025][   T57] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  476.943408][   T57] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  476.947383][   T57] usb 6-1: Manufacturer: syz
[  476.952096][   T57] usb 6-1: config 0 descriptor??
[  477.087138][ T9650] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1069'.
[  477.097718][  T836] usb 7-1: USB disconnect, device number 39
[  477.179336][ T5713] usb 8-1: new high-speed USB device number 45 using dummy_hcd
[  477.376165][ T5713] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  477.386011][ T5713] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  477.388388][   T57] appleir 0003:05AC:8243.0016: unknown main item tag 0x0
[  477.391958][ T5713] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  477.394205][   T57] appleir 0003:05AC:8243.0016: No inputs registered, leaving
[  477.396855][ T5713] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  477.403320][   T57] appleir 0003:05AC:8243.0016: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  477.424525][ T9645] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  477.432216][ T5713] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  477.710247][  T835] usb 8-1: USB disconnect, device number 45
[  477.794981][ T9654] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1070'.
[  478.065713][ T9657] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1071'.
[  478.173907][ T5392] usb 6-1: USB disconnect, device number 47
[  478.609382][  T836] usb 8-1: new high-speed USB device number 46 using dummy_hcd
[  478.832127][ T9671] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  478.851253][  T836] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  478.855911][  T836] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  478.879798][  T836] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  478.883015][  T836] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.890443][ T9667] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  478.896463][  T836] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  479.169313][   T57] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  479.307502][ T9682] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  479.379965][   T57] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  479.390295][   T57] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  479.394473][   T57] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  479.398522][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.419348][ T9681] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  479.438844][   T57] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  479.669545][ T9685] block nbd0: shutting down sockets
[  479.713774][ T5713] usb 8-1: USB disconnect, device number 46
[  479.741314][   T57] usb 7-1: USB disconnect, device number 40
[  480.106531][ T9685] input: syz1 as /devices/virtual/input/input10
[  480.450173][ T9706] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  480.670060][   T25] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  480.693769][ T9709] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  480.872173][   T25] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  480.877052][   T25] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  480.883315][   T25] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  480.887418][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  480.904568][ T9721] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1089'.
[  480.920168][ T9702] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  480.928487][   T25] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  481.381605][   T25] usb 8-1: new high-speed USB device number 47 using dummy_hcd
[  481.469969][  T836] usb 5-1: USB disconnect, device number 46
[  481.585986][   T25] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  481.590371][   T25] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  481.594147][   T25] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  481.597609][   T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.610669][ T9726] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  481.616647][   T25] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  481.886442][   T35] usb 8-1: USB disconnect, device number 47
[  482.264403][ T9733] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  482.528127][   T68] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  483.273793][ T9740] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  483.379345][ T5713] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  483.592092][ T5713] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  483.597209][ T5713] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  483.599363][   T35] usb 8-1: new high-speed USB device number 48 using dummy_hcd
[  483.602093][ T5713] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  483.609319][ T5713] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.614913][ T9750] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  483.622697][ T5713] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  483.782189][   T35] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  483.786546][   T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  483.791612][   T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  483.795856][   T35] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  483.803267][   T35] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  483.807217][   T35] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  483.810736][   T35] usb 8-1: Manufacturer: syz
[  483.814893][   T35] usb 8-1: config 0 descriptor??
[  484.201047][ T5401] usb 7-1: USB disconnect, device number 41
[  484.242992][   T35] appleir 0003:05AC:8243.0017: unknown main item tag 0x0
[  484.247313][   T35] appleir 0003:05AC:8243.0017: No inputs registered, leaving
[  484.256997][   T35] appleir 0003:05AC:8243.0017: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0
[  484.349122][    T8] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[  484.545208][    T8] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  484.551394][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  484.556865][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  484.562155][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  484.571376][    T8] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  484.577690][    T8] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  484.581948][    T8] usb 5-1: Manufacturer: syz
[  484.589544][    T8] usb 5-1: config 0 descriptor??
[  485.038216][    T8] appleir 0003:05AC:8243.0018: unknown main item tag 0x0
[  485.049772][  T836] usb 8-1: USB disconnect, device number 48
[  485.050011][    T8] appleir 0003:05AC:8243.0018: No inputs registered, leaving
[  485.067802][    T8] appleir 0003:05AC:8243.0018: hiddev1,hidraw2: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  485.219279][ T5629] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  485.401736][ T5629] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  485.406404][ T5629] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  485.411350][ T5629] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  485.415783][ T5629] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  485.430514][ T9769] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  485.441044][ T5629] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  485.722462][ T5713] usb 7-1: USB disconnect, device number 42
[  485.988003][   T39] audit: type=1400 audit(1723509964.544:582): avc:  denied  { ioctl } for  pid=9772 comm="syz.3.1103" path="/dev/nvram" dev="devtmpfs" ino=633 ioctlcmd=0xae46 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  486.055412][   T39] audit: type=1400 audit(1723509964.614:583): avc:  denied  { ioctl } for  pid=9772 comm="syz.3.1103" path="socket:[35869]" dev="sockfs" ino=35869 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  486.461347][ T9783] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  486.629328][   T35] usb 6-1: new high-speed USB device number 48 using dummy_hcd
[  486.827130][   T35] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  486.832120][   T35] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  486.837444][   T35] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  486.841757][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  486.850808][ T9781] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  486.858257][   T35] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  487.260854][ T5130] usb 5-1: USB disconnect, device number 47
[  487.549952][  T835] usb 8-1: new high-speed USB device number 49 using dummy_hcd
[  487.607262][   T39] audit: type=1400 audit(1723509966.164:584): avc:  denied  { connect } for  pid=9805 comm="syz.0.1112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  487.677145][    T8] usb 6-1: USB disconnect, device number 48
[  487.731359][  T835] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  487.742920][  T835] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  487.749257][  T835] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  487.752636][  T835] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.770406][ T9794] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  487.778557][  T835] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  488.101412][ T5401] usb 8-1: USB disconnect, device number 49
[  488.521221][   T68] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  488.525600][   T39] audit: type=1804 audit(1723509967.074:585): pid=9814 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.1114" name="/newroot/25/bus/bus" dev="overlay" ino=173 res=1 errno=0
[  488.544868][   T39] audit: type=1400 audit(1723509967.094:586): avc:  denied  { module_load } for  pid=9813 comm="syz.1.1114" path="/25/bus/bus" dev="overlay" ino=173 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  488.571870][ T9814] Invalid ELF header magic: != ELF
[  488.657860][ T9818] FAULT_INJECTION: forcing a failure.
[  488.657860][ T9818] name failslab, interval 1, probability 0, space 0, times 0
[  488.665331][ T9818] CPU: 3 UID: 0 PID: 9818 Comm: syz.1.1116 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  488.671180][ T9818] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  488.676949][ T9818] Call Trace:
[  488.678623][ T9818]  <TASK>
[  488.680083][ T9818]  dump_stack_lvl+0x16c/0x1f0
[  488.683602][ T9818]  should_fail_ex+0x497/0x5b0
[  488.689318][ T9818]  ? fs_reclaim_acquire+0xae/0x160
[  488.691679][ T9818]  should_failslab+0xc2/0x120
[  488.694410][ T9818]  kmem_cache_alloc_node_noprof+0x71/0x310
[  488.706525][ T9818]  ? __alloc_skb+0x2b1/0x380
[  488.710364][ T9818]  __alloc_skb+0x2b1/0x380
[  488.712463][ T9818]  ? __pfx___alloc_skb+0x10/0x10
[  488.715040][ T9818]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  488.718906][ T9818]  netlink_alloc_large_skb+0x69/0x130
[  488.722143][ T9818]  netlink_sendmsg+0x689/0xd70
[  488.724496][ T9818]  ? __pfx_netlink_sendmsg+0x10/0x10
[  488.727124][ T9818]  ? __import_iovec+0x1fd/0x6e0
[  488.729622][ T9818]  ____sys_sendmsg+0xab5/0xc90
[  488.733608][ T9818]  ? copy_msghdr_from_user+0x10b/0x160
[  488.737177][ T9818]  ? __pfx_____sys_sendmsg+0x10/0x10
[  488.740216][ T9818]  ? find_held_lock+0x2d/0x110
[  488.742755][ T9818]  ? __pfx___lock_acquire+0x10/0x10
[  488.745265][ T9818]  ___sys_sendmsg+0x135/0x1e0
[  488.747408][ T9818]  ? __pfx____sys_sendmsg+0x10/0x10
[  488.750150][ T9818]  ? ksys_write+0x21c/0x260
[  488.752388][ T9818]  ? __fget_light+0x173/0x210
[  488.755016][ T9818]  __sys_sendmsg+0x117/0x1f0
[  488.757112][ T9818]  ? __pfx___sys_sendmsg+0x10/0x10
[  488.759543][ T9818]  do_syscall_64+0xcd/0x250
[  488.761662][ T9818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  488.764328][ T9818] RIP: 0033:0x7f044cb799f9
[  488.766335][ T9818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  488.775105][ T9818] RSP: 002b:00007f044d9ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  488.778813][ T9818] RAX: ffffffffffffffda RBX: 00007f044cd15f80 RCX: 00007f044cb799f9
[  488.782839][ T9818] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  488.786667][ T9818] RBP: 00007f044d9ec090 R08: 0000000000000000 R09: 0000000000000000
[  488.790513][ T9818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  488.794603][ T9818] R13: 0000000000000000 R14: 00007f044cd15f80 R15: 00007ffee86b4488
[  488.799788][ T9818]  </TASK>
[  489.225880][ T9840] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1121'.
[  489.299028][ T9842] IPVS: set_ctl: invalid protocol: 0 224.0.0.2:0
[  489.302980][   T39] audit: type=1400 audit(1723509967.854:587): avc:  denied  { ioctl } for  pid=9841 comm="syz.0.1122" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9379 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  489.325695][ T5629] IPVS: starting estimator thread 0...
[  489.335351][ T9842] IPVS: nq: SCTP 172.20.20.170:0 - no destination available
[  489.421214][ T9843] IPVS: using max 18 ests per chain, 43200 per kthread
[  489.710824][ T9848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1123'.
[  490.158800][ T9850] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  490.267750][ T9855] FAULT_INJECTION: forcing a failure.
[  490.267750][ T9855] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  490.273270][ T9855] CPU: 3 UID: 0 PID: 9855 Comm: syz.3.1126 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  490.277985][ T9855] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  490.282841][ T9855] Call Trace:
[  490.282851][ T9855]  <TASK>
[  490.282859][ T9855]  dump_stack_lvl+0x16c/0x1f0
[  490.282890][ T9855]  should_fail_ex+0x497/0x5b0
[  490.282917][ T9855]  _copy_to_user+0x30/0xc0
[  490.282943][ T9855]  simple_read_from_buffer+0xd0/0x160
[  490.282965][ T9855]  proc_fail_nth_read+0x1b0/0x290
[  490.297108][ T9855]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  490.299502][ T9855]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  490.301999][ T9855]  vfs_read+0x1d4/0xbd0
[  490.303839][ T9855]  ? __fdget_pos+0xeb/0x180
[  490.305865][ T9855]  ? __pfx_vfs_read+0x10/0x10
[  490.307936][ T9855]  ? __pfx___mutex_lock+0x10/0x10
[  490.310259][ T9855]  ? __fget_files+0x256/0x400
[  490.312363][ T9855]  ksys_read+0x12f/0x260
[  490.314254][ T9855]  ? __pfx_ksys_read+0x10/0x10
[  490.316441][ T9855]  do_syscall_64+0xcd/0x250
[  490.318560][ T9855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.321231][ T9855] RIP: 0033:0x7fae82d7843c
[  490.323327][ T9855] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[  490.331585][ T9855] RSP: 002b:00007fae83b57030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  490.334792][ T9855] RAX: ffffffffffffffda RBX: 00007fae82f15f80 RCX: 00007fae82d7843c
[  490.338023][ T9855] RDX: 000000000000000f RSI: 00007fae83b570a0 RDI: 0000000000000004
[  490.341428][ T9855] RBP: 00007fae83b57090 R08: 0000000000000000 R09: 0000000000000000
[  490.344814][ T9855] R10: 0000000000002140 R11: 0000000000000246 R12: 0000000000000001
[  490.348198][ T9855] R13: 0000000000000000 R14: 00007fae82f15f80 R15: 00007fffee6cde38
[  490.351630][ T9855]  </TASK>
[  490.734028][   T39] audit: type=1400 audit(1723509969.284:588): avc:  denied  { write } for  pid=9859 comm="syz.0.1129" name="nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  490.749600][   T39] audit: type=1400 audit(1723509969.284:589): avc:  denied  { open } for  pid=9859 comm="syz.0.1129" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  490.760551][   T39] audit: type=1400 audit(1723509969.284:590): avc:  denied  { ioctl } for  pid=9859 comm="syz.0.1129" path="/dev/nullb0" dev="devtmpfs" ino=693 ioctlcmd=0x127f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  491.392438][ T5354] Bluetooth: hci3: ACL packet for unknown connection handle 1481
[  491.404292][   T39] audit: type=1326 audit(1723509969.964:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9872 comm="syz.0.1131" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2f7799f9 code=0x7ffc0000
[  491.416217][   T39] audit: type=1326 audit(1723509969.964:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9872 comm="syz.0.1131" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2f7799f9 code=0x7ffc0000
[  491.452581][   T39] audit: type=1326 audit(1723509970.014:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9872 comm="syz.0.1131" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8b2f7799f9 code=0x7ffc0000
[  491.464752][   T39] audit: type=1326 audit(1723509970.024:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9872 comm="syz.0.1131" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2f7799f9 code=0x7ffc0000
[  491.479812][   T39] audit: type=1326 audit(1723509970.024:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9872 comm="syz.0.1131" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2f7799f9 code=0x7ffc0000
[  491.630154][ T9884] overlayfs: failed to resolve './file1': -2
[  491.731812][   T25] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  491.819541][ T5130] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  491.917579][   T25] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  491.939268][   T25] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  491.943560][   T25] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  491.947597][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  491.962714][ T9875] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  491.980037][   T25] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  492.012643][ T5130] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  492.017323][ T5130] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  492.021666][ T5130] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  492.025929][ T5130] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.034392][ T9882] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  492.046677][ T5130] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  492.189316][   T68] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  493.011212][ T9900] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1139'.
[  493.018360][ T9900] netlink: 4096 bytes leftover after parsing attributes in process `syz.3.1139'.
[  493.022565][ T9900] openvswitch: netlink: Actions may not be safe on all matching packets
[  493.027426][   T39] audit: type=1400 audit(1723509971.584:596): avc:  denied  { shutdown } for  pid=9899 comm="syz.3.1139" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  493.292547][    T8] usb 7-1: USB disconnect, device number 43
[  493.346510][   T13] nci: nci_extract_activation_params_nfc_dep: unsupported activation_rf_tech_and_mode 0x6
[  493.396156][ T5392] usb 5-1: USB disconnect, device number 48
[  493.995175][   T39] audit: type=1326 audit(1723509972.554:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9926 comm="syz.2.1144" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f599f5799f9 code=0x7ffc0000
[  494.016931][   T39] audit: type=1326 audit(1723509972.554:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9926 comm="syz.2.1144" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f599f5799f9 code=0x7ffc0000
[  494.029102][   T39] audit: type=1326 audit(1723509972.574:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9926 comm="syz.2.1144" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f599f5799f9 code=0x7ffc0000
[  494.065666][   T39] audit: type=1326 audit(1723509972.574:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9926 comm="syz.2.1144" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f599f5799f9 code=0x7ffc0000
[  494.300123][   T68] Bluetooth: Frame is too long (len 211, expected len 18)
[  494.633389][ T9934] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  494.690470][ T9933] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  495.949530][ T5401] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[  496.100233][ T5392] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[  496.134876][ T5401] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  496.138943][ T5401] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  496.149139][ T5401] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  496.153183][ T5401] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  496.159080][ T9959] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  496.165285][ T5401] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  496.239489][ T5130] usb 8-1: new high-speed USB device number 50 using dummy_hcd
[  496.291219][ T5392] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  496.295671][ T5392] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  496.299984][ T5392] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  496.304204][ T5392] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  496.310900][ T9971] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  496.316591][ T5392] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  496.422998][ T5130] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  496.427764][ T5130] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  496.431455][ T5130] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  496.442143][ T5130] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  496.450509][ T9974] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  496.457692][ T5130] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  496.862167][ T5401] usb 8-1: USB disconnect, device number 50
[  496.881146][ T5392] usb 7-1: USB disconnect, device number 44
[  497.446839][ T5401] usb 6-1: USB disconnect, device number 49
[  497.515586][   T39] kauditd_printk_skb: 58 callbacks suppressed
[  497.515602][   T39] audit: type=1400 audit(1723509976.074:659): avc:  denied  { create } for  pid=9979 comm="syz.3.1158" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  497.518865][ T9980] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9980 comm=syz.3.1158
[  497.528929][   T39] audit: type=1400 audit(1723509976.074:660): avc:  denied  { write } for  pid=9979 comm="syz.3.1158" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  497.554298][   T39] audit: type=1400 audit(1723509976.114:661): avc:  denied  { ioctl } for  pid=9979 comm="syz.3.1158" path="/dev/ptyqb" dev="devtmpfs" ino=140 ioctlcmd=0x5423 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  497.869946][   T68] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  497.871454][ T9987] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  497.982693][   T39] audit: type=1400 audit(1723509976.544:662): avc:  denied  { accept } for  pid=9991 comm="syz.2.1162" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  498.359387][ T5354] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[  498.365305][ T5354] Bluetooth: hci6: Injecting HCI hardware error event
[  498.370190][   T68] Bluetooth: hci6: hardware error 0x00
[  498.597640][ T5713] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[  498.689518][    T8] usb 7-1: new high-speed USB device number 45 using dummy_hcd
[  498.789452][ T5130] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  498.799259][ T5713] usb 6-1: Using ep0 maxpacket: 32
[  498.803386][ T5713] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[  498.806687][ T5713] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  498.832945][ T5713] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  498.838287][ T5713] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  498.859272][ T5713] usb 6-1: config 0 interface 0 has no altsetting 0
[  498.865364][ T5713] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  498.872819][ T5713] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  498.877310][ T5713] usb 6-1: Product: syz
[  498.879159][ T5713] usb 6-1: Manufacturer: syz
[  498.881405][ T5713] usb 6-1: SerialNumber: syz
[  498.885922][ T5713] usb 6-1: config 0 descriptor??
[  498.890697][    T8] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  498.892006][ T5713] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  498.895588][    T8] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  498.904925][    T8] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  498.906086][ T5713] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  498.909421][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  498.921852][T10008] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  498.927991][    T8] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  498.972780][ T5130] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  498.977711][ T5130] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  498.986856][ T5130] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  498.992217][ T5130] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  498.999997][T10010] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  499.006551][ T5130] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  499.097188][ T5130] usb 6-1: USB disconnect, device number 50
[  499.111657][ T5130] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[  499.659902][   T35] usb 7-1: USB disconnect, device number 45
[  499.757381][  T836] usb 5-1: USB disconnect, device number 49
[  500.199510][    T8] usb 6-1: new high-speed USB device number 51 using dummy_hcd
[  500.385574][    T8] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  500.395857][    T8] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  500.406938][    T8] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  500.425154][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.432877][T10018] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  500.440288][   T68] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  500.441089][    T8] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  500.681660][T10045] block nbd3: shutting down sockets
[  500.786479][T10056] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1179'.
[  501.465600][   T35] usb 6-1: USB disconnect, device number 51
[  501.694077][T10069] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  502.236600][T10091] FAULT_INJECTION: forcing a failure.
[  502.236600][T10091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  502.243259][T10091] CPU: 3 UID: 0 PID: 10091 Comm: syz.1.1187 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  502.247516][T10091] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  502.253306][T10091] Call Trace:
[  502.254800][T10091]  <TASK>
[  502.256095][T10091]  dump_stack_lvl+0x16c/0x1f0
[  502.260730][T10091]  should_fail_ex+0x497/0x5b0
[  502.262809][T10091]  _copy_to_user+0x30/0xc0
[  502.264945][T10091]  simple_read_from_buffer+0xd0/0x160
[  502.267546][T10091]  proc_fail_nth_read+0x1b0/0x290
[  502.271353][T10091]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  502.296211][T10091]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  502.298419][T10091]  vfs_read+0x1d4/0xbd0
[  502.300111][T10091]  ? __fdget_pos+0xeb/0x180
[  502.301926][T10091]  ? __pfx_vfs_read+0x10/0x10
[  502.303831][T10091]  ? __pfx___mutex_lock+0x10/0x10
[  502.305890][T10091]  ? __fget_files+0x256/0x400
[  502.307887][T10091]  ksys_read+0x12f/0x260
[  502.309633][T10091]  ? __pfx_ksys_read+0x10/0x10
[  502.311721][T10091]  do_syscall_64+0xcd/0x250
[  502.329789][T10091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.332462][T10091] RIP: 0033:0x7f044cb7843c
[  502.334471][T10091] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[  502.357467][T10091] RSP: 002b:00007f044d9ec030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  502.361137][T10091] RAX: ffffffffffffffda RBX: 00007f044cd15f80 RCX: 00007f044cb7843c
[  502.364601][T10091] RDX: 000000000000000f RSI: 00007f044d9ec0a0 RDI: 0000000000000005
[  502.368033][T10091] RBP: 00007f044d9ec090 R08: 0000000000000000 R09: 0000000000000000
[  502.387511][T10091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  502.390870][T10091] R13: 0000000000000000 R14: 00007f044cd15f80 R15: 00007ffee86b4488
[  502.394271][T10091]  </TASK>
[  502.939340][ T5401] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  503.180312][ T5401] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  503.184637][ T5401] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  503.188409][ T5401] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  503.193279][ T5401] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  503.203920][T10097] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  503.209541][ T5401] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  503.262205][T10101] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  503.319297][ T5713] usb 6-1: new high-speed USB device number 52 using dummy_hcd
[  503.545456][ T5713] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  503.556291][ T5713] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  503.565077][ T5713] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  503.568967][ T5713] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  503.576813][T10103] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  503.586602][ T5713] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  503.711586][   T39] audit: type=1400 audit(1723509982.274:663): avc:  denied  { append } for  pid=10088 comm="syz.2.1189" name="binder1" dev="binder" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  503.749911][T10089] binder: 10088:10089 ioctl c018620c 200002c0 returned -1
[  503.997381][ T5411] usb 5-1: USB disconnect, device number 50
[  504.084418][T10113] FAULT_INJECTION: forcing a failure.
[  504.084418][T10113] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  504.091372][T10113] CPU: 0 UID: 0 PID: 10113 Comm: syz.2.1196 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  504.097559][T10113] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  504.106844][T10113] Call Trace:
[  504.108184][T10113]  <TASK>
[  504.109493][T10113]  dump_stack_lvl+0x16c/0x1f0
[  504.111546][T10113]  should_fail_ex+0x497/0x5b0
[  504.113670][T10113]  _copy_to_user+0x30/0xc0
[  504.115623][T10113]  simple_read_from_buffer+0xd0/0x160
[  504.118159][T10113]  proc_fail_nth_read+0x1b0/0x290
[  504.120364][T10113]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  504.122954][T10113]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  504.125378][T10113]  vfs_read+0x1d4/0xbd0
[  504.127258][T10113]  ? __fdget_pos+0xeb/0x180
[  504.129112][T10113]  ? __pfx_vfs_read+0x10/0x10
[  504.130944][T10113]  ? __pfx___mutex_lock+0x10/0x10
[  504.132906][T10113]  ? __fget_files+0x256/0x400
[  504.134756][T10113]  ksys_read+0x12f/0x260
[  504.136662][T10113]  ? __pfx_ksys_read+0x10/0x10
[  504.138772][T10113]  do_syscall_64+0xcd/0x250
[  504.140720][T10113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  504.143239][T10113] RIP: 0033:0x7f599f57843c
[  504.145222][T10113] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8d 02 00 48
[  504.153116][T10113] RSP: 002b:00007f59a0310030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  504.156499][T10113] RAX: ffffffffffffffda RBX: 00007f599f715f80 RCX: 00007f599f57843c
[  504.159888][T10113] RDX: 000000000000000f RSI: 00007f59a03100a0 RDI: 0000000000000004
[  504.163280][T10113] RBP: 00007f59a0310090 R08: 0000000000000000 R09: 0000000000000000
[  504.166766][T10113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  504.170360][T10113] R13: 0000000000000000 R14: 00007f599f715f80 R15: 00007fff2b302088
[  504.173909][T10113]  </TASK>
[  504.329321][  T836] usb 8-1: new high-speed USB device number 51 using dummy_hcd
[  504.336283][ T5629] usb 6-1: USB disconnect, device number 52
[  504.514284][  T836] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  504.514317][  T836] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  504.514361][  T836] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  504.514382][  T836] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  504.525821][T10111] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  504.577745][  T836] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  504.969942][ T5713] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  505.161370][ T5713] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  505.161401][ T5713] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  505.161434][ T5713] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  505.161453][ T5713] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.180252][T10128] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  505.182962][ T5713] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  505.320457][ T5713] usb 8-1: USB disconnect, device number 51
[  505.369409][ T5130] usb 6-1: new high-speed USB device number 53 using dummy_hcd
[  505.543585][  T835] usb 5-1: USB disconnect, device number 51
[  505.557621][ T5130] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  505.566985][ T5130] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  505.574833][ T5130] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  505.579252][ T5130] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.588254][T10131] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  505.595577][ T5130] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  505.865650][ T5411] usb 6-1: USB disconnect, device number 53
[  506.246770][   T68] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  506.251658][   T68] CPU: 1 UID: 0 PID: 68 Comm: kworker/u33:0 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  506.256830][   T68] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  506.262239][   T68] Workqueue: hci3 hci_rx_work
[  506.264574][   T68] Call Trace:
[  506.266649][   T68]  <TASK>
[  506.268484][   T68]  dump_stack_lvl+0x16c/0x1f0
[  506.271378][   T68]  sysfs_warn_dup+0x7f/0xa0
[  506.274116][   T68]  sysfs_create_dir_ns+0x24d/0x2b0
[  506.276854][   T68]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  506.279438][   T68]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  506.281845][   T68]  ? do_raw_spin_unlock+0x172/0x230
[  506.284064][   T68]  kobject_add_internal+0x2c8/0x990
[  506.286582][   T68]  kobject_add+0x16f/0x240
[  506.289007][   T68]  ? __pfx_kobject_add+0x10/0x10
[  506.291428][   T68]  ? do_raw_spin_unlock+0x172/0x230
[  506.293262][   T68]  ? kobject_put+0xbe/0x5b0
[  506.294773][   T68]  device_add+0x289/0x1a70
[  506.296465][   T68]  ? __pfx_dev_set_name+0x10/0x10
[  506.298111][   T68]  ? __pfx_device_add+0x10/0x10
[  506.299962][   T68]  ? mgmt_send_event_skb+0x2f2/0x460
[  506.301810][   T68]  hci_conn_add_sysfs+0x17e/0x230
[  506.304333][   T68]  le_conn_complete_evt+0x1078/0x1d80
[  506.307158][   T68]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  506.309541][   T68]  ? trace_contention_end+0xea/0x140
[  506.311589][   T68]  ? __mutex_lock+0x1a6/0x9c0
[  506.313513][   T68]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  506.315985][   T68]  ? skb_pull_data+0x166/0x210
[  506.318580][   T68]  hci_le_meta_evt+0x2e2/0x5d0
[  506.321192][   T68]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  506.323867][   T68]  hci_event_packet+0x666/0x1180
[  506.326187][   T68]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  506.328781][   T68]  ? __pfx_hci_event_packet+0x10/0x10
[  506.331436][   T68]  ? mark_held_locks+0x9f/0xe0
[  506.334011][   T68]  ? kcov_remote_start+0x3cf/0x6e0
[  506.336758][   T68]  ? lockdep_hardirqs_on+0x7c/0x110
[  506.339525][   T68]  hci_rx_work+0x2c6/0x1610
[  506.341701][   T68]  process_one_work+0x9c5/0x1b40
[  506.344029][   T68]  ? __pfx_lock_acquire+0x10/0x10
[  506.346486][   T68]  ? __pfx_process_one_work+0x10/0x10
[  506.348952][   T68]  ? assign_work+0x1a0/0x250
[  506.351179][   T68]  worker_thread+0x6c8/0xf20
[  506.353655][   T68]  ? __pfx_worker_thread+0x10/0x10
[  506.357522][   T68]  kthread+0x2c1/0x3a0
[  506.359743][   T68]  ? _raw_spin_unlock_irq+0x23/0x50
[  506.362543][   T68]  ? __pfx_kthread+0x10/0x10
[  506.364943][   T68]  ret_from_fork+0x45/0x80
[  506.366679][   T68]  ? __pfx_kthread+0x10/0x10
[  506.368542][   T68]  ret_from_fork_asm+0x1a/0x30
[  506.370520][   T68]  </TASK>
[  506.380630][   T68] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  506.394556][   T68] Bluetooth: hci3: failed to register connection device
[  507.523665][T10172] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  507.757527][  T836] usb 6-1: new high-speed USB device number 54 using dummy_hcd
[  507.760945][ T5629] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  507.973793][  T836] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  507.977582][  T836] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  507.981178][ T5629] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  507.986657][ T5629] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  507.992864][  T836] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  507.996880][  T836] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.024375][ T5629] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  508.028177][ T5629] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.035251][T10168] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  508.067969][  T836] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  508.080122][T10170] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  508.112207][T10178] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  508.140449][ T5629] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  508.290593][T10179] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  508.429802][   T68] Bluetooth: hci3: command tx timeout
[  508.501219][    T8] usb 6-1: USB disconnect, device number 54
[  508.576404][  T835] usb 5-1: USB disconnect, device number 52
[  508.656092][    C3] vkms_vblank_simulate: vblank timer overrun
[  508.836431][T10187] FAULT_INJECTION: forcing a failure.
[  508.836431][T10187] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  508.842936][T10187] CPU: 2 UID: 0 PID: 10187 Comm: syz.3.1218 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  508.848410][T10187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  508.854292][T10187] Call Trace:
[  508.855868][T10187]  <TASK>
[  508.857207][T10187]  dump_stack_lvl+0x16c/0x1f0
[  508.859515][T10187]  should_fail_ex+0x497/0x5b0
[  508.861954][T10187]  _copy_from_user+0x30/0xf0
[  508.864120][T10187]  kstrtouint_from_user+0xd7/0x1c0
[  508.867006][T10187]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  508.870587][T10187]  ? __pfx_lock_acquire+0x10/0x10
[  508.874056][T10187]  proc_fail_nth_write+0x84/0x270
[  508.878099][T10187]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  508.882137][T10187]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  508.886192][T10187]  vfs_write+0x29a/0x1140
[  508.889835][T10187]  ? __fdget_pos+0xeb/0x180
[  508.892630][T10187]  ? __pfx_vfs_write+0x10/0x10
[  508.894838][T10187]  ? __pfx___mutex_lock+0x10/0x10
[  508.897457][T10187]  ? __fget_files+0x256/0x400
[  508.899805][T10187]  ksys_write+0x12f/0x260
[  508.901994][T10187]  ? __pfx_ksys_write+0x10/0x10
[  508.904230][T10187]  do_syscall_64+0xcd/0x250
[  508.906054][T10187]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  508.908320][T10187] RIP: 0033:0x7fae82d784df
[  508.910044][T10187] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8d 02 00 48
[  508.926275][T10187] RSP: 002b:00007fae83b57030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  508.930283][T10187] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fae82d784df
[  508.934816][T10187] RDX: 0000000000000001 RSI: 00007fae83b570a0 RDI: 0000000000000004
[  508.938826][T10187] RBP: 00007fae83b57090 R08: 0000000000000000 R09: 0000000000000000
[  508.943548][T10187] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  508.949095][T10187] R13: 0000000000000000 R14: 00007fae82f15f80 R15: 00007fffee6cde38
[  508.953934][T10187]  </TASK>
[  509.228114][T10200] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1223'.
[  509.319478][    T8] usb 7-1: new high-speed USB device number 46 using dummy_hcd
[  509.512986][    T8] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  509.518924][    T8] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  509.523705][    T8] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  509.527834][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  509.536152][T10190] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  509.541882][    T8] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  509.549386][ T5354] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  510.203541][ T5130] usb 7-1: USB disconnect, device number 46
[  510.319333][  T835] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  510.523480][  T835] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  510.527868][  T835] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  510.534668][  T835] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  510.538538][  T835] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.548596][T10205] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  510.555791][  T835] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  511.187317][   T35] usb 5-1: USB disconnect, device number 53
[  511.556999][T10220] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  512.819296][ T5130] usb 7-1: new high-speed USB device number 47 using dummy_hcd
[  513.004787][ T5130] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  513.013557][ T5130] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  513.017797][ T5130] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  513.026767][ T5130] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  513.037732][T10232] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  513.048632][ T5130] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  513.139338][    T8] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[  513.321569][    T8] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  513.326850][    T8] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  513.331280][    T8] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  513.337181][ T5713] usb 7-1: USB disconnect, device number 47
[  513.337452][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  513.349142][T10234] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  513.367423][    T8] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  513.509471][ T5401] usb 8-1: new high-speed USB device number 52 using dummy_hcd
[  513.703618][ T5401] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  513.709110][ T5401] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  513.714169][ T5401] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  513.718309][ T5401] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  513.728067][T10236] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  513.740041][ T5401] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  514.004159][ T5401] usb 5-1: USB disconnect, device number 54
[  514.387877][ T5401] usb 8-1: USB disconnect, device number 52
[  514.474145][T10243] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  514.795552][T10250] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1237'.
[  515.040994][T10260] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  515.419294][ T5401] usb 8-1: new high-speed USB device number 53 using dummy_hcd
[  515.607604][ T5401] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  515.615894][T10266] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1242'.
[  515.629456][ T5401] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  515.629501][ T5401] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  515.629521][ T5401] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  515.633235][T10262] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  515.636966][ T5401] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  515.829417][ T5629] usb 7-1: new high-speed USB device number 48 using dummy_hcd
[  515.933591][ T5401] usb 8-1: USB disconnect, device number 53
[  516.012163][ T5629] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  516.020182][ T5629] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  516.023420][ T5629] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  516.026453][ T5629] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  516.034136][T10264] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  516.040128][ T5629] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  516.903028][ T5713] usb 7-1: USB disconnect, device number 48
[  517.141290][   T35] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[  517.349351][   T35] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  517.354697][   T35] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  517.359672][   T35] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  517.364272][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  517.369704][T10277] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  517.374657][   T35] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  517.700131][T10281] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1247'.
[  517.789305][ T5411] usb 8-1: new high-speed USB device number 54 using dummy_hcd
[  517.857829][ T5629] usb 5-1: USB disconnect, device number 55
[  518.037632][ T5411] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  518.060033][ T5411] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  518.065457][ T5411] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  518.073825][ T5411] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  518.102264][T10279] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  518.121461][ T5411] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  518.267012][T10291] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  518.700359][T10295] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  518.890691][ T5713] usb 8-1: USB disconnect, device number 54
[  519.101615][T10311] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1257'.
[  519.120937][    T8] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[  519.338815][    T8] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  519.349360][    T8] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  519.354403][    T8] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  519.358215][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  519.378327][ T5364] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  519.383289][T10304] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  519.384585][ T5364] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  519.388696][    T8] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  519.392994][ T5364] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  519.397452][ T5364] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  519.403587][ T5364] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  519.416495][ T5364] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  519.678146][T10321] chnl_net:caif_netlink_parms(): no params data found
[  519.689863][    T8] usb 5-1: USB disconnect, device number 56
[  519.771783][T10323] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  519.789008][   T39] audit: type=1400 audit(1723509998.344:664): avc:  denied  { write } for  pid=10327 comm="syz.3.1261" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  519.883948][T10321] bridge0: port 1(bridge_slave_0) entered blocking state
[  519.887256][T10321] bridge0: port 1(bridge_slave_0) entered disabled state
[  519.890982][T10321] bridge_slave_0: entered allmulticast mode
[  519.891907][T10335] No control pipe specified
[  519.894944][T10321] bridge_slave_0: entered promiscuous mode
[  519.901883][T10321] bridge0: port 2(bridge_slave_1) entered blocking state
[  519.905333][T10321] bridge0: port 2(bridge_slave_1) entered disabled state
[  519.908564][T10321] bridge_slave_1: entered allmulticast mode
[  519.913632][T10321] bridge_slave_1: entered promiscuous mode
[  520.042287][T10321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  520.066647][T10321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  520.203807][T10321] team0: Port device team_slave_0 added
[  520.232625][T10321] team0: Port device team_slave_1 added
[  520.393029][T10343] netlink: 'syz.3.1265': attribute type 1 has an invalid length.
[  520.396078][T10343] netlink: 9348 bytes leftover after parsing attributes in process `syz.3.1265'.
[  520.405225][T10343] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1265'.
[  520.417241][T10321] batman_adv: batadv0: Adding interface: batadv_slave_0
[  520.422448][T10321] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  520.447310][T10321] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  520.457833][T10321] batman_adv: batadv0: Adding interface: batadv_slave_1
[  520.462849][T10321] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  520.473640][T10321] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  520.556775][T10321] hsr_slave_0: entered promiscuous mode
[  520.567385][T10321] hsr_slave_1: entered promiscuous mode
[  520.574102][T10321] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  520.578856][T10321] Cannot create hsr debugfs directory
[  520.620885][T10352] netlink: 'syz.2.1269': attribute type 34 has an invalid length.
[  520.639285][   T35] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[  520.754266][ T5354] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  520.854955][T10321] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.861300][   T35] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  520.865923][   T35] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  520.874014][   T35] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  520.877591][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  520.885074][T10345] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  520.892451][   T35] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  520.982572][T10321] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  521.091153][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[  521.096665][T10321] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  521.194177][T10321] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  521.445324][T10321] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  521.469457][ T5354] Bluetooth: hci2: command tx timeout
[  521.488760][T10321] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  521.508908][T10321] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  521.523036][T10321] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  521.698552][T10321] 8021q: adding VLAN 0 to HW filter on device bond0
[  521.727246][T10321] 8021q: adding VLAN 0 to HW filter on device team0
[  521.748257][ T7196] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.751304][ T7196] bridge0: port 1(bridge_slave_0) entered forwarding state
[  521.775283][ T7196] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.778785][ T7196] bridge0: port 2(bridge_slave_1) entered forwarding state
[  521.923054][ T5130] usb 5-1: USB disconnect, device number 57
[  522.136406][T10321] 8021q: adding VLAN 0 to HW filter on device batadv0
[  522.181745][T10321] veth0_vlan: entered promiscuous mode
[  522.204050][T10321] veth1_vlan: entered promiscuous mode
[  522.239111][T10321] veth0_macvtap: entered promiscuous mode
[  522.266635][T10321] veth1_macvtap: entered promiscuous mode
[  522.298982][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  522.306362][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.310544][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  522.330706][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.334857][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  522.338970][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.343366][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  522.348886][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.355375][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  522.359453][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.363205][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  522.367748][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.374365][T10321] batman_adv: batadv0: Interface activated: batadv_slave_0
[  522.391204][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  522.395698][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.400912][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  522.404537][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.408747][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  522.413655][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.418124][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  522.423274][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.427509][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  522.432249][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.436555][T10321] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  522.441345][T10321] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  522.447551][T10321] batman_adv: batadv0: Interface activated: batadv_slave_1
[  522.453908][T10321] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  522.457210][T10321] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  522.461214][T10321] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  522.464757][T10321] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  522.572350][ T1112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  522.575929][ T1112] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  522.601353][ T7196] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  522.605013][ T7196] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  522.680989][ T5401] usb 8-1: new high-speed USB device number 55 using dummy_hcd
[  522.829362][ T5629] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  522.882221][ T5401] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  522.886357][ T5401] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  522.890779][ T5401] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  522.896331][ T5401] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  522.902480][T10375] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  522.907980][ T5401] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  522.959390][    T8] usb 6-1: new high-speed USB device number 55 using dummy_hcd
[  523.041236][ T5629] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  523.045858][ T5629] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  523.049389][ T5629] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  523.053472][ T5629] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.066311][T10380] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  523.073730][ T5629] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  523.161605][    T8] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  523.166461][    T8] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  523.171384][    T8] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  523.175372][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.182704][T10382] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  523.189014][    T8] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  523.454120][   T58] usb 8-1: USB disconnect, device number 55
[  523.553604][ T5354] Bluetooth: hci2: command tx timeout
[  523.678924][ T5401] usb 5-1: USB disconnect, device number 58
[  524.034054][T10393] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  524.114713][T10396] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  524.295608][ T5401] usb 6-1: USB disconnect, device number 55
[  524.405824][   T68] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  524.410668][   T68] CPU: 3 UID: 0 PID: 68 Comm: kworker/u33:0 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  524.415367][   T68] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  524.419972][   T68] Workqueue: hci3 hci_rx_work
[  524.422152][   T68] Call Trace:
[  524.423557][   T68]  <TASK>
[  524.424771][   T68]  dump_stack_lvl+0x16c/0x1f0
[  524.427008][   T68]  sysfs_warn_dup+0x7f/0xa0
[  524.429425][   T68]  sysfs_create_dir_ns+0x24d/0x2b0
[  524.431580][   T68]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  524.433973][   T68]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  524.436234][   T68]  ? do_raw_spin_unlock+0x172/0x230
[  524.438393][   T68]  kobject_add_internal+0x2c8/0x990
[  524.441052][   T68]  kobject_add+0x16f/0x240
[  524.443583][   T68]  ? __pfx_kobject_add+0x10/0x10
[  524.446079][   T68]  ? do_raw_spin_unlock+0x172/0x230
[  524.448142][   T68]  ? kobject_put+0xbe/0x5b0
[  524.449904][   T68]  device_add+0x289/0x1a70
[  524.452211][   T68]  ? __pfx_dev_set_name+0x10/0x10
[  524.454718][   T68]  ? __pfx_device_add+0x10/0x10
[  524.456699][   T68]  ? mgmt_send_event_skb+0x2f2/0x460
[  524.459674][   T68]  hci_conn_add_sysfs+0x17e/0x230
[  524.461698][   T68]  le_conn_complete_evt+0x1078/0x1d80
[  524.463975][   T68]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  524.466371][   T68]  ? trace_contention_end+0xea/0x140
[  524.468592][   T68]  ? __mutex_lock+0x1a6/0x9c0
[  524.470571][   T68]  hci_le_enh_conn_complete_evt+0x23d/0x380
[  524.473075][   T68]  ? skb_pull_data+0x166/0x210
[  524.475178][   T68]  hci_le_meta_evt+0x2e2/0x5d0
[  524.477216][   T68]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  524.479956][   T68]  hci_event_packet+0x666/0x1180
[  524.482297][   T68]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  524.484508][   T68]  ? __pfx_hci_event_packet+0x10/0x10
[  524.486887][   T68]  ? mark_held_locks+0x9f/0xe0
[  524.488967][   T68]  ? kcov_remote_start+0x3cf/0x6e0
[  524.491182][   T68]  ? lockdep_hardirqs_on+0x7c/0x110
[  524.493520][   T68]  hci_rx_work+0x2c6/0x1610
[  524.495493][   T68]  process_one_work+0x9c5/0x1b40
[  524.497626][   T68]  ? __pfx_lock_acquire+0x10/0x10
[  524.499830][   T68]  ? __pfx_process_one_work+0x10/0x10
[  524.502101][   T68]  ? assign_work+0x1a0/0x250
[  524.504063][   T68]  worker_thread+0x6c8/0xf20
[  524.506026][   T68]  ? __pfx_worker_thread+0x10/0x10
[  524.508490][   T68]  kthread+0x2c1/0x3a0
[  524.510278][   T68]  ? _raw_spin_unlock_irq+0x23/0x50
[  524.512839][   T68]  ? __pfx_kthread+0x10/0x10
[  524.515345][   T68]  ret_from_fork+0x45/0x80
[  524.517430][   T68]  ? __pfx_kthread+0x10/0x10
[  524.519395][   T68]  ret_from_fork_asm+0x1a/0x30
[  524.521664][   T68]  </TASK>
[  524.524437][   T68] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  524.530256][   T68] Bluetooth: hci3: failed to register connection device
[  524.582845][T10407] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1281'.
[  524.734325][T10410] netlink: 'syz.2.1282': attribute type 12 has an invalid length.
[  524.835637][T10412] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1283'.
[  524.844736][   T39] audit: type=1400 audit(1723510003.404:665): avc:  denied  { write } for  pid=10411 comm="syz.2.1283" name="fb0" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  525.571256][   T58] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[  525.639677][   T68] Bluetooth: hci2: command tx timeout
[  525.783841][   T58] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  525.788140][   T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  525.793535][   T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  525.793668][ T6454] usb 7-1: new high-speed USB device number 49 using dummy_hcd
[  525.798163][   T58] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  525.814713][   T58] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  525.818806][   T58] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  525.822353][   T58] usb 5-1: Manufacturer: syz
[  525.832228][   T58] usb 5-1: config 0 descriptor??
[  525.993752][ T6454] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  525.998409][ T6454] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  526.005843][ T6454] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  526.011237][ T6454] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  526.019719][T10426] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  526.027879][ T6454] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  526.194283][   T35] usb 6-1: new high-speed USB device number 56 using dummy_hcd
[  526.219032][ T5354] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  526.263080][T10399] ==================================================================
[  526.266426][T10399] BUG: KASAN: slab-use-after-free in skb_queue_purge_reason+0x37d/0x410
[  526.274287][   T58] appleir 0003:05AC:8243.0019: unknown main item tag 0x0
[  526.280545][T10399] Read of size 8 at addr ffff88803de68058 by task syz.3.1278/10399
[  526.280568][T10399] 
[  526.280577][T10399] CPU: 0 UID: 0 PID: 10399 Comm: syz.3.1278 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  526.280810][T10399] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  526.280822][T10399] Call Trace:
[  526.280829][T10399]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  526.280837][T10399]  dump_stack_lvl+0x116/0x1f0
[  526.289063][   T58] appleir 0003:05AC:8243.0019: No inputs registered, leaving
[  526.291433][T10399]  print_report+0xc3/0x620
[  526.291463][T10399]  ? __virt_addr_valid+0x5e/0x590
[  526.291485][T10399]  ? __phys_addr+0xc6/0x150
[  526.291507][T10399]  kasan_report+0xd9/0x110
[  526.303776][   T58] appleir 0003:05AC:8243.0019: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  526.308351][T10399]  ? skb_queue_purge_reason+0x37d/0x410
[  526.308382][T10399]  ? skb_queue_purge_reason+0x37d/0x410
[  526.308406][T10399]  skb_queue_purge_reason+0x37d/0x410
[  526.345081][T10399]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  526.347627][T10399]  ? lockdep_hardirqs_on+0x7c/0x110
[  526.349870][T10399]  ? drain_workqueue+0x309/0x3d0
[  526.352073][T10399]  ? hci_inquiry_cache_flush+0x176/0x2f0
[  526.354370][T10399]  ? __pfx_vhci_flush+0x10/0x10
[  526.356462][T10399]  vhci_flush+0x40/0x50
[  526.358190][T10399]  hci_dev_reset+0x22e/0x530
[  526.360236][T10399]  hci_sock_ioctl+0x3d2/0x880
[  526.362279][T10399]  ? __pfx_hci_sock_ioctl+0x10/0x10
[  526.364481][T10399]  sock_do_ioctl+0x116/0x280
[  526.366600][T10399]  ? __pfx_sock_do_ioctl+0x10/0x10
[  526.368899][T10399]  ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470
[  526.371702][T10399]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  526.374847][T10399]  sock_ioctl+0x22e/0x6c0
[  526.376942][T10399]  ? __pfx_sock_ioctl+0x10/0x10
[  526.379452][T10399]  ? selinux_file_ioctl+0x180/0x270
[  526.382447][T10399]  ? selinux_file_ioctl+0xb4/0x270
[  526.385379][T10399]  ? __pfx_sock_ioctl+0x10/0x10
[  526.387813][T10399]  __x64_sys_ioctl+0x193/0x220
[  526.389962][T10399]  do_syscall_64+0xcd/0x250
[  526.391865][T10399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.395438][T10399] RIP: 0033:0x7fae82d799f9
[  526.397279][T10399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.403910][T10399] RSP: 002b:00007fae83b57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  526.407103][T10399] RAX: ffffffffffffffda RBX: 00007fae82f15f80 RCX: 00007fae82d799f9
[  526.409877][T10399] RDX: 0000000000000000 RSI: 00000000400448cb RDI: 0000000000000007
[  526.412759][T10399] RBP: 00007fae82de78ee R08: 0000000000000000 R09: 0000000000000000
[  526.416241][T10399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  526.419117][T10399] R13: 0000000000000000 R14: 00007fae82f15f80 R15: 00007fffee6cde38
[  526.422369][T10399]  </TASK>
[  526.423612][T10399] 
[  526.424618][T10399] Allocated by task 9462:
[  526.426395][T10399]  kasan_save_stack+0x33/0x60
[  526.428183][T10399]  kasan_save_track+0x14/0x30
[  526.430115][T10399]  __kasan_kmalloc+0xaa/0xb0
[  526.431930][T10399]  vhci_open+0x4c/0x440
[  526.433867][T10399]  misc_open+0x3da/0x4c0
[  526.435758][T10399]  chrdev_open+0x26d/0x6f0
[  526.437491][T10399]  do_dentry_open+0x91f/0x15f0
[  526.439368][T10399]  vfs_open+0x82/0x3f0
[  526.440869][T10399]  path_openat+0x2141/0x2d20
[  526.442492][T10399]  do_filp_open+0x1dc/0x430
[  526.444160][T10399]  do_sys_openat2+0x17a/0x1e0
[  526.445785][T10399]  __x64_sys_openat+0x175/0x210
[  526.447475][T10399]  do_syscall_64+0xcd/0x250
[  526.449023][T10399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.451258][T10399] 
[  526.452247][T10399] Freed by task 10200:
[  526.453870][T10399]  kasan_save_stack+0x33/0x60
[  526.455486][T10399]  kasan_save_track+0x14/0x30
[  526.457299][T10399]  kasan_save_free_info+0x3b/0x60
[  526.459166][T10399]  poison_slab_object+0xf7/0x160
[  526.461415][T10399]  __kasan_slab_free+0x32/0x50
[  526.463941][T10399]  kfree+0x12a/0x3b0
[  526.465835][T10399]  vhci_release+0xc4/0x100
[  526.467665][   T58] usb 7-1: USB disconnect, device number 49
[  526.467970][T10399]  __fput+0x408/0xbb0
[  526.471970][T10399]  task_work_run+0x14e/0x250
[  526.473849][T10399]  do_exit+0xaa3/0x2bb0
[  526.475587][T10399]  do_group_exit+0xd3/0x2a0
[  526.477415][T10399]  get_signal+0x25fd/0x2770
[  526.479040][T10399]  arch_do_signal_or_restart+0x90/0x7e0
[  526.480940][T10399]  syscall_exit_to_user_mode+0x150/0x2a0
[  526.483062][T10399]  do_syscall_64+0xda/0x250
[  526.484615][T10399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.486634][T10399] 
[  526.487462][T10399] The buggy address belongs to the object at ffff88803de68000
[  526.487462][T10399]  which belongs to the cache kmalloc-1k of size 1024
[  526.494467][T10399] The buggy address is located 88 bytes inside of
[  526.494467][T10399]  freed 1024-byte region [ffff88803de68000, ffff88803de68400)
[  526.500333][T10399] 
[  526.501481][T10399] The buggy address belongs to the physical page:
[  526.504490][T10399] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88803de69800 pfn:0x3de68
[  526.508559][T10399] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  526.511415][T10399] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[  526.514466][T10399] page_type: 0xfdffffff(slab)
[  526.516124][T10399] raw: 00fff00000000240 ffff888015842dc0 ffffea0000933210 ffffea00006f7610
[  526.519882][T10399] raw: ffff88803de69800 0000000000100006 00000001fdffffff 0000000000000000
[  526.523967][T10399] head: 00fff00000000240 ffff888015842dc0 ffffea0000933210 ffffea00006f7610
[  526.527961][T10399] head: ffff88803de69800 0000000000100006 00000001fdffffff 0000000000000000
[  526.531573][T10399] head: 00fff00000000003 ffffea0000f79a01 ffffffffffffffff 0000000000000000
[  526.534588][T10399] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  526.540121][T10399] page dumped because: kasan: bad access detected
[  526.542714][T10399] page_owner tracks the page as allocated
[  526.544969][T10399] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5355, tgid 5355 (syz-executor), ts 143342432317, free_ts 143250473856
[  526.553909][T10399]  post_alloc_hook+0x2d1/0x350
[  526.556169][T10399]  get_page_from_freelist+0x1351/0x2e50
[  526.558771][T10399]  __alloc_pages_noprof+0x22b/0x2460
[  526.561273][T10399]  alloc_slab_page+0x4e/0xf0
[  526.563443][T10399]  new_slab+0x84/0x260
[  526.565398][T10399]  ___slab_alloc+0xdac/0x1870
[  526.567584][T10399]  __slab_alloc.constprop.0+0x56/0xb0
[  526.570263][T10399]  __kmalloc_node_noprof+0x357/0x430
[  526.572749][T10399]  qdisc_alloc+0xb3/0xbd0
[  526.574800][T10399]  qdisc_create_dflt+0x73/0x440
[  526.577092][T10399]  dev_activate+0x63c/0x12c0
[  526.579357][T10399]  __dev_open+0x396/0x4e0
[  526.581462][T10399]  __dev_change_flags+0x561/0x720
[  526.583821][T10399]  dev_change_flags+0x8f/0x160
[  526.586111][T10399]  do_setlink+0x1a42/0x3ff0
[  526.588282][T10399]  __rtnl_newlink+0xc35/0x1960
[  526.590581][T10399] page last free pid 5400 tgid 5400 stack trace:
[  526.593992][T10399]  free_unref_page+0x64a/0xe40
[  526.596280][T10399]  __put_partials+0x14c/0x170
[  526.598432][T10399]  qlist_free_all+0x4e/0x140
[  526.599938][ T5354] Bluetooth: hci3: command tx timeout
[  526.600422][T10399]  kasan_quarantine_reduce+0x192/0x1e0
[  526.605551][T10399]  __kasan_slab_alloc+0x69/0x90
[  526.607722][T10399]  kmem_cache_alloc_noprof+0x121/0x2f0
[  526.609582][T10399]  getname_flags.part.0+0x4c/0x550
[  526.611327][T10399]  getname_flags+0x93/0xf0
[  526.613199][T10399]  user_path_at+0x24/0x60
[  526.614978][T10399]  user_statfs+0xa0/0x180
[  526.616842][T10399]  __do_sys_statfs+0x8a/0x100
[  526.618523][T10399]  do_syscall_64+0xcd/0x250
[  526.620123][T10399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.622240][T10399] 
[  526.623205][T10399] Memory state around the buggy address:
[  526.625666][T10399]  ffff88803de67f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  526.629105][T10399]  ffff88803de67f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  526.632240][T10399] >ffff88803de68000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  526.635199][T10399]                                                     ^
[  526.637918][T10399]  ffff88803de68080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  526.641130][T10399]  ffff88803de68100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  526.644118][T10399] ==================================================================
[  526.650451][T10399] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  526.653824][T10399] CPU: 3 UID: 0 PID: 10399 Comm: syz.3.1278 Not tainted 6.11.0-rc3-syzkaller-00007-gd74da846046a #0
[  526.659638][T10399] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  526.664763][T10399] Call Trace:
[  526.666843][T10399]  <TASK>
[  526.668478][T10399]  dump_stack_lvl+0x3d/0x1f0
[  526.671000][T10399]  panic+0x6f5/0x7a0
[  526.673288][T10399]  ? __pfx_panic+0x10/0x10
[  526.675813][T10399]  ? irqentry_exit+0x3b/0x90
[  526.678296][T10399]  ? lockdep_hardirqs_on+0x7c/0x110
[  526.697104][T10399]  ? preempt_schedule_thunk+0x1a/0x30
[  526.699526][T10399]  ? preempt_schedule_common+0x44/0xc0
[  526.702064][T10399]  check_panic_on_warn+0xab/0xb0
[  526.704132][T10399]  end_report+0x117/0x180
[  526.706351][T10399]  kasan_report+0xe9/0x110
[  526.708215][T10399]  ? skb_queue_purge_reason+0x37d/0x410
[  526.710585][T10399]  ? skb_queue_purge_reason+0x37d/0x410
[  526.713229][T10399]  skb_queue_purge_reason+0x37d/0x410
[  526.716413][T10399]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  526.721809][T10399]  ? lockdep_hardirqs_on+0x7c/0x110
[  526.724402][T10399]  ? drain_workqueue+0x309/0x3d0
[  526.726450][T10399]  ? hci_inquiry_cache_flush+0x176/0x2f0
[  526.728760][T10399]  ? __pfx_vhci_flush+0x10/0x10
[  526.730786][T10399]  vhci_flush+0x40/0x50
[  526.732512][T10399]  hci_dev_reset+0x22e/0x530
[  526.734317][T10399]  hci_sock_ioctl+0x3d2/0x880
[  526.736525][T10399]  ? __pfx_hci_sock_ioctl+0x10/0x10
[  526.739417][T10399]  sock_do_ioctl+0x116/0x280
[  526.741637][T10399]  ? __pfx_sock_do_ioctl+0x10/0x10
[  526.744048][T10399]  ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470
[  526.746827][T10399]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  526.749530][T10399]  sock_ioctl+0x22e/0x6c0
[  526.752909][T10399]  ? __pfx_sock_ioctl+0x10/0x10
[  526.755890][T10399]  ? selinux_file_ioctl+0x180/0x270
[  526.758217][T10399]  ? selinux_file_ioctl+0xb4/0x270
[  526.762316][T10399]  ? __pfx_sock_ioctl+0x10/0x10
[  526.765817][T10399]  __x64_sys_ioctl+0x193/0x220
[  526.768493][T10399]  do_syscall_64+0xcd/0x250
[  526.771038][T10399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.774359][T10399] RIP: 0033:0x7fae82d799f9
[  526.776176][T10399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  526.800826][T10399] RSP: 002b:00007fae83b57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  526.803976][T10399] RAX: ffffffffffffffda RBX: 00007fae82f15f80 RCX: 00007fae82d799f9
[  526.807348][T10399] RDX: 0000000000000000 RSI: 00000000400448cb RDI: 0000000000000007
[  526.810631][T10399] RBP: 00007fae82de78ee R08: 0000000000000000 R09: 0000000000000000
[  526.814090][T10399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  526.817996][T10399] R13: 0000000000000000 R14: 00007fae82f15f80 R15: 00007fffee6cde38
[  526.822032][T10399]  </TASK>
[  526.824487][T10399] Kernel Offset: disabled
[  526.826423][T10399] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:46:46  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000e520 RBX=0000000000000001 RCX=ffffc90007a92000 RDX=0000000000040000
RSI=ffffffff816b685c RDI=0000000000000001 RBP=000000000000001b RSP=ffffc900033f7778
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=000000003a475542
R12=0000000000000000 R13=ffff88801aa80000 R14=ffffffff8d68237f R15=ffffc900033f77f8
RIP=ffffffff816b685e RFL=00000083 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fae83b576c0 ffffffff 00c00000
GS =0000 ffff88806b000000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000001b2cb17ff8 CR3=000000001f218000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffff800 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b30485f70 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b2f7e86e4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b2f7e86f1
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b2f7e86eb
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b2f7e86ff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b2f7e8785
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8b2f7e8863
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000302e63 64755f796d6d7564
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000002 RBX=0000000000000002 RCX=0000000000000007 RDX=0000000000000001
RSI=0000000000000005 RDI=ffff8880232faf91 RBP=0000000000000001 RSP=ffffc9000615f8c8
R8 =0000000000000000 R9 =fffffbfff28c5af5 R10=ffffffff9462d7af R11=0000000000000000
R12=ffff8880232faf69 R13=ffff8880232faf70 R14=dffffc0000000000 R15=ffff8880232fa440
RIP=ffffffff81682c7d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b100000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007faf1a9282ba CR3=0000000029faa000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000004 Opmask01=0000000000000000 Opmask02=00000000fffffdff Opmask03=2040000404420020
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055e25f6b19f0 000055e25f6b68c0
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055e25f6b19f0 000055e25f6b68c0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737373 7373737373737373
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffff00000000ff
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff0000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffff00000000ff
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 431b1cedd00ff436 73732694723dec07
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737372a2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73202c297325286b 636f6c66206f7420 656c62616e55006e 6f69746974726170
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c322c312c306c2c 346d61722c30462c 32432c3143003935 3d5145534b534944
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 110f110c110d5111 09505c4f110d4611 0f43110c43000408 005145534b534944
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30686f9ea37c8745 000000055e25f694 0000000000000131 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30686f9ea37c8745 000055e7014edb74 0000000000000091 000000000000302e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f573a7f1c50 00007f573a7f1c50 0000000000000161 0000003177617264
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7d777b7f7f6f7f77 7f7f7b7f777f6f7f 3f7f3f7f357f777f 757d7f1f1f1f5f7f
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3c3a3a26323c3a3a 264e393a3a264839 3a3a264b393a3a26 32393a3a263d393a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 303339323d494d00 30383100304f4a41 4d00632f626d623d 453d414554454400
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030303233303000 302d3000303d4a41 4900412f4f2d003d 453d414548440000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff84fe6470 RDI=ffffffff9519f6a0 RBP=ffffffff9519f660 RSP=ffffc90000aa6538
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff2a33f26 R15=dffffc0000000000
RIP=ffffffff84fe6497 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b200000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c430ca2 CR3=0000000040f46000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffffc00 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f59a030df70 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e86e4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e86f1
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e86eb
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e86ff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e8785
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e8863
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003369 64696d2f7665642f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000104a 474a4e0c5546470c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffff88802ac5ecf8 RCX=ffffffff89325d17 RDX=ffff88802180c880
RSI=0000000000000000 RDI=0000000000000005 RBP=dffffc0000000000 RSP=ffffc900037e7b98
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffc900037e7c38 R13=000000000000bd9f R14=0000000000000001 R15=0000000000000000
RIP=ffffffff89325cc0 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806b300000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c42df3a CR3=000000005a9c4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080000800 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff2b302410 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e86e4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e86f1
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e86eb
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e86ff
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e8785
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f599f5e8863
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000