last executing test programs:

10.064960256s ago: executing program 0 (id=887):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
preadv(0xffffffffffffffff, &(0x7f0000000580)=[{0x0}, {&(0x7f0000019740)=""/242, 0xf2}], 0x2, 0x0, 0x0)
creat(&(0x7f00000003c0)='./bus\x00', 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
r2 = open(&(0x7f00000004c0)='./bus\x00', 0x143042, 0x0)
mlockall(0x2)
ftruncate(r2, 0x2008002)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x12, r1, 0x0)
r3 = gettid()
process_vm_writev(r3, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1f80}], 0x8, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x2034afa5}], 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000040)={0x34, r5, 0xf1aad47e89fb43b5, 0x0, 0x0, {0x26}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0xa43)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x72, 0x0, 0x0)
getsockopt$netlink(r0, 0x10e, 0x0, 0x0, &(0x7f0000000140)=0xfffffffffffffdb5)

4.93205228s ago: executing program 2 (id=895):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$pppl2tp(0x18, 0x1, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800007, 0x12, r2, 0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x15)
ftruncate(r3, 0x8)
getsockopt$bt_BT_SECURITY(r1, 0x111, 0xe, 0x0, 0x20001f00)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800"/15, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, 0x0, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbee2, 0x100010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fsync(0xffffffffffffffff)

4.695285321s ago: executing program 0 (id=896):
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r3 = socket$inet6(0xa, 0x6, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r5, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r7 = accept(r4, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000080), 0x18)

4.684304338s ago: executing program 2 (id=897):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000240)=@framed, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)

4.511124442s ago: executing program 2 (id=898):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23, 0x1ff, @mcast2, 0x40000008}, 0x1c)
syz_open_procfs$namespace(0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa38896, &(0x7f00000007c0)=ANY=[@ANYBLOB="b9f7dc7eb47165478231656adb6f7bf0d679ddacb899914459b0fa00ad7b8a919dfe87d33b8e54469215c11f1e091ab735ecee7c5d7eb57e5fb1e6dae7ebe6fed7458abb1ed427f4ed7f5c921425e54a8d7fc8c29f20c82ae214cf264ecc9e1b12bbd2062ade5d651ea8b1ca95f4f4890805f302ddbc243fc8cbb25485398fb557b66ff4fad51c9fa376e167f8c0131f4b710cb459a04c2e95575e44b8cdab7a3eaacecfbb48d5d4877297a39d45d0acb611644b94"], 0x9, 0x2a8, &(0x7f0000000500)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0xc, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x7bb08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r1, 0x4004662b, &(0x7f0000000180)=0x3)
open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00'}, 0x65)
r5 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
close(r5)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$ARPT_SO_SET_REPLACE(r7, 0xa02000000000000, 0x60, &(0x7f00000000c0)={'filter\x00', 0x1002, 0x4, 0x3c0, 0xe8, 0x0, 0xe8, 0x2d8, 0x2d8, 0x2d8, 0x4, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x1f0}}, {{@arp={@local, @loopback, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'netdevsim0\x00', 'geneve0\x00'}, 0xc0, 0x108}, @unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz0\x00'}}}, {{@arp={@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_bridge\x00', 'bridge_slave_0\x00'}, 0xc0, 0xe8}, @unspec=@NFQUEUE1={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x410)
bind$inet6(r6, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0xf}, 0x3}, 0xfffffffffffffe6e)
sendto$inet6(r6, 0x0, 0x0, 0x20004008, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @mcast1, 0x1}, 0x1c)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f0000000300)=0x80000001fe, 0x4)
sendto$inet6(r6, &(0x7f0000000000)="8d", 0x1, 0x0, 0x0, 0x0)

4.488791894s ago: executing program 3 (id=899):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000b2f17db98500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='ext4_mballoc_alloc\x00', r1}, 0x10)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)

3.561737798s ago: executing program 0 (id=901):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000a50000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x80000000001, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000005640)=[{{0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000340)="98", 0x1}], 0x1}}], 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r0, r2, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000380)=""/4096, 0xfffffffffffffeea, 0x0, 0x0}, &(0x7f0000000280)=0x40)

3.36156142s ago: executing program 3 (id=902):
sched_setscheduler(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000e9ff20850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='oom_score_adj_update\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000280)='0', 0x1}], 0x1)

3.286369574s ago: executing program 0 (id=903):
io_setup(0x6, &(0x7f0000000340)=<r0=>0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f00000001c0)={r2, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r1, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r1, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000180)=[0x0, 0x0, <r4=>0x0], &(0x7f0000000040), 0x3, r3})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000200), &(0x7f0000000300)=[r4], &(0x7f0000000340)})
io_submit(r0, 0x0, 0x0)

2.790548283s ago: executing program 2 (id=905):
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x1c, r1, 0x5, 0x0, 0x0, {{0xe}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0)

2.720201883s ago: executing program 4 (id=906):
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_IFLAGS={0x6, 0x2, 0x30}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}]}}}]}, 0x48}}, 0x0)

2.686697612s ago: executing program 0 (id=907):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
preadv(0xffffffffffffffff, &(0x7f0000000580)=[{0x0}, {&(0x7f0000019740)=""/242, 0xf2}], 0x2, 0x0, 0x0)
creat(&(0x7f00000003c0)='./bus\x00', 0x0)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
r2 = open(&(0x7f00000004c0)='./bus\x00', 0x143042, 0x0)
mlockall(0x2)
ftruncate(r2, 0x2008002)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x12, r1, 0x0)
r3 = gettid()
process_vm_writev(r3, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1f80}], 0x8, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x2034afa5}], 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r4, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000040)={0x34, r5, 0xf1aad47e89fb43b5, 0x0, 0x0, {0x26}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0xa43)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x72, 0x0, 0x0)
getsockopt$netlink(r0, 0x10e, 0x0, 0x0, &(0x7f0000000140)=0xfffffffffffffdb5)

2.562871397s ago: executing program 2 (id=908):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r0, &(0x7f0000000580)={0x0, 0xd00, &(0x7f00000000c0)={&(0x7f0000000440)={0x28, r1, 0x7, 0x0, 0x0, {{0x2}, {@val={0x8}, @void, @val={0xc, 0x99, {0x0, 0x1c}}}}}, 0x28}}, 0x0)

2.435594232s ago: executing program 4 (id=909):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
connect$inet(r0, &(0x7f00000001c0)={0x2, 0x2, @remote}, 0x10)
r2 = accept4(r1, 0x0, 0x0, 0x0)
accept4$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r2, 0x6, 0x15, &(0x7f0000000680), 0x2b)

2.186242802s ago: executing program 2 (id=910):
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x0, 0x8, &(0x7f0000000080)=@framed={{0x62, 0x0, 0x0, 0x0, 0x0, 0x7b, 0xa, 0xff00}, [@call={0x1d, 0xa, 0x0, 0x39}, @exit, @map_fd={0x18, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x10, 0x0, 0x0, 0x25000000}, @generic]}, &(0x7f0000000140)='GPL\x00', 0xa, 0x95, &(0x7f0000000180)=""/149}, 0x90)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r0, 0x82, 0x3, &(0x7f0000000300)="d9ef117eabcc52fa3e6c72dda4a75b75cefe234f5b69f5ef2cc5ac61361b21e8d0e46dac6aa518b3a3e4760e23976071010e70aa42a80aa068a9ca590c824a3ea4fb40413b7b881b2213ca82c2e92b1f8f47a17713839ff517950753886c06a8dcc9764f3f6be00ccaecda4213c9136112e10cb61124ed0660412f1f1debf4a524a73bb1f451813f9253e2ecac4b0f8dbf105f407e5d7b96f3de0a256e84e0769e555c", 0xa3)
memfd_create(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
io_setup(0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
preadv(r1, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
r2 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000240)='wlan0\x00', 0x10)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r2, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40044000)
syz_emit_ethernet(0x7e, &(0x7f00000000c0)={@link_local, @empty, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "02000b", 0x48, 0x2f, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x6558, 0x4, 0x0, [], "97de0000"}}}}}}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0x11, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x8}, {0xfff1}}}, 0x24}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="6400000010000305160000000000000000008847", @ANYRES32=0x0, @ANYBLOB="00000000000000004400128009000100626f6e6400000000340002800500010004000000050016000000000008001c000000000005000c00000000000a001a"], 0xc3}, 0x1, 0x100000000000000}, 0x0)
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r3, 0xc0405602, &(0x7f00000001c0)={0x5c, 0xa, 0x0, "b75c89e7a20c8eac82ad0416bb1844038d2cd97c945462f31638b5394c00"})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0)
socket(0x10, 0x3, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)=0xfd87, 0x4)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010100000000105801000100000000000109022400010000002009040000010300000009210000000122dc01090589"], 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x268080)

2.177861466s ago: executing program 3 (id=911):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x80002)
r1 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
pwritev(r1, &(0x7f0000000600)=[{&(0x7f0000000380)="b9", 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
sendfile(r0, r0, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000200)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x0, 0x9, "4b8b3ea46929dfed0b2f34380d308f95a023d009852471dd5a94a9fe9549918ae7fd1f0ececd9bada8b108403362cfe0f4fccffb1b6a2115354d4df15d017a3f", "2363f18d9acc6c25af21ca2af6d2e80e4caadd6d126cfb80c92dc817d44dcdec"})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, 0x0)
ioctl$LOOP_CLR_FD(r0, 0x4c01)

2.128032708s ago: executing program 1 (id=912):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x2f, 0x0, @rand_addr=0x64010101, @local}, @time_exceeded={0x80, 0x0, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback}}}}}}, 0x0)

1.964138237s ago: executing program 4 (id=913):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000004c0)='ns/pid\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7f12ddc1517600"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000200)=0x2)
read(r4, 0x0, 0x2006)
dup3(r2, r3, 0x0)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000500))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x4, 0x0, 0x0, 0x1}, 0x7b)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

1.911836698s ago: executing program 1 (id=914):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e24, @multicast2}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000140)={<r2=>0x0, @in6={{0xa, 0x4e22, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8000}}, 0x0, 0x3, 0x4, 0x7fffffff}, &(0x7f0000000080)=0x98)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000240)={r2, @in={{0x2, 0x4e24, @multicast1}}, 0x0, 0x0, 0x200, 0x266, 0x4}, 0x0)
sendmmsg(r0, 0x0, 0x0, 0x2c000011)
socket$packet(0x11, 0x2, 0x300)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240))
userfaultfd(0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000000)=0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.643483873s ago: executing program 1 (id=915):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000ac0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast6-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000000a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000000700)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000180)=""/151, 0x97}], 0x1}}], 0x1, 0x0, 0x0)

1.586588591s ago: executing program 3 (id=916):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
r1 = socket(0x15, 0x5, 0x0)
getsockopt(r1, 0x200000000114, 0x2711, &(0x7f0000005ec0)=""/102394, &(0x7f0000000040)=0x18ffa)

1.545398063s ago: executing program 4 (id=917):
io_setup(0x6, &(0x7f0000000340)=<r0=>0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r2=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r1, 0xc02064b6, &(0x7f00000001c0)={r2, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r1, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r1, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000180)=[0x0, 0x0, <r4=>0x0], &(0x7f0000000040), 0x3, r3})
ioctl$DRM_IOCTL_MODE_ATOMIC(r1, 0xc03864bc, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000200), &(0x7f0000000300)=[r4], &(0x7f0000000340)})
io_submit(r0, 0x0, 0x0)

1.410659576s ago: executing program 3 (id=918):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000000200)={0x50}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}]}})
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x505, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1.397491831s ago: executing program 1 (id=919):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x0, 0x0, 0x0, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0xffffffff}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000049500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000000))
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, &(0x7f00000001c0)=ANY=[], 0x8)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback, 0x33c}, 0x1c)
connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendmmsg$inet6(r5, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="8252", 0x24}], 0x1}}], 0x1, 0x4000c000)
sendto$inet6(r5, &(0x7f0000000300), 0x18, 0x0, 0x0, 0xfffffffffffffdfd)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r6, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r6, 0x0, 0x0, 0x400c006, &(0x7f0000000180)={0x2, 0x0, @multicast1}, 0x10)
capset(&(0x7f0000000300)={0x20080522}, &(0x7f0000000340))
sendto$inet(0xffffffffffffffff, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)

1.318202479s ago: executing program 4 (id=920):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x20000333, &(0x7f0000000300)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x25, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x0, 0x11, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}, "478b78d5ac"}}}}}}, 0x0)

388.399426ms ago: executing program 3 (id=921):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f91324fc60", 0x8c0}], 0x1}, 0x0)

250.628159ms ago: executing program 1 (id=922):
r0 = memfd_create(&(0x7f0000000180)='\x00\xac=W[[\x87\x12\x04\xd5\xbc\x80K\x06\xcd]4(\xa2\xee2>\xa1\x9c\x86x\x1c\x9f\x97\x87\xd9c\xecR\xd6\xe8\xf3Y\x121p^\xc1\x0f\x00\x00\x00\x00\x00\x00\x00t\x00\x00\x00\x00\x00\x00\x00\x05\x00\x00\x00\x00M\xc2N%\x93t[\xf3\xee\xa4\xb4\xfbf\x8dz7\\\x8e\xac\x18\x00\xfd\x89\xe1d\xfa\xcfb\xf3\xdc\xd4CY\x9a\xef\xa3\\\xa7\xa9^\xafL:[\x8e\x83U\xff\xfd\xb0\xfa\xdaL\xa99\x9b\xcfA\xe4n\xa0^\n\x1c\x84\x04\xc5a\xdf\xe5\xd4Hyn\xba:/\xa5\xf4\xaa\xfa\xcd\xc7T\x83\xf5N^\xf2n\xd0=\xb9\t\xdd-F\xacb\xac \xd3\xccj\x13\xa2\x9fLu\'\xed\x91\x867\xaa\xf5\xa0]\xb6\xaa\xea\xfd\xde\xa6\xec\b\x16\x86l:;\xf9\xdb\xcf\x88\"\xca\xe0E\xdb\xec\xf9\xb3\xed\a\x00\x00\x00\x00\x00\x00\x00\xd6.\xf7\x92\xc42\xdf\xefE\xce}\x1b\xda\xdd?\n6\xe1\xb1\xd8Y\x960\xd1\x00\x00\x00\x00\x00\x00MW\x8f\xc6\x82\xe4\x15\xf7\xe9\xd8\xc5b\x0e\x91\xc5\xc76$\x18\xa4\xbe\xe8V\x8d-\xe3\x8fC\xd5\xf5\xd6L\xe3\xce\xa1\x8dz\xce\xa7\xa5\xc8\xcbhM\x1b\xf8\x98\xc4\xfbD6\x88\xfd\xe5i\x8a\xd8\xcfm\x81Z\x19\xf0\xef\xc15\xe8\xcb\xf5\t\t\x00\x17\xfa\x1fqb\xe7\"\xcb4\xb8\xe5/\xd52\x17\x12\x1d\xd8\x87\xb9|\x8d\x83\xea\xcc\x94\xebZ\xae\xaf\x19\xa4\xb2\xc6\xe1\x926B\xb6\x89Z\xa9\xb5/\xbb\x9d&\xeeO\xb3\xb3\xd4\b`\xa9f\x84\xad\t\x1a\xc2\xd5\x88\xbfo\x80V\x93\x9fX\xd7\xff\x03\xb7J\xed\x183\xe3\x7f\xfaq,\xca\x06\xb0\xc9\x92\x93\xa5I\x89\xb7\x85\x90\xb7\x1b0\xce\xd7!\x8fD\x96\xe1 ^>\x9f\x04\x89<\xb7S\x7f\x1a\x88\xab$\xd3y\xc2\xe1\x99\xbch\xd3\x83\xcd\x7f\xc5n\xb1\xc1X \xe2\xbb\x1f\x01\x90\xb1O\x8d\x7f\xa8\xd4\xdbO\xef\x99\xf3\xd3M\x0f\t\x7f\n,\x84\x1f\xfa\xe2\xc8\x99\x97Oq\xae\x9b\x86h\xfa3\xb9\xfd\xbb\xd4^\xc0t\xa7]Y\xe9\x7f[\x11\xb1\xf3m\x17F\x9d\x18\xe2\xe1\x01\xb6f=-?\xbcI\xf2\xd9\xc4>-\xc0E\x9a\x82\xcc7S\xd4\xb6\'\xd2DY\xa5\x83,\xd1\xbc\xc7\xf6\xe0\x1f o\x06\xc2t\x14\xc2\xe0\x92\xc1\x8a\x85>@\xc9\xb0% \xc7\x13l\x8bJ\xe5\xec\x1dE\xf5\xc5\xe2\xe3\x10G7r#\xbc\x95&\x14\x1e\x97\xce\x83>Q@\xfb\xeb=\x1e\xb3\xd5H\x02\x86\xc6\xf3\xe1i\\\x1d\xf4\xc1\xacJC+\xc8}\x1b{\x86\x17\x00\n\"\xec\xa5x\xe6\xb1i\xeb\xb3\xb7I\x90\x9eai\xde\x01\xdc\xfeA\x05Sn\xe6\xe8^\xdf\x8c`\x17\xca\xbd\\QG\xb15\x82*=\xbd\xe9\xaf\x12<\xd7\xe1$\xa4\xdaU\xfb^\xd8!\xacxy\xd5X\xef\x03\xa7\x10\xa1C#S~\x0f\x17\t>X\\mv0\x9eZ\x89\xf4\xae\a\xc8\x16\xd2t\x16\xf3X%Q\xbd\xe9\x86V\xf2\x99^0\xe8xI(\xde-\x04s\x15\x06#2\xef\xef@\xa3t0d^^\xad\xf6\xad\xe0\x16\xf6\xa8\x99!\x0e\x9d+;D&\xebN\x94\x12\x04\x95o\xd6\x9fl\xcb\x16gc\xf5(\xaa_\xec\x9aiE\f\xd4\xc6\xf2\xae\x85n\x995\xcd\xa7\xbb\xf0pz\xaf\tC\x1cq\xaa\x92,Li\r\x95Z\x89\"\xaf]\x95\xb9b_\xe4\xba\xd4\x93\xab\xe1\xb9\xd8E[\xbb\xc9.M+\xbe\x81<z\xf2\xe8\xf4\x93\xe6h\x97\x7f\xaf\xc5\x06g\fI\xa58\xf5\x18x\xc9\xb9\x03\t\x06\x96gf5\xb0\xc8\x86\x14\xe2\x01\x1f\x80\xe7Ol\xba\x93\xaa\x15\x87I7W\x87\xc4;p\xc5\x1e\"K5r\xec6\xac\xf0;\xf8 \xad\xc9\xf0\x16\xce\x17\xa1%f\x12\x80\x03N[qz\xf0q\xbd\xb8s\xe5>N\xd2\xae\xf4\x18\xd0\xe7\x98\x90,\xce\ft\xc4\xc7\x02\xaa\xc7\xeb1;\x86b\x8f\x12{k#c\x1d@\xc31\x00\xd2}f\x8cX\xce\xed\xa4\xe4\xca`<_}\'\xce\x81\xb3O\xae\xa1\xbfwcN,\xf2#\x16\xc4\xad\a&\xb1U\x83w\xd0K\xaa\xdf\x84\xe5\xe4\xdb\xa3G(\x7fv\x93\xb8m\x96\xd89Kb\xa9\x852\xb9\xcaG\x8b\x11\x16\x16\xeeI\x14\xcb\xe4\x9a\x1e\xb6^\xa3\xaa^\xdc\xcfo\xfb\xd6<\xa2\xc6\xbdj\xc4\xb1B\xf3S}\xfeI\xe2e\xec}o\xcfB\xa6\x877\'\x80\x82\t\xec\xc1&\xb8\xa9\x82&\xb8XQ8M@\xaa\x1f\vj\x9aW\xec\x92\x19\xdb^\x9d\x94\x87-&\x00/z\xa2\xd7\x01\\\t\xae~\xed\no\x1a\x9cKG^+\xc9\xe0v\xc0\x96\xc4\xcc\xb7\xdd\xdf\xf9\x01\x91\xe5\to[\x97\xbe\x110\x93\x14\xf8\x8a\x8d\xeb\t\xe7?/C\xaa\xd9\xc4\xc9\xbe\x12\xed\xb3*f\xd1J\x14\x80Iy4\xa9\xf88C\xe3', 0x0)
write(r0, &(0x7f0000000140)='/', 0x1)
memfd_create(&(0x7f0000000100)='\x00\xac=\x9d\xd2\xdb\x1a\'\xf8\n\xedcJ\x8e\x84\xd4N\x00\x9b\x1f\t\xbd\x11+\x86T\x16\xa3\xb3\xae0\x9f9?\xefo\xa4k\x012>\xa1\x9c\x86x\x1c\x9f\x84\x195\xde\x97_\t~\xf3Y\xdb\x00p^\x00\x02\xb4\xfdHA\xce\x9a\xde\xe4\xb6\xbcK#^\x00}2\xc6:|R\x04\xc2\xb8I\xa3\xb9\xe2\xa2\xebw^I\x0f7i$\xf1\xd4\x9b\xc7\xb2\xbeD`\x8f\xc3\x96\xbc#4\x17\xf5\xb3\xc9\xb2\x94\xa8_f!\xdf\x90}\xba\xa3\x01\xe2\xcf\xb7\"S\a\x04ry\x00#4\x87m\xf7\xe3\xf5\xa7\xda\xb9\xcbU\xbe\x06]\xa9\xb6R~\xc9l}\xb7I\xfeH\xb3\x15\x8c\x06d\xf8c\xc0{\v\xd2\x9d\x8e\\\xae>\xf6quc9\xe0\xbf\xdd\xdc\x99\xf4\\\xd0\x96:\xfb\x8c\x12o\xcc-\x13\x14\xbev\xae\x80Zp\x95c]\x98\x8c\x01\x8fo\xafjN\xcb\x98\xdf\xd3[V\xbd[\xb9\x10v\xee\xdc\xc8G\xd0\xdc9\xccO\xf74\x84o\x99\xe9\x14\x00\x00dU\x00\x00\x00\b\xfb\xb5Z\xb0-\xc8\xdb\x88f\xf4W\xeb\x06\xc2\xd1\xb6\xd1%\xca\x8f\x013|\x8ez\x1eo\x18\xb6#@P&[\xad\xda\nmU\x823\\&P\xdc\xbcS\x80\xc1dJ!LH\xaa\a\x82\xf3\xde\x96\x85\xc5\xdd\xa8\x92\xc7\xcb\x91\xf2[Y\x06\x8a\x9fN\x10\xb9\xf4\xecq\xce\xd2\x17\x88\xae\xcc7r\xd7\xeaz\xcevR\xcau\r\xf1\t\xc2$k\xdf\x8f\xe2\xbe\xfe\x14AN\xf8\xc6\xa8`Fs[6kYH+\xa5\xdcxUY3<v\xf1\r\xaei\xa0Xam\vN\x7fR\x96*^\xd3\x01VbON\xc3P\xe7\x16\xcc\xca\xd6\xe5\xe8\r\x9b\x8d.\xdd\x1a\xaa\xa6*\xed\xcch\x7f\xfb\x17\xdcMmX\xea\xcf\xc40\x19\b\xe1\xb1\xf4\x7f\xca\xbeg\xb1bEm[\x04\tX8\x15#\x94\xa6M?\xe0\x871\x80\xc5~_\x12J\xeb \x00R\xa7=/\xfd:\xaf\xc3\x18\x10\f\xa1\x1a\xa7Yt\x151\xc7T\x85\x17\xb5\xbc*E\x1d\xfeVV\x16\xd4\x88\xe5\'Z\xb4J\xa6\t\x8bA\xd9D+:\xd3l\'\xcb[\r\xe1n\xe7\xf2S\xe6{\xee\xb8\x95y\x98\xf3\xa1\xedF\x19t\x16\xfe\r\xb8\x83\xea\xcd\xa9\xef[ev0\x18\x05,\xe5\xf3\x9f\xc7\xca\xe7\xc3^\x0e\xb1\x11\xe8\xf6\x0f\xfdy\xe9\x10\xa2\x0eNC\xbdO\x8e\x10\xfb\x06^\x1c\xed\x95/CXY\x9c\xeb\xd8\x15\xec\x11\x1fyS=.\xa4\xebSR\xa0t\xefjCS\xc31', 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0)
time(0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000c, 0x11, r0, 0x0)
syz_mount_image$fuse(&(0x7f0000000640), &(0x7f0000000000)='./file1\x00', 0x10b0, &(0x7f0000000700)=ANY=[], 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
removexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.upper\x00')

83.774574ms ago: executing program 4 (id=923):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x7fe2, 0x1}, 0x48)
r1 = accept$nfc_llcp(0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000040)=0x60)
setsockopt$sock_int(r1, 0x1, 0x21, &(0x7f0000000180)=0x7, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, [@exit]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x90)
r3 = dup2(r2, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
uname(&(0x7f0000000440)=""/4096)
r4 = getpid()
r5 = getpgrp(r4)
ptrace$getregs(0xc, r5, 0x81, &(0x7f0000000380)=""/182)
syz_usb_connect(0x0, 0x24, &(0x7f00000052c0)={{0x12, 0x1, 0x0, 0xf7, 0x6f, 0xf7, 0x10, 0x7ab, 0xfc01, 0x28e0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x8, 0x70, 0xdf}}]}}]}}, 0x0)

74.134024ms ago: executing program 1 (id=924):
syz_emit_ethernet(0x38f, &(0x7f0000000800)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x359, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af2502"}, {0x0, 0x1, "000000050000000026000400"}, {0x1, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x0, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f019"}, {0x21, 0x7, "b8a3e100908f61640000000200fe80ffff00000000000000ff0bc0fe00000000008879e66485201a0015c883747357a027450004000000"}, {0x0, 0x14, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbf04542188b196e213408c"}, {}]}}}}}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000080)={@remote, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f1a400", 0x18, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x1, 0x1, "12cf0d30536e"}]}}}}}}, 0x0)

0s ago: executing program 0 (id=925):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}}, {{@in, 0x0, 0x6c}, 0x0, @in6=@dev}}, 0xe8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
syz_emit_ethernet(0x59, &(0x7f0000000100)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}}}}, 0x0)

kernel console output (not intermixed with test programs):

gh-speed USB device number 45 using dummy_hcd
[  351.668497][ T5150] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  351.707399][   T46] usb 2-1: Using ep0 maxpacket: 16
[  351.714565][   T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2D has invalid maxpacket 33032, setting to 1024
[  351.726058][   T46] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  351.735293][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.745498][   T46] usb 2-1: config 0 descriptor??
[  351.756594][   T46] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  351.767599][    T8] usb 1-1: new high-speed USB device number 46 using dummy_hcd
[  351.781261][ T5096] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[  351.817534][ T5146] usb 5-1: Using ep0 maxpacket: 32
[  351.827378][ T5146] usb 5-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  351.836509][ T5146] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.846795][ T5146] usb 5-1: config 0 descriptor??
[  351.857056][ T5146] usb 5-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  351.857448][ T5150] usb 3-1: Using ep0 maxpacket: 16
[  351.873291][ T5150] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  351.876072][ T5146] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  351.886285][ T5150] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  351.902766][ T5146] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  351.905001][ T5150] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.918448][ T5146] usb 5-1: media controller created
[  351.926156][ T5150] usb 3-1: config 0 descriptor??
[  351.946416][ T5146] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  351.983846][ T8063] netlink: 16 bytes leftover after parsing attributes in process `syz.1.637'.
[  351.984052][ T5146] usb 5-1: selecting invalid altsetting 1
[  351.998990][    T8] usb 1-1: Using ep0 maxpacket: 16
[  352.006996][ T5096] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  352.025165][    T8] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  352.036032][ T5146] set interface failed
[  352.036065][ T5146] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  352.047018][ T5096] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  352.061385][ T8060] netlink: 8 bytes leftover after parsing attributes in process `syz.4.636'.
[  352.071237][ T5146] error writing reg: 0xff, val: 0x00
[  352.094508][    T8] usb 1-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  352.135695][ T5096] usb 4-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  352.158208][    T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.169523][    T8] usb 1-1: Product: syz
[  352.173749][    T8] usb 1-1: Manufacturer: syz
[  352.184716][ T5146] dvb_usb_mxl111sf 5-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  352.199878][    T8] usb 1-1: SerialNumber: syz
[  352.206829][ T5096] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  352.218105][    T8] usb 1-1: config 0 descriptor??
[  352.225094][ T5096] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.238927][    T8] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  352.246069][    T8] dw2102: su3000_power_ctrl: 1, initialized 0
[  352.259188][ T5146] usb 5-1: USB disconnect, device number 45
[  352.283625][ T5096] usb 4-1: Product: syz
[  352.299152][ T5096] usb 4-1: Manufacturer: syz
[  352.303824][ T5096] usb 4-1: SerialNumber: syz
[  352.312540][    T8] dvb-usb: bulk message failed: -22 (2/0)
[  352.334283][    T8] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  352.442367][    T8] usb 1-1: USB disconnect, device number 46
[  352.496337][ T8066] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  352.505890][ T8066] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  352.518709][ T5150] hid (null): invalid report_size 1684763247
[  352.527595][ T8073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  352.543386][ T8073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  352.551988][ T5150] hid-generic 0003:0158:0100.0022: unknown main item tag 0x1
[  352.565222][ T5150] hid-generic 0003:0158:0100.0022: unexpected long global item
[  352.566530][ T8073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  352.581438][ T5150] hid-generic 0003:0158:0100.0022: probe with driver hid-generic failed with error -22
[  352.587634][  T928] vhci_hcd: vhci_device speed not set
[  352.601580][ T8073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  352.719535][ T5177] usb 3-1: USB disconnect, device number 33
[  353.172200][ T8070] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  353.220510][ T8070] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  353.256415][ T5096] cdc_ncm 4-1:1.0: SET_NTB_FORMAT failed
[  353.288836][ T5096] cdc_ncm 4-1:1.0: bind() failure
[  353.316682][ T5096] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  353.331648][ T5096] cdc_ncm 4-1:1.1: bind() failure
[  353.344984][ T5096] usb 4-1: USB disconnect, device number 42
[  353.639522][ T8080] loop4: detected capacity change from 0 to 32768
[  353.731367][ T8080] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  353.741399][ T8080] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  353.803582][ T8080] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  353.832253][ T5177] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  353.841123][ T5177] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  353.867390][  T928] usb 1-1: new high-speed USB device number 47 using dummy_hcd
[  354.033956][ T5177] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 192ms
[  354.059714][ T5177] gfs2: fsid=syz:syz.0: jid=0: Done
[  354.066903][ T8080] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  354.077848][  T928] usb 1-1: Using ep0 maxpacket: 16
[  354.115915][  T928] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  354.156560][  T928] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  354.189189][  T928] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  354.220903][  T928] usb 1-1: string descriptor 0 read error: -22
[  354.255398][ T5096] usb 2-1: USB disconnect, device number 33
[  354.267265][  T928] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  354.321371][  T928] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.395343][  T928] usb 1-1: 0:2 : does not exist
[  354.595113][ T5096] usb 1-1: USB disconnect, device number 47
[  354.706601][ T8102] netlink: 4 bytes leftover after parsing attributes in process `syz.1.649'.
[  354.721802][ T5150] usb 4-1: new high-speed USB device number 43 using dummy_hcd
[  354.937603][ T5150] usb 4-1: Using ep0 maxpacket: 16
[  354.957038][ T5150] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  355.009282][ T5150] usb 4-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  355.046046][ T5150] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  355.066414][ T5150] usb 4-1: Product: syz
[  355.094110][ T5150] usb 4-1: Manufacturer: syz
[  355.113103][ T5150] usb 4-1: SerialNumber: syz
[  355.170341][ T5150] usb 4-1: config 0 descriptor??
[  355.217976][ T5150] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  355.226683][ T5150] dw2102: su3000_power_ctrl: 1, initialized 0
[  355.241724][ T5150] dvb-usb: bulk message failed: -22 (2/0)
[  355.625679][   T29] audit: type=1326 audit(1719564916.148:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  356.362664][ T5150] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  356.417408][ T5149] vhci_hcd: vhci_device speed not set
[  356.523179][ T5150] usb 4-1: USB disconnect, device number 43
[  356.561235][   T29] audit: type=1326 audit(1719564916.148:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  356.649164][   T29] audit: type=1326 audit(1719564916.148:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  356.733141][   T29] audit: type=1326 audit(1719564916.148:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  356.800255][   T29] audit: type=1326 audit(1719564916.148:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  356.858418][ T8112] netlink: 248 bytes leftover after parsing attributes in process `syz.0.652'.
[  356.902753][   T29] audit: type=1326 audit(1719564916.158:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  356.958357][   T29] audit: type=1326 audit(1719564916.158:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  356.982586][   T29] audit: type=1326 audit(1719564916.158:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  357.015145][   T29] audit: type=1326 audit(1719564916.158:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  357.039567][   T29] audit: type=1326 audit(1719564916.168:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8104 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04e0775b29 code=0x7ffc0000
[  357.107716][ T5177] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[  357.207329][ T5150] usb 1-1: new high-speed USB device number 48 using dummy_hcd
[  358.198509][ T5177] usb 2-1: Using ep0 maxpacket: 16
[  358.206195][ T5150] usb 1-1: Using ep0 maxpacket: 32
[  358.226973][ T8125] netlink: 'syz.4.657': attribute type 10 has an invalid length.
[  358.236314][ T5150] usb 1-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  358.252653][ T5177] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  358.265156][ T5150] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.284838][ T5177] usb 2-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  358.295518][ T5177] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  358.306100][ T5150] usb 1-1: config 0 descriptor??
[  358.322419][ T8125] veth1_macvtap: left promiscuous mode
[  358.341303][ T5150] usb 1-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  358.359129][ T5177] usb 2-1: Product: syz
[  358.365976][ T5177] usb 2-1: Manufacturer: syz
[  358.381608][ T5177] usb 2-1: SerialNumber: syz
[  358.393634][ T5150] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  358.422830][ T5177] usb 2-1: config 0 descriptor??
[  358.432575][ T8126] input: syz0 as /devices/virtual/input/input25
[  358.449719][ T5177] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  358.461764][ T5150] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  358.482213][ T5177] dw2102: su3000_power_ctrl: 1, initialized 0
[  358.496958][ T5150] usb 1-1: media controller created
[  358.507338][ T5177] dvb-usb: bulk message failed: -22 (2/0)
[  358.547143][ T8109] netlink: 8 bytes leftover after parsing attributes in process `syz.0.652'.
[  358.598646][ T5177] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  358.616694][ T5150] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  358.641385][ T5177] usb 2-1: USB disconnect, device number 34
[  358.684829][ T5150] usb 1-1: selecting invalid altsetting 1
[  358.694079][ T5150] set interface failed
[  358.694117][ T5150] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  358.717805][ T5150] error writing reg: 0xff, val: 0x00
[  358.800039][    T8] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  358.832807][ T5150] dvb_usb_mxl111sf 1-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  358.875729][ T5150] usb 1-1: USB disconnect, device number 48
[  359.027415][    T8] usb 5-1: Using ep0 maxpacket: 16
[  359.034565][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  359.046064][    T8] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  359.055264][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.066117][    T8] usb 5-1: config 0 descriptor??
[  359.137655][  T928] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  359.495780][  T928] usb 3-1: Using ep0 maxpacket: 16
[  359.515414][  T928] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2D has invalid maxpacket 33032, setting to 1024
[  359.539096][  T928] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  359.548780][  T928] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.889194][ T8125] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  360.901693][  T928] usb 3-1: config 0 descriptor??
[  360.921290][  T928] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  361.067632][ T8125] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  361.145825][ T8148] netlink: 4 bytes leftover after parsing attributes in process `syz.3.663'.
[  361.177765][    T8] hid-generic 0003:0158:0100.0023: unknown main item tag 0x1
[  361.185241][    T8] hid-generic 0003:0158:0100.0023: unexpected long global item
[  361.216781][    T8] hid-generic 0003:0158:0100.0023: probe with driver hid-generic failed with error -22
[  361.258957][ T8132] netlink: 16 bytes leftover after parsing attributes in process `syz.2.659'.
[  361.343560][ T8150] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  361.350142][ T8150] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  361.367010][    T8] usb 5-1: USB disconnect, device number 46
[  361.383650][ T8150] vhci_hcd vhci_hcd.0: Device attached
[  361.628714][ T5149] vhci_hcd: vhci_device speed not set
[  361.738467][ T5149] usb 11-1: new full-speed USB device number 3 using vhci_hcd
[  362.135580][ T8156] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  362.198166][ T8156] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  362.226143][   T29] kauditd_printk_skb: 29 callbacks suppressed
[  362.226164][   T29] audit: type=1326 audit(1719564922.798:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8161 comm="syz.4.667" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x0
[  362.271699][ T8156] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  362.306903][ T8156] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  362.317411][ T8152] vhci_hcd: connection closed
[  362.329835][   T52] vhci_hcd: stop threads
[  362.373729][   T52] vhci_hcd: release socket
[  362.406368][   T52] vhci_hcd: disconnect device
[  363.386658][ T8158] loop0: detected capacity change from 0 to 40427
[  363.458067][ T8158] F2FS-fs (loop0): invalid crc value
[  363.501028][ T5177] usb 3-1: USB disconnect, device number 34
[  363.572010][ T8158] F2FS-fs (loop0): Found nat_bits in checkpoint
[  363.800601][ T8158] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  364.107452][  T928] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  364.189989][ T8183] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  364.327444][  T928] usb 2-1: Using ep0 maxpacket: 16
[  364.356371][  T928] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  364.414892][  T928] usb 2-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  364.445578][  T928] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.476656][  T928] usb 2-1: Product: syz
[  364.487529][  T928] usb 2-1: Manufacturer: syz
[  364.492203][  T928] usb 2-1: SerialNumber: syz
[  364.667125][  T928] usb 2-1: config 0 descriptor??
[  364.668590][ T5197] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[  364.681269][ T5177] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  364.692877][  T928] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  364.905602][   T29] audit: type=1326 audit(1719564925.358:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  364.979398][ T5177] usb 3-1: Using ep0 maxpacket: 16
[  365.009441][ T5197] usb 5-1: Using ep0 maxpacket: 16
[  365.039796][ T5177] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  365.107717][ T5197] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  365.180303][   T29] audit: type=1326 audit(1719564925.358:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  365.203043][    C1] vkms_vblank_simulate: vblank timer overrun
[  365.240792][ T5177] usb 3-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  365.315207][ T5197] usb 5-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  365.361006][ T5177] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.382092][ T5197] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.402676][ T5177] usb 3-1: Product: syz
[  365.424786][ T5177] usb 3-1: Manufacturer: syz
[  365.432530][ T5197] usb 5-1: Product: syz
[  365.449422][ T5177] usb 3-1: SerialNumber: syz
[  365.454169][ T5197] usb 5-1: Manufacturer: syz
[  365.459672][   T29] audit: type=1326 audit(1719564925.358:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  365.504257][ T5197] usb 5-1: SerialNumber: syz
[  365.542473][ T5177] usb 3-1: config 0 descriptor??
[  365.549785][ T5197] usb 5-1: config 0 descriptor??
[  365.581433][ T5197] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  365.594594][ T5177] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  365.614872][   T29] audit: type=1326 audit(1719564925.358:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  365.637293][    C1] vkms_vblank_simulate: vblank timer overrun
[  365.662864][ T5177] dw2102: su3000_power_ctrl: 1, initialized 0
[  365.671969][ T5197] dw2102: su3000_power_ctrl: 1, initialized 0
[  365.677945][  T928] dw2102: su3000_power_ctrl: 1, initialized 0
[  365.684236][  T928] dvb-usb: bulk message failed: -22 (2/0)
[  365.694363][   T29] audit: type=1326 audit(1719564925.358:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  365.706242][ T5177] dvb-usb: bulk message failed: -22 (2/0)
[  365.726024][  T928] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  365.727696][ T5197] dvb-usb: bulk message failed: -22 (2/0)
[  365.734204][   T29] audit: type=1326 audit(1719564925.358:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  365.761418][ T5197] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  365.787335][   T29] audit: type=1326 audit(1719564925.358:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  365.808542][ T5177] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  365.855517][ T5197] usb 5-1: USB disconnect, device number 47
[  365.931764][ T5177] usb 3-1: USB disconnect, device number 35
[  366.107736][   T29] audit: type=1326 audit(1719564925.358:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  366.296093][   T29] audit: type=1326 audit(1719564925.368:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8190 comm="syz.3.674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f7423b75b29 code=0x7ffc0000
[  366.318791][    C1] vkms_vblank_simulate: vblank timer overrun
[  366.387891][ T5103] Bluetooth: hci4: command 0x0405 tx timeout
[  366.390503][ T8195] loop3: detected capacity change from 0 to 40427
[  366.411850][ T8195] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  366.420078][ T8195] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  366.481245][ T8195] F2FS-fs (loop3): Found nat_bits in checkpoint
[  366.552324][ T8195] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  366.559534][ T8195] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  366.723648][ T8199] netlink: 4 bytes leftover after parsing attributes in process `syz.4.677'.
[  366.959061][ T5177] usb 2-1: USB disconnect, device number 35
[  367.017347][ T5149] vhci_hcd: vhci_device speed not set
[  367.209238][ T6576] syz-executor: attempt to access beyond end of device
[  367.209238][ T6576] loop3: rw=2051, sector=49152, nr_sectors = 4096 limit=40427
[  367.253974][ T6576] F2FS-fs (loop3): Issue discard(6144, 6144, 512) failed, ret: -5
[  367.675025][ T8219] netlink: 248 bytes leftover after parsing attributes in process `syz.4.682'.
[  367.877558][ T8214] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  367.884160][ T8214] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  367.940076][ T8214] vhci_hcd vhci_hcd.0: Device attached
[  368.029897][ T5197] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  368.171473][   T46] vhci_hcd: vhci_device speed not set
[  368.257351][ T5197] usb 5-1: Using ep0 maxpacket: 32
[  368.262704][   T46] usb 13-1: new full-speed USB device number 3 using vhci_hcd
[  368.281719][ T5197] usb 5-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  368.313673][ T5197] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  368.349718][ T5197] usb 5-1: config 0 descriptor??
[  368.387857][ T5197] usb 5-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  368.445357][ T5197] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  368.472900][ T5197] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  368.475638][ T8220] vhci_hcd: connection reset by peer
[  368.494686][ T5197] usb 5-1: media controller created
[  368.497409][   T11] vhci_hcd: stop threads
[  368.515773][   T11] vhci_hcd: release socket
[  368.521318][   T11] vhci_hcd: disconnect device
[  368.572155][ T5197] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  368.580286][ T5146] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  368.609985][ T8218] netlink: 20 bytes leftover after parsing attributes in process `syz.4.682'.
[  368.678141][ T5177] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[  368.686128][ T5197] usb 5-1: selecting invalid altsetting 1
[  368.692203][ T5197] set interface failed
[  368.692383][ T5197] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  368.705807][ T5197] error writing reg: 0xff, val: 0x00
[  368.810091][ T5146] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  368.810614][ T5197] dvb_usb_mxl111sf 5-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  368.823110][ T5146] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  368.889028][ T8209] loop0: detected capacity change from 0 to 32768
[  368.891903][ T5197] usb 5-1: USB disconnect, device number 48
[  368.901894][ T5177] usb 4-1: Using ep0 maxpacket: 16
[  368.906957][ T5146] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  368.916182][ T5177] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  368.930768][ T5146] usb 2-1: New USB device found, idVendor=0bb4, idProduct=0a04, bcdDevice=a3.91
[  368.957076][ T5146] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.971752][ T5146] usb 2-1: Product: syz
[  368.976572][ T5177] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  368.981819][ T5146] usb 2-1: Manufacturer: syz
[  368.996998][ T5146] usb 2-1: SerialNumber: syz
[  369.005353][ T8209] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  369.011392][ T5146] usb 2-1: config 0 descriptor??
[  369.025879][ T5177] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.036403][ T8209] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  369.076506][ T8209] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  369.076512][ T5177] usb 4-1: config 0 descriptor??
[  369.096569][ T5146] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  369.104187][ T5146] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  369.256319][ T5144] usb 2-1: USB disconnect, device number 36
[  369.370122][ T8229] netlink: 16 bytes leftover after parsing attributes in process `syz.3.678'.
[  369.413063][ T5146] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 308ms
[  369.453467][ T5146] gfs2: fsid=syz:syz.0: jid=0: Done
[  369.484121][ T8209] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  369.862910][ T8229] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  369.894554][ T8229] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  369.950445][ T8229] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  369.997887][ T8229] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  370.115275][ T5177] hid-generic 0003:0158:0100.0024: unknown main item tag 0x1
[  370.355976][ T5177] hid-generic 0003:0158:0100.0024: unexpected long global item
[  371.212066][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  371.212089][   T29] audit: type=1326 audit(1719564931.038:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.245095][   T29] audit: type=1326 audit(1719564931.038:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.294321][   T29] audit: type=1326 audit(1719564931.038:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.298141][ T5177] hid-generic 0003:0158:0100.0024: probe with driver hid-generic failed with error -22
[  371.466607][   T29] audit: type=1326 audit(1719564931.038:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.489262][   T29] audit: type=1326 audit(1719564931.038:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.490190][ T5177] usb 4-1: USB disconnect, device number 44
[  371.564442][   T29] audit: type=1326 audit(1719564931.038:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.644417][   T29] audit: type=1326 audit(1719564931.038:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.733587][   T29] audit: type=1326 audit(1719564931.038:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.774248][   T29] audit: type=1326 audit(1719564931.038:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.803841][   T29] audit: type=1326 audit(1719564931.048:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8243 comm="syz.1.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  371.910364][ T5144] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  372.096266][ T8256] netlink: 4 bytes leftover after parsing attributes in process `syz.3.690'.
[  372.118024][ T5144] usb 2-1: device descriptor read/64, error -71
[  372.418063][ T5144] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  372.599004][ T5144] usb 2-1: device descriptor read/64, error -71
[  372.738419][ T5144] usb usb2-port1: attempt power cycle
[  372.801472][ T5177] usb 1-1: new high-speed USB device number 49 using dummy_hcd
[  372.907445][ T5146] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[  373.027530][ T5177] usb 1-1: Using ep0 maxpacket: 16
[  373.038648][ T5177] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  373.069729][ T5177] usb 1-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  373.088650][ T5177] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.096977][ T5177] usb 1-1: Product: syz
[  373.102111][ T5177] usb 1-1: Manufacturer: syz
[  373.106763][ T5177] usb 1-1: SerialNumber: syz
[  373.123095][ T5177] usb 1-1: config 0 descriptor??
[  373.128276][ T5146] usb 4-1: Using ep0 maxpacket: 16
[  373.136618][ T5177] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  373.150714][ T5146] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  373.173550][ T5144] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  373.185444][ T5177] dw2102: su3000_power_ctrl: 1, initialized 0
[  373.199808][ T5146] usb 4-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  373.202198][ T5177] dvb-usb: bulk message failed: -22 (2/0)
[  373.217501][ T5146] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.227380][ T5144] usb 2-1: device descriptor read/8, error -71
[  373.234477][ T5146] usb 4-1: Product: syz
[  373.238955][ T5146] usb 4-1: Manufacturer: syz
[  373.243855][ T5146] usb 4-1: SerialNumber: syz
[  373.262894][ T5146] usb 4-1: config 0 descriptor??
[  373.293187][ T5146] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  373.317971][ T5177] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  373.320772][ T5146] dw2102: su3000_power_ctrl: 1, initialized 0
[  373.358103][ T8269] netlink: 'syz.2.694': attribute type 10 has an invalid length.
[  373.364206][ T5146] dvb-usb: bulk message failed: -22 (2/0)
[  373.373104][ T5177] usb 1-1: USB disconnect, device number 49
[  373.395110][ T8269] veth1_macvtap: left promiscuous mode
[  373.431001][   T46] vhci_hcd: vhci_device speed not set
[  373.442216][ T5146] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  373.507794][ T5144] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  373.578030][ T5144] usb 2-1: device descriptor read/8, error -71
[  373.693834][    T8] usb 4-1: USB disconnect, device number 45
[  373.706279][ T5144] usb usb2-port1: unable to enumerate USB device
[  373.807419][ T5149] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  373.817431][ T5146] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  373.997755][ T5149] usb 3-1: Using ep0 maxpacket: 16
[  374.009186][ T5149] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  374.025635][ T5149] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  374.035232][ T5149] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  374.058863][ T5149] usb 3-1: config 0 descriptor??
[  374.180301][ T5146] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  374.190540][ T5146] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  374.201056][ T5146] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  374.335810][ T5146] usb 5-1: New USB device found, idVendor=0bb4, idProduct=0a04, bcdDevice=a3.91
[  374.453583][ T5146] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.566363][ T5146] usb 5-1: Product: syz
[  374.638261][ T5146] usb 5-1: Manufacturer: syz
[  374.712889][ T5146] usb 5-1: SerialNumber: syz
[  374.833313][ T8269] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  374.872829][ T8269] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  374.899925][ T5146] usb 5-1: config 0 descriptor??
[  375.053047][ T5149] hid-generic 0003:0158:0100.0025: unknown main item tag 0x1
[  375.060635][ T5149] hid-generic 0003:0158:0100.0025: unexpected long global item
[  375.069361][ T5149] hid-generic 0003:0158:0100.0025: probe with driver hid-generic failed with error -22
[  375.166991][ T5149] usb 5-1: USB disconnect, device number 49
[  375.255664][ T5096] usb 3-1: USB disconnect, device number 36
[  375.470019][ T5146] usb 1-1: new high-speed USB device number 50 using dummy_hcd
[  375.637842][ T8286] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  375.644420][ T8286] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  375.663241][ T8286] vhci_hcd vhci_hcd.0: Device attached
[  375.663733][ T5146] usb 1-1: Using ep0 maxpacket: 16
[  375.729840][ T5146] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  375.820347][ T5146] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  375.884559][ T5146] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.918008][    T8] vhci_hcd: vhci_device speed not set
[  375.945794][ T5146] usb 1-1: config 0 descriptor??
[  376.017863][    T8] usb 15-1: new full-speed USB device number 5 using vhci_hcd
[  376.277635][ T8283] netlink: 16 bytes leftover after parsing attributes in process `syz.0.699'.
[  376.503785][ T5144] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  376.797394][ T5144] usb 5-1: Using ep0 maxpacket: 16
[  376.845566][ T5144] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  376.917423][ T5144] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  376.992010][ T5144] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.001298][ T8283] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  377.082855][ T5144] usb 5-1: config 0 descriptor??
[  377.192569][ T8283] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  377.284545][ T8287] vhci_hcd: connection closed
[  377.297802][ T1108] vhci_hcd: stop threads
[  377.323042][ T8283] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  377.326837][ T1108] vhci_hcd: release socket
[  377.367734][ T1108] vhci_hcd: disconnect device
[  377.377753][ T8283] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  377.429466][ T8294] overlayfs: missing 'lowerdir'
[  377.523943][ T5146] hid-generic 0003:0158:0100.0026: unknown main item tag 0x1
[  377.561803][ T5146] hid-generic 0003:0158:0100.0026: unexpected long global item
[  377.591401][ T5146] hid-generic 0003:0158:0100.0026: probe with driver hid-generic failed with error -22
[  378.023441][ T8294] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  378.038149][ T8294] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  378.078473][ T5144] usbhid 5-1:0.0: can't add hid device: -71
[  378.105992][ T5144] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  378.128820][ T5144] usb 5-1: USB disconnect, device number 50
[  378.195441][ T8292] loop2: detected capacity change from 0 to 32768
[  378.221164][ T8292] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  378.229998][ T8292] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  378.262900][ T8292] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  378.280395][ T5149] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  378.287480][ T5149] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  378.327324][ T5177] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  378.364663][ T5149] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 77ms
[  378.372705][ T5149] gfs2: fsid=syz:syz.0: jid=0: Done
[  378.384488][ T8292] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  378.516908][ T5149] usb 1-1: USB disconnect, device number 50
[  378.527285][ T5177] usb 2-1: Using ep0 maxpacket: 16
[  378.552554][ T5177] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  378.583253][ T5177] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  378.602655][ T5177] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.616378][ T5177] usb 2-1: config 0 descriptor??
[  378.854799][ T8306] fscrypt: key with description 'fscrypt:0000111122223333' has invalid payload
[  378.895151][ T8306] fscrypt: key with description 'fscrypt:0000111122223333' has invalid payload
[  378.935764][ T8306] overlayfs: failed to create directory ./bus/work (errno: 126); mounting read-only
[  378.958833][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  378.965257][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  379.277910][ T8306] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  379.326672][ T8306] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  379.390776][ T5177] hid (null): invalid report_size 1684763247
[  379.407456][ T5149] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[  379.425669][ T5177] hid-generic 0003:0158:0100.0027: unknown main item tag 0x1
[  379.457354][ T5177] hid-generic 0003:0158:0100.0027: unexpected long global item
[  379.465834][ T5177] hid-generic 0003:0158:0100.0027: probe with driver hid-generic failed with error -22
[  379.587916][ T5144] usb 2-1: USB disconnect, device number 41
[  379.814928][ T5149] usb 4-1: device descriptor read/64, error -71
[  380.823790][ T5149] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[  380.834944][ T8331] 9pnet_fd: Insufficient options for proto=fd
[  380.892939][ T8335] netlink: 'syz.4.712': attribute type 10 has an invalid length.
[  381.003028][ T5149] usb 4-1: device descriptor read/64, error -71
[  381.153520][ T5149] usb usb4-port1: attempt power cycle
[  381.187604][    T8] vhci_hcd: vhci_device speed not set
[  381.276379][ T5197] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  381.427543][ T5147] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  381.487379][ T5197] usb 5-1: Using ep0 maxpacket: 16
[  381.495371][ T5197] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  381.514817][ T5197] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  381.550200][ T5197] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.573373][ T5197] usb 5-1: config 0 descriptor??
[  381.618251][ T5149] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[  381.627776][ T5147] usb 2-1: Using ep0 maxpacket: 16
[  381.635928][ T5147] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  381.654043][ T5147] usb 2-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  381.661034][ T5149] usb 4-1: device descriptor read/8, error -71
[  381.664115][ T5147] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  381.680517][ T5147] usb 2-1: Product: syz
[  381.684750][ T5147] usb 2-1: Manufacturer: syz
[  381.691209][ T5147] usb 2-1: SerialNumber: syz
[  381.697532][ T5177] usb 1-1: new high-speed USB device number 51 using dummy_hcd
[  381.699131][ T5147] usb 2-1: config 0 descriptor??
[  381.716668][ T5147] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  381.724636][ T5147] dw2102: su3000_power_ctrl: 1, initialized 0
[  381.730875][ T5147] dvb-usb: bulk message failed: -22 (2/0)
[  381.743747][ T5147] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  381.858043][ T5144] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  381.908974][ T5177] usb 1-1: Using ep0 maxpacket: 16
[  381.919689][ T5177] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  381.923439][ T5147] usb 2-1: USB disconnect, device number 42
[  381.938014][ T5177] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  381.948455][ T5177] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.967839][ T5149] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[  381.986049][ T5177] usb 1-1: config 0 descriptor??
[  382.034318][ T5149] usb 4-1: device descriptor read/8, error -71
[  382.047648][ T5144] usb 3-1: Using ep0 maxpacket: 8
[  382.055297][ T8335] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  382.068488][ T8335] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  382.077875][ T5144] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  382.091874][ T5197] hid-generic 0003:0158:0100.0028: unknown main item tag 0x1
[  382.102898][ T5144] usb 3-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  382.107438][ T5197] hid-generic 0003:0158:0100.0028: unexpected long global item
[  382.116112][ T5144] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.143035][ T5197] hid-generic 0003:0158:0100.0028: probe with driver hid-generic failed with error -22
[  382.164717][ T5149] usb usb4-port1: unable to enumerate USB device
[  382.168980][ T5144] usb 3-1: config 0 descriptor??
[  382.193207][ T5144] gspca_main: vc032x-2.14.0 probing 046d:0892
[  382.204178][ T8345] netlink: 16 bytes leftover after parsing attributes in process `syz.0.713'.
[  382.292421][ T5197] usb 5-1: USB disconnect, device number 51
[  382.856022][ T8345] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  383.057620][ T8345] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  383.156826][ T8345] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  383.213019][ T8345] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  383.434545][ T5177] hid-generic 0003:0158:0100.0029: unknown main item tag 0x1
[  383.442435][ T5177] hid-generic 0003:0158:0100.0029: unexpected long global item
[  383.450971][ T5177] hid-generic 0003:0158:0100.0029: probe with driver hid-generic failed with error -22
[  383.509809][ T5147] usb 1-1: USB disconnect, device number 51
[  383.608610][ T5144] gspca_vc032x: reg_w err -71
[  383.620056][ T5144] vc032x 3-1:0.0: probe with driver vc032x failed with error -71
[  383.652653][ T5144] usb 3-1: USB disconnect, device number 37
[  383.958180][ T5146] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[  384.088059][ T5177] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  384.155176][ T5146] usb 4-1: Using ep0 maxpacket: 16
[  384.177958][ T5146] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  384.202089][ T5146] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  384.219319][ T5146] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  384.245766][ T5146] usb 4-1: string descriptor 0 read error: -22
[  384.411899][ T5177] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  384.425890][ T5146] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  384.431528][ T5177] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  384.446886][ T5177] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  384.453801][ T5146] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  384.456712][ T5177] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  384.479126][ T5149] usb 1-1: new high-speed USB device number 52 using dummy_hcd
[  384.494637][ T5177] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  384.506469][ T5177] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  384.515609][ T5177] usb 5-1: Manufacturer: syz
[  384.527638][ T5177] usb 5-1: config 0 descriptor??
[  384.530755][ T5146] usb 4-1: 0:2 : does not exist
[  384.567554][ T5150] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  384.687355][ T5149] usb 1-1: Using ep0 maxpacket: 16
[  384.699776][ T5149] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  384.713142][ T5149] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  384.727658][ T5149] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  384.744072][ T5149] usb 1-1: config 0 descriptor??
[  384.762444][ T5096] usb 4-1: USB disconnect, device number 50
[  384.779356][ T5150] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  384.797417][ T5150] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  384.816697][ T5150] usb 2-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  384.857506][ T5150] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  384.867009][ T5150] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  384.882279][ T5150] usb 2-1: Product: syz
[  384.886619][ T5150] usb 2-1: Manufacturer: syz
[  384.892191][ T5150] usb 2-1: SerialNumber: syz
[  384.945653][ T5177] appleir 0003:05AC:8243.002A: unknown main item tag 0x0
[  384.956177][ T5177] appleir 0003:05AC:8243.002A: No inputs registered, leaving
[  384.972358][ T8373] overlayfs: missing 'lowerdir'
[  384.975871][ T5177] appleir 0003:05AC:8243.002A: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  385.344274][ T8373] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  385.367847][ T8373] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  385.394710][ T5149] hid-generic 0003:0158:0100.002B: unknown main item tag 0x1
[  385.405035][ T5149] hid-generic 0003:0158:0100.002B: unexpected long global item
[  385.417842][ T5149] hid-generic 0003:0158:0100.002B: probe with driver hid-generic failed with error -22
[  385.610355][ T5096] usb 1-1: USB disconnect, device number 52
[  385.739820][ T8375] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  385.752365][ T8375] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  385.785847][ T5150] cdc_ncm 2-1:1.0: SET_NTB_FORMAT failed
[  385.819074][ T5150] cdc_ncm 2-1:1.0: bind() failure
[  385.828077][ T5149] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[  385.855480][ T5150] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  385.867567][ T5150] cdc_ncm 2-1:1.1: bind() failure
[  385.868555][   T29] kauditd_printk_skb: 28 callbacks suppressed
[  385.868575][   T29] audit: type=1326 audit(1719564946.438:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8384 comm="syz.2.726" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd1a0775b29 code=0x0
[  385.878508][ T5150] usb 2-1: USB disconnect, device number 43
[  386.020197][ T5149] usb 4-1: device descriptor read/64, error -71
[  386.317606][ T5149] usb 4-1: new high-speed USB device number 52 using dummy_hcd
[  386.443047][ T8392] netlink: 'syz.1.728': attribute type 10 has an invalid length.
[  386.452723][ T8392] veth1_macvtap: left promiscuous mode
[  386.487350][ T5149] usb 4-1: device descriptor read/64, error -71
[  386.617744][ T5149] usb usb4-port1: attempt power cycle
[  386.667477][ T5146] usb 1-1: new high-speed USB device number 53 using dummy_hcd
[  386.787634][   T46] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  386.865945][ T5146] usb 1-1: Using ep0 maxpacket: 16
[  386.883880][ T5146] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  386.906700][ T5146] usb 1-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  386.916928][ T5146] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.946478][ T5146] usb 1-1: Product: syz
[  386.952630][ T5146] usb 1-1: Manufacturer: syz
[  386.963458][ T5146] usb 1-1: SerialNumber: syz
[  386.978857][ T5146] usb 1-1: config 0 descriptor??
[  386.993876][ T5146] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  387.007512][ T5146] dw2102: su3000_power_ctrl: 1, initialized 0
[  387.007518][   T46] usb 2-1: Using ep0 maxpacket: 16
[  387.009826][   T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  387.013687][ T5146] dvb-usb: bulk message failed: -22 (2/0)
[  387.033600][ T5146] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  387.048206][ T5149] usb 4-1: new high-speed USB device number 53 using dummy_hcd
[  387.058992][   T46] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  387.075854][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  387.094726][ T5149] usb 4-1: device descriptor read/8, error -71
[  387.103590][ T5177] usb 5-1: USB disconnect, device number 52
[  387.120966][   T46] usb 2-1: config 0 descriptor??
[  387.147359][ T5197] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  387.273305][ T5150] usb 1-1: USB disconnect, device number 53
[  387.353110][ T5197] usb 3-1: Using ep0 maxpacket: 16
[  387.366985][ T5197] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  387.390232][ T5149] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[  387.399103][ T5197] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  387.417452][ T5197] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  387.448130][ T5149] usb 4-1: device descriptor read/8, error -71
[  387.455921][ T5197] usb 3-1: config 0 descriptor??
[  387.588531][ T5149] usb usb4-port1: unable to enumerate USB device
[  387.656878][ T8392] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  387.666373][ T8392] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  387.685887][ T5197] usbhid 3-1:0.0: can't add hid device: -71
[  387.712153][   T46] hid-generic 0003:0158:0100.002C: unknown main item tag 0x1
[  387.719873][ T5197] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  387.732279][   T46] hid-generic 0003:0158:0100.002C: unexpected long global item
[  387.744661][   T46] hid-generic 0003:0158:0100.002C: probe with driver hid-generic failed with error -22
[  387.756335][ T5197] usb 3-1: USB disconnect, device number 38
[  387.917960][ T5146] usb 2-1: USB disconnect, device number 44
[  388.047476][   T46] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  388.247389][   T46] usb 5-1: Using ep0 maxpacket: 16
[  388.259894][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  388.275312][   T46] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  388.284801][   T46] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.305686][   T46] usb 5-1: config 0 descriptor??
[  388.551627][ T8410] netlink: 16 bytes leftover after parsing attributes in process `syz.4.734'.
[  388.850511][   T29] audit: type=1326 audit(1719564949.428:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8426 comm="syz.1.740" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x0
[  388.967350][ T5146] usb 3-1: new full-speed USB device number 39 using dummy_hcd
[  388.978421][ T8410] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  388.993912][ T8410] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  389.009279][ T8410] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  389.021737][ T8410] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  389.052454][   T46] hid-generic 0003:0158:0100.002D: unknown main item tag 0x1
[  389.057536][ T5144] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[  389.060719][   T46] hid-generic 0003:0158:0100.002D: unexpected long global item
[  389.078331][   T46] hid-generic 0003:0158:0100.002D: probe with driver hid-generic failed with error -22
[  389.178333][ T5146] usb 3-1: not running at top speed; connect to a high speed hub
[  389.199785][ T5146] usb 3-1: config 1 interface 0 altsetting 255 endpoint 0x81 has invalid wMaxPacketSize 0
[  389.227438][ T5146] usb 3-1: config 1 interface 0 altsetting 255 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  389.262796][   T46] usb 5-1: USB disconnect, device number 53
[  389.267569][ T5146] usb 3-1: config 1 interface 0 has no altsetting 0
[  389.282716][ T5144] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  389.303525][ T5144] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  389.323258][ T5146] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  389.343819][ T5146] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.353195][ T5144] usb 4-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  389.377481][ T5146] usb 3-1: Product: ࠬ
[  389.382105][ T5146] usb 3-1: Manufacturer: 倊
[  389.398396][ T5146] usb 3-1: SerialNumber: п
[  389.407889][ T5144] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  389.417298][ T5144] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.428276][ T8420] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  389.447578][ T5144] usb 4-1: Product: syz
[  389.457343][ T5144] usb 4-1: Manufacturer: syz
[  389.472602][ T5144] usb 4-1: SerialNumber: syz
[  389.661828][ T8420] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  389.697756][ T8420] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  389.756951][ T8420] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  389.807742][ T8420] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  389.845294][ T8430] netlink: 'syz.1.741': attribute type 10 has an invalid length.
[  389.878740][ T8420] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  389.917761][ T8420] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  389.951167][ T8430] batman_adv: batadv0: Adding interface: team0
[  389.978615][ T8430] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  389.990826][ T5146] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22
[  390.054380][ T8430] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  390.084415][ T5146] usb 3-1: USB disconnect, device number 39
[  390.099871][ T8431] netlink: 'syz.1.741': attribute type 10 has an invalid length.
[  390.154721][ T8431] netlink: 2 bytes leftover after parsing attributes in process `syz.1.741'.
[  390.184742][ T8431] team0: entered promiscuous mode
[  390.197269][ T8431] team_slave_0: entered promiscuous mode
[  390.213658][ T8431] team_slave_1: entered promiscuous mode
[  390.229760][ T8431] 8021q: adding VLAN 0 to HW filter on device team0
[  390.248895][ T8431] batman_adv: batadv0: Interface activated: team0
[  390.258798][ T8431] batman_adv: batadv0: Interface deactivated: team0
[  390.301331][ T8425] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  390.308422][ T8431] batman_adv: batadv0: Removing interface: team0
[  390.348298][ T8425] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  390.371885][ T5144] cdc_ncm 4-1:1.0: SET_NTB_FORMAT failed
[  390.409570][ T5144] cdc_ncm 4-1:1.0: bind() failure
[  390.427815][ T8431] bridge0: port 3(team0) entered blocking state
[  390.440696][ T5144] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  390.454666][ T5144] cdc_ncm 4-1:1.1: bind() failure
[  390.485305][ T8431] bridge0: port 3(team0) entered disabled state
[  390.508834][ T5144] usb 4-1: USB disconnect, device number 55
[  390.549518][ T8431] team0: entered allmulticast mode
[  390.617759][ T8431] team_slave_0: entered allmulticast mode
[  390.649589][ T8431] team_slave_1: entered allmulticast mode
[  390.680192][ T8431] bridge0: port 3(team0) entered blocking state
[  390.686706][ T8431] bridge0: port 3(team0) entered forwarding state
[  391.185733][   T29] audit: type=1326 audit(1719564951.758:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.236279][   T29] audit: type=1326 audit(1719564951.758:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.310232][   T29] audit: type=1326 audit(1719564951.758:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.334423][   T29] audit: type=1326 audit(1719564951.758:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.381261][   T29] audit: type=1326 audit(1719564951.758:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.420710][   T29] audit: type=1326 audit(1719564951.758:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.447553][   T29] audit: type=1326 audit(1719564951.758:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.471127][   T29] audit: type=1326 audit(1719564951.758:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.499264][   T29] audit: type=1326 audit(1719564951.758:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.523455][   T29] audit: type=1326 audit(1719564951.758:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8443 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a0775b29 code=0x7ffc0000
[  391.655107][   T46] usb 5-1: new high-speed USB device number 54 using dummy_hcd
[  391.818822][   T46] usb 5-1: device descriptor read/64, error -71
[  391.837390][ T5149] usb 4-1: new high-speed USB device number 56 using dummy_hcd
[  392.043113][ T5108] Bluetooth: hci4: unexpected event 0x09 length: 10 > 3
[  392.045486][ T5108] Bluetooth: hci4: SCO packet for unknown connection handle 1039
[  392.273864][   T46] usb 5-1: new high-speed USB device number 55 using dummy_hcd
[  392.320018][ T5108] Bluetooth: hci4: unexpected event for opcode 0x0c1b
[  392.327406][ T5149] usb 4-1: Using ep0 maxpacket: 16
[  392.527747][   T46] usb 5-1: device descriptor read/64, error -71
[  392.750541][   T46] usb usb5-port1: attempt power cycle
[  393.087826][ T5149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  393.118786][ T5149] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  393.175902][ T5149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.191445][   T46] usb 5-1: new high-speed USB device number 56 using dummy_hcd
[  393.234026][ T5149] usb 4-1: config 0 descriptor??
[  393.258199][   T46] usb 5-1: device descriptor read/8, error -71
[  393.575339][ T5149] usbhid 4-1:0.0: can't add hid device: -71
[  393.581751][ T5149] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  393.597543][ T5149] usb 4-1: USB disconnect, device number 56
[  393.627394][ T5147] usb 1-1: new high-speed USB device number 54 using dummy_hcd
[  393.717435][   T46] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[  393.760782][   T46] usb 5-1: device descriptor read/8, error -71
[  393.827415][ T5147] usb 1-1: Using ep0 maxpacket: 16
[  393.848385][ T5147] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  393.867318][ T5147] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  393.876611][ T5147] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.901301][   T46] usb usb5-port1: unable to enumerate USB device
[  393.915191][ T5147] usb 1-1: config 0 descriptor??
[  394.164920][ T8465] netlink: 16 bytes leftover after parsing attributes in process `syz.0.752'.
[  394.381263][ T8477] netlink: 248 bytes leftover after parsing attributes in process `syz.3.755'.
[  394.537377][ T5144] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  394.687340][ T5197] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[  394.699110][ T8465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  394.726353][ T8481] netlink: 'syz.4.757': attribute type 10 has an invalid length.
[  394.734683][ T8465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  394.747465][ T5144] usb 3-1: Using ep0 maxpacket: 16
[  394.756072][ T5144] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  394.765447][ T8465] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  394.765782][ T8465] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  394.793338][ T8481] batman_adv: batadv0: Adding interface: team0
[  394.803817][ T5147] hid-generic 0003:0158:0100.002E: unknown main item tag 0x1
[  394.817306][ T5144] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  394.817721][ T8481] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  394.827701][ T5147] hid-generic 0003:0158:0100.002E: unexpected long global item
[  394.828604][ T5147] hid-generic 0003:0158:0100.002E: probe with driver hid-generic failed with error -22
[  394.876025][ T8481] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  394.886725][ T5144] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  394.897579][ T5197] usb 4-1: Using ep0 maxpacket: 32
[  394.902428][ T5144] usb 3-1: string descriptor 0 read error: -22
[  394.909768][ T5144] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  394.911796][ T5197] usb 4-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  394.918994][ T5144] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.943480][ T8482] netlink: 'syz.4.757': attribute type 10 has an invalid length.
[  394.951297][ T5144] usb 3-1: 0:2 : does not exist
[  394.965498][ T8482] netlink: 2 bytes leftover after parsing attributes in process `syz.4.757'.
[  394.977523][ T5197] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  394.991273][ T5147] usb 1-1: USB disconnect, device number 54
[  395.017984][ T8482] team0: entered promiscuous mode
[  395.031345][ T5197] usb 4-1: config 0 descriptor??
[  395.050238][ T8482] team_slave_0: entered promiscuous mode
[  395.056193][ T8482] team_slave_1: entered promiscuous mode
[  395.070362][ T5197] usb 4-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  395.089908][ T5197] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  395.104548][ T5197] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  395.121383][ T5197] usb 4-1: media controller created
[  395.125235][ T8482] 8021q: adding VLAN 0 to HW filter on device team0
[  395.178024][ T5144] usb 3-1: USB disconnect, device number 40
[  395.182904][ T5197] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  395.204497][ T8482] batman_adv: batadv0: Interface activated: team0
[  395.254457][ T8482] batman_adv: batadv0: Interface deactivated: team0
[  395.284054][ T5197] usb 4-1: selecting invalid altsetting 1
[  395.309324][ T5197] set interface failed
[  395.309364][ T5197] usb 4-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  395.328062][ T8482] batman_adv: batadv0: Removing interface: team0
[  395.356092][ T5197] error writing reg: 0xff, val: 0x00
[  395.365785][ T8482] bridge0: port 3(team0) entered blocking state
[  395.380579][ T8487] netlink: 4 bytes leftover after parsing attributes in process `syz.1.758'.
[  395.391132][ T8482] bridge0: port 3(team0) entered disabled state
[  395.399446][ T8482] team0: entered allmulticast mode
[  395.406544][ T8482] team_slave_0: entered allmulticast mode
[  395.412858][ T8482] team_slave_1: entered allmulticast mode
[  395.416386][ T5197] dvb_usb_mxl111sf 4-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  395.432254][ T8482] bridge0: port 3(team0) entered blocking state
[  395.438757][ T8482] bridge0: port 3(team0) entered forwarding state
[  395.550754][ T8474] netlink: 20 bytes leftover after parsing attributes in process `syz.3.755'.
[  395.591847][ T5197] usb 4-1: USB disconnect, device number 57
[  396.242795][ T5147] usb 1-1: new high-speed USB device number 55 using dummy_hcd
[  396.387708][ T5108] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  396.399003][ T5108] Bluetooth: hci4: Injecting HCI hardware error event
[  396.411608][ T5108] Bluetooth: hci4: hardware error 0x00
[  397.110220][ T5147] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  397.140725][ T5147] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  397.177293][ T5147] usb 1-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  397.208907][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  397.208929][   T29] audit: type=1326 audit(1719564957.788:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8507 comm="syz.3.764" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7423b75b29 code=0x0
[  397.220216][ T5147] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  397.304301][ T5147] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  397.333235][ T5147] usb 1-1: Product: syz
[  397.357531][ T5147] usb 1-1: Manufacturer: syz
[  397.371600][ T5147] usb 1-1: SerialNumber: syz
[  397.378732][ T8513] 9pnet_fd: Insufficient options for proto=fd
[  397.502515][   T29] audit: type=1326 audit(1719564958.078:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  397.576274][   T29] audit: type=1326 audit(1719564958.118:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  397.622995][   T29] audit: type=1326 audit(1719564958.118:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  397.645240][    C0] vkms_vblank_simulate: vblank timer overrun
[  397.664680][   T29] audit: type=1326 audit(1719564958.118:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  397.697565][   T29] audit: type=1326 audit(1719564958.118:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  397.723051][ T5103] Bluetooth: hci1: SCO packet for unknown connection handle 1039
[  397.759604][   T29] audit: type=1326 audit(1719564958.118:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  397.885552][ T5103] Bluetooth: hci1: unexpected event for opcode 0x0c1b
[  397.899633][   T29] audit: type=1326 audit(1719564958.118:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  397.953761][   T29] audit: type=1326 audit(1719564958.118:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  397.995854][   T29] audit: type=1326 audit(1719564958.118:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8497 comm="syz.4.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  398.254618][ T8493] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  398.287915][ T8493] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  398.344297][ T5147] cdc_ncm 1-1:1.0: SET_NTB_FORMAT failed
[  398.388079][ T5147] cdc_ncm 1-1:1.0: bind() failure
[  398.425892][ T5147] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  398.462915][ T5147] cdc_ncm 1-1:1.1: bind() failure
[  398.485938][ T8533] netlink: 20 bytes leftover after parsing attributes in process `syz.4.770'.
[  398.504251][ T8530] loop2: detected capacity change from 0 to 4096
[  398.519929][ T5147] usb 1-1: USB disconnect, device number 55
[  398.631983][ T8536] bridge_slave_1: left allmulticast mode
[  398.658566][ T8536] bridge_slave_1: left promiscuous mode
[  398.668581][ T8536] bridge0: port 2(bridge_slave_1) entered disabled state
[  398.734593][ T8536] bridge1: port 1(bridge_slave_1) entered blocking state
[  398.742763][ T8536] bridge1: port 1(bridge_slave_1) entered disabled state
[  398.766776][ T8536] bridge_slave_1: entered allmulticast mode
[  398.788075][ T5108] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  398.815368][ T8536] bridge_slave_1: entered promiscuous mode
[  398.830613][ T8536] bridge1: port 1(bridge_slave_1) entered blocking state
[  398.837983][ T8536] bridge1: port 1(bridge_slave_1) entered forwarding state
[  398.847432][ T5096] usb 4-1: new high-speed USB device number 58 using dummy_hcd
[  398.866499][ T8541] netlink: 'syz.1.771': attribute type 10 has an invalid length.
[  398.935905][ T8541] bridge0: port 3(team0) entered disabled state
[  398.953133][ T8541] team0: left allmulticast mode
[  398.964796][ T8541] team_slave_0: left allmulticast mode
[  399.004957][ T8541] team_slave_1: left allmulticast mode
[  399.014666][ T8541] team0: left promiscuous mode
[  399.024062][ T8541] team_slave_0: left promiscuous mode
[  399.039722][ T5096] usb 4-1: Using ep0 maxpacket: 16
[  399.201223][ T8541] team_slave_1: left promiscuous mode
[  399.208279][ T8541] bridge0: port 3(team0) entered disabled state
[  399.218354][ T5096] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  399.232311][ T5096] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  399.269501][ T5096] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  400.007348][ T5096] usb 4-1: string descriptor 0 read error: -22
[  400.013675][ T5096] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  400.032139][ T5096] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.131378][ T8541] batman_adv: batadv0: Adding interface: team0
[  400.151834][ T5096] usb 4-1: 0:2 : does not exist
[  400.162873][ T8541] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  400.346941][ T8541] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  400.367000][ T5096] usb 4-1: USB disconnect, device number 58
[  400.416655][ T8540] netlink: 'syz.1.771': attribute type 10 has an invalid length.
[  400.443491][ T8540] netlink: 2 bytes leftover after parsing attributes in process `syz.1.771'.
[  400.462297][ T8540] team0: entered promiscuous mode
[  400.474172][ T8540] team_slave_0: entered promiscuous mode
[  400.483446][ T8540] team_slave_1: entered promiscuous mode
[  400.508413][ T8540] 8021q: adding VLAN 0 to HW filter on device team0
[  400.516985][ T8540] batman_adv: batadv0: Interface activated: team0
[  400.524326][ T8540] batman_adv: batadv0: Interface deactivated: team0
[  400.532467][ T8540] batman_adv: batadv0: Removing interface: team0
[  400.541640][ T8540] bridge0: port 3(team0) entered blocking state
[  400.548297][ T5149] usb 1-1: new high-speed USB device number 56 using dummy_hcd
[  400.567665][ T8540] bridge0: port 3(team0) entered disabled state
[  400.574547][ T8540] team0: entered allmulticast mode
[  400.586270][ T8540] team_slave_0: entered allmulticast mode
[  400.592542][ T8540] team_slave_1: entered allmulticast mode
[  400.626577][ T8540] bridge0: port 3(team0) entered blocking state
[  400.633062][ T8540] bridge0: port 3(team0) entered forwarding state
[  400.647111][ T8551] netlink: 248 bytes leftover after parsing attributes in process `syz.0.775'.
[  400.666034][ T8565] netlink: 4 bytes leftover after parsing attributes in process `syz.4.777'.
[  400.677537][   T46] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  400.691520][ T5208] udevd[5208]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  400.912361][ T5149] usb 1-1: Using ep0 maxpacket: 32
[  400.940204][ T5149] usb 1-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  400.975228][ T5149] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  401.007579][   T46] usb 3-1: Using ep0 maxpacket: 16
[  401.028853][   T46] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  401.045446][ T5149] usb 1-1: config 0 descriptor??
[  401.063125][   T46] usb 3-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  401.073117][ T5149] usb 1-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  401.087893][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  401.100455][ T5149] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  401.122067][   T46] usb 3-1: Product: syz
[  401.137761][   T46] usb 3-1: Manufacturer: syz
[  401.147523][ T5149] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  401.154297][   T46] usb 3-1: SerialNumber: syz
[  401.159317][ T5149] usb 1-1: media controller created
[  401.167698][   T46] usb 3-1: config 0 descriptor??
[  401.199564][   T46] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  401.207444][ T5149] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  401.218107][   T46] dw2102: su3000_power_ctrl: 1, initialized 0
[  401.229662][   T46] dvb-usb: bulk message failed: -22 (2/0)
[  401.252212][ T5149] usb 1-1: selecting invalid altsetting 1
[  401.261240][   T46] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  401.271977][ T8550] netlink: 20 bytes leftover after parsing attributes in process `syz.0.775'.
[  401.274024][ T5149] set interface failed
[  401.283667][ T5149] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  401.294858][ T5149] error writing reg: 0xff, val: 0x00
[  401.344040][ T5149] dvb_usb_mxl111sf 1-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  401.375046][ T5149] usb 1-1: USB disconnect, device number 56
[  401.483949][ T5096] usb 3-1: USB disconnect, device number 41
[  401.547913][ T8574] 9pnet_fd: Insufficient options for proto=fd
[  401.647673][ T5108] Bluetooth: hci0: SCO packet for unknown connection handle 1039
[  401.757064][ T5108] Bluetooth: hci0: unexpected event for opcode 0x0c1b
[  401.907410][ T5108] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  401.918182][ T5108] Bluetooth: hci1: Injecting HCI hardware error event
[  401.930353][ T5103] Bluetooth: hci1: hardware error 0x00
[  402.137368][ T5096] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  402.257935][ T8587] loop0: detected capacity change from 0 to 4096
[  402.342934][ T5096] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  402.367776][ T5096] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  402.383785][ T5096] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  402.398835][ T5096] usb 2-1: New USB device found, idVendor=0bb4, idProduct=0a04, bcdDevice=a3.91
[  402.411959][ T5096] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  402.421266][ T5096] usb 2-1: Product: syz
[  402.444169][ T5096] usb 2-1: Manufacturer: syz
[  402.469275][ T5096] usb 2-1: SerialNumber: syz
[  402.506080][ T5096] usb 2-1: config 0 descriptor??
[  402.591434][ T5147] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  402.815807][ T5197] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  402.847002][ T5149] usb 2-1: USB disconnect, device number 45
[  402.984435][ T5147] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  402.998900][ T5147] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  403.017375][ T5147] usb 3-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  403.067636][ T5197] usb 5-1: Using ep0 maxpacket: 16
[  403.071364][ T5147] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  403.080872][ T5197] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  403.094173][ T5147] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  403.113914][ T5197] usb 5-1: New USB device found, idVendor=1f4d, idProduct=3100, bcdDevice=90.a2
[  403.122031][ T5147] usb 3-1: Product: syz
[  403.144002][ T5197] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  403.147285][ T5147] usb 3-1: Manufacturer: syz
[  403.174551][ T5197] usb 5-1: Product: syz
[  403.176634][ T5147] usb 3-1: SerialNumber: syz
[  403.187035][ T5197] usb 5-1: Manufacturer: syz
[  403.204491][ T5197] usb 5-1: SerialNumber: syz
[  403.234516][ T5197] usb 5-1: config 0 descriptor??
[  403.274302][ T5197] dvb-usb: found a 'X3M TV SPC1400HD PCI' in warm state.
[  403.292767][ T5197] dw2102: su3000_power_ctrl: 1, initialized 0
[  403.299744][ T5197] dvb-usb: bulk message failed: -22 (2/0)
[  403.314833][ T5197] dvb-usb: X3M TV SPC1400HD PCI error while loading driver (-22)
[  403.668909][ T5096] usb 5-1: USB disconnect, device number 58
[  403.686251][ T8607] netlink: 'syz.0.789': attribute type 10 has an invalid length.
[  403.733048][ T8607] batman_adv: batadv0: Adding interface: team0
[  403.771916][ T8607] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  403.797134][    C0] vkms_vblank_simulate: vblank timer overrun
[  403.811617][ T8607] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  403.834940][ T8609] netlink: 'syz.0.789': attribute type 10 has an invalid length.
[  403.843350][ T8609] netlink: 2 bytes leftover after parsing attributes in process `syz.0.789'.
[  403.855176][ T8609] team0: entered promiscuous mode
[  403.860945][ T8609] team_slave_0: entered promiscuous mode
[  403.866996][ T8609] team_slave_1: entered promiscuous mode
[  403.886677][ T8609] 8021q: adding VLAN 0 to HW filter on device team0
[  403.899927][ T8609] batman_adv: batadv0: Interface activated: team0
[  403.906635][ T8609] batman_adv: batadv0: Interface deactivated: team0
[  403.920077][ T8609] batman_adv: batadv0: Removing interface: team0
[  403.927903][ T8609] bridge0: port 2(team0) entered blocking state
[  403.947474][ T8609] bridge0: port 2(team0) entered disabled state
[  403.955723][ T8609] team0: entered allmulticast mode
[  403.970276][ T8609] team_slave_0: entered allmulticast mode
[  403.980419][ T8609] team_slave_1: entered allmulticast mode
[  403.991820][ T8609] bridge0: port 2(team0) entered blocking state
[  403.998285][ T8609] bridge0: port 2(team0) entered forwarding state
[  404.020555][ T8592] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  404.030232][ T8592] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  404.057664][ T5147] cdc_ncm 3-1:1.0: SET_NTB_FORMAT failed
[  404.070433][ T5103] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  404.079057][ T5147] cdc_ncm 3-1:1.0: bind() failure
[  404.098253][ T5147] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  404.117432][ T5147] cdc_ncm 3-1:1.1: bind() failure
[  404.164740][ T5147] usb 3-1: USB disconnect, device number 42
[  404.771745][ T8620] netlink: 248 bytes leftover after parsing attributes in process `syz.1.793'.
[  405.211504][ T8622] loop2: detected capacity change from 0 to 40427
[  405.240447][ T8622] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  405.248349][ T8622] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  405.297509][   T46] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  405.367943][ T8622] F2FS-fs (loop2): Found nat_bits in checkpoint
[  405.606399][ T8622] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  405.614860][ T8622] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  405.627330][   T46] usb 2-1: Using ep0 maxpacket: 32
[  405.695778][   T29] kauditd_printk_skb: 57 callbacks suppressed
[  405.695798][   T29] audit: type=1326 audit(1719564966.268:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  405.753138][ T8613] loop0: detected capacity change from 0 to 40427
[  405.761629][   T29] audit: type=1326 audit(1719564966.268:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  405.766958][   T46] usb 2-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  405.798452][ T8613] F2FS-fs (loop0): invalid crc value
[  405.899095][ T5103] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  405.904622][   T29] audit: type=1326 audit(1719564966.298:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  405.909326][ T5103] Bluetooth: hci0: Injecting HCI hardware error event
[  405.935831][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  405.941482][ T5103] Bluetooth: hci0: hardware error 0x00
[  405.967356][   T46] usb 2-1: config 0 descriptor??
[  405.979848][ T8613] F2FS-fs (loop0): Found nat_bits in checkpoint
[  405.982750][   T29] audit: type=1326 audit(1719564966.298:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  406.008330][    C0] vkms_vblank_simulate: vblank timer overrun
[  406.015352][   T46] usb 2-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  406.043912][   T46] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  406.069773][   T29] audit: type=1326 audit(1719564966.298:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  406.077692][   T46] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  406.092043][    C0] vkms_vblank_simulate: vblank timer overrun
[  406.135033][   T46] usb 2-1: media controller created
[  406.170793][   T46] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  406.218008][   T46] usb 2-1: selecting invalid altsetting 1
[  406.223935][   T46] set interface failed
[  406.223968][   T46] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  406.242685][ T8617] netlink: 20 bytes leftover after parsing attributes in process `syz.1.793'.
[  406.246825][   T46] error writing reg: 0xff, val: 0x00
[  406.274944][   T29] audit: type=1326 audit(1719564966.298:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  406.287995][   T46] dvb_usb_mxl111sf 2-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  406.357102][   T46] usb 2-1: USB disconnect, device number 46
[  406.368749][   T29] audit: type=1326 audit(1719564966.298:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  406.398962][   T29] audit: type=1326 audit(1719564966.298:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  406.511343][   T29] audit: type=1326 audit(1719564966.298:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  406.518716][ T8613] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  406.789046][   T29] audit: type=1326 audit(1719564966.308:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8626 comm="syz.4.792" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f815a975b29 code=0x7ffc0000
[  406.974119][ T8640] syz.0.790: attempt to access beyond end of device
[  406.974119][ T8640] loop0: rw=2049, sector=53248, nr_sectors = 1544 limit=40427
[  407.538396][ T6747] syz-executor: attempt to access beyond end of device
[  407.538396][ T6747] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  407.568886][ T6747] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  407.614319][ T8638] loop4: detected capacity change from 0 to 4096
[  407.993288][ T5103] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  408.154941][ T5197] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[  408.345861][ T8650] netlink: 'syz.4.801': attribute type 10 has an invalid length.
[  408.368371][ T5197] usb 4-1: Using ep0 maxpacket: 16
[  408.385101][ T5197] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  408.411635][ T8650] netlink: 32 bytes leftover after parsing attributes in process `syz.4.801'.
[  408.420774][ T5197] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  408.452117][ T5197] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.493543][ T5197] usb 4-1: config 0 descriptor??
[  408.709722][ T5147] usb 1-1: new full-speed USB device number 57 using dummy_hcd
[  408.737486][ T5096] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  408.758776][ T8642] netlink: 16 bytes leftover after parsing attributes in process `syz.3.799'.
[  408.932202][ T5147] usb 1-1: not running at top speed; connect to a high speed hub
[  408.947381][ T5096] usb 2-1: Using ep0 maxpacket: 16
[  408.977124][ T5096] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  409.007442][ T5147] usb 1-1: config 1 interface 0 altsetting 255 endpoint 0x81 has invalid wMaxPacketSize 0
[  409.045526][ T5096] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  409.065256][ T5147] usb 1-1: config 1 interface 0 altsetting 255 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  409.095430][ T5096] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  409.124447][ T5147] usb 1-1: config 1 interface 0 has no altsetting 0
[  409.138557][ T5096] usb 2-1: config 0 descriptor??
[  409.153591][ T8647] loop2: detected capacity change from 0 to 40427
[  409.171903][ T8647] F2FS-fs (loop2): invalid crc value
[  409.184108][ T5147] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  409.207333][ T8647] F2FS-fs (loop2): Found nat_bits in checkpoint
[  409.255667][ T5147] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  409.275840][ T5147] usb 1-1: Product: ࠬ
[  409.286618][ T5147] usb 1-1: Manufacturer: 倊
[  409.297357][ T5147] usb 1-1: SerialNumber: п
[  409.322370][ T8652] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  409.326690][ T8647] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  409.330055][ T8642] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.388082][ T8642] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  409.400911][ T8655] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  409.418876][ T8655] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  409.434911][ T8642] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.460627][ T8642] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  409.577038][ T8652] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.660501][ T8652] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  409.680796][ T5197] hid-generic 0003:0158:0100.002F: unknown main item tag 0x1
[  409.689054][ T5197] hid-generic 0003:0158:0100.002F: unexpected long global item
[  409.697519][ T5197] hid-generic 0003:0158:0100.002F: probe with driver hid-generic failed with error -22
[  409.722958][ T8652] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.735627][ T8652] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  409.757524][ T8652] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.800797][ T8652] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  409.879484][ T8671] syz.2.796: attempt to access beyond end of device
[  409.879484][ T8671] loop2: rw=2049, sector=53248, nr_sectors = 1544 limit=40427
[  409.975531][ T8655] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  410.137145][ T8655] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  410.170259][ T5197] usb 4-1: USB disconnect, device number 59
[  410.540967][ T6940] syz-executor: attempt to access beyond end of device
[  410.540967][ T6940] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  410.541682][ T5096] hid (null): invalid report_size 1684763247
[  410.568651][ T5147] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22
[  410.582820][ T5147] usb 1-1: USB disconnect, device number 57
[  410.593219][ T6940] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  410.605680][ T5096] hid-generic 0003:0158:0100.0030: unknown main item tag 0x1
[  410.614084][ T5096] hid-generic 0003:0158:0100.0030: unexpected long global item
[  410.624838][ T5096] hid-generic 0003:0158:0100.0030: probe with driver hid-generic failed with error -22
[  410.643773][ T5096] usb 2-1: USB disconnect, device number 47
[  411.232904][ T8673] loop0: detected capacity change from 0 to 40427
[  411.245717][ T8673] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  411.253680][ T8673] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  411.328149][ T8673] F2FS-fs (loop0): Found nat_bits in checkpoint
[  411.582732][   T29] kauditd_printk_skb: 31 callbacks suppressed
[  411.586623][   T29] audit: type=1326 audit(1719564972.158:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  411.639027][   T29] audit: type=1326 audit(1719564972.158:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  411.661338][    C0] vkms_vblank_simulate: vblank timer overrun
[  411.674210][ T8673] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  411.681812][ T8673] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  411.724233][   T29] audit: type=1326 audit(1719564972.158:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  411.754745][   T29] audit: type=1326 audit(1719564972.158:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  411.845125][   T29] audit: type=1326 audit(1719564972.158:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  412.021579][   T29] audit: type=1326 audit(1719564972.158:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  412.057577][   T29] audit: type=1326 audit(1719564972.158:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  412.103974][   T29] audit: type=1326 audit(1719564972.158:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  412.126266][    C0] vkms_vblank_simulate: vblank timer overrun
[  412.153834][   T29] audit: type=1326 audit(1719564972.158:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  412.176096][    C0] vkms_vblank_simulate: vblank timer overrun
[  412.186988][ T6747] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  412.203576][ T6747] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  412.212211][   T29] audit: type=1326 audit(1719564972.158:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  412.236151][ T6747] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  412.277342][ T6747] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  412.422193][ T6747] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  412.447478][ T6747] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  412.455276][ T6747] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  412.497462][   T46] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[  412.525332][ T8690] loop4: detected capacity change from 0 to 4096
[  412.715430][   T46] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  412.740389][   T46] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  412.759116][   T46] usb 3-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  412.776112][   T46] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  412.799971][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  412.817378][   T46] usb 3-1: Product: syz
[  412.826150][   T46] usb 3-1: Manufacturer: syz
[  412.836544][   T46] usb 3-1: SerialNumber: syz
[  413.333198][ T8686] loop3: detected capacity change from 0 to 40427
[  413.446976][ T8686] F2FS-fs (loop3): invalid crc value
[  413.530816][ T8686] F2FS-fs (loop3): Found nat_bits in checkpoint
[  413.641423][ T8705] netlink: 248 bytes leftover after parsing attributes in process `syz.0.810'.
[  413.664450][ T8686] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  413.679076][ T8688] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  413.696053][ T8688] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  413.712483][   T46] cdc_ncm 3-1:1.0: SET_NTB_FORMAT failed
[  413.761673][   T46] cdc_ncm 3-1:1.0: bind() failure
[  413.796084][   T46] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  413.833378][   T46] cdc_ncm 3-1:1.1: bind() failure
[  413.880324][   T46] usb 3-1: USB disconnect, device number 43
[  414.243767][ T8710] syz.3.809: attempt to access beyond end of device
[  414.243767][ T8710] loop3: rw=2049, sector=53248, nr_sectors = 1544 limit=40427
[  414.336194][ T5147] usb 1-1: new high-speed USB device number 58 using dummy_hcd
[  414.823364][ T6576] syz-executor: attempt to access beyond end of device
[  414.823364][ T6576] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  414.848630][ T6576] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  415.007541][ T5147] usb 1-1: Using ep0 maxpacket: 32
[  415.017102][ T5147] usb 1-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  415.052301][ T5147] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.078633][ T5147] usb 1-1: config 0 descriptor??
[  415.090733][ T5147] usb 1-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  415.126618][ T5147] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  415.157862][ T5147] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  415.173681][ T5147] usb 1-1: media controller created
[  415.227092][ T5147] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  415.268314][ T5147] usb 1-1: selecting invalid altsetting 1
[  415.274102][ T5147] set interface failed
[  415.274133][ T5147] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  415.288013][    T8] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  415.303491][ T8701] netlink: 20 bytes leftover after parsing attributes in process `syz.0.810'.
[  415.317447][ T5147] error writing reg: 0xff, val: 0x00
[  415.494888][ T5147] dvb_usb_mxl111sf 1-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  415.525787][ T5147] usb 1-1: USB disconnect, device number 58
[  415.548153][    T8] usb 2-1: Using ep0 maxpacket: 16
[  415.573886][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  415.595112][    T8] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  415.623081][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.655673][    T8] usb 2-1: config 0 descriptor??
[  415.895611][ T8716] overlayfs: missing 'lowerdir'
[  416.220894][ T8716] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  416.251329][ T8716] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  416.275453][ T8714] loop4: detected capacity change from 0 to 40427
[  416.353247][ T8714] F2FS-fs (loop4): invalid crc value
[  416.402116][ T8714] F2FS-fs (loop4): Found nat_bits in checkpoint
[  416.612223][ T8714] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  416.690088][ T8726] loop2: detected capacity change from 0 to 40427
[  416.708077][    T8] hid (null): invalid report_size 1684763247
[  416.720475][    T8] hid-generic 0003:0158:0100.0031: unknown main item tag 0x1
[  416.728419][ T8726] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  416.736208][ T8726] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  416.748282][    T8] hid-generic 0003:0158:0100.0031: unexpected long global item
[  416.757010][    T8] hid-generic 0003:0158:0100.0031: probe with driver hid-generic failed with error -22
[  416.779215][    T8] usb 2-1: USB disconnect, device number 48
[  416.866975][ T8726] F2FS-fs (loop2): Found nat_bits in checkpoint
[  416.917447][ T5147] usb 1-1: new high-speed USB device number 59 using dummy_hcd
[  416.948885][ T8726] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  416.956090][ T8726] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  417.148212][ T8736] syz.4.817: attempt to access beyond end of device
[  417.148212][ T8736] loop4: rw=2049, sector=53248, nr_sectors = 1544 limit=40427
[  417.235774][   T29] kauditd_printk_skb: 30 callbacks suppressed
[  417.235822][   T29] audit: type=1800 audit(1719564977.618:386): pid=8736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.817" name="file2" dev="loop4" ino=10 res=0 errno=0
[  417.728759][ T5147] usb 1-1: Using ep0 maxpacket: 16
[  417.833189][ T5147] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  417.845286][ T5147] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  417.847704][ T7206] syz-executor: attempt to access beyond end of device
[  417.847704][ T7206] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  417.856332][ T5147] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  417.890076][ T5147] usb 1-1: config 0 descriptor??
[  417.922948][ T7206] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  417.951897][ T8721] loop3: detected capacity change from 0 to 40427
[  417.981488][ T8721] F2FS-fs (loop3): invalid crc value
[  418.023477][ T8721] F2FS-fs (loop3): Found nat_bits in checkpoint
[  418.152476][ T8724] netlink: 16 bytes leftover after parsing attributes in process `syz.0.820'.
[  418.277865][ T8743] loop1: detected capacity change from 0 to 4096
[  418.286706][ T8721] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  418.832124][ T8749] syz.3.816: attempt to access beyond end of device
[  418.832124][ T8749] loop3: rw=2049, sector=53248, nr_sectors = 1544 limit=40427
[  418.978025][   T29] audit: type=1800 audit(1719564979.318:387): pid=8749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.816" name="file2" dev="loop3" ino=10 res=0 errno=0
[  419.477265][ T5147] usbhid 1-1:0.0: can't add hid device: -71
[  419.495854][ T5147] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  419.504968][ T6576] syz-executor: attempt to access beyond end of device
[  419.504968][ T6576] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  419.510022][ T5147] usb 1-1: USB disconnect, device number 59
[  419.538343][ T6576] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  419.737295][ T5149] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[  419.950935][ T5149] usb 5-1: Using ep0 maxpacket: 16
[  419.985070][ T5149] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  420.029604][ T5149] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  420.087400][ T5149] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  420.125187][ T5149] usb 5-1: config 0 descriptor??
[  420.423830][ T8751] fscrypt: key with description 'fscrypt:0000111122223333' has invalid payload
[  420.473169][ T8751] fscrypt: key with description 'fscrypt:0000111122223333' has invalid payload
[  420.526431][ T8751] overlayfs: failed to create directory ./bus/work (errno: 126); mounting read-only
[  420.714946][ T8763] netlink: 'syz.0.828': attribute type 41 has an invalid length.
[  420.724577][ T8751] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  420.772523][ T8751] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  420.815551][ T5149] hid (null): unknown global tag 0x83
[  420.834109][ T5149] hid (null): unknown global tag 0xd
[  420.854077][ T5149] hid-generic 0003:0158:0100.0032: unknown main item tag 0x1
[  420.921146][ T5149] hid-generic 0003:0158:0100.0032: unexpected long global item
[  420.938260][ T5149] hid-generic 0003:0158:0100.0032: probe with driver hid-generic failed with error -22
[  421.054640][ T5096] usb 5-1: USB disconnect, device number 59
[  421.204884][ T8774] netlink: 248 bytes leftover after parsing attributes in process `syz.1.830'.
[  421.497378][ T5149] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[  421.707335][ T5149] usb 2-1: Using ep0 maxpacket: 32
[  421.715485][ T5149] usb 2-1: New USB device found, idVendor=2040, idProduct=c602, bcdDevice= 1.8e
[  421.747473][ T5149] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  421.810883][ T5149] usb 2-1: config 0 descriptor??
[  421.839631][ T5149] usb 2-1: dvb_usb_v2: found a 'HCW 126xxx' in warm state
[  421.873782][ T5149] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  421.926544][ T5149] dvbdev: DVB: registering new adapter (HCW 126xxx)
[  421.953533][ T5149] usb 2-1: media controller created
[  422.039994][ T8773] netlink: 20 bytes leftover after parsing attributes in process `syz.1.830'.
[  422.062020][ T5149] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  422.164467][ T5149] usb 2-1: selecting invalid altsetting 1
[  422.178234][ T5149] set interface failed
[  422.178432][ T5149] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  422.211941][ T5149] error writing reg: 0xff, val: 0x00
[  422.270598][ T5197] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  422.281386][ T8768] loop3: detected capacity change from 0 to 40427
[  422.331778][ T8768] F2FS-fs (loop3): invalid crc value
[  422.365866][ T5149] dvb_usb_mxl111sf 2-1:0.0: probe with driver dvb_usb_mxl111sf failed with error -22
[  422.376887][ T8768] F2FS-fs (loop3): Found nat_bits in checkpoint
[  422.391590][ T5149] usb 2-1: USB disconnect, device number 49
[  422.477331][ T5197] usb 5-1: Using ep0 maxpacket: 16
[  422.495255][ T5197] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  422.514883][ T5197] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  422.525006][ T5197] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  422.577993][ T5197] usb 5-1: config 0 descriptor??
[  422.658513][ T8768] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  422.941780][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.832'.
[  423.075732][ T8776] loop0: detected capacity change from 0 to 40427
[  423.586781][ T8787] loop2: detected capacity change from 0 to 40427
[  423.791308][ T8789] syz.3.825: attempt to access beyond end of device
[  423.791308][ T8789] loop3: rw=2049, sector=53248, nr_sectors = 1544 limit=40427
[  423.867610][   T29] audit: type=1800 audit(1719564983.908:388): pid=8789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.825" name="file2" dev="loop3" ino=10 res=0 errno=0
[  423.905596][ T8787] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  423.913741][ T8787] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  424.080753][ T8776] F2FS-fs (loop0): invalid crc value
[  424.095128][ T8787] F2FS-fs (loop2): Found nat_bits in checkpoint
[  424.178872][ T8787] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  424.186150][ T8787] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  424.238459][ T5096] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[  424.391122][ T6576] syz-executor: attempt to access beyond end of device
[  424.391122][ T6576] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  424.425469][ T6576] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  424.433728][ T8776] F2FS-fs (loop0): Found nat_bits in checkpoint
[  424.548522][ T5096] usb 2-1: Using ep0 maxpacket: 16
[  424.601906][ T5096] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  424.613663][ T5096] usb 2-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  424.623332][ T5096] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.677361][ T5096] usb 2-1: config 0 descriptor??
[  424.705450][ T8778] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  424.712447][ T6940] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  424.737044][ T8778] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  424.766892][ T8778] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  424.794027][ T6940] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  424.817556][ T8778] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  424.823137][ T6940] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  424.845295][ T6940] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  424.854186][ T6940] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  424.866753][ T6940] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  424.875129][ T6940] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  424.894459][ T8784] overlayfs: missing 'lowerdir'
[  424.904137][ T5197] hid-generic 0003:0158:0100.0033: unknown main item tag 0x1
[  424.915178][ T5197] hid-generic 0003:0158:0100.0033: unexpected long global item
[  424.933393][ T5197] hid-generic 0003:0158:0100.0033: probe with driver hid-generic failed with error -22
[  425.151830][ T5197] usb 5-1: USB disconnect, device number 60
[  425.351467][ T8784] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  425.371221][ T8784] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  425.416983][ T5096] hid (null): invalid report_size 1684763247
[  425.454485][ T5096] hid-generic 0003:0158:0100.0034: unknown main item tag 0x1
[  425.479680][ T5096] hid-generic 0003:0158:0100.0034: unexpected long global item
[  425.498374][ T5096] hid-generic 0003:0158:0100.0034: probe with driver hid-generic failed with error -22
[  425.633619][ T5096] usb 2-1: USB disconnect, device number 50
[  426.340195][ T8815] netlink: 'syz.3.839': attribute type 10 has an invalid length.
[  426.391104][   T29] audit: type=1326 audit(1719564986.968:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8818 comm="syz.1.840" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x0
[  426.401477][ T8815] netlink: 32 bytes leftover after parsing attributes in process `syz.3.839'.
[  426.431884][ T8816] loop2: detected capacity change from 0 to 4096
[  426.958366][    T8] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[  427.169423][    T8] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  427.222267][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  427.288981][    T8] usb 4-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  427.413116][    T8] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  427.430418][ T8833] loop0: detected capacity change from 0 to 40427
[  427.440427][ T8833] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  427.448319][ T8833] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  427.461271][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  427.501890][ T8833] F2FS-fs (loop0): Found nat_bits in checkpoint
[  427.502764][    T8] usb 4-1: Product: syz
[  427.554984][    T8] usb 4-1: Manufacturer: syz
[  427.579353][ T8833] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  427.584286][    T8] usb 4-1: SerialNumber: syz
[  427.586475][ T8833] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  428.500179][ T8860] loop2: detected capacity change from 0 to 2048
[  428.562624][ T8829] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  428.610037][ T8860] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  428.612398][ T8829] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  428.647528][ T8860] ext4 filesystem being mounted at /root/syzkaller.6QyRxZ/83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  428.681762][    T8] cdc_ncm 4-1:1.0: SET_NTB_FORMAT failed
[  428.702402][ T8865] usb usb8: usbfs: process 8865 (syz.1.856) did not claim interface 0 before use
[  428.728005][    T8] cdc_ncm 4-1:1.0: bind() failure
[  428.767020][    T8] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  428.768927][ T6940] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.825192][    T8] cdc_ncm 4-1:1.1: bind() failure
[  428.853246][    T8] usb 4-1: USB disconnect, device number 60
[  429.108989][   T29] audit: type=1326 audit(1719564989.638:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.205280][   T29] audit: type=1326 audit(1719564989.638:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.348336][   T29] audit: type=1326 audit(1719564989.638:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.392752][   T29] audit: type=1326 audit(1719564989.638:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.435386][   T29] audit: type=1326 audit(1719564989.638:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.486101][   T29] audit: type=1326 audit(1719564989.638:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.546431][   T29] audit: type=1326 audit(1719564989.638:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.570382][   T29] audit: type=1326 audit(1719564989.638:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.594229][   T29] audit: type=1326 audit(1719564989.638:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  429.616721][   T29] audit: type=1326 audit(1719564989.648:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8868 comm="syz.1.859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe299975b29 code=0x7ffc0000
[  431.256854][ T8902] loop1: detected capacity change from 0 to 512
[  431.440511][ T8902] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  431.469386][ T8902] ext4 filesystem being mounted at /root/syzkaller.1VWqB3/68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  432.230485][ T7563] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.548933][ T8929] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  433.611600][ T5096] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[  433.785059][ T8936] loop3: detected capacity change from 0 to 256
[  433.824911][ T8936] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  433.849931][ T5096] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  433.887146][ T5096] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  433.926775][ T5096] usb 2-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  433.967958][ T5096] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  433.984120][ T5096] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  433.993065][ T5096] usb 2-1: Product: syz
[  433.998645][ T5096] usb 2-1: Manufacturer: syz
[  434.003566][ T5096] usb 2-1: SerialNumber: syz
[  434.057692][ T5147] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[  434.259475][ T5147] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  434.277366][ T5147] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  434.297250][ T5147] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  434.306443][ T5147] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  434.327399][   T46] usb 1-1: new high-speed USB device number 60 using dummy_hcd
[  434.367656][ T8935] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  434.521791][   T46] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  434.546833][   T46] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  434.565751][   T46] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  434.583250][   T46] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  434.614075][   T46] usb 1-1: config 0 descriptor??
[  434.846514][ T8927] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  434.876107][ T8927] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  434.915470][ T5096] cdc_ncm 2-1:1.0: SET_NTB_FORMAT failed
[  434.937766][ T8946] loop3: detected capacity change from 0 to 4096
[  434.947913][ T5096] cdc_ncm 2-1:1.0: bind() failure
[  434.965838][ T5096] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  434.979610][ T5096] cdc_ncm 2-1:1.1: bind() failure
[  435.009631][ T5096] usb 2-1: USB disconnect, device number 51
[  435.253380][   T46] usb 1-1: language id specifier not provided by device, defaulting to English
[  435.449063][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  435.970399][   T46] uclogic 0003:256C:006D.0035: failed retrieving string descriptor #100: -71
[  436.199654][   T46] uclogic 0003:256C:006D.0035: failed retrieving pen parameters: -71
[  436.243782][ T5147] aiptek 3-1:17.0: Aiptek using 400 ms programming speed
[  436.247632][   T46] uclogic 0003:256C:006D.0035: failed probing pen v1 parameters: -71
[  436.259546][ T5147] input: Aiptek as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:17.0/input/input26
[  436.346484][ T5147] usb 3-1: USB disconnect, device number 44
[  436.346545][    C0] aiptek 3-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  436.578057][   T46] uclogic 0003:256C:006D.0035: failed probing parameters: -71
[  436.586504][   T46] uclogic 0003:256C:006D.0035: probe with driver uclogic failed with error -71
[  436.628361][   T46] usb 1-1: USB disconnect, device number 60
[  438.875716][ T8976] loop2: detected capacity change from 0 to 512
[  438.893242][   T29] kauditd_printk_skb: 33 callbacks suppressed
[  438.893266][   T29] audit: type=1804 audit(1719564999.468:433): pid=8968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.887" name="/root/syzkaller.FzrO3I/94/bus" dev="sda1" ino=1993 res=1 errno=0
[  438.993137][   T29] audit: type=1804 audit(1719564999.508:434): pid=8968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.887" name="/root/syzkaller.FzrO3I/94/bus" dev="sda1" ino=1993 res=1 errno=0
[  439.079357][   T29] audit: type=1804 audit(1719564999.608:435): pid=8968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.887" name="/root/syzkaller.FzrO3I/94/bus" dev="sda1" ino=1993 res=1 errno=0
[  439.112462][ T8976] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[  439.249574][ T8976] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.890: attempt to clear invalid blocks 1024 len 1
[  439.280228][ T8976] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.890: invalid indirect mapped block 1819239214 (level 0)
[  439.458947][ T8976] EXT4-fs (loop2): 1 truncate cleaned up
[  439.478624][ T8976] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  439.577323][   T46] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[  439.708720][ T6940] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.787293][   T46] usb 4-1: Using ep0 maxpacket: 16
[  439.808311][   T46] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  439.843577][   T46] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  439.868800][   T46] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.910066][   T46] usb 4-1: config 0 descriptor??
[  439.927603][ T8986] loop4: detected capacity change from 0 to 4096
[  440.360553][   T46] usbhid 4-1:0.0: can't add hid device: -71
[  440.440797][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  440.447298][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  441.776386][   T46] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  441.828359][   T46] usb 4-1: USB disconnect, device number 61
[  442.117310][ T8998] capability: warning: `syz.2.897' uses deprecated v2 capabilities in a way that may be insecure
[  442.311426][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  443.041684][ T9005] loop2: detected capacity change from 0 to 128
[  444.192386][   T29] audit: type=1804 audit(1719565004.768:436): pid=9026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.907" name="/root/syzkaller.FzrO3I/98/bus" dev="sda1" ino=1988 res=1 errno=0
[  444.296573][   T29] audit: type=1804 audit(1719565004.798:437): pid=9026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.907" name="/root/syzkaller.FzrO3I/98/bus" dev="sda1" ino=1988 res=1 errno=0
[  444.318199][    C1] vkms_vblank_simulate: vblank timer overrun
[  444.393436][   T29] audit: type=1804 audit(1719565004.818:438): pid=9026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.907" name="/root/syzkaller.FzrO3I/98/bus" dev="sda1" ino=1988 res=1 errno=0
[  444.564868][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies.
[  444.613759][ T9035] loop0: detected capacity change from 0 to 16384
[  444.784925][ T1023] I/O error, dev loop0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[  444.796810][ T1023] Buffer I/O error on dev loop0, logical block 0, lost async page write
[  444.920600][ T9042] I/O error, dev loop0, sector 8 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[  444.950618][ T9035] I/O error, dev loop0, sector 1024 op 0x0:(READ) flags 0x80700 phys_seg 17 prio class 0
[  444.967727][ T9045] serio: Serial port pts0
[  444.977765][ T9042] Buffer I/O error on dev loop0, logical block 1, lost async page write
[  445.017911][   T46] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[  445.218847][   T46] usb 3-1: Using ep0 maxpacket: 16
[  445.240841][   T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  445.262504][   T46] usb 3-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  445.281624][   T46] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  445.297037][   T46] usb 3-1: config 0 descriptor??
[  445.623621][   T46] usbhid 3-1:0.0: can't add hid device: -71
[  445.636117][   T46] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  445.655720][   T46] usb 3-1: USB disconnect, device number 45
[  446.646061][ T9073] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000193: 0000 [#1] PREEMPT SMP KASAN PTI
[  446.646095][ T9073] KASAN: null-ptr-deref in range [0x0000000000000c98-0x0000000000000c9f]
[  446.646121][ T9073] CPU: 0 UID: 0 PID: 9073 Comm: syz.3.921 Not tainted 6.10.0-rc5-next-20240627-syzkaller #0
[  446.646148][ T9073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  446.646163][ T9073] RIP: 0010:coalesce_fill_reply+0xcc/0x1b70
[  446.646211][ T9073] Code: e8 b9 b2 ef f7 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 83 7b 56 f8 bb 98 0c 00 00 49 03 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 65 7b 56 f8 48 8b 03 48 89 44 24
[  446.646230][ T9073] RSP: 0018:ffffc9000dcfeee0 EFLAGS: 00010206
[  446.646251][ T9073] RAX: 0000000000000193 RBX: 0000000000000c98 RCX: 0000000000040000
[  446.646266][ T9073] RDX: ffffc90009332000 RSI: 0000000000003036 RDI: 0000000000003037
[  446.646282][ T9073] RBP: ffffc9000dcff118 R08: ffffffff89a283d7 R09: 006e75745f7a7973
[  446.646299][ T9073] R10: dffffc0000000000 R11: ffffffff89a3cb00 R12: ffffffff89a3cb00
[  446.646315][ T9073] R13: dffffc0000000000 R14: ffff8880228a8840 R15: ffff88807bac53c0
[  446.646332][ T9073] FS:  00007f74248c16c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  446.646352][ T9073] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  446.646368][ T9073] CR2: 00007f815aad1178 CR3: 000000006ceae000 CR4: 00000000003506f0
[  446.646388][ T9073] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  446.646402][ T9073] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  446.646417][ T9073] Call Trace:
[  446.646426][ T9073]  <TASK>
[  446.646435][ T9073]  ? __die_body+0x88/0xe0
[  446.646470][ T9073]  ? die_addr+0x108/0x140
[  446.646505][ T9073]  ? exc_general_protection+0x3dd/0x5d0
[  446.646549][ T9073]  ? asm_exc_general_protection+0x26/0x30
[  446.646578][ T9073]  ? __pfx_coalesce_fill_reply+0x10/0x10
[  446.646612][ T9073]  ? __pfx_coalesce_fill_reply+0x10/0x10
[  446.646646][ T9073]  ? ethnl_default_dumpit+0x517/0xb30
[  446.646673][ T9073]  ? coalesce_fill_reply+0xcc/0x1b70
[  446.646708][ T9073]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  446.646741][ T9073]  ? synchronize_rcu+0x11b/0x360
[  446.646776][ T9073]  ? __pfx_synchronize_rcu+0x10/0x10
[  446.646810][ T9073]  ? __pfx_coalesce_fill_reply+0x10/0x10
[  446.646846][ T9073]  ? rcu_is_watching+0x15/0xb0
[  446.646880][ T9073]  ? nla_put+0x131/0x1e0
[  446.646914][ T9073]  ? __asan_memcpy+0x40/0x70
[  446.646936][ T9073]  ? nla_put+0x131/0x1e0
[  446.646969][ T9073]  ? ethnl_fill_reply_header+0x295/0x3c0
[  446.646995][ T9073]  ? __pfx_netdev_run_todo+0x10/0x10
[  446.647029][ T9073]  ? __pfx_ethnl_fill_reply_header+0x10/0x10
[  446.647066][ T9073]  ? ethnl_ops_complete+0xba/0xd0
[  446.647090][ T9073]  ? coalesce_prepare_data+0x175/0x1e0
[  446.647123][ T9073]  ? __pfx_coalesce_fill_reply+0x10/0x10
[  446.647156][ T9073]  ? ethnl_default_dumpit+0x83/0xb30
[  446.647183][ T9073]  ethnl_default_dumpit+0x5ac/0xb30
[  446.647215][ T9073]  ? ethnl_default_dumpit+0x83/0xb30
[  446.647245][ T9073]  genl_dumpit+0x107/0x1a0
[  446.647278][ T9073]  netlink_dump+0x647/0xd80
[  446.647309][ T9073]  ? __pfx_netlink_dump+0x10/0x10
[  446.647342][ T9073]  ? genl_start+0x597/0x6d0
[  446.647376][ T9073]  __netlink_dump_start+0x59f/0x780
[  446.647405][ T9073]  genl_rcv_msg+0x88c/0xec0
[  446.647436][ T9073]  ? mark_lock+0x9a/0x360
[  446.647472][ T9073]  ? __pfx_genl_rcv_msg+0x10/0x10
[  446.647505][ T9073]  ? __pfx_genl_start+0x10/0x10
[  446.647535][ T9073]  ? __pfx_genl_dumpit+0x10/0x10
[  446.647565][ T9073]  ? __pfx_genl_done+0x10/0x10
[  446.647603][ T9073]  ? __pfx_lock_acquire+0x10/0x10
[  446.647630][ T9073]  ? __pfx_ethnl_default_start+0x10/0x10
[  446.647655][ T9073]  ? __pfx_ethnl_default_dumpit+0x10/0x10
[  446.647679][ T9073]  ? __pfx_ethnl_default_done+0x10/0x10
[  446.647706][ T9073]  ? __pfx___might_resched+0x10/0x10
[  446.647739][ T9073]  netlink_rcv_skb+0x1e3/0x430
[  446.647764][ T9073]  ? __pfx_genl_rcv_msg+0x10/0x10
[  446.647796][ T9073]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  446.647828][ T9073]  ? __netlink_deliver_tap+0x77e/0x7c0
[  446.647862][ T9073]  genl_rcv+0x28/0x40
[  446.647891][ T9073]  netlink_unicast+0x7f0/0x990
[  446.647919][ T9073]  ? __pfx_netlink_unicast+0x10/0x10
[  446.647940][ T9073]  ? __virt_addr_valid+0x183/0x530
[  446.647972][ T9073]  ? __check_object_size+0x49c/0x900
[  446.648000][ T9073]  ? bpf_lsm_netlink_send+0x9/0x10
[  446.648031][ T9073]  netlink_sendmsg+0x8e4/0xcb0
[  446.648066][ T9073]  ? __pfx_netlink_sendmsg+0x10/0x10
[  446.648093][ T9073]  ? __import_iovec+0x536/0x820
[  446.648113][ T9073]  ? aa_sock_msg_perm+0x91/0x160
[  446.648147][ T9073]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  446.648178][ T9073]  ? security_socket_sendmsg+0x87/0xb0
[  446.648248][ T9073]  ? __pfx_netlink_sendmsg+0x10/0x10
[  446.648275][ T9073]  __sock_sendmsg+0x221/0x270
[  446.648303][ T9073]  ____sys_sendmsg+0x525/0x7d0
[  446.648342][ T9073]  ? __pfx_____sys_sendmsg+0x10/0x10
[  446.648383][ T9073]  __sys_sendmsg+0x2b0/0x3a0
[  446.648417][ T9073]  ? __pfx___sys_sendmsg+0x10/0x10
[  446.648475][ T9073]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  446.648507][ T9073]  ? do_syscall_64+0x100/0x230
[  446.648530][ T9073]  ? do_syscall_64+0xb6/0x230
[  446.648554][ T9073]  do_syscall_64+0xf3/0x230
[  446.648577][ T9073]  ? clear_bhb_loop+0x35/0x90
[  446.648607][ T9073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  446.648646][ T9073] RIP: 0033:0x7f7423b75b29
[  446.648671][ T9073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  446.648691][ T9073] RSP: 002b:00007f74248c1048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  446.648717][ T9073] RAX: ffffffffffffffda RBX: 00007f7423d03fa0 RCX: 00007f7423b75b29
[  446.648735][ T9073] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  446.648750][ T9073] RBP: 00007f7423bf6756 R08: 0000000000000000 R09: 0000000000000000
[  446.648764][ T9073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  446.648777][ T9073] R13: 000000000000000b R14: 00007f7423d03fa0 R15: 00007fff5dd764a8
[  446.648801][ T9073]  </TASK>
[  446.648808][ T9073] Modules linked in:
[  446.649206][ T9073] ---[ end trace 0000000000000000 ]---
[  447.258115][ T9073] RIP: 0010:coalesce_fill_reply+0xcc/0x1b70
[  447.287711][ T9073] Code: e8 b9 b2 ef f7 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 83 7b 56 f8 bb 98 0c 00 00 49 03 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 65 7b 56 f8 48 8b 03 48 89 44 24
[  447.309618][ T9073] RSP: 0018:ffffc9000dcfeee0 EFLAGS: 00010206
[  447.315842][ T9073] RAX: 0000000000000193 RBX: 0000000000000c98 RCX: 0000000000040000
[  447.326160][ T9073] RDX: ffffc90009332000 RSI: 0000000000003036 RDI: 0000000000003037
[  447.339440][ T9073] RBP: ffffc9000dcff118 R08: ffffffff89a283d7 R09: 006e75745f7a7973
[  447.347744][ T9073] R10: dffffc0000000000 R11: ffffffff89a3cb00 R12: ffffffff89a3cb00
[  447.355871][ T9073] R13: dffffc0000000000 R14: ffff8880228a8840 R15: ffff88807bac53c0
[  447.366613][ T9073] FS:  00007f74248c16c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  447.377341][ T9073] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  447.400297][ T9073] CR2: 00007f04e151dfa8 CR3: 000000006ceae000 CR4: 00000000003506f0
[  447.408604][ T9073] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  447.416731][ T9073] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  447.424960][ T9073] Kernel panic - not syncing: Fatal exception
[  447.431315][ T9073] Kernel Offset: disabled
[  447.435740][ T9073] Rebooting in 86400 seconds..