last executing test programs:

28.057273709s ago: executing program 4 (id=2618):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f00000002c0)={[{@dioread_lock}, {@usrquota}, {@errors_continue}, {@init_itable}, {@grpquota}, {@grpjquota, 0x2e}, {@resuid}, {@errors_remount}, {@nolazytime}, {@nomblk_io_submit}], [], 0x2c}, 0x84, 0x4ac, &(0x7f0000000740)="$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")
syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f00000000c0)='./file0/file0\x00', 0x0, &(0x7f0000000440)={[{@utf8}, {@cruft}, {@mode={'mode', 0x3d, 0x800}}, {@nocompress}, {@session={'session', 0x3d, 0x13}}, {@sbsector}, {@map_normal}, {@uid}, {@uid}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@check_relaxed}, {@map_normal}, {@unhide}], [], 0x2c}, 0x5, 0x9cb, &(0x7f0000000e00)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x9101a, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000002100)='./file0/file0\x00', 0x0, 0x2187017, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004400)={0x2020}, 0x2020)

27.599854292s ago: executing program 4 (id=2622):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000080), 0x4)
bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "0f03c8c7e8da000000000000ffffff017f000000cce67e1d0000e565aa9a9d32c7627ffe7a54cdbd77b3000000000000000000060000000000000000deff00", 0x1}, 0x60)
getsockopt$nfc_llcp(r0, 0x118, 0x0, &(0x7f0000000140)=""/192, 0x20000057)

26.827773928s ago: executing program 4 (id=2627):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r1}, 0x10)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000100)={@in={{0x2, 0x4e23, @remote}}, 0x0, 0x0, 0x0, 0x0, "3c982b2bf01cf3cba642d926a9b478c7242d59b62119a4bb9c8fc8ab386ef7c15e29bdd5c551445dd5a59b3d8ce81fc117f007a585e6f6a140426acae47f8e35d4a94ca47759f310808440717dad795d"}, 0xd8)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003b80)=[{{0x0, 0xd, &(0x7f00000003c0)=[{&(0x7f00000000c0)="e6", 0x2}], 0x1}, 0xff03}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000440)='&', 0x23fff}], 0x1}}], 0x4000070, 0x8000)
recvmmsg(0xffffffffffffffff, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000400)=""/34, 0x22}, {&(0x7f0000000480)=""/160, 0xa0}], 0x2}}, {{&(0x7f0000000540)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000380)=""/8, 0x8}, {&(0x7f0000000ec0)=""/253, 0xfd}, {&(0x7f0000000780)=""/164, 0xa4}, {&(0x7f0000000840)=""/209, 0xd1}, {&(0x7f00000006c0)=""/3, 0x3}, {0x0}, {&(0x7f0000000a00)=""/79, 0x4f}, {&(0x7f0000000a80)=""/196, 0xc4}, {&(0x7f0000000b80)=""/252, 0xfc}], 0x9}}, {{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000d40)=""/129, 0x81}], 0x1}}, {{&(0x7f00000005c0)=@caif=@rfm, 0x80, &(0x7f0000000640)}}, {{0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000001140)=""/206, 0xce}, {0x0}, {&(0x7f0000001440)=""/233, 0xe9}], 0x3, &(0x7f00000015c0)=""/246, 0xf6}}, {{0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f00000017c0)=""/202, 0xca}], 0x1}}], 0x6, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f00000000c0)={@dev}, 0x20)
r5 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
preadv(r5, &(0x7f0000000040)=[{&(0x7f00000001c0)=""/70, 0x46}], 0x1, 0x3, 0x0)

8.852926962s ago: executing program 4 (id=2628):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file0\x00', 0xc, &(0x7f00000000c0)=ANY=[], 0x1, 0x25d, &(0x7f0000000c00)="$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")
open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002ac0)=ANY=[@ANYBLOB="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"/3593], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r4, &(0x7f0000005240), 0x264e33, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./bus\x00', 0x8, &(0x7f0000000000), 0x1, 0x55a3, &(0x7f0000005680)="$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")

3.469916208s ago: executing program 4 (id=2726):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000003c0)="fe", 0x1}], 0x1}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x3, 0x0, 0x0, 0x7fff0000}]})
syz_usb_connect(0x0, 0x2c9, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000e69ba3207c2c1205d45d000000010902b7020100000000090474000affffff0009050f100004098100662366b51c849f076b5b5b25fb80f278f30bb7ef2b628f62479b817451d37db2c74fcb02b1cfadbab37943f4bcfab008f986d10a1540dee08adb9893ce9ea50231962215e018a3703a22d620b4373b14b6bf7556343d7a0470c16027a1b3f1eef9d424e4222d090508032000023f02"], 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000080))

2.629480441s ago: executing program 2 (id=2738):
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x3)
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000300)={'ip6gre0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback={0xfec0ffff00000000}, 0x0, 0x0, 0x0, 0x3}})

2.583032157s ago: executing program 2 (id=2739):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x184}, 0x1, 0x0, 0x0, 0x4}, 0x0)
socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000080)={0x5}, 0x10)
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ffb000/0x3000)=nil)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000300850000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00')
open$dir(0x0, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file0/..\x00', &(0x7f00000000c0)={0x0, 0x0, 0x8}, 0x18)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0xee01, r4, 0xffffffffffffffff)
mlock(&(0x7f0000ffe000/0x1000)=nil, 0xffffffffdf001fff)
add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xd, &(0x7f0000000240)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x2f}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}}]}, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r6, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0xd, 0x0, &(0x7f0000000900)="e02742e8b2a92625375bba7d08", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.58250487s ago: executing program 2 (id=2740):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x231, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x2, 0x0, {0x9}}}]}}]}}, 0x0)

2.349425024s ago: executing program 0 (id=2742):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000280)={0x0, 0x25, &(0x7f0000000040)={&(0x7f0000000580)={0x5c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER, @CTA_SEQADJ_OFFSET_AFTER={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}]}, @CTA_MARK={0x8}]}, 0x5c}}, 0x0)

2.275690648s ago: executing program 1 (id=2744):
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000500)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"])
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008b04"])

2.273910165s ago: executing program 0 (id=2745):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.236858532s ago: executing program 0 (id=2746):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x8940, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x2)

2.211497505s ago: executing program 0 (id=2747):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x21, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
read(r1, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x335})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x7, 0x4, 0x4}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r2}, &(0x7f0000000140), &(0x7f0000000100), 0x2}, 0x20)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f0000000140))
getpid()
r3 = socket(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
eventfd2(0x0, 0x0)
write$eventfd(0xffffffffffffffff, 0x0, 0x8)
syz_emit_ethernet(0x0, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x1c, 0x2, 0x3, 0x5, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8}]}, 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r4, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_LIMIT={0x8}, @TCA_FQ_PIE_FLOWS={0x8, 0x2, 0xe594}]}}]}, 0x44}}, 0x0)

2.187978122s ago: executing program 1 (id=2748):
mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x0, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="000000000021000024001280090001007866726d0000000014000280040003"], 0x44}}, 0x0)

2.174224028s ago: executing program 1 (id=2749):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000200)={'ip6gre0\x00', &(0x7f00000001c0)=@ethtool_sset_info})

2.159132439s ago: executing program 1 (id=2750):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f00000000c0)="2e2e64660fe3090f01c5660f71f1000f40d1660ff6c5360f381d340f08b895000f00d0660f71d6a6360f2063", 0x2c}], 0x1, 0x0, 0x0, 0x0)
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4c"], 0x15)
r2 = dup(r1)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x7})
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="08010000ff0000"], 0x138)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

2.087929798s ago: executing program 1 (id=2751):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x36, 0x4, 0x0, 0x0, 0xd8, 0x64, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote, 0x4}, {@multicast2}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2, 0x8}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xda, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=@newtaction={0x44c, 0x30, 0x0, 0x0, 0x0, {}, [{0x438, 0x1, [@m_police={0x434, 0x0, 0x0, 0x0, {{0xb}, {0x408, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404}]]}, {0x4}, {0xc, 0xa}, {0xc}}}]}]}, 0x44c}}, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.909964962s ago: executing program 1 (id=2752):
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[], 0x14}}, 0x0)
r2 = socket(0x11, 0xa, 0x0)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0x7)
sendmsg$can_bcm(r2, &(0x7f0000000140)={&(0x7f0000000000), 0x10, &(0x7f0000000080)={0x0}, 0x8}, 0x0)

1.601333433s ago: executing program 3 (id=2753):
syz_read_part_table(0x616, &(0x7f0000001100)="$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")

1.479982676s ago: executing program 3 (id=2754):
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$FS_IOC_SETFSLABEL(r0, 0x8948, &(0x7f0000000000)="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")

1.396425925s ago: executing program 3 (id=2755):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
sendmmsg$inet(r0, &(0x7f00000057c0)=[{{&(0x7f0000000680)={0x2, 0x0, @multicast1}, 0x10, 0x0}}, {{&(0x7f0000002d80)={0x2, 0x0, @empty}, 0x10, &(0x7f0000003ec0)=[{&(0x7f0000002dc0)="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", 0x2a1}], 0x1}}], 0x2, 0x0)

1.364098548s ago: executing program 3 (id=2756):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000280)={0x0, 0x25, &(0x7f0000000040)={&(0x7f0000000580)={0x5c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER, @CTA_SEQADJ_OFFSET_AFTER={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}]}, @CTA_MARK={0x8}]}, 0x5c}}, 0x0)

1.336746006s ago: executing program 0 (id=2757):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8c3}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r3, &(0x7f0000000180), &(0x7f00000002c0)=@udp6, 0x2}, 0x20)

1.147969002s ago: executing program 2 (id=2758):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x88, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

1.130611746s ago: executing program 3 (id=2759):
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000500)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"])
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000008b04"])

678.701775ms ago: executing program 2 (id=2760):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000200)={'ip6gre0\x00', &(0x7f00000001c0)=@ethtool_sset_info})

543.187533ms ago: executing program 3 (id=2761):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401001186eee2000905821704"], 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000000)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x0}, 0x90)
r3 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r3, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}})
io_uring_enter(r0, 0x5b43, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@ptr={0x0, 0x0, 0x0, 0x2, 0x1}]}}, 0x0, 0x26, 0x0, 0x1}, 0x20)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)

212.146582ms ago: executing program 2 (id=2762):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendto$inet(r5, 0x0, 0x0, 0x24048081, 0x0, 0x0)
connect$inet(r5, &(0x7f0000000140)={0x2, 0x0, @empty}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
chdir(0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
r6 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
pipe2$watch_queue(&(0x7f00000000c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r7, 0x0)
keyctl$clear(0x3, r6)

159.981818ms ago: executing program 4 (id=2763):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ns\x00')
fchdir(r0)
syz_clone(0x0, 0x0, 0x50, 0x0, 0x0, &(0x7f00000001c0)="92")
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x0, 0x0, 0x0, 0x2)

0s ago: executing program 0 (id=2764):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000480)='v', 0x1}], 0x1, &(0x7f00000001c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r2]}}], 0x30}, 0x0)
close(r2)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)}, 0x0)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000001c0)=0x100000, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001240))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket$igmp(0x2, 0x3, 0x2)
shutdown(r3, 0x1)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
syz_emit_ethernet(0x6a, &(0x7f0000000640)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x34, 0x3c, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, {[@hopopts={0x0, 0x3, '\x00', [@calipso={0x7, 0x8}, @calipso={0x7, 0x8}, @ra]}], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000540)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f0000000040), 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000200)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x60, 0x2, 0x1, 0x0, 0xd0, 0x4, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x1, "e3704c3f"}, {0x5, 0x24, 0x0, 0xfffb}, {0xd, 0x24, 0xf, 0x1, 0x2, 0x2, 0xffff, 0x6}, {0x6, 0x24, 0x1a, 0x8001}}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x8, 0x5, 0x40}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x8, 0x7, 0x9, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x3c, 0x9, 0x4}}}}}}}]}}, &(0x7f0000000580)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x300, 0x2, 0xda, 0x3, 0x20, 0x5}, 0x13, &(0x7f0000000500)={0x5, 0xf, 0x13, 0x2, [@wireless={0xb, 0x10, 0x1, 0x2, 0xa8, 0x96, 0x4, 0x62, 0x8}, @ptm_cap={0x3}]}, 0x5, [{0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x405}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x80e}}, {0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x437}}, {0xd5, &(0x7f00000003c0)=@string={0xd5, 0x3, "051526a3f842f8e8372d1eb18dd62d877934e143b5e0914b65cb09b836161304389a83a31eb4329567e6d61909728758dee17fcaa41a0d7c6d27b29efc66af8df90acb34d85fa15a9ae27d2e784feeb14f890043ff9547bfea5a5e450d8cc7d33cfcbe781cd431b78d3857383394278de8f8b5044f7eec69403f5da7fd182b7f13a3cb6c5e55c5e54b89cfbb8b0238fc1882620e15d9f26934a3b11cc8b41cca18abc57c951f8a1b14994cc6ae59d3a9243ad971f1c4f4ce92747fdfc71b0698acac04a702f87797a1098f600f00a468375f5b"}}, {0x21, &(0x7f00000004c0)=@string={0x21, 0x3, "204b39ca3a29a0c7f324966354ba4424a7b101cae26637dedf89df6b24ebed"}}]})
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002000128008000100767469"], 0x40}}, 0x0)

kernel console output (not intermixed with test programs):

 with driver sonixj failed with error -71
[  248.365515][ T7421] usb 3-1: USB disconnect, device number 15
[  248.459046][T10086] input: syz0 as /devices/virtual/input/input13
[  248.598797][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  248.618437][ T5150] kernel write not supported for file bpf-prog (pid: 5150 comm: kworker/1:5)
[  248.697635][T10102] loop3: detected capacity change from 0 to 4096
[  248.705635][T10102] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  248.726682][T10102] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  248.757744][   T29] audit: type=1800 audit(1854756062.255:508): pid=10102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1551" name="bus" dev="loop3" ino=0 res=0 errno=0
[  248.848784][ T7693] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  249.059329][ T7693] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  249.078570][ T7693] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.120100][ T7693] usb 1-1: config 0 descriptor??
[  249.234006][ T5101] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  249.245703][ T5101] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  249.253223][ T5101] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  249.271210][ T5101] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  249.279532][ T5101] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  249.290060][ T5101] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  249.400946][ T2448] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.518478][ T2448] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.577451][ T5150] kernel write not supported for file bpf-prog (pid: 5150 comm: kworker/1:5)
[  249.618315][ T2448] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.703506][ T2448] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.737081][ T7693] [drm] vendor descriptor length:c3 data:3e 0f bd 00 00 00 00 00 00 00 80
[  249.752262][ T7693] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  249.883579][T10116] chnl_net:caif_netlink_parms(): no params data found
[  249.907799][ T2448] bridge_slave_1: left allmulticast mode
[  249.917847][ T2448] bridge_slave_1: left promiscuous mode
[  249.935447][ T2448] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.955531][ T7693] [drm] Initialized udl 0.0.1 for 1-1:0.0 on minor 2
[  249.967407][ T2448] bridge_slave_0: left allmulticast mode
[  249.973565][ T7693] [drm] Initialized udl on minor 2
[  249.975983][ T2448] bridge_slave_0: left promiscuous mode
[  249.984629][ T2448] bridge0: port 1(bridge_slave_0) entered disabled state
[  250.111387][ T5150] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  250.142934][ T5101] Bluetooth: hci2: unexpected event for opcode 0x2012
[  250.152509][ T7693] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffe0
[  250.160732][ T7693] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[  250.173506][   T25] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffe0
[  250.239747][ T2448] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  250.250984][ T2448] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  250.261564][ T2448] bond0 (unregistering): Released all slaves
[  250.310496][ T5150] usb 2-1: New USB device found, idVendor=0c45, idProduct=614a, bcdDevice=e6.af
[  250.321627][ T5150] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.333001][ T5150] usb 2-1: config 0 descriptor??
[  250.373745][T10116] bridge0: port 1(bridge_slave_0) entered blocking state
[  250.381324][T10116] bridge0: port 1(bridge_slave_0) entered disabled state
[  250.388978][T10116] bridge_slave_0: entered allmulticast mode
[  250.396128][T10116] bridge_slave_0: entered promiscuous mode
[  250.417249][T10116] bridge0: port 2(bridge_slave_1) entered blocking state
[  250.424506][T10116] bridge0: port 2(bridge_slave_1) entered disabled state
[  250.432265][T10116] bridge_slave_1: entered allmulticast mode
[  250.443863][T10116] bridge_slave_1: entered promiscuous mode
[  250.490119][T10116] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  250.507591][T10116] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  250.544997][T10116] team0: Port device team_slave_0 added
[  250.566073][ T2448] hsr_slave_0: left promiscuous mode
[  250.573549][ T2448] hsr_slave_1: left promiscuous mode
[  250.582076][ T2448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  250.594416][ T2448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  250.603381][ T2448] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  250.611182][ T2448] batman_adv: batadv0: Removing interface: batadv_slave_1
[  250.616515][ T5150] usb 2-1: string descriptor 0 read error: -71
[  250.627721][ T2448] veth1_macvtap: left promiscuous mode
[  250.630276][ T5150] gspca_main: sonixj-2.14.0 probing 0c45:614a
[  250.633401][ T2448] veth0_macvtap: left promiscuous mode
[  250.644500][ T5150] gspca_sonixj: reg_w1 err -71
[  250.646086][ T2448] veth1_vlan: left promiscuous mode
[  250.649897][ T5150] sonixj 2-1:0.0: probe with driver sonixj failed with error -71
[  250.655255][ T2448] veth0_vlan: left promiscuous mode
[  250.667673][ T5150] usb 2-1: USB disconnect, device number 16
[  250.679241][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  250.718467][   T25] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  250.741966][   T25] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[  250.751102][ T7687] usb 1-1: USB disconnect, device number 5
[  250.863837][ T2448] team0 (unregistering): Port device team_slave_1 removed
[  250.877421][ T2448] team0 (unregistering): Port device team_slave_0 removed
[  250.951273][T10116] team0: Port device team_slave_1 added
[  251.012752][T10116] batman_adv: batadv0: Adding interface: batadv_slave_0
[  251.020092][T10116] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.046329][T10116] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  251.066703][T10116] batman_adv: batadv0: Adding interface: batadv_slave_1
[  251.074423][T10116] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.106430][T10116] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  251.152564][T10116] hsr_slave_0: entered promiscuous mode
[  251.165740][T10116] hsr_slave_1: entered promiscuous mode
[  251.175438][T10116] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  251.184419][T10159] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  251.190083][T10116] Cannot create hsr debugfs directory
[  251.293610][ T5150] kernel write not supported for file bpf-prog (pid: 5150 comm: kworker/1:5)
[  251.321099][ T5101] Bluetooth: hci1: command tx timeout
[  252.405387][T10116] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  252.422431][T10116] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  252.442138][T10116] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  252.491864][T10116] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  252.507579][T10191] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  252.694999][T10116] 8021q: adding VLAN 0 to HW filter on device bond0
[  252.715193][T10116] 8021q: adding VLAN 0 to HW filter on device team0
[  252.740151][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  252.747299][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  252.758757][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  252.765138][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  252.773641][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  252.864452][T10199] Bluetooth: MGMT ver 1.23
[  253.009520][T10116] 8021q: adding VLAN 0 to HW filter on device batadv0
[  253.063447][T10116] veth0_vlan: entered promiscuous mode
[  253.104122][T10116] veth1_vlan: entered promiscuous mode
[  253.157358][T10116] veth0_macvtap: entered promiscuous mode
[  253.167546][T10116] veth1_macvtap: entered promiscuous mode
[  253.195988][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  253.228986][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.240190][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  253.251684][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.261787][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  253.272657][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.282966][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  253.295246][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.306013][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  253.316557][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.328032][T10116] batman_adv: batadv0: Interface activated: batadv_slave_0
[  253.347254][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.361687][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.373194][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.384266][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.397199][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.408842][ T5101] Bluetooth: hci1: command tx timeout
[  253.442533][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.469720][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.483523][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.488561][T10242] loop4: detected capacity change from 0 to 8192
[  253.503027][T10116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.518630][T10116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.563707][T10116] batman_adv: batadv0: Interface activated: batadv_slave_1
[  253.581298][T10244] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1603'.
[  253.614520][T10116] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  253.626610][T10116] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  253.638591][T10116] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  253.655144][T10116] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  253.809538][ T1093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  253.848190][ T1093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  253.917783][ T2841] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  253.947576][ T2841] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  254.209570][ T5101] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  254.218377][ T5101] Bluetooth: hci2: Injecting HCI hardware error event
[  254.229625][ T5115] Bluetooth: hci2: hardware error 0x00
[  254.452872][   T29] audit: type=1800 audit(1854756067.945:509): pid=10276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1611" name="/" dev="fuse" ino=1 res=0 errno=0
[  254.730623][T10287] fuse: Bad value for 'fd'
[  254.825068][T10287] tmpfs: Unknown parameter 'si*�5Á]½HµÂxXÉBÄlbH8l~EøËze'
[  254.838907][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  255.062791][T10293] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  255.225457][T10301] overlayfs: failed to create directory ./bus/work (errno: 28); mounting read-only
[  255.237584][T10301] overlayfs: failed to set uuid (/file1, err=-28); falling back to uuid=null.
[  255.479270][ T5101] Bluetooth: hci1: command tx timeout
[  255.510073][T10318] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  255.580696][ T5101] Bluetooth: Unknown BR/EDR signaling command 0x0e
[  255.588173][ T5101] Bluetooth: Wrong link type (-22)
[  255.658306][T10331] overlayfs: failed to create directory ./bus/work (errno: 28); mounting read-only
[  255.668400][T10331] overlayfs: failed to set uuid (/file1, err=-28); falling back to uuid=null.
[  256.189540][ T1244] ieee802154 phy0 wpan0: encryption failed: -22
[  256.198110][ T1244] ieee802154 phy1 wpan1: encryption failed: -22
[  256.359114][ T5115] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  256.545588][T10357] fuse: Bad value for 'fd'
[  256.556634][ T5115] Bluetooth: Unknown BR/EDR signaling command 0x0e
[  256.563613][ T5115] Bluetooth: Wrong link type (-22)
[  256.918752][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  257.235491][T10366] overlayfs: failed to create directory ./bus/work (errno: 28); mounting read-only
[  257.246270][T10366] overlayfs: failed to set uuid (/file1, err=-28); falling back to uuid=null.
[  257.333425][T10357] tmpfs: Unknown parameter 'si*�5Á]½HµÂxXÉBÄlbH8l~EøËze'
[  258.092181][ T5115] Bluetooth: hci1: command tx timeout
[  258.998763][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  260.379425][   T29] audit: type=1800 audit(1854756073.845:510): pid=10427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1667" name="/" dev="fuse" ino=1 res=0 errno=0
[  260.908583][ T7424] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  261.078804][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  261.165873][ T7424] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  261.175355][ T7424] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.187622][ T7424] usb 2-1: config 0 descriptor??
[  261.743269][T10470] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1687'.
[  261.752603][T10470] 0ªX¹¦Dö»: renamed from gretap0 (while UP)
[  261.763583][T10470] 0ªX¹¦Dö»: entered allmulticast mode
[  262.104629][T10473] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1686'.
[  262.135443][ T7424] [drm] vendor descriptor length:c3 data:3e 0f bd 00 00 00 00 00 00 00 80
[  262.597094][ T7424] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  262.645983][ T7424] [drm] Initialized udl 0.0.1 for 2-1:0.0 on minor 2
[  262.674126][ T7424] [drm] Initialized udl on minor 2
[  262.703085][ T7424] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffe0
[  262.717790][ T7424] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[  262.726653][ T7421] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffe0
[  262.736705][ T7421] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[  263.158805][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  264.792900][T10482] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  265.097188][ T7693] usb 2-1: USB disconnect, device number 17
[  265.238769][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  266.226520][T10539] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  266.562104][T10527] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1700'.
[  266.912350][ T5115] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  266.922331][ T5115] Bluetooth: hci3: Injecting HCI hardware error event
[  266.932607][ T5115] Bluetooth: hci3: hardware error 0x00
[  267.318822][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  267.593417][   T29] audit: type=1800 audit(1854756081.085:511): pid=10575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1719" name="/" dev="fuse" ino=1 res=0 errno=0
[  267.693198][T10572] loop7: detected capacity change from 0 to 16384
[  267.769555][T10570] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  268.999028][ T5115] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  269.398829][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  269.568968][ T7424] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  270.010444][T10594] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  270.141791][ T7424] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  270.142559][   T29] audit: type=1326 audit(1854756083.645:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.152847][ T7424] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  270.190971][ T7424] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  270.193911][   T29] audit: type=1326 audit(1854756083.645:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.208148][ T7424] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  270.232928][   T29] audit: type=1326 audit(1854756083.695:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.240182][ T7424] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  270.268385][   T29] audit: type=1326 audit(1854756083.695:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.295630][   T29] audit: type=1326 audit(1854756083.695:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.341844][ T7424] usb 3-1: config 0 descriptor??
[  270.347054][   T29] audit: type=1326 audit(1854756083.735:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.384047][   T29] audit: type=1326 audit(1854756083.735:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.412023][   T29] audit: type=1326 audit(1854756083.735:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.442652][T10647] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1746'.
[  270.452222][T10648] loop4: detected capacity change from 0 to 512
[  270.465030][   T29] audit: type=1326 audit(1854756083.845:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.4.1744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0ee1d75bd9 code=0x7ffc0000
[  270.495258][T10648] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2234: inode #12: comm syz.4.1748: corrupted in-inode xattr: invalid ea_ino
[  270.511007][T10648] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz.4.1748: couldn't read orphan inode 12 (err -117)
[  270.524416][T10648] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  270.667006][T10655] binder: 10654:10655 ioctl 1 20001200 returned -22
[  270.696084][T10655] netlink: 'syz.0.1750': attribute type 12 has an invalid length.
[  271.277497][ T7424] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  271.349957][T10655] Bluetooth: MGMT ver 1.23
[  271.366753][ T7424] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  271.367195][ T7498] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.411295][ T7424] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  271.436767][ T7424] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  271.442643][T10665] fuse: Bad value for 'fd'
[  271.479163][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  271.653523][ T7424] usb 3-1: USB disconnect, device number 16
[  271.684738][T10660] tmpfs: Unknown parameter 'si*�5Á]½HµÂxXÉBÄlbH8l~EøËze'
[  272.318918][T10671] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  272.368449][T10699] binder: 10695:10699 ioctl 1 20001200 returned -22
[  272.386750][T10700] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1763'.
[  272.398824][T10699] netlink: 'syz.1.1764': attribute type 12 has an invalid length.
[  273.558799][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  275.638824][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  277.718841][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  279.799833][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  281.878766][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  283.114587][T10748] team0: Device sit1 is of different type
[  283.719443][T10767] fuse: Bad value for 'fd'
[  283.851473][T10759] tmpfs: Unknown parameter 'si*�5Á]½HµÂxXÉBÄlbH8l~EøËze'
[  283.958801][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  284.460978][T10818] fuse: Bad value for 'fd'
[  284.594368][T10813] tmpfs: Unknown parameter 'si*�5Á]½HµÂxXÉBÄlbH8l~EøËze'
[  285.583720][   T29] kauditd_printk_skb: 12 callbacks suppressed
[  285.583738][   T29] audit: type=1326 audit(1854756099.085:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10843 comm="syz.4.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ee1d75bd9 code=0x7fc00000
[  285.800705][   T29] audit: type=1326 audit(1854756099.295:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10843 comm="syz.4.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0ee1d75bd9 code=0x7fc00000
[  285.827250][T10844] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  286.038766][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  286.068756][ T7421] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  286.899081][ T7421] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  286.917336][ T7421] usb 2-1: New USB device found, idVendor=0582, idProduct=007d, bcdDevice=3f.99
[  286.931285][ T7421] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.944114][ T7421] usb 2-1: config 0 descriptor??
[  286.953864][ T7421] usb 2-1: interface 1 not found
[  286.983007][T10892] fuse: Bad value for 'fd'
[  287.063846][T10892] tmpfs: Unknown parameter 'si*�5Á]½HµÂxXÉBÄlbH8l~EøËze'
[  287.513244][ T7693] usb 2-1: USB disconnect, device number 18
[  287.711249][ T5115] Bluetooth: Unknown BR/EDR signaling command 0x10
[  287.718056][ T5115] Bluetooth: Wrong link type (-22)
[  287.737443][ T5115] Bluetooth: Unknown BR/EDR signaling command 0x0d
[  287.744189][ T5115] Bluetooth: Wrong link type (-22)
[  287.789850][ T5115] Bluetooth: Unknown BR/EDR signaling command 0x10
[  287.796451][ T5115] Bluetooth: Wrong link type (-22)
[  287.801911][ T5115] Bluetooth: Unknown BR/EDR signaling command 0x0d
[  287.809688][ T5115] Bluetooth: Wrong link type (-22)
[  287.817091][ T5115] Bluetooth: Unknown BR/EDR signaling command 0x11
[  287.819680][T10912] netdevsim netdevsim2: Direct firmware load for ng failed with error -2
[  287.823719][ T5115] Bluetooth: Wrong link type (-22)
[  287.841902][T10912] netdevsim netdevsim2: Falling back to sysfs fallback for: ng
[  287.922112][   T29] audit: type=1326 audit(1854756101.425:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10901 comm="syz.4.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ee1d75bd9 code=0x7fc00000
[  287.968376][T10897] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  288.119095][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  288.198777][   T29] audit: type=1326 audit(1854756101.675:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10901 comm="syz.4.1845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0ee1d75bd9 code=0x7fc00000
[  288.837286][T10935] loop4: detected capacity change from 0 to 1024
[  288.924599][T10946] netlink: 'syz.0.1861': attribute type 27 has an invalid length.
[  289.058029][T10946] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.065677][T10946] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.199311][    T8] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  289.210069][T10946] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  289.225941][T10946] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  289.347274][T10946] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  289.358044][T10946] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  289.368527][T10946] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  289.383784][T10946] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  289.397846][    T8] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  289.415575][    T8] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  289.419676][ T7691] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  289.438172][    T8] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  289.459940][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.682824][    T8] aiptek 3-1:17.0: Aiptek using 400 ms programming speed
[  289.692434][    T8] input: Aiptek as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:17.0/input/input14
[  289.704176][    T8] input: failed to attach handler kbd to device input14, error: -5
[  289.718961][ T5115] Bluetooth: hci1: command 0x0405 tx timeout
[  289.729853][    T8] usb 3-1: USB disconnect, device number 17
[  289.765696][ T7691] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  289.775994][ T7691] usb 2-1: New USB device found, idVendor=0582, idProduct=007d, bcdDevice=3f.99
[  289.785308][ T7691] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.794699][ T7691] usb 2-1: config 0 descriptor??
[  289.803607][ T7691] usb 2-1: interface 1 not found
[  290.198776][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  290.350206][ T5152] usb 2-1: USB disconnect, device number 19
[  290.833125][T10986] kvm_pr_unimpl_wrmsr: 92 callbacks suppressed
[  290.833146][T10986] kvm: kvm [10985]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x5527000800
[  290.853565][T10986] kvm: kvm [10985]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x7c27000000
[  292.015404][T11008] loop4: detected capacity change from 0 to 1024
[  292.052046][T11008] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c118, mo2=0002]
[  292.068043][T11008] System zones: 0-1, 3-12
[  292.085570][T11008] EXT4-fs (loop4): mounted filesystem 000000fe-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  292.278992][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  292.630923][ T5115] Bluetooth: Wrong link type (-71)
[  292.636485][ T5115] Bluetooth: hci4: link tx timeout
[  292.641672][ T5115] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  292.666389][T11024] ptrace attach of "./syz-executor exec"[9595] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  292.667953][T11024] 
@ÿ: renamed from veth0_vlan (while UP)
[  292.928185][ T7498] EXT4-fs (loop4): unmounting filesystem 000000fe-0000-0000-0000-000000000000.
[  293.582809][   T29] audit: type=1326 audit(1854756107.085:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11049 comm="syz.3.1898" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x0
[  293.642942][T11053] loop4: detected capacity change from 0 to 512
[  293.676919][T11053] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  293.696990][T11053] EXT4-fs (loop4): 1 truncate cleaned up
[  293.716530][T11053] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.794789][T11065] ptrace attach of "./syz-executor exec"[10116] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
[  293.804561][T11065] 
@ÿ: renamed from veth0_vlan (while UP)
[  294.358789][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  294.627597][ T7498] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.678883][ T5101] Bluetooth: hci4: command 0x0406 tx timeout
[  295.073611][T11078] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  295.086963][ T5115] Bluetooth: hci4: unexpected event for opcode 0x100c
[  295.256034][T11106] kvm: kvm [11105]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x5527000800
[  295.270595][T11106] kvm: kvm [11105]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x7c27000000
[  296.141850][T11133] loop4: detected capacity change from 0 to 512
[  296.176271][T11133] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.189812][T11133] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  296.263314][ T7498] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.348942][ T7696] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  296.386423][T11157] trusted_key: encrypted_key: master key parameter is missing
[  296.438854][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  296.453822][T11162] loop4: detected capacity change from 0 to 1024
[  296.476507][T11162] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  296.501123][T11162] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  296.524091][T11162] JBD2: no valid journal superblock found
[  296.527562][T11165] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  296.532272][T11162] EXT4-fs (loop4): Could not load journal inode
[  296.558137][ T7696] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.571386][ T7696] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.607608][ T7696] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  296.644571][ T7696] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  296.679213][ T7696] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.689854][ T7696] usb 4-1: config 0 descriptor??
[  296.839994][T11189] trusted_key: encrypted_key: master key parameter is missing
[  296.934747][T11195] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  297.079405][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  297.106170][ T7696] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  297.133054][ T7696] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  297.142986][ T7696] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  297.153566][ T7696] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  297.348443][T11219] trusted_key: encrypted_key: master key parameter is missing
[  297.510861][ T7696] usb 4-1: USB disconnect, device number 17
[  297.713317][   T29] audit: type=1326 audit(1854756111.215:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11226 comm="syz.4.1970" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0ee1d75bd9 code=0x0
[  298.201805][T11248] trusted_key: encrypted_key: master key parameter is missing
[  298.518764][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  299.018866][ T7687] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  299.065540][   T29] audit: type=1326 audit(1854756112.565:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11294 comm="syz.4.1997" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0ee1d75bd9 code=0x0
[  299.158803][ T5115] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  299.167225][ T5115] Bluetooth: hci4: Injecting HCI hardware error event
[  299.174210][ T5115] Bluetooth: hci4: hardware error 0x00
[  299.210026][ T7687] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  299.225386][ T7687] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  299.237039][ T7687] usb 1-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  299.249603][ T7687] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.490739][ T7687] aiptek 1-1:17.0: Aiptek using 400 ms programming speed
[  299.515136][ T7687] input: Aiptek as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:17.0/input/input15
[  299.542164][ T7687] input: failed to attach handler kbd to device input15, error: -5
[  299.578043][ T7687] usb 1-1: USB disconnect, device number 6
[  299.650635][T11283] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  299.739670][T11314] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  300.251097][T11344] syz.2.2020[11344] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  300.251242][T11344] syz.2.2020[11344] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  300.598762][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  300.638856][ T7691] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  301.148770][ T7691] usb 3-1: Using ep0 maxpacket: 8
[  301.167594][ T7691] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  301.180710][ T7691] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.190195][ T7691] usb 3-1: Product: syz
[  301.194794][ T7691] usb 3-1: Manufacturer: syz
[  301.200327][ T7691] usb 3-1: SerialNumber: syz
[  301.246774][ T5115] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  301.272059][ T7691] usb 3-1: config 0 descriptor??
[  301.485689][ T7691] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  301.641726][T11340] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  301.688046][ T7691] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  301.703860][ T7691] usb 3-1: USB disconnect, device number 18
[  301.709984][ T7696] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  301.784900][T11386] input: syz1 as /devices/virtual/input/input16
[  301.902016][ T7696] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  301.916130][ T7696] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  301.926347][ T7696] usb 1-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  301.937285][ T7696] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.171888][ T7696] aiptek 1-1:17.0: Aiptek using 400 ms programming speed
[  302.181044][ T7696] input: Aiptek as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:17.0/input/input17
[  302.190359][ T7696] input: failed to attach handler kbd to device input17, error: -5
[  302.235089][ T7696] usb 1-1: USB disconnect, device number 7
[  302.246178][T11406] sd 0:0:1:0: PR command failed: 1026
[  302.271437][T11406] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  302.278289][T11406] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  302.380264][T11413] input: syz1 as /devices/virtual/input/input18
[  302.678900][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  302.772029][T11448] sp0: Synchronizing with TNC
[  302.797538][T11448] sp0: Found TNC
[  302.956205][T11453] input: syz1 as /devices/virtual/input/input19
[  303.261676][T11467] syz.0.2067[11467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  303.261965][T11467] syz.0.2067[11467] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  303.496101][T11479] sp0: Synchronizing with TNC
[  303.551539][T11479] sp0: Found TNC
[  304.040697][   T29] audit: type=1326 audit(1854756117.525:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.069579][   T29] audit: type=1326 audit(1854756117.525:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.134624][   T29] audit: type=1326 audit(1854756117.525:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.164386][   T29] audit: type=1326 audit(1854756117.535:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.223490][   T29] audit: type=1326 audit(1854756117.535:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.250170][   T29] audit: type=1326 audit(1854756117.535:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.369155][   T29] audit: type=1326 audit(1854756117.535:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.394587][   T29] audit: type=1326 audit(1854756117.535:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.418571][   T29] audit: type=1326 audit(1854756117.535:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.442701][   T29] audit: type=1326 audit(1854756117.535:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.604728][   T29] audit: type=1326 audit(1854756117.535:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11508 comm="syz.3.2086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  304.759303][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  305.353579][T11544] overlayfs: metacopy with no lower data found - abort lookup (/file0)
[  305.494272][T11535] loop4: detected capacity change from 0 to 32768
[  305.714987][T11556] netlink: 'syz.3.2103': attribute type 2 has an invalid length.
[  305.732573][T11556] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2103'.
[  306.671549][T11592] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2119'.
[  306.848810][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  307.240179][T11621] netlink: 'syz.1.2130': attribute type 2 has an invalid length.
[  307.248029][T11621] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2130'.
[  307.637802][T11641] tmpfs: Unknown parameter 'sysvgroups'
[  307.638404][ T2448] tipc: Subscription rejected, illegal request
[  307.903150][T11666] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.2149'.
[  307.950716][T11666] openvswitch: netlink: IP tunnel attribute has 3036 unknown bytes.
[  307.966501][T11660] loop4: detected capacity change from 0 to 256
[  307.990109][T11660] vfat: Bad value for 'dmask'
[  308.928798][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  309.990260][T11721] Bluetooth: hci3: invalid length 0, exp 2 for type 19
[  310.513991][T11744] netlink: get zone limit has 8 unknown bytes
[  310.912288][ T5101] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  310.920153][ T5101] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  310.927490][ T5101] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  310.935632][ T5101] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  310.943277][ T5101] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  310.951554][ T5101] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  310.981429][ T1105] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.998912][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  311.089679][ T1105] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  311.181073][ T1105] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  311.269221][ T1105] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  311.380013][T11762] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.2185'.
[  311.390954][T11762] openvswitch: netlink: IP tunnel attribute has 3036 unknown bytes.
[  311.432755][T11768] 9pnet_fd: Insufficient options for proto=fd
[  311.445920][T11768] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2187'.
[  311.474890][T11747] chnl_net:caif_netlink_parms(): no params data found
[  311.488026][T11770] netlink: get zone limit has 8 unknown bytes
[  311.541532][ T1105] bridge_slave_1: left allmulticast mode
[  311.547202][ T1105] bridge_slave_1: left promiscuous mode
[  311.573279][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.600349][ T1105] bridge_slave_0: left allmulticast mode
[  311.606132][ T1105] bridge_slave_0: left promiscuous mode
[  311.612694][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.846062][T11791] Bluetooth: hci3: invalid length 0, exp 2 for type 19
[  311.864493][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  311.881580][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  311.893555][ T1105] bond0 (unregistering): Released all slaves
[  311.904200][ T1105] bond1 (unregistering): Released all slaves
[  311.917094][ T1105] bond2 (unregistering): Released all slaves
[  312.749649][T11795] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2197'.
[  312.826491][T11804] 9pnet_fd: Insufficient options for proto=fd
[  312.914733][T11747] bridge0: port 1(bridge_slave_0) entered blocking state
[  312.930334][T11747] bridge0: port 1(bridge_slave_0) entered disabled state
[  312.938073][T11747] bridge_slave_0: entered allmulticast mode
[  312.952438][T11747] bridge_slave_0: entered promiscuous mode
[  312.960737][T11804] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2200'.
[  313.002946][ T5115] Bluetooth: hci1: command tx timeout
[  313.017244][T11814] loop4: detected capacity change from 0 to 1024
[  313.035941][T11747] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.065291][T11747] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.079283][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  313.089969][T11747] bridge_slave_1: entered allmulticast mode
[  313.097791][T11747] bridge_slave_1: entered promiscuous mode
[  313.106693][T11814] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.336398][T11814] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.556279][T11822] Bluetooth: hci3: invalid length 0, exp 2 for type 19
[  313.586592][T11747] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  313.600352][ T7498] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.612645][T11747] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  313.634829][ T1105] hsr_slave_0: left promiscuous mode
[  313.651629][ T1105] hsr_slave_1: left promiscuous mode
[  313.657734][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  313.665246][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  313.674128][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  313.682372][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  313.694000][ T1105] veth1_macvtap: left promiscuous mode
[  313.699746][ T1105] veth0_macvtap: left promiscuous mode
[  313.705372][ T1105] veth1_vlan: left promiscuous mode
[  313.710782][ T1105] 
@ÿ: left promiscuous mode
[  313.869094][ T5152] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  314.040612][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  314.065156][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  314.079195][ T5152] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  314.098877][ T5152] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  314.117016][ T5152] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  314.149082][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.161945][ T5152] usb 4-1: config 0 descriptor??
[  314.341370][T11747] team0: Port device team_slave_0 added
[  314.352203][T11747] team0: Port device team_slave_1 added
[  314.397928][T11747] batman_adv: batadv0: Adding interface: batadv_slave_0
[  314.413706][T11747] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  314.481220][T11747] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  314.512496][T11747] batman_adv: batadv0: Adding interface: batadv_slave_1
[  314.533450][T11747] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  314.560441][    C1] vkms_vblank_simulate: vblank timer overrun
[  314.617891][T11747] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  314.622548][    T8] usb 4-1: USB disconnect, device number 18
[  314.732373][T11747] hsr_slave_0: entered promiscuous mode
[  314.742650][T11747] hsr_slave_1: entered promiscuous mode
[  314.765603][T11747] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  314.774056][T11747] Cannot create hsr debugfs directory
[  315.005056][T11852] loop4: detected capacity change from 0 to 32768
[  315.060652][T11852] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  315.081244][ T5115] Bluetooth: hci1: command tx timeout
[  315.118877][T11852] XFS (loop4): Starting recovery (logdev: internal)
[  315.133939][T11867] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  315.154242][T11852] XFS (loop4): Ending recovery (logdev: internal)
[  315.160906][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  315.182589][T11871] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  315.214193][T11871] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2221'.
[  315.223643][ T7498] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  315.333257][T11747] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  315.364539][T11747] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  315.407699][T11747] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  315.431823][T11747] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  315.846850][T11747] 8021q: adding VLAN 0 to HW filter on device bond0
[  316.088880][ T5196] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  316.141996][T11892] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  316.151083][T11747] 8021q: adding VLAN 0 to HW filter on device team0
[  316.214057][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.221240][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  316.243493][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.250691][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  316.331634][ T5196] usb 4-1: config 0 has an invalid interface number: 199 but max is 1
[  316.358884][ T5196] usb 4-1: config 0 has no interface number 1
[  316.370443][ T5196] usb 4-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  316.400475][ T5196] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  316.431013][ T5196] usb 4-1: New USB device found, idVendor=1ab0, idProduct=58f5, bcdDevice= c.f5
[  316.446413][ T5196] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.469116][ T5196] usb 4-1: Product: syz
[  316.473410][ T5196] usb 4-1: Manufacturer: syz
[  316.488231][ T5196] usb 4-1: SerialNumber: syz
[  316.501313][T11747] 8021q: adding VLAN 0 to HW filter on device batadv0
[  316.509163][ T5196] usb 4-1: config 0 descriptor??
[  316.521626][ T5196] usb 4-1: Found UVC 0.00 device syz (1ab0:58f5)
[  316.538845][ T5196] usb 4-1: No valid video chain found.
[  316.597466][T11747] veth0_vlan: entered promiscuous mode
[  316.602313][T11882] loop4: detected capacity change from 0 to 32768
[  316.614603][T11747] veth1_vlan: entered promiscuous mode
[  316.626805][T11882] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  316.681687][T11882] XFS (loop4): Ending clean mount
[  316.702919][T11882] XFS (loop4): Quotacheck needed: Please wait.
[  316.706917][T11747] veth0_macvtap: entered promiscuous mode
[  316.721023][T11747] veth1_macvtap: entered promiscuous mode
[  316.737398][T11747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  316.748888][T11747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.759459][T11747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  316.770303][T11747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.780875][T11747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  316.794806][T11747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.807261][T11747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  316.818047][T11747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.829830][T11882] XFS (loop4): Quotacheck: Done.
[  316.830078][T11747] batman_adv: batadv0: Interface activated: batadv_slave_0
[  316.850666][T11747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  316.861238][T11747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.871595][T11747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  316.882399][T11747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.893922][T11747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  316.906549][T11747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.916635][T11747] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  316.929689][T11747] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  316.940927][ T7498] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  316.941332][T11747] batman_adv: batadv0: Interface activated: batadv_slave_1
[  316.973433][T11747] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  316.983215][T11747] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  316.993761][T11747] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  317.003158][T11747] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  317.087320][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  317.104038][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  317.132963][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  317.142250][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  317.158962][ T5115] Bluetooth: hci1: command tx timeout
[  317.238745][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  317.339850][T11938] sp0: Synchronizing with TNC
[  317.383486][T11944] loop4: detected capacity change from 0 to 64
[  317.562567][ T1244] ieee802154 phy0 wpan0: encryption failed: -22
[  317.570105][ T1244] ieee802154 phy1 wpan1: encryption failed: -22
[  317.639284][T11959] veth1_macvtap: left promiscuous mode
[  317.875022][T11973] sp0: Synchronizing with TNC
[  318.393572][T11982] netlink: 'syz.4.2263': attribute type 10 has an invalid length.
[  318.401520][T11982] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2263'.
[  318.421491][T11982] team0: Port device geneve0 added
[  318.436321][T11982] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  318.442876][T11982] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  318.451181][T11982] vhci_hcd vhci_hcd.0: Device attached
[  318.531972][ T5152] usb 4-1: USB disconnect, device number 19
[  318.665626][    C1] eth0: bad gso: type: 1, size: 1408
[  318.678987][ T5196] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  318.699690][    T8] vhci_hcd: vhci_device speed not set
[  318.779554][    T8] usb 17-1: new full-speed USB device number 2 using vhci_hcd
[  318.796209][T12001] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  318.868720][ T5196] usb 1-1: Using ep0 maxpacket: 8
[  318.886942][ T5196] usb 1-1: config 0 has an invalid interface number: 10 but max is 0
[  318.909960][ T5196] usb 1-1: config 0 has no interface number 0
[  318.935057][ T5196] usb 1-1: New USB device found, idVendor=0f3d, idProduct=68aa, bcdDevice=f3.73
[  318.969955][ T5196] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  318.978944][ T5196] usb 1-1: Product: syz
[  318.982917][T12008] sp0: Synchronizing with TNC
[  318.983226][ T5196] usb 1-1: Manufacturer: syz
[  318.995345][ T5196] usb 1-1: SerialNumber: syz
[  319.010658][ T5196] usb 1-1: config 0 descriptor??
[  319.030053][ T5196] usb 1-1: Expected 3 endpoints, found: 0
[  319.033083][T12010] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  319.107825][T12010] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2274'.
[  319.169975][ T5152] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  319.229061][ T5196] usb 1-1: USB disconnect, device number 8
[  319.259115][ T5115] Bluetooth: hci1: command tx timeout
[  319.287358][T11984] vhci_hcd: connection reset by peer
[  319.297061][ T2841] vhci_hcd: stop threads
[  319.302380][ T2841] vhci_hcd: release socket
[  319.307770][ T2841] vhci_hcd: disconnect device
[  319.318828][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  319.791174][ T5152] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  319.809669][T12017] nvme_fabrics: missing parameter 'transport=%s'
[  319.809915][ T5152] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  319.816236][T12017] nvme_fabrics: missing parameter 'nqn=%s'
[  319.845511][ T5152] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  319.860513][ T5152] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  319.880706][ T5152] usb 3-1: config 0 descriptor??
[  320.243844][T11982] syz.4.2263 (11982) used greatest stack depth: 19728 bytes left
[  320.305305][T12028] loop4: detected capacity change from 0 to 256
[  320.675980][T12028] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d)
[  320.749170][ T5240] usb 3-1: USB disconnect, device number 19
[  320.881660][T12043] sp0: Synchronizing with TNC
[  321.113275][T12051] netlink: 'syz.0.2290': attribute type 10 has an invalid length.
[  321.171083][T12057] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[  321.177909][T12057] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  321.186814][T12057] vhci_hcd vhci_hcd.0: Device attached
[  321.244678][T12051] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2290'.
[  321.266126][T12051] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  321.275916][T12051] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  321.284923][T12051] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  321.408770][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  321.705178][T12051] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  321.724972][T12051] team0: Port device geneve0 added
[  321.809283][T12063] nvme_fabrics: missing parameter 'transport=%s'
[  321.815831][T12063] nvme_fabrics: missing parameter 'nqn=%s'
[  323.462105][T12058] vhci_hcd: connection closed
[  323.462381][ T2841] vhci_hcd: stop threads
[  323.472910][ T2841] vhci_hcd: release socket
[  323.477674][ T2841] vhci_hcd: disconnect device
[  323.482484][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  323.735111][T12091] loop4: detected capacity change from 0 to 40427
[  323.769036][T12091] F2FS-fs (loop4): invalid crc value
[  323.790598][T12091] F2FS-fs (loop4): Found nat_bits in checkpoint
[  323.823711][T12091] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  323.903344][    T8] vhci_hcd: vhci_device speed not set
[  324.040759][T12102] syz.4.2303: attempt to access beyond end of device
[  324.040759][T12102] loop4: rw=2049, sector=53248, nr_sectors = 1544 limit=40427
[  324.061736][   T29] kauditd_printk_skb: 23 callbacks suppressed
[  324.061754][   T29] audit: type=1800 audit(1854756137.525:574): pid=12102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2303" name="file2" dev="overlay" ino=28 res=0 errno=0
[  325.558768][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  326.264967][ T2841] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.304145][T12140] nvme_fabrics: missing parameter 'transport=%s'
[  326.311619][T12140] nvme_fabrics: missing parameter 'nqn=%s'
[  326.367192][ T2841] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.452258][ T2841] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.532506][ T2841] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.631603][ T5101] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  326.639995][ T5101] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  326.647432][ T5101] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  326.649651][ T7498] syz-executor: attempt to access beyond end of device
[  326.649651][ T7498] loop4: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  326.672035][ T7498] syz-executor: attempt to access beyond end of device
[  326.672035][ T7498] loop4: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  326.699382][ T5101] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  326.706930][ T5101] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  326.714573][ T5101] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  326.870233][ T2841] bridge_slave_1: left allmulticast mode
[  326.875918][ T2841] bridge_slave_1: left promiscuous mode
[  326.899128][ T5196] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  326.904379][ T2841] bridge0: port 2(bridge_slave_1) entered disabled state
[  326.931401][ T2841] bridge_slave_0: left allmulticast mode
[  326.942009][   T35] kworker/u8:2: attempt to access beyond end of device
[  326.942009][   T35] loop4: rw=2049, sector=40960, nr_sectors = 136 limit=40427
[  326.944112][ T2841] bridge_slave_0: left promiscuous mode
[  326.959314][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  326.986845][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  326.989000][ T2841] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.995025][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.010115][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.017182][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.024563][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.034047][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.041381][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.048474][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.055839][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.063335][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.071938][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.080881][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.088508][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.095596][ T5196] usb 4-1: Using ep0 maxpacket: 8
[  327.101249][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.109384][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.116376][ T5196] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  327.125019][ T5196] usb 4-1: config 179 has no interface number 0
[  327.133113][ T5196] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  327.145312][   T35] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  327.153184][ T5196] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  327.165133][ T5196] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  327.176970][ T5196] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  327.193308][ T5196] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  327.206267][ T5196] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.222790][T12157] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  327.347974][ T2841] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  327.364708][ T2841] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  327.377231][ T2841] bond0 (unregistering): Released all slaves
[  327.638762][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  327.971250][ T7696] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input20
[  328.245028][T12186] nvme_fabrics: missing parameter 'transport=%s'
[  328.251531][T12186] nvme_fabrics: missing parameter 'nqn=%s'
[  328.414824][ T7696] usb 4-1: USB disconnect, device number 20
[  328.420782][    C1] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  328.420834][    C1] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  328.445456][ T7696] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  328.595498][T12158] chnl_net:caif_netlink_parms(): no params data found
[  328.624316][ T2841] hsr_slave_0: left promiscuous mode
[  328.632965][ T2841] hsr_slave_1: left promiscuous mode
[  328.654287][ T2841] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  328.664922][ T2841] batman_adv: batadv0: Removing interface: batadv_slave_0
[  328.674213][ T2841] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  328.690149][ T2841] batman_adv: batadv0: Removing interface: batadv_slave_1
[  328.711371][ T2841] veth1_macvtap: left promiscuous mode
[  328.717023][ T2841] veth0_macvtap: left promiscuous mode
[  328.734482][ T2841] veth1_vlan: left promiscuous mode
[  328.742061][T12205] x_tables: ip_tables: osf match: only valid for protocol 6
[  328.749593][ T2841] veth0_vlan: left promiscuous mode
[  328.769414][ T5115] Bluetooth: hci1: command tx timeout
[  328.848962][ T5101] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  328.856477][ T5101] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  328.864010][ T5101] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  328.892317][ T5101] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  328.900423][ T5101] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  328.908990][ T5101] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  329.510923][ T2841] team0 (unregistering): Port device team_slave_1 removed
[  329.540920][ T2841] team0 (unregistering): Port device team_slave_0 removed
[  329.556823][T12218] netlink: 191384 bytes leftover after parsing attributes in process `syz.3.2354'.
[  329.718776][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  330.026491][T12158] bridge0: port 1(bridge_slave_0) entered blocking state
[  330.040068][T12158] bridge0: port 1(bridge_slave_0) entered disabled state
[  330.051041][T12158] bridge_slave_0: entered allmulticast mode
[  330.058284][T12158] bridge_slave_0: entered promiscuous mode
[  330.091263][T12158] bridge0: port 2(bridge_slave_1) entered blocking state
[  330.102777][T12158] bridge0: port 2(bridge_slave_1) entered disabled state
[  330.119703][T12158] bridge_slave_1: entered allmulticast mode
[  330.140648][T12158] bridge_slave_1: entered promiscuous mode
[  330.210267][T12158] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  330.237298][T12158] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  330.265910][T12158] team0: Port device team_slave_0 added
[  330.756874][T12158] team0: Port device team_slave_1 added
[  330.840831][ T5101] Bluetooth: hci1: command tx timeout
[  330.882897][T12158] batman_adv: batadv0: Adding interface: batadv_slave_0
[  330.890758][T12158] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  330.918125][T12158] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  330.935283][T12243] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.2361'.
[  330.947028][   T29] audit: type=1326 audit(1854756144.455:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.1.2359" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0551b75bd9 code=0x0
[  330.974796][T12158] batman_adv: batadv0: Adding interface: batadv_slave_1
[  330.988718][T12158] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  331.015763][ T5101] Bluetooth: hci0: command tx timeout
[  331.040489][T12158] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  331.057978][ T2841] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.075245][T12206] chnl_net:caif_netlink_parms(): no params data found
[  331.105988][   T29] audit: type=1326 audit(1854756144.605:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12257 comm="syz.3.2367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  331.134236][   T29] audit: type=1326 audit(1854756144.615:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12257 comm="syz.3.2367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  331.165961][   T29] audit: type=1326 audit(1854756144.615:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12257 comm="syz.3.2367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  331.191569][   T29] audit: type=1326 audit(1854756144.615:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12257 comm="syz.3.2367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  331.241070][ T2841] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.260354][T12158] hsr_slave_0: entered promiscuous mode
[  331.266991][T12158] hsr_slave_1: entered promiscuous mode
[  331.276905][T12158] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  331.284823][T12158] Cannot create hsr debugfs directory
[  331.303930][ T2841] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.318935][    T8] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  331.372790][ T2841] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.424291][T12206] bridge0: port 1(bridge_slave_0) entered blocking state
[  331.432752][T12206] bridge0: port 1(bridge_slave_0) entered disabled state
[  331.441430][T12206] bridge_slave_0: entered allmulticast mode
[  331.450033][T12206] bridge_slave_0: entered promiscuous mode
[  331.457707][T12206] bridge0: port 2(bridge_slave_1) entered blocking state
[  331.466581][T12206] bridge0: port 2(bridge_slave_1) entered disabled state
[  331.474107][T12206] bridge_slave_1: entered allmulticast mode
[  331.480901][T12206] bridge_slave_1: entered promiscuous mode
[  331.528747][    T8] usb 1-1: Using ep0 maxpacket: 8
[  331.539981][    T8] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  331.549037][    T8] usb 1-1: config 179 has no interface number 0
[  331.572347][    T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  331.617833][    T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  331.709771][    T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  331.779865][    T8] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  331.798820][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  331.807365][T12206] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  331.836458][    T8] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  331.862797][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.881640][T12206] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  331.881658][T12248] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  331.970891][ T2841] bridge_slave_1: left allmulticast mode
[  331.976582][ T2841] bridge_slave_1: left promiscuous mode
[  331.982541][ T2841] bridge0: port 2(bridge_slave_1) entered disabled state
[  331.995311][ T2841] bridge_slave_0: left allmulticast mode
[  332.001480][ T2841] bridge_slave_0: left promiscuous mode
[  332.007649][ T2841] bridge0: port 1(bridge_slave_0) entered disabled state
[  332.191887][ T7677] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input21
[  332.236346][ T2841] team0: Port device geneve0 removed
[  332.323247][ T2841] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  332.335040][ T2841] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  332.345604][ T2841] bond0 (unregistering): Released all slaves
[  332.372154][T12206] team0: Port device team_slave_0 added
[  332.406307][T12206] team0: Port device team_slave_1 added
[  332.441448][ T7696] usb 1-1: USB disconnect, device number 9
[  332.441526][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  332.458456][ T7696] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  332.508612][T12206] batman_adv: batadv0: Adding interface: batadv_slave_0
[  332.520483][T12206] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  332.550099][T12206] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  332.570210][T12206] batman_adv: batadv0: Adding interface: batadv_slave_1
[  332.577353][T12206] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  332.603915][T12206] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  332.646640][T12206] hsr_slave_0: entered promiscuous mode
[  332.661010][T12206] hsr_slave_1: entered promiscuous mode
[  332.667037][T12206] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  332.676948][T12206] Cannot create hsr debugfs directory
[  332.845596][T12158] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  332.854928][   T29] audit: type=1326 audit(1854756146.355:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0551b75bd9 code=0x7ffc0000
[  332.882359][T12158] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  332.883048][   T29] audit: type=1326 audit(1854756146.355:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0551b75bd9 code=0x7ffc0000
[  332.922408][   T29] audit: type=1326 audit(1854756146.355:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f0551b75bd9 code=0x7ffc0000
[  332.955381][ T5101] Bluetooth: hci1: command tx timeout
[  332.962750][T12158] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  332.970714][   T29] audit: type=1326 audit(1854756146.355:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0551b75bd9 code=0x7ffc0000
[  333.005805][   T29] audit: type=1326 audit(1854756146.355:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0551b75bd9 code=0x7ffc0000
[  333.035609][T12158] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  333.079688][ T5101] Bluetooth: hci0: command tx timeout
[  333.140496][T12288] xt_NFQUEUE: number of total queues is 0
[  333.507721][T12158] 8021q: adding VLAN 0 to HW filter on device bond0
[  333.525101][T12158] 8021q: adding VLAN 0 to HW filter on device team0
[  333.536703][ T5240] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.543858][ T5240] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.570440][ T7696] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.577646][ T7696] bridge0: port 2(bridge_slave_1) entered forwarding state
[  333.644794][T12206] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  333.654044][T12206] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  333.672238][T12206] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  333.691270][T12206] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  333.835497][T12305] netlink: 'syz.1.2383': attribute type 10 has an invalid length.
[  333.846438][T12305] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.854058][T12305] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.870699][T12305] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.878156][T12305] bridge0: port 2(bridge_slave_1) entered forwarding state
[  333.885681][T12305] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.892977][T12305] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.900621][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  333.916354][T12305] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  333.975076][T12206] 8021q: adding VLAN 0 to HW filter on device bond0
[  334.002874][T12206] 8021q: adding VLAN 0 to HW filter on device team0
[  334.037866][ T7691] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.045059][ T7691] bridge0: port 1(bridge_slave_0) entered forwarding state
[  334.129446][ T7691] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.136708][ T7691] bridge0: port 2(bridge_slave_1) entered forwarding state
[  334.178578][T12158] 8021q: adding VLAN 0 to HW filter on device batadv0
[  334.391473][ T2841] hsr_slave_0: left promiscuous mode
[  334.429375][ T2841] hsr_slave_1: left promiscuous mode
[  334.473414][ T2841] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  334.489075][ T2841] batman_adv: batadv0: Removing interface: batadv_slave_0
[  334.516951][ T2841] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  334.526483][ T2841] batman_adv: batadv0: Removing interface: batadv_slave_1
[  334.540937][ T2841] veth0_macvtap: left promiscuous mode
[  334.547779][ T2841] veth1_vlan: left promiscuous mode
[  334.555733][ T2841] veth0_vlan: left promiscuous mode
[  334.637122][T12321] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2388'.
[  334.877114][ T2841] team0 (unregistering): Port device team_slave_1 removed
[  334.917289][ T2841] team0 (unregistering): Port device team_slave_0 removed
[  335.002225][ T5101] Bluetooth: hci1: command tx timeout
[  335.046086][T12158] veth0_vlan: entered promiscuous mode
[  335.121751][T12158] veth1_vlan: entered promiscuous mode
[  335.179294][ T5101] Bluetooth: hci0: command tx timeout
[  335.270885][T12158] veth0_macvtap: entered promiscuous mode
[  335.281805][T12158] veth1_macvtap: entered promiscuous mode
[  335.485390][T12338] input: syz0 as /devices/virtual/input/input22
[  335.602159][T12206] 8021q: adding VLAN 0 to HW filter on device batadv0
[  335.723868][T12158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  335.747249][T12158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  335.765763][T12158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  335.777081][T12158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  335.788172][T12158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  335.799113][T12158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  335.811431][T12158] batman_adv: batadv0: Interface activated: batadv_slave_0
[  335.821990][T12343] netlink: 'syz.3.2393': attribute type 10 has an invalid length.
[  335.836321][T12343] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2393'.
[  335.840096][T12345] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  335.852041][T12345] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  335.861544][T12345] vhci_hcd vhci_hcd.0: Device attached
[  335.926815][T12343] team0: Port device geneve0 added
[  335.968868][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  336.049250][T12158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  336.061538][   T29] kauditd_printk_skb: 6 callbacks suppressed
[  336.061556][   T29] audit: type=1326 audit(1854756149.575:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12350 comm="syz.0.2395" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcce7575bd9 code=0x0
[  336.082604][T12158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  336.104611][ T5196] vhci_hcd: vhci_device speed not set
[  336.110268][T12158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  336.139283][T12158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  336.233397][ T5196] usb 15-1: new full-speed USB device number 2 using vhci_hcd
[  336.241618][T12158] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  336.253227][T12158] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  336.277955][T12158] batman_adv: batadv0: Interface activated: batadv_slave_1
[  336.341424][T12359] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2396'.
[  336.699805][T12158] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  336.720785][T12158] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  336.724885][T12346] vhci_hcd: connection reset by peer
[  336.731699][T12158] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  336.744117][ T1105] vhci_hcd: stop threads
[  336.748575][ T1105] vhci_hcd: release socket
[  336.754819][ T1105] vhci_hcd: disconnect device
[  336.760174][T12158] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  336.934351][T12206] veth0_vlan: entered promiscuous mode
[  336.973907][T12206] veth1_vlan: entered promiscuous mode
[  337.079203][ T2841] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  337.101613][ T2841] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  337.131276][T12206] veth0_macvtap: entered promiscuous mode
[  337.167034][T12206] veth1_macvtap: entered promiscuous mode
[  337.234112][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  337.240659][ T5101] Bluetooth: hci0: command tx timeout
[  337.282467][T12206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  337.298806][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  337.326899][T12206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.352424][T12206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  337.396032][T12206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.438392][T12206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  337.483096][T12206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.515221][T12206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  337.538833][T12206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.558025][T12206] batman_adv: batadv0: Interface activated: batadv_slave_0
[  337.594954][T12206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  337.658890][T12206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.716884][T12206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  337.776898][T12206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.824471][T12206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  337.879390][T12206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  337.898789][T12206] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.040470][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  338.113275][T12206] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.187288][T12206] batman_adv: batadv0: Interface activated: batadv_slave_1
[  338.210768][T12206] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  338.233466][T12206] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  338.248324][T12206] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  338.270034][T12206] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  338.400335][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  338.408186][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  338.455441][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  338.464476][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  339.236617][T12406] loop4: detected capacity change from 0 to 512
[  339.245479][T12406] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  339.269054][T12406] EXT4-fs (loop4): 1 truncate cleaned up
[  339.277925][T12406] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  339.632713][T12206] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.129012][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  341.234254][T12462] input: syz0 as /devices/virtual/input/input23
[  341.473948][T12464] netlink: 'syz.0.2429': attribute type 10 has an invalid length.
[  341.498892][ T5196] vhci_hcd: vhci_device speed not set
[  341.508021][T12464] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  341.963660][T12478] No such timeout policy "syz0"
[  342.198760][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  342.366043][T12453] loop4: detected capacity change from 0 to 256
[  342.565457][T12484] netlink: 'syz.2.2435': attribute type 1 has an invalid length.
[  342.836082][T12504] netlink: 'syz.0.2443': attribute type 10 has an invalid length.
[  343.031787][T12512] loop4: detected capacity change from 0 to 16
[  343.050028][T12512] erofs: (device loop4): mounted with root inode @ nid 36.
[  343.091150][T12512] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance 0 @ lcn 123 of nid 36
[  343.151015][T12512] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance 0 @ lcn 123 of nid 36
[  343.200843][T12512] erofs: (device loop4): z_erofs_read_folio: read error -117 @ 123 of nid 36
[  343.358525][T12529] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2453'.
[  344.288782][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  346.358999][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  348.002299][T12573] loop4: detected capacity change from 0 to 128
[  348.037232][T12573] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  348.069726][T12573] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  348.404245][ T5101] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  348.411661][ T5101] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  348.419829][ T5114] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  348.427617][ T5114] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  348.437580][ T5114] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  348.444835][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  348.453679][ T5114] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  348.556526][T12206] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  348.641643][ T5196] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  348.724217][T12606] loop4: detected capacity change from 0 to 2048
[  348.753437][T12606] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  348.795838][T12606] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  348.817688][ T1093] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.843157][ T5196] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  348.843271][T12595] chnl_net:caif_netlink_parms(): no params data found
[  348.876732][   T29] audit: type=1804 audit(1854756162.365:592): pid=12606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2478" name="/newroot/9/file0/bus" dev="loop4" ino=1367 res=1 errno=0
[  348.908744][ T5196] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  348.922275][   T29] audit: type=1800 audit(1854756162.365:593): pid=12606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2478" name="bus" dev="loop4" ino=1367 res=0 errno=0
[  348.926921][T12606] netlink: 'syz.4.2478': attribute type 1 has an invalid length.
[  348.965409][ T1093] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.975507][ T5196] usb 1-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  348.979090][   T29] audit: type=1804 audit(1854756162.425:594): pid=12606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2478" name="/newroot/9/file0/bus" dev="loop4" ino=1367 res=1 errno=0
[  348.990452][ T5196] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  349.058813][   T29] audit: type=1804 audit(1854756162.425:595): pid=12606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2478" name="/newroot/9/file0/bus" dev="loop4" ino=1367 res=1 errno=0
[  349.102302][   T29] audit: type=1804 audit(1854756162.545:596): pid=12606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2478" name="/newroot/9/file0/bus" dev="loop4" ino=1367 res=1 errno=0
[  349.175184][ T1093] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.191129][   T29] audit: type=1800 audit(1854756162.545:597): pid=12606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2478" name="bus" dev="loop4" ino=1367 res=0 errno=0
[  349.213308][   T29] audit: type=1804 audit(1854756162.625:598): pid=12615 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2478" name="/newroot/9/file0/bus" dev="loop4" ino=1367 res=1 errno=0
[  349.234765][ T5196] usb 1-1: Product: syz
[  349.234996][   T29] audit: type=1800 audit(1854756162.625:599): pid=12615 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2478" name="bus" dev="loop4" ino=1367 res=0 errno=0
[  349.256019][ T5196] usb 1-1: Manufacturer: syz
[  349.644742][ T1093] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  349.677211][ T5196] usb 1-1: SerialNumber: syz
[  349.684430][ T5196] usb 1-1: config 0 descriptor??
[  349.749893][T12595] bridge0: port 1(bridge_slave_0) entered blocking state
[  349.763324][T12595] bridge0: port 1(bridge_slave_0) entered disabled state
[  349.778794][T12595] bridge_slave_0: entered allmulticast mode
[  349.799022][T12595] bridge_slave_0: entered promiscuous mode
[  349.884106][T12595] bridge0: port 2(bridge_slave_1) entered blocking state
[  350.000692][T12595] bridge0: port 2(bridge_slave_1) entered disabled state
[  350.011798][T12595] bridge_slave_1: entered allmulticast mode
[  350.019265][T12595] bridge_slave_1: entered promiscuous mode
[  350.194582][T12595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  350.217824][T12595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  350.528836][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  350.541082][ T5114] Bluetooth: hci5: command tx timeout
[  350.817245][ T1093] bridge_slave_1: left allmulticast mode
[  350.837629][ T1093] bridge_slave_1: left promiscuous mode
[  350.922840][ T1093] bridge0: port 2(bridge_slave_1) entered disabled state
[  350.975850][ T1093] bridge_slave_0: left allmulticast mode
[  350.981984][ T1093] bridge_slave_0: left promiscuous mode
[  350.987832][ T1093] bridge0: port 1(bridge_slave_0) entered disabled state
[  351.191413][ T1093] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  351.243551][ T1093] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  351.264837][ T1093] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  351.290187][ T1093] bond0 (unregistering): Released all slaves
[  351.318603][ T1093] bond1 (unregistering): Released all slaves
[  351.349020][T12595] team0: Port device team_slave_0 added
[  351.388371][T12595] team0: Port device team_slave_1 added
[  351.472845][T12595] batman_adv: batadv0: Adding interface: batadv_slave_0
[  351.497329][T12595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  351.563436][T12595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  351.591561][T12595] batman_adv: batadv0: Adding interface: batadv_slave_1
[  351.598548][T12595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  351.658864][T12595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  351.730748][ T5196] snd-usb-audio 1-1:0.0: probe with driver snd-usb-audio failed with error -12
[  351.764807][ T5196] usb 1-1: USB disconnect, device number 10
[  351.816397][T12654] loop4: detected capacity change from 0 to 4096
[  351.874394][T12595] hsr_slave_0: entered promiscuous mode
[  351.885216][T12654] NILFS (loop4): invalid segment: Checksum error in segment payload
[  351.898088][T12595] hsr_slave_1: entered promiscuous mode
[  351.917222][T12654] NILFS (loop4): trying rollback from an earlier position
[  352.006490][T12595] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  352.015938][T12595] Cannot create hsr debugfs directory
[  352.018771][T12654] NILFS (loop4): recovery complete
[  352.031538][T12666] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  352.538451][ T1093] hsr_slave_0: left promiscuous mode
[  352.553139][ T1093] hsr_slave_1: left promiscuous mode
[  352.567424][ T1093] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  352.577569][ T1093] batman_adv: batadv0: Removing interface: batadv_slave_0
[  352.586569][ T1093] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  352.598823][ T5114] Bluetooth: hci5: command tx timeout
[  352.598970][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  352.623721][ T1093] batman_adv: batadv0: Removing interface: batadv_slave_1
[  352.652662][ T1093] veth1_macvtap: left promiscuous mode
[  352.658609][ T1093] veth0_macvtap: left promiscuous mode
[  352.673002][ T1093] veth1_vlan: left promiscuous mode
[  352.678586][ T1093] veth0_vlan: left promiscuous mode
[  352.700161][T12669] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2491'.
[  353.032865][ T1093] team0 (unregistering): Port device team_slave_1 removed
[  353.046378][ T1093] team0 (unregistering): Port device team_slave_0 removed
[  353.134621][   T52] bond0: (slave bond_slave_0): interface is now down
[  353.144430][   T52] bond0: (slave bond_slave_1): interface is now down
[  353.172474][   T52] bond0: (slave bond_slave_0): interface is now down
[  353.199042][   T52] bond0: (slave bond_slave_1): interface is now down
[  353.229046][   T52] bond0: (slave bond_slave_0): interface is now down
[  353.259452][   T52] bond0: (slave bond_slave_1): interface is now down
[  353.280056][   T52] bond0: (slave bond_slave_0): interface is now down
[  353.287165][   T52] bond0: (slave bond_slave_1): interface is now down
[  353.308403][T12689] ieee802154 phy0 wpan0: encryption failed: -22
[  353.339458][   T52] bond0: (slave bond_slave_0): interface is now down
[  353.353338][   T52] bond0: (slave bond_slave_1): interface is now down
[  353.403346][ T2841] bond0: (slave bond_slave_0): interface is now down
[  353.410298][ T2841] bond0: (slave bond_slave_1): interface is now down
[  353.429246][ T2841] bond0: (slave bond_slave_0): interface is now down
[  353.455282][ T2841] bond0: (slave bond_slave_1): interface is now down
[  353.480280][ T2448] bond0: (slave bond_slave_0): interface is now down
[  353.498744][ T2448] bond0: (slave bond_slave_1): interface is now down
[  353.518059][ T2448] bond0: now running without any active interface!
[  353.802753][T12595] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  353.824508][T12595] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  353.834796][T12595] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  353.859341][T12595] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  353.985847][T12691] loop4: detected capacity change from 0 to 32768
[  354.031559][T12595] 8021q: adding VLAN 0 to HW filter on device bond0
[  354.232884][T12595] 8021q: adding VLAN 0 to HW filter on device team0
[  354.420327][ T5196] bridge0: port 1(bridge_slave_0) entered blocking state
[  354.427456][ T5196] bridge0: port 1(bridge_slave_0) entered forwarding state
[  354.438348][ T5196] bridge0: port 2(bridge_slave_1) entered blocking state
[  354.445495][ T5196] bridge0: port 2(bridge_slave_1) entered forwarding state
[  354.679335][ T5114] Bluetooth: hci5: command tx timeout
[  354.679516][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  354.726349][T12595] 8021q: adding VLAN 0 to HW filter on device batadv0
[  354.775337][T12713] loop4: detected capacity change from 0 to 1024
[  354.798747][ T5196] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  354.807381][T12713] EXT4-fs (loop4): can't mount with journal_async_commit, fs mounted w/o journal
[  354.885414][T12595] veth0_vlan: entered promiscuous mode
[  354.918623][T12595] veth1_vlan: entered promiscuous mode
[  354.979134][ T5196] usb 4-1: Using ep0 maxpacket: 8
[  354.994445][T12595] veth0_macvtap: entered promiscuous mode
[  355.013386][ T5196] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  355.035450][T12595] veth1_macvtap: entered promiscuous mode
[  355.066442][T12595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  355.079794][T12595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.092436][ T5196] usb 4-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[  355.098192][T12595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  355.109838][ T5196] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.129166][T12595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.136495][ T5196] usb 4-1: config 0 descriptor??
[  355.156662][ T5196] usb 4-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[  355.164363][ T5196] usb 4-1: No valid video chain found.
[  355.167492][T12595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  355.195119][T12595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.207123][T12595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  355.220211][T12595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.250847][T12595] batman_adv: batadv0: Interface activated: batadv_slave_0
[  355.284273][T12595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  355.304222][T12595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.317444][T12595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  355.331046][T12595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.341392][T12595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  355.354364][T12595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.365282][T12595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  355.383105][T12595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  355.415084][T12595] batman_adv: batadv0: Interface activated: batadv_slave_1
[  355.421314][ T5196] usb 4-1: USB disconnect, device number 21
[  355.467246][T12595] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  355.497040][T12595] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  355.516566][T12595] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  355.527866][T12595] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  355.661628][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  355.673420][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  355.724846][ T2448] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  355.743123][ T2448] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  355.982618][T12742] netlink: 'syz.0.2515': attribute type 29 has an invalid length.
[  355.990745][T12742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2515'.
[  356.000898][T12742] netlink: 'syz.0.2515': attribute type 29 has an invalid length.
[  356.009586][T12742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2515'.
[  356.243950][T12741] No such timeout policy "syz0"
[  356.261096][T10955] IPVS: starting estimator thread 0...
[  356.321954][T12734] loop4: detected capacity change from 0 to 32768
[  356.348898][T12744] IPVS: using max 46 ests per chain, 110400 per kthread
[  356.758844][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  356.787969][ T5114] Bluetooth: hci5: command tx timeout
[  356.918528][   T29] audit: type=1326 audit(1854756170.415:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.1.2518" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4706775bd9 code=0x0
[  356.940881][    C0] vkms_vblank_simulate: vblank timer overrun
[  357.930207][T12777] xt_CT: You must specify a L4 protocol and not use inversions on it
[  358.728078][T12775] loop4: detected capacity change from 0 to 40427
[  358.736818][T12775] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  358.745722][   T29] audit: type=1326 audit(1854756172.255:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12791 comm="syz.3.2531" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x0
[  358.782894][T12775] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  358.800626][T12775] F2FS-fs (loop4): invalid crc value
[  358.838787][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  358.868210][T12775] F2FS-fs (loop4): Found nat_bits in checkpoint
[  358.891874][T12802] netlink: 'syz.1.2530': attribute type 29 has an invalid length.
[  358.901614][T12802] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2530'.
[  358.911158][T12802] netlink: 'syz.1.2530': attribute type 29 has an invalid length.
[  358.929495][T12802] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2530'.
[  358.964756][ T7677] IPVS: starting estimator thread 0...
[  358.974645][   T29] audit: type=1326 audit(1854756172.475:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12804 comm="syz.3.2534" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x0
[  359.014474][T12775] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  359.022541][T12775] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  359.070209][T12206] syz-executor: attempt to access beyond end of device
[  359.070209][T12206] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  359.099123][T12806] IPVS: using max 50 ests per chain, 120000 per kthread
[  359.109012][T12206] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  360.918742][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  361.237766][T12851] tipc: Started in network mode
[  361.244789][T12851] tipc: Node identity , cluster identity 4711
[  361.252115][T12851] tipc: Failed to set node id, please configure manually
[  361.259559][T12851] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  361.299445][   T29] audit: type=1326 audit(1854756174.805:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12853 comm="syz.2.2550" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c30575bd9 code=0x0
[  361.321386][    C0] vkms_vblank_simulate: vblank timer overrun
[  361.571585][T12863] loop4: detected capacity change from 0 to 128
[  361.876143][T12869] loop4: detected capacity change from 0 to 164
[  361.951359][T12872] Cannot find add_set index 0 as target
[  362.382031][   T29] audit: type=1326 audit(1854756175.885:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12885 comm="syz.0.2563" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcce7575bd9 code=0x0
[  362.404468][    C0] vkms_vblank_simulate: vblank timer overrun
[  362.615447][   T29] audit: type=1326 audit(1854756176.115:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12906 comm="syz.3.2572" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x0
[  363.009677][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  363.245688][   T12] bond0: (slave bond_slave_0): interface is now down
[  363.267410][   T12] bond0: (slave bond_slave_1): interface is now down
[  363.327968][   T12] bond0: now running without any active interface!
[  365.078785][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  365.514985][ T5114] Bluetooth: hci5: command tx timeout
[  367.158805][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  368.326040][T13002] loop4: detected capacity change from 0 to 8192
[  369.248925][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  371.329307][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  372.227597][T13028] loop4: detected capacity change from 0 to 512
[  372.249104][T13028] EXT4-fs: Ignoring removed nomblk_io_submit option
[  372.272139][T13028] EXT4-fs: old and new quota format mixing
[  372.349759][T13028] loop4: detected capacity change from 0 to 1764
[  373.258405][T12206] syz-executor (12206) used greatest stack depth: 19696 bytes left
[  373.276559][ T2841] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.398789][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  373.432249][ T2841] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.465361][ T5152] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  373.590785][ T2841] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.761233][ T5152] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x16, changing to 0x6
[  373.778776][ T5152] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  373.788713][ T5152] usb 4-1: New USB device found, idVendor=0499, idProduct=1035, bcdDevice=56.12
[  375.071425][ T2841] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.429156][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.468385][ T5152] usb 4-1: config 0 descriptor??
[  375.488752][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  375.533069][ T5152] snd-usb-audio 4-1:0.0: probe with driver snd-usb-audio failed with error -2
[  375.626190][ T2841] bridge_slave_1: left allmulticast mode
[  375.677516][ T2841] bridge_slave_1: left promiscuous mode
[  375.692309][ T5115] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  375.700292][ T5115] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  375.709709][ T5115] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  375.716927][ T7677] usb 4-1: USB disconnect, device number 22
[  375.727265][ T2841] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.736290][ T5115] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  375.747932][ T5115] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  375.757823][ T5115] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  375.786957][ T2841] bridge_slave_0: left allmulticast mode
[  375.801529][ T2841] bridge_slave_0: left promiscuous mode
[  375.819163][ T2841] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.130310][ T2841] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  376.166639][ T2841] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  376.198793][ T2841] bond0 (unregistering): Released all slaves
[  377.087483][ T2841] hsr_slave_0: left promiscuous mode
[  377.102396][ T2841] hsr_slave_1: left promiscuous mode
[  377.126151][ T2841] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  377.142508][ T2841] batman_adv: batadv0: Removing interface: batadv_slave_0
[  377.172689][ T2841] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  377.205541][ T2841] batman_adv: batadv0: Removing interface: batadv_slave_1
[  377.319164][ T2841] veth1_macvtap: left promiscuous mode
[  377.324728][ T2841] veth0_macvtap: left promiscuous mode
[  377.331943][ T2841] veth1_vlan: left promiscuous mode
[  377.337375][ T2841] veth0_vlan: left promiscuous mode
[  377.568797][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  377.840136][ T5115] Bluetooth: hci0: command tx timeout
[  379.002141][ T1244] ieee802154 phy0 wpan0: encryption failed: -22
[  379.016525][ T1244] ieee802154 phy1 wpan1: encryption failed: -22
[  379.188101][ T2841] team0 (unregistering): Port device team_slave_1 removed
[  379.216874][ T2841] team0 (unregistering): Port device team_slave_0 removed
[  379.638784][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  379.878795][ T5115] Bluetooth: hci0: command tx timeout
[  380.115230][T13071] chnl_net:caif_netlink_parms(): no params data found
[  380.424674][T13071] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.503082][T13071] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.030097][T13071] bridge_slave_0: entered allmulticast mode
[  381.108177][T13071] bridge_slave_0: entered promiscuous mode
[  381.142149][T13071] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.166570][T13071] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.178941][T13071] bridge_slave_1: entered allmulticast mode
[  381.186084][T13071] bridge_slave_1: entered promiscuous mode
[  381.390999][T13071] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  381.411262][T13071] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  381.637090][T13071] team0: Port device team_slave_0 added
[  381.658944][T13071] team0: Port device team_slave_1 added
[  381.718745][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  381.959284][ T5115] Bluetooth: hci0: command tx timeout
[  382.055920][T13071] batman_adv: batadv0: Adding interface: batadv_slave_0
[  382.063638][T13071] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  382.094906][T13071] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  382.107406][T13071] batman_adv: batadv0: Adding interface: batadv_slave_1
[  382.114603][T13071] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  382.142952][T13071] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  382.287643][T13071] hsr_slave_0: entered promiscuous mode
[  382.296851][T13071] hsr_slave_1: entered promiscuous mode
[  382.311859][T13071] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  382.338725][T13071] Cannot create hsr debugfs directory
[  383.798776][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  384.977563][ T5115] Bluetooth: hci0: command tx timeout
[  385.878786][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  386.398472][T13215] affs: No valid root block on device nullb0
[  386.682185][T13071] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  386.743455][T13071] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  386.770544][T13071] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  386.800839][T13071] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  387.041238][T13071] 8021q: adding VLAN 0 to HW filter on device bond0
[  387.088860][T13071] 8021q: adding VLAN 0 to HW filter on device team0
[  387.123974][T10955] bridge0: port 1(bridge_slave_0) entered blocking state
[  387.131166][T10955] bridge0: port 1(bridge_slave_0) entered forwarding state
[  387.190855][T10956] bridge0: port 2(bridge_slave_1) entered blocking state
[  387.198008][T10956] bridge0: port 2(bridge_slave_1) entered forwarding state
[  387.288742][T13071] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  387.321567][T13071] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  387.322884][ T5114] Bluetooth: hci5: command 0x0406 tx timeout
[  387.959291][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  388.148582][T13071] 8021q: adding VLAN 0 to HW filter on device batadv0
[  388.274542][    C1] eth0: bad gso: type: 1, size: 1408
[  389.239533][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  389.433062][   T29] audit: type=1326 audit(1854756202.475:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.549458][   T29] audit: type=1326 audit(1854756202.475:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.590447][   T29] audit: type=1326 audit(1854756202.485:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.622501][   T29] audit: type=1326 audit(1854756202.485:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.664483][   T29] audit: type=1326 audit(1854756202.485:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.700165][   T29] audit: type=1326 audit(1854756202.495:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.801084][   T29] audit: type=1326 audit(1854756202.495:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.858378][T13071] veth0_vlan: entered promiscuous mode
[  389.889067][   T29] audit: type=1326 audit(1854756202.495:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.931508][   T29] audit: type=1326 audit(1854756202.495:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  389.939921][T13071] veth1_vlan: entered promiscuous mode
[  389.954357][   T29] audit: type=1326 audit(1854756202.495:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13259 comm="syz.3.2702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c5e775bd9 code=0x7ffc0000
[  390.038818][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  390.087072][T13071] veth0_macvtap: entered promiscuous mode
[  390.096900][T13071] veth1_macvtap: entered promiscuous mode
[  390.164454][T13071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  390.175238][T13071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.186407][T13071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  390.262964][T13071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.273565][T13071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  390.286648][T13071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.299429][T13071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  390.314863][T13071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.337216][T13071] batman_adv: batadv0: Interface activated: batadv_slave_0
[  390.437923][T13071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  390.495762][T13071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.554979][T13071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  390.620551][T13071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.656892][T13071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  390.692994][T13071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.726399][T13071] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  390.868719][T13071] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.898276][T13071] batman_adv: batadv0: Interface activated: batadv_slave_1
[  390.911000][    C1] eth0: bad gso: type: 1, size: 1408
[  390.924967][T13071] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  390.944197][T13071] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  390.968774][T13071] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  390.977604][T13071] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  391.121039][ T2405] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  391.144692][ T2405] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  391.195072][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  391.210923][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  391.288239][T13315] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2718'.
[  391.335857][T13317] loop4: detected capacity change from 0 to 128
[  392.129123][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  394.199131][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  396.279569][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  396.759378][T13346] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2729'.
[  396.784545][T13349] sctp: [Deprecated]: syz.0.2730 (pid 13349) Use of int in max_burst socket option.
[  396.784545][T13349] Use struct sctp_assoc_value instead
[  397.178779][ T5152] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  397.372291][ T5152] usb 4-1: New USB device found, idVendor=05ac, idProduct=0290, bcdDevice=dc.1b
[  397.382308][ T5152] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.392868][ T5152] usb 4-1: config 0 descriptor??
[  397.407322][ T5152] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input24
[  397.813015][T13379] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2742'.
[  397.829166][ T5152] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  397.840691][T10956] usb 4-1: USB disconnect, device number 23
[  398.019832][ T5152] usb 3-1: Using ep0 maxpacket: 16
[  398.028055][ T5152] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  398.044650][ T5152] usb 3-1: New USB device found, idVendor=05ac, idProduct=0231, bcdDevice= 0.40
[  398.053861][ T5152] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  398.062064][ T5152] usb 3-1: Product: syz
[  398.066395][ T5152] usb 3-1: Manufacturer: syz
[  398.076526][ T5152] usb 3-1: SerialNumber: syz
[  398.088365][ T5152] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input25
[  398.291856][ T4538] bcm5974 3-1:1.0: could not read from device
[  398.302109][ T4538] bcm5974 3-1:1.0: could not read from device
[  398.310504][ T5152] usb 3-1: USB disconnect, device number 20
[  398.358930][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  398.914631][T13415] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2756'.
[  400.144266][T13433] list_del corruption, ffffea0001ec8090->next is NULL
[  400.151437][T13433] ------------[ cut here ]------------
[  400.156911][T13433] kernel BUG at lib/list_debug.c:53!
[  400.162349][T13433] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
[  400.162371][T13433] CPU: 0 UID: 0 PID: 13433 Comm: syz.4.2763 Not tainted 6.10.0-rc7-next-20240709-syzkaller #0
[  400.162389][T13433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  400.162400][T13433] RIP: 0010:__list_del_entry_valid_or_report+0xd0/0x140
[  400.162426][T13433] Code: 06 e2 42 fd 48 8b 13 4c 39 fa 75 6b b0 01 5b 41 5c 41 5e 41 5f c3 cc cc cc cc 48 c7 c7 a0 9b 20 8c 4c 89 fe e8 71 e0 d7 06 90 <0f> 0b 48 c7 c7 00 9c 20 8c 4c 89 fe e8 5f e0 d7 06 90 0f 0b 48 c7
[  400.162440][T13433] RSP: 0018:ffffc90004f37410 EFLAGS: 00010046
[  400.162473][T13433] RAX: 0000000000000033 RBX: ffff888149494000 RCX: 76d79d1643804e00
[  400.162485][T13433] RDX: ffffc90009301000 RSI: 0000000000003204 RDI: 0000000000003205
[  400.162495][T13433] RBP: ffffea0001ec8090 R08: ffffffff8173a779 R09: fffffbfff1c39f64
[  400.162508][T13433] R10: dffffc0000000000 R11: fffffbfff1c39f64 R12: dffffc0000000000
[  400.162519][T13433] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffea0001ec8090
[  400.162530][T13433] FS:  00007f42b4f316c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  400.162544][T13433] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  400.162554][T13433] CR2: ffffffffffffffe8 CR3: 0000000077b22000 CR4: 00000000003506f0
[  400.162568][T13433] Call Trace:
[  400.162576][T13433]  <TASK>
[  400.162582][T13433]  ? __die_body+0x88/0xe0
[  400.162602][T13433]  ? die+0xcf/0x110
[  400.162622][T13433]  ? do_trap+0x15a/0x3a0
[  400.162640][T13433]  ? __list_del_entry_valid_or_report+0xd0/0x140
[  400.162658][T13433]  ? do_error_trap+0x1dc/0x2c0
[  400.162674][T13433]  ? __list_del_entry_valid_or_report+0xd0/0x140
[  400.162693][T13433]  ? __pfx_do_error_trap+0x10/0x10
[  400.162711][T13433]  ? report_bug+0x3cd/0x500
[  400.162726][T13433]  ? __list_del_entry_valid_or_report+0xd0/0x140
[  400.162743][T13433]  ? handle_invalid_op+0x34/0x40
[  400.162758][T13433]  ? __list_del_entry_valid_or_report+0xd0/0x140
[  400.162772][T13433]  ? exc_invalid_op+0x38/0x50
[  400.162789][T13433]  ? asm_exc_invalid_op+0x1a/0x20
[  400.162813][T13433]  ? __wake_up_klogd+0x109/0x140
[  400.162829][T13433]  ? __list_del_entry_valid_or_report+0xd0/0x140
[  400.162846][T13433]  __folio_undo_large_rmappable+0x104/0x230
[  400.162868][T13433]  __folio_migrate_mapping+0x6c1/0x3490
[  400.162886][T13433]  ? try_to_migrate_one+0x89f/0x42e0
[  400.162906][T13433]  ? __pfx___might_resched+0x10/0x10
[  400.162923][T13433]  ? __pfx___folio_migrate_mapping+0x10/0x10
[  400.162945][T13433]  ? copy_mc_to_kernel+0x35/0xa0
[  400.162962][T13433]  ? folio_mc_copy+0x17c/0x290
[  400.162976][T13433]  migrate_folio+0x111/0x260
[  400.162994][T13433]  move_to_new_folio+0x306/0x12e0
[  400.163011][T13433]  ? __pfx_lock_release+0x10/0x10
[  400.163030][T13433]  ? __pfx_move_to_new_folio+0x10/0x10
[  400.163048][T13433]  ? rcu_is_watching+0x15/0xb0
[  400.163066][T13433]  ? lock_release+0xbf/0x9f0
[  400.163083][T13433]  ? folio_lock_anon_vma_read+0x58/0x670
[  400.163097][T13433]  ? folio_lock_anon_vma_read+0x5c9/0x670
[  400.163110][T13433]  ? folio_lock_anon_vma_read+0x58/0x670
[  400.163127][T13433]  ? __up_read+0x2c2/0x6b0
[  400.163141][T13433]  ? __pfx___up_read+0x10/0x10
[  400.163157][T13433]  ? try_to_migrate+0x3de/0x4b0
[  400.163172][T13433]  ? __pfx_lock_release+0x10/0x10
[  400.163188][T13433]  ? __pfx_try_to_migrate+0x10/0x10
[  400.163204][T13433]  ? __pfx_try_to_migrate_one+0x10/0x10
[  400.163220][T13433]  ? __pfx_folio_not_mapped+0x10/0x10
[  400.163234][T13433]  ? __pfx_folio_lock_anon_vma_read+0x10/0x10
[  400.163248][T13433]  ? __pfx_invalid_migration_vma+0x10/0x10
[  400.163268][T13433]  migrate_pages+0xb74/0x3460
[  400.163292][T13433]  ? lock_release+0x70/0x9f0
[  400.163308][T13433]  ? __pfx_alloc_migration_target_by_mpol+0x10/0x10
[  400.163321][T13433]  ? __walk_page_range+0x6bd/0x720
[  400.163340][T13433]  ? __pfx_migrate_pages+0x10/0x10
[  400.163357][T13433]  ? __pfx_lock_release+0x10/0x10
[  400.163373][T13433]  ? mas_prev_slot+0xf10/0xfb0
[  400.163389][T13433]  ? mas_next_slot+0xeab/0xf90
[  400.163407][T13433]  ? __pfx_up_write+0x10/0x10
[  400.163420][T13433]  ? mas_find+0x422/0xbb0
[  400.163436][T13433]  __se_sys_mbind+0x1490/0x19f0
[  400.163468][T13433]  ? __pfx___se_sys_mbind+0x10/0x10
[  400.163489][T13433]  ? vma_end_read+0x18/0x170
[  400.163505][T13433]  ? lock_release+0xbf/0x9f0
[  400.163526][T13433]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  400.163542][T13433]  ? rcu_is_watching+0x15/0xb0
[  400.163558][T13433]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  400.163575][T13433]  ? rcu_is_watching+0x15/0xb0
[  400.163595][T13433]  ? __x64_sys_mbind+0x21/0xf0
[  400.163614][T13433]  do_syscall_64+0xf3/0x230
[  400.163631][T13433]  ? clear_bhb_loop+0x35/0x90
[  400.163646][T13433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  400.163665][T13433] RIP: 0033:0x7f42b4175bd9
[  400.163679][T13433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  400.163691][T13433] RSP: 002b:00007f42b4f31048 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  400.163706][T13433] RAX: ffffffffffffffda RBX: 00007f42b4303f60 RCX: 00007f42b4175bd9
[  400.163718][T13433] RDX: 0000000000000000 RSI: 0000000000600000 RDI: 0000000020000000
[  400.163728][T13433] RBP: 00007f42b41e4e60 R08: 0000000000000000 R09: 0000000000000002
[  400.163738][T13433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  400.163747][T13433] R13: 000000000000000b R14: 00007f42b4303f60 R15: 00007fff3dcd93e8
[  400.163767][T13433]  </TASK>
[  400.163772][T13433] Modules linked in:
[  400.163790][T13433] ---[ end trace 0000000000000000 ]---
[  400.698382][T13433] RIP: 0010:__list_del_entry_valid_or_report+0xd0/0x140
[  400.705321][T13433] Code: 06 e2 42 fd 48 8b 13 4c 39 fa 75 6b b0 01 5b 41 5c 41 5e 41 5f c3 cc cc cc cc 48 c7 c7 a0 9b 20 8c 4c 89 fe e8 71 e0 d7 06 90 <0f> 0b 48 c7 c7 00 9c 20 8c 4c 89 fe e8 5f e0 d7 06 90 0f 0b 48 c7
[  400.724927][T13433] RSP: 0018:ffffc90004f37410 EFLAGS: 00010046
[  400.730992][T13433] RAX: 0000000000000033 RBX: ffff888149494000 RCX: 76d79d1643804e00
[  400.738970][T13433] RDX: ffffc90009301000 RSI: 0000000000003204 RDI: 0000000000003205
[  400.747019][T13433] RBP: ffffea0001ec8090 R08: ffffffff8173a779 R09: fffffbfff1c39f64
[  400.754979][T13433] R10: dffffc0000000000 R11: fffffbfff1c39f64 R12: dffffc0000000000
[  400.762949][T13433] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffea0001ec8090
[  400.770919][T13433] FS:  00007f42b4f316c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  400.779880][T13433] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  400.786474][T13433] CR2: ffffffffffffffe8 CR3: 0000000077b22000 CR4: 00000000003506f0
[  400.794448][T13433] Kernel panic - not syncing: Fatal exception
[  400.800787][T13433] Kernel Offset: disabled
[  400.805100][T13433] Rebooting in 86400 seconds..