last executing test programs:

52.487208766s ago: executing program 4 (id=694):
socket$inet(0x2, 0x0, 0x0)
socket$kcm(0x2, 0x0, 0x2)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
socket$rds(0x15, 0x5, 0x0)
openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000340)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="e757"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

48.50681575s ago: executing program 4 (id=705):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r3, @ANYBLOB="0000000a010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, r4}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @remote}, @IFLA_IPTUN_TTL={0x5}, @IFLA_IPTUN_TOS={0x5}]}}}]}, 0x48}}, 0x0)

47.461308885s ago: executing program 4 (id=707):
openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder-control\x00', 0x0, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r0 = socket$rds(0x15, 0x5, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240))
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$rds(r0, &(0x7f0000002180)={0x0, 0x0, 0x0}, 0x0)
r3 = fsopen(&(0x7f0000000040)='nfsd\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)

16.394509253s ago: executing program 2 (id=768):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
r1 = io_uring_setup(0x1698, &(0x7f0000000140)={0x0, 0x3, 0x0, 0xfffffffc, 0x4})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1)
munmap(&(0x7f00001a2000/0x1000)=nil, 0x1000)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000200), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYBLOB="0100"])
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_GET_NESTED_STATE(r5, 0xc048aeca, &(0x7f0000005580)={{0x0, 0x0, 0x80}})

14.823411583s ago: executing program 2 (id=773):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, 0x0)
r2 = epoll_create(0x47f)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000540))
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x2, 0x4})
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x1)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000640), 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000060c0)="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", 0x2000, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000caefb8)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="85000000610000005400000000000000950000c1810000000000b4a8b154120610000000c79077fa15ba36eca61299de67cf77c9062430bc068829afff36b31fa7e35ce95d04"], &(0x7f0000000280)='syzkaller\x00', 0x1}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r5, 0x2000000, 0xe40, 0x0, &(0x7f0000000240)="5cdd3086ddff0066b3c9bbac88a8862c00dffd0013dd00000000000000008100f5df86dd", 0x0, 0x15d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'macvtap0\x00', 0x3601})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0)
preadv(r6, &(0x7f00000002c0)=[{&(0x7f0000000580)=""/4078, 0xfffffffffffffccc}, {&(0x7f00000000c0)=""/46}], 0x10000000000000aa, 0xc6, 0x3)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f00000011c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r7, &(0x7f0000002440)={0x0, 0x0, &(0x7f0000002400)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="290200000000000000000300000008000400000000005db792c29c3c6ae2fbde8919ab6d7504be4877881440f6b64849046921312c789a07b87852463a219d2a9c3f"], 0x1c}}, 0x0)
syz_usb_connect(0x5, 0xe4, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000017ffd340b1134200bbdf000000010902d200010000400009046a00067af4190009050f102000050801060c8b631b7507250102020700090501", @ANYRES32], 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xff2e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))

11.124219595s ago: executing program 2 (id=779):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
clock_gettime(0x4, &(0x7f0000000080))
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
inotify_init1(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x1, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000300)={0x2020, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
capset(&(0x7f0000000000)={0x20080522, r1}, &(0x7f0000000040)={0xfb, 0x0, 0x6, 0x0, 0x8, 0x2})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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")
open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='ext4_sync_file_enter\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x100002, 0x0)
write$cgroup_int(r4, &(0x7f0000000200)=0x4, 0x12)

11.076643286s ago: executing program 1 (id=780):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbee6, 0x4010, r0, 0x132ca000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x20000050)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x14552, &(0x7f0000000240)=ANY=[], 0xfe, 0x11f3, &(0x7f0000000980)="$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")
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, &(0x7f0000000280))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x0, 0x200000, 0x2000, &(0x7f0000000000/0x2000)=nil})

9.935936161s ago: executing program 1 (id=782):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0x3, 0x0, 0xfffffffc, 0x4})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1)
munmap(&(0x7f00001a2000/0x1000)=nil, 0x1000)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000200), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYBLOB="0100"])
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_GET_NESTED_STATE(r5, 0xc048aeca, &(0x7f0000005580)={{0x0, 0x0, 0x80}})

9.099976596s ago: executing program 1 (id=785):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000480)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x102})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000800)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000280)={@ptr={0x70742a85, 0x1, &(0x7f0000000000)=""/18, 0x12, 0x1, 0x1c}, @ptr={0x70742a85, 0x0, &(0x7f0000000900)=""/206, 0xce}, @fda={0x66646185, 0x5}}, &(0x7f0000000240)={0x0, 0x28, 0x50}}, 0x1000}], 0x0, 0x0, 0x0})

8.402015316s ago: executing program 0 (id=787):
creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000200), 0x129082, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f0000000040))
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f00000000c0)=0x20)
write$binfmt_elf32(r3, 0x0, 0x4cd)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000100)=0x4)
write$dsp(r3, &(0x7f0000000240), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, &(0x7f0000000080)=0x40000017)
ppoll(&(0x7f0000000000)=[{}], 0x1, 0x0, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000080)="580000001400192340834b00000d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000a0c10000000010000000000", 0x58}], 0x1)

7.416021939s ago: executing program 1 (id=788):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, 0x0)
r2 = epoll_create(0x47f)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000540))
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x2, 0x4})
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x1)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000640), 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000060c0)="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", 0x2000, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000caefb8)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="85000000610000005400000000000000950000c1810000000000b4a8b154120610000000c79077fa15ba36eca61299de67cf77c9062430bc068829afff36b31fa7e35ce95d04"], &(0x7f0000000280)='syzkaller\x00', 0x1}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r5, 0x2000000, 0xe40, 0x0, &(0x7f0000000240)="5cdd3086ddff0066b3c9bbac88a8862c00dffd0013dd00000000000000008100f5df86dd", 0x0, 0x15d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'macvtap0\x00', 0x3601})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0)
preadv(r6, &(0x7f00000002c0)=[{&(0x7f0000000580)=""/4078, 0xfffffffffffffccc}, {&(0x7f00000000c0)=""/46}], 0x10000000000000aa, 0xc6, 0x3)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f00000011c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r7, &(0x7f0000002440)={0x0, 0x0, &(0x7f0000002400)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="290200000000000000000300000008000400000000005db792c29c3c6ae2fbde8919ab6d7504be4877881440f6b64849046921312c789a07b87852463a219d2a9c3f"], 0x1c}}, 0x0)
syz_usb_connect(0x5, 0xe4, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000017ffd340b1134200bbdf000000010902d200010000400009046a00067af4190009050f102000050801060c8b631b7507250102020700090501", @ANYRES32], 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xff2e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))

6.999941666s ago: executing program 0 (id=789):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='ext4_journal_start\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='cpuacct.usage_percpu\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x19, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x6b, 0x11, 0x1c}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x16}, 0x70)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xb, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
write(r1, 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f00000036c0)={[{@codepage={'codepage', 0x3d, 'cp737'}}, {@session={'session', 0x3d, 0x1000}}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@session={'session', 0x3d, 0xffffffffffffe23d}}, {@uid}]}, 0x1, 0x2d1, &(0x7f0000000240)="$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")
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000300)=""/104, 0x68)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000300)='cgroup.procs\x00', 0x2, 0x0)

6.870361365s ago: executing program 2 (id=790):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000040)='./file1\x00', 0x800810, &(0x7f0000000380)={[{@usebackuproot}, {@nodatasum}, {@compress_force}, {@user_subvol_rm}, {@flushoncommit}, {@space_cache}, {@acl}, {@nodiscard}]}, 0xfb, 0x50f9, &(0x7f0000005140)="$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")
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x80044940, &(0x7f0000000c80)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r1=>0x0, 0x0, <r2=>0x0, <r3=>0x0})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendfile(r7, r6, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4443c, &(0x7f00000009c0)=ANY=[@ANYRES16=r3, @ANYRESHEX=r2, @ANYRESOCT=0x0, @ANYBLOB="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"/353, @ANYRES32, @ANYRESDEC, @ANYRESDEC=0x0, @ANYRES32, @ANYRES8, @ANYRES64=r2, @ANYRESHEX, @ANYRES8=r1, @ANYBLOB="2026edcf7e52c453260c4c6a79f996557847e28286a656d03c54394159aac8ea80292bf26c3c5dd8048c9e89665922ee4d3624f9e7d9f8774f04ca68e4d640218cbcfde03173fe3002eac0f4c3a637fa7e7529b0b4c897689c3a5f264f877fbef4cb99b019aa20bd9b58bfdf91bf1230b33ce6e3c8af634216be4c9b9b6c1c9f672ac47cfb78c6289b62856874478459b705cce3f20c46f696a6ac69b11a9621a6440d2f0b0d2341440e2cdecf7d0eaa91807e2983e4ad4ca73e10a1cc52f7e523bf15de880c", @ANYRES64=r3], 0x0, 0x0, &(0x7f0000000000))

5.821213086s ago: executing program 0 (id=792):
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="04040a00000000000054679202ce9eaa48b326b038d97544c8b681bad547412afab3663029531077c8c4fa2f7501610d4eae6214096ae92430cd63486f07b04d9c519ab15a6e842e1352398f95ff35f5115a2c6c50f63336179b5e6b1f774a63506e8cb76bba42c6bee078240ec871a2bcf7dd5691833ac53a02f3614eae3afb9549df1b77ce0baebc9f6306644f6f08bbd3ca3229d272acd3483bf3ae4228f7a2b839594856918b10ca47ad4dc249d99c244aba277d101b5ac305"], 0xd)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04228e03c80000001900000000087153747f969e99df4ce46e32770322ecb729d355601ae95054505636932cc0e259ba2b5419ab8c9f86e4"], 0x14)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000780), 0x208e24b)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')
lseek(r2, 0x4, 0x0)
bpf$BPF_PROG_QUERY(0x9, &(0x7f0000000140)={@map=0x1, 0x0, 0x4, 0x0, &(0x7f0000000000)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
getdents(r2, 0x0, 0x48)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f00000002c0)={0x0, &(0x7f0000000340)=""/121, 0x79})
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000ac0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffc, 0xffffffffffffffe1, 0x0, 0x0, 0x10001, 0xfffffffffffff924], 0x2})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
listen(r4, 0x80080400)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x8, 0x3, 0x2c8, 0x160, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x230, 0xffffffff, 0xffffffff, 0x230, 0xffffffff, 0x7fffffe, 0x0, {[{{@uncond, 0x6, 0x130, 0x160, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x7d}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{}, {0x2}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x328)
r5 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r5, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000002}, 0x10)
r6 = socket(0x1, 0x2, 0x0)
syz_io_uring_setup(0x27f3, &(0x7f0000000340), 0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000000)=""/135, 0x87}], 0x300)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_perm_addr={0x33}})
syz_emit_vhci(0x0, 0xffffffffffffffc7)

5.291579203s ago: executing program 3 (id=793):
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000180)=0x80000000)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000feffffff850000008c00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
listen(r0, 0xc)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @local}, 0x10)
getsockopt$inet_int(r1, 0x10d, 0xd4, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000000100)=0x9, 0x4)
setsockopt$inet6_buf(r3, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900", 0x2a)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000340)=0x411, 0x4)
socket$inet_sctp(0x2, 0x0, 0x84)
syz_emit_ethernet(0x3e, &(0x7f0000000840)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @parameter_prob={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}}}}}}, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'rose0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r5], 0x20}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb7, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x74}, [@ldst={0x4}]}, &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x2a)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000003c0)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_FRAME(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r8, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r9, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff"], 0x398}}, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000)={0x0, 0x6, 0x3, 0x3f}, &(0x7f0000000040)=0x10)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})

4.739476578s ago: executing program 0 (id=794):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r2 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
readv(r1, &(0x7f0000000200)=[{&(0x7f0000000080)=""/3, 0x3}], 0x1)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000400)='\xf5\xfc\xd2\xec]\x95zx8*\xa2d\x11\xb5\xb1\xa4y\x9e>\xe49{\x8a{\x81s\xea$\xdfg\xb1\x03DY!\x97\xadM\xd7\xff\x8a\xcd[>\x12e\xc3]d8\xba\x8ec\x00\x00\x00\x00\x00\x00\x00\xa0\xe2\xd5y\xec\x90\x00\x98Y\x91\x19\x16\x89\xd0\x1a\x8dr\xd5\xcd\xf2P\r.\"\x03\xa9\xab\xfa#\x01\xcd\xd6\xd0\xc6\xb9\xeb\x95\xd3\x9cl\x9cu#\xb4\xee\xe5\x9d\t\fV\xd4\xda\xfc`2?\x15P\xba\x14b\x1c\xcc\xd5\xb9jA$s\xb9g3\x15M\xd9\xb9 \xca[\xc7\xec\xa9;\xee\x01\xc9\xc4\x1f\xc3\xe4\xfa\xd3fU\x0e\x86\xc8\xa7\xaf\xaf\x04p\xa3\x8bb\xbf\\\xdb\x83\x00\x96sy\x14\x1eo\xcc9&\x946\xf9\xf5v\xee\xb5m$;\x01\xb8\xeau\x00\xd1S=\x920H\xc2z\xb5\xbe\x95\xef\xeb\xd1\xc8\xa1\xba\xach\xbef\xa8\x86\xc2\x18\x9cC\x15\x9c^\xcf\xe9\xbcp\xb4Ff\x00\x9d>p\"\x19\xd8}|~\xae\xdb\a59f\xb8?\xba\xf2\x8e\xa5y\\\x1a\x80=\xa72)\xd2\x00'/276, &(0x7f0000000000)='/\x00\x9b\x1d\x00\x96', 0x0)
tkill(r2, 0xb)

4.399923678s ago: executing program 0 (id=795):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$kcm(0x10, 0x2, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x10)
syz_emit_vhci(0x0, 0x5a)
bind$netlink(r2, &(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = dup(r1)
getsockname$packet(r3, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000100)=0x14)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000200), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="300000002a000900000000000000000004"], 0x30}, 0x1, 0x3000000}, 0x0)
syz_usb_connect$uac1(0x5, 0xf5, &(0x7f0000000340)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xe3, 0x3, 0x1, 0xd, 0xa0, 0x7, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x4, 0x4}, [@mixer_unit={0x9, 0x24, 0x4, 0x2, 0xdc, "7118ce1a"}, @input_terminal={0xc, 0x24, 0x2, 0x2, 0x203, 0x5, 0x8d, 0x6, 0x80, 0x9}, @input_terminal={0xc, 0x24, 0x2, 0x2, 0xfe, 0x4, 0x49, 0x95, 0x5, 0x3}, @feature_unit={0xf, 0x24, 0x6, 0x1, 0x3, 0x4, [0x3, 0x6, 0x6, 0x2], 0x7}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0x6, 0x3, 0x9, 0x5, "3511c396221085c831"}, @format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0xb924, 0x9, 0x1, "9f4c3277"}, @format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0xf691, 0xd50, 0x6}, @as_header={0x7, 0x24, 0x1, 0x6, 0x14}]}, {{0x9, 0x5, 0x1, 0x9, 0x800, 0x4, 0x2, 0x3, {0x7, 0x25, 0x1, 0x2, 0x5, 0x9}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x8, 0x7}, @as_header={0x7, 0x24, 0x1, 0x5, 0xf2, 0x5}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0x7, 0x1, 0x10, 0x7, "80", "8b"}, @as_header={0x7, 0x24, 0x1, 0x7, 0x33, 0x2}, @as_header={0x7, 0x24, 0x1, 0xe4, 0xc7, 0x2}]}, {{0x9, 0x5, 0x82, 0x9, 0x3ff, 0x49, 0x7, 0x4, {0x7, 0x25, 0x1, 0x0, 0x5, 0x4}}}}}}}]}}, &(0x7f0000000540)={0xa, &(0x7f0000000140)={0xa, 0x6, 0x110, 0x2, 0x0, 0x7, 0x40, 0x4}, 0x50, &(0x7f0000000240)={0x5, 0xf, 0x50, 0x6, [@ssp_cap={0x1c, 0x10, 0xa, 0x20, 0x4, 0xa, 0x0, 0xa9, [0x3fcf, 0xffc017, 0xff3fcf, 0x0]}, @ss_container_id={0x14, 0x10, 0x4, 0x6, "8819c7ac774913570bcd00cdfa173cae"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x8, 0xf7, 0x58, 0x4}, @ext_cap={0x7, 0x10, 0x2, 0xc, 0x2, 0x3, 0xbc2d}, @ext_cap={0x7, 0x10, 0x2, 0x2, 0x0, 0x2, 0x2}, @ptm_cap={0x3}]}, 0x3, [{0x68, &(0x7f0000000440)=ANY=[@ANYBLOB="680343f171bb752d4410e936e13cde6ddf5679bd404328ea815224326565a3cdfee2dec3d497f5620e6d64cfc442cbb2ee4101c07c6c9056a7201ce4b01f43b69938c984cc664eb87afb74881a207c8cdf1bd5ea373e5210a97f51eb786616ff8b37f1078dbfdcfa"]}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x444}}, {0xa, &(0x7f0000000500)=@string={0xa, 0x3, "7fc448d21d0a7bc4"}}]})

4.298756465s ago: executing program 4 (id=714):
syz_emit_vhci(0x0, 0x22)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="04040a00000000000054679202ce9eaa48b326b038d97544c8b681bad547412afab3663029531077c8c4fa2f7501610d4eae6214096ae92430cd63486f07b04d9c519ab15a6e842e1352398f95ff35f5115a2c6c50f63336179b5e6b1f774a63506e8cb76bba42c6bee078240ec871a2bcf7dd5691833ac53a02f3614eae3afb9549df1b77ce0baebc9f6306644f6f08bbd3ca3229d272acd3483bf3ae4228f7a2b839594856918b10ca47ad4dc249d99c244aba277d101b5ac305"], 0xd)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04228e03c80000001900000000087153747f969e99df4ce46e32770322ecb729d355601ae95054505636932cc0e259ba2b5419ab8c9f86"], 0x14)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000780), 0x208e24b)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')
lseek(r2, 0x4, 0x0)
bpf$BPF_PROG_QUERY(0x9, &(0x7f0000000140)={@map=0x1, 0x0, 0x4, 0x0, &(0x7f0000000000)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
getdents(r2, 0x0, 0x48)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f00000002c0)={0x0, &(0x7f0000000340)=""/121, 0x79})
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000ac0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffc, 0xffffffffffffffe1, 0x0, 0x0, 0x10001, 0xfffffffffffff924], 0x2})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
listen(r4, 0x80080400)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x8, 0x3, 0x2c8, 0x160, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x230, 0xffffffff, 0xffffffff, 0x230, 0xffffffff, 0x7fffffe, 0x0, {[{{@uncond, 0x6, 0x130, 0x160, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x7d}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{}, {0x2}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x328)
r6 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r6, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000002}, 0x10)
r7 = socket(0x1, 0x2, 0x0)
syz_io_uring_setup(0x27f3, &(0x7f0000000340), 0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000000)=""/135, 0x87}], 0x300)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_perm_addr={0x33}})
syz_emit_vhci(0x0, 0xffffffffffffffc7)

4.031493563s ago: executing program 3 (id=796):
syz_open_dev$video4linux(&(0x7f0000000040), 0x7ffffffffffffffb, 0x0)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c00000002060104db406e3e0004000200000000100003006269746d61703a706f72740005000400000000000900020073797a32000000000500050000006c00050001000600000024000780080008400000137906000440fffff000060005400000000008000640"], 0x6c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000030603000000000002000000000000000500010007", @ANYRES32=r0], 0x1c}}, 0x0)

3.547894214s ago: executing program 1 (id=797):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="02c8200a00d3000504010502000600"], 0xf)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x4e, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x2, 0x0, @local}, 0x1c)
socket(0x2, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2e, &(0x7f0000000100)={0x1, &(0x7f0000000440)=[{0x8, 0x0, 0x3}]})
r3 = socket$netlink(0x10, 0x3, 0x8)
syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), r3)
r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000080))
writev(r5, &(0x7f0000000300)=[{&(0x7f0000000340)="580000001400192340834b80040d8c560a117436c379000000000000000058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000b0c100000000000224e0000", 0x58}], 0x1)
fsopen(&(0x7f00000003c0)='ncpfs\x00', 0x1)
ioctl$VIDIOC_S_STD(r4, 0x40085618, &(0x7f00000017c0)=0x8000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$rxrpc(0x21, 0x2, 0xa)
r6 = syz_open_procfs(0x0, &(0x7f0000000480)='net/icmp6\x00')
preadv(r6, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/133, 0x85}], 0x1, 0xa3, 0x0)

3.470361597s ago: executing program 2 (id=798):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r0, 0x0, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r3}, 0x10)
setuid(0x0)
r4 = add_key$keyring(0x0, &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r5 = request_key(&(0x7f0000000540)='user\x00', &(0x7f00000001c0)={'syz', 0x3}, &(0x7f0000000200)=',$:@^@,\x00', r4)
r6 = add_key$user(0x0, &(0x7f00000006c0)={'syz', 0x1}, &(0x7f0000000500)="3fd8", 0x2, 0x0)
r7 = add_key(&(0x7f0000000080)='user\x00', 0x0, &(0x7f0000000040)='9', 0x1, 0xfffffffffffffffc)
keyctl$chown(0x4, r7, 0xee00, 0xffffffffffffffff)
keyctl$chown(0x4, r7, 0x0, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000300)={r7, r5, r6}, &(0x7f0000000340)=""/197, 0xc5, &(0x7f0000000680)={&(0x7f0000000440)={'sha256-avx\x00'}, &(0x7f0000000580)="707adafc6dc1f5848de9d72dbe8157eb7c42c3aee040a104df25956930f29c2f190f11ad989240b0037578d6d8c49edddba7587e470cde580fae8d43d326e8a542dbb7a0d29c5d21ff8f440f3ec5f9ef0ea890563e1dadb0280e40e162405a813060f4a4b9240427a56491d4499c0e70c312eab3f0fe537169677a3849e48e47f10ec56ae9c52b9cdff38498e564a9f668fd4ae53a1a40f1f503bf542c4900383c00830ba4a1a27baaac9c90807764151738687bda8d3c2c8843a0063d48bd7c3b4b5391ac369d89c4675621cf354d0e11c2edcba3c18de1a654f4f056ba94dc", 0xe0})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)

3.224858746s ago: executing program 4 (id=799):
r0 = syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f00000001c0)=ANY=[@ANYBLOB="7379735f696d6d757461626c652c757466383d312c696f636861727365743d61736369692c73686f72746e616d653d77696e39352c73686f77657865632c6e66732c636865636b3d7374726963742c756e695f786c6174653d302c757466383d312c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c726f6469722c726f6469722c64656275672c757466383d302c726f6469722c71756965742c6572726f72733d72656d6f756e742d726f2c009c8a8fc4f74784ad79ec08fb556262ebc972ef94821f3565ef5f75f11e30ef1f72a065c510b17cae352940538b7b2c5d72f4627c25306b2479725add28f511a68f5f6f47f9facdd0cc574286d00ab52d6b9374b6a58eac694336ebe971f41860d01084c1a0fa6b51d80fa9f9d2c5a2e7a5284f93296217ef8f28e0a36e573296a0bfb38b94191f4b82873563f3759b5e193ecfab6ed7892542364757e47d656ad6a0fbb6e8bf138bddae620a3602991821d4844f628e6bdd8b62cca73744332f0185a54b"], 0x6, 0x2c1, &(0x7f00000005c0)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_mems\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080))
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
r3 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
iopl(0x3)
r4 = getpid()
sched_setscheduler(r4, 0x0, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, <r9=>0x0})
ioprio_set$pid(0x2, r9, 0x0)
unshare(0x2000600)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000005240)=[{{0x0, 0xfffffdef, 0x0, 0x0, 0x0, 0x0, 0x10}, 0xfffffdef}], 0x4000095, 0x401eb94)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmmsg$unix(r6, &(0x7f000000bfc0)=[{{&(0x7f0000000340)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000bc0)=[{&(0x7f00000003c0)="6b38a070e4fec32fe1718936b0ef142ea28cc90c00d042fc94b2ea5f3c1f75c98ad271ede07a0a32b62ce59dd66f9bbef376a5308fb2c669f0b645dbeb9565b8cdf9337b558e5f0a87477668121fff381fcbeb009965f28feae23c4d2348f331105b824b7c09be797b888b14d80651d1de3d982f582012263b8874525dd37d39dd127e40397cdf241c96a3bf68980213ca1b6ae8f48fecdebe97f70928e87ba058c6f3bdb4f03913b20efef5a82ba9f1f8ad8a0f12cd096e81a8455e55acef7e0c1fa8fc71780c5f752b904bd475f5fdabc808e33a04095e5e5318119c4f8f4dc27e674281e2fe821898aac52c7862af80c603d40ef2ff79cf2407c487", 0xfd}, {&(0x7f0000002100)="e2fea78e2043ef3be706ffad3ba32aa5245e4cdbcb4057a06c0581b58d3ddc5f9aa052775218b84687020ab7939d4e17c97371402e11ea50720e0f5a6ef85372a368a829f37b517f9ff943757a17cafd10ee778cb853551f395a74558dfb850edff74680880e594f779bac6c3ed403a8884ad2ea357426e52e044ab6010298ce056764b70ad6e046489f2366fa48794c9fec801c64b40eb9b403165a47617e92b662d52d51c6058cc89ed07a32baaa3ab0ab3484327f869c4460f6078ccef5bf3edf45f18158a32e03bc5c323127f6b7415f753e63a0fbdadbe81e14c0b6b81a88043dedd8a570f3066c0c9c19ef007060da1eb12f3152729ba929a992ed2704bcc99cf74a0bb872285215a8d931a26cc95129283f810f9dc53a73a2a64f4760d6c173664997dd9e5c371aff10a7d13893abb3fd6e762bc9f8a317d080645af55bc9a072905987ff0a424646c8fcde6af03a90f49cac48e3daef0bf70375eddb069d0be5393c3d98331f5fa2831b227ee087e7f4ca7f265b454c87fe1843e9dc4b09cf5f5d050426242333843056d4916f2b13171dded8ec6a3207d9d864d480cec66b0000000000000000002aca955601cbd6652f901db45829d50ae1f106063b546705a1f1d1553ebf1a5d1fcb8dc074183da48fc04dc77e7bf0a21a711e758c1d94e9477ce4fd5067a564556b7d3648b2362f5a289ec8388c1d2e21716008ab0fd60053b7d278fc3dc6ad70ebcffdd09feb02b7858f5ede06d2e7b74a16d8e16d3abd9c32a4", 0x227}, {&(0x7f00000008c0)="4492281e9127a0beffd5e048bc15f1c61e77a594ec7fb0d91c3422cbe1935e3e88139469d0d4e7f6696a5175ee6c340f1a3ff1a850997a2cb8f62c165e07e46ef04127212150fbf5664519e9b3adf6c4823cf5fc23139b06ad04af29c787e577a9441922cae054413bef309affc9a23c3a93f75498a7a59119cba106c74e76976ce63b15d0ce089b00513f590b32cecc11785cf60a754cbd5630caab1670afcc98647caa61ab890a8493d19a9f4e6b2691f6eccda6c247110fd0f8ed4b3fd902668a", 0xc2}, {&(0x7f00000009c0)="3661f43e5f09052ddc6a9e528a71fae5398cbeb5ef51807c31772287f20465b96c0f17003d3b34312755e9f070017638967c0cca85324c018d79729e3abecf969d405e6a675e717a0f10f97b118c5b9ae7b500c9861d56b0cf35f0ff3e43909585e4a36806165f1805dc5170996e16b44ddda66fe5f3dd89c77385e0f97d89d8a8ba8c53f37fa169bcdb61a8ce54a6625accdb1a83dcbca91b45f8d74c5760e518a387e56b9ca733", 0xa8}, {&(0x7f0000000a80)="18020a0de07fd08e55eefd2f8fa7f44c2e32418263aa74ae009b74e7641cfa65157806e412414615fa757dcfa4e0a8c3c9bd4164da4579551bb484e2bcb2bf3e1a5be3e3ece28d878c9d2c7c60cbc7ced511bcf0a2b5b5468adef500b2d252a9", 0x60}, {&(0x7f0000000b00)="f83ac8795030256509b26d340a0a580c27872216eb585641c8d395e9beaa8afcbcf957ba26e073ae7b624311a55bfe805be430eaeeb0322d5c407ddff811977d334aad683d6e59dfeb2ace642f32d685e1e9956dc4e0c1cd9edebf2884689bebafce69898d2cb2d901958c2cc27f74e42418b6e5acacd649abe860a7bacd0a5f8c176faa31347f93", 0x88}, {&(0x7f0000000e00)="1ff4d0ede5cd0319ccb0facb99d29be264707ce143df95f1bfbb07367d3a912ef874ac6bdbe1c8753af8a764ec9bc4b60f8c1fdb911cded72da42db2d3ef488beba73d9a27340e37ad5b145f307c9ba52affbeb96577754b275acbde4c69a12a6882347eaec44024c977bd382b4503080162cd6655974747ce112ce4bc4e2869be90ca5e59c7426379a16f7f713b813a4683664f169cd4e06d1c220158388262822326345e6782613fbab20e4dcace69a39c48cc271e2b42f9bea820789c1980458362422569aba1a69d775f0cc7946cb7baa4d06b1b755422b3314149cf56e1b0776c00a41cde808aca67e70b29ea761c3280ea1dbb95c3b031de234b3962d246f48cdaf52a57cd159893f10eb22cf6fa31802c87cc8304e353ce517c69078be2a2b30c76c9c4385ac6d2674f8317e29f92e3c31f28be6fe51feb85edb40f49970809a9b33ad66a2a2124ce1b8fcaaa34bafbe3fc8201e9513137d0094cc2937c76571e9f7d1bfc3093f672113cd902426b8d415e2d95cf79b874ecc7d33a4f3633a44fca000cf5476a861349d9498e7f3796ae709b0d585eef1e3e2352e4440303c5cb295c162afb21a105be0af7c07cde070a2140f50aeedce72e6e19919d3fb459386edcd371cdd8b3a8d24aeec30e8e0d5b7deee3fbd1cc0381127afc9f770fc7cc588d3261ac79f5f915dfb9148b3a7328fafcd60560fd79e24a4e3b90d11ab3dcce4ea58373e35e3b63c8185be4dd71bf24a392943b6f777e1bdc165c29d0b762161d3948e4a4206c303b918cf47d8d63dbdf5351650d9fd4fcdbafd962137608dcd60e6a1bbc68976d4e5cc917a16795c022e5079faab4c7ea180fea9e04a7e1b1009ccd9a4cfcd1a2a42f2604f8589afe346fdab838ca74ada36bd277efd6682227a3cfc7201c61888b894adb560f366ba8d8399a751d590391643536bcd2bee27fd2bbb3724f4fbabff70e44c2bd2a429ea73d85c700ee6f60356043b15cb5ce6264be81ab141274712292ff0c1baed0b523a283f9bc70f7fbb4ac53d8ed6622bf515d9d404b75bd93b44222de5fde682d6e9f7ecf7b4d3197413c38b16ed2907c5d16bf120cc7ac19b8de2c1ae6dafafa909e421b03d6d77d485ede46209729cf453932b3ce8346b048ce17cda1227d8b715cfb15e66a3b861c4103607d327fb960dd1cccf4aafde651cc0ce3fe94c37199bf9cfadfb4d0cf20a2bda37c5dbf17f0fb9f329bc379170e0a1b1f312fad35047f21689d793aaa3011c9b805ce64c26dc9a18b9f19f8c4850a645ab2f691e09688eeb3a5091597d52053e5ffc2704113035abe4439e9cd3c98ef31a0ce40e36824eceb43589b7c5274859be15ca85d9ad8d07c39112b486277cbd0f2bbe36431de76f698dce5afc158c6a35be5afdcab6b0c090d0549408a33e4e9865e023018b04cbc7f6fc7a1d7b745e7a9883a7e576ac120d439582958be1a3fbb8f1285874bf2a7407ae03eb6f793865355b6cd6c5d76f6c4d621c54056ececa29d850dcb16053535e1fd424fc0dede9afab0b0ed1ed5f10ffb49f59ba87c7789772e56bec0da95af3ff9397723e6c0bfcde268f50ca2fa35437ce82a04802f63a00052ac2c6a17b0b79f907337dad281474ce77de82441d4cdb5cc36248e561be1aeb714d2d740609bf4a79ee81edb628fcca04bb145574a12587161ecc2ba7bbfe55649b2ad0f862f51f8b7db9d961352cfdcb10370e9bce6fccaa3576ddd36df91173853119af0e7b4961bd966a23914e28733f9fe925720686ff99daed5d9c78e871546e029631097ae76c0f0b6a769ddd5eccb239c0b392ebfaf1c7a0211ec26e2bcdc31c10e43998d899c6f77f58af2774409f706b9b4ec02d0b604ae35230bd96fef573366bbd2d672932fda52c55dd76a695750aaf274b284719e3dbd02271e506bed513e41938b31d359eb4919f48c6c7ed3e65c5b58b117a43ecd9abac773073727a6d10cc0c546094ba0c68d70458bdee0399bf768e85e8b057cf4ffd3be4379fe0aac1054d20e39850c899b9a0f94309fcbeb5d824673abcb1c6f2600655fe7ac240c1be278131f903e183bd6d551e9e549d2ff466002d3facfc6c088d35cd26c0d63f6902ddb6c0f72ab9aa2fee1dadeb0b3e8ac3aa180341998caf5790f22aca39c6cb83d904c82ae974a09a18a700525624cded34765f29185e84c46f9d8b767f4a7b6813334b85b5fb94ac1bb8c586bd3398cfc04556d6133d8ee2356baff8fe39f63ad5b975a6094e4ffb6447cf96539b0fc5c0a577db53855f57587b726d6c072934c6ac95947c5f7817e88128bc28a966aeb494c13157b5c9f7cd75f2514613d9a0fa9aa2a9122508733d17e2eec7cf3d2001c33f5ed3e4b9a3b5c9014151a9939b7a83c699f76a4afc0dd196a0e06f505ef7a8ab00e83b8f159d06fc54e0be497fa6a5a6b8bea528ff57102e2e26789030d7c934ef3df188d8302bb009601718fba98dda57b1613a805bc801440da18c2c7516ac32b545a52b6d1b81a3e4ca8904a23c05b97a8646a412b547af7b6f4de1a2a5307fd6d7ca05254387f8b54b44496afe4fc05e354c5fe4969c2734df17259d8a111ee3bf0d18214cc27495288d0a8d66bf7a676165f221c544d57b04b0f5d4a0a6c3427226b15fc25a65c75d05e721cfb0d251e152ae141ab533210ee314368e4cc6b33ebd93d5bbad49a062424f487b8c308a06dd4e385cf66dfc84d3f6ac5ad595fb42e2af72328b294a74ec945944b0d48b29b2204a5b4e1be088f4bbd29467a26a29dc2002ccb6ba94f998037c3d475f92878445ed8a35521aa6396ae9ea8280646b1c5962d98a8b3ef284e4a17c83415814f5e1861e2f59c8d695aee459d5a997ae9d1ec7fba8ac0512eead000d6764cc6ef69e6e67184069ccfef03f6efddcbbda9c9ca28d7798613996df139bb911f394452f23b3982528a9b154769a9b3c2c66b2821d0b576256ade1e4dc5e713bd89ddefb25cf37ddb32fec372280a858f716b8f6f45c9f8eac468899fa9cdb8047e30c3f685024a09a853a4a5d70e8c920d6b5b23baf81248d9c66f6578203f2b257dad95cab425a7d392212849f41af7e18f902a9e855e497f2cfb9b011f0ded43b4e46f741c8deb44a4abd49c1101469ea811aabccb8ba1309cdbb587828e3f1e231c4b12b88df640ba84ca83d6eaf056c8f51cbdfeb7b75e44723f58c9394b56cee597155b8525a7c1286b7e0db572601b8bbaa976f81035c621022aaf3dd03e2aaaaf06eac891b5571e645bb1e5fa04b8493a55abbf8fea33c9595e627ac71e4c9f3acc0bb9e11016a7ea8588af7038c6c754ae3ccf83c31a55ad240e25cad56e71e4a1e4f6513d2ca570b888126818db93c06a7732ca83c249e63284a22ef3dcacbac4c0c1afdfa282b4f2b1cb26801f83172f058d9ebeede95389d41370e7d369a58c7c6b60394b204806890f7b1bf600c262f1fe7830a43bf794419b900d41b2ac7eebdc0e958e8946a66e53340fafcae1941a7903bca317c7cfaa37205bc88a52560ffd9b9062df439a53edc22bf8617805e652931a64ae0c8347df8a5d2aab7aeb23dd80059eae38ecb128ee7981c508bfc7f02c747107bcb78c56680e8320306e8b34019f81834a49a4d6df6e012ad67a7194182a368ee139d1ab0e73481621ddabcd6af281e268028668c179e3e3ccd374bfa8095f61beb2ba9d30c096df2937a3d85ded1d089b4a7ea8a0b4a75af19f2ca5488028fda6462ed5d95782c27a32ee7ecf9a73c640d5104f5fd7bda6d5913e47d4484c94bc6f84d1046ad311be51b1571839d33553fd3d96d9dc0ff43a5b03a2d53e5899e62f1a4798580ba85db6dfcc3076f31663021ad00cfc9cb1f77677d6a0771e2d33135e72d265d2a64fe3df2422576148efd55b3d458bb7ec444b6957d66200c85764da7f1240d88d2b2d2a8e26263c8df8009d3ec019ee5449ff4a6d5cad003ab057fa9f6ca35df03a254db335d11f45a4ceb8d2f4101f2eddfcfa2c659d7a360bccd8e4f4038b4c3c8e0767d4d2ae0112b823c101d66865d41f95622cae65c03b313cd1bf8f5e7af828589a666a31cadfcc672cfe4c4b51899f30b40e230e20334b884fe7ca5e5661dc68be5b9f9f8c59572b28da91a0bc1726f17d690364cd24a250d76dac76f872e04b1f57ebef361a441ef509cb3227bffb20351a328f805a6122086b484ef4961f5255df02e4c8516e42826074eccb13d5e8aa50f2c0d949e7a448c4e8a95676b83726b543fad320e5df85f2f2e8ead554717de21041b5d2c3e9cc2418f55d78c1b6c991228248cee173559b08419aef1d2ba3beca6134223a9b2e4b02cb9bd334dc5902eb3746e01eab2eae1c6d3f85549e516fd8e8e6154e05d92ebd9a7284ecf995bdc77cbed05eb99a0fec64045223e19b823981bb845998ad1f2c81e250f7fd1667cb5d9daded5a2a4a4054663abf19850ed771ee816c22cf3b826c7cc014d431538fa7586ad82167bee8f535d0d27081e8912e81c62a033a9c23a7c19ac3f45c70eae5cccfaa0a1150518f43cce7a0f328b64caee8d4e24eb59faa5c5f63d37e22383a2bcbd90ac2bc12a33f94c3c49ad607008a0f80441bdae23666fe0253b844c3b900af59370420818e7fe7b4ff0c6e01d7b642a5b6e3efc603a73b86ab89b7b54594b21059c3a8340d30b87c638c08e9bb6878e9290bada6b19f50cfe95b1ab1e1c5363c0aa82be7b3c3114a0b7dd021196b5a3f907d9481c2bd236479c1a8d021d8bc708b4b64e6a9dfbded44d0f8bd8fd422aadeccdbe77a90317db107c2bec67abb229859c70d80cae29b655ac368050ef4a78cc6cea8308f8c88724e572e1d15bd3a3e17e05bb04978ba4139cecec6b22542bc156b493532c4d73a44539793403ae9ec041004887be12f25200ad5aa21fe0b7cc9a0aecc876b2581065e5a812c7a5001e09a01f034fc8f17e1a231596e765328f18d1b68041bfd811f3976945ae23aa91fac7a9e4e8def80bdbca890dda30031a5b0977a016033d456f75e38f1fa619abfae22eec3a25cbbc6bb47359ff5d518c50bf629a44f0ad2438fecb20dd7ba6c89809a72c57539793a4eda8b2aaddb85cf90d43e297b4970c0c0caf4395039c483707d6b981194e25bd1ea85f39ba53db0635a4322a074b7d6f27b055eb6950079d41c8269ad5c206fd123f2e8b45751e45b93a953ffbef46745faaee62ca0d53ae33be7b5e42adae22740153264c3136cd47bcd3436714ffe014b8c9711deddcc02cf4d8755a573bc7dd552189ad2970b3091e7d973df458deb6872570e5836c60af515074785ab90ded04902989d203c62077db048d0c16b714989c34697bae6d9825038d78b7e6ab168f75b84e5754542543c3811814bf0a7a2756088ae1181f740db46e80026fc0d440d21c6dcaf505f597f4d2776dadefff67200780097d4d7af36bd6713a5a94b9077c18d1cd6466bb70070c7c9f2bdfd07db3b84e4e0a6511f5425de7a55dfc2978037df061db4497424a61ebd1e9911177e3804f569e5e5708afc9e0301c0c0aee47d48dfa1ad2086bbd33897b83a21b2e92925bf007dcb0e56ba9e0a3bc5895e650925bd1e6abba6f90a195dec83b24918d1a3f00e78527d5a8b227b4248bb9120ae42f0aab8b47c607f0507ac357b44500e3a332b5f19b15cc974d93908f5f17667fe9a1f056e3a84a18fbad402befbe5063dd7b400971251f56b890a903937fcae0602ad25300fb5151011d0d20144a9314470ea8549cbd01e6836a156c651c3736c0478", 0x1000}], 0x7, &(0x7f0000001e00)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [r6, r3, r7, r5]}}, @cred={{0x1c, 0x1, 0x2, {r4}}}, @rights={{0x14, 0x1, 0x1, [r7]}}], 0x78, 0x4080}}, {{&(0x7f0000001e80)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000d80)=[{&(0x7f0000001f00)="3c69738c3d223b6462221166add16b893a5ca96dc4c0d0127633936479d0a256d5761c1bbbe111f1da325a31c38c33da5122c8b9be10c77a83ba3ac16e2a7a17f3102f118dda501c", 0x48}, {&(0x7f0000001f80)="603045e3121adbe5c2fc66b423be67696ba5af3ef074c16cb5b2628da86d98597543697b49b8e61ee80d18d32abe57b6006cbe6b758826c4299002cb322dea5f48f92e78dc121012296f3b2f6ed94f7ac0aef471a69271552938bd3079ad97cec4a1da974b34661abb34b0e11fb572cec1f95d6c2de451cc56808c02722624e0a2626a7dc3b727d2653f84cb40a7c0cfc87f879d5cbcf786bafd02b5e5b109fafcb72ef6fa3e9356f04b75d0fa4821f121afec66bea12455171e1741ec89e085c39f136e1db8beb31292b76f38b6b710", 0xd0}, {&(0x7f0000002080)="e2a08b150b2f64205556ab652bd15bbcfb962ec0e9916cf4893693d694185f793887fb384aa5a80521595d9c04e17361d1317c0cf9a4e88bc977446f80797ea3044a505821d1158e57f5188696f7fab723096f9dc6a86f6ac6e17ee42df3b29c60b2884902d52d1e", 0x68}], 0x3, &(0x7f00000065c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r6, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000f200000000800000b8f0cd190002000000", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r5, @ANYBLOB='\x00\x00\x00\x00'], 0xd0}}, {{&(0x7f0000009140)=@abs={0x1}, 0x6e, &(0x7f0000009880)=[{&(0x7f00000091c0)="775a100d02233ab452e1789e8a89e04ef1accccd6eb665e0ec43eff0ab51fee0ad5aed077778dbe3de874c24170c7e57e44a5508c37e90656c0d78ef75c9f48cc53e962c302dc87fd2a1f7d019be00b7cda653dfeb302e133fc83a857679287be325e308f1330693d7fd3e59392e0f4e6bb9849c1c03d0e288762736241b9e9990ddf762540efb516e785cfc2d1d507d9d7f82af8a2d44297a51049c29cc0456a36eb796ac6ee471eba05cef8cc6e58ca5f5007786c714e4140e1eea819b2e84d255", 0xc2}, {&(0x7f00000092c0)="2aec08072f65ee0d631c7729bb03b67f17d109209f4763f7104900e7785c5ba2295252c918d4887ac598ec7057819add6487e9ac8dfcce72e46b150b422c957877e34c16dd0abb9c2190ad14d29e81524413f59c4a51510f95a10b6e31e03143beeae4a6b24b59cf64b9aeb14786a35a7cf6598c5bb4226c6e8405cca3a75c2b58621fc4a41202d837e921c2f9f92232e3007ec00b44f54868542e82ac88243b44cbf39ca23004b01040a30f10185b394917ea5828ce5b311f617ef61071", 0xbe}, {&(0x7f00000093c0)="c09744d90a776b28e2c87697f35e9016852154761a030241f3a58a69e91ecdec4bc25c878fafa4349624147600fc522f80dd28c6d154ea05d7ee69ca22d38df60634b8547ee929bfb332f0d94807c3797bc84bce64321fd725312ffa248ef7215a4542d9c14818165c9164886db8355a24c3314146bf2c3ac6fda7474ad7406a576c7e104b7be0d9145b42d660f93623c5385610cd27652ef3a5b73c278d5ac4ba284e00a0374123e1b5da", 0xab}, {&(0x7f00000094c0)="98536038aace7f28b646da4e79f6daa124b8378c92dc56aff1eefefd1790d4152df572a54de568b07646c84b19353c468649672b22fbb84a090bfa7f5490bd4b1e22b729454b74870e806a14762f09388babf01c4dec101bd9733c692a45a92096da3e31fec4", 0x66}, {0x0}, {&(0x7f0000009600)="49237e8172948d70ab193a970f0e321a5359405961349db18ab96420342477ba80bcb5c585cb6a83e562400f5da33684a1710dcb6fb95126c7b953ecb543ea70a8448d9f664bed792dfb32a16ccb04f3a28774becade2efb1f8eb3c8b5902cf238b273d52c274e2121fefd51bee98354c4648fc00bef030c8d30e3f9776449178e149a67ba446031abb1b5d65b800b6d08c31c25e2d8ceafe971ee9b", 0x9c}, {0x0}, {&(0x7f00000097c0)="122a17d8ca9eb76a0e90dfa6", 0xc}, {0x0}], 0x9, &(0x7f0000009a00)=[@cred={{0x1c, 0x1, 0x2, {r4}}}, @rights={{0x20, 0x1, 0x1, [r1, r6, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [r8, r0, r7]}}], 0x60, 0x40}}, {{&(0x7f0000009a80)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f000000a040)=[{&(0x7f0000009b00)="3bfdd860f224d6954261f1cc200f01b6ba8771a5ec13b1ed1fa3492e1e5dddaf8f551f6574152fc4c8f24a62a7ab12ce0385057f8f6922bb42c9d7187b2445826eabbe17c6ff2aeee941251e97c9474857ab0007e3f092ba2a5a6a165be201ba71b42f29c399955212fbfebc54f77e192d78bf", 0x73}, {&(0x7f0000009b80)="314093d4d46dae2dc5ce23b96e3f55f29a6dd76147d080fed3374d32ead846345ba57311eb02345e87aa2e1078e55c7bd4f0aae9f72ba50b95eb4c4d74b9c7007ef799c3dd9534d2ab9c21c77db56cca5634d583bd75f7e9e67cd66e240ba1fcf909622160a6a026f0186fdcbc95d33e5e1af1580d7ff1b0992f735247d8a60df27b8c02f24c734668a2eaac80fdc16934159797d741e661d8e610729b", 0x9d}, {&(0x7f0000009c40)="f1d8f54bd373c31fdfaac8d487a5879616a4fc016d2a93627e8fdad38fbc54c49ec181ae307bded615e5", 0x2a}, {&(0x7f0000009c80)="ed27cf7c5215af2fda7774e835d91e34a8f3fa7f765e", 0x16}, {&(0x7f0000009cc0)="431bf92fd0e59b952ef888a5f081e5cb011b2d74f7d4de29fcaac9ca7dd441fe69892a33e20884381bb403b0b6ed2ed12f2962665405d1bb70ed9a8174d6106ac463f7687f327b0c9b7c757a1418a7729f996e44e1f015cd332e6155fa1ea639372118911ccc6f8d9c820616a2c7c7abd4d86e7f0eaf4f35d542b92173402803a7e4c6e52d3d5aec41cedf26df7c65fa3ad7c17090e133baee96c74044e5009c169ee50df484f887eeb8", 0xaa}, {&(0x7f0000009d80)="ce3688365574b784a95a3a8bdcb0f976f7b1096cf4da9a06c7da3c8432a043974a9f0bc1be118c166979be9a5b3f9c95dc74bf2e0e626b9f015358158923b6014595e11821e45bb0fe1012ed9c87c6350c10ab64b8e82332b27f26ccca90c1d7501c20b945d2b3b7428b87a9e0e5a74839af0328dfcabcc9173a523e2b6e91bcc737e9aa7c572eb9e78814a13e6f46798e05a9f675abd012121d97ba9bdc83c399f5a8330cab4e137f3a5efd2d379fd47e2e0255a054dff91119d866c9807451f9dbfa30b53b460adbec482acec39aea773575d89aa791387deea42870af9082bb10a9017a1c14181815a1209d745337cb7e99", 0xf3}, {&(0x7f0000009e80)="f08109c79036c386712a3c10a6a8ac8a325a693dbf876daf2b63d0636a5ae1f2967f015ec704e210857c346da9f25270b0092ad27b397d3c0264f7f13f31b1d78068d3fe4cfdf97530f4a35c6670c73ed6bde7dafa660805b0b8f492092780c4ce0730fcd17c21b11f5e0d4ef70c3c9ff895cd639551bda3850daac3df4098ef9a", 0x81}, {&(0x7f0000009f40)="121ec085e2a9b5644266a66fa59058d48f17ddedef40ed4215c0bf6164dcd0d4b0e31e9185f5a9687d1edeaa84ef46ba109239113bd2c34439c42d3b7c34ae15695685d32720b94a2f1e82144cb4d73b15832f93fd4892f745845ae91d4f8f1307fd2e7f7a871848659e3b01fb9709395f92c2f223679325d40df8e39b479324b11e9517886bdf3e1d33c70763e096d6fbbe98198190d07547c7c13ea6fec9f6da428e8352f32a7b3842c8610145cf373409be0383c5a537148db9389eed6316144a19a41b7fcaf22c17f32268629c8eede2c439ba15f440730555d5325ab56ec9b2f9a8f97eee", 0xe7}], 0x8, &(0x7f000000a0c0)=[@rights={{0x14, 0x1, 0x1, [r6]}}], 0x18, 0xc800}}, {{&(0x7f000000a100)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f000000a380)=[{&(0x7f000000a180)="be1d759251c9110ea6e3b1e9193b93ee35d5cf5b37a41a1263ece3", 0x1b}, {&(0x7f000000a1c0)="e5c7910654cc350601dd376e6d86db22fbe98beee4fd7e96e1f3bebf36be493c2d1b61d0bd720fe83fdd63ee2a7940f1c150c5807ca1c1dc88a204d8a4b5466c74f9088dc23fda4a0b130db4a1f4fa6e45b5bd5c3c59e1b847f61a81f222", 0x5e}, {&(0x7f000000a240)="c43e0c6a7a6bcba6fd02074982ea1221a805286ec928a054d2e95a997f34745fa4b94f853fd64e398fa9cd50b6030437b1bf6cdce7fd644bee98e3a371", 0x3d}, {&(0x7f000000a280)="b0693664f7269ae8208f882f9b9874f53762240cc9e258d7aa5132b74ad7296f69beb2975b84b9090c5c96e0d092ec436404f56631c1ece73675d28ed9024ffb7be38e50bf1b84e55a8fa0cff681dd18f21eec4be3c8def6dcfb7322435fbe5fe3fd8a43d4dffd6109d4fe97aa9a04bf447ea808934ece24966d316932a5d1547ecf1ed7d1c51223197e8dcf36377d42572ee1013e08963c6122406572d88888d3d7f16aa3710ae01d84cffa59c8c5332e0ba91779019500861c357ba530ea49a8b27d55", 0xc4}], 0x4, &(0x7f000000a3c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r6, r6, r6, r1, r6]}}, @rights={{0x20, 0x1, 0x1, [r6, r1, r0, r1]}}], 0x48, 0x4001}}, {{&(0x7f000000a440)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f000000a900)=[{&(0x7f000000a4c0)="37ee64113b3057d52c55912f63ee240ab009b7ce97478e25f743f8b02df0291f19f2cae79101b4947280de47352615aa303661eea3f2905832a23c01c45959261c55346dee7a96c6ca84a9f65e4821f0e795f432fdd20948eec51482a0e300677d95eee708559d7ee4143ac5ec7ea6a26951fb9166f4cfced15a0f23f289463fdefc05dd1b7a1c5429f6522322c79362b9b24fc607f122aeee20eea185caae6427e9faed61c7a87a0bef566ab30fa39762bb2156bdb01c", 0xb7}, {&(0x7f000000a580)="7b4f6f1c306ce8fa0ae2a9f099dbb387f63192c608cc617d42e926b594b700c352abe0d5ecc4de638c2f2922aa1aff0984638c0e89cd8fd70f4cedb89afb98b3defe44eef3a7856c50b28e9b89d9cb50ea546f38d6c93792e3606457722bfc1ca317cb51", 0x64}, {&(0x7f000000a680)="4373ed8b5143219cf05d7d8afd707184d7a7510e4bf3df8bb2a7959d16046424648907974de3db982afeb5e1bf2d163d89e76637b0f42a79d5d7b775ccafdbfb76", 0x41}, {&(0x7f000000a700)="d73267214cc07c145da60ede5dbe0c2fa0513563099dea2de525a8c734ed4a11bb8ed525577e329104b1064bd582adccb22e398f1bb00369fd2f51b97762616b8863f8fbc1cb1de39419b6561957cc42d0206d90cfa937dfc737ba09567de0a1a52ad0d0766f32a3196d6ade611c1f88babc1850076fca69b06a2eaf8b7f5e4ed7ec5f685af08699fc8ff87f1deb688ca9db18858f9ba0a38b05f857be308bced367741451ebe2a00deab8ba00f2a7a574a43bb95a048ae9b85f21fa19cbf08eec3b8917e748f3da46024ddd34d3cc202d8d45", 0xd3}, {&(0x7f000000a800)="8499e032dd60fe6e6e1b93f4ea3dd4d3977c330a3761f76ed1f55c62667c7b2a663377ad141f9327654a4ceaba17f87b7920c6c74041f045caa72ee6565aab93005a1162842a587a1335", 0x4a}, {&(0x7f000000a880)="582a9c00a3df34ecafb9569c3831aa2f5aef06e25a7afe9f68127efdb8bb0999ec9fbe4765241e850e6a9304be3204b36817f13706dd9ffb6046b2337fc9c651ff57d875995c0921e0bfeb35e164f8d5b1a562341007a59c93000b371f923e20a55e903c5941bfb71c67267af701b5eba3564e980c", 0x75}], 0x6, 0x0, 0x0, 0x4042040}}, {{&(0x7f000000a980)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f000000abc0)=[{&(0x7f000000aa00)="de1ec65ec2be3d37808c008a3d1fa1c86061466eebadd8cf61e72580fcbfb616a0ed44604357b114c4d8c96655c39be4a59f7e80e8cc41e74bf0fb6de0c42b7baf92c28c2eabed60a28b1a80000983b5ded11bea4f8246b8281dfecb82e65cd1a9895e29047f27ffbf3916a743595038c0eee91c0d425a59a5e8a187913c294f78b6adace5836ec456341415001afb0a4067dbf19a250028930694acec7d591f53e2d4d1ff2a5a9d41055abe04d155ce09fc", 0xb2}, {&(0x7f000000aac0)="1d2d2fd8f338c20ef07216aed8e94ecbce3b5561fa3a8892792e7ec991035bfab0ac6f74312d25bda35bdee7e996534a240031f6442c10f078", 0x39}, {&(0x7f000000ab00)="d102b2bb47f5ae973771e7471c78fb418bbc685400462fb11ae4f62ce284fd112cf5b3bd2a192ebe1a899082bd3c8d30ec0a2186713c747004722b79547de7a26ec0acd558a99df664e6b41f10c48e8b4b1422bca127457135a85b8fdaddf66b3d7efd15469235537dd21ccede3d5681feffa8303678913cc2fe30a9e2e4ca3fc51c53144253fb963c6c21dfa550be0a", 0x90}], 0x3}}, {{&(0x7f000000ac00)=@abs={0x3, 0x0, 0x4e22}, 0x6e, &(0x7f000000bf00)=[{&(0x7f000000ac80)="f4d09328ed17f73016d5d3328907c7475854f69de5e58faab48aac6a412e9a9f940c3412326e37617603f1146693f3e7b76dfa9dc71f580ea0e3c28288c4070e62c89da77a0fcc20", 0x48}, {&(0x7f000000ad00)="1167b35da4497cd9a78fa03631d1", 0xe}, {&(0x7f000000ad40)="7135fa886ced58e2a83e1683da1c84", 0xf}, {&(0x7f000000ad80)="fb88f95fd66c0b5ca3ad484aaa78082eab9e618167c7ca20d7d209d8e3", 0x1d}, {&(0x7f000000adc0)="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", 0x1000}, {&(0x7f000000bdc0)="77d4ca67e8e518ddff4ce733bbfc9475d60836e58d3562114f86b0db", 0x1c}, {&(0x7f000000be00)="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", 0xfa}], 0x7, &(0x7f000000bf80)=[@rights={{0x20, 0x1, 0x1, [r7, r5, r10, r0]}}], 0x20, 0x8000}}], 0x8, 0x4)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r3, 0xc0185879, &(0x7f00000004c0)={0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x2401})

3.028011011s ago: executing program 3 (id=800):
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x802c550a, 0x0)
ioctl$USBDEVFS_CONTROL(r3, 0x8004551a, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
open(0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x2, &(0x7f0000000000)=[{0x3d}, {0x6}]})
mkdir(0x0, 0x0)
r4 = syz_open_dev$sndpcmp(&(0x7f0000000b00), 0x0, 0x0)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000009, 0x13, r4, 0x0)

2.411480326s ago: executing program 0 (id=801):
pipe2(&(0x7f0000000300), 0x0)
syz_emit_ethernet(0x36, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002bc0)={0x2020}, 0x2020)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fanotify_init(0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={0xffffffffffffffff, 0x7, 0x0, 0x0, &(0x7f0000000040), 0x0, 0xffb0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$nl_route(0x10, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x29e, 0x0, &(0x7f0000000140)="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"})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_usb_connect$cdc_ncm(0x0, 0x91, &(0x7f0000000680)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x7f, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x6, 0x24, 0x6, 0x0, 0x1, ';'}, {0x5, 0x24, 0x0, 0xfffe}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x0, 0x0, 0x2f}, {0x6}, [@mbim_extended={0x8, 0x24, 0x1c, 0x3, 0x0, 0x1ff}, @network_terminal={0x7, 0x24, 0xa, 0x7, 0x0, 0x7}, @network_terminal={0x7, 0x24, 0xa, 0x6d, 0x0, 0xfe}, @mbim={0xc, 0x24, 0x1b, 0x100, 0x59d}]}}}}}]}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x38, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x8, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_DATA={0x4}]}}}]}, 0x38}}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000b00)={{0x12, 0x1, 0x0, 0xa5, 0xaf, 0x5f, 0x20, 0xe8d, 0x23, 0x3aab, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x56, 0x0, 0x0, 0xa}}]}}]}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000880)=ANY=[@ANYBLOB="00000000000080000000148a3045e2d59b2f835be5ea0e158eca154cbab5354fbf743f5fc122403262404ab03d579ff00ae8803b1d4b880ed1f02b5aa5b0c2883f9126da4a26a5f382ff54dd48e667192affe59dc40ee4fc3ec1030a0850e9281e119ab2de5ada1393ab9069", @ANYRES32=0x0, @ANYBLOB="00000000000000002400128009000100626f6e64000000001100028005000100030000000500150000000000"], 0x44}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
syz_io_uring_setup(0x24f8, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000040), &(0x7f0000000080))
socket$inet6_sctp(0xa, 0x801, 0x84)
syz_io_uring_setup(0x1fbf, &(0x7f0000000040)={0x0, 0x0, 0x140}, &(0x7f00000000c0), &(0x7f0000000100))

1.723349811s ago: executing program 3 (id=802):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbee6, 0x4010, r0, 0x132ca000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f0000000240), 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x20000050)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x14552, &(0x7f0000000240)=ANY=[], 0xfe, 0x11f3, &(0x7f0000000980)="$eJzs3E+LW1UYB+C3cWrHqfNHrdV2oQfduLo0s3AlSJApyASU2gitINw6NxpyTUJuGIiI1ZVbP4e4dCeIX2A2fgZ3s3HZhXiFpLVNTdUuOpH6PJv7kvf8cu8hEDjhnBy/8c2n/W6VdfNJNE6disYoIt1KkaIRd7y0P79eu77farf3rqR0uXW1+XpKaevlHz/4/LtXfpqcff/7rR/OxNHOh8e/7v5ydP7owvHvVz/pValXpcFwkvJ0Yzic5DfKIh30qn6W0rtlkVdF6g2qYrzQ75bD0Wia8sHB5sZoXFRVygfT1C+maTJMk/E05R/nvUHKsixtbgQPdPqfh3S+vVXXdURdn44no67r+qnYiLPxdGzGVnwZEc/Es/FcnIvn43y8EC/Ghdmok3h8AAAAAAAAAAAAAAAAAAAA+P/4u/P/27Hj/D8AAAAAAAAAAAAAAAAAAACcgPeuXd9vtdt7V1Jajyi/PuwcdubXeb/VjV6UUcSl2I7fYnb6f25eX367vXcpzezEV+XN2/mbh50nFvPN2d8J3M6vzXp38s15Pi3mz8TGvfnd2I5zy++/uzS/Hq+9ek8+i+34+aMYRhkHs3vfzX/RTOmtd9r35S/OxgEAAMDjIEt/Wrp+z7IH9ef5h/h94L719VpcXFvt3Imopp/187IsxovF+l9eUfz7ovGI3rkR/5EJKh7/YtXfTJyEux/6qp8EAAAAAAAAAACAh/GIdxGuxZKdZW+uZqoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/sAPHAgAAAADC/K3T6NgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgqAAD//99CzUo=")
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, &(0x7f0000000280))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x0, 0x0, 0x200000, 0x2000, &(0x7f0000000000/0x2000)=nil})

893.290407ms ago: executing program 4 (id=803):
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="04040a00000000000054679202ce9eaa48b326b038d97544c8b681bad547412afab3663029531077c8c4fa2f7501610d4eae6214096ae92430cd63486f07b04d9c519ab15a6e842e1352398f95ff35f5115a2c6c50f63336179b5e6b1f774a63506e8cb76bba42c6bee078240ec871a2bcf7dd5691833ac53a02f3614eae3afb9549df1b77ce0baebc9f6306644f6f08bbd3ca3229d272acd3483bf3ae4228f7a2b839594856918b10ca47ad4dc249d99c244aba277d101b5ac305"], 0xd)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04228e03c80000001900000000087153747f969e99df4ce46e32770322ecb729d355601ae95054505636932cc0e259ba2b5419ab8c9f86e4"], 0x14)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000780), 0x208e24b)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')
lseek(r2, 0x4, 0x0)
bpf$BPF_PROG_QUERY(0x9, &(0x7f0000000140)={@map=0x1, 0x0, 0x4, 0x0, &(0x7f0000000000)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
getdents(r2, 0x0, 0x48)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f00000002c0)={0x0, &(0x7f0000000340)=""/121, 0x79})
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000ac0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffc, 0xffffffffffffffe1, 0x0, 0x0, 0x10001, 0xfffffffffffff924], 0x2})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
r4 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x8, 0x3, 0x2c8, 0x160, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x230, 0xffffffff, 0xffffffff, 0x230, 0xffffffff, 0x7fffffe, 0x0, {[{{@uncond, 0x6, 0x130, 0x160, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x7d}}]}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{}, {0x2}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x328)
r6 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r6, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000002}, 0x10)
r7 = socket(0x1, 0x2, 0x0)
syz_io_uring_setup(0x27f3, &(0x7f0000000340), 0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000000)=""/135, 0x87}], 0x300)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_perm_addr={0x33}})
syz_emit_vhci(0x0, 0xffffffffffffffc7)

494.443768ms ago: executing program 3 (id=804):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={0x120, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0xf5, 0x33, @beacon={{{}, {}, @device_a, @broadcast, @random="90e488f9971a"}, 0x0, @random, 0x0, @void, @void, @val={0x3, 0x1}, @val={0x4, 0x6}, @void, @void, @void, @val={0x2a, 0x1}, @void, @void, @val={0x72, 0x6}, @void, @val={0x76, 0x6}, [{0xdd, 0x6, "2d5014b2109a"}, {0xdd, 0x61, "4f2a899e94bcf0613609929460dda7b3421f2af277170aab1eef1bc7a6bad283ec72e75c78d8f4f30f5e2ee79daf8ece54852b5b93eabb5832b001d39227230802e601a7f9749d370367565ddb88a137c4572cce24103d4337027917c48d29a186"}, {0xdd, 0x36, "5dad8ac12f96664d51c30bd3379c2d305630cd93fec0b4249d429b451f52399f26b866650e0e9464949a974045190fa9251c8b6aacda"}, {0xdd, 0x6, "83534cd40fda"}]}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x120}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[@ANYBLOB="98030000", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffff"], 0x398}}, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000000), 0x10)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, @host}, 0x10)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000006c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x1, 0xffffffff}}, @int={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4}]}}, &(0x7f0000000740)=""/105, 0x42, 0x69, 0x1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={0xffffffffffffffff, 0x0, 0x14, 0x0, &(0x7f00000006c0)="f6f4e9a1d78ad62ceef1884366a578bb3fb7dbfc", 0x0, 0x0, 0x0, 0x9, 0x0, &(0x7f0000000240)="482eadffffffffffff", 0x0}, 0x50)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @multicast}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

347.06299ms ago: executing program 2 (id=805):
pipe2(&(0x7f0000000300), 0x0)
syz_emit_ethernet(0x36, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002bc0)={0x2020}, 0x2020)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
fanotify_init(0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={0xffffffffffffffff, 0x7, 0x0, 0x0, &(0x7f0000000040), 0x0, 0xffb0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x3b7, 0x0, &(0x7f0000000140)="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"})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_usb_connect$cdc_ncm(0x0, 0x91, &(0x7f0000000680)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x7f, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x6, 0x24, 0x6, 0x0, 0x1, ';'}, {0x5, 0x24, 0x0, 0xfffe}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x0, 0x0, 0x2f}, {0x6}, [@mbim_extended={0x8, 0x24, 0x1c, 0x3}, @network_terminal={0x7, 0x24, 0xa, 0x7, 0x0, 0x7}, @network_terminal={0x7, 0x24, 0xa, 0x6d, 0x0, 0xfe}, @mbim={0xc, 0x24, 0x1b, 0x100, 0x59d}]}}}}}]}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x38, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x8, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_DATA={0x4}]}}}]}, 0x38}}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000b00)={{0x12, 0x1, 0x0, 0xa5, 0xaf, 0x5f, 0x20, 0xe8d, 0x23, 0x3aab, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x56, 0x0, 0x0, 0xa}}]}}]}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000880)=ANY=[@ANYBLOB="00000000000080000000148a3045e2d59b2f835be5ea0e158eca154cbab5354fbf743f5fc122403262404ab03d579ff00ae8803b1d4b880ed1f02b5aa5b0c2883f9126da4a26a5f382ff54dd48e667192affe59dc40ee4fc3ec1030a0850e9281e119ab2de5ada1393ab9069", @ANYRES32=0x0, @ANYBLOB="00000000000000002400128009000100626f6e64000000001100028005000100030000000500150000000000"], 0x44}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
syz_io_uring_setup(0x24f8, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000040), &(0x7f0000000080))
socket$inet6_sctp(0xa, 0x801, 0x84)
syz_io_uring_setup(0x1fbf, &(0x7f0000000040)={0x0, 0x0, 0x140}, &(0x7f00000000c0), &(0x7f0000000100))

345.259513ms ago: executing program 1 (id=806):
ioctl$int_in(0xffffffffffffffff, 0x5452, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000feffffff850000008c00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
listen(r0, 0xc)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @local}, 0x10)
getsockopt$inet_int(r1, 0x10d, 0xd4, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000000100)=0x9, 0x4)
setsockopt$inet6_buf(r3, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000002000000", 0xfe60)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000340)=0x411, 0x4)
syz_emit_ethernet(0x3e, &(0x7f0000000840)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @parameter_prob={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}}}}}}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'rose0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r4], 0x20}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb7, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x74}, [@ldst={0x4}]}, &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x2a)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r7, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r8, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff"], 0x398}}, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000000)={0x0, 0x6, 0x3, 0x3f}, &(0x7f0000000040)=0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})

0s ago: executing program 3 (id=807):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_io_uring_setup(0x0, &(0x7f0000000380), &(0x7f0000000100), 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_mount_image$fuse(0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group', @ANYRESOCT], 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x0, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r3, 0xc100565c, &(0x7f0000000140)={0x0, 0x40, 0x4, {0x1, @raw_data="3d924b8271394fa4ec01eb92492ff84715d1a004d08b012a7cafe27a5f313d31bbdae5b411ca5be6bfe92437ed0d21b5180e375be56b3b9306d7dbb26bf9f22de7ac7681cca450055250217bdf1113b4258293ba4efed32147bda8454dd115bd5ba066ba06f2854cc96db9a98055cbde9fd084a1223ada91ed2e832907a01ab5ee65f997b617f73d1aa5a6dfc47acdc5eb834f8e448469d235e4380cbcc3314c94970349a3c1374ffec96177b67caa0656f9664277cadb8597e7d911ad1da457ef9744b0993c57a7"}})
ioctl$vim2m_VIDIOC_STREAMON(r3, 0x40045612, &(0x7f0000000000)=0x1)

kernel console output (not intermixed with test programs):

] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  272.509615][   T35] usb 5-1: unable to get target info from device
[  272.516052][   T35] usb 5-1: could not get target info (-110)
[  272.522436][   T35] usb 5-1: could not probe fw (-110)
[  272.785640][ T5101] usb 5-1: USB disconnect, device number 18
[  272.836065][ T5146] libceph: connect (1)[c::]:6789 error -101
[  272.852402][ T5146] libceph: mon0 (1)[c::]:6789 connect error
[  272.917927][ T5107] Bluetooth: hci6: command tx timeout
[  273.008266][ T7626] loop1: detected capacity change from 0 to 512
[  273.120677][ T7626] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  273.137837][ T5146] libceph: connect (1)[c::]:6789 error -101
[  273.156840][ T5146] libceph: mon0 (1)[c::]:6789 connect error
[  273.159034][ T7626] ext4 filesystem being mounted at /16/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  273.166995][ T5100] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.656719][ T7618] ceph: No mds server is up or the cluster is laggy
[  273.698037][ T5146] libceph: connect (1)[c::]:6789 error -101
[  273.704205][ T5146] libceph: mon0 (1)[c::]:6789 connect error
[  273.887765][ T7634] warning: `syz.4.477' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  273.919361][ T6836] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.943633][ T7638] netlink: 'syz.4.477': attribute type 13 has an invalid length.
[  274.321413][ T5107] Bluetooth: hci3: SCO packet for unknown connection handle 201
[  274.325993][ T5107] Bluetooth: hci3: SCO packet for unknown connection handle 1039
[  274.474443][ T7103] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.872667][ T7636] loop2: detected capacity change from 0 to 512
[  275.003694][ T7636] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  275.079615][ T7636] EXT4-fs (loop2): orphan cleanup on readonly fs
[  275.125287][ T7636] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[  275.160458][ T7636] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  275.226380][ T7636] EXT4-fs error (device loop2): ext4_acquire_dquot:6862: comm syz.2.478: Failed to acquire dquot type 1
[  275.351747][ T7636] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.478: bg 0: block 40: padding at end of block bitmap is not set
[  275.412719][ T7642] loop4: detected capacity change from 0 to 40427
[  275.477906][ T7636] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  275.520015][ T7636] EXT4-fs (loop2): 1 truncate cleaned up
[  275.591587][ T7636] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  275.674869][ T7642] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  275.721974][ T7642] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  275.758171][ T7642] F2FS-fs (loop4): invalid crc value
[  275.783628][ T7642] F2FS-fs (loop4): Found nat_bits in checkpoint
[  276.033316][ T7642] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  276.064039][ T7642] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  276.109364][ T6896] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.253923][   T11] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  276.284206][   T11] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  276.378573][ T5107] Bluetooth: hci6: Malformed HCI Event: 0x22
[  276.381429][ T7669] loop2: detected capacity change from 0 to 64
[  276.688412][ T7671] Cannot find add_set index 0 as target
[  276.707861][ T7671] netdevsim netdevsim1: Direct firmware load for ng failed with error -2
[  277.368803][ T7671] netdevsim netdevsim1: Falling back to sysfs fallback for: ng
[  278.485305][ T5107] Bluetooth: hci6: command tx timeout
[  278.683096][ T7683] loop0: detected capacity change from 0 to 512
[  278.797069][ T7688] netlink: 'syz.2.490': attribute type 13 has an invalid length.
[  279.273046][ T7683] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  279.392757][ T7683] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.159755][   T55] Bluetooth: hci0: SCO packet for unknown connection handle 1039
[  281.295067][ T7103] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.365243][   T55] Bluetooth: hci3: Malformed HCI Event: 0x22
[  281.463192][ T7716] Cannot find add_set index 0 as target
[  281.556649][ T7719] loop0: detected capacity change from 0 to 64
[  281.584784][ T7716] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[  281.738948][ T7716] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  283.411328][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  283.612926][ T7734] netlink: 'syz.3.502': attribute type 13 has an invalid length.
[  283.659418][ T7736] netlink: 'syz.0.503': attribute type 29 has an invalid length.
[  283.677843][ T7736] netlink: 'syz.0.503': attribute type 29 has an invalid length.
[  283.707660][ T5101] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  283.739178][ T7736] netlink: 'syz.0.503': attribute type 29 has an invalid length.
[  283.747193][    T9] libceph: connect (1)[c::]:6789 error -101
[  283.758244][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  283.760888][ T7736] netlink: 'syz.0.503': attribute type 29 has an invalid length.
[  283.793075][ T7736] netlink: 'syz.0.503': attribute type 29 has an invalid length.
[  283.927566][ T7738] ceph: No mds server is up or the cluster is laggy
[  283.936751][ T5101] usb 3-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  283.986357][ T5101] usb 3-1: config 9 has 0 interfaces, different from the descriptor's value: 1
[  284.067370][ T5101] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  284.113737][ T5101] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.245783][ T7715] loop4: detected capacity change from 0 to 40427
[  284.285909][ T7715] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  284.352186][ T7715] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  284.399196][ T7715] F2FS-fs (loop4): invalid crc value
[  284.421900][ T7715] F2FS-fs (loop4): Failed to start F2FS issue_checkpoint_thread (-4)
[  284.603116][ T5101] usb 3-1: USB disconnect, device number 13
[  285.024263][ T7757] loop4: detected capacity change from 0 to 512
[  285.096441][ T7757] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.233616][ T7763] loop3: detected capacity change from 0 to 64
[  285.284719][ T7757] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.732559][ T7769] overlay: ./file1 is not a directory
[  286.312525][   T55] Bluetooth: hci1: Malformed HCI Event: 0x22
[  286.405212][ T7776] Cannot find add_set index 0 as target
[  286.432147][ T7775] loop3: detected capacity change from 0 to 2048
[  286.514896][ T7775] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  286.535916][ T7777] netdevsim netdevsim0: Direct firmware load for ng failed with error -2
[  286.545183][ T7775] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  286.561259][ T7777] netdevsim netdevsim0: Falling back to sysfs fallback for: ng
[  286.755582][ T7775] Process accounting resumed
[  286.970403][ T7781] netlink: 'syz.1.515': attribute type 29 has an invalid length.
[  287.002992][ T7781] netlink: 'syz.1.515': attribute type 29 has an invalid length.
[  287.055527][ T7784] netlink: 'syz.1.515': attribute type 29 has an invalid length.
[  287.111447][ T7781] netlink: 'syz.1.515': attribute type 29 has an invalid length.
[  287.169567][   T55] Bluetooth: hci0: SCO packet for unknown connection handle 1039
[  287.380608][ T7790] loop1: detected capacity change from 0 to 512
[  287.424234][ T6018] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.536134][ T7790] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  287.613636][ T7790] EXT4-fs (loop1): orphan cleanup on readonly fs
[  287.636687][ T7790] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[  287.649903][ T7790] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  287.659958][ T7790] EXT4-fs error (device loop1): ext4_acquire_dquot:6862: comm syz.1.517: Failed to acquire dquot type 1
[  287.820996][ T7790] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.517: bg 0: block 40: padding at end of block bitmap is not set
[  287.886285][ T7790] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  287.902082][ T7790] EXT4-fs (loop1): 1 truncate cleaned up
[  287.916061][ T7790] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  288.057670][ T6836] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.357643][   T55] Bluetooth: hci1: command tx timeout
[  288.757543][    T8] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  288.890236][ T7808] loop4: detected capacity change from 0 to 512
[  288.930237][ T7808] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  288.980105][    T8] usb 2-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  288.991798][    T8] usb 2-1: config 9 has 0 interfaces, different from the descriptor's value: 1
[  289.005286][    T8] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  289.021200][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.067799][ T7808] EXT4-fs (loop4): orphan cleanup on readonly fs
[  289.096549][ T7808] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[  289.125968][ T7808] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  289.162730][ T7808] EXT4-fs error (device loop4): ext4_acquire_dquot:6862: comm syz.4.523: Failed to acquire dquot type 1
[  289.196234][ T7808] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.523: bg 0: block 40: padding at end of block bitmap is not set
[  289.256829][ T7808] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  289.286425][ T7808] EXT4-fs (loop4): 1 truncate cleaned up
[  289.308440][ T7808] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  289.454570][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  289.462135][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  289.471001][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  289.478509][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  289.485946][    C0] raw-gadget.0 gadget.1: ignoring, device is not running
[  289.495991][    T8] usb 2-1: USB disconnect, device number 14
[  289.537894][ T6018] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.988629][ T7824] netlink: 4 bytes leftover after parsing attributes in process `syz.0.527'.
[  290.031367][ T7826] validate_nla: 1 callbacks suppressed
[  290.031389][ T7826] netlink: 'syz.4.528': attribute type 29 has an invalid length.
[  290.058024][ T7826] netlink: 'syz.4.528': attribute type 29 has an invalid length.
[  290.072214][ T7826] netlink: 'syz.4.528': attribute type 29 has an invalid length.
[  290.089803][ T7826] netlink: 'syz.4.528': attribute type 29 has an invalid length.
[  290.105904][ T7826] netlink: 'syz.4.528': attribute type 29 has an invalid length.
[  290.229708][ T7831] loop2: detected capacity change from 0 to 512
[  290.531167][ T7831] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.691178][ T7831] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  291.431130][   T55] Bluetooth: hci1: SCO packet for unknown connection handle 1039
[  291.452296][ T7852] loop4: detected capacity change from 0 to 64
[  291.558979][ T5208] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  291.767526][ T5208] usb 4-1: Using ep0 maxpacket: 32
[  291.798172][ T5208] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  291.836170][ T5208] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  291.906528][ T5208] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  291.972453][ T5208] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  292.024556][ T5208] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  292.035314][ T5208] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  292.157325][ T5208] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  292.212331][ T5208] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.263207][ T5208] usb 4-1: Product: syz
[  292.310104][ T5208] usb 4-1: Manufacturer: syz
[  292.314725][ T5208] usb 4-1: SerialNumber: syz
[  292.650157][ T7845] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  292.675587][ T7845] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  292.718718][ T6896] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.366283][ T7870] loop0: detected capacity change from 0 to 64
[  293.464957][ T7871] netlink: 4 bytes leftover after parsing attributes in process `syz.2.540'.
[  293.973592][ T5208] cdc_ncm 4-1:1.0: bind() failure
[  294.005028][ T5208] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  294.040247][ T5208] cdc_ncm 4-1:1.1: bind() failure
[  294.069959][ T5208] usb 4-1: USB disconnect, device number 21
[  294.191095][   T47] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  294.453416][   T47] usb 3-1: config 9 has an invalid descriptor of length 0, skipping remainder of the config
[  294.507480][   T47] usb 3-1: config 9 has 0 interfaces, different from the descriptor's value: 1
[  294.526967][   T47] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  294.537753][   T47] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.985375][   T47] usb 3-1: USB disconnect, device number 14
[  296.241241][ T7905] loop3: detected capacity change from 0 to 64
[  296.292972][ T7908] netlink: 52 bytes leftover after parsing attributes in process `syz.1.551'.
[  296.323243][   T55] Bluetooth: hci1: SCO packet for unknown connection handle 1039
[  297.064077][   T47] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  297.287634][   T47] usb 4-1: Using ep0 maxpacket: 32
[  297.318572][   T47] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  297.344989][ T7906] loop4: detected capacity change from 0 to 32768
[  297.450599][   T47] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  297.458855][ T7906] btrfs: Deprecated parameter 'usebackuproot'
[  297.489361][ T7906] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  297.518759][ T7906] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.552 (7906)
[  297.532943][   T47] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  297.614385][ T7906] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  297.626544][   T47] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  297.663336][   T47] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  297.673209][ T7906] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  297.700384][ T7922] loop1: detected capacity change from 0 to 512
[  297.717507][   T47] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  297.717597][ T7906] BTRFS info (device loop4): disk space caching is enabled
[  297.747584][   T47] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  297.809767][ T7922] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  297.828161][   T47] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.857962][ T7922] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.901781][   T47] usb 4-1: Product: syz
[  297.930176][   T47] usb 4-1: Manufacturer: syz
[  297.974127][   T47] usb 4-1: SerialNumber: syz
[  298.003086][ T7906] BTRFS info (device loop4): rebuilding free space tree
[  298.168217][ T7906] BTRFS info (device loop4): disabling free space tree
[  298.177169][ T7906] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  298.187379][ T7906] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  298.336940][ T7913] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  298.350888][ T7913] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  298.743761][ T6018] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  299.857219][   T47] cdc_ncm 4-1:1.0: bind() failure
[  299.885873][   T47] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  299.893245][   T47] cdc_ncm 4-1:1.1: bind() failure
[  299.941544][   T47] usb 4-1: USB disconnect, device number 22
[  301.001194][ T6836] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.259148][ T7973] loop1: detected capacity change from 0 to 512
[  301.373464][ T7973] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  301.391838][ T7973] EXT4-fs (loop1): orphan cleanup on readonly fs
[  301.406465][ T5107] Bluetooth: hci4: SCO packet for unknown connection handle 1039
[  301.543531][ T7981] netlink: 52 bytes leftover after parsing attributes in process `syz.3.568'.
[  301.587819][ T7973] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[  301.681318][ T7973] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  301.718347][ T7973] EXT4-fs error (device loop1): ext4_acquire_dquot:6862: comm syz.1.565: Failed to acquire dquot type 1
[  301.753557][ T7973] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.565: bg 0: block 40: padding at end of block bitmap is not set
[  301.771346][ T7973] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  301.785171][ T7973] EXT4-fs (loop1): 1 truncate cleaned up
[  301.794512][ T7973] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  301.921306][ T6836] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.516128][ T7996] loop4: detected capacity change from 0 to 64
[  302.813292][   T47] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  303.660050][   T47] usb 3-1: Using ep0 maxpacket: 32
[  303.673784][   T47] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  303.688936][   T47] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  303.699512][   T47] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  303.709573][   T47] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  303.719758][   T47] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  303.737764][   T47] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  303.948905][   T47] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  304.660265][   T47] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.683488][   T47] usb 3-1: Product: syz
[  304.726179][   T47] usb 3-1: Manufacturer: syz
[  304.782806][   T47] usb 3-1: SerialNumber: syz
[  304.977487][    T8] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  305.002923][ T8017] netlink: 'syz.0.582': attribute type 29 has an invalid length.
[  305.027661][ T8017] netlink: 'syz.0.582': attribute type 29 has an invalid length.
[  305.059024][ T8018] netlink: 'syz.0.582': attribute type 29 has an invalid length.
[  305.091817][ T8017] netlink: 'syz.0.582': attribute type 29 has an invalid length.
[  305.101979][ T7993] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  305.116107][ T7993] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  305.116509][ T8017] netlink: 'syz.0.582': attribute type 29 has an invalid length.
[  305.197738][    T8] usb 2-1: Using ep0 maxpacket: 32
[  305.217059][    T8] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  305.271240][    T8] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  305.311704][    T8] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  305.334643][    T8] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  305.508242][    T8] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  305.631860][    T8] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  305.674045][    T8] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  305.691610][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  305.705227][    T8] usb 2-1: Product: syz
[  305.711125][    T8] usb 2-1: Manufacturer: syz
[  305.716089][    T8] usb 2-1: SerialNumber: syz
[  305.961931][ T8007] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  305.972191][ T8007] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  306.074956][    T8] cdc_ncm 2-1:1.0: bind() failure
[  306.095787][    T8] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  306.106303][    T8] cdc_ncm 2-1:1.1: bind() failure
[  306.132872][    T8] usb 2-1: USB disconnect, device number 15
[  306.286269][ T5107] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  306.338037][   T47] cdc_ncm 3-1:1.0: bind() failure
[  306.347011][   T47] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  306.445475][   T47] cdc_ncm 3-1:1.1: bind() failure
[  306.447351][ T5107] Bluetooth: hci1: SCO packet for unknown connection handle 1039
[  306.495051][   T47] usb 3-1: USB disconnect, device number 15
[  306.596576][ T8013] loop4: detected capacity change from 0 to 40427
[  306.635928][ T8013] F2FS-fs (loop4): invalid crc value
[  306.649324][ T8013] F2FS-fs (loop4): Found nat_bits in checkpoint
[  306.790742][ T8013] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  306.927616][   T47] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  307.016982][ T8013] syz.4.581: attempt to access beyond end of device
[  307.016982][ T8013] loop4: rw=2049, sector=53256, nr_sectors = 8 limit=40427
[  307.137550][   T47] usb 3-1: Using ep0 maxpacket: 8
[  307.225624][   T47] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  308.000701][ T6018] syz-executor: attempt to access beyond end of device
[  308.000701][ T6018] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  308.019201][   T47] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  308.040980][   T47] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.064012][   T47] usb 3-1: Product: syz
[  308.067902][ T6018] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  308.093803][   T47] usb 3-1: Manufacturer: syz
[  308.116822][   T47] usb 3-1: SerialNumber: syz
[  308.142256][   T47] usb 3-1: bad CDC descriptors
[  310.318492][ T5189] usb 3-1: USB disconnect, device number 16
[  311.738644][ T8063] loop0: detected capacity change from 0 to 8192
[  311.749236][ T8063] FAT-fs (loop0): Unrecognized mount option "�: " or missing value
[  312.407672][ T5189] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  312.617561][ T5189] usb 5-1: Using ep0 maxpacket: 32
[  313.283456][ T5189] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  313.306615][ T5189] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  313.317105][ T5189] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  313.327599][ T5189] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  313.357925][ T5189] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  313.383747][ T5189] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  313.413915][ T5189] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  313.413997][ T8065] loop3: detected capacity change from 0 to 40427
[  313.432510][ T5189] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.451666][ T5189] usb 5-1: Product: syz
[  313.455874][ T5189] usb 5-1: Manufacturer: syz
[  313.471983][ T5189] usb 5-1: SerialNumber: syz
[  313.506928][ T8065] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  313.530770][ T8081] loop0: detected capacity change from 0 to 512
[  313.548180][ T8065] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  313.552317][ T8081] EXT4-fs: Ignoring removed bh option
[  313.590164][ T8065] F2FS-fs (loop3): invalid crc value
[  313.614742][ T8081] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  313.650862][ T8065] F2FS-fs (loop3): Found nat_bits in checkpoint
[  313.712237][ T8081] EXT4-fs (loop0): 1 truncate cleaned up
[  313.723841][ T8081] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.736169][ T8073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  313.769852][ T8073] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  313.809436][ T8081] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.833860][ T8065] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  313.859762][ T8065] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  315.704948][ T5189] cdc_ncm 5-1:1.0: bind() failure
[  315.741895][ T5189] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  315.769331][   T55] Bluetooth: hci6: SCO packet for unknown connection handle 1039
[  315.771637][   T55] Bluetooth: Unexpected start frame (len 10)
[  315.778735][ T5189] cdc_ncm 5-1:1.1: bind() failure
[  316.043485][ T5189] usb 5-1: USB disconnect, device number 19
[  316.998678][   T47] libceph: connect (1)[c::]:6789 error -101
[  317.018016][   T47] libceph: mon0 (1)[c::]:6789 connect error
[  317.288644][   T47] libceph: connect (1)[c::]:6789 error -101
[  317.307973][   T47] libceph: mon0 (1)[c::]:6789 connect error
[  317.645024][ T8121] binder_alloc: 8118: binder_alloc_buf, no vma
[  317.653651][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  317.717555][ T1245] ieee802154 phy1 wpan1: encryption failed: -22
[  318.225384][ T5189] libceph: connect (1)[c::]:6789 error -101
[  318.231801][ T5189] libceph: mon0 (1)[c::]:6789 connect error
[  318.241263][ T8105] ceph: No mds server is up or the cluster is laggy
[  318.437307][ T8116] loop1: detected capacity change from 0 to 8192
[  318.462504][ T8116] FAT-fs (loop1): Unrecognized mount option "�: " or missing value
[  319.672061][ T8126] loop2: detected capacity change from 0 to 4096
[  319.697799][ T8126] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  319.819165][ T8126] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  319.852014][ T8126] ntfs3: loop2: mft corrupted
[  319.867809][ T8126] ntfs3: loop2: Failed to load $Extend (-22).
[  319.878908][ T8126] ntfs3: loop2: Failed to initialize $Extend.
[  320.415855][ T5189] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  320.595241][ T8123] loop3: detected capacity change from 0 to 32768
[  320.617886][ T8123] btrfs: Deprecated parameter 'usebackuproot'
[  320.627033][ T8143] loop2: detected capacity change from 0 to 64
[  320.637619][ T5189] usb 2-1: Using ep0 maxpacket: 32
[  320.646241][ T8123] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  320.671261][ T5189] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  320.710877][ T5189] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  320.766093][ T5189] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  320.766567][ T8123] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.609 (8123)
[  320.813806][ T5189] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  320.882262][ T8123] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  320.883188][ T5189] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  320.936789][ T5189] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  320.949528][ T8123] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  320.971046][ T5189] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  320.994028][ T5189] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.023903][ T5189] usb 2-1: Product: syz
[  321.027508][ T8123] BTRFS info (device loop3): disk space caching is enabled
[  321.038556][ T5189] usb 2-1: Manufacturer: syz
[  321.055702][ T5189] usb 2-1: SerialNumber: syz
[  321.112422][ T8132] loop4: detected capacity change from 0 to 40427
[  321.123427][ T8132] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  321.134340][ T8132] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  321.151664][ T8132] F2FS-fs (loop4): invalid crc value
[  321.269829][ T8123] BTRFS info (device loop3): rebuilding free space tree
[  321.300383][ T8139] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  321.304860][ T8123] BTRFS info (device loop3): disabling free space tree
[  321.309559][ T8139] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  321.316016][ T8123] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  321.374325][ T8132] F2FS-fs (loop4): Found nat_bits in checkpoint
[  321.406923][ T8123] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  321.515962][ T5100] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  321.561654][ T8132] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  321.594409][ T8132] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  321.646791][ T8167] netlink: 'syz.2.616': attribute type 10 has an invalid length.
[  321.699154][ T8168] netlink: 28 bytes leftover after parsing attributes in process `syz.2.616'.
[  321.746304][ T8167] team0: Failed to send options change via netlink (err -105)
[  321.772207][ T8167] team0: Port device netdevsim0 added
[  321.851576][ T5208] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  322.117948][   T47] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  322.307711][   T47] usb 3-1: Using ep0 maxpacket: 8
[  322.335322][   T47] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  322.386236][   T47] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  322.407528][   T47] usb 3-1: config 1 has no interface number 1
[  322.436421][   T47] usb 3-1: too many endpoints for config 1 interface 2 altsetting 220: 113, using maximum allowed: 30
[  322.486037][   T47] usb 3-1: config 1 interface 2 altsetting 220 has an invalid endpoint descriptor of length 3, skipping
[  322.520320][   T47] usb 3-1: config 1 interface 2 altsetting 220 has 1 endpoint descriptor, different from the interface descriptor's value: 113
[  322.552063][   T47] usb 3-1: config 1 interface 2 has no altsetting 0
[  322.575041][   T47] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  322.594079][   T47] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  322.610171][   T47] usb 3-1: Product: 쑿퉈ਝ쑻
[  322.616132][   T47] usb 3-1: Manufacturer: ф
[  322.627276][   T47] usb 3-1: SerialNumber: syz
[  322.786882][ T5107] Bluetooth: hci3: SCO packet for unknown connection handle 201
[  322.839281][ T5107] Bluetooth: hci3: SCO packet for unknown connection handle 1039
[  323.031182][   T47] usb 3-1: USB disconnect, device number 17
[  323.098908][ T5189] cdc_ncm 2-1:1.0: bind() failure
[  323.123826][ T5189] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  323.185160][ T5189] cdc_ncm 2-1:1.1: bind() failure
[  323.219019][ T5189] usb 2-1: USB disconnect, device number 16
[  323.390278][ T8176] loop4: detected capacity change from 0 to 4096
[  323.399037][ T8176] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  323.444090][ T5097] udevd[5097]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  323.643425][ T8176] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  323.665030][ T8176] ntfs3: loop4: mft corrupted
[  323.670544][ T8176] ntfs3: loop4: Failed to load $Extend (-22).
[  323.676757][ T8176] ntfs3: loop4: Failed to initialize $Extend.
[  323.824401][ T8185] netlink: 'syz.3.622': attribute type 29 has an invalid length.
[  323.866188][ T8185] netlink: 'syz.3.622': attribute type 29 has an invalid length.
[  323.950772][ T8176] ntfs3: Unknown parameter '����������01777777777777777777777���X�c�v�:�Q���'
[  323.959038][ T8186] netlink: 'syz.3.622': attribute type 29 has an invalid length.
[  324.006032][ T8185] netlink: 'syz.3.622': attribute type 29 has an invalid length.
[  324.036557][ T8185] netlink: 'syz.3.622': attribute type 29 has an invalid length.
[  324.839016][ T5107] Bluetooth: hci6: command 0x0406 tx timeout
[  324.917869][ T5208] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  325.197509][ T5208] usb 3-1: Using ep0 maxpacket: 8
[  325.215460][ T5208] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  325.255004][ T5208] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  325.285960][ T5208] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.306511][ T5208] usb 3-1: Product: syz
[  325.325433][ T5208] usb 3-1: Manufacturer: syz
[  325.341440][ T5208] usb 3-1: SerialNumber: syz
[  325.375185][ T5208] usb 3-1: bad CDC descriptors
[  325.443536][ T5208] libceph: connect (1)[c::]:6789 error -101
[  325.491682][ T5208] libceph: mon0 (1)[c::]:6789 connect error
[  325.548211][ T8197] loop3: detected capacity change from 0 to 4096
[  325.561419][ T8197] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  325.593636][ T8199] ceph: No mds server is up or the cluster is laggy
[  326.150457][ T8197] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  326.164165][ T8197] ntfs3: loop3: mft corrupted
[  326.171191][ T8197] ntfs3: loop3: Failed to load $Extend (-22).
[  326.177785][ T8197] ntfs3: loop3: Failed to initialize $Extend.
[  326.394237][ T8210] ntfs3: Unknown parameter '����������01777777777777777777777���X�c�v�:�Q���'
[  326.730226][ T8201] loop0: detected capacity change from 0 to 32768
[  326.737956][ T8212] netlink: 76 bytes leftover after parsing attributes in process `syz.1.629'.
[  326.783714][ T8201] btrfs: Deprecated parameter 'usebackuproot'
[  326.810021][ T8201] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  326.863356][ T8201] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.627 (8201)
[  327.048088][ T8201] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  327.071277][ T8201] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  327.157540][ T5208] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  327.263982][ T8201] BTRFS info (device loop0): disk space caching is enabled
[  327.517360][ T5146] usb 3-1: USB disconnect, device number 18
[  327.557565][ T5208] usb 4-1: Using ep0 maxpacket: 32
[  327.623802][ T5208] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  327.710033][ T5208] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  327.750601][ T8201] BTRFS info (device loop0): rebuilding free space tree
[  327.762966][ T5208] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  327.817009][ T5208] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  327.861890][ T5208] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  327.885574][ T8201] BTRFS info (device loop0): disabling free space tree
[  327.906070][ T5208] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  327.915491][ T8201] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  327.953265][ T8201] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  327.972225][ T5208] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  327.996942][ T5208] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  328.035003][ T5208] usb 4-1: Product: syz
[  328.053965][ T5208] usb 4-1: Manufacturer: syz
[  328.066071][ T5208] usb 4-1: SerialNumber: syz
[  328.115572][ T8209] loop4: detected capacity change from 0 to 40427
[  328.170574][ T8209] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  328.182154][ T8209] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  328.236355][   T29] audit: type=1804 audit(1720143826.629:23): pid=8236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.627" name="/newroot/47/file1/cgroup.controllers" dev="loop0" ino=263 res=1 errno=0
[  328.293327][ T8209] F2FS-fs (loop4): invalid crc value
[  328.346918][ T8215] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  328.350151][ T8209] F2FS-fs (loop4): Found nat_bits in checkpoint
[  328.374000][ T8215] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  328.531357][ T8209] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  328.558360][ T8209] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  328.600379][ T7103] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  329.273809][ T5107] Bluetooth: hci0: SCO packet for unknown connection handle 1039
[  329.522064][ T8252] netlink: 16 bytes leftover after parsing attributes in process `syz.0.635'.
[  329.602364][ T8254] netlink: 28 bytes leftover after parsing attributes in process `syz.4.634'.
[  329.875983][ T5208] cdc_ncm 4-1:1.0: bind() failure
[  329.917515][ T5101] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  329.957522][   T55] Bluetooth: hci0: command tx timeout
[  330.054157][ T5208] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  330.063849][ T5208] cdc_ncm 4-1:1.1: bind() failure
[  330.073978][ T5208] usb 4-1: USB disconnect, device number 23
[  330.907578][ T5101] usb 5-1: Using ep0 maxpacket: 8
[  330.932214][ T5101] usb 5-1: config 1 has an invalid interface descriptor of length 3, skipping
[  330.955739][ T8264] loop2: detected capacity change from 0 to 512
[  330.966472][ T5101] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  330.993310][ T5101] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  331.111171][ T8264] EXT4-fs (loop2): 1 truncate cleaned up
[  331.138684][ T8264] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  331.216998][ T5101] usb 5-1: config 1 has no interface number 1
[  331.223431][ T5101] usb 5-1: too many endpoints for config 1 interface 2 altsetting 220: 113, using maximum allowed: 30
[  331.235189][ T5101] usb 5-1: config 1 interface 2 altsetting 220 has 0 endpoint descriptors, different from the interface descriptor's value: 113
[  331.253947][ T5101] usb 5-1: config 1 interface 2 has no altsetting 0
[  331.263272][ T5101] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  331.277475][ T5101] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.297581][ T5101] usb 5-1: Product: 쑿퉈ਝ쑻
[  331.303422][ T5101] usb 5-1: Manufacturer: ф
[  331.308053][ T5101] usb 5-1: SerialNumber: syz
[  331.648569][ T5101] usb 5-1: USB disconnect, device number 20
[  331.692783][ T6896] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.913876][ T8280] netlink: 76 bytes leftover after parsing attributes in process `syz.2.641'.
[  331.945032][ T5097] udevd[5097]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  332.346283][ T8293] Cannot find add_set index 0 as target
[  332.502905][ T8293] netdevsim netdevsim2: Direct firmware load for ng failed with error -2
[  332.517493][ T8293] netdevsim netdevsim2: Falling back to sysfs fallback for: ng
[  332.642280][ T8270] loop1: detected capacity change from 0 to 32768
[  332.670584][ T8270] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.640 (8270)
[  332.714478][ T8270] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  332.743422][ T8270] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  332.790943][ T8270] BTRFS info (device loop1): using free-space-tree
[  333.374602][ T6836] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  333.614710][ T8288] loop3: detected capacity change from 0 to 32768
[  333.659344][ T8288] btrfs: Deprecated parameter 'usebackuproot'
[  333.665504][ T8288] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  333.769122][ T8288] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.643 (8288)
[  334.056809][ T8288] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  334.158330][ T8288] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  334.197804][   T55] Bluetooth: hci0: command tx timeout
[  334.323608][ T8288] BTRFS info (device loop3): disk space caching is enabled
[  334.342297][ T8292] loop4: detected capacity change from 0 to 40427
[  334.628062][ T8292] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  334.636973][ T5144] libceph: connect (1)[c::]:6789 error -101
[  334.674350][ T8292] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  334.691433][ T5144] libceph: mon0 (1)[c::]:6789 connect error
[  334.782486][ T8292] F2FS-fs (loop4): invalid crc value
[  334.840923][ T8288] BTRFS info (device loop3): rebuilding free space tree
[  334.859974][ T8338] ceph: No mds server is up or the cluster is laggy
[  334.874587][ T8364] netlink: 16 bytes leftover after parsing attributes in process `syz.0.649'.
[  334.897304][ T8292] F2FS-fs (loop4): Found nat_bits in checkpoint
[  334.906856][   T55] Bluetooth: hci0: SCO packet for unknown connection handle 1039
[  334.914403][ T8288] BTRFS info (device loop3): disabling free space tree
[  334.978709][ T8288] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  335.061239][ T8288] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  335.175373][ T8292] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  335.184350][ T8292] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  335.219042][ T5100] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  335.324492][   T53] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  335.346563][   T53] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  335.721248][ T8375] netlink: 28 bytes leftover after parsing attributes in process `syz.0.654'.
[  335.905120][   T55] Bluetooth: hci1: link tx timeout
[  335.914604][   T55] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  336.041944][ T5144] libceph: connect (1)[c::]:6789 error -101
[  336.051786][ T5144] libceph: mon0 (1)[c::]:6789 connect error
[  336.057993][ T5146] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  336.204298][ T8380] ceph: No mds server is up or the cluster is laggy
[  336.213203][ T8387] netlink: 76 bytes leftover after parsing attributes in process `syz.4.652'.
[  336.282066][ T5146] usb 1-1: Using ep0 maxpacket: 8
[  336.311163][ T5146] usb 1-1: config 1 has an invalid interface descriptor of length 3, skipping
[  336.347591][ T5146] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  336.368283][ T5146] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  336.387684][ T5146] usb 1-1: config 1 has no interface number 1
[  336.393979][ T5146] usb 1-1: too many endpoints for config 1 interface 2 altsetting 220: 113, using maximum allowed: 30
[  336.395834][ T8391] loop4: detected capacity change from 0 to 1024
[  336.413708][ T5146] usb 1-1: config 1 interface 2 altsetting 220 has 0 endpoint descriptors, different from the interface descriptor's value: 113
[  336.457463][ T5146] usb 1-1: config 1 interface 2 has no altsetting 0
[  336.482382][ T5146] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  336.497069][ T5146] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.513495][ T5146] usb 1-1: Product: 쑿퉈ਝ쑻
[  336.515352][ T8391] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.522362][ T5146] usb 1-1: Manufacturer: ф
[  336.534278][ T8396] netlink: 'syz.3.658': attribute type 29 has an invalid length.
[  336.538043][ T5146] usb 1-1: SerialNumber: syz
[  336.580402][ T8396] netlink: 'syz.3.658': attribute type 29 has an invalid length.
[  336.593646][ T8396] netlink: 'syz.3.658': attribute type 29 has an invalid length.
[  336.633737][ T8396] netlink: 'syz.3.658': attribute type 29 has an invalid length.
[  336.670475][ T8396] netlink: 'syz.3.658': attribute type 29 has an invalid length.
[  336.727575][ T5144] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  336.928994][ T6018] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.985523][ T5146] usb 1-1: USB disconnect, device number 13
[  337.077583][ T5144] usb 3-1: Using ep0 maxpacket: 32
[  337.688905][ T5144] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  337.730109][ T5144] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  337.751956][ T5144] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  337.769502][ T5144] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  337.780712][ T5101] libceph: connect (1)[c::]:6789 error -101
[  337.786761][ T5144] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  337.796906][ T5144] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  337.800116][ T5101] libceph: mon0 (1)[c::]:6789 connect error
[  337.822537][ T5144] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  337.832001][ T5144] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.841609][ T5144] usb 3-1: Product: syz
[  337.847791][ T5144] usb 3-1: Manufacturer: syz
[  337.852429][ T5144] usb 3-1: SerialNumber: syz
[  337.948552][ T5097] udevd[5097]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  337.965684][ T5107] Bluetooth: hci1: command 0x0406 tx timeout
[  338.084645][ T8393] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  338.087936][ T5101] libceph: connect (1)[c::]:6789 error -101
[  338.113753][ T8393] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  338.119697][ T5101] libceph: mon0 (1)[c::]:6789 connect error
[  338.233133][ T5144] cdc_ncm 3-1:1.0: bind() failure
[  338.262118][ T5144] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  338.283035][ T5144] cdc_ncm 3-1:1.1: bind() failure
[  338.298819][ T5144] usb 3-1: USB disconnect, device number 19
[  338.526801][ T8407] loop3: detected capacity change from 0 to 32768
[  338.535373][ T8403] ceph: No mds server is up or the cluster is laggy
[  338.549650][ T8407] btrfs: Deprecated parameter 'usebackuproot'
[  338.557037][ T8407] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  338.589171][ T8407] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.661 (8407)
[  338.665102][ T8407] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  338.703326][ T8407] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  338.727533][ T8407] BTRFS info (device loop3): disk space caching is enabled
[  338.845191][ T8424] netlink: 8 bytes leftover after parsing attributes in process `syz.4.664'.
[  338.906802][   T55] Bluetooth: hci6: SCO packet for unknown connection handle 1039
[  338.944205][ T8407] BTRFS info (device loop3): rebuilding free space tree
[  339.012448][ T8407] BTRFS info (device loop3): disabling free space tree
[  339.030775][ T8407] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  339.073557][ T8407] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  339.321979][ T8437] netlink: 76 bytes leftover after parsing attributes in process `syz.1.666'.
[  339.331138][   T29] audit: type=1804 audit(1720143837.729:24): pid=8438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.661" name="/newroot/157/file1/cgroup.controllers" dev="loop3" ino=263 res=1 errno=0
[  339.374838][ T8411] loop0: detected capacity change from 0 to 40427
[  339.396548][ T8411] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  339.457195][ T8411] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  339.515551][ T8411] F2FS-fs (loop0): invalid crc value
[  339.592158][ T8411] F2FS-fs (loop0): Found nat_bits in checkpoint
[  339.637963][ T5100] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  339.755161][ T8411] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  339.762580][ T8411] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  339.801163][ T8449] netlink: 24 bytes leftover after parsing attributes in process `syz.4.668'.
[  339.888015][ T8452] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  340.153715][ T8446] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  340.174275][   T35] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  340.224299][   T35] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  340.551204][ T8458] netlink: 'syz.3.669': attribute type 29 has an invalid length.
[  340.595747][ T8458] netlink: 'syz.3.669': attribute type 29 has an invalid length.
[  340.663456][ T8458] netlink: 'syz.3.669': attribute type 29 has an invalid length.
[  340.836019][ T8458] netlink: 'syz.3.669': attribute type 29 has an invalid length.
[  341.078804][ T8461] netlink: 'syz.3.669': attribute type 29 has an invalid length.
[  341.408455][ T8464] netlink: 28 bytes leftover after parsing attributes in process `syz.1.672'.
[  341.622430][ T8473] netlink: 24 bytes leftover after parsing attributes in process `syz.0.670'.
[  341.684872][ T8477] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  341.777718][ T5144] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  342.072890][ T5144] usb 2-1: Using ep0 maxpacket: 8
[  342.287938][ T5144] usb 2-1: config 1 has an invalid interface descriptor of length 3, skipping
[  342.337653][ T5144] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  342.398255][ T5146] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  342.406073][ T5144] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  342.456161][ T5144] usb 2-1: config 1 has no interface number 1
[  342.478423][ T5144] usb 2-1: too many endpoints for config 1 interface 2 altsetting 220: 113, using maximum allowed: 30
[  342.495582][ T5144] usb 2-1: config 1 interface 2 altsetting 220 has 0 endpoint descriptors, different from the interface descriptor's value: 113
[  342.515562][ T5144] usb 2-1: config 1 interface 2 has no altsetting 0
[  342.541674][ T5144] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  342.568742][ T5144] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.587229][ T5144] usb 2-1: Product: 쑿퉈ਝ쑻
[  342.608550][ T5144] usb 2-1: Manufacturer: ф
[  342.618019][ T5144] usb 2-1: SerialNumber: syz
[  342.649556][ T5146] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  342.664207][ T5146] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  342.681894][ T5146] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  342.692349][ T5146] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  342.704899][ T5146] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  342.716412][ T5146] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  342.725286][ T5146] usb 3-1: Product: syz
[  342.729786][ T5146] usb 3-1: Manufacturer: syz
[  342.915785][ T5146] cdc_wdm 3-1:1.0: skipping garbage
[  343.072688][ T5146] cdc_wdm 3-1:1.0: skipping garbage
[  343.337541][ T5146] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  343.380969][ T5146] cdc_wdm 3-1:1.0: Unknown control protocol
[  343.419677][ T5144] usb 2-1: USB disconnect, device number 17
[  343.574406][ T8493] netlink: 76 bytes leftover after parsing attributes in process `syz.0.677'.
[  343.604492][ T8494] netlink: 8 bytes leftover after parsing attributes in process `syz.3.678'.
[  343.698779][ T5146] usb 3-1: USB disconnect, device number 20
[  343.790125][ T5097] udevd[5097]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  344.151236][ T8497] loop0: detected capacity change from 0 to 4096
[  344.180796][ T8497] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  344.257568][ T8497] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  344.268982][ T8500] loop1: detected capacity change from 0 to 4096
[  344.279392][ T8497] ntfs3: loop0: mft corrupted
[  344.289387][ T8497] ntfs3: loop0: Failed to load $Extend (-22).
[  344.299104][ T8497] ntfs3: loop0: Failed to initialize $Extend.
[  344.312381][ T8500] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  344.460205][ T8500] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  344.488518][ T8500] ntfs3: loop1: mft corrupted
[  344.501572][ T8500] ntfs3: loop1: Failed to load $Extend (-22).
[  344.508157][ T8500] ntfs3: loop1: Failed to initialize $Extend.
[  344.760883][ T8506] ntfs3: Unknown parameter '����������01777777777777777777777���X�c�v�:�Q���'
[  344.839072][   T55] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  344.962123][ T8511] netlink: 'syz.0.684': attribute type 29 has an invalid length.
[  344.998083][ T8511] netlink: 'syz.0.684': attribute type 29 has an invalid length.
[  345.029690][ T8512] netlink: 'syz.0.684': attribute type 29 has an invalid length.
[  345.065615][ T8511] netlink: 'syz.0.684': attribute type 29 has an invalid length.
[  345.107631][ T8511] netlink: 'syz.0.684': attribute type 29 has an invalid length.
[  345.157846][ T5144] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  345.307155][ T8517] loop0: detected capacity change from 0 to 512
[  345.332430][ T8517] EXT4-fs: Ignoring removed bh option
[  345.538115][ T8517] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  345.759562][ T8525] binder_alloc: 8518: binder_alloc_buf, no vma
[  345.896877][ T5144] usb 3-1: New USB device found, idVendor=093b, idProduct=a102, bcdDevice= 0.01
[  346.187856][ T8517] EXT4-fs (loop0): 1 truncate cleaned up
[  346.206812][ T8517] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  346.218795][ T5144] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  346.228099][ T5144] usb 3-1: Product: syz
[  346.232294][ T5144] usb 3-1: Manufacturer: syz
[  346.236895][ T5144] usb 3-1: SerialNumber: syz
[  346.249259][ T5144] usb 3-1: config 0 descriptor??
[  346.262574][ T5144] go7007 3-1:0.0: probe with driver go7007 failed with error -12
[  346.304259][ T8517] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.438689][ T8531] netlink: 76 bytes leftover after parsing attributes in process `syz.4.689'.
[  346.573060][ T8534] netlink: 28 bytes leftover after parsing attributes in process `syz.4.690'.
[  347.463405][ T8540] overlayfs: missing 'lowerdir'
[  347.572695][ T5146] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  347.937744][ T5146] usb 5-1: Using ep0 maxpacket: 8
[  347.970131][ T5146] usb 5-1: config 1 has an invalid interface descriptor of length 3, skipping
[  347.998458][ T5146] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  348.028928][ T5146] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  348.038834][ T5146] usb 5-1: config 1 has no interface number 1
[  348.046477][ T5146] usb 5-1: too many endpoints for config 1 interface 2 altsetting 220: 113, using maximum allowed: 30
[  348.065503][ T5146] usb 5-1: config 1 interface 2 altsetting 220 has 0 endpoint descriptors, different from the interface descriptor's value: 113
[  348.106323][ T5146] usb 5-1: config 1 interface 2 has no altsetting 0
[  348.134098][ T5146] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  348.146889][ T5146] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  348.166152][ T5146] usb 5-1: Product: 쑿퉈ਝ쑻
[  348.184109][ T5146] usb 5-1: Manufacturer: ф
[  348.207473][ T5146] usb 5-1: SerialNumber: syz
[  348.502568][ T5146] usb 5-1: USB disconnect, device number 21
[  348.730395][   T55] Bluetooth: hci3: Malformed HCI Event: 0x22
[  348.806125][ T5097] udevd[5097]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  348.882946][ T8552] Cannot find add_set index 0 as target
[  348.912688][   T29] audit: type=1326 audit(1720143847.309:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8545 comm="syz.0.692" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f482e375bd9 code=0x0
[  349.009674][ T8552] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[  349.029298][ T8552] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  349.497774][ T5144] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  349.710195][ T5144] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  349.729490][ T5144] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  349.767823][ T5144] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  349.793939][ T5144] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  349.828983][ T5144] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  349.843111][ T5146] usb 3-1: USB disconnect, device number 21
[  349.884751][ T5144] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  349.917458][ T5144] usb 5-1: Product: syz
[  349.921679][ T5144] usb 5-1: Manufacturer: syz
[  349.952925][ T5144] cdc_wdm 5-1:1.0: skipping garbage
[  349.959054][ T5144] cdc_wdm 5-1:1.0: skipping garbage
[  349.980509][ T5144] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  349.986461][ T5144] cdc_wdm 5-1:1.0: Unknown control protocol
[  350.419094][ T8572] netlink: 'syz.1.697': attribute type 29 has an invalid length.
[  350.441847][ T8572] netlink: 'syz.1.697': attribute type 29 has an invalid length.
[  350.478649][ T8569] loop2: detected capacity change from 0 to 4096
[  350.488234][ T8572] netlink: 'syz.1.697': attribute type 29 has an invalid length.
[  350.528751][ T8572] netlink: 'syz.1.697': attribute type 29 has an invalid length.
[  350.538329][ T8569] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  350.575410][ T8572] netlink: 'syz.1.697': attribute type 29 has an invalid length.
[  350.767652][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  350.798398][ T5189] usb 5-1: USB disconnect, device number 22
[  350.898450][ T8576] binder_alloc: 8573: binder_alloc_buf, no vma
[  351.543591][ T8578] netlink: 76 bytes leftover after parsing attributes in process `syz.0.700'.
[  351.590047][ T8569] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  351.597955][ T8569] ntfs3: loop2: mft corrupted
[  351.602804][ T8569] ntfs3: loop2: Failed to load $Extend (-22).
[  351.609935][ T8569] ntfs3: loop2: Failed to initialize $Extend.
[  352.974119][   T55] Bluetooth: hci3: Malformed HCI Event: 0x22
[  353.928845][ T8598] Cannot find add_set index 0 as target
[  354.081350][   T55] Bluetooth: Unexpected start frame (len 10)
[  354.091654][ T8598] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[  354.100341][ T8598] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  354.157335][ T8580] loop1: detected capacity change from 0 to 32768
[  354.173812][ T8580] btrfs: Deprecated parameter 'usebackuproot'
[  354.188924][ T8580] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  354.241400][ T8580] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.699 (8580)
[  354.295235][ T8580] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  354.322668][ T8580] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  354.359745][ T8580] BTRFS info (device loop1): disk space caching is enabled
[  354.390153][ T5208] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  354.559693][ T8580] BTRFS info (device loop1): rebuilding free space tree
[  354.626949][ T5208] usb 1-1: New USB device found, idVendor=093b, idProduct=a102, bcdDevice= 0.01
[  354.662976][ T8580] BTRFS info (device loop1): disabling free space tree
[  354.681546][ T5208] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.691224][ T8580] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  354.701525][ T5208] usb 1-1: Product: syz
[  354.705914][ T5208] usb 1-1: Manufacturer: syz
[  354.710925][ T8580] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  354.721627][ T5208] usb 1-1: SerialNumber: syz
[  354.743735][ T5208] usb 1-1: config 0 descriptor??
[  354.764462][ T5208] go7007 1-1:0.0: probe with driver go7007 failed with error -12
[  354.834553][ T6836] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  354.998158][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  355.255323][   T29] audit: type=1326 audit(1720143853.649:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8605 comm="syz.2.708" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8638d75bd9 code=0x0
[  355.532555][ T8636] binder_alloc: 8632: binder_alloc_buf, no vma
[  356.326636][ T8641] netlink: 76 bytes leftover after parsing attributes in process `syz.1.711'.
[  357.216131][ T8649] Zero length message leads to an empty skb
[  357.270435][ T8649] loop3: detected capacity change from 0 to 64
[  358.889467][ T5107] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  358.920176][ T5107] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  358.929777][ T5107] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  358.943190][ T5107] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  358.954727][ T5107] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  358.965950][ T5107] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  359.146697][   T11] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  359.175463][ T5146] usb 1-1: USB disconnect, device number 14
[  359.496538][   T11] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  359.714301][   T11] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.682903][   T11] team0: Port device netdevsim0 removed
[  361.017746][   T11] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.207573][   T55] Bluetooth: hci2: command tx timeout
[  361.595891][   T29] audit: type=1326 audit(1720143859.759:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8686 comm="syz.0.725" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f482e375bd9 code=0x0
[  362.049481][   T55] Bluetooth: hci1: Malformed HCI Event: 0x22
[  362.244306][ T8699] netdevsim netdevsim0: Direct firmware load for ng failed with error -2
[  362.257548][ T8699] netdevsim netdevsim0: Falling back to sysfs fallback for: ng
[  362.325720][   T11] bridge_slave_1: left allmulticast mode
[  362.353476][   T11] bridge_slave_1: left promiscuous mode
[  362.377877][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.395344][   T11] bridge_slave_0: left allmulticast mode
[  362.407008][   T11] bridge_slave_0: left promiscuous mode
[  362.419697][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.926171][ T8716] binder_alloc: 8711: binder_alloc_buf, no vma
[  363.297741][   T55] Bluetooth: hci2: command tx timeout
[  363.928015][ T8734] fuse: Bad value for 'fd'
[  364.117983][   T55] Bluetooth: hci1: command 0x0406 tx timeout
[  364.157556][ T5147] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  364.395084][ T5147] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  364.414436][ T5147] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  364.458088][ T8743] loop0: detected capacity change from 0 to 64
[  364.478571][ T5147] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  364.500363][ T5147] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  364.540405][ T5147] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  364.559692][ T5147] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  364.568792][ T5147] usb 2-1: Product: syz
[  364.572959][ T5147] usb 2-1: Manufacturer: syz
[  364.587764][ T5147] cdc_wdm 2-1:1.0: skipping garbage
[  364.593112][ T5147] cdc_wdm 2-1:1.0: skipping garbage
[  364.647203][ T5147] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  364.667674][ T5147] cdc_wdm 2-1:1.0: Unknown control protocol
[  364.755894][   T29] audit: type=1326 audit(1720143863.149:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8717 comm="syz.2.729" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8638d75bd9 code=0x0
[  364.896228][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  364.940559][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  364.986786][   T11] bond0 (unregistering): Released all slaves
[  365.110522][ T8660] chnl_net:caif_netlink_parms(): no params data found
[  365.317654][   T55] Bluetooth: hci2: command tx timeout
[  365.358260][ T5101] usb 2-1: USB disconnect, device number 18
[  366.367662][ T8660] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.401837][ T8660] bridge0: port 1(bridge_slave_0) entered disabled state
[  366.438964][ T8660] bridge_slave_0: entered allmulticast mode
[  366.514441][ T8660] bridge_slave_0: entered promiscuous mode
[  366.566084][ T8660] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.733331][ T8660] bridge0: port 2(bridge_slave_1) entered disabled state
[  366.800450][ T8660] bridge_slave_1: entered allmulticast mode
[  366.808502][ T8660] bridge_slave_1: entered promiscuous mode
[  366.988912][   T29] audit: type=1326 audit(1720143865.309:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8761 comm="syz.0.735" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f482e375bd9 code=0x0
[  367.417783][   T55] Bluetooth: hci2: command tx timeout
[  367.679534][ T8660] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  367.879437][   T55] Bluetooth: hci1: Malformed HCI Event: 0x22
[  367.944826][ T8784] binder_alloc: 8775: binder_alloc_buf, no vma
[  368.739282][ T8660] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  368.758303][ T8791] netdevsim netdevsim0: Direct firmware load for ng failed with error -2
[  368.773565][ T8791] netdevsim netdevsim0: Falling back to sysfs fallback for: ng
[  368.939390][ T8660] team0: Port device team_slave_0 added
[  369.962166][   T55] Bluetooth: hci1: command 0x0406 tx timeout
[  370.216878][ T8660] team0: Port device team_slave_1 added
[  371.285136][ T8809] netlink: 4 bytes leftover after parsing attributes in process `syz.2.747'.
[  371.325496][ T8660] batman_adv: batadv0: Adding interface: batadv_slave_0
[  371.349052][ T8660] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  371.511790][   T29] audit: type=1326 audit(1720143869.829:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8811 comm="syz.0.748" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f482e375bd9 code=0x0
[  371.773897][ T8660] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  372.283976][ T8660] batman_adv: batadv0: Adding interface: batadv_slave_1
[  372.291372][ T8660] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  372.374625][ T8827] binder_alloc: 8822: binder_alloc_buf, no vma
[  372.479047][   T55] Bluetooth: hci6: Malformed HCI Event: 0x22
[  372.593646][ T8660] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  373.126735][   T29] audit: type=1326 audit(1720143871.519:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8816 comm="syz.3.749" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5652775bd9 code=0x0
[  373.531586][ T8828] netdevsim netdevsim1: Direct firmware load for ng failed with error -2
[  373.550968][ T8828] netdevsim netdevsim1: Falling back to sysfs fallback for: ng
[  374.568899][   T55] Bluetooth: hci6: command 0x0406 tx timeout
[  374.761297][   T11] hsr_slave_0: left promiscuous mode
[  374.840587][   T11] hsr_slave_1: left promiscuous mode
[  374.897526][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  374.905046][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  374.943870][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  374.955356][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  375.056041][   T11] veth1_macvtap: left promiscuous mode
[  375.076471][   T11] veth0_macvtap: left promiscuous mode
[  375.091220][   T11] veth1_vlan: left promiscuous mode
[  375.100418][   T11] veth0_vlan: left promiscuous mode
[  376.565108][ T5146] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  376.567557][ T5208] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  377.380080][ T5208] usb 4-1: config 0 has an invalid interface number: 106 but max is 0
[  377.431371][ T5208] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  377.480458][ T5208] usb 4-1: config 0 has no interface number 0
[  377.486676][ T5146] usb 3-1: Using ep0 maxpacket: 32
[  377.513643][ T5208] usb 4-1: config 0 interface 106 altsetting 0 endpoint 0x1 has an invalid bInterval 255, changing to 11
[  377.515627][ T5146] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  377.550807][ T5208] usb 4-1: config 0 interface 106 altsetting 0 endpoint 0x1 has invalid maxpacket 59391, setting to 1024
[  377.566006][ T5146] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  377.566474][ T5208] usb 4-1: config 0 interface 106 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  377.627817][ T5146] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  377.643019][ T5208] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=df.bb
[  377.666876][ T5146] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  377.676794][ T5208] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.712854][ T5146] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  377.727661][ T5208] usb 4-1: config 0 descriptor??
[  377.747487][ T5146] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  377.761227][ T8855] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  377.800186][ T5146] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  377.825881][ T5146] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.865407][ T5146] usb 3-1: Product: syz
[  377.868591][ T5208] usb 4-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  377.883362][ T5146] usb 3-1: Manufacturer: syz
[  377.957095][ T5146] usb 3-1: SerialNumber: syz
[  378.120542][ T5146] cdc_ncm 3-1:1.0: bind() failure
[  378.170210][ T5146] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  378.193860][ T5146] cdc_ncm 3-1:1.1: bind() failure
[  378.255303][ T5146] usb 3-1: USB disconnect, device number 22
[  378.260079][ T8862] loop1: detected capacity change from 0 to 32768
[  378.503631][ T8862] btrfs: Deprecated parameter 'usebackuproot'
[  378.687652][ T8862] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  379.148835][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  379.155132][ T1245] ieee802154 phy1 wpan1: encryption failed: -22
[  379.167770][ T1092] usb 4-1: Failed to submit usb control message: -110
[  379.200753][ T1092] usb 4-1: unable to send the bmi data to the device: -110
[  379.217095][ T8862] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.759 (8862)
[  379.230991][ T1092] usb 4-1: unable to get target info from device
[  379.237369][ T1092] usb 4-1: could not get target info (-110)
[  379.243675][ T5147] usb 4-1: USB disconnect, device number 24
[  379.255634][ T1092] usb 4-1: could not probe fw (-110)
[  379.325674][ T8862] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  379.451878][ T8862] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  379.477467][    C0] DEBUG: waiting rtnl_mutex for 598 jiffies.
[  379.483590][    C0] task:syz-executor    state:D stack:21024 pid:8660  tgid:8660  ppid:8650   flags:0x00004000
[  379.493864][    C0] Call Trace:
[  379.497165][    C0]  <TASK>
[  379.500187][    C0]  __schedule+0x1800/0x4a60
[  379.504760][    C0]  ? __pfx___schedule+0x10/0x10
[  379.509695][    C0]  ? __pfx_lock_release+0x10/0x10
[  379.514751][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  379.520336][    C0]  ? schedule+0x90/0x320
[  379.524605][    C0]  schedule+0x14b/0x320
[  379.528829][    C0]  schedule_preempt_disabled+0x13/0x30
[  379.534353][    C0]  __mutex_lock+0x6a4/0xd70
[  379.538933][    C0]  ? __mutex_lock+0x527/0xd70
[  379.543641][    C0]  ? rtnetlink_rcv_msg+0x847/0x1180
[  379.548917][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  379.554019][    C0]  ? get_rtnl_holder+0x144/0x190
[  379.559194][    C0]  rtnetlink_rcv_msg+0x847/0x1180
[  379.564257][    C0]  ? rtnetlink_rcv_msg+0x208/0x1180
[  379.569545][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  379.575173][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  379.580593][    C0]  ? __pfx_validate_chain+0x10/0x10
[  379.585924][    C0]  ? __pfx_validate_chain+0x10/0x10
[  379.587663][ T8862] BTRFS info (device loop1): disk space caching is enabled
[  379.591215][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  379.603616][    C0]  ? mark_lock+0x9a/0x360
[  379.608132][    C0]  ? __pfx_validate_chain+0x10/0x10
[  379.613435][    C0]  ? __lock_acquire+0x1359/0x2000
[  379.617966][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  379.618623][    C0]  ? mark_lock+0x9a/0x360
[  379.620771][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  379.627657][    C0]  ? __lock_acquire+0x1359/0x2000
[  379.627710][    C0]  netlink_rcv_skb+0x1e3/0x430
[  379.651377][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  379.653543][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  379.656897][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  379.664017][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  379.666594][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  379.686030][    C0]  netlink_unicast+0x7f0/0x990
[  379.690975][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  379.696398][    C0]  ? __virt_addr_valid+0x183/0x530
[  379.697137][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  379.701608][    C0]  ? __check_object_size+0x49c/0x900
[  379.715779][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  379.721002][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  379.725817][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  379.731222][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  379.737345][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  379.742386][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  379.747783][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  379.753407][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  379.759401][    C0]  __sock_sendmsg+0x221/0x270
[  379.764181][    C0]  __sys_sendto+0x3a4/0x4f0
[  379.765312][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  379.768848][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  379.768901][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  379.768931][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  379.768965][    C0]  __x64_sys_sendto+0xde/0x100
[  379.768994][    C0]  do_syscall_64+0xf3/0x230
[  379.769015][    C0]  ? clear_bhb_loop+0x35/0x90
[  379.769045][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.769078][    C0] RIP: 0033:0x7f77a757796c
[  379.786460][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  379.789423][    C0] RSP: 002b:00007ffd62b90800 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  379.789455][    C0] RAX: ffffffffffffffda RBX: 00007f77a8234620 RCX: 00007f77a757796c
[  379.789470][    C0] RDX: 0000000000000048 RSI: 00007f77a8234670 RDI: 0000000000000003
[  379.789484][    C0] RBP: 0000000000000000 R08: 00007ffd62b90854 R09: 000000000000000c
[  379.789498][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  379.797202][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  379.800627][    C0] R13: 0000000000000000 R14: 00007f77a8234670 R15: 0000000000000000
[  379.800664][    C0]  </TASK>
[  379.800675][    C0] DEBUG: holding rtnl_mutex for 626 jiffies.
[  379.800688][    C0] task:kworker/u8:0    state:D stack:18672 pid:11    tgid:11    ppid:2      flags:0x00004000
[  379.800729][    C0] Workqueue: netns cleanup_net
[  379.800770][    C0] Call Trace:
[  379.800779][    C0]  <TASK>
[  379.800791][    C0]  __schedule+0x1800/0x4a60
[  379.808070][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  379.810046][    C0]  ? __pfx___schedule+0x10/0x10
[  379.817613][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  379.820429][    C0]  ? __pfx_lock_release+0x10/0x10
[  379.830771][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  379.837760][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  379.837802][    C0]  ? kthread_data+0x52/0xd0
[  379.837828][    C0]  ? wq_worker_sleeping+0x66/0x240
[  379.837854][    C0]  ? schedule+0x90/0x320
[  379.837877][    C0]  schedule+0x14b/0x320
[  379.849001][ T8862] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  379.854338][    C0]  synchronize_rcu_expedited+0x70a/0x830
[  380.001647][    C0]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  380.007917][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  380.014073][    C0]  ? __pfx___might_resched+0x10/0x10
[  380.019677][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  380.025711][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  380.032213][    C0]  synchronize_rcu+0x11b/0x360
[  380.037136][    C0]  ? __pfx_synchronize_rcu+0x10/0x10
[  380.042545][    C0]  lockdep_unregister_key+0x556/0x610
[  380.048062][    C0]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  380.054093][    C0]  ? rcu_is_watching+0x15/0xb0
[  380.058980][    C0]  ? qdisc_reset+0x3bf/0x5b0
[  380.063613][    C0]  __qdisc_destroy+0x165/0x410
[  380.068623][    C0]  dev_shutdown+0x357/0x440
[  380.073199][    C0]  unregister_netdevice_many_notify+0x9c7/0x1d20
[  380.079671][    C0]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  380.086599][    C0]  ? unregister_netdevice_queue+0x26b/0x370
[  380.092632][    C0]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  380.098902][    C0]  default_device_exit_batch+0xa0f/0xa90
[  380.104714][    C0]  ? __pfx___might_resched+0x10/0x10
[  380.110184][    C0]  ? __pfx_default_device_exit_batch+0x10/0x10
[  380.116505][    C0]  ? cfg802154_pernet_exit+0xc3/0xe0
[  380.121901][    C0]  ? __pfx_default_device_exit_batch+0x10/0x10
[  380.128154][    C0]  cleanup_net+0x89d/0xcc0
[  380.132678][    C0]  ? __pfx_cleanup_net+0x10/0x10
[  380.137740][    C0]  ? process_scheduled_works+0x945/0x1830
[  380.143497][    C0]  process_scheduled_works+0xa2c/0x1830
[  380.149173][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  380.155207][    C0]  ? assign_work+0x364/0x3d0
[  380.159896][    C0]  worker_thread+0x86d/0xd40
[  380.164587][    C0]  ? __kthread_parkme+0x169/0x1d0
[  380.169771][    C0]  ? __pfx_worker_thread+0x10/0x10
[  380.175116][    C0]  kthread+0x2f0/0x390
[  380.179326][    C0]  ? __pfx_worker_thread+0x10/0x10
[  380.184563][    C0]  ? __pfx_kthread+0x10/0x10
[  380.189318][    C0]  ret_from_fork+0x4b/0x80
[  380.193787][    C0]  ? __pfx_kthread+0x10/0x10
[  380.198908][    C0]  ret_from_fork_asm+0x1a/0x30
[  380.203811][    C0]  </TASK>
[  380.206958][    C0] DEBUG: waiting rtnl_mutex for 665 jiffies.
[  380.213086][    C0] task:kworker/0:0     state:D stack:22312 pid:8     tgid:8     ppid:2      flags:0x00004000
[  380.223390][    C0] Workqueue: events linkwatch_event
[  380.228736][    C0] Call Trace:
[  380.232040][    C0]  <TASK>
[  380.235078][    C0]  __schedule+0x1800/0x4a60
[  380.239716][    C0]  ? __pfx___schedule+0x10/0x10
[  380.244645][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  380.250809][    C0]  ? __pfx_lock_release+0x10/0x10
[  380.255880][    C0]  ? kick_pool+0x45c/0x620
[  380.260399][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  380.265720][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  380.271081][    C0]  ? schedule+0x90/0x320
[  380.275398][    C0]  schedule+0x14b/0x320
[  380.279711][    C0]  schedule_preempt_disabled+0x13/0x30
[  380.285319][    C0]  __mutex_lock+0x6a4/0xd70
[  380.289943][    C0]  ? __mutex_lock+0x527/0xd70
[  380.294761][    C0]  ? linkwatch_event+0xe/0x60
[  380.299676][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  380.304777][    C0]  ? get_rtnl_holder+0x144/0x190
[  380.309865][    C0]  ? process_scheduled_works+0x945/0x1830
[  380.315715][    C0]  linkwatch_event+0xe/0x60
[  380.320311][    C0]  process_scheduled_works+0xa2c/0x1830
[  380.325953][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  380.332111][    C0]  ? assign_work+0x364/0x3d0
[  380.336816][    C0]  worker_thread+0x86d/0xd40
[  380.341604][    C0]  ? __kthread_parkme+0x169/0x1d0
[  380.346730][    C0]  ? __pfx_worker_thread+0x10/0x10
[  380.351971][    C0]  kthread+0x2f0/0x390
[  380.356176][    C0]  ? __pfx_worker_thread+0x10/0x10
[  380.361482][    C0]  ? __pfx_kthread+0x10/0x10
[  380.366219][    C0]  ret_from_fork+0x4b/0x80
[  380.370735][    C0]  ? __pfx_kthread+0x10/0x10
[  380.375462][    C0]  ret_from_fork_asm+0x1a/0x30
[  380.380441][    C0]  </TASK>
[  380.383526][    C0] 
[  380.383526][    C0] Showing all locks held in the system:
[  380.391366][    C0] 1 lock held by pool_workqueue_/3:
[  380.396631][    C0]  #0: ffffffff8e33ac38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  380.407710][    C0] 3 locks held by kworker/0:0/8:
[  380.412697][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  380.423872][    C0]  #1: ffffc900000d7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  380.434991][    C0]  #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  380.444254][    C0] 4 locks held by kworker/u8:0/11:
[  380.449563][    C0]  #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  380.460708][    C0]  #1: ffffc90000107d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  380.471456][    C0]  #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  380.481023][    C0]  #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  380.491288][    C0] 3 locks held by kworker/u8:7/2796:
[  380.496763][    C0]  #0: ffff888029bc9948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  380.508555][    C0]  #1: ffffc90009937d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  380.522370][    C0]  #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  380.532213][    C0] 1 lock held by klogd/4536:
[  380.536928][    C0]  #0: ffff8880b953ea18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  380.547062][    C0] 1 lock held by dhcpcd/4761:
[  380.551852][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0
[  380.561302][    C0] 2 locks held by getty/4843:
[  380.566176][    C0]  #0: ffff88802a2750a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  380.576224][    C0]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  380.586540][    C0] 5 locks held by kworker/0:6/5147:
[  380.591932][    C0] 1 lock held by syz-executor/8660:
[  380.597222][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180
[  380.606922][    C0] 3 locks held by syz.1.759/8862:
[  380.612030][    C0]  #0: ffff88805bae80e0 (&type->s_umount_key#54/1){+.+.}-{3:3}, at: alloc_super+0x221/0x9d0
[  380.622494][    C0]  #1: ffffffff8e8ac128 (uuid_mutex){+.+.}-{3:3}, at: btrfs_close_devices+0xc0/0x5c0
[  380.632107][    C0]  #2: ffffffff8e3f02a8 (lock#3){+.+.}-{3:3}, at: __lru_add_drain_all+0x66/0x560
[  380.641502][    C0] 2 locks held by syz.2.763/8887:
[  380.646564][    C0]  #0: ffffc90009277b40 (net/core/rtnetlink.c:83){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  380.656890][    C0]  #1: ffffffff8e335860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  380.667197][    C0] 1 lock held by syz.0.762/8889:
[  380.672264][    C0] 1 lock held by syz.3.764/8894:
[  380.677245][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48f/0x2400
[  380.686810][    C0] 1 lock held by syz.3.764/8895:
[  380.691861][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  380.700973][    C0] 1 lock held by syz.3.764/8896:
[  380.705949][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: dev_ioctl+0x706/0x1340
[  380.714905][    C0] 
[  380.717306][    C0] =============================================
[  380.717306][    C0] 
[  380.742659][ T8862] BTRFS error (device loop1): open_ctree failed
[  380.796552][ T8913] binder_alloc: 8889: binder_alloc_buf, no vma
[  380.878982][ T8891] loop2: detected capacity change from 0 to 512
[  380.985646][ T8891] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  381.013632][ T8891] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  381.205568][   T55] Bluetooth: hci6: Malformed HCI Event: 0x22
[  381.332183][   T11] team0 (unregistering): Port device team_slave_1 removed
[  381.368978][ T5208] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  381.596142][ T5208] usb 1-1: Using ep0 maxpacket: 16
[  381.627834][ T5208] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  381.657558][ T5208] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  381.666797][ T5208] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.696782][ T5208] usb 1-1: config 0 descriptor??
[  381.801465][    C0] DEBUG: waiting rtnl_mutex for 707 jiffies.
[  381.807541][    C0] task:kworker/u8:7    state:D stack:20760 pid:2796  tgid:2796  ppid:2      flags:0x00004000
[  381.818075][    C0] Workqueue: ipv6_addrconf addrconf_verify_work
[  381.824494][    C0] Call Trace:
[  381.827889][    C0]  <TASK>
[  381.830850][    C0]  __schedule+0x1800/0x4a60
[  381.835481][    C0]  ? __pfx___schedule+0x10/0x10
[  381.840397][    C0]  ? __pfx_lock_release+0x10/0x10
[  381.845434][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  381.850972][    C0]  ? kthread_data+0x52/0xd0
[  381.855503][    C0]  ? schedule+0x90/0x320
[  381.859786][    C0]  ? wq_worker_sleeping+0x66/0x240
[  381.864941][    C0]  ? schedule+0x90/0x320
[  381.869242][    C0]  schedule+0x14b/0x320
[  381.873519][    C0]  schedule_preempt_disabled+0x13/0x30
[  381.879028][    C0]  __mutex_lock+0x6a4/0xd70
[  381.883598][    C0]  ? __mutex_lock+0x527/0xd70
[  381.888321][    C0]  ? addrconf_verify_work+0x19/0x30
[  381.893546][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  381.898636][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  381.904698][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  381.911104][    C0]  ? get_rtnl_holder+0x144/0x190
[  381.916098][    C0]  ? process_scheduled_works+0x945/0x1830
[  381.921859][    C0]  addrconf_verify_work+0x19/0x30
[  381.926917][    C0]  process_scheduled_works+0xa2c/0x1830
[  381.932547][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  381.938593][    C0]  ? assign_work+0x364/0x3d0
[  381.943218][    C0]  worker_thread+0x86d/0xd40
[  381.947853][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  381.953791][    C0]  ? __kthread_parkme+0x169/0x1d0
[  381.958862][    C0]  ? __pfx_worker_thread+0x10/0x10
[  381.963977][    C0]  kthread+0x2f0/0x390
[  381.968083][    C0]  ? __pfx_worker_thread+0x10/0x10
[  381.973231][    C0]  ? __pfx_kthread+0x10/0x10
[  381.977869][    C0]  ret_from_fork+0x4b/0x80
[  381.982321][    C0]  ? __pfx_kthread+0x10/0x10
[  381.986932][    C0]  ret_from_fork_asm+0x1a/0x30
[  381.991749][    C0]  </TASK>
[  381.994805][    C0] DEBUG: waiting rtnl_mutex for 849 jiffies.
[  382.001222][    C0] task:syz-executor    state:D stack:21024 pid:8660  tgid:8660  ppid:8650   flags:0x00004000
[  382.011436][    C0] Call Trace:
[  382.014720][    C0]  <TASK>
[  382.017708][    C0]  __schedule+0x1800/0x4a60
[  382.022244][    C0]  ? __pfx___schedule+0x10/0x10
[  382.027101][    C0]  ? __pfx_lock_release+0x10/0x10
[  382.032195][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  382.037734][    C0]  ? schedule+0x90/0x320
[  382.042155][    C0]  schedule+0x14b/0x320
[  382.046325][    C0]  schedule_preempt_disabled+0x13/0x30
[  382.051841][    C0]  __mutex_lock+0x6a4/0xd70
[  382.056399][    C0]  ? __mutex_lock+0x527/0xd70
[  382.061142][    C0]  ? rtnetlink_rcv_msg+0x847/0x1180
[  382.066417][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  382.071618][    C0]  ? get_rtnl_holder+0x144/0x190
[  382.076593][    C0]  rtnetlink_rcv_msg+0x847/0x1180
[  382.081704][    C0]  ? rtnetlink_rcv_msg+0x208/0x1180
[  382.086940][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  382.092529][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  382.097894][    C0]  ? __pfx_validate_chain+0x10/0x10
[  382.103220][    C0]  ? __pfx_validate_chain+0x10/0x10
[  382.108485][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  382.113489][    C0]  ? mark_lock+0x9a/0x360
[  382.117887][    C0]  ? __pfx_validate_chain+0x10/0x10
[  382.123103][    C0]  ? __lock_acquire+0x1359/0x2000
[  382.128184][    C0]  ? mark_lock+0x9a/0x360
[  382.132744][    C0]  ? __lock_acquire+0x1359/0x2000
[  382.137875][    C0]  netlink_rcv_skb+0x1e3/0x430
[  382.142677][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  382.148223][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  382.153687][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  382.158953][    C0]  netlink_unicast+0x7f0/0x990
[  382.163782][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  382.169165][    C0]  ? __virt_addr_valid+0x183/0x530
[  382.174468][    C0]  ? __check_object_size+0x49c/0x900
[  382.179814][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  382.185185][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  382.190014][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  382.195312][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  382.201361][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  382.206306][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  382.211622][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  382.217132][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  382.222464][    C0]  __sock_sendmsg+0x221/0x270
[  382.227212][    C0]  __sys_sendto+0x3a4/0x4f0
[  382.231837][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  382.237129][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  382.243214][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  382.249606][    C0]  __x64_sys_sendto+0xde/0x100
[  382.254420][    C0]  do_syscall_64+0xf3/0x230
[  382.258993][    C0]  ? clear_bhb_loop+0x35/0x90
[  382.263710][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  382.269680][    C0] RIP: 0033:0x7f77a757796c
[  382.274121][    C0] RSP: 002b:00007ffd62b90800 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  382.282644][    C0] RAX: ffffffffffffffda RBX: 00007f77a8234620 RCX: 00007f77a757796c
[  382.290650][    C0] RDX: 0000000000000048 RSI: 00007f77a8234670 RDI: 0000000000000003
[  382.298645][    C0] RBP: 0000000000000000 R08: 00007ffd62b90854 R09: 000000000000000c
[  382.306680][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  382.314717][    C0] R13: 0000000000000000 R14: 00007f77a8234670 R15: 0000000000000000
[  382.322826][    C0]  </TASK>
[  382.325858][    C0] DEBUG: holding rtnl_mutex for 878 jiffies.
[  382.331867][    C0] task:kworker/u8:0    state:R  running task     stack:18672 pid:11    tgid:11    ppid:2      flags:0x00004008
[  382.343757][    C0] Workqueue: netns cleanup_net
[  382.348567][    C0] Call Trace:
[  382.351877][    C0]  <IRQ>
[  382.354745][    C0]  sched_show_task+0x506/0x6d0
[  382.359568][    C0]  ? report_rtnl_holders+0x29e/0x3f0
[  382.364854][    C0]  ? __pfx__printk+0x10/0x10
[  382.369499][    C0]  ? __pfx_sched_show_task+0x10/0x10
[  382.374802][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  382.380735][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  382.387142][    C0]  report_rtnl_holders+0x320/0x3f0
[  382.392576][    C0]  call_timer_fn+0x18e/0x650
[  382.397316][    C0]  ? call_timer_fn+0xc0/0x650
[  382.402068][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  382.407769][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  382.412893][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  382.418664][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  382.424318][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  382.429992][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  382.435231][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  382.440470][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  382.446201][    C0]  __run_timer_base+0x66a/0x8e0
[  382.451121][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  382.456492][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  382.462858][    C0]  run_timer_softirq+0xb7/0x170
[  382.467807][    C0]  handle_softirqs+0x2c4/0x970
[  382.472585][    C0]  ? __irq_exit_rcu+0xf4/0x1c0
[  382.477424][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  382.482752][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  382.488434][    C0]  __irq_exit_rcu+0xf4/0x1c0
[  382.493032][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  382.498254][    C0]  irq_exit_rcu+0x9/0x30
[  382.502525][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  382.508227][    C0]  </IRQ>
[  382.511183][    C0]  <TASK>
[  382.514133][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  382.520160][    C0] RIP: 0010:preempt_schedule_irq+0xf6/0x1c0
[  382.526072][    C0] Code: 89 f5 49 c1 ed 03 eb 0d 48 f7 03 08 00 00 00 0f 84 8b 00 00 00 bf 01 00 00 00 e8 15 24 c8 f5 e8 10 c3 00 f6 fb bf 01 00 00 00 <e8> 55 ad ff ff 43 80 7c 3d 00 00 74 08 4c 89 f7 e8 45 de 5f f6 48
[  382.546241][    C0] RSP: 0018:ffffc90000107440 EFLAGS: 00000286
[  382.552381][    C0] RAX: 2049e490a59f8e00 RBX: 1ffff92000020e90 RCX: ffffffff816fddda
[  382.560387][    C0] RDX: dffffc0000000000 RSI: ffffffff8bcac900 RDI: 0000000000000001
[  382.568401][    C0] RBP: ffffc90000107500 R08: ffffffff9301078f R09: 1ffffffff26020f1
[  382.576462][    C0] R10: dffffc0000000000 R11: fffffbfff26020f2 R12: 1ffff92000020e88
[  382.584528][    C0] R13: 1ffff92000020e8c R14: ffffc90000107460 R15: dffffc0000000000
[  382.592572][    C0]  ? mark_lock+0x9a/0x360
[  382.596947][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  382.602713][    C0]  ? kvm_kick_cpu+0x26/0xb0
[  382.607272][    C0]  irqentry_exit+0x5e/0x90
[  382.611718][    C0]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  382.617224][    C0] RIP: 0010:lockdep_unregister_key+0x56d/0x610
[  382.623444][    C0] Code: ff 92 48 c7 c6 10 bc 6f 81 e8 8f 04 0a 00 e8 fa 18 0a 00 e9 e5 fb ff ff e8 c0 62 21 0a 41 f7 c7 00 02 00 00 74 d0 fb 45 84 f6 <75> cf eb e0 90 0f 0b 90 45 31 f6 e9 62 ff ff ff 90 0f 0b 90 e9 a1
[  382.643185][    C0] RSP: 0018:ffffc900001075c0 EFLAGS: 00000246
[  382.649325][    C0] RAX: dffffc0000000000 RBX: 1ffff92000020ec0 RCX: ffffffff947f4803
[  382.657513][    C0] RDX: 0000000000000001 RSI: ffffffff8bcad5e0 RDI: ffffffff8c207f20
[  382.665498][    C0] RBP: ffffc90000107698 R08: ffffffff92ffe487 R09: 1ffffffff25ffc90
[  382.673616][    C0] R10: dffffc0000000000 R11: fffffbfff25ffc91 R12: ffffc90000107600
[  382.681719][    C0] R13: 1ffff92000020ebc R14: 0000000000000000 R15: 0000000000000a07
[  382.689794][    C0]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  382.695727][    C0]  ? rcu_is_watching+0x15/0xb0
[  382.700548][    C0]  ? qdisc_reset+0x3bf/0x5b0
[  382.705153][    C0]  __qdisc_destroy+0x165/0x410
[  382.710143][    C0]  dev_shutdown+0x9b/0x440
[  382.714610][    C0]  unregister_netdevice_many_notify+0x9c7/0x1d20
[  382.721040][    C0]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  382.727933][    C0]  ? unregister_netdevice_queue+0x26b/0x370
[  382.733863][    C0]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  382.740081][    C0]  default_device_exit_batch+0xa0f/0xa90
[  382.745916][    C0]  ? __pfx___might_resched+0x10/0x10
[  382.751284][    C0]  ? __pfx_default_device_exit_batch+0x10/0x10
[  382.757496][    C0]  ? cfg802154_pernet_exit+0xc3/0xe0
[  382.762816][    C0]  ? __pfx_default_device_exit_batch+0x10/0x10
[  382.769029][    C0]  cleanup_net+0x89d/0xcc0
[  382.773474][    C0]  ? __pfx_cleanup_net+0x10/0x10
[  382.778463][    C0]  ? process_scheduled_works+0x945/0x1830
[  382.784583][    C0]  process_scheduled_works+0xa2c/0x1830
[  382.790173][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  382.796355][    C0]  ? assign_work+0x364/0x3d0
[  382.801044][    C0]  worker_thread+0x86d/0xd40
[  382.805665][    C0]  ? __kthread_parkme+0x169/0x1d0
[  382.810761][    C0]  ? __pfx_worker_thread+0x10/0x10
[  382.815943][    C0]  kthread+0x2f0/0x390
[  382.820041][    C0]  ? __pfx_worker_thread+0x10/0x10
[  382.825174][    C0]  ? __pfx_kthread+0x10/0x10
[  382.829810][    C0]  ret_from_fork+0x4b/0x80
[  382.834311][    C0]  ? __pfx_kthread+0x10/0x10
[  382.838980][    C0]  ret_from_fork_asm+0x1a/0x30
[  382.843836][    C0]  </TASK>
[  382.846869][    C0] DEBUG: waiting rtnl_mutex for 929 jiffies.
[  382.852919][    C0] task:kworker/0:0     state:D stack:22312 pid:8     tgid:8     ppid:2      flags:0x00004000
[  382.863118][    C0] Workqueue: events linkwatch_event
[  382.868371][    C0] Call Trace:
[  382.871659][    C0]  <TASK>
[  382.874608][    C0]  __schedule+0x1800/0x4a60
[  382.879161][    C0]  ? __pfx___schedule+0x10/0x10
[  382.884049][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  382.890073][    C0]  ? __pfx_lock_release+0x10/0x10
[  382.895120][    C0]  ? kick_pool+0x45c/0x620
[  382.899589][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  382.904801][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  382.910034][    C0]  ? schedule+0x90/0x320
[  382.914297][    C0]  schedule+0x14b/0x320
[  382.918525][    C0]  schedule_preempt_disabled+0x13/0x30
[  382.923995][    C0]  __mutex_lock+0x6a4/0xd70
[  382.928551][    C0]  ? __mutex_lock+0x527/0xd70
[  382.933280][    C0]  ? linkwatch_event+0xe/0x60
[  382.937977][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  382.943150][    C0]  ? get_rtnl_holder+0x144/0x190
[  382.948156][    C0]  ? process_scheduled_works+0x945/0x1830
[  382.953905][    C0]  linkwatch_event+0xe/0x60
[  382.958468][    C0]  process_scheduled_works+0xa2c/0x1830
[  382.964035][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  382.970061][    C0]  ? assign_work+0x364/0x3d0
[  382.974711][    C0]  worker_thread+0x86d/0xd40
[  382.979350][    C0]  ? __kthread_parkme+0x169/0x1d0
[  382.984513][    C0]  ? __pfx_worker_thread+0x10/0x10
[  382.989676][    C0]  kthread+0x2f0/0x390
[  382.994314][    C0]  ? __pfx_worker_thread+0x10/0x10
[  382.999483][    C0]  ? __pfx_kthread+0x10/0x10
[  383.004161][    C0]  ret_from_fork+0x4b/0x80
[  383.008613][    C0]  ? __pfx_kthread+0x10/0x10
[  383.013350][    C0]  ret_from_fork_asm+0x1a/0x30
[  383.018199][    C0]  </TASK>
[  383.021226][    C0] 
[  383.021226][    C0] Showing all locks held in the system:
[  383.029026][    C0] 3 locks held by kworker/0:0/8:
[  383.034013][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  383.045060][    C0]  #1: ffffc900000d7d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  383.056397][    C0]  #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  383.065452][    C0] 6 locks held by kworker/u8:0/11:
[  383.070714][    C0]  #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  383.081658][    C0]  #1: ffffc90000107d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  383.092274][    C0]  #2: ffffffff8f5f2c10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  383.101844][    C0]  #3: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  383.111907][    C0]  #4: ffffc90000007c00 (net/core/rtnetlink.c:83){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  383.122102][    C0]  #5: ffffffff8e335860 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  383.132019][    C0] 3 locks held by kworker/u8:3/53:
[  383.137161][    C0] 3 locks held by kworker/u8:7/2796:
[  383.142481][    C0]  #0: ffff888029bc9948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  383.154128][    C0]  #1: ffffc90009937d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  383.167884][    C0]  #2: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  383.177454][    C0] 1 lock held by klogd/4536:
[  383.182058][    C0] 1 lock held by dhcpcd/4761:
[  383.186769][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0
[  383.196020][    C0] 2 locks held by getty/4843:
[  383.200750][    C0]  #0: ffff88802a2750a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  383.210575][    C0]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  383.220767][    C0] 4 locks held by udevd/5097:
[  383.225442][    C0]  #0: ffff88807b82a540 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0xb7/0xd60
[  383.234332][    C0]  #1: ffff88823bda4e88 (&of->mutex#2){+.+.}-{3:3}, at: kernfs_seq_start+0x53/0x3b0
[  383.237594][   T55] Bluetooth: hci6: command 0x0406 tx timeout
[  383.243804][    C0]  #2: ffff88807b7542d8 (kn->active#5){++++}-{0:0}, at: kernfs_seq_start+0x72/0x3b0
[  383.259328][    C0]  #3: ffff88807a75b190 (&dev->mutex){....}-{3:3}, at: uevent_show+0x17d/0x340
[  383.268440][    C0] 5 locks held by kworker/1:8/5208:
[  383.273658][    C0]  #0: ffff8880186a7148 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  383.285064][    C0]  #1: ffffc90004197d00 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  383.297149][    C0]  #2: ffff8880236d2190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1fe/0x5150
[  383.306233][    C0]  #3: ffff88807a75b190 (&dev->mutex){....}-{3:3}, at: __device_attach+0x8e/0x520
[  383.315544][    C0]  #4: ffff888029703160 (&dev->mutex){....}-{3:3}, at: __device_attach+0x8e/0x520
[  383.325004][    C0] 1 lock held by syz-executor/8660:
[  383.330224][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x847/0x1180
[  383.339796][    C0] 1 lock held by syz.3.764/8894:
[  383.344740][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48f/0x2400
[  383.354232][    C0] 1 lock held by syz.3.764/8895:
[  383.359207][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  383.368272][    C0] 1 lock held by syz.3.764/8896:
[  383.373217][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: dev_ioctl+0x706/0x1340
[  383.382086][    C0] 1 lock held by syz.1.765/8921:
[  383.387146][    C0]  #0: ffffffff8f5ff788 (rtnl_mutex){+.+.}-{3:3}, at: dev_ethtool+0x21e/0x1bc0
[  383.396152][    C0] 
[  383.398510][    C0] =============================================
[  383.398510][    C0] 
[  383.780949][ T8923] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  383.791419][ T8923] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  383.811202][ T5208] hid (null): unknown global tag 0x83
[  383.818177][ T5208] hid (null): global environment stack underflow
[  383.865802][ T5208] hid-generic 0003:0158:0100.0001: unexpected long global item
[  383.885876][ T5208] hid-generic 0003:0158:0100.0001: probe with driver hid-generic failed with error -22
[  383.991738][ T8660] hsr_slave_0: entered promiscuous mode
[  384.002187][ T8660] hsr_slave_1: entered promiscuous mode
[  384.012536][ T6896] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.105866][ T8921] netdevsim netdevsim1: Direct firmware load for ng failed with error -2
[  384.141622][   T47] usb 1-1: USB disconnect, device number 15
[  384.148482][ T8921] netdevsim netdevsim1: Falling back to sysfs fallback for: ng
[  385.487509][    T8] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  386.598940][    T8] usb 4-1: Using ep0 maxpacket: 32
[  386.643489][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  386.702182][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  386.920877][    T8] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  386.931162][    T8] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  386.941283][    T8] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  386.956460][    T8] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  387.670478][    T8] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  387.791006][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  387.841190][    T8] usb 4-1: Product: syz
[  387.858893][    T8] usb 4-1: Manufacturer: syz
[  387.881071][    T8] usb 4-1: SerialNumber: syz
[  388.104584][ T8930] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  388.121354][ T5208] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  388.339553][ T8930] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  388.374884][ T8964] binder_alloc: 8960: binder_alloc_buf, no vma
[  388.464021][    T8] cdc_ncm 4-1:1.0: bind() failure
[  388.498026][    T8] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  388.512602][    T8] cdc_ncm 4-1:1.1: bind() failure
[  388.530430][ T5208] usb 3-1: config 0 has an invalid interface number: 106 but max is 0
[  388.534309][    T8] usb 4-1: USB disconnect, device number 25
[  388.619799][ T5208] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  388.761061][ T5208] usb 3-1: config 0 has no interface number 0
[  388.917916][ T5208] usb 3-1: config 0 interface 106 altsetting 0 endpoint 0x1 has an invalid bInterval 255, changing to 11
[  389.018070][ T5208] usb 3-1: config 0 interface 106 altsetting 0 endpoint 0x1 has invalid maxpacket 59391, setting to 1024
[  389.047600][ T5208] usb 3-1: config 0 interface 106 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  389.079034][ T5208] usb 3-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=df.bb
[  389.118519][ T8969] netlink: 4 bytes leftover after parsing attributes in process `syz.1.776'.
[  389.118778][ T5208] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.195400][ T5208] usb 3-1: config 0 descriptor??
[  389.213090][ T8955] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  389.259033][ T5208] usb 3-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  389.272847][ T8969] team_slave_0: entered promiscuous mode
[  389.304567][ T8969] team_slave_0: entered allmulticast mode
[  390.280990][ T7770] usb 3-1: Failed to submit usb control message: -110
[  390.289235][ T7770] usb 3-1: unable to send the bmi data to the device: -110
[  390.312790][ T8959] loop0: detected capacity change from 0 to 32768
[  390.319555][ T7770] usb 3-1: unable to get target info from device
[  390.327952][ T7770] usb 3-1: could not get target info (-110)
[  390.344102][ T7770] usb 3-1: could not probe fw (-110)
[  390.360358][ T8969] team0: Port device team_slave_0 removed
[  390.369233][ T5146] usb 3-1: USB disconnect, device number 23
[  390.370713][ T8959] btrfs: Deprecated parameter 'usebackuproot'
[  390.419737][ T8959] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  390.449310][ T8959] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.774 (8959)
[  390.597739][ T8959] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  390.597863][   T55] Bluetooth: hci3: Malformed HCI Event: 0x22
[  390.636799][ T8959] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  390.727682][ T8959] BTRFS info (device loop0): disk space caching is enabled
[  390.925937][ T8660] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  390.953262][ T8988] loop1: detected capacity change from 0 to 8192
[  390.979078][ T8660] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  390.999840][ T8959] BTRFS error (device loop0): open_ctree failed
[  391.063473][ T8988] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  391.076163][ T8660] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  391.095931][ T9005] loop2: detected capacity change from 0 to 512
[  391.142451][ T8660] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  391.276237][ T9005] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  391.390415][ T9007] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[  391.399123][ T9007] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  391.403000][ T9005] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  391.642481][ T8660] 8021q: adding VLAN 0 to HW filter on device bond0
[  391.751766][ T8660] 8021q: adding VLAN 0 to HW filter on device team0
[  391.824389][ T5101] bridge0: port 1(bridge_slave_0) entered blocking state
[  391.831677][ T5101] bridge0: port 1(bridge_slave_0) entered forwarding state
[  391.921449][ T5101] bridge0: port 2(bridge_slave_1) entered blocking state
[  391.928631][ T5101] bridge0: port 2(bridge_slave_1) entered forwarding state
[  392.030042][ T9024] loop3: detected capacity change from 0 to 8
[  392.112434][ T8660] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  392.163163][ T8660] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  392.607656][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  392.749902][ T9042] binder_alloc: 9036: binder_alloc_buf, no vma
[  392.791232][ T8660] 8021q: adding VLAN 0 to HW filter on device batadv0
[  393.101339][   T55] Bluetooth: hci3: Malformed HCI Event: 0x22
[  393.303008][ T9057] Cannot find add_set index 0 as target
[  394.632857][ T6896] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.653637][ T9063] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[  394.698772][ T9063] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  394.767252][ T8660] veth0_vlan: entered promiscuous mode
[  394.818909][ T8660] veth1_vlan: entered promiscuous mode
[  394.875626][ T9074] loop0: detected capacity change from 0 to 64
[  394.912291][ T8660] veth0_macvtap: entered promiscuous mode
[  394.946192][ T8660] veth1_macvtap: entered promiscuous mode
[  395.127591][ T5101] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  395.136626][ T8660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.158562][   T55] Bluetooth: hci3: command 0x0406 tx timeout
[  395.210422][ T8660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.261810][ T8660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.311043][ T8660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.349497][ T5101] usb 2-1: config 0 has an invalid interface number: 106 but max is 0
[  395.379664][ T8660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.390362][ T5101] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  395.397442][ T8660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.467571][ T5101] usb 2-1: config 0 has no interface number 0
[  395.467972][ T8660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  395.502148][ T5101] usb 2-1: config 0 interface 106 altsetting 0 endpoint 0x1 has an invalid bInterval 255, changing to 11
[  395.544041][ T9083] loop3: detected capacity change from 0 to 8192
[  395.555999][ T5101] usb 2-1: config 0 interface 106 altsetting 0 endpoint 0x1 has invalid maxpacket 59391, setting to 1024
[  395.577746][ T8660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.619737][ T8660] batman_adv: batadv0: Interface activated: batadv_slave_0
[  395.626247][ T5101] usb 2-1: config 0 interface 106 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 6
[  395.681916][ T8660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  395.687499][ T5101] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=df.bb
[  395.702674][ T9083] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  395.782522][ T5101] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  395.783889][ T8660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.849865][   T55] Bluetooth: hci1: Malformed HCI Event: 0x22
[  395.854506][ T8660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  395.881050][ T5101] usb 2-1: config 0 descriptor??
[  395.888619][ T9071] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  395.912734][ T8660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.924294][ T5101] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  395.927637][ T8660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  396.006602][ T8660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  396.016664][ T8660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  396.028092][ T8660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  396.039715][ T8660] batman_adv: batadv0: Interface activated: batadv_slave_1
[  396.051807][ T8660] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  396.062303][ T8660] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  396.071279][ T8660] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  396.083258][ T8660] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  396.110682][ T9093] netdevsim netdevsim0: Direct firmware load for ng failed with error -2
[  396.146635][ T9093] netdevsim netdevsim0: Falling back to sysfs fallback for: ng
[  396.434300][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.475937][ T9072] loop2: detected capacity change from 0 to 32768
[  396.490667][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.541618][ T9072] btrfs: Deprecated parameter 'usebackuproot'
[  396.561740][ T9072] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  396.607214][ T9072] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.790 (9072)
[  396.725805][ T1092] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.739058][ T9072] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  396.766271][ T9072] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  396.782925][ T1092] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.816425][ T9072] BTRFS info (device loop2): disk space caching is enabled
[  396.858898][ T9108] dccp_invalid_packet: P.Data Offset(0) too small
[  397.010838][ T2796] usb 2-1: Failed to submit usb control message: -110
[  397.021772][ T2796] usb 2-1: unable to send the bmi data to the device: -110
[  397.059097][ T2796] usb 2-1: unable to get target info from device
[  397.065877][ T2796] usb 2-1: could not get target info (-110)
[  397.174103][ T9104] netlink: 4 bytes leftover after parsing attributes in process `syz.3.793'.
[  397.196854][ T9072] BTRFS info (device loop2): rebuilding free space tree
[  397.213390][ T2796] usb 2-1: could not probe fw (-110)
[  397.256386][   T55] Bluetooth: hci2: Malformed HCI Event: 0x22
[  397.286745][ T9132] netlink: 'syz.0.795': attribute type 10 has an invalid length.
[  397.365890][ T9132] team0: Failed to send options change via netlink (err -105)
[  397.377909][ T9132] team0: Port device netdevsim0 added
[  397.385304][ T9072] BTRFS info (device loop2): disabling free space tree
[  397.399255][ T5208] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  397.410511][ T9072] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  397.469771][ T9072] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  397.512736][ T9137] Cannot find add_set index 0 as target
[  397.598899][   T47] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  397.660410][   T29] audit: type=1804 audit(1720143896.059:32): pid=9141 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.790" name="/newroot/66/file1/cgroup.controllers" dev="loop2" ino=263 res=1 errno=0
[  397.738486][ T5208] usb 2-1: USB disconnect, device number 19
[  397.744815][ T9137] netdevsim netdevsim4: Direct firmware load for ng failed with error -2
[  397.753909][ T9137] netdevsim netdevsim4: Falling back to sysfs fallback for: ng
[  397.839368][   T47] usb 1-1: Using ep0 maxpacket: 8
[  397.855673][   T47] usb 1-1: config 1 has an invalid interface descriptor of length 3, skipping
[  397.877591][   T55] Bluetooth: hci1: command 0x0406 tx timeout
[  397.918717][   T47] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  397.957624][   T47] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  397.975165][   T47] usb 1-1: config 1 has no interface number 1
[  397.999163][   T47] usb 1-1: too many endpoints for config 1 interface 2 altsetting 220: 113, using maximum allowed: 30
[  398.036417][ T6896] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  398.047322][   T47] usb 1-1: config 1 interface 2 altsetting 220 has 0 endpoint descriptors, different from the interface descriptor's value: 113
[  398.096435][   T55] Bluetooth: hci6: ACL packet for unknown connection handle 200
[  398.111997][   T47] usb 1-1: config 1 interface 2 has no altsetting 0
[  398.123035][   T47] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  398.133722][   T47] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  398.147528][   T47] usb 1-1: Product: 쑿퉈ਝ쑻
[  398.154238][   T47] usb 1-1: Manufacturer: ф
[  398.164296][   T47] usb 1-1: SerialNumber: syz
[  398.462405][ T9160] loop4: detected capacity change from 0 to 256
[  398.649853][   T47] usb 1-1: USB disconnect, device number 16
[  398.980552][ T5113] udevd[5113]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  399.317662][   T55] Bluetooth: hci2: command tx timeout
[  399.376665][   T29] audit: type=1326 audit(1720143897.619:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9162 comm="syz.3.800" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5652775bd9 code=0x0
[  399.857898][ T5146] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  399.988381][ T9182] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.998611][ T9182] FAT-fs (loop4): Filesystem has been set read-only
[  400.005254][ T9182] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  400.016787][ T9182] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  400.051529][   T29] audit: type=1800 audit(1720143898.419:34): pid=9182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.799" name="file1" dev="loop4" ino=1048663 res=0 errno=0
[  400.142664][ T5146] usb 1-1: Using ep0 maxpacket: 32
[  400.269067][ T5146] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  400.389816][ T5146] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  400.447515][ T5146] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  400.515206][ T5146] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  400.552213][ T5146] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  400.573417][ T5146] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  400.604298][ T9183] loop3: detected capacity change from 0 to 8192
[  400.604471][ T5146] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  400.661357][ T9183] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  400.672766][ T5146] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.702434][ T5146] usb 1-1: Product: syz
[  400.719395][   T55] Bluetooth: hci2: Malformed HCI Event: 0x22
[  400.769161][ T5146] usb 1-1: Manufacturer: syz
[  400.827697][ T5146] usb 1-1: SerialNumber: syz
[  400.908108][ T9204] Cannot find add_set index 0 as target
[  401.001471][ T9204] netdevsim netdevsim4: Direct firmware load for ng failed with error -2
[  401.019553][ T9204] netdevsim netdevsim4: Falling back to sysfs fallback for: ng
[  401.121938][ T9175] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  401.167803][ T9175] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  401.294987][ T5146] cdc_ncm 1-1:1.0: bind() failure
[  401.307971][ T9216] netlink: 4 bytes leftover after parsing attributes in process `syz.3.804'.
[  401.337909][ T5146] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  401.368575][ T5146] cdc_ncm 1-1:1.1: bind() failure
[  401.368749][ T9213] dccp_invalid_packet: P.Data Offset(0) too small
[  401.406467][ T5146] usb 1-1: USB disconnect, device number 17
[  401.428522][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.1.806'.
[  401.696378][ T7770] ------------[ cut here ]------------
[  401.702421][ T7770] WARNING: CPU: 1 PID: 7770 at net/wireless/nl80211.c:19513 cfg80211_bss_color_notify+0x5f8/0x8b0
[  401.702456][ T7770] Modules linked in:
[  401.702471][ T7770] CPU: 1 UID: 0 PID: 7770 Comm: kworker/u8:10 Not tainted 6.10.0-rc6-next-20240703-syzkaller #0
[  401.702485][ T7770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  401.702492][ T7770] Workqueue: phy37 ieee80211_color_collision_detection_work
[  401.702508][ T7770] RIP: 0010:cfg80211_bss_color_notify+0x5f8/0x8b0
[  401.702525][ T7770] Code: 00 e8 fc b9 b6 fe 48 83 c4 08 89 c1 c1 f8 1f 21 c8 e9 08 fd ff ff e8 67 b3 ab f6 90 0f 0b 90 e9 6f fb ff ff e8 59 b3 ab f6 90 <0f> 0b 90 e9 36 fb ff ff e8 4b b3 ab f6 c6 05 8b 02 b2 04 01 90 48
[  401.702534][ T7770] RSP: 0018:ffffc90002f3faa0 EFLAGS: 00010293
[  401.702545][ T7770] RAX: ffffffff8ae7d087 RBX: 0000000000000000 RCX: ffff88802072bc00
[  401.702553][ T7770] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  401.702559][ T7770] RBP: ffffc90002f3fbb0 R08: ffffffff8ae7cbb2 R09: 1ffffffff1f5ef4d
[  401.702567][ T7770] R10: dffffc0000000000 R11: ffffffff8b037720 R12: 1ffff920005e7f5c
[  401.702575][ T7770] R13: ffff88807ca24000 R14: ffff88807ca24cd0 R15: dffffc0000000000
[  401.702582][ T7770] FS:  0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  401.702591][ T7770] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  401.702599][ T7770] CR2: 00007fe868411440 CR3: 000000000e132000 CR4: 00000000003506f0
[  401.702609][ T7770] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  401.702616][ T7770] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  401.702625][ T7770] Call Trace:
[  401.702629][ T7770]  <TASK>
[  401.702635][ T7770]  ? __warn+0x168/0x4e0
[  401.702647][ T7770]  ? cfg80211_bss_color_notify+0x5f8/0x8b0
[  401.702663][ T7770]  ? report_bug+0x2b3/0x500
[  401.702677][ T7770]  ? cfg80211_bss_color_notify+0x5f8/0x8b0
[  401.702695][ T7770]  ? handle_bug+0x3e/0x70
[  401.702707][ T7770]  ? exc_invalid_op+0x1a/0x50
[  401.702717][ T7770]  ? asm_exc_invalid_op+0x1a/0x20
[  401.702731][ T7770]  ? __pfx_ieee80211_color_collision_detection_work+0x10/0x10
[  401.702748][ T7770]  ? cfg80211_bss_color_notify+0x122/0x8b0
[  401.702761][ T7770]  ? cfg80211_bss_color_notify+0x5f7/0x8b0
[  401.702776][ T7770]  ? cfg80211_bss_color_notify+0x5f8/0x8b0
[  401.702791][ T7770]  ? __pfx_lock_acquire+0x10/0x10
[  401.702807][ T7770]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  401.702820][ T7770]  ? __pfx_cfg80211_bss_color_notify+0x10/0x10
[  401.702834][ T7770]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  401.702855][ T7770]  ? process_scheduled_works+0x945/0x1830
[  401.702867][ T7770]  process_scheduled_works+0xa2c/0x1830
[  401.702897][ T7770]  ? __pfx_process_scheduled_works+0x10/0x10
[  401.702914][ T7770]  ? assign_work+0x364/0x3d0
[  401.702929][ T7770]  worker_thread+0x86d/0xd40
[  401.702948][ T7770]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  401.702966][ T7770]  ? __kthread_parkme+0x169/0x1d0
[  401.702982][ T7770]  ? __pfx_worker_thread+0x10/0x10
[  401.702997][ T7770]  kthread+0x2f0/0x390
[  401.703012][ T7770]  ? __pfx_worker_thread+0x10/0x10
[  401.703024][ T7770]  ? __pfx_kthread+0x10/0x10
[  401.703042][ T7770]  ret_from_fork+0x4b/0x80
[  401.703057][ T7770]  ? __pfx_kthread+0x10/0x10
[  401.703070][ T7770]  ret_from_fork_asm+0x1a/0x30
[  401.703095][ T7770]  </TASK>
[  401.703101][ T7770] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  402.025573][ T7770] CPU: 1 UID: 0 PID: 7770 Comm: kworker/u8:10 Not tainted 6.10.0-rc6-next-20240703-syzkaller #0
[  402.036013][ T7770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  402.046158][ T7770] Workqueue: phy37 ieee80211_color_collision_detection_work
[  402.053453][ T7770] Call Trace:
[  402.056725][ T7770]  <TASK>
[  402.059673][ T7770]  dump_stack_lvl+0x241/0x360
[  402.064378][ T7770]  ? __pfx_dump_stack_lvl+0x10/0x10
[  402.069599][ T7770]  ? __pfx__printk+0x10/0x10
[  402.074187][ T7770]  ? vscnprintf+0x5d/0x90
[  402.078530][ T7770]  panic+0x349/0x870
[  402.082452][ T7770]  ? __warn+0x177/0x4e0
[  402.086613][ T7770]  ? __pfx_panic+0x10/0x10
[  402.091032][ T7770]  ? ret_from_fork_asm+0x1a/0x30
[  402.096095][ T7770]  __warn+0x34b/0x4e0
[  402.100065][ T7770]  ? cfg80211_bss_color_notify+0x5f8/0x8b0
[  402.105870][ T7770]  report_bug+0x2b3/0x500
[  402.110203][ T7770]  ? cfg80211_bss_color_notify+0x5f8/0x8b0
[  402.116201][ T7770]  handle_bug+0x3e/0x70
[  402.120352][ T7770]  exc_invalid_op+0x1a/0x50
[  402.124844][ T7770]  asm_exc_invalid_op+0x1a/0x20
[  402.129684][ T7770] RIP: 0010:cfg80211_bss_color_notify+0x5f8/0x8b0
[  402.136097][ T7770] Code: 00 e8 fc b9 b6 fe 48 83 c4 08 89 c1 c1 f8 1f 21 c8 e9 08 fd ff ff e8 67 b3 ab f6 90 0f 0b 90 e9 6f fb ff ff e8 59 b3 ab f6 90 <0f> 0b 90 e9 36 fb ff ff e8 4b b3 ab f6 c6 05 8b 02 b2 04 01 90 48
[  402.155697][ T7770] RSP: 0018:ffffc90002f3faa0 EFLAGS: 00010293
[  402.161766][ T7770] RAX: ffffffff8ae7d087 RBX: 0000000000000000 RCX: ffff88802072bc00
[  402.169739][ T7770] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  402.177710][ T7770] RBP: ffffc90002f3fbb0 R08: ffffffff8ae7cbb2 R09: 1ffffffff1f5ef4d
[  402.186116][ T7770] R10: dffffc0000000000 R11: ffffffff8b037720 R12: 1ffff920005e7f5c
[  402.194099][ T7770] R13: ffff88807ca24000 R14: ffff88807ca24cd0 R15: dffffc0000000000
[  402.202066][ T7770]  ? __pfx_ieee80211_color_collision_detection_work+0x10/0x10
[  402.209556][ T7770]  ? cfg80211_bss_color_notify+0x122/0x8b0
[  402.215358][ T7770]  ? cfg80211_bss_color_notify+0x5f7/0x8b0
[  402.221191][ T7770]  ? __pfx_lock_acquire+0x10/0x10
[  402.226210][ T7770]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  402.232190][ T7770]  ? __pfx_cfg80211_bss_color_notify+0x10/0x10
[  402.238339][ T7770]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  402.244663][ T7770]  ? process_scheduled_works+0x945/0x1830
[  402.250383][ T7770]  process_scheduled_works+0xa2c/0x1830
[  402.255944][ T7770]  ? __pfx_process_scheduled_works+0x10/0x10
[  402.261946][ T7770]  ? assign_work+0x364/0x3d0
[  402.266708][ T7770]  worker_thread+0x86d/0xd40
[  402.271306][ T7770]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  402.277365][ T7770]  ? __kthread_parkme+0x169/0x1d0
[  402.282398][ T7770]  ? __pfx_worker_thread+0x10/0x10
[  402.287520][ T7770]  kthread+0x2f0/0x390
[  402.291579][ T7770]  ? __pfx_worker_thread+0x10/0x10
[  402.296695][ T7770]  ? __pfx_kthread+0x10/0x10
[  402.301274][ T7770]  ret_from_fork+0x4b/0x80
[  402.305680][ T7770]  ? __pfx_kthread+0x10/0x10
[  402.310261][ T7770]  ret_from_fork_asm+0x1a/0x30
[  402.315024][ T7770]  </TASK>
[  402.318305][ T7770] Kernel Offset: disabled
[  402.322723][ T7770] Rebooting in 86400 seconds..