last executing test programs:

29m49.885812256s ago: executing program 32 (id=6):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ff5000/0x3000)=nil)
write$sndseq(0xffffffffffffffff, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)
bind$inet6(r1, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f0000000280)="0445aaf04ac2000000050000", 0xc, 0x2000c011, &(0x7f00000001c0)={0xa, 0x2, 0x5, @empty, 0xd}, 0x1c)
syz_open_procfs(0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x42, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11641e7a, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x20, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x647b}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x6000000b)
r5 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x10}, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r1, &(0x7f0000000080)='Lw', 0x2, 0x800, 0x0, 0x0)
r8 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r8, 0xc0401273, &(0x7f0000000300)={'\x00', 0x2, 0x6f11, 0xb, 0x10001, 0x11c3adec})
ioctl$BLKTRACESTART(r8, 0x1276, 0x0)

27m51.825494815s ago: executing program 33 (id=133):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x10000053}, @printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
r1 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3, 0x1}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f0000000300), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r3, 0x29, 0xc8, 0x0, 0x0)
setsockopt$MRT6_FLUSH(r3, 0x29, 0xd4, &(0x7f0000000200)=0x2, 0x4)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x0)
r4 = landlock_create_ruleset(&(0x7f0000000040)={0x1000, 0x3, 0x1}, 0x18, 0x0)
landlock_restrict_self(r4, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @objref={{0xb}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_OBJREF_IMM_NAME={0x9, 0x2, 'syz2\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1cc)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

17m30.562538531s ago: executing program 34 (id=2499):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000001, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000001c0)='sched_process_wait\x00', r1}, 0x10)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x15, 0x10, 0x80, 0x0, 0x0, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000008000000000000005805000018100000", @ANYRES32=r4, @ANYBLOB="000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
close(r3)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000500)={r3, r5, 0x4, r0}, 0x10)

17m25.878920627s ago: executing program 35 (id=2590):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

16m56.581797589s ago: executing program 3 (id=2676):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x400)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x20001000, 0x0, 0x0, 0x0, 0x0, 0x0)

16m56.362994661s ago: executing program 3 (id=2678):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x20c02)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
read(r1, &(0x7f0000001400)=""/4076, 0xfffffeea)

16m53.010654869s ago: executing program 3 (id=2692):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newlink={0x34, 0x10, 0x1, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2188}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}]}, 0x34}}, 0x0)
socket(0x840000000002, 0x3, 0x100)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x800009, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000000180)="02030c65420002000000ab5d71acedd7c9560385dcb1080084d7dc039806112405ce811cc352", 0xff88, 0x0, &(0x7f0000000140)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @broadcast}, 0x14)

16m47.562441728s ago: executing program 3 (id=2702):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000140))
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000280)='./file0/../file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x821c10, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x112dd10, 0x0)

16m47.465850128s ago: executing program 3 (id=2703):
mkdir(&(0x7f0000000280)='./file1\x00', 0x2)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r2, &(0x7f0000002140)={0x2020}, 0x2020)

16m47.001131957s ago: executing program 3 (id=2709):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0xfdef}], 0x1)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000001240)={0x0, 0x2, 0x0, 0x0, 0x0, "001bf1000000000000002000"})
r1 = syz_open_pts(r0, 0x101)
r2 = epoll_create(0x2)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000001200)={0x20000001})
r3 = dup3(r1, r0, 0x0)
write$sndseq(r3, &(0x7f0000000380)=[{0x50, 0xed, 0xf3, 0xaf, @tick=0x8, {0x68, 0x80}, {0x5, 0x8}, @raw8={"8d8de9d94b98685abc2260ec"}}, {0x4, 0xe, 0x8, 0x80, @tick=0x2, {0x7, 0x39}, {0x1, 0x4}, @result={0x3, 0x5}}, {0x90, 0xd, 0x18, 0x2, @time={0xa, 0x2}, {0x5, 0x7}, {0x4, 0xf}, @quote={{0x6, 0x8}, 0x7118}}], 0x54)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, 0x0, 0x80c0)

16m46.61822123s ago: executing program 36 (id=2709):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0xfdef}], 0x1)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000001240)={0x0, 0x2, 0x0, 0x0, 0x0, "001bf1000000000000002000"})
r1 = syz_open_pts(r0, 0x101)
r2 = epoll_create(0x2)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000001200)={0x20000001})
r3 = dup3(r1, r0, 0x0)
write$sndseq(r3, &(0x7f0000000380)=[{0x50, 0xed, 0xf3, 0xaf, @tick=0x8, {0x68, 0x80}, {0x5, 0x8}, @raw8={"8d8de9d94b98685abc2260ec"}}, {0x4, 0xe, 0x8, 0x80, @tick=0x2, {0x7, 0x39}, {0x1, 0x4}, @result={0x3, 0x5}}, {0x90, 0xd, 0x18, 0x2, @time={0xa, 0x2}, {0x5, 0x7}, {0x4, 0xf}, @quote={{0x6, 0x8}, 0x7118}}], 0x54)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, 0x0, 0x80c0)

16m28.849341178s ago: executing program 5 (id=2773):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x9e212000)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0xa7c, r3}, 0x38)
syz_open_procfs(0x0, &(0x7f0000000440)='projid_map\x00')
r4 = syz_open_procfs(0x0, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r6)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0xf, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0x4, 0x9, 0x0, 0x1, 0xe7030000}, {0x16, 0x0, 0x0, 0x6}}, [], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r7, r4, 0x18, 0x0, @void}, 0x10)
r8 = fanotify_init(0x0, 0x0)
pipe2(&(0x7f0000000440)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff}, 0x0)
fanotify_mark(r8, 0x1, 0x40000020, r10, 0x0)
fchmod(r9, 0x8)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r9, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x14, 0x0, 0x800, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x20000c41}, 0x4)
setsockopt$inet6_tcp_buf(r4, 0x6, 0x21, 0x0, 0x0)

16m27.596755155s ago: executing program 5 (id=2779):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-generic\x00'}, 0x58)
r2 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg$unix(r2, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)

16m25.423145641s ago: executing program 5 (id=2782):
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_init_net_socket$ax25(0x3, 0x2, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = syz_io_uring_setup(0x1458, &(0x7f00000004c0)={0x0, 0x4, 0x10180, 0x2000, 0x3ae}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000002c0)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='9'], 0x38}}, 0x4000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x6a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2040, 0x1})
io_uring_enter(r0, 0x2d3e, 0xfffffffd, 0x0, 0x0, 0x0)

16m25.169171258s ago: executing program 5 (id=2783):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r0}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
close(r2)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x13, 0x8, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000c80)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r4, 0x0, 0x0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000dc0)={{r3}, &(0x7f0000000d40), &(0x7f0000000d80)}, 0x20)

16m24.917104562s ago: executing program 5 (id=2785):
openat$audio(0xffffffffffffff9c, 0x0, 0x109842, 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000180)="bb", 0x1}], 0x1, 0x0, 0x0, 0x80d0}, 0x8005)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

16m23.668690989s ago: executing program 5 (id=2790):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmsg$inet(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001c80)="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", 0x69e}], 0x1}, 0x44080)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000740)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc487553859348d48e6fc49d81c71590cd542e796cc2669e2c691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b95e269169f5f7b51dd5319b8016623d1863d7d77ceefde94faf2e36c3920581691a79a6678db1e5e7fa1ca703ee7aa87272e9c4a1bde5fbc390c7ccb9d3c1020e80bd0659e82d861dc6feffff", 0xc7}, {&(0x7f0000000940)="5be3b011e1", 0x5}], 0x2}}], 0x1, 0x20004050)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab", 0x3a, 0x11, 0x0, 0x0)

16m8.18427702s ago: executing program 37 (id=2790):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmsg$inet(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001c80)="50e2d0e8f7c79f56fe316075d1848c2846a50934836763ae403f35dbe8580de2c59113798cdc8a74dc21020f4e97e9ac22768c9b7d9aca64aa97212a1826646b4a19ebd05d3e7cbae0f91b621e6ac8e60d7d39df4febd1a8e2a737845dccfdbecde934165ded16e411da023b9fba7840a8e50b7f909cc9d51522dc4ac3075e975b35681f8d16915a3d248396f134273ff13a72f082839bd3021d4f0a5550671bb7d267d74dc8a800f3f7e8be6daea4379e76bc978e801fbd9d83544776580baa62d6156cc3aaec4b79a8ecc46317f48f62ff039722c87db0cd54d937de47619f530c29622e55176b5dfbbd084521a28e89488f57a6d3c19c2df39243d73425d52f0a42cc4a01e39f3c24ecd0e22d696d59320e4ee7d111d3abac17ebfc8aa6bb910c8d1d92efe391d372130bfccdec653e41694e86c79164f36b1ac9fc2812a7944f8b08f6780b102f71f4dc7232c83d20a4aa83db3e540a063f7f13360b6435b755f4af598016caf933a76bf2f2897b04a1efe5793b62c87532ba7fc740372ea2918a0dca9de22c336f6b4ab77b1047e00d693585263f938791e5bf228f297896d3a90f4e87c53e42589eba922b3770644a9a199bd95fca9d25416417924b7b594e88cb3e0b3d48014993d64636c82533a49c239a2305b4e9fe43f2ab23aa972ecfd7bd1eefb2d9f8117a8711e5f4c84704b761fdac68a8ae0e0e2d69bcd3ee3b3101a14459b9aac31b693130e809b72e9a8722029a6ee71faf89daa40d3a98476aeeb172b14d452a38475599d5f8243ff49bbc4fd4341ee82c77d0f7e3a93fb89d9c826697f86a7ed404d82fd358d919af26580bed09ce5f694c7fb2919b181ff08da24a7a95523b67b45098c233abdac18a7816bc2e56092f0f8fc300d44f0c181b7bc103b03fe978410816b1ec59a52f2d08a895028dc4559983701ce75a60ccdec67401e1208ca3f4032aeb7536f6cfb3f9fb1f2fa8e67adcfc8690e904599860f707b1be70a49f60e01e8fd3f46165cd186808e0536bde9356dea4ce245a9cc3293a2c7e42d96c953526d3639bd2a1c05a41bac3b5f6481bcfd77800ab9aaedc052aa5ac5ba096cc7cdc0df47264f7c990216316562d1762e08a3c926b8e44064acdeee6e7900b74edf1999d9d984b01117af0621b990370259cfb744c316956c91267409219a634bdf29971338847f443562833255d1117db0c55a888e45b7c7159ee8d45f24b392ead1cfef44a2e3f74735b4e41ff5353b1db3e7dc4b867de1d67fa4e02c91d3b0c5cb06512907666a2425368a4ab04413e31285981a930372380b4a531feb8320cb6385907ff0b4fb905c90ce75f0bb62a0f8e202d8ceb7f0c7912e929dc8de5cfee100beea6497dd933697933a35e1e282155be7686ec7398b64a3414c2d6284bd2eeecae31c4d2495079bf05d3be2cb7c44f4cfa6f7bb10ee106f9050d9502aefa0ee964f535c877df896f4a81e1fbe40f28894dc0edc2079b5fac189fc1eea9165261c6102a67a16ed2a3cfe6d3fe1f119c31cc6c6f0820012cc95a2c138b810b91c3bc51e8ca53767b0feea128d49e7ac688ad648ae9389c0fd3f640c74248c4150cd6236b7e7e0cc7d6acf57c25de3be7b4465e39dfb226c0a1787946a9ec87d362bdb953242ef19c18372e40ee32ef06f01db02df9cd393abde678afdc711189017230d08943118a82059a4b38e49d525179f88dad99349b1b484f145c4eec433afaee176395c9a868f359eb1da9cfc25f1806c1c43fdde4a863ace56635d90eaf64a6b3f41c2eb8d7f8695c5a9867ba494d7a108b474b31994ca9c7c256a23a8642ca2274ac2d11afdf7fea92893ee41343fd562dcf299dfa14e9e1c21974e21cebb38e052b107cb218f63318cc4de477bc62d454a1ceed157c3c7b0824f37437036d2cca49dac4e1c0a248e362f90b3c5e6a2deef4f923d6af856ea4b0ab6e38eca42d1a0b9cb366000ea3a7cd8456819a1a29b64b6df2ae67b8696a1777d8844c91604b59a288db3a7ce96c46e7fc2093260f1d3795312f32dd63fee0cc61397865a4704ff56d601bf78f8be8c6ba12e6cdac41e2329ecf7450d479e5009c479ba7380120f582dc1b9ca2c5378d6a08f262cd34cb9018ab311094f77a5a34d5f08e6c63079245885467ed23985d338f5995ded775d0d4ead6b19c6811d1c1c14958caca91105719f9575ff2d2e5c267132e492eeebe163a8b6d65b980994ad2b98c7b306038a3d09d72080ae46f3358a3d72727bc75449075ef1e7eebbb3a93a981341da51a8df2e93b6833cc743f6fa67f1e3bab50d4c9ef55a5f7de71e270329332a4cd7e696d57918052b3d835bcf9da6735b66a48cc06c2fc4cbe1fe51c91c582cb251e11c1953ab6897bb3a8", 0x69e}], 0x1}, 0x44080)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000740)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc487553859348d48e6fc49d81c71590cd542e796cc2669e2c691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b95e269169f5f7b51dd5319b8016623d1863d7d77ceefde94faf2e36c3920581691a79a6678db1e5e7fa1ca703ee7aa87272e9c4a1bde5fbc390c7ccb9d3c1020e80bd0659e82d861dc6feffff", 0xc7}, {&(0x7f0000000940)="5be3b011e1", 0x5}], 0x2}}], 0x1, 0x20004050)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab", 0x3a, 0x11, 0x0, 0x0)

15m23.184515299s ago: executing program 8 (id=2980):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000200)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
unlinkat(r1, &(0x7f0000000280)='./file0\x00', 0x200)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

15m22.913991266s ago: executing program 8 (id=2982):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000580)={0x0, 0x1, 0x0, &(0x7f0000000100)=""/47, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f00000003c0)=""/82, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000016c0))
r1 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000180)=r1)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000040)=0x1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000380)={0x0, r1})
syz_usb_connect$hid(0x1, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x5ac, 0x240, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xa0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x0, 0x87}}}}}]}}]}}, 0x0)

15m19.63853095s ago: executing program 8 (id=2993):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300ea2d010203010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000004c0)={0x10, &(0x7f0000000280)=ANY=[], 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000380)={0x44, &(0x7f0000000a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000009c0)={0x1c, &(0x7f0000000300)={0x20, 0x11, 0x2, "a3f5"}, 0x0, 0x0})

15m16.421180861s ago: executing program 8 (id=3011):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000100)={0x10002, 0x4, 0x2000, 0x1000, &(0x7f000000f000/0x1000)=nil})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

15m15.45265251s ago: executing program 8 (id=3013):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r0, 0x0)
setpgid(0x0, r0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x42}, 0x18)

15m15.060439293s ago: executing program 8 (id=3015):
openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r0, 0x400454c9, 0x200000000000001)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x30, 0x2, 0x3, 0x101, 0x0, 0x0, {0x1, 0x0, 0x6}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x5}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x1, 0x2}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004}, 0x40000)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'veth0_vlan\x00'})

14m59.737745722s ago: executing program 38 (id=3015):
openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r0, 0x400454c9, 0x200000000000001)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x30, 0x2, 0x3, 0x101, 0x0, 0x0, {0x1, 0x0, 0x6}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x5}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x1, 0x2}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004}, 0x40000)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'veth0_vlan\x00'})

13m43.419486809s ago: executing program 1 (id=3368):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@x86={0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13m42.516413554s ago: executing program 1 (id=3371):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000340)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r4 = dup(r3)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f000043f000/0x18000)=nil, &(0x7f0000000500)=[@text32={0x20, 0x0}], 0x1, 0x8, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000024d564b000000eccd"])
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000100)={"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"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13m40.414013879s ago: executing program 1 (id=3380):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000009c80)={0x24, 0x40, 0x9, 0xfffffffc, 0x25dfdbfd, {0x2}, [@typed={0x4, 0x11f}, @nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x65, 0x0, 0x1, [@typed={0x4, 0x4a}]}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

13m39.088990514s ago: executing program 1 (id=3386):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x18d811, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
unshare(0x2a060400)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r2 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r2, r1, 0x0, 0x80000000)

13m38.882922193s ago: executing program 1 (id=3389):
socket$nl_generic(0x10, 0x3, 0x10)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1000000000000f, &(0x7f0000000080)=0x7fffffff, 0x4)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r1, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)="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", 0x100}, {&(0x7f0000000400)="029993440c7a0c95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c0604aaf296d8218e240055cb92f17b", 0x50}, {&(0x7f0000000880)="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", 0x169}, {0x0}, {&(0x7f0000000780)="ee2b8de12caed85a84bbe5854b4a879f0d5e9b53d380b393c035dcafd9af81d4fc3dd513b0a41559464222086313a81b6c93e9741a179ff660979100799c0004ddb4c7be45b5a98ceb2d06c514abe03a266ea223e28301f4b53d6d89307af65c4b51fc596064fb20edd112ec6e13aef198fd279bce9de9a9ad28452583045f866f52575b0f4c463e23795bc459a11d7e7c002479aa1f2f091d4c918051", 0x9d}], 0x5}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000480)="1d0c3681cdb39230639a56b95acf5e5dbddce5d982e2765f7a459fbbe66239486332f74beecbefa42f3e2e976ddc4db215", 0x31}], 0x1}}], 0x2, 0xc0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r1, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, 0x0, 0x48800)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x34, &(0x7f0000000040), 0x4)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="000800000000000000000019a0716be5fb0d8200", @ANYRES32=r0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha512-avx)\x00'}, 0x58)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

13m38.048735648s ago: executing program 1 (id=3392):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
r0 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setgid(r1)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000200)='./bus\x00')
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r3, 0x0, 0x0)

13m37.635474299s ago: executing program 39 (id=3392):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000008c0)='./bus\x00', 0x0)
r0 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setgid(r1)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000200)='./bus\x00')
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r3, 0x0, 0x0)

2m14.896626932s ago: executing program 6 (id=4762):
socket$igmp6(0xa, 0x3, 0x2)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x402100, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000000000000"])
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000380), 0x4)
sched_setscheduler(0x0, 0x1, &(0x7f0000000500)=0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000180), 0xc082, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7f12ddb357f7adf97affffffff7d1800"})
prctl$PR_SET_MM(0x35, 0x2, &(0x7f0000f77000/0x4000)=nil)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x18, 0x3b, 0x107, 0x0, 0x0, {0x2, 0x7c}, [@nested={0x4, 0x120}]}, 0x18}}, 0x0)
r7 = openat$smackfs_cipso(0xffffffffffffff9c, &(0x7f0000000040)='/sys/fs/smackfs/cipso2\x00', 0x2, 0x0)
write$smackfs_cipso(r7, &(0x7f0000000080)={'{', 0x20, 0x1e, 0x20, 0x1, 0x20, [{0xb8000000}]}, 0x42)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000003880)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-ssse3\x00'}, 0x58)
accept4(r8, 0x0, 0x0, 0x0)

2m13.61860981s ago: executing program 6 (id=4765):
mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, 0x0, 0x1, 0x4010, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x21, &(0x7f0000000040), 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1, 0x10, 0xffffffffffffffff, 0x39721000)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000440)='projid_map\x00')
r3 = syz_open_procfs(0x0, 0x0)
r4 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r4)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r5, r3, 0x18, 0x0, @void}, 0x10)
r6 = fanotify_init(0x0, 0x0)
pipe2(&(0x7f0000000440)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
fanotify_mark(r6, 0x1, 0x40000020, r8, 0x0)
fchmod(r7, 0x8)
ioctl$KVM_SET_TSS_ADDR(r3, 0xae47, 0x0)

2m9.78416081s ago: executing program 6 (id=4772):
mkdir(&(0x7f0000000280)='./file0\x00', 0x100)
r0 = msgget$private(0x0, 0x414)
msgctl$IPC_SET(r0, 0x1, 0x0)
msgsnd(r0, &(0x7f0000000340)={0x3}, 0x0, 0xe800)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x24401, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './file0/../file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x9}, 0x18)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a})
msgctl$IPC_INFO(r0, 0x3, &(0x7f0000000480)=""/168)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ftruncate(r1, 0x81ff)
r4 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0)
ioctl$TCSETS2(r4, 0x402c542b, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x8bee, 0x0, "87d3865187b8c6f0a84af6a637903184033c67"})
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000001c00)=0x3)
rmdir(&(0x7f0000000380)='./file0/../file0\x00')
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00')
move_mount(0xffffffffffffff9c, &(0x7f0000000040)='./file0/../file0\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x250)

2m7.320540674s ago: executing program 6 (id=4777):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x20001000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
madvise(&(0x7f0000a6f000/0x4000)=nil, 0x4000, 0x65)
r5 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r5, 0x0, 0x0)
timer_create(0x1, 0x0, &(0x7f0000bbdffc)=<r6=>0x0)
timer_settime(r6, 0x0, &(0x7f0000000180)={{0x77359400}, {0x77359400}}, &(0x7f0000000a80))
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010040000900010073797a30000000000900030073797a310000000084000000060a010400000000000000000100000008000b40000000005c0004802c000180090001007866726d000000001c0002800800024000000004050003000000000008000140000000092c00018008000100636d7000200002800c00038005000100ac000000080001400000000c08000240000000030900010073797a30000000001400000011000100"/245], 0xf8}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r8, 0x8208ae63, &(0x7f0000000340)={0x0, 0x0, @pic={0x7, 0x3, 0x1, 0x6, 0x1, 0x7f, 0x2, 0x9, 0x9, 0x0, 0xf6, 0x6, 0x8, 0x2}})
syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r7)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)

2m2.57003348s ago: executing program 6 (id=4785):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000001180)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_init_net_socket$ax25(0x3, 0x5, 0x6)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0xbc4, &(0x7f0000000300)={0x0, 0xfd3b, 0x6aff8d7c40791670, 0x0, 0x89}, &(0x7f0000000240), &(0x7f0000000280))
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$inet_int(r4, 0x0, 0x22, 0x0, &(0x7f00000001c0))
r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ptype\x00')
read$msr(r5, &(0x7f0000000040)=""/59, 0xffb5)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_GROUP_ADDR={0xa, 0x14, @remote}, @IFLA_BR_AGEING_TIME={0x8, 0x9}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r7 = openat$ipvs(0xffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
setsockopt$bt_hci_HCI_FILTER(r7, 0x0, 0x2, &(0x7f00000001c0)={0x3, [0x9, 0x9], 0x3}, 0x10)
getpid()
socket$nl_generic(0x10, 0x3, 0x10)

1m59.368339684s ago: executing program 6 (id=4788):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x60020000)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, 0x0, 0x0)
ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000580)="e3e039700cb727921d709a0b53a17a8c3132eba9f529c929d5c51db1200c3fbf5627a4b1a75a0d23dc4d6a83e4e8b6e3e52c348a89cac178", 0x38, 0x24000010, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$binfmt_format(0xffffff9c, &(0x7f0000000080)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
syslog(0x2, &(0x7f0000000180), 0x0)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0xfffffd9d)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRESOCT=r0], 0x48)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x442, 0x0)
mount$afs(&(0x7f0000000040)=ANY=[], &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000200)=0x39, 0x4)

1m42.217925115s ago: executing program 40 (id=4788):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x60020000)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, 0x0, 0x0)
ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000580)="e3e039700cb727921d709a0b53a17a8c3132eba9f529c929d5c51db1200c3fbf5627a4b1a75a0d23dc4d6a83e4e8b6e3e52c348a89cac178", 0x38, 0x24000010, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$binfmt_format(0xffffff9c, &(0x7f0000000080)='/proc/sys/fs/binfmt_misc/syz1\x00', 0x2, 0x0)
syslog(0x2, &(0x7f0000000180), 0x0)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0xfffffd9d)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRESOCT=r0], 0x48)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x442, 0x0)
mount$afs(&(0x7f0000000040)=ANY=[], &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000200)=0x39, 0x4)

7.71641559s ago: executing program 2 (id=5034):
socket$isdn(0x22, 0x2, 0x26)

6.514042447s ago: executing program 0 (id=5036):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
memfd_secret(0x0)

5.746019338s ago: executing program 2 (id=5038):
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
fsetxattr$smack_xattr_label(r0, &(0x7f00000000c0)='security.SMACK64MMAP\x00', &(0x7f0000000100)={'}+\'^*{/'}, 0x8, 0x1)

5.685132516s ago: executing program 0 (id=5039):
r0 = syz_open_dev$swradio(&(0x7f0000000700), 0x0, 0x2)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000000)={0xc, @sdr})

4.523748393s ago: executing program 9 (id=5040):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
unshare(0x2c020600)
r2 = msgget$private(0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000380)=ANY=[@ANYRESOCT], 0x2000, 0x800)
msgsnd(r2, 0x0, 0x27, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)

4.429734299s ago: executing program 2 (id=5041):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000002240)=@newtaction={0x88c, 0x30, 0x12f, 0x0, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x217, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x10002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xfffffffc, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x88c}}, 0x0)

4.371451271s ago: executing program 4 (id=5042):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x24, 0x2, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x1}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x4}]}, @CTA_TUPLE_ORIG={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x8090)

4.370593045s ago: executing program 0 (id=5043):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x30dd3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x360, 0x160, 0x4c, 0x2500, 0x290, 0x73, 0x290, 0x258, 0x258, 0x290, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @local, [], [], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x73}, 0x0, 0x118, 0x160, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0x3}}, @common=@unspec=@connlimit={{0x40}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'vxcan1\x00', 'team0\x00'}, 0x0, 0xf8, 0x130, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@icmp6={{0x28}, {0x0, "e1f6"}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3c0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)={0x3a8, 0x0, 0xc4fc9e906872338b, 0x10000, 0x0, {{0x15}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x38c, 0x11d, 0x0, 0x1, [{0x2b8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x78}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xd5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x270, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x14, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x3, 0x3}, {0x7, 0x3}]}]}, @NL80211_BAND_2GHZ={0x88, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x4be, 0x7ff, 0xb, 0x6, 0x9, 0x5, 0x5]}}, @NL80211_TXRATE_HT={0x3a, 0x2, [{0x3, 0x2}, {0x4, 0x8}, {0x0, 0x8}, {0x1, 0x8}, {0x2, 0x5}, {0x5, 0x1}, {0x7, 0x3}, {0x2, 0x7}, {0x5, 0x7}, {0x4, 0xa}, {0x3, 0x8}, {0x0, 0x3}, {0x6, 0x6}, {0x1, 0x2}, {0x4, 0x5}, {0x2}, {0x3}, {0x6, 0x7}, {0x6, 0x3}, {0x4, 0x7}, {0x2, 0x6}, {0x7, 0x6}, {0x4, 0x8}, {0x1, 0xa}, {0x6, 0x5}, {0x3, 0x4}, {0x2, 0x6}, {0x1, 0xa}, {0x6, 0xa}, {0x6, 0x9}, {0x6, 0x2}, {0x1, 0x3}, {0x4, 0x7}, {0x2, 0x6}, {0x0, 0x1}, {0x4, 0x3}, {0x3, 0x4}, {0x3, 0x2}, {0x6, 0x4}, {0x3, 0x5}, {0x4, 0x6}, {0x4, 0x5}, {0x2, 0x9}, {0x2, 0x5}, {0x3, 0x3}, {0x3, 0xa}, {0x1, 0x1}, {0x1, 0x2}, {0x1, 0x1}, {0x5, 0x9}, {0x3, 0x1}, {0x3, 0x5}, {0x2, 0xa}, {0x1, 0xa}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xd, 0x8, 0x5, 0xfb4d, 0x2, 0x0, 0x8, 0xca]}}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}, @NL80211_BAND_60GHZ={0x28, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x2, 0x8, 0x8000, 0x1, 0x4000, 0xb, 0x8]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x13, 0x1, [0xb, 0x5, 0xc, 0x6, 0x0, 0x16, 0x2, 0xc, 0x6, 0x1, 0x2, 0xb, 0xb, 0x2, 0x65]}]}, @NL80211_BAND_60GHZ={0x2c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x6c, 0x5, 0x2, 0x6c, 0x9, 0x2, 0x48, 0x9, 0x4, 0x2, 0x24, 0xc, 0x9, 0x48, 0xc, 0xc, 0x30, 0x36, 0xb, 0x16, 0x6, 0x1b, 0x2, 0xc, 0xb, 0x5]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_6GHZ={0xc8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x2, 0x1, 0xffc0, 0x9, 0x4, 0x9, 0x1000, 0xc90e]}}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HT={0x49, 0x2, [{0x7, 0xa}, {0x7, 0x2}, {0x1, 0x2}, {0x0, 0x7}, {0x0, 0x9}, {0x5, 0x6}, {0x3, 0x2}, {0x4, 0x7}, {0x6, 0x4}, {0x6, 0x6}, {0x6, 0x5}, {0x0, 0x8}, {0x7, 0x5}, {0x7, 0x5}, {0x1}, {0x3, 0x2}, {0x1, 0x1}, {0x6, 0x2}, {0x3, 0x7}, {0x1, 0x10}, {0x4, 0x8}, {0x2, 0x4}, {0x3, 0x3}, {0x0, 0x3}, {0x0, 0x5}, {0x2, 0x1}, {0x4, 0xa}, {0x1, 0xa}, {0x1}, {0x0, 0x6}, {0x6}, {0x1, 0x8}, {0x1, 0xa}, {0x3, 0x5}, {0x6, 0x5}, {0x0, 0x4}, {0x1, 0x8}, {0x4, 0xa}, {0x4, 0xa}, {0x0, 0x1}, {0x0, 0x8}, {0x0, 0x3}, {0x7, 0x5}, {0x2, 0x1}, {0x2, 0x7}, {0x7, 0x6}, {0x0, 0x6}, {0x1, 0xa}, {0x4, 0x3}, {0x4, 0x7}, {0x2, 0x7}, {0x1, 0x3}, {0x0, 0xa}, {0x2, 0x6}, {0x6, 0xa}, {0x5, 0x6}, {0x1, 0x3}, {0x7, 0x5}, {0x0, 0x5}, {0x1, 0x7}, {0x0, 0x3}, {0x3, 0x3}, {0x5, 0x9}, {0x0, 0x8}, {0x5}, {0x4, 0x2}, {0x5, 0x4}, {0x0, 0x5}, {0x4, 0x9}]}, @NL80211_TXRATE_HT={0x29, 0x2, [{0x0, 0x3}, {0x0, 0x3}, {0x3, 0x5}, {0x2, 0x8}, {0x3, 0x1}, {0x4, 0xa}, {0x6, 0x7}, {0x6, 0x1}, {0x0, 0x7}, {0x1, 0xa}, {0x6, 0x8}, {0x1, 0x3}, {0x5, 0x2}, {0x3, 0x8}, {0x3}, {0x4, 0x9}, {0x2, 0x7}, {0x0, 0x7}, {0x6, 0x8}, {0x3, 0x3}, {0x6, 0x7}, {0x1, 0x5}, {0x0, 0x5}, {0x6, 0x1}, {0x5, 0x8}, {0x1}, {0x6, 0x1}, {0x5, 0x1}, {0x6, 0x9}, {0x7, 0x8}, {0x0, 0x8}, {0x5}, {0x4, 0x5}, {0x5}, {0x4, 0x9}, {0x1}, {0x3, 0x4}]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x36, 0x3, 0x12, 0x4, 0x16, 0x23, 0x18, 0x24, 0x36, 0x1, 0x7954da3fdb12525e, 0x24, 0x60, 0xc, 0x48, 0x12, 0x0, 0x5, 0x1b, 0x6, 0x30, 0x9, 0x9, 0x1, 0x6c]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}]}, @NL80211_BAND_6GHZ={0x60, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0xf901, 0x283, 0x4, 0x3ff, 0x6, 0x1, 0xff87]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7ff, 0xff, 0x81, 0x1000, 0x6, 0xf5, 0x0, 0x2]}}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HT={0x11, 0x2, [{}, {0x1}, {0x3, 0x1}, {0x5, 0x4}, {0x6, 0x3}, {0x4, 0x2}, {0x2, 0x2}, {0x1}, {0x4, 0x7}, {0x6, 0x4}, {0x1, 0x1}, {}, {0x4, 0xa}]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}, @NL80211_BAND_60GHZ={0x20, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x30, 0x18, 0x18, 0x1b, 0x12, 0x60, 0x6c, 0x1, 0x0, 0x6c, 0x2, 0x5, 0x2]}]}, @NL80211_BAND_2GHZ={0x1c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x10, 0x2, [{0x3, 0xa}, {0x7, 0x1}, {0x1}, {0x1, 0x2}, {0x6, 0x2}, {0x2, 0x3}, {0x6, 0x4}, {0x2, 0x3}, {0x2, 0x8}, {0x0, 0x7}, {0x3, 0x3}, {0x0, 0x6}]}, @NL80211_TXRATE_HE_LTF={0x5}]}]}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x77}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7d}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x4a}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x8}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xeb}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xd1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xe1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xd4e2}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9d}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xffffffffffffb8de}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xb5}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x6a}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x60}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x26}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xb}]}]}]}, 0x3a8}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)={0x1c, 0x21, 0x1, 0x0, 0x0, "", [@nested={0xc, 0x14, 0x0, 0x1, [@typed={0x4, 0x72}, @typed={0x4, 0x43}]}]}, 0x1c}], 0x1}, 0x0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e, 0x100}})

2.718678351s ago: executing program 9 (id=5044):
socket$nl_generic(0x10, 0x3, 0x10)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1000000000000f, &(0x7f0000000080)=0x7fffffff, 0x4)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r1, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)="93bffce623851797a8dc7945b18bc896d8f016f5f2f79a06bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84002ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6fc40b5d108006ac0b7a9fd7f1748af989000000000000000000000000000fcd777d49db60d12054c4c409655229360c84c5e487bf16d2d8a663d1b4a19efa60bd6884eda1db1e5385cd939aa641a04d894513f8fedbbe0650e54dd942aff59829202de9eea54cfa943e7c1e2394dc2cd41", 0xf6}, {&(0x7f0000000400)="029993440c7a0c95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc40206c86df9", 0x6a}, {&(0x7f0000000880)="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", 0x169}, {0x0}, {&(0x7f0000000780)="ee2b8de12caed85a84bbe5854b4a879f0d5e9b53d380b393c035dcafd9af81d4fc3dd513b0a41559464222086313a81b6c93e9741a179ff660979100799c0004ddb4c7be45b5a98ceb2d06c514abe03a266ea223e28301f4b53d6d89307af65c4b51fc596064fb20edd112ec6e13aef198fd279bce9de9a9ad28452583045f866f52575b0f4c463e23795bc459a11d7e7c002479aa1f2f091d4c918051", 0x9d}], 0x5}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000480)="1d0c3681cdb39230639a56b95acf5e5dbddce5d982e2765f7a459fbbe66239486332f74beecbefa42f3e2e976ddc4db215", 0x31}], 0x1}}], 0x2, 0xc0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r1, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab", 0x3a, 0x11, 0x0, 0x0)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, 0x0, 0x48800)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x34, &(0x7f0000000040), 0x4)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='autofs\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha512-avx)\x00'}, 0x58)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

2.692677071s ago: executing program 2 (id=5045):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newlink={0x58, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8101, 0x6028d}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_IPTUN_PROTO={0x5, 0x9, 0x4}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @remote}]}}}, @IFLA_MTU={0x8, 0x4, 0x500}]}, 0x58}}, 0x0)

2.613058031s ago: executing program 4 (id=5046):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0xb4, &(0x7f0000000080), &(0x7f00000005c0)=0x4)

2.417458362s ago: executing program 0 (id=5047):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0xf, 0x8041)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, 0x0)

2.300037866s ago: executing program 4 (id=5048):
r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x80000)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000001980)={{0x0, 0x0, 0xfefb, 0x0, 'syz0\x00'}, 0x5, 0x10, 0x7, 0x0, 0x0, 0x0, 'syz0\x00', 0x0})

2.055944433s ago: executing program 7 (id=5049):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="900000000002010400000000000000000a00fcff040001803c0003800c00028005000100000000002c000180140003000000000000000000000000000000000114000400fe8000000000000000000000000000bb3c0002800c00028005000100000000002c000180140003"], 0x90}}, 0x0)

1.547383426s ago: executing program 2 (id=5050):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0x2)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r2, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x4000000}, 0x1c)
listen(r3, 0x9)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r5, &(0x7f0000000180)={0x0, 0xfffffd10, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08061cdc030ec08000000fff0000000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800030006010000bdad446b9bbc7a46e3988285dcdf12f2130809d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff000000000000000000", 0x89}], 0x1}, 0x0)

1.547067673s ago: executing program 9 (id=5051):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={0x2c, 0x1, 0x4, 0x101, 0x0, 0x0, {0x4, 0x0, 0x6}, [@NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x4}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x7}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x8000)

1.487331392s ago: executing program 4 (id=5052):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f0000000340)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}, {{&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0}}], 0x2, 0x0)

1.445147649s ago: executing program 0 (id=5053):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x48, 0x13, 0x44, 0x20, 0x424, 0x7500, 0x69ee, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xb8, 0x7, 0x2, 0x96, 0xd1, 0xca, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0xd, 0x0, 0x6}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)

1.049228545s ago: executing program 7 (id=5054):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
unshare(0x2c020600)
r2 = msgget$private(0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000380)=ANY=[@ANYRESOCT], 0x2000, 0x800)
msgsnd(r2, 0x0, 0x27, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)

718.317494ms ago: executing program 4 (id=5055):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x8c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x64, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x21}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x2c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0xf}, @NFTA_BITWISE_DREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x100}}, 0x0)

665.058809ms ago: executing program 9 (id=5056):
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000240)={0x3, @sliced={0xb96, [0x2, 0xb, 0x9, 0x0, 0x3, 0x0, 0xcf99, 0x1ff, 0x1, 0x1ff, 0x9, 0x3654, 0x2, 0x9, 0x7ff, 0x60, 0xc76d, 0x9, 0x9, 0x3, 0x9, 0x40, 0x0, 0x8, 0x2, 0x1, 0x2, 0xe, 0x3ff, 0xe, 0x4, 0x8, 0x4, 0x8000, 0x4, 0x0, 0x7, 0x0, 0x7, 0xfff7, 0x1, 0x5, 0x3, 0x0, 0xe6, 0x6, 0x3, 0x8], 0xac}})

606.957085ms ago: executing program 2 (id=5057):
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e13010002000001"], 0x16)

601.425931ms ago: executing program 7 (id=5058):
r0 = syz_open_dev$video4linux(&(0x7f0000000980), 0x4, 0x8102)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205647, &(0x7f0000000a00)={0x9a0000, 0x5, 0x5, 0xffffffffffffffff, 0x0, &(0x7f00000009c0)={0x9b0961, 0x6, '\x00', @value64=0x100}})

453.087448ms ago: executing program 4 (id=5059):
syz_usb_connect$cdc_ncm(0x6, 0x76, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a44000010203010902640002010000000904000001020d000008240600015a25b505240000000d240f0100000000000000000006241a00000005240100000905810300000000000904010000020d00000904010102020d000009058202000000000009050302"], 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="120100009c147010861246205bb4018203010902240001000000000904000002ff0401"], 0x0)

449.260875ms ago: executing program 9 (id=5060):
r0 = socket$nl_generic(0x11, 0x3, 0x10)
sendmsg(r0, &(0x7f0000000080)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0xe}], 0x1, 0x0, 0x0, 0x11000000}, 0x0)

432.667059ms ago: executing program 7 (id=5061):
r0 = syz_open_procfs(0x0, &(0x7f00000191c0)='net/dev_mcast\x00')
pread64(r0, &(0x7f0000000080)=""/102356, 0x18fd4, 0x2a)

307.816591ms ago: executing program 9 (id=5062):
socket$nl_generic(0x10, 0x3, 0x10)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1000000000000f, &(0x7f0000000080)=0x7fffffff, 0x4)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r1, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)="93bffce623851797a8dc7945b18bc896d8f016f5f2f79a06bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84002ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6fc40b5d108006ac0b7a9fd7f1748af989000000000000000000000000000fcd777d49db60d12054c4c409655229360c84c5e487bf16d2d8a663d1b4a19efa60bd6884eda1db1e5385cd939aa641a04d894513f8fedbbe0650e54dd942aff59829202de9eea54cfa943e7c1e2394dc2cd41", 0xf6}, {&(0x7f0000000400)="029993440c7a0c95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc40206c86df9", 0x6a}, {&(0x7f0000000880)="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", 0x169}, {0x0}, {&(0x7f0000000780)="ee2b8de12caed85a84bbe5854b4a879f0d5e9b53d380b393c035dcafd9af81d4fc3dd513b0a41559464222086313a81b6c93e9741a179ff660979100799c0004ddb4c7be45b5a98ceb2d06c514abe03a266ea223e28301f4b53d6d89307af65c4b51fc596064fb20edd112ec6e13aef198fd279bce9de9a9ad28452583045f866f52575b0f4c463e23795bc459a11d7e7c002479aa1f2f091d4c918051", 0x9d}], 0x5}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000480)="1d0c3681cdb39230639a56b95acf5e5dbddce5d982e2765f7a459fbbe66239486332f74beecbefa42f3e2e976ddc4db215", 0x31}], 0x1}}], 0x2, 0xc0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r1, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab", 0x3a, 0x11, 0x0, 0x0)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, 0x0, 0x48800)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x34, &(0x7f0000000040), 0x4)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='autofs\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(sha512-avx)\x00'}, 0x58)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

307.179595ms ago: executing program 7 (id=5063):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001400), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)={0x2c, r0, 0x1, 0x8, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x4}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)

182.604781ms ago: executing program 7 (id=5064):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1)
ioctl$VIDIOC_S_STD(r0, 0x40085618, &(0x7f0000000100)=0xffffff)

0s ago: executing program 0 (id=5065):
clock_adjtime(0x0, &(0x7f0000000480)={0xd54, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000})

kernel console output (not intermixed with test programs):

turer: syz
[ 1036.392778][ T1206] usb 10-1: SerialNumber: syz
[ 1036.395445][ T1206] usb 10-1: config 0 descriptor??
[ 1036.396123][T17225] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1036.396259][T17225] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1036.886761][ T1206] usb 10-1: USB disconnect, device number 6
[ 1039.850580][T17296] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1040.657073][T17307] No control pipe specified
[ 1043.119660][T17348] netlink: 'syz.0.3222': attribute type 16 has an invalid length.
[ 1043.138877][T17348] netlink: 'syz.0.3222': attribute type 17 has an invalid length.
[ 1043.385071][T17348] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1043.392745][T17348] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1043.571792][T17348] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1043.586005][T17348] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1043.686114][T17348] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.696033][T17348] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.705373][T17348] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.714490][T17348] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1043.838932][T17355] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3224'.
[ 1044.161048][T17375] lo speed is unknown, defaulting to 1000
[ 1044.233519][T17375] lo speed is unknown, defaulting to 1000
[ 1044.408532][T17372] overlayfs: statfs failed on './file0'
[ 1044.599031][ T5832] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[ 1045.531738][T17402] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1047.486591][T17437] No control pipe specified
[ 1048.542750][T17452] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1049.000081][T17462] RDS: rds_bind could not find a transport for ::ffff:172.30.0.8, load rds_tcp or rds_rdma?
[ 1049.252568][   T29] audit: type=1804 audit(1872872037.789:3019): pid=17473 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.2.3251" name="/newroot/701/file1" dev="fuse" ino=1 res=1 errno=0
[ 1049.358023][ T5918] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[ 1049.518461][ T5918] usb 1-1: Using ep0 maxpacket: 16
[ 1049.529658][ T5918] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[ 1049.549969][ T5918] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1049.572136][ T5918] usb 1-1: Product: syz
[ 1049.576478][ T5918] usb 1-1: Manufacturer: syz
[ 1049.617924][ T5918] usb 1-1: SerialNumber: syz
[ 1049.631454][ T5918] usb 1-1: config 0 descriptor??
[ 1049.655739][ T5918] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[ 1049.680865][ T5918] usb 1-1: Detected FT-X
[ 1049.730129][T17491] No control pipe specified
[ 1049.756603][   T25] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[ 1049.947185][   T25] usb 3-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[ 1050.014853][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1050.230484][   T25] usb 3-1: config 0 descriptor??
[ 1050.233326][ T5918] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[ 1050.392163][   T25] gspca_main: STV06xx-2.14.0 probing 046d:0870
[ 1050.695519][ T5918] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1051.506108][T17467] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1051.546545][T17467] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1051.601604][ T5881] usb 1-1: USB disconnect, device number 6
[ 1051.629693][ T5881] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1051.674079][ T5881] ftdi_sio 1-1:0.0: device disconnected
[ 1051.811272][T17522] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1052.154802][   T25] gspca_stv06xx: I2C: Read error writing address: -71
[ 1052.176078][   T25] usb 3-1: USB disconnect, device number 52
[ 1054.416375][T14805] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[ 1054.629470][T14805] usb 10-1: Using ep0 maxpacket: 8
[ 1054.656732][T14805] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[ 1054.680051][T14805] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1054.704914][T14805] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1054.730688][T14805] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1054.763878][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.794051][T14805] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[ 1054.824689][T14805] usb 10-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[ 1054.857476][T14805] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1054.889171][T14805] usb 10-1: config 0 descriptor??
[ 1054.958996][ T5832] Bluetooth: hci5: urb ffff888068d27600 submission failed (90)
[ 1055.191626][T14805] usb 10-1: USB disconnect, device number 7
[ 1057.467572][T17630] dccp_close: ABORT with 72 bytes unread
[ 1057.752853][T17636] smc: ib device syz0 ibport 1 applied user defined pnetid SYZ0
[ 1057.843047][T17638] netlink: 187320 bytes leftover after parsing attributes in process `syz.7.3291'.
[ 1057.852558][T17638] netlink: zone id is out of range
[ 1057.857734][T17638] netlink: zone id is out of range
[ 1057.862966][T17638] netlink: zone id is out of range
[ 1057.868248][T17638] netlink: zone id is out of range
[ 1057.873425][T17638] netlink: zone id is out of range
[ 1057.878751][T17638] netlink: zone id is out of range
[ 1057.883888][T17638] netlink: zone id is out of range
[ 1057.889163][T17638] netlink: zone id is out of range
[ 1057.894391][T17638] netlink: zone id is out of range
[ 1059.089610][T17657] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1059.101226][ T5918] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1059.278203][ T5918] usb 10-1: Using ep0 maxpacket: 32
[ 1059.296203][ T5918] usb 10-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x31, changing to 0x1
[ 1059.369656][ T5918] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 13364, setting to 64
[ 1059.414593][ T5918] usb 10-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[ 1059.424020][ T5918] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1059.446662][ T5918] usb 10-1: Product: syz
[ 1059.453468][ T5918] usb 10-1: Manufacturer: syz
[ 1059.464733][ T5918] usb 10-1: SerialNumber: syz
[ 1059.498997][ T5918] usb 10-1: config 0 descriptor??
[ 1059.555102][ T5918] usb 10-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1059.715575][T17679] syz.1.3302: attempt to access beyond end of device
[ 1059.715575][T17679] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1059.732649][T17679] FAT-fs (nbd1): unable to read boot sector
[ 1060.658417][   T35] usb 10-1: Failed to submit usb control message: -110
[ 1060.750030][   T35] usb 10-1: unable to send the bmi data to the device: -110
[ 1060.817988][   T35] usb 10-1: unable to get target info from device
[ 1060.838182][   T35] usb 10-1: could not get target info (-110)
[ 1060.867991][   T35] usb 10-1: could not probe fw (-110)
[ 1060.900632][T17684] netlink: 44 bytes leftover after parsing attributes in process `syz.7.3303'.
[ 1061.312509][   T25] usb 10-1: USB disconnect, device number 8
[ 1061.848200][ T5918] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[ 1062.002034][ T5918] usb 10-1: config 0 has an invalid interface number: 5 but max is 0
[ 1062.018200][ T5918] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1062.029584][ T5918] usb 10-1: config 0 has no interface number 0
[ 1062.036457][ T5918] usb 10-1: New USB device found, idVendor=152e, idProduct=30ca, bcdDevice=ae.11
[ 1062.048071][ T5918] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1062.104998][ T5918] usb 10-1: config 0 descriptor??
[ 1062.136028][ T5918] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[ 1062.151806][ T5918] usb 10-1: MIDIStreaming interface descriptor not found
[ 1062.348067][   T25] usb 10-1: USB disconnect, device number 9
[ 1063.500905][T17737] No control pipe specified
[ 1064.222617][   T29] audit: type=1326 audit(1872872052.759:3020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17744 comm="syz.1.3325" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6d998cda9 code=0x0
[ 1064.677922][T17758] tipc: Failed to remove unknown binding: 66,1,1/0:2668249135/2668249137
[ 1064.718179][T17758] tipc: Failed to remove unknown binding: 66,1,1/0:2668249135/2668249137
[ 1065.042262][T17761] overlayfs: failed to clone upperpath
[ 1066.131544][T17771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3331'.
[ 1066.142381][T17771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3331'.
[ 1066.765709][T17780] No control pipe specified
[ 1068.158089][ T5918] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[ 1068.313542][ T5918] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1068.334558][ T5918] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1068.393904][ T5918] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1068.448276][ T5918] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1068.828929][ T5918] usb 3-1: SerialNumber: syz
[ 1069.209787][ T5918] usb 3-1: 0:2 : does not exist
[ 1069.258694][ T5918] usb 3-1: USB disconnect, device number 53
[ 1069.279449][T17820] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3350'.
[ 1069.317458][T17820] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3350'.
[ 1069.594502][T17823] overlayfs: failed to clone upperpath
[ 1070.195768][T17828] overlayfs: failed to clone upperpath
[ 1070.758697][T17832] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1072.388969][T17869] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1073.837979][T17881] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1073.973612][T17875] kvm: vcpu 0: requested 448 ns lapic timer period limited to 200000 ns
[ 1074.313832][T17888] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2248643489 (17989147912 ns) > initial count (11631199424 ns). Using initial count to start timer.
[ 1074.480040][T17894] vlan2: entered promiscuous mode
[ 1076.410181][T17907] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3379'.
[ 1076.530128][T17910] overlayfs: failed to clone upperpath
[ 1076.643561][   T29] audit: type=1326 audit(1872872065.179:3021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17914 comm="syz.2.3383" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x0
[ 1076.758633][T14805] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[ 1076.821657][T17920] net_ratelimit: 11 callbacks suppressed
[ 1076.821703][T17920] netlink: del zone limit has 8 unknown bytes
[ 1076.937942][T14805] usb 10-1: Using ep0 maxpacket: 8
[ 1077.023693][T14805] usb 10-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1077.186021][T14805] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1077.373667][T14805] usb 10-1: Product: syz
[ 1077.400651][T14805] usb 10-1: Manufacturer: syz
[ 1077.416706][T14805] usb 10-1: SerialNumber: syz
[ 1077.443001][T14805] usb 10-1: config 0 descriptor??
[ 1077.599367][T17922] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1077.697253][T14805] usb 10-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1077.708361][   T29] audit: type=1800 audit(1872872066.229:3022): pid=17925 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.3385" name="/" dev="9p" ino=2 res=0 errno=0
[ 1078.137555][T17930] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3388'.
[ 1078.946900][ T7604] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1079.084471][ T7604] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1079.150161][   T29] audit: type=1804 audit(1872872067.689:3023): pid=17948 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.2.3397" name="/newroot/726/bus/file0" dev="overlay" ino=3966 res=1 errno=0
[ 1079.375179][ T9630] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[ 1079.578014][ T9630] usb 1-1: Using ep0 maxpacket: 8
[ 1079.611289][ T7604] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1079.681486][ T9630] usb 1-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1079.731942][ T9630] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1079.827060][ T9630] usb 1-1: Product: syz
[ 1079.910344][ T9630] usb 1-1: Manufacturer: syz
[ 1079.989826][ T9630] usb 1-1: SerialNumber: syz
[ 1080.005259][T14805] dvb_usb_rtl28xxu 10-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1080.016974][T14805] usb 10-1: USB disconnect, device number 10
[ 1080.058588][ T9630] usb 1-1: config 0 descriptor??
[ 1080.096338][ T9630] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1080.182387][ T7604] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1080.481095][T17958] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1081.676508][ T7604] bridge_slave_1: left allmulticast mode
[ 1081.688310][T16295] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1081.703909][T16295] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1081.715508][ T7604] bridge_slave_1: left promiscuous mode
[ 1081.722001][T16295] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1081.732571][ T7604] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1081.746896][T16295] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1081.773502][T16295] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1081.792840][ T7604] bridge_slave_0: left allmulticast mode
[ 1081.793765][T16295] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1081.904110][ T7604] bridge_slave_0: left promiscuous mode
[ 1081.925652][ T7604] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1082.104372][T17967] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1082.770789][ T9630] gspca_sonixj: reg_w err -71
[ 1082.775604][ T9630] sonixj 1-1:0.0: probe with driver sonixj failed with error -71
[ 1082.799168][T17972] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3403'.
[ 1082.821830][ T9630] usb 1-1: USB disconnect, device number 7
[ 1082.929720][T17976] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1083.726346][T17988] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1083.888119][T16295] Bluetooth: hci4: command tx timeout
[ 1084.114290][T17999] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1084.158457][ T7604] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1084.202931][ T7604] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1084.221230][ T7604] bond0 (unregistering): Released all slaves
[ 1084.283174][T17960] lo speed is unknown, defaulting to 1000
[ 1085.078507][ T5832] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1085.418157][T14805] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[ 1085.465274][T17960] lo speed is unknown, defaulting to 1000
[ 1085.677425][T14805] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1086.304753][ T5832] Bluetooth: hci4: command tx timeout
[ 1086.338031][T14805] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1086.359924][T14805] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1086.382457][T14805] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1086.397382][T14805] usb 1-1: SerialNumber: syz
[ 1086.886039][T18019] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1087.012055][T14805] usb 1-1: 0:2 : does not exist
[ 1087.017060][T14805] usb 1-1: unit 5: unexpected type 0x0d
[ 1087.063035][T14805] usb 1-1: USB disconnect, device number 8
[ 1088.374628][ T5832] Bluetooth: hci4: command tx timeout
[ 1088.436129][T18029] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1088.791413][T18034] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3427'.
[ 1090.447899][ T5832] Bluetooth: hci4: command tx timeout
[ 1090.577144][T17960] chnl_net:caif_netlink_parms(): no params data found
[ 1090.579217][T18058] overlayfs: failed to get inode (-116)
[ 1090.595661][T18058] overlayfs: failed to get inode (-116)
[ 1090.728206][ T5881] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1090.933583][ T5881] usb 3-1: Using ep0 maxpacket: 8
[ 1090.973303][ T5881] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1091.099610][ T5881] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1091.269289][ T5881] usb 3-1: config 0 descriptor??
[ 1091.739704][ T7604] hsr_slave_0: left promiscuous mode
[ 1091.768607][ T7604] hsr_slave_1: left promiscuous mode
[ 1091.782373][ T7604] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1091.791948][ T5881] asix 3-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 1091.858416][ T7604] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1091.909011][ T7604] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1091.944251][ T7604] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1092.088661][ T7604] veth1_macvtap: left promiscuous mode
[ 1092.094480][ T7604] veth0_macvtap: left promiscuous mode
[ 1092.207058][ T7604] veth1_vlan: left promiscuous mode
[ 1092.256064][ T7604] veth0_vlan: left promiscuous mode
[ 1094.615714][ T5881] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 1094.649409][ T5881] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0088: ffffffb9
[ 1094.741086][ T5881] asix 3-1:0.0: probe with driver asix failed with error -71
[ 1094.825367][T18081] pic_ioport_write: 22 callbacks suppressed
[ 1094.825391][T18081] kvm: pic: single mode not supported
[ 1094.825962][ T5881] usb 3-1: USB disconnect, device number 54
[ 1094.831906][T18081] kvm: pic: level sensitive irq not supported
[ 1094.931941][T18081] kvm: pic: single mode not supported
[ 1094.944467][T18081] kvm: pic: level sensitive irq not supported
[ 1095.041873][T18081] kvm: pic: single mode not supported
[ 1095.048183][T18081] kvm: pic: level sensitive irq not supported
[ 1095.105871][T18081] kvm: pic: single mode not supported
[ 1095.112982][T18081] kvm: pic: level sensitive irq not supported
[ 1095.136838][T18081] kvm: pic: single mode not supported
[ 1095.143243][T18081] kvm: pic: level sensitive irq not supported
[ 1095.199837][T18081] kvm: pic: single mode not supported
[ 1097.769903][T18117] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1097.866346][T18118] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[ 1097.934575][ T7604] team0 (unregistering): Port device team_slave_1 removed
[ 1098.422378][ T7604] team0 (unregistering): Port device team_slave_0 removed
[ 1100.204494][T17960] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1100.212008][T17960] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1100.228309][T17960] bridge_slave_0: entered allmulticast mode
[ 1100.246082][T17960] bridge_slave_0: entered promiscuous mode
[ 1100.327170][T17960] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1100.344847][T17960] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1100.363605][T17960] bridge_slave_1: entered allmulticast mode
[ 1100.380427][T17960] bridge_slave_1: entered promiscuous mode
[ 1100.516937][T17960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1100.583791][T17960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1100.682647][T18143] overlayfs: failed to get index nlink (file1/bus, err=0)
[ 1100.984847][T17960] team0: Port device team_slave_0 added
[ 1101.034366][T17960] team0: Port device team_slave_1 added
[ 1101.116611][T17960] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1101.126260][T18158] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1101.143322][T17960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1101.179480][T17960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1101.203933][T17960] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1101.211424][T17960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1101.251066][T17960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1101.396987][T17960] hsr_slave_0: entered promiscuous mode
[ 1101.416268][T17960] hsr_slave_1: entered promiscuous mode
[ 1101.468833][T17960] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1101.484688][T17960] Cannot create hsr debugfs directory
[ 1105.274115][T18206] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1106.058447][T17960] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1106.948471][T17960] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1106.990994][T17960] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1108.737306][T18222] netlink: 'syz.2.3482': attribute type 21 has an invalid length.
[ 1108.748655][T18222] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3482'.
[ 1108.758026][T18222] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3482'.
[ 1108.868169][T17960] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1109.443388][T17960] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1109.509407][T17960] 8021q: adding VLAN 0 to HW filter on device team0
[ 1109.614841][ T3004] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1109.622064][ T3004] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1109.649121][ T3004] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1109.656318][ T3004] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1109.828629][T18234] syzkaller0: entered promiscuous mode
[ 1109.834349][T18234] syzkaller0: entered allmulticast mode
[ 1110.588780][T18247] netlink: 1296 bytes leftover after parsing attributes in process `syz.9.3485'.
[ 1110.608880][T18247] openvswitch: netlink: Flow key attr not present in new flow.
[ 1116.217207][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.756748][T17960] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1119.840108][T17960] veth0_vlan: entered promiscuous mode
[ 1119.920123][T17960] veth1_vlan: entered promiscuous mode
[ 1120.042715][T17960] veth0_macvtap: entered promiscuous mode
[ 1120.053570][T17960] veth1_macvtap: entered promiscuous mode
[ 1120.084264][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1120.098092][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.110305][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1120.123467][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.135107][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1120.173360][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.215225][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1120.237529][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.260140][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1120.282216][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.295283][T17960] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1120.327379][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1120.338757][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.358023][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1120.377870][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.397984][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1120.418107][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.438264][T17960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1120.459921][T17960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1120.480589][T17960] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1120.506862][T17960] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1120.525134][T17960] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1120.564160][T17960] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1120.578401][T17960] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1120.967309][T18333] netlink: 172 bytes leftover after parsing attributes in process `syz.2.3519'.
[ 1121.668217][  T981] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1121.695017][  T981] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1124.009427][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1124.026149][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1125.649712][T18377] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1127.227922][   T29] audit: type=1804 audit(1872872115.749:3024): pid=18390 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.6.3535" name="/newroot/1/file1" dev="fuse" ino=1 res=1 errno=0
[ 1127.283524][   T29] audit: type=1804 audit(1872872115.749:3025): pid=18390 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.6.3535" name="/newroot/1/file1" dev="fuse" ino=1 res=1 errno=0
[ 1127.458721][T18399] syzkaller1: entered promiscuous mode
[ 1127.464270][T18399] syzkaller1: entered allmulticast mode
[ 1127.479698][   T25] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 1127.648200][   T25] usb 10-1: Using ep0 maxpacket: 16
[ 1127.655330][   T25] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1127.676105][   T25] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1127.698439][   T25] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1127.710395][   T25] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1127.728423][   T25] usb 10-1: Product: syz
[ 1127.734200][   T25] usb 10-1: Manufacturer: syz
[ 1127.739241][   T25] usb 10-1: SerialNumber: syz
[ 1127.767916][ T5881] usb 7-1: new high-speed USB device number 64 using dummy_hcd
[ 1127.931441][T18411] lo speed is unknown, defaulting to 1000
[ 1127.938208][ T5881] usb 7-1: Using ep0 maxpacket: 8
[ 1127.955114][ T5881] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1127.965591][   T25] usb 10-1: 0:2 : does not exist
[ 1127.985888][ T5881] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC7, changing to 0x87
[ 1128.010551][   T25] usb 10-1: 5:0: failed to get current value for ch 0 (-22)
[ 1128.026321][ T5881] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1128.057562][   T25] usb 10-1: USB disconnect, device number 11
[ 1128.095752][ T5881] usb 7-1: New USB device found, idVendor=187f, idProduct=0200, bcdDevice=6b.ad
[ 1128.113695][ T5881] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1128.132728][ T5881] usb 7-1: Product: syz
[ 1128.136968][ T5881] usb 7-1: Manufacturer: syz
[ 1128.154764][T18419] netlink: zone id is out of range
[ 1128.162321][ T5881] usb 7-1: SerialNumber: syz
[ 1128.168960][T18419] netlink: zone id is out of range
[ 1128.174250][T18419] netlink: zone id is out of range
[ 1128.181856][ T5881] usb 7-1: config 0 descriptor??
[ 1128.191148][ T5881] smsusb:smsusb_probe: board id=2, interface number 0
[ 1128.199190][T18419] netlink: zone id is out of range
[ 1128.204547][T18419] netlink: zone id is out of range
[ 1128.210575][T18419] netlink: zone id is out of range
[ 1128.228114][ T5881] smsusb:smsusb_probe: Device initialized with return code -19
[ 1128.247907][T18419] netlink: zone id is out of range
[ 1128.253091][T18419] netlink: zone id is out of range
[ 1128.272326][T18419] netlink: zone id is out of range
[ 1128.291170][T18419] netlink: zone id is out of range
[ 1128.439794][T18399] netlink: 52 bytes leftover after parsing attributes in process `syz.6.3538'.
[ 1128.489574][ T5881] usb 7-1: USB disconnect, device number 64
[ 1128.796153][T18411] lo speed is unknown, defaulting to 1000
[ 1128.949671][T18433] overlayfs: failed to clone upperpath
[ 1129.267240][T18439] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1132.681597][T18468] overlayfs: failed to clone upperpath
[ 1133.098151][T18468] overlayfs: failed to clone upperpath
[ 1133.388191][T18476] overlayfs: failed to clone upperpath
[ 1133.901415][T18483] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1139.156784][T18528] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1139.336158][T18533] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1139.345958][T18533] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1139.354954][T18533] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1139.364007][T18533] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1139.497703][T18540] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1140.560065][T18533] bond0: (slave vxlan0): Enslaving as an active interface with an up link
[ 1144.774797][T18570] overlayfs: failed to clone upperpath
[ 1145.048989][T18576] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1145.808328][T18586] siw: device registration error -23
[ 1146.356906][T18601] netlink: 11 bytes leftover after parsing attributes in process `syz.0.3604'.
[ 1146.911512][T18601] netlink: 7 bytes leftover after parsing attributes in process `syz.0.3604'.
[ 1147.359618][ T5881] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[ 1147.932511][ T5881] usb 10-1: Using ep0 maxpacket: 8
[ 1147.971316][ T5881] usb 10-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1148.000794][ T5881] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1148.030857][ T5881] usb 10-1: Product: syz
[ 1148.035179][ T5881] usb 10-1: Manufacturer: syz
[ 1148.042986][ T5881] usb 10-1: SerialNumber: syz
[ 1148.053864][ T5881] usb 10-1: config 0 descriptor??
[ 1148.060304][T18629] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3611'.
[ 1148.120334][T18629] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3611'.
[ 1148.311496][ T5881] usb 10-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1148.586688][T18641] sctp: [Deprecated]: syz.2.3614 (pid 18641) Use of int in max_burst socket option deprecated.
[ 1148.586688][T18641] Use struct sctp_assoc_value instead
[ 1149.608067][T18643] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3616'.
[ 1150.912642][ T5881] dvb_usb_rtl28xxu 10-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1150.925688][ T5881] usb 10-1: USB disconnect, device number 12
[ 1153.036949][T18676] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3626'.
[ 1153.169529][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[ 1153.177128][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.186076][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.194072][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.202389][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.210585][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.218695][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.226707][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.234681][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.243847][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.252737][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.260674][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.268771][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.276697][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.284822][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.292708][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.301094][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.309393][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.317294][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.325141][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.333135][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.341106][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.349135][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.356982][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.365288][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.373149][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.381073][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.388919][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.396800][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.404766][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.412739][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.420676][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.428652][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.436530][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.444627][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.452507][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.460470][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.468350][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.476643][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.484725][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.492660][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.500539][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.508571][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.516495][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.524456][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.532959][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.540995][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.549046][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1153.558051][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[ 1153.565920][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[ 1157.468037][   T25] usb 7-1: new high-speed USB device number 65 using dummy_hcd
[ 1157.654216][   T25] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1157.682009][   T25] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1157.724801][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1157.774280][   T25] usb 7-1: config 0 descriptor??
[ 1157.799489][   T25] pwc: Askey VC010 type 2 USB webcam detected.
[ 1158.482883][   T25] pwc: recv_control_msg error -32 req 02 val 2b00
[ 1158.550557][   T25] pwc: recv_control_msg error -32 req 02 val 2700
[ 1158.699302][   T25] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1159.167250][   T25] pwc: recv_control_msg error -32 req 04 val 1000
[ 1159.285656][   T25] pwc: recv_control_msg error -32 req 04 val 1300
[ 1159.296699][   T25] pwc: recv_control_msg error -32 req 04 val 1400
[ 1159.305001][   T25] pwc: recv_control_msg error -32 req 02 val 2000
[ 1159.312599][   T25] pwc: recv_control_msg error -32 req 02 val 2100
[ 1159.320380][   T25] pwc: recv_control_msg error -32 req 04 val 1500
[ 1159.327994][   T25] pwc: recv_control_msg error -32 req 02 val 2500
[ 1159.335521][   T25] pwc: recv_control_msg error -32 req 02 val 2400
[ 1159.701245][   T25] pwc: recv_control_msg error -71 req 02 val 2900
[ 1160.878474][T18730] netlink: 'syz.2.3641': attribute type 1 has an invalid length.
[ 1160.908078][T18730] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3641'.
[ 1160.942807][   T25] pwc: recv_control_msg error -71 req 02 val 2800
[ 1160.991245][   T25] pwc: recv_control_msg error -71 req 04 val 1100
[ 1161.008653][   T25] pwc: recv_control_msg error -71 req 04 val 1200
[ 1161.029318][   T25] pwc: Registered as video103.
[ 1161.047086][   T25] input: PWC snapshot button as /devices/platform/dummy_hcd.6/usb7/7-1/input/input67
[ 1161.128535][   T25] usb 7-1: USB disconnect, device number 65
[ 1164.715982][T18768] syz.9.3652: attempt to access beyond end of device
[ 1164.715982][T18768] nbd9: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1164.730177][T18768] hpfs: hpfs_map_sector(): read error
[ 1165.025924][T18770] net_ratelimit: 173 callbacks suppressed
[ 1165.025949][T18770] openvswitch: netlink: IPv4 tun info is not correct
[ 1165.145986][   T29] audit: type=1326 audit(1872872153.679:3026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1166.154535][   T29] audit: type=1326 audit(1872872153.679:3027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1166.293509][   T29] audit: type=1326 audit(1872872153.679:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1166.498082][   T29] audit: type=1326 audit(1872872153.679:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1166.572699][   T29] audit: type=1326 audit(1872872153.679:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1166.855903][   T29] audit: type=1326 audit(1872872153.679:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1167.958394][   T29] audit: type=1326 audit(1872872153.679:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1168.111767][   T29] audit: type=1326 audit(1872872153.679:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1168.197996][ T5918] usb 7-1: new high-speed USB device number 66 using dummy_hcd
[ 1168.357316][   T29] audit: type=1326 audit(1872872153.679:3034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1168.379535][   T29] audit: type=1326 audit(1872872153.679:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18772 comm="syz.2.3655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1169.597827][ T5918] usb 7-1: Using ep0 maxpacket: 32
[ 1169.615174][ T5918] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[ 1169.814415][ T5918] usb 7-1: config 0 has no interface number 0
[ 1170.359575][ T5918] usb 7-1: string descriptor 0 read error: -71
[ 1170.399240][ T5918] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1170.448327][ T5918] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1170.509964][ T5918] usb 7-1: config 0 descriptor??
[ 1170.557066][ T5918] usb 7-1: can't set config #0, error -71
[ 1170.589753][ T5918] usb 7-1: USB disconnect, device number 66
[ 1171.930050][T18816] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3668'.
[ 1172.061898][T18818] tmpfs: Unknown parameter '01777777777777777777777'
[ 1172.457211][T18822] No such timeout policy "syz1"
[ 1172.959053][T18824] xt_SECMARK: invalid mode: 0
[ 1173.056492][T18827] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1174.975272][T18844] 9pnet: bogus RREAD count (69 > 41)
[ 1174.989727][   T29] kauditd_printk_skb: 6 callbacks suppressed
[ 1174.989741][   T29] audit: type=1800 audit(1872872163.529:3042): pid=18844 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.6.3677" name="/" dev="9p" ino=2 res=0 errno=0
[ 1178.448322][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1179.168846][T18870] netlink: 192 bytes leftover after parsing attributes in process `syz.7.3685'.
[ 1179.505816][T18876] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1180.248299][T18883] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3688'.
[ 1180.401291][T18883] ipvlan2: entered promiscuous mode
[ 1182.034966][ T5832] Bluetooth: hci0: ACL packet for unknown connection handle 201
[ 1182.140423][   T29] audit: type=1326 audit(1872872170.679:3043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1182.227828][   T29] audit: type=1326 audit(1872872170.679:3044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1182.249795][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1182.362629][   T29] audit: type=1326 audit(1872872170.679:3045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1182.384341][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1182.415634][T18912] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[ 1182.469150][   T29] audit: type=1326 audit(1872872170.679:3046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1182.488040][   T25] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[ 1182.517552][T18914] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1182.588287][   T29] audit: type=1326 audit(1872872170.679:3047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1182.589335][T18912] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address
[ 1182.646547][T18912] bond0: (slave ipvlan2): Error -95 calling set_mac_address
[ 1182.667336][   T29] audit: type=1326 audit(1872872170.679:3048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1182.707708][   T29] audit: type=1326 audit(1872872170.679:3049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1182.738971][   T25] usb 10-1: Using ep0 maxpacket: 16
[ 1182.759797][   T25] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1182.778142][   T25] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1182.799555][   T29] audit: type=1326 audit(1872872170.679:3050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1182.838213][   T25] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1182.861561][   T25] usb 10-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[ 1182.878144][   T29] audit: type=1326 audit(1872872170.679:3051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1183.004494][   T29] audit: type=1326 audit(1872872170.679:3052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18908 comm="syz.9.3696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1183.038540][   T25] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1183.061575][   T25] usb 10-1: config 0 descriptor??
[ 1184.390415][T18927] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3703'.
[ 1184.428006][T18927] netlink: 'syz.0.3703': attribute type 7 has an invalid length.
[ 1184.464116][T18927] netlink: 'syz.0.3703': attribute type 8 has an invalid length.
[ 1184.478761][T18927] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3703'.
[ 1184.549824][T18927] team0: entered promiscuous mode
[ 1184.565665][T18927] team_slave_0: entered promiscuous mode
[ 1184.576084][T18927] team_slave_1: entered promiscuous mode
[ 1184.600008][T18927] bond0: entered promiscuous mode
[ 1184.619384][T18927] bond_slave_0: entered promiscuous mode
[ 1184.673853][   T25] hid-led 0003:27B8:01ED.005B: item fetching failed at offset 0/2
[ 1184.693411][T18927] bond_slave_1: entered promiscuous mode
[ 1184.706262][T18927] gretap0: entered promiscuous mode
[ 1184.721580][T18927] hsr1: Slave A (team0) is not up; please bring it up to get a fully working HSR network
[ 1184.739366][   T25] hid-led 0003:27B8:01ED.005B: probe with driver hid-led failed with error -22
[ 1184.746664][T18927] hsr1: Slave B (bond0) is not up; please bring it up to get a fully working HSR network
[ 1184.780403][T18927] hsr1: Interlink (gretap0) is not up; please bring it up to get a fully working HSR network
[ 1184.802057][T18927] 8021q: adding VLAN 0 to HW filter on device hsr1
[ 1184.881371][ T5918] usb 10-1: USB disconnect, device number 13
[ 1185.238085][T18938] netlink: 830 bytes leftover after parsing attributes in process `syz.0.3706'.
[ 1191.245572][T18962] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1194.402124][T19000] dccp_close: ABORT with 44 bytes unread
[ 1199.977867][T16295] Bluetooth: hci4: command 0x0405 tx timeout
[ 1201.699208][   T29] kauditd_printk_skb: 54 callbacks suppressed
[ 1201.699229][   T29] audit: type=1326 audit(1872872190.239:3107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1201.727112][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1201.853714][   T29] audit: type=1326 audit(1872872190.279:3108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1201.880622][   T29] audit: type=1326 audit(1872872190.279:3109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1201.903553][   T29] audit: type=1326 audit(1872872190.279:3110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1201.927057][   T29] audit: type=1326 audit(1872872190.279:3111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1201.971493][   T29] audit: type=1326 audit(1872872190.289:3112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1201.994305][   T29] audit: type=1326 audit(1872872190.289:3113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1202.017498][   T29] audit: type=1326 audit(1872872190.289:3114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1202.040493][   T29] audit: type=1326 audit(1872872190.289:3115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1202.063584][   T29] audit: type=1326 audit(1872872190.289:3116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19070 comm="syz.9.3750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1205.324961][ T5832] Bluetooth: hci4: command 0x0405 tx timeout
[ 1206.476695][T19107] random: crng reseeded on system resumption
[ 1207.592279][T19115] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3761'.
[ 1208.230142][T19124] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3763'.
[ 1210.883520][T19145] lo speed is unknown, defaulting to 1000
[ 1210.956729][T19145] lo speed is unknown, defaulting to 1000
[ 1212.563837][T19153] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1214.405671][T19177] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3777'.
[ 1215.278109][T19179] bridge: RTM_NEWNEIGH with invalid ether address
[ 1216.458374][   T25] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[ 1216.735681][   T25] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1216.927129][   T25] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1216.939371][   T25] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1216.952840][   T25] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1216.962513][   T25] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1217.008781][   T25] usb 10-1: config 0 descriptor??
[ 1217.016741][T19181] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1218.182349][   T25] usbhid 10-1:0.0: can't add hid device: -71
[ 1218.218523][   T25] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[ 1218.782538][T19201] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1218.834553][   T25] usb 10-1: USB disconnect, device number 14
[ 1219.847942][T19212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3789'.
[ 1222.591121][T19235] overlayfs: overlapping lowerdir path
[ 1228.167923][ T5881] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[ 1229.138057][ T5881] usb 3-1: Using ep0 maxpacket: 32
[ 1230.260998][ T5881] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1230.437978][ T5881] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1230.447107][ T5881] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1230.477827][ T5881] usb 3-1: Product: syz
[ 1230.490339][ T5881] usb 3-1: Manufacturer: syz
[ 1230.495012][ T5881] usb 3-1: SerialNumber: syz
[ 1231.388831][ T5881] usb 3-1: config 0 descriptor??
[ 1231.454616][ T5881] usb 3-1: can't set config #0, error -71
[ 1231.471733][T19295] smc: net device caif0 applied user defined pnetid SYZ2
[ 1231.508206][ T5881] usb 3-1: USB disconnect, device number 55
[ 1232.035050][T19307] fuse: Bad value for 'fd'
[ 1232.874141][T19312] pim6reg: entered allmulticast mode
[ 1233.094147][T19312] pim6reg: left allmulticast mode
[ 1234.278963][T19329] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1238.663100][T19344] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3828'.
[ 1239.161198][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1249.640593][T19406] xt_CT: No such helper "pptp"
[ 1249.853612][T19411] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3846'.
[ 1250.034861][T19404] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1250.043411][T19404] batadv_slave_0: entered promiscuous mode
[ 1250.049305][T19404] batadv_slave_0: entered allmulticast mode
[ 1254.972998][T19445] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1258.811097][T19487] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3866'.
[ 1265.375086][T19527] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3878'.
[ 1267.269014][T19541] o2cb: This node has not been configured.
[ 1267.275385][T19541] o2cb: Cluster check failed. Fix errors before retrying.
[ 1267.282778][T19541] (syz.2.3882,19541,1):user_dlm_register:674 ERROR: status = -22
[ 1267.290689][T19541] (syz.2.3882,19541,1):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file1"
[ 1268.194134][T19543] netlink: 40 bytes leftover after parsing attributes in process `syz.7.3883'.
[ 1276.190938][T19593] overlayfs: failed to clone lowerpath
[ 1276.759830][T19593] overlayfs: failed to clone upperpath
[ 1279.440339][T19610] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3903'.
[ 1282.278857][T19620] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1285.337950][    T9] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[ 1286.261428][    T9] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1286.318585][    T9] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1286.348731][    T9] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1286.378092][    T9] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1286.413951][T19647] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1286.456416][    T9] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[ 1286.480604][T19660] openvswitch: netlink: Mixed IPv4 and IPv6 tunnel attributes
[ 1288.361147][T19679] befs: (nullb0): No write support. Marking filesystem read-only
[ 1288.373192][T19679] befs: (nullb0): invalid magic header
[ 1289.256022][ T5918] usb 10-1: USB disconnect, device number 15
[ 1289.289417][T19683] 9pnet_fd: Insufficient options for proto=fd
[ 1291.010115][T19694] block device autoloading is deprecated and will be removed.
[ 1291.018017][T19694] syz.6.3927: attempt to access beyond end of device
[ 1291.018017][T19694] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1291.494907][T19700] 
: renamed from ipvlan1
[ 1291.523829][T19701] overlayfs: failed to clone lowerpath
[ 1294.510309][T19725] xt_l2tp: invalid flags combination: c
[ 1295.927136][T19731] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1296.239267][   T25] usb 7-1: new high-speed USB device number 67 using dummy_hcd
[ 1298.499701][   T25] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1299.535294][   T25] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1300.161959][   T25] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1300.193120][   T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1300.523987][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.707255][   T25] usb 7-1: can't set config #27, error -71
[ 1300.751929][   T25] usb 7-1: USB disconnect, device number 67
[ 1311.760777][T19843] netlink: 'syz.0.3972': attribute type 5 has an invalid length.
[ 1311.780930][T19843] : entered promiscuous mode
[ 1312.008100][T19849] mkiss: ax0: crc mode is auto.
[ 1315.459672][T19871] netlink: 'syz.2.3980': attribute type 4 has an invalid length.
[ 1318.662233][T19882] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1319.376346][ T5885] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1319.615120][T19888] nfs: Unknown parameter 'ntext'
[ 1319.627095][ T5885] usb 3-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[ 1319.701647][ T5885] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1319.883282][ T5885] usb 3-1: config 0 descriptor??
[ 1319.974846][ T5885] gspca_main: spca508-2.14.0 probing 8086:0110
[ 1320.535890][T19877] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3983'.
[ 1321.087520][ T5885] gspca_spca508: reg_read err -110
[ 1321.108270][ T5885] gspca_spca508: reg_read err -32
[ 1321.117984][ T5885] gspca_spca508: reg_read err -32
[ 1321.127865][ T5885] gspca_spca508: reg_read err -32
[ 1321.137767][ T5885] gspca_spca508: reg write: error -32
[ 1321.143275][ T5885] spca508 3-1:0.0: probe with driver spca508 failed with error -32
[ 1321.234774][T19895] ptrace attach of "./syz-executor exec"[19900] was attempted by "./syz-executor exec"[19895]
[ 1321.366791][ T5918] usb 3-1: USB disconnect, device number 56
[ 1323.274085][T19919] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1325.447187][T19937] ip6gretap0: entered promiscuous mode
[ 1325.529381][T19937] vlan2: entered promiscuous mode
[ 1325.846358][T19937] ip6gretap0: left promiscuous mode
[ 1326.028076][ T9630] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[ 1326.254306][ T9630] usb 10-1: Using ep0 maxpacket: 32
[ 1326.327055][ T9630] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1327.071830][ T9630] usb 10-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[ 1327.097550][ T9630] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1328.074168][ T9630] usb 10-1: Product: syz
[ 1328.078986][ T9630] usb 10-1: Manufacturer: syz
[ 1328.084063][ T9630] usb 10-1: SerialNumber: syz
[ 1328.091675][ T9630] usb 10-1: config 0 descriptor??
[ 1329.147207][ T9630] usb 10-1: can't set config #0, error -71
[ 1329.382771][ T9630] usb 10-1: USB disconnect, device number 16
[ 1330.942355][T19972] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1334.701987][T19965] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1337.655012][T20015] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4018'.
[ 1341.510446][T20054] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1341.529974][T20055] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4023'.
[ 1343.301745][T20063] siw: device registration error -23
[ 1344.534304][T20076] xt_hashlimit: max too large, truncated to 1048576
[ 1344.546722][T20076] xt_limit: Overflow, try lower: 0/0
[ 1346.481695][T20108] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1350.100173][T20128] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1363.258103][T20219] netlink: 'syz.2.4070': attribute type 2 has an invalid length.
[ 1363.266169][T20219] netlink: 'syz.2.4070': attribute type 8 has an invalid length.
[ 1363.274346][T20219] netlink: 132 bytes leftover after parsing attributes in process `syz.2.4070'.
[ 1366.532200][T20229] sp0: Synchronizing with TNC
[ 1366.830045][T20224] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[ 1366.981883][T20235] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4076'.
[ 1371.972910][T20265] xt_cgroup: path and classid specified
[ 1377.839879][T16295] Bluetooth: hci3: command 0x0406 tx timeout
[ 1377.884282][T20270] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[ 1377.902874][T20270] Bluetooth: hci3: Opcode 0x0406 failed: -4
[ 1377.925588][T20270] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1377.949514][T20270] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1378.003734][T20309] Device name cannot be null; rc = [-22]
[ 1378.050129][T20270] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1378.058123][T20270] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1378.065354][T20270] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1379.924465][T20320] bridge_slave_0: left allmulticast mode
[ 1379.930337][T20320] bridge_slave_0: left promiscuous mode
[ 1379.936118][T20320] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1379.964031][T20320] bridge_slave_1: left allmulticast mode
[ 1379.967884][T16295] Bluetooth: hci2: command 0x0406 tx timeout
[ 1379.969909][T20320] bridge_slave_1: left promiscuous mode
[ 1379.975915][T16295] Bluetooth: hci3: command 0x0406 tx timeout
[ 1379.981679][T20320] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1380.012460][T20320] bond0: (slave bond_slave_0): Releasing backup interface
[ 1380.063322][T20320] bond_slave_0: left promiscuous mode
[ 1380.071224][T20320] bond0: (slave bond_slave_1): Releasing backup interface
[ 1380.080239][T20320] bond_slave_1: left promiscuous mode
[ 1380.086381][T20320] team_slave_0: left promiscuous mode
[ 1380.117829][T20320] team0: Port device team_slave_0 removed
[ 1380.124343][T20320] team_slave_1: left promiscuous mode
[ 1380.130687][T20328] Bluetooth: hci4: command 0x0405 tx timeout
[ 1380.188707][T20320] team0: Port device team_slave_1 removed
[ 1380.195158][T20320] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1380.205544][T20320] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1382.037875][T20328] Bluetooth: hci2: command 0x0406 tx timeout
[ 1382.197996][T20328] Bluetooth: hci4: command 0x0405 tx timeout
[ 1382.547608][T20352] netlink: 200 bytes leftover after parsing attributes in process `syz.9.4108'.
[ 1385.155798][T20369] Process accounting resumed
[ 1387.123475][T20382] netlink: 'syz.0.4117': attribute type 1 has an invalid length.
[ 1387.579438][T20383] serio: Serial port ptm0
[ 1387.909639][T20383] netlink: 'syz.6.4114': attribute type 10 has an invalid length.
[ 1387.930791][T20383] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1387.938261][T20383] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1388.260818][T20383] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1388.268032][T20383] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1388.275560][T20383] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1388.282862][T20383] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1389.513480][T20383] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 1389.687446][T20402] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4123'.
[ 1389.777065][T20401] dccp_close: ABORT with 15584 bytes unread
[ 1390.612090][T20412] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1391.736879][T20413] syz.9.4126: attempt to access beyond end of device
[ 1391.736879][T20413] nbd9: rw=4096, sector=0, nr_sectors = 1 limit=0
[ 1391.766128][T20413] XFS (nbd9): SB validate failed with error -5.
[ 1395.601312][T20450] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1404.533466][T20543] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4146'.
[ 1405.848979][T20557] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1406.837290][T20565] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4152'.
[ 1410.092881][T20594] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4161'.
[ 1414.784847][T20620] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1414.883141][T20626] syz_tun: entered promiscuous mode
[ 1414.981277][T20631] 9pnet_fd: Insufficient options for proto=fd
[ 1417.048897][T20652] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1417.589944][T20655] overlayfs: failed to clone upperpath
[ 1419.156972][T20664] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1421.219592][T20683] netlink: 148 bytes leftover after parsing attributes in process `syz.2.4187'.
[ 1423.005491][T20700] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1423.028693][   T29] kauditd_printk_skb: 15 callbacks suppressed
[ 1423.028714][   T29] audit: type=1326 audit(1872872411.565:3132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20696 comm="syz.0.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1423.471187][   T29] audit: type=1326 audit(1872872411.625:3133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20696 comm="syz.0.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1424.196654][   T29] audit: type=1326 audit(1872872411.625:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20696 comm="syz.0.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1424.285439][   T29] audit: type=1326 audit(1872872411.625:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20696 comm="syz.0.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1425.214481][   T29] audit: type=1326 audit(1872872411.985:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20696 comm="syz.0.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1425.493505][   T29] audit: type=1326 audit(1872872411.995:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20696 comm="syz.0.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1425.515266][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1426.210594][   T29] audit: type=1326 audit(1872872411.995:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20696 comm="syz.0.4192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1432.000424][T20765] overlayfs: failed to clone upperpath
[ 1438.511111][T20805] lo speed is unknown, defaulting to 1000
[ 1438.608190][T20806] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4222'.
[ 1438.794564][T20808] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~'
[ 1440.527983][T20818] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1442.851449][T20830] Cannot find set identified by id 632 to match
[ 1443.643176][T20833] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1443.652901][T20833] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1445.911055][T20839] fuse: Bad value for 'fd'
[ 1447.007940][T20843] openvswitch: netlink: Multiple metadata blocks provided
[ 1447.889286][T20849] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4233'.
[ 1447.935577][T20844] Process accounting resumed
[ 1448.882073][T20857] xt_l2tp: missing protocol rule (udp|l2tpip)
[ 1455.044998][T20890] netlink: 60 bytes leftover after parsing attributes in process `syz.7.4244'.
[ 1455.694325][T20897] pim6reg: entered allmulticast mode
[ 1456.686190][ T5832] Bluetooth: hci3: Malformed Event: 0x13
[ 1459.148838][T20915] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4247'.
[ 1460.622283][T20919] Process accounting resumed
[ 1461.752029][T20909] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4250'.
[ 1468.830215][T20971] overlayfs: failed to resolve './file0': -2
[ 1472.008167][T20989] SET target dimension over the limit!
[ 1479.756531][T21046] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4286'.
[ 1482.172546][T21068] xt_nfacct: accounting object `syz1' does not exists
[ 1485.208761][T21083] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4299'.
[ 1486.707559][   T29] audit: type=1326 audit(1872872474.525:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21079 comm="syz.9.4296" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x0
[ 1499.230442][T21166] lo speed is unknown, defaulting to 1000
[ 1503.399545][   T25] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[ 1504.810400][T21193] befs: (nbd2): No write support. Marking filesystem read-only
[ 1504.821770][T21193] syz.2.4326: attempt to access beyond end of device
[ 1504.821770][T21193] nbd2: rw=0, sector=0, nr_sectors = 2 limit=0
[ 1504.834723][T21193] befs: (nbd2): unable to read superblock
[ 1506.935296][T21200] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[ 1506.998580][ T5918] libceph: connect (1)[c::]:6789 error -101
[ 1507.054282][ T5918] libceph: mon0 (1)[c::]:6789 connect error
[ 1507.482247][   T29] audit: type=1800 audit(1872872495.935:3140): pid=21212 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.6.4331" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1508.156911][    T9] libceph: connect (1)[c::]:6789 error -101
[ 1508.174748][T21206] ceph: No mds server is up or the cluster is laggy
[ 1508.181794][    T9] libceph: mon0 (1)[c::]:6789 connect error
[ 1508.420265][T21214] delete_channel: no stack
[ 1508.583623][T21217] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1508.592566][T21217] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1508.601688][T21217] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1508.610564][T21217] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1509.734263][ T5832] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1510.114372][ T7609] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1510.152749][ T7609] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1512.726798][T21244] No control pipe specified
[ 1513.011183][T21241] sctp: [Deprecated]: syz.6.4340 (pid 21241) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1513.011183][T21241] Use struct sctp_sack_info instead
[ 1514.683017][T20328] Bluetooth: hci4: unexpected event for opcode 0x2019
[ 1515.065631][T21269] overlayfs: failed to clone upperpath
[ 1515.966877][T21276] Process accounting resumed
[ 1516.150898][T21282] overlayfs: failed to clone upperpath
[ 1518.877732][T20328] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[ 1518.886861][T20328] Bluetooth: hci4: Injecting HCI hardware error event
[ 1518.898143][T20328] Bluetooth: hci4: hardware error 0x00
[ 1519.402137][T21306] loop7: detected capacity change from 0 to 16384
[ 1519.528517][T21306] loop7: detected capacity change from 16384 to 16383
[ 1519.549297][T21306] blk_print_req_error: 24 callbacks suppressed
[ 1519.555597][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.565917][T21306] buffer_io_error: 23 callbacks suppressed
[ 1519.571887][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.582742][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.592105][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.603176][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.612521][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.623789][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.633264][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.644659][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.654157][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.665965][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.675389][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.687075][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.696463][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.707448][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.716850][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.726502][T21306] ldm_validate_partition_table(): Disk read failed.
[ 1519.735088][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.744543][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.755312][T21306] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1519.764866][T21306] Buffer I/O error on dev loop7, logical block 0, async page read
[ 1519.778117][T21306] Dev loop7: unable to read RDB block 0
[ 1519.799687][T21306]  loop7: unable to read partition table
[ 1519.810251][T21306] loop_reread_partitions: partition scan of loop7 (R%0Öå—ÊT·$7ñ)]W°ÝÈð?”18úá´;9ƒ×C?�š-ôá…z׌¨€�×	²žç»…97dª¥÷) failed (rc=-5)
[ 1520.668583][T21316] 9pnet_virtio: no channels available for device syz
[ 1521.107819][T20328] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1521.268564][T21316] befs: (nbd6): No write support. Marking filesystem read-only
[ 1521.276973][T21316] syz.6.4358: attempt to access beyond end of device
[ 1521.276973][T21316] nbd6: rw=0, sector=0, nr_sectors = 2 limit=0
[ 1521.290405][T21316] befs: (nbd6): unable to read superblock
[ 1523.278280][T21330] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4362'.
[ 1523.293112][T21330] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1526.146927][T21350] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1532.588169][ T5918] libceph: connect (1)[c::]:6789 error -101
[ 1532.594676][ T5918] libceph: mon0 (1)[c::]:6789 connect error
[ 1532.631674][ T5918] libceph: connect (1)[c::]:6789 error -101
[ 1532.639461][ T5918] libceph: mon0 (1)[c::]:6789 connect error
[ 1533.794362][ T5918] libceph: connect (1)[c::]:6789 error -101
[ 1533.800826][ T5918] libceph: mon0 (1)[c::]:6789 connect error
[ 1533.825193][T21390] "syz.6.4381" (21390) uses obsolete ecb(arc4) skcipher
[ 1533.849207][T21386] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1533.980908][T21393] ceph: No mds server is up or the cluster is laggy
[ 1534.077997][T21404] netlink: 'syz.0.4383': attribute type 1 has an invalid length.
[ 1534.085752][T21404] netlink: 'syz.0.4383': attribute type 2 has an invalid length.
[ 1534.204443][T21404] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[ 1534.772590][    T9] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1534.938058][    T9] usb 3-1: Using ep0 maxpacket: 8
[ 1534.954123][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1535.067714][    T9] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1535.110127][    T9] usb 3-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[ 1535.129561][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1535.147673][    T9] usb 3-1: Product: syz
[ 1535.167675][    T9] usb 3-1: Manufacturer: syz
[ 1535.177890][    T9] usb 3-1: SerialNumber: syz
[ 1535.203852][    T9] usb 3-1: config 0 descriptor??
[ 1535.270500][T21419] netlink: 'syz.7.4388': attribute type 10 has an invalid length.
[ 1535.286378][T21419] 8021q: adding VLAN 0 to HW filter on device team0
[ 1535.294407][T21419] bond0: (slave team0): Enslaving as an active interface with an up link
[ 1537.334014][ T9630] usb 3-1: USB disconnect, device number 57
[ 1539.009040][T21443] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1540.784821][T21458] afs: Unknown parameter 'docal'
[ 1548.438107][T21491] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1549.268417][T21503] overlayfs: failed to clone upperpath
[ 1551.415782][T21509] xt_cgroup: invalid path, errno=-2
[ 1553.028699][T21515] bond0: Error: Cannot enslave bond to itself.
[ 1557.267099][T21545] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1557.309400][T21537] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1558.867769][T21553] netlink: 3 bytes leftover after parsing attributes in process `syz.6.4424'.
[ 1558.880299][T21553] 0ªX¹¦À: renamed from caif0
[ 1559.318138][T21553] 0ªX¹¦À: entered allmulticast mode
[ 1559.329857][T21553] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[ 1560.424727][T21565] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1564.786438][T21592] netlink: 27 bytes leftover after parsing attributes in process `syz.2.4435'.
[ 1570.967828][T21627] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1572.526857][    T9] IPVS: starting estimator thread 0...
[ 1574.814905][T21646] IPVS: using max 29 ests per chain, 69600 per kthread
[ 1576.777733][T21674] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4451'.
[ 1578.739039][T21692] siw: device registration error -23
[ 1580.097537][T21704] netlink: 'syz.0.4460': attribute type 6 has an invalid length.
[ 1581.737187][T21717] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4467'.
[ 1581.800165][T21718] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4466'.
[ 1583.668049][T21726] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4466'.
[ 1584.544576][T21731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4472'.
[ 1584.553663][T21731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4472'.
[ 1588.681627][T21757] netlink: 'syz.7.4479': attribute type 3 has an invalid length.
[ 1589.551884][T21769] veth0_to_team: entered promiscuous mode
[ 1589.557828][T21769] veth0_to_team: entered allmulticast mode
[ 1592.033875][T21786] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4485'.
[ 1592.817883][T21787] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1596.579053][T21817] pim6reg: entered allmulticast mode
[ 1598.297791][T21826] xt_l2tp: invalid flags combination: 4
[ 1600.468830][T21835] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1603.122507][T21857] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4507'.
[ 1606.242170][T21869] smk_cipso_doi:690 cipso add rc = -17
[ 1609.185819][T21886] overlayfs: missing 'lowerdir'
[ 1609.639279][T21895] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1609.771555][T21897] VFS: could not find a valid V7 on nullb0.
[ 1610.349418][T21897] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/nullb0": -EINTR
[ 1615.382459][T21930] mkiss: ax0: crc mode is auto.
[ 1615.897230][T21929] overlayfs: failed to resolve './file0': -2
[ 1617.324820][T21939] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4528'.
[ 1617.824109][T21947] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4528'.
[ 1617.944516][T21947] caif0: entered promiscuous mode
[ 1617.950653][T21947] team0: Device caif0 is of different type
[ 1620.101589][T21958] openvswitch: netlink: Message has 2 unknown bytes.
[ 1620.129342][T21958] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1621.260775][T21963] vivid-007: disconnect
[ 1621.289631][   T29] audit: type=1326 audit(2000000095.922:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=21956 comm="syz.2.4533" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3661b8cda9 code=0x0
[ 1621.380754][T21959] Process accounting resumed
[ 1622.000394][T21973] netlink: 187320 bytes leftover after parsing attributes in process `syz.7.4536'.
[ 1622.010891][T21973] netlink: zone id is out of range
[ 1622.016410][T21973] netlink: zone id is out of range
[ 1622.021824][T21973] netlink: zone id is out of range
[ 1622.027268][T21973] netlink: zone id is out of range
[ 1622.033227][T21973] netlink: zone id is out of range
[ 1623.949990][T21979] netlink: 'syz.0.4539': attribute type 10 has an invalid length.
[ 1623.957887][T21979] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4539'.
[ 1623.967993][T21979] bridge0: port 1(macvlan1) entered blocking state
[ 1623.974670][T21979] bridge0: port 1(macvlan1) entered disabled state
[ 1623.981587][T21979] macvlan1: entered allmulticast mode
[ 1623.987005][T21979] veth1_vlan: entered allmulticast mode
[ 1623.994084][T21979] macvlan1: entered promiscuous mode
[ 1627.625201][T22004] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1627.634067][T22004] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1627.643119][T22004] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1627.652082][T22004] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1627.693128][T22004] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[ 1627.706614][T22004] Error validating options; rc = [-22]
[ 1634.977085][T22030] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1635.093219][T21965] vivid-007: reconnect
[ 1638.781313][T22068] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4562'.
[ 1639.788785][T22071] overlay: Unknown parameter '/dev/cpu/#/msr'
[ 1640.330854][T22075] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4563'.
[ 1646.385156][T22117] Process accounting resumed
[ 1647.515592][T22115] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4575'.
[ 1648.950421][T22132] No such timeout policy "syz0"
[ 1649.970913][T22118] syz.9.4573 (22118): drop_caches: 2
[ 1650.278019][T22140] netlink: 25 bytes leftover after parsing attributes in process `syz.2.4584'.
[ 1653.360190][T22158] netlink: 'syz.0.4590': attribute type 10 has an invalid length.
[ 1653.386196][T22158] mac80211_hwsim hwsim30 wlan1: entered promiscuous mode
[ 1653.395831][T22158] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1657.431033][T22174] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1657.749515][T22180] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1660.656466][T22186] .: renamed from vlan1
[ 1660.741842][   T29] audit: type=1326 audit(2000000034.796:3142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1661.065946][   T29] audit: type=1326 audit(2000000034.796:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1661.175745][T22201] tmpfs: Unknown parameter 'uszquota_block_harFlimit'
[ 1661.300271][T22201] syz.6.4598: attempt to access beyond end of device
[ 1661.300271][T22201] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1661.328776][   T29] audit: type=1326 audit(2000000034.796:3144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1661.691472][   T29] audit: type=1326 audit(2000000034.796:3145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1661.802516][   T29] audit: type=1326 audit(2000000034.796:3146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1662.016956][   T29] audit: type=1326 audit(2000000034.796:3147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc74ad8cda9 code=0x7ffc0000
[ 1662.857665][   T29] audit: type=1326 audit(2000000034.796:3148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc74ad8c9ab code=0x7ffc0000
[ 1662.879471][   T29] audit: type=1326 audit(2000000034.796:3149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc74ad8c9ab code=0x7ffc0000
[ 1662.922706][   T29] audit: type=1326 audit(2000000034.796:3150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc74ad8c9ab code=0x7ffc0000
[ 1662.946661][   T29] audit: type=1326 audit(2000000034.796:3151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22175 comm="syz.9.4594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc74ad8c9ab code=0x7ffc0000
[ 1663.008587][T22210] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4602'.
[ 1664.507614][T20511] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1665.603375][T22217] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[ 1665.900672][ T3004] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1665.914536][T22222] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4605'.
[ 1665.951330][T22222] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4605'.
[ 1666.006406][T22217] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4605'.
[ 1666.048356][T22217] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4605'.
[ 1666.078570][T22231] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1666.103514][T22217] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4605'.
[ 1667.287497][T20328] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1667.870709][T22241] gre2: entered promiscuous mode
[ 1667.875900][T22241] gre2: entered allmulticast mode
[ 1671.872466][T22253] delete_channel: no stack
[ 1675.059667][ T5918] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1675.722718][ T5918] usb 3-1: Using ep0 maxpacket: 32
[ 1675.923229][ T5918] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1675.960038][ T5918] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1675.979549][ T5918] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1676.007044][ T5918] usb 3-1: config 1 has no interface number 0
[ 1676.269052][T22284] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1676.463101][ T5918] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1676.578059][ T5918] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1676.613299][ T5918] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1676.622927][ T5918] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1676.740050][ T5918] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[ 1677.366887][T22291] No source specified
[ 1678.350638][ T5918] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached
[ 1679.494852][    T8] snd_usb_pod 3-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[ 1680.124093][ T5881] libceph: connect (1)[c::]:6789 error -101
[ 1680.139608][ T5881] libceph: mon0 (1)[c::]:6789 connect error
[ 1681.004798][T22302] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4626'.
[ 1681.255264][ T5885] usb 3-1: USB disconnect, device number 58
[ 1681.656585][ T5885] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[ 1682.802314][ T5881] libceph: connect (1)[c::]:6789 error -101
[ 1682.808453][ T5881] libceph: mon0 (1)[c::]:6789 connect error
[ 1682.916901][T22300] ceph: No mds server is up or the cluster is laggy
[ 1682.950048][ T5881] libceph: connect (1)[c::]:6789 error -101
[ 1682.956231][ T5881] libceph: mon0 (1)[c::]:6789 connect error
[ 1685.730736][T22343] ntfs3(nullb0): Primary boot signature is not NTFS.
[ 1685.738492][T22343] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[ 1686.577795][T22339] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1686.675734][T22353] bridge0: port 2(syz_tun) entered blocking state
[ 1686.683368][T22353] bridge0: port 2(syz_tun) entered disabled state
[ 1686.692412][T22353] syz_tun: entered allmulticast mode
[ 1686.709753][T22353] syz_tun: entered promiscuous mode
[ 1687.246943][    C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1689.835440][T22368] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1690.685290][T22376] overlayfs: missing 'lowerdir'
[ 1693.482904][T22395] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1693.520657][T22389] netlink: 224 bytes leftover after parsing attributes in process `syz.2.4646'.
[ 1695.933839][T22415] overlayfs: failed to resolve './file0': -2
[ 1696.030486][T22416] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4650'.
[ 1696.039684][T22416] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 1696.987586][T22421] ax25_connect(): syz.9.4653 uses autobind, please contact jreuter@yaina.de
[ 1697.035223][T22419] overlayfs: failed to resolve './file1': -2
[ 1697.076585][T22426] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1697.162641][T22418] nbd2: detected capacity change from 0 to 10
[ 1697.393054][T22427] block nbd2: shutting down sockets
[ 1697.499440][T22421] netlink: 20 bytes leftover after parsing attributes in process `syz.9.4653'.
[ 1697.596183][T22421] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4653'.
[ 1698.383352][T22444] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1699.344473][T22445] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1699.466136][    C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1701.905288][T22467] QAT: failed to copy from user cfg_data.
[ 1702.100217][T22468] sg_write: data in/out 2031668/92 bytes for SCSI command 0x26-- guessing data in;
[ 1702.100217][T22468]    program syz.2.4664 not setting count and/or reply_len properly
[ 1702.414375][T22471] No source specified
[ 1702.656707][T22479] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1708.003537][T22505] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1716.901021][T22557] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4687'.
[ 1720.890280][T22571] netlink: 36 bytes leftover after parsing attributes in process `syz.6.4692'.
[ 1722.950996][T22585] netlink: 'syz.9.4695': attribute type 10 has an invalid length.
[ 1722.988400][T22585] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1723.018671][T22585] team0: Port device batadv0 added
[ 1723.363754][T22585] syz.9.4695 (22585) used greatest stack depth: 18368 bytes left
[ 1724.023843][T22580] Bluetooth: hci2: command 0x0406 tx timeout
[ 1724.272730][T22589] lo speed is unknown, defaulting to 1000
[ 1729.079865][T22617] netlink: 36 bytes leftover after parsing attributes in process `syz.9.4703'.
[ 1729.216246][T22617] netlink: 16 bytes leftover after parsing attributes in process `syz.9.4703'.
[ 1729.251086][T22617] netlink: 36 bytes leftover after parsing attributes in process `syz.9.4703'.
[ 1729.282575][T22617] netlink: 36 bytes leftover after parsing attributes in process `syz.9.4703'.
[ 1732.504782][T22638] /dev/sg0: Can't lookup blockdev
[ 1732.938814][T22640] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_team, syncid = 0, id = 0
[ 1738.004378][T22680] netlink: 44 bytes leftover after parsing attributes in process `syz.7.4717'.
[ 1738.400481][T22685] use of bytesused == 0 is deprecated and will be removed in the future,
[ 1738.410058][T22685] use the actual size instead.
[ 1740.713117][T22699] overlayfs: failed to clone upperpath
[ 1741.096218][T22697] Process accounting resumed
[ 1745.741393][T22733] block device autoloading is deprecated and will be removed.
[ 1749.144213][T22754] Invalid option length (0) for dns_resolver key
[ 1749.420490][T22757] netlink: 80 bytes leftover after parsing attributes in process `syz.2.4737'.
[ 1749.798695][T22767] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4739'.
[ 1752.478945][   T29] kauditd_printk_skb: 24 callbacks suppressed
[ 1752.478970][   T29] audit: type=1326 audit(2000000120.283:3176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1752.991341][   T29] audit: type=1326 audit(2000000120.283:3177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1753.026284][   T29] audit: type=1326 audit(2000000120.311:3178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1753.052231][   T29] audit: type=1326 audit(2000000120.329:3179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1753.074654][   T29] audit: type=1326 audit(2000000120.329:3180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1753.281906][   T29] audit: type=1326 audit(2000000120.376:3181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1753.304356][   T29] audit: type=1326 audit(2000000120.376:3182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1753.332070][   T29] audit: type=1326 audit(2000000120.376:3183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1754.394570][   T29] audit: type=1326 audit(2000000120.395:3184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1754.800951][   T29] audit: type=1326 audit(2000000120.395:3185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=22773 comm="syz.2.4744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1757.396855][T22810] netlink: 'syz.2.4753': attribute type 4 has an invalid length.
[ 1758.257830][T22820] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[ 1758.282635][T22820] batman_adv: batadv0: Adding interface: gretap1
[ 1758.289400][T22820] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1758.317069][T22820] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[ 1759.802726][T22821] input: syz1 as /devices/virtual/input/input71
[ 1761.148379][T22836] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4759'.
[ 1762.564670][T22847] program syz.9.4763 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1762.706273][T22854] netlink: 176 bytes leftover after parsing attributes in process `syz.0.4760'.
[ 1766.733986][T22878] ISOFS: Unable to identify CD-ROM format.
[ 1766.950657][T22878] Process accounting resumed
[ 1767.536588][ T5918] IPVS: starting estimator thread 0...
[ 1767.640336][T22881] IPVS: using max 23 ests per chain, 55200 per kthread
[ 1767.833056][T22893] overlayfs: missing 'lowerdir'
[ 1767.917881][T22883] [U] ^C
[ 1768.329760][T22901] program syz.9.4775 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1768.757359][T22904] hpfs: Bad magic ... probably not HPFS
[ 1769.482012][T22905] netlink: 11 bytes leftover after parsing attributes in process `syz.7.4776'.
[ 1769.536162][ T5918] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1771.716005][ T5918] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1771.745611][ T5918] usb 3-1: can't read configurations, error -71
[ 1774.925248][T22945] netlink: 'syz.6.4785': attribute type 9 has an invalid length.
[ 1776.220219][T22953] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1776.881627][T22955] netlink: 'syz.7.4786': attribute type 10 has an invalid length.
[ 1776.894763][T22955] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1776.908262][T22955] bond0: (slave batadv0): Enslaving as an active interface with an up link
[ 1777.696231][T22958] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4790'.
[ 1782.527921][T22981] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1784.343072][T22993] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1784.370055][T22963] lo speed is unknown, defaulting to 1000
[ 1786.127151][ T5881] IPVS: starting estimator thread 0...
[ 1786.235009][T23001] IPVS: using max 30 ests per chain, 72000 per kthread
[ 1788.862123][T23014] netlink: 56 bytes leftover after parsing attributes in process `syz.9.4803'.
[ 1790.696703][T23039] 9pnet_fd: Insufficient options for proto=fd
[ 1790.718827][T23039] siw: device registration error -23
[ 1792.097755][   T29] kauditd_printk_skb: 4 callbacks suppressed
[ 1792.097810][   T29] audit: type=1800 audit(2000000157.652:3190): pid=23047 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.4810" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[ 1794.108129][T23057] netlink: 24 bytes leftover after parsing attributes in process `syz.9.4812'.
[ 1796.830862][T23065] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[ 1801.745505][T23078] Process accounting paused
[ 1802.513625][ T5832] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1802.536940][ T5832] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1802.577135][ T5832] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1802.603245][ T5832] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1802.613515][T22963] syz_tun (unregistering): left promiscuous mode
[ 1802.620519][ T5832] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1802.633266][ T5832] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1802.987478][T23109] input input72: cannot allocate more than FF_MAX_EFFECTS effects
[ 1803.535145][T23103] IPVS: length: 69 != 8
[ 1803.540703][ T5885] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[ 1803.625022][T23103] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[ 1803.742418][ T5885] usb 3-1: Using ep0 maxpacket: 16
[ 1803.785947][ T5885] usb 3-1: config 0 has an invalid interface number: 41 but max is 0
[ 1803.838632][ T5885] usb 3-1: config 0 has no interface number 0
[ 1803.855841][ T5885] usb 3-1: config 0 interface 41 has no altsetting 0
[ 1803.915791][ T5885] usb 3-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1803.977855][ T5885] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1803.986291][ T5885] usb 3-1: Product: syz
[ 1804.073938][ T5885] usb 3-1: Manufacturer: syz
[ 1804.078625][ T5885] usb 3-1: SerialNumber: syz
[ 1804.181832][ T5885] usb 3-1: config 0 descriptor??
[ 1804.203897][ T5885] CoreChips 3-1:0.41: probe with driver CoreChips failed with error -22
[ 1804.524337][    T8] usb 3-1: USB disconnect, device number 61
[ 1804.835555][ T5832] Bluetooth: hci5: command tx timeout
[ 1804.865655][T23099] lo speed is unknown, defaulting to 1000
[ 1807.057154][ T5832] Bluetooth: hci5: command tx timeout
[ 1809.281570][ T5832] Bluetooth: hci5: command tx timeout
[ 1809.627995][T23147] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1809.656197][T23147] CIFS mount error: No usable UNC path provided in device string!
[ 1809.656197][T23147] 
[ 1809.667170][T23147] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1810.477238][T23099] chnl_net:caif_netlink_parms(): no params data found
[ 1812.528310][ T5832] Bluetooth: hci5: command tx timeout
[ 1813.304136][T23156] No control pipe specified
[ 1813.693742][T23171] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4836'.
[ 1814.683097][T23099] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1814.690954][T23099] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1814.698299][T23099] bridge_slave_0: entered allmulticast mode
[ 1814.705670][T23099] bridge_slave_0: entered promiscuous mode
[ 1814.718315][T23099] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1814.810756][T23099] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1814.818262][T23099] bridge_slave_1: entered allmulticast mode
[ 1814.825565][T23099] bridge_slave_1: entered promiscuous mode
[ 1816.403264][T23099] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1818.187647][T23099] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1818.712011][T23199] nfs4: Unknown parameter '
dev/cpu/#/msr'
[ 1819.689247][T23099] team0: Port device team_slave_0 added
[ 1822.976717][T23099] team0: Port device team_slave_1 added
[ 1823.076896][T23099] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1823.084208][T23099] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1823.110969][T23099] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1823.140905][T23099] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1823.179348][T23099] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1823.225962][T23099] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1823.246138][T23224] No control pipe specified
[ 1823.356086][T23099] hsr_slave_0: entered promiscuous mode
[ 1823.378245][T23227] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci5/hci5:200/input73
[ 1823.415179][T23099] hsr_slave_1: entered promiscuous mode
[ 1823.433270][T23099] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1823.441348][T23099] Cannot create hsr debugfs directory
[ 1823.606010][T23231] netdevsim netdevsim0: Direct firmware load for .
[ 1823.606010][T23231]  failed with error -2
[ 1823.617463][T23231] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[ 1823.617463][T23231] 
[ 1823.629797][T23236] netlink: 72 bytes leftover after parsing attributes in process `syz.0.4851'.
[ 1823.641984][T23236] libceph: resolve '0.0' (ret=-3): failed
[ 1823.803279][T23099] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1823.929563][T23099] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1824.180596][T23099] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1826.663795][T23253] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1827.147339][T23099] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1827.389396][T23261] netlink: 88 bytes leftover after parsing attributes in process `syz.7.4856'.
[ 1828.851793][T23270] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1829.366839][T23266] loop2: detected capacity change from 0 to 7
[ 1829.373818][T23266] Dev loop2: unable to read RDB block 7
[ 1829.379635][T23266]  loop2: AHDI p2 p3
[ 1829.383572][T23266] loop2: partition table partially beyond EOD, truncated
[ 1829.390784][T23266] loop2: p2 start 33685504 is beyond EOD, truncated
[ 1830.349477][T23281] xt_socket: unknown flags 0x50
[ 1831.080886][T23283] No control pipe specified
[ 1831.186615][T23099] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1832.107736][   T29] audit: type=1326 audit(2000000195.087:3191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23287 comm="syz.9.4864" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc74ad8cda9 code=0x0
[ 1833.196299][T23099] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1833.210791][T23099] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1833.251698][T23099] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1834.283802][T23303] netlink: 48 bytes leftover after parsing attributes in process `syz.7.4867'.
[ 1835.094248][T23099] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1835.422882][T22580] Bluetooth: hci5: command 0x0405 tx timeout
[ 1836.122065][T23099] 8021q: adding VLAN 0 to HW filter on device team0
[ 1836.707637][T23099] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1836.941690][T23099] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1837.100049][ T7598] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1837.107217][ T7598] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1837.184616][ T7598] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1837.191841][ T7598] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1837.457772][T23291] Process accounting resumed
[ 1838.253625][T23309] TCP: out of memory -- consider tuning tcp_mem
[ 1840.292992][T23099] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1840.414918][T23334] netlink: 'syz.9.4872': attribute type 2 has an invalid length.
[ 1840.423783][T23334] netlink: 212912 bytes leftover after parsing attributes in process `syz.9.4872'.
[ 1840.885851][T23099] veth0_vlan: entered promiscuous mode
[ 1843.567718][T23099] veth1_vlan: entered promiscuous mode
[ 1843.776981][T23099] veth0_macvtap: entered promiscuous mode
[ 1843.824664][T23099] veth1_macvtap: entered promiscuous mode
[ 1843.884025][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1843.932447][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1843.971721][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1844.009935][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1844.031137][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1844.048018][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1844.323048][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1844.336216][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1844.347817][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1844.358831][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1844.384108][T23099] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1844.504694][T23375] overlayfs: failed to clone upperpath
[ 1845.188341][T23378] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4880'.
[ 1845.898392][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1845.939158][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.950919][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1845.962616][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1845.978869][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1846.096900][T23385] netlink: 68 bytes leftover after parsing attributes in process `syz.9.4881'.
[ 1847.031875][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1847.046643][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1847.084551][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1847.322504][T23099] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1847.441409][T23099] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1847.584597][T23099] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1847.742055][T23099] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1847.762287][T23099] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1847.803436][T23099] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1847.842745][T23099] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1848.628325][ T7609] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1848.669057][ T7609] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1849.784388][T23412] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1849.793712][T23412] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1850.826175][ T7609] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1850.861397][ T7609] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1855.790503][   T29] audit: type=1800 audit(2000000215.871:3192): pid=23426 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.4893" name="file1" dev="tmpfs" ino=2422 res=0 errno=0
[ 1856.262454][   T29] audit: type=1326 audit(2000000217.686:3193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1856.379698][T23445] netlink: 40 bytes leftover after parsing attributes in process `syz.9.4898'.
[ 1857.293089][   T29] audit: type=1326 audit(2000000217.686:3194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1857.388906][   T29] audit: type=1326 audit(2000000217.686:3195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1858.023059][   T29] audit: type=1326 audit(2000000217.686:3196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1858.060316][   T29] audit: type=1326 audit(2000000217.686:3197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1858.217618][T23463] tmpfs: Bad value for 'mpol'
[ 1858.632951][   T29] audit: type=1326 audit(2000000217.686:3198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1858.655502][   T29] audit: type=1326 audit(2000000217.686:3199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1858.925062][   T29] audit: type=1326 audit(2000000217.686:3200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1858.947323][   T29] audit: type=1326 audit(2000000217.686:3201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23438 comm="syz.4.4813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f56f438cda9 code=0x7ffc0000
[ 1859.211369][T23474] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1859.220675][T23474] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1859.230184][T23474] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1859.239201][T23474] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1859.248702][T23474] geneve2: entered promiscuous mode
[ 1859.254045][T23474] geneve2: entered allmulticast mode
[ 1859.987348][T23473] xt_CT: No such helper "syz0"
[ 1860.259918][T23475] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[ 1860.269060][T23475] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[ 1860.277874][T23475] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[ 1865.465359][T21194] usb 10-1: new full-speed USB device number 18 using dummy_hcd
[ 1865.726901][T21194] usb 10-1: unable to get BOS descriptor or descriptor too short
[ 1865.757019][T21194] usb 10-1: not running at top speed; connect to a high speed hub
[ 1865.809115][T21194] usb 10-1: config 12 has an invalid interface number: 187 but max is 0
[ 1865.844265][T21194] usb 10-1: config 12 has no interface number 0
[ 1865.865552][T21194] usb 10-1: config 12 interface 187 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64
[ 1865.963022][T21194] usb 10-1: config 12 interface 187 has no altsetting 0
[ 1866.057364][T23548] netlink: 'syz.0.4925': attribute type 4 has an invalid length.
[ 1866.845447][T21194] usb 10-1: New USB device found, idVendor=110a, idProduct=1130, bcdDevice=4e.fa
[ 1866.904775][T21194] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1866.912965][T21194] usb 10-1: Product: syz
[ 1867.120024][T21194] usb 10-1: Manufacturer: syz
[ 1867.137765][T21194] usb 10-1: SerialNumber: syz
[ 1867.444975][T23555] No such timeout policy "syz1"
[ 1867.581561][T21194] usb 10-1: can't set config #12, error -71
[ 1867.654044][T21194] usb 10-1: USB disconnect, device number 18
[ 1867.672593][ T5885] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[ 1867.993324][ T5885] usb 3-1: Using ep0 maxpacket: 16
[ 1868.066855][ T5885] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[ 1868.149545][ T5885] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1868.225447][ T5885] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1868.320194][ T5885] usb 3-1: config 1 has no interface number 1
[ 1868.392568][ T5885] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1868.656997][ T5885] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1868.687807][ T5885] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 16430, setting to 1024
[ 1868.722827][ T5885] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1868.773643][ T5885] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1868.781738][ T5885] usb 3-1: Product: syz
[ 1868.796871][ T5885] usb 3-1: Manufacturer: syz
[ 1868.809993][ T5885] usb 3-1: SerialNumber: syz
[ 1869.545360][ T5885] usb 3-1: USB disconnect, device number 62
[ 1869.708885][T20328] Bluetooth: hci5: unknown advertising packet type: 0x07
[ 1869.846148][   T29] kauditd_printk_skb: 19 callbacks suppressed
[ 1869.846171][   T29] audit: type=1326 audit(2000000230.389:3221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23594 comm="syz.7.4946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75e78cda9 code=0x7ffc0000
[ 1869.944764][   T29] audit: type=1326 audit(2000000230.389:3222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23594 comm="syz.7.4946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75e78cda9 code=0x7ffc0000
[ 1870.005657][   T29] audit: type=1326 audit(2000000230.435:3223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23594 comm="syz.7.4946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=433 compat=0 ip=0x7fe75e78cda9 code=0x7ffc0000
[ 1870.028074][   T29] audit: type=1326 audit(2000000230.435:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23594 comm="syz.7.4946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe75e78cda9 code=0x7ffc0000
[ 1870.208987][   T29] audit: type=1326 audit(2000000230.735:3225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23608 comm="syz.0.4953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1870.277643][   T29] audit: type=1326 audit(2000000230.735:3226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23608 comm="syz.0.4953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1870.335403][   T29] audit: type=1326 audit(2000000230.763:3227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23608 comm="syz.0.4953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1870.384375][   T29] audit: type=1326 audit(2000000230.763:3228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23608 comm="syz.0.4953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b07d8cda9 code=0x7ffc0000
[ 1870.511117][ T5918] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[ 1870.976426][T23617] Process accounting paused
[ 1871.052411][ T5918] usb 5-1: Using ep0 maxpacket: 8
[ 1871.061777][T20328] Bluetooth: hci2: unexpected event 0x3e length: 339 > 260
[ 1871.061818][T20328] Bluetooth: hci2: unexpected subevent 0x0d length: 338 > 260
[ 1871.102954][T20328] Bluetooth: hci2: adv larger than maximum supported
[ 1871.111778][ T5918] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1871.176383][ T5918] usb 5-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[ 1871.203565][ T5918] usb 5-1: config 8 interface 0 altsetting 7 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1871.274974][ T5918] usb 5-1: config 8 interface 0 altsetting 7 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1871.318294][ T5918] usb 5-1: config 8 interface 0 altsetting 7 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1871.340890][ T5918] usb 5-1: config 8 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1871.363739][ T5918] usb 5-1: config 8 interface 0 has no altsetting 0
[ 1871.381025][ T5918] usb 5-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=6a.e5
[ 1871.390652][ T5918] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1871.420665][ T5918] usb 5-1: Product: syz
[ 1871.439991][ T5918] usb 5-1: Manufacturer: syz
[ 1871.444695][ T5918] usb 5-1: SerialNumber: syz
[ 1872.370357][T23640] netlink: 'syz.0.4968': attribute type 1 has an invalid length.
[ 1872.389058][ T5918] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1872.477499][T23640] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4968'.
[ 1872.506910][ T5918] usb 5-1: selecting invalid altsetting 0
[ 1872.591328][T23650] tipc: Can't bind to reserved service type 1
[ 1872.618614][T23654] openvswitch: netlink: Message has 2 unknown bytes.
[ 1872.630496][ T5918] snd-usb-audio 5-1:8.0: probe with driver snd-usb-audio failed with error -12
[ 1872.651643][T23654] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1872.664489][ T5918] usb 5-1: USB disconnect, device number 62
[ 1872.844028][T23660] netlink: 'syz.0.4976': attribute type 8 has an invalid length.
[ 1873.774824][T23667] Cannot find del_set index 286 as target
[ 1874.065097][ T5918] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[ 1874.471435][ T5918] usb 5-1: Using ep0 maxpacket: 16
[ 1874.487975][T20328] Bluetooth: hci5: unexpected subevent 0x03 length: 32 > 9
[ 1874.489493][ T5918] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1874.699909][ T5918] usb 5-1: unable to read config index 0 descriptor/start: -71
[ 1874.719548][ T5918] usb 5-1: can't read configurations, error -71
[ 1874.971645][T23691] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1876.582407][T23697] Mount JFS Failure: -22
[ 1877.922821][T23711] netlink: 'syz.2.4991': attribute type 9 has an invalid length.
[ 1878.226834][   T29] audit: type=1326 audit(2000000238.237:3229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23703 comm="syz.2.4991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1878.442027][   T29] audit: type=1326 audit(2000000238.274:3230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23703 comm="syz.2.4991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1878.464656][   T29] audit: type=1326 audit(2000000238.293:3231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23703 comm="syz.2.4991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1878.565963][   T29] audit: type=1326 audit(2000000238.302:3232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23703 comm="syz.2.4991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1878.670619][   T29] audit: type=1326 audit(2000000238.442:3233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23703 comm="syz.2.4991" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3661b8cda9 code=0x7ffc0000
[ 1878.780358][   T29] audit: type=1326 audit(2000000238.686:3234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=23719 comm="syz.4.4998" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f56f438cda9 code=0x0
[ 1880.401421][T23753] autofs: Unknown parameter '™“Dz•Ó»ŒóSýcňÿ£Ÿðüí ’~¤²¢GЂ$uX¾ö²²Íjÿìá³e&é8Œ4O·¬BžCLË0H<ªò–Ø!Ž$'
[ 1884.162652][ T5885] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[ 1887.304357][ T5885] usb 5-1: device descriptor read/all, error -71
[ 1890.591507][T23831] delete_channel: no stack
[ 1891.825504][T23839] lo speed is unknown, defaulting to 1000
[ 1893.725690][T23860] xt_CT: No such helper "syz0"
[ 1895.066283][T23877] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5049'.
[ 1896.341125][T23905] netlink: 'syz.7.5063': attribute type 6 has an invalid length.
[ 1896.532989][ T5885] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[ 1896.740384][ T5885] usb 5-1: Using ep0 maxpacket: 16
[ 1896.812459][ T5885] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1896.839372][ T5885] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1896.868640][ T5885] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1896.935076][ T5885] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1897.041032][ T5885] usb 5-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b
[ 2009.205067][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 2009.205101][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=127953, q=111 ncpus=2)
[ 2009.205123][    C0] rcu: All QSes seen, last rcu_preempt kthread activity 10492 (4295135461-4295124969), jiffies_till_next_fqs=1, root ->qsmask 0x0
[ 2009.205153][    C0] rcu: rcu_preempt kthread starved for 10492 jiffies! g127953 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 2009.205178][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 2009.205192][    C0] rcu: RCU grace-period kthread stack dump:
[ 2009.205202][    C0] task:rcu_preempt     state:R  running task     stack:25816 pid:17    tgid:17    ppid:2      task_flags:0x208040 flags:0x00004000
[ 2009.205277][    C0] Call Trace:
[ 2009.205287][    C0]  <TASK>
[ 2009.205303][    C0]  __schedule+0x18bc/0x4c40
[ 2009.205360][    C0]  ? __pfx___schedule+0x10/0x10
[ 2009.205399][    C0]  ? __pfx_lock_release+0x10/0x10
[ 2009.205435][    C0]  ? __pfx___mod_timer+0x10/0x10
[ 2009.205466][    C0]  ? schedule+0x90/0x320
[ 2009.205491][    C0]  schedule+0x14b/0x320
[ 2009.205520][    C0]  schedule_timeout+0x15a/0x290
[ 2009.205544][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[ 2009.205569][    C0]  ? __pfx_process_timeout+0x10/0x10
[ 2009.205611][    C0]  ? prepare_to_swait_event+0x330/0x350
[ 2009.205646][    C0]  rcu_gp_fqs_loop+0x2df/0x1330
[ 2009.205682][    C0]  ? rcu_gp_init+0x1256/0x1630
[ 2009.205718][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[ 2009.205745][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[ 2009.205778][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 2009.205806][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 2009.205840][    C0]  ? finish_swait+0xd4/0x1e0
[ 2009.205867][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 2009.205897][    C0]  rcu_gp_kthread+0xa7/0x3b0
[ 2009.205930][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 2009.205958][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 2009.205989][    C0]  ? __kthread_parkme+0x169/0x1d0
[ 2009.206021][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 2009.206051][    C0]  kthread+0x7a9/0x920
[ 2009.206079][    C0]  ? __pfx_kthread+0x10/0x10
[ 2009.206110][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 2009.206140][    C0]  ? __pfx_kthread+0x10/0x10
[ 2009.206167][    C0]  ? __pfx_kthread+0x10/0x10
[ 2009.206199][    C0]  ? __pfx_kthread+0x10/0x10
[ 2009.206226][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2009.206251][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[ 2009.206278][    C0]  ? __pfx_kthread+0x10/0x10
[ 2009.206309][    C0]  ret_from_fork+0x4b/0x80
[ 2009.206335][    C0]  ? __pfx_kthread+0x10/0x10
[ 2009.206370][    C0]  ret_from_fork_asm+0x1a/0x30
[ 2009.206412][    C0]  </TASK>
[ 2009.206423][    C0] rcu: Stack dump where RCU GP kthread last ran:
[ 2009.206437][    C0] CPU: 0 UID: 0 PID: 23910 Comm: syz.7.5064 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[ 2009.206461][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2009.206476][    C0] RIP: 0010:smp_call_function_many_cond+0x1ba4/0x2d30
[ 2009.206512][    C0] Code: 03 84 c0 75 7e 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 b0 e8 0b 00 41 83 e4 01 4c 8b 64 24 68 75 07 e8 60 e4 0b 00 eb 41 f3 90 <48> b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 75 11 41 f7 45 00
[ 2009.206531][    C0] RSP: 0018:ffffc9000d667680 EFLAGS: 00000293
[ 2009.206552][    C0] RAX: ffffffff81b37985 RBX: 1ffff110170e88c9 RCX: ffff888026eb0000
[ 2009.206570][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 2009.206584][    C0] RBP: ffffc9000d667880 R08: ffffffff81b37950 R09: 1ffffffff285870e
[ 2009.206601][    C0] R10: dffffc0000000000 R11: fffffbfff285870f R12: ffff8880b863f9c8
[ 2009.206619][    C0] R13: ffff8880b8744648 R14: ffff8880b863f9c0 R15: 0000000000000001
[ 2009.206636][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 2009.206654][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2009.206670][    C0] CR2: 0000001b2d11fffc CR3: 00000000629d2000 CR4: 00000000003526f0
[ 2009.206691][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000001000
[ 2009.206705][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 2009.206720][    C0] Call Trace:
[ 2009.206729][    C0]  <IRQ>
[ 2009.206739][    C0]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[ 2009.206778][    C0]  ? print_other_cpu_stall+0x1481/0x15c0
[ 2009.206822][    C0]  ? __pfx_print_other_cpu_stall+0x10/0x10
[ 2009.206853][    C0]  ? cgroup_rstat_updated+0x13b/0xc30
[ 2009.206897][    C0]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[ 2009.206937][    C0]  ? rcu_sched_clock_irq+0xa26/0x10e0
[ 2009.206978][    C0]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[ 2009.207021][    C0]  ? update_process_times+0x242/0x2f0
[ 2009.207051][    C0]  ? tick_nohz_handler+0x37c/0x500
[ 2009.207079][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[ 2009.207103][    C0]  ? __hrtimer_run_queues+0x551/0xd30
[ 2009.207154][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 2009.207185][    C0]  ? sched_clock+0x4a/0x70
[ 2009.207210][    C0]  ? read_tsc+0x9/0x20
[ 2009.207231][    C0]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[ 2009.207285][    C0]  ? hrtimer_interrupt+0x403/0xa40
[ 2009.207342][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[ 2009.207382][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[ 2009.207409][    C0]  </IRQ>
[ 2009.207419][    C0]  <TASK>
[ 2009.207429][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2009.207468][    C0]  ? smp_call_function_many_cond+0x1b90/0x2d30
[ 2009.207500][    C0]  ? smp_call_function_many_cond+0x1bc5/0x2d30
[ 2009.207536][    C0]  ? smp_call_function_many_cond+0x1ba4/0x2d30
[ 2009.207573][    C0]  ? tlb_remove_table+0xf4/0x550
[ 2009.207609][    C0]  ? free_pgd_range+0xd57/0xdd0
[ 2009.207651][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[ 2009.207689][    C0]  ? __pfx_free_pgd_range+0x10/0x10
[ 2009.207718][    C0]  ? rcu_is_watching+0x15/0xb0
[ 2009.207750][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[ 2009.207785][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[ 2009.207820][    C0]  flush_tlb_mm_range+0x42d/0x710
[ 2009.207859][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[ 2009.207896][    C0]  ? __pfx_free_pgtables+0x10/0x10
[ 2009.207926][    C0]  tlb_flush_mmu+0x1aa/0x680
[ 2009.207951][    C0]  ? __pfx_down_write+0x10/0x10
[ 2009.207987][    C0]  tlb_finish_mmu+0xd4/0x200
[ 2009.208016][    C0]  exit_mmap+0x52a/0xd40
[ 2009.208058][    C0]  ? __pfx_exit_mmap+0x10/0x10
[ 2009.208105][    C0]  ? __pfx_exit_aio+0x10/0x10
[ 2009.208140][    C0]  ? uprobe_clear_state+0x271/0x290
[ 2009.208167][    C0]  ? mm_update_next_owner+0xa2/0x8a0
[ 2009.208194][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 2009.208222][    C0]  __mmput+0x115/0x410
[ 2009.208257][    C0]  exit_mm+0x220/0x310
[ 2009.208287][    C0]  ? __pfx_exit_mm+0x10/0x10
[ 2009.208314][    C0]  ? taskstats_exit+0x326/0xa60
[ 2009.208347][    C0]  do_exit+0x9ad/0x28e0
[ 2009.208385][    C0]  ? preempt_schedule_common+0x84/0xd0
[ 2009.208415][    C0]  ? __pfx_do_exit+0x10/0x10
[ 2009.208441][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2009.208472][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2009.208506][    C0]  ? preempt_schedule_thunk+0x1a/0x30
[ 2009.208542][    C0]  do_group_exit+0x207/0x2c0
[ 2009.208575][    C0]  __x64_sys_exit_group+0x3f/0x40
[ 2009.208603][    C0]  x64_sys_call+0x26a8/0x26b0
[ 2009.208625][    C0]  do_syscall_64+0xf3/0x230
[ 2009.208656][    C0]  ? clear_bhb_loop+0x35/0x90
[ 2009.208690][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2009.208720][    C0] RIP: 0033:0x7fe75e78cda9
[ 2009.208740][    C0] Code: Unable to access opcode bytes at 0x7fe75e78cd7f.
[ 2009.208752][    C0] RSP: 002b:00007ffdd786b998 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 2009.208776][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe75e78cda9
[ 2009.208793][    C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 2009.208807][    C0] RBP: 00007ffdd786b9fc R08: 00007ffdd786ba8f R09: 00000000000927c0
[ 2009.208824][    C0] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000025c
[ 2009.208838][    C0] R13: 00000000000927c0 R14: 00000000001ca8a8 R15: 00007ffdd786ba50
[ 2009.208871][    C0]  </TASK>
[ 2172.819387][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 263s! [syz.7.5064:23910]
[ 2172.819419][    C0] Modules linked in:
[ 2172.819440][    C0] irq event stamp: 750106
[ 2172.819448][    C0] hardirqs last  enabled at (750105): [<ffffffff8bedf8e3>] irqentry_exit+0x63/0x90
[ 2172.819487][    C0] hardirqs last disabled at (750106): [<ffffffff8bedd4ee>] sysvec_apic_timer_interrupt+0xe/0xc0
[ 2172.819516][    C0] softirqs last  enabled at (750076): [<ffffffff8181c4e7>] __irq_exit_rcu+0xf7/0x220
[ 2172.819541][    C0] softirqs last disabled at (749991): [<ffffffff8181c4e7>] __irq_exit_rcu+0xf7/0x220
[ 2172.819569][    C0] CPU: 0 UID: 0 PID: 23910 Comm: syz.7.5064 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[ 2172.819591][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2172.819605][    C0] RIP: 0010:smp_call_function_many_cond+0x1ba4/0x2d30
[ 2172.819639][    C0] Code: 03 84 c0 75 7e 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 b0 e8 0b 00 41 83 e4 01 4c 8b 64 24 68 75 07 e8 60 e4 0b 00 eb 41 f3 90 <48> b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 75 11 41 f7 45 00
[ 2172.819656][    C0] RSP: 0018:ffffc9000d667680 EFLAGS: 00000293
[ 2172.819673][    C0] RAX: ffffffff81b37985 RBX: 1ffff110170e88c9 RCX: ffff888026eb0000
[ 2172.819689][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 2172.819702][    C0] RBP: ffffc9000d667880 R08: ffffffff81b37950 R09: 1ffffffff285870e
[ 2172.819717][    C0] R10: dffffc0000000000 R11: fffffbfff285870f R12: ffff8880b863f9c8
[ 2172.819733][    C0] R13: ffff8880b8744648 R14: ffff8880b863f9c0 R15: 0000000000000001
[ 2172.819748][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 2172.819764][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2172.819778][    C0] CR2: 0000001b2d11fffc CR3: 00000000629d2000 CR4: 00000000003526f0
[ 2172.819797][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000001000
[ 2172.819810][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 2172.819823][    C0] Call Trace:
[ 2172.819833][    C0]  <IRQ>
[ 2172.819843][    C0]  ? watchdog_timer_fn+0x75b/0x960
[ 2172.819877][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[ 2172.819906][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 2172.819932][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2172.819964][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[ 2172.819993][    C0]  ? __hrtimer_run_queues+0x551/0xd30
[ 2172.820042][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 2172.820071][    C0]  ? sched_clock+0x4a/0x70
[ 2172.820094][    C0]  ? read_tsc+0x9/0x20
[ 2172.820114][    C0]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[ 2172.820147][    C0]  ? hrtimer_interrupt+0x403/0xa40
[ 2172.820202][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[ 2172.820234][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[ 2172.820259][    C0]  </IRQ>
[ 2172.820267][    C0]  <TASK>
[ 2172.820276][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2172.820313][    C0]  ? smp_call_function_many_cond+0x1b90/0x2d30
[ 2172.820343][    C0]  ? smp_call_function_many_cond+0x1bc5/0x2d30
[ 2172.820377][    C0]  ? smp_call_function_many_cond+0x1ba4/0x2d30
[ 2172.820412][    C0]  ? tlb_remove_table+0xf4/0x550
[ 2172.820452][    C0]  ? free_pgd_range+0xd57/0xdd0
[ 2172.820492][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[ 2172.820528][    C0]  ? __pfx_free_pgd_range+0x10/0x10
[ 2172.820554][    C0]  ? rcu_is_watching+0x15/0xb0
[ 2172.820585][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[ 2172.820618][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[ 2172.820652][    C0]  flush_tlb_mm_range+0x42d/0x710
[ 2172.820689][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[ 2172.820724][    C0]  ? __pfx_free_pgtables+0x10/0x10
[ 2172.820752][    C0]  tlb_flush_mmu+0x1aa/0x680
[ 2172.820775][    C0]  ? __pfx_down_write+0x10/0x10
[ 2172.820810][    C0]  tlb_finish_mmu+0xd4/0x200
[ 2172.820836][    C0]  exit_mmap+0x52a/0xd40
[ 2172.820876][    C0]  ? __pfx_exit_mmap+0x10/0x10
[ 2172.820921][    C0]  ? __pfx_exit_aio+0x10/0x10
[ 2172.820953][    C0]  ? uprobe_clear_state+0x271/0x290
[ 2172.820978][    C0]  ? mm_update_next_owner+0xa2/0x8a0
[ 2172.821004][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 2172.821029][    C0]  __mmput+0x115/0x410
[ 2172.821063][    C0]  exit_mm+0x220/0x310
[ 2172.821091][    C0]  ? __pfx_exit_mm+0x10/0x10
[ 2172.821116][    C0]  ? taskstats_exit+0x326/0xa60
[ 2172.821148][    C0]  do_exit+0x9ad/0x28e0
[ 2172.821176][    C0]  ? preempt_schedule_common+0x84/0xd0
[ 2172.821205][    C0]  ? __pfx_do_exit+0x10/0x10
[ 2172.821227][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2172.821258][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2172.821290][    C0]  ? preempt_schedule_thunk+0x1a/0x30
[ 2172.821324][    C0]  do_group_exit+0x207/0x2c0
[ 2172.821356][    C0]  __x64_sys_exit_group+0x3f/0x40
[ 2172.821382][    C0]  x64_sys_call+0x26a8/0x26b0
[ 2172.821404][    C0]  do_syscall_64+0xf3/0x230
[ 2172.821439][    C0]  ? clear_bhb_loop+0x35/0x90
[ 2172.821471][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2172.821499][    C0] RIP: 0033:0x7fe75e78cda9
[ 2172.821517][    C0] Code: Unable to access opcode bytes at 0x7fe75e78cd7f.
[ 2172.821528][    C0] RSP: 002b:00007ffdd786b998 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 2172.821548][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe75e78cda9
[ 2172.821562][    C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 2172.821575][    C0] RBP: 00007ffdd786b9fc R08: 00007ffdd786ba8f R09: 00000000000927c0
[ 2172.821590][    C0] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000025c
[ 2172.821602][    C0] R13: 00000000000927c0 R14: 00000000001ca8a8 R15: 00007ffdd786ba50
[ 2172.821633][    C0]  </TASK>
[ 2172.821656][    C0] Sending NMI from CPU 0 to CPUs 1:
[ 2172.821697][    C1] NMI backtrace for cpu 1
[ 2172.821708][    C1] CPU: 1 UID: 0 PID: 5885 Comm: kworker/1:5 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[ 2172.821727][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2172.821741][    C1] Workqueue: usb_hub_wq hub_event
[ 2172.821767][    C1] RIP: 0010:kasan_check_range+0x1b8/0x290
[ 2172.821789][    C1] Code: 4d 01 fb 48 8d 5d 07 48 85 ed 48 0f 49 dd 48 83 e3 f8 48 29 dd 74 12 41 80 3b 00 0f 85 a6 00 00 00 49 ff c3 48 ff cd 75 ee 5b <41> 5c 41 5e 41 5f 5d c3 cc cc cc cc 40 84 ed 75 5f f7 c5 00 ff 00
[ 2172.821804][    C1] RSP: 0018:ffffc90000a185f8 EFLAGS: 00000056
[ 2172.821818][    C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffffffff819b71be
[ 2172.821830][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff942c3840
[ 2172.821841][    C1] RBP: 0000000000000000 R08: ffffffff942c3847 R09: 1ffffffff2858708
[ 2172.821853][    C1] R10: dffffc0000000000 R11: fffffbfff2858709 R12: dffffc0000000000
[ 2172.821867][    C1] R13: ffff88807ca46600 R14: dffffc0000000001 R15: fffffbfff2858709
[ 2172.821880][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 2172.821894][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2172.821906][    C1] CR2: 0000000020031000 CR3: 0000000042840000 CR4: 00000000003526f0
[ 2172.821921][    C1] DR0: 0000000000000000 DR1: 0000000000000097 DR2: 0000000000000000
[ 2172.821932][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 2172.821942][    C1] Call Trace:
[ 2172.821949][    C1]  <NMI>
[ 2172.821956][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 2172.821983][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 2172.822016][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 2172.822053][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 2172.822081][    C1]  ? nmi_handle+0x14f/0x5a0
[ 2172.822113][    C1]  ? nmi_handle+0x2a/0x5a0
[ 2172.822147][    C1]  ? kasan_check_range+0x1b8/0x290
[ 2172.822175][    C1]  ? default_do_nmi+0x63/0x160
[ 2172.822200][    C1]  ? exc_nmi+0x123/0x1f0
[ 2172.822224][    C1]  ? end_repeat_nmi+0xf/0x53
[ 2172.822261][    C1]  ? validate_chain+0x11e/0x5920
[ 2172.822288][    C1]  ? kasan_check_range+0x1b8/0x290
[ 2172.822308][    C1]  ? kasan_check_range+0x1b8/0x290
[ 2172.822329][    C1]  ? kasan_check_range+0x1b8/0x290
[ 2172.822349][    C1]  </NMI>
[ 2172.822355][    C1]  <IRQ>
[ 2172.822362][    C1]  validate_chain+0x11e/0x5920
[ 2172.822389][    C1]  ? ret_from_fork_asm+0x1a/0x30
[ 2172.822414][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2172.822435][    C1]  ? arch_stack_walk+0x11c/0x150
[ 2172.822460][    C1]  ? __pfx_validate_chain+0x10/0x10
[ 2172.822485][    C1]  ? validate_chain+0x11e/0x5920
[ 2172.822509][    C1]  ? ret_from_fork_asm+0x1a/0x30
[ 2172.822528][    C1]  ? __pfx_validate_chain+0x10/0x10
[ 2172.822552][    C1]  ? validate_chain+0x11e/0x5920
[ 2172.822579][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 2172.822600][    C1]  ? __pfx_validate_chain+0x10/0x10
[ 2172.822627][    C1]  ? __pfx_validate_chain+0x10/0x10
[ 2172.822653][    C1]  ? mark_lock+0x9a/0x360
[ 2172.822683][    C1]  ? mark_lock+0x9a/0x360
[ 2172.822707][    C1]  __lock_acquire+0x1397/0x2100
[ 2172.822739][    C1]  lock_acquire+0x1ed/0x550
[ 2172.822760][    C1]  ? debug_object_deactivate+0x158/0x390
[ 2172.822783][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 2172.822807][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 2172.822828][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 2172.822849][    C1]  _raw_spin_lock_irqsave+0xd5/0x120
[ 2172.822868][    C1]  ? debug_object_deactivate+0x158/0x390
[ 2172.822887][    C1]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 2172.822911][    C1]  debug_object_deactivate+0x158/0x390
[ 2172.822930][    C1]  ? advance_sched+0xa02/0xca0
[ 2172.822948][    C1]  ? __pfx_debug_object_deactivate+0x10/0x10
[ 2172.822974][    C1]  debug_deactivate+0x1b/0x220
[ 2172.823001][    C1]  __hrtimer_run_queues+0x305/0xd30
[ 2172.823033][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 2172.823057][    C1]  ? sched_clock+0x4a/0x70
[ 2172.823075][    C1]  ? read_tsc+0x9/0x20
[ 2172.823091][    C1]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[ 2172.823115][    C1]  hrtimer_interrupt+0x403/0xa40
[ 2172.823149][    C1]  __sysvec_apic_timer_interrupt+0x110/0x420
[ 2172.823175][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 2172.823197][    C1]  </IRQ>
[ 2172.823203][    C1]  <TASK>
[ 2172.823210][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2172.823235][    C1] RIP: 0010:console_flush_all+0x996/0xeb0
[ 2172.823254][    C1] Code: 48 21 c3 0f 85 16 02 00 00 e8 06 8e 20 00 4c 8b 7c 24 10 4d 85 f6 75 07 e8 f7 8d 20 00 eb 06 e8 f0 8d 20 00 fb 48 8b 5c 24 18 <48> 8b 44 24 30 42 80 3c 28 00 74 08 48 89 df e8 06 9f 84 00 4c 8b
[ 2172.823269][    C1] RSP: 0018:ffffc900043def60 EFLAGS: 00000287
[ 2172.823283][    C1] RAX: ffffffff819ecfd0 RBX: ffffffff8f172778 RCX: 0000000000100000
[ 2172.823297][    C1] RDX: ffffc90018ee2000 RSI: 0000000000015032 RDI: 0000000000015033
[ 2172.823308][    C1] RBP: ffffc900043df110 R08: ffffffff819ecfa7 R09: 1ffffffff2858708
[ 2172.823321][    C1] R10: dffffc0000000000 R11: fffffbfff2858709 R12: ffffffff8f172720
[ 2172.823335][    C1] R13: dffffc0000000000 R14: 0000000000000200 R15: ffffc900043df160
[ 2172.823350][    C1]  ? console_flush_all+0x967/0xeb0
[ 2172.823366][    C1]  ? console_flush_all+0x990/0xeb0
[ 2172.823389][    C1]  ? console_flush_all+0x1a3/0xeb0
[ 2172.823410][    C1]  ? __pfx_console_flush_all+0x10/0x10
[ 2172.823435][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[ 2172.823455][    C1]  ? printk_get_console_flush_type+0x1fe/0x4f0
[ 2172.823484][    C1]  console_unlock+0x14f/0x3b0
[ 2172.823511][    C1]  ? __pfx_console_unlock+0x10/0x10
[ 2172.823539][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[ 2172.823560][    C1]  ? printk_get_console_flush_type+0x1fe/0x4f0
[ 2172.823588][    C1]  vprintk_emit+0x730/0xa10
[ 2172.823615][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[ 2172.823643][    C1]  ? __pfx_snprintf+0x10/0x10
[ 2172.823662][    C1]  ? read_word_at_a_time+0xe/0x20
[ 2172.823694][    C1]  ? sized_strscpy+0x9a/0x2b0
[ 2172.823720][    C1]  dev_vprintk_emit+0x2ae/0x330
[ 2172.823746][    C1]  ? __pfx_dev_vprintk_emit+0x10/0x10
[ 2172.823772][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2172.823798][    C1]  dev_printk_emit+0xdd/0x120
[ 2172.823820][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 2172.823845][    C1]  ? __pfx_dev_printk_emit+0x10/0x10
[ 2172.823871][    C1]  ? __dev_printk+0x3e/0x1a0
[ 2172.823891][    C1]  ? __dev_printk+0x137/0x1a0
[ 2172.823910][    C1]  _dev_info+0x122/0x170
[ 2172.823935][    C1]  ? __pfx__dev_info+0x10/0x10
[ 2172.823961][    C1]  ? usb_cache_string+0xdc/0x100
[ 2172.823983][    C1]  ? __usb_get_extra_descriptor+0x165/0x1d0
[ 2172.824003][    C1]  usb_new_device+0x579/0x19a0
[ 2172.824031][    C1]  ? __pfx_usb_new_device+0x10/0x10
[ 2172.824053][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2172.824071][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 2172.824094][    C1]  hub_event+0x2d6d/0x5150
[ 2172.824137][    C1]  ? __pfx_hub_event+0x10/0x10
[ 2172.824161][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 2172.824183][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2172.824206][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2172.824232][    C1]  ? process_scheduled_works+0x976/0x1840
[ 2172.824252][    C1]  process_scheduled_works+0xa66/0x1840
[ 2172.824281][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2172.824303][    C1]  ? assign_work+0x364/0x3d0
[ 2172.824322][    C1]  worker_thread+0x870/0xd30
[ 2172.824345][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 2172.824366][    C1]  ? __kthread_parkme+0x169/0x1d0
[ 2172.824387][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 2172.824406][    C1]  kthread+0x7a9/0x920
[ 2172.824428][    C1]  ? __pfx_kthread+0x10/0x10
[ 2172.824451][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 2172.824470][    C1]  ? __pfx_kthread+0x10/0x10
[ 2172.824491][    C1]  ? __pfx_kthread+0x10/0x10
[ 2172.824513][    C1]  ? __pfx_kthread+0x10/0x10
[ 2172.824534][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2172.824553][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 2172.824574][    C1]  ? __pfx_kthread+0x10/0x10
[ 2172.824596][    C1]  ret_from_fork+0x4b/0x80
[ 2172.824616][    C1]  ? __pfx_kthread+0x10/0x10
[ 2172.824638][    C1]  ret_from_fork_asm+0x1a/0x30
[ 2172.824662][    C1]  </TASK>
[ 2172.824703][    C0] Kernel panic - not syncing: softlockup: hung tasks
[ 2172.824721][    C0] CPU: 0 UID: 0 PID: 23910 Comm: syz.7.5064 Tainted: G             L     6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[ 2172.824749][    C0] Tainted: [L]=SOFTLOCKUP
[ 2172.824759][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 2172.824773][    C0] Call Trace:
[ 2172.824782][    C0]  <IRQ>
[ 2172.824793][    C0]  dump_stack_lvl+0x241/0x360
[ 2172.824828][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[ 2172.824861][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2172.824895][    C0]  ? __pfx__printk+0x10/0x10
[ 2172.824935][    C0]  ? vscnprintf+0x5d/0x90
[ 2172.824960][    C0]  panic+0x349/0x880
[ 2172.824993][    C0]  ? watchdog_timer_fn+0x914/0x960
[ 2172.825023][    C0]  ? __pfx_panic+0x10/0x10
[ 2172.825060][    C0]  ? irq_work_queue+0xd1/0x150
[ 2172.825085][    C0]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2172.825112][    C0]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 2172.825143][    C0]  watchdog_timer_fn+0x957/0x960
[ 2172.825175][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[ 2172.825207][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 2172.825233][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2172.825268][    C0]  ? __pfx_watchdog_timer_fn+0x10/0x10
[ 2172.825297][    C0]  __hrtimer_run_queues+0x551/0xd30
[ 2172.825345][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 2172.825376][    C0]  ? sched_clock+0x4a/0x70
[ 2172.825401][    C0]  ? read_tsc+0x9/0x20
[ 2172.825429][    C0]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[ 2172.825463][    C0]  hrtimer_interrupt+0x403/0xa40
[ 2172.825518][    C0]  __sysvec_apic_timer_interrupt+0x110/0x420
[ 2172.825552][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 2172.825579][    C0]  </IRQ>
[ 2172.825588][    C0]  <TASK>
[ 2172.825598][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2172.825629][    C0] RIP: 0010:smp_call_function_many_cond+0x1ba4/0x2d30
[ 2172.825662][    C0] Code: 03 84 c0 75 7e 45 8b 65 00 44 89 e6 83 e6 01 31 ff e8 b0 e8 0b 00 41 83 e4 01 4c 8b 64 24 68 75 07 e8 60 e4 0b 00 eb 41 f3 90 <48> b8 00 00 00 00 00 fc ff df 0f b6 04 03 84 c0 75 11 41 f7 45 00
[ 2172.825681][    C0] RSP: 0018:ffffc9000d667680 EFLAGS: 00000293
[ 2172.825701][    C0] RAX: ffffffff81b37985 RBX: 1ffff110170e88c9 RCX: ffff888026eb0000
[ 2172.825719][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 2172.825733][    C0] RBP: ffffc9000d667880 R08: ffffffff81b37950 R09: 1ffffffff285870e
[ 2172.825750][    C0] R10: dffffc0000000000 R11: fffffbfff285870f R12: ffff8880b863f9c8
[ 2172.825767][    C0] R13: ffff8880b8744648 R14: ffff8880b863f9c0 R15: 0000000000000001
[ 2172.825790][    C0]  ? smp_call_function_many_cond+0x1b90/0x2d30
[ 2172.825821][    C0]  ? smp_call_function_many_cond+0x1bc5/0x2d30
[ 2172.825861][    C0]  ? tlb_remove_table+0xf4/0x550
[ 2172.825895][    C0]  ? free_pgd_range+0xd57/0xdd0
[ 2172.825935][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[ 2172.825973][    C0]  ? __pfx_free_pgd_range+0x10/0x10
[ 2172.826000][    C0]  ? rcu_is_watching+0x15/0xb0
[ 2172.826032][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[ 2172.826066][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[ 2172.826107][    C0]  flush_tlb_mm_range+0x42d/0x710
[ 2172.826145][    C0]  ? __pfx_flush_tlb_mm_range+0x10/0x10
[ 2172.826181][    C0]  ? __pfx_free_pgtables+0x10/0x10
[ 2172.826210][    C0]  tlb_flush_mmu+0x1aa/0x680
[ 2172.826234][    C0]  ? __pfx_down_write+0x10/0x10
[ 2172.826270][    C0]  tlb_finish_mmu+0xd4/0x200
[ 2172.826297][    C0]  exit_mmap+0x52a/0xd40
[ 2172.826338][    C0]  ? __pfx_exit_mmap+0x10/0x10
[ 2172.826383][    C0]  ? __pfx_exit_aio+0x10/0x10
[ 2172.826416][    C0]  ? uprobe_clear_state+0x271/0x290
[ 2172.826448][    C0]  ? mm_update_next_owner+0xa2/0x8a0
[ 2172.826475][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 2172.826501][    C0]  __mmput+0x115/0x410
[ 2172.826537][    C0]  exit_mm+0x220/0x310
[ 2172.826565][    C0]  ? __pfx_exit_mm+0x10/0x10
[ 2172.826592][    C0]  ? taskstats_exit+0x326/0xa60
[ 2172.826625][    C0]  do_exit+0x9ad/0x28e0
[ 2172.826654][    C0]  ? preempt_schedule_common+0x84/0xd0
[ 2172.826684][    C0]  ? __pfx_do_exit+0x10/0x10
[ 2172.826709][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 2172.826739][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2172.826773][    C0]  ? preempt_schedule_thunk+0x1a/0x30
[ 2172.826808][    C0]  do_group_exit+0x207/0x2c0
[ 2172.826840][    C0]  __x64_sys_exit_group+0x3f/0x40
[ 2172.826868][    C0]  x64_sys_call+0x26a8/0x26b0
[ 2172.826890][    C0]  do_syscall_64+0xf3/0x230
[ 2172.826920][    C0]  ? clear_bhb_loop+0x35/0x90
[ 2172.826953][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2172.826983][    C0] RIP: 0033:0x7fe75e78cda9
[ 2172.827001][    C0] Code: Unable to access opcode bytes at 0x7fe75e78cd7f.
[ 2172.827013][    C0] RSP: 002b:00007ffdd786b998 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 2172.827035][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe75e78cda9
[ 2172.827051][    C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 2172.827065][    C0] RBP: 00007ffdd786b9fc R08: 00007ffdd786ba8f R09: 00000000000927c0
[ 2172.827080][    C0] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000025c
[ 2172.827094][    C0] R13: 00000000000927c0 R14: 00000000001ca8a8 R15: 00007ffdd786ba50
[ 2172.827126][    C0]  </TASK>
[ 2173.982778][    C0] Shutting down cpus with NMI
[ 2173.983102][    C0] Kernel Offset: disabled