last executing test programs:

5m2.112215213s ago: executing program 3 (id=203):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
r1 = syz_open_dev$loop(&(0x7f00000001c0), 0x9, 0x20000)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001280)={r0, 0x0, {0x2a12, 0x80010000, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea80000000000000000000000deff0000000000000000000000000000000800", "2809e8dbe108038948224ad54afac11d875397bdb22d0000b420a1a93c7540f4767f9e01177d3dd40600000061ac00", "90be8b1c55f96400", [0x800]}})

5m1.916013026s ago: executing program 3 (id=206):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001000)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000280)="5de6", 0x2}], 0x1}}, {{&(0x7f0000000780)={0xa, 0x4e20, 0x76, @private0, 0x5}, 0x1c, &(0x7f0000000b80)=[{&(0x7f0000000840)="3d6fe45df529a6e2587b1978875293f468cd6bb064fead3682a400f4a7b9aac46675a9c02657285f57b327f27ff9f045eab6e2603f697191fb293d", 0x3b}], 0x1}}], 0x2, 0x0)

5m1.496044002s ago: executing program 3 (id=209):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480))
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$key(0xf, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_io_uring_setup(0x288b, &(0x7f0000000240)={0x0, 0x0, 0x13181, 0x42, 0x2b2}, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x14)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet_sctp(0x2, 0x5, 0x84)
syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
socket$inet(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x6f1dd9aa, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x0, 0x1, &(0x7f0000000340)=[r1], &(0x7f00000005c0)=[0x1], &(0x7f0000000200), &(0x7f0000000040), 0x0, 0x7f})

5m1.458513852s ago: executing program 3 (id=211):
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r0 = gettid()
r1 = getpid()
rt_tgsigqueueinfo(r1, r0, 0x7, &(0x7f0000000000)={0x28, 0x1, 0x5})

5m0.372415468s ago: executing program 3 (id=215):
semctl$SEM_STAT(0x0, 0x2, 0x12, &(0x7f0000000740)=""/137)

4m59.082835007s ago: executing program 3 (id=218):
r0 = socket$nl_route(0x10, 0x3, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000180)={0x0, <r1=>0x0})
sched_setscheduler(r1, 0x3, &(0x7f00000001c0)=0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x58, 0x18, &(0x7f00000002c0)={@ptr={0x70742a85, 0x0, &(0x7f0000000440)=""/180, 0xb4, 0x1, 0x28}, @fd={0x66642a85, 0x0, r2}, @flat=@weak_binder={0x77622a85, 0x2000}}, &(0x7f00000003c0)={0x0, 0x28, 0x40}}, 0x400}], 0x0, 0x0, 0x0})
chdir(&(0x7f0000000540)='./cgroup\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x33455aed6cbf4c1b)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x1)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x3, 0x30)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
getsockopt$inet_mreqsrc(r5, 0x0, 0x53, 0x0, &(0x7f0000000080))
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372", @ANYRES16=r4, @ANYRESOCT=0x0, @ANYRESDEC, @ANYRES16=r4, @ANYRES64=r2], 0xfc}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000001900090000000000000000001c140000fe000001000000001400120002"], 0x30}}, 0x0)
r6 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r6, 0xc0185649, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0})
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$video4linux(&(0x7f0000000080), 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)

4m43.80257262s ago: executing program 32 (id=218):
r0 = socket$nl_route(0x10, 0x3, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000180)={0x0, <r1=>0x0})
sched_setscheduler(r1, 0x3, &(0x7f00000001c0)=0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r3, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x58, 0x18, &(0x7f00000002c0)={@ptr={0x70742a85, 0x0, &(0x7f0000000440)=""/180, 0xb4, 0x1, 0x28}, @fd={0x66642a85, 0x0, r2}, @flat=@weak_binder={0x77622a85, 0x2000}}, &(0x7f00000003c0)={0x0, 0x28, 0x40}}, 0x400}], 0x0, 0x0, 0x0})
chdir(&(0x7f0000000540)='./cgroup\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x33455aed6cbf4c1b)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x1)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet(0x2, 0x3, 0x30)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
getsockopt$inet_mreqsrc(r5, 0x0, 0x53, 0x0, &(0x7f0000000080))
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372", @ANYRES16=r4, @ANYRESOCT=0x0, @ANYRESDEC, @ANYRES16=r4, @ANYRES64=r2], 0xfc}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000001900090000000000000000001c140000fe000001000000001400120002"], 0x30}}, 0x0)
r6 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r6, 0xc0185649, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0})
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$video4linux(&(0x7f0000000080), 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)

2m2.129016642s ago: executing program 1 (id=943):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
migrate_pages(r0, 0xa94b, &(0x7f0000000280)=0xfffffffffffffffe, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendto$packet(r3, &(0x7f00000000c0)="96685102d300000013000010888e", 0xe, 0x4000004, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)

1m59.824226045s ago: executing program 1 (id=947):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r1, 0x0, 0x0)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmsg$TIPC_NL_KEY_SET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x20010018}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x40, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfffffeff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3ff}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x44111)
sendmmsg$inet6(r1, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{0x0}], 0x1}}], 0x1, 0x11)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setfsuid(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
openat$vimc0(0xffffff9c, &(0x7f0000000340), 0x2, 0x0)
connect$phonet_pipe(r3, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x20040010)
ptrace$ARCH_MAP_VDSO_X32(0x1e, 0x0, 0x2, 0x2001)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0xf, 0x80000002}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r4, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)

1m54.971180383s ago: executing program 1 (id=957):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')
migrate_pages(r0, 0xa94b, &(0x7f0000000280)=0xfffffffffffffffe, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendto$packet(r3, &(0x7f00000000c0)="96685102d300000013000010888e", 0xe, 0x4000004, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)

1m53.229364538s ago: executing program 1 (id=959):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)

1m52.959563262s ago: executing program 1 (id=962):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x5, 0xe4}]}, 0x8)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000000)="ab9fb9486d2712900d54de7df30c56ca8b3d33cd95c0b6251200de3018508f8405b46a9257514aa885ccea7cabdc622d21d1c4", 0x33}, {&(0x7f0000000180)="f078cd874d733cef6b537a3a837b068ff2181fda73ecd4159d64272f1b17492107dfd01a5747833b968800c87e6d955a9a3335e02f17d71a67f63c522cd343903a2401466573874d5d7e543053b76c7d13e60c3dd52c0afe16b4046cc6e30bdcae03fd2e1421b928cb83ac15957ddc1b5cc4529a88b35cae09499d91df2157841c52eb2574d4e54b29804aa3a5f74c3307e9", 0x92}], 0x2}}, {{&(0x7f0000000840)={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000980)=[{&(0x7f0000000880)="eea41608", 0x4}], 0x1}}, {{0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000000b80)="d0", 0x1}], 0x1}}], 0x3, 0x48f0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x3, 0x0, 0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
close_range(r0, 0xffffffffffffffff, 0x400000000000000)

1m52.34442473s ago: executing program 1 (id=965):
mmap(&(0x7f0000aa6000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0xbfa35000)

1m51.945477636s ago: executing program 33 (id=965):
mmap(&(0x7f0000aa6000/0x4000)=nil, 0x4000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0xbfa35000)

11.661841175s ago: executing program 4 (id=1301):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x10}, {0xf0ffffffffffff, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, 0x0, 0x6e6bb5, 0x0, 0x1}}, 0xb8}}, 0x0)

11.555084477s ago: executing program 4 (id=1304):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
syz_emit_ethernet(0x36, &(0x7f0000000500)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2f, 0x0, @rand_addr=0x64010102, @local}, {{0x4001, 0x880b, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
futex(&(0x7f0000000000), 0x80, 0x3, 0x0, &(0x7f0000048000)=0x1, 0x2)
syz_open_procfs(0xffffffffffffffff, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000008c0))

10.521775601s ago: executing program 6 (id=1308):
socket$igmp6(0xa, 0x3, 0x2)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000002c0)={'gre0\x00', 0x4})
socket(0x400000000010, 0x3, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x10000000, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

10.311848094s ago: executing program 0 (id=1311):
socket(0xa, 0x3, 0x3a)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
r2 = memfd_create(0x0, 0x5)
ioctl$FS_IOC_RESVSP(r2, 0x402c5828, &(0x7f0000000180)={0x0, 0x2, 0x80000, 0xb3})
r3 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2)
r4 = fcntl$dupfd(r3, 0x0, r3)
write$binfmt_script(r4, &(0x7f00000002c0), 0x4)
ioctl$VIDIOC_S_STD(r4, 0x40085618, &(0x7f0000000000)=0xe0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioprio_set$pid(0x2, 0x0, 0x6000)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1d, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r6, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timerfd_create(0x0, 0x0)
sendfile(r5, r5, 0x0, 0x200000)

10.024069898s ago: executing program 6 (id=1313):
ioctl$CEC_DQEVENT(0xffffffffffffffff, 0xc0506107, 0x0)
socket$alg(0x26, 0x5, 0x0)
ustat(0x6, &(0x7f0000000080))
socket$inet6_sctp(0xa, 0x1, 0x84)
munmap(&(0x7f0000901000/0x3000)=nil, 0x3000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x40, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3ffa, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r3, &(0x7f00000004c0)={0x232, 0x7d, 0x0, {{0x500, 0xf1, 0x0, 0x5000000, {}, 0x0, 0x0, 0x0, 0x0, 0x1f, '\x04nodev{cvfox%\xff\xff\xff\x81\x02\x00\x00\x00\x00\x001\xff\xce\xbc\x92\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\"\x00}\xfag>\xff\xeb\t\xb51\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00/\xa9Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x01\x00\x00\x00', 0x12, '\xcf\xb6\x00'/18, 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xd4\x89\xdad\x9a7\x00'}, 0x12c, 'odev-n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x232)

8.556869159s ago: executing program 5 (id=1315):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
bind$xdp(r0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r1, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, 0x0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000480)=[{0x6, 0x0, 0x0, 0x4}]})
msgget$private(0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

8.382261451s ago: executing program 6 (id=1316):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x18, &(0x7f0000000180)=ANY=[@ANYBLOB="00030f0000"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
syz_usb_disconnect(r0)
ioctl$HIDIOCSUSAGES(r1, 0x501c4814, 0x0)

7.522190164s ago: executing program 5 (id=1319):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x4, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000)
recvmmsg(r1, 0x0, 0x0, 0x7ffeedc0, 0x0)

6.33588856s ago: executing program 5 (id=1321):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f0000000340)={@empty, @private}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_type(r1, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_type(r2, &(0x7f0000000280), 0x9)
r3 = openat$cgroup_procs(r1, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f0000000c40), 0x12)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_clone(0x40020000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = openat$cgroup_ro(r4, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r5, &(0x7f0000000200)=0x1, 0x12)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000300)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000080), 0x12)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_TRY_FMT(r9, 0xc0d05640, &(0x7f0000000080)={0x2, @pix={0x100000ec, 0xd11b5fe9, 0x3136564e, 0x2, 0x4, 0x3, 0x9, 0x81, 0x0, 0x8, 0x0, 0x3}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r8}, 0x10)

5.915840186s ago: executing program 6 (id=1323):
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)='hfsplus\x00', 0x410, &(0x7f0000000100)='barrier')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[], 0x48)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='comm\x00')
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x15)
writev(r5, &(0x7f0000000280)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025", 0x1d}, {&(0x7f0000000580)="fa21bd2b5c40cc420740358ffc7f9f4b6e68fc8d1aa2597e7b484f301f11e35f22", 0x21}], 0x2)
socket$rxrpc(0x21, 0x2, 0xa)
syz_emit_vhci(0x0, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r8=>0x0})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000005c0)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', r8, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5f1, @void, @value}, 0x94)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x17, &(0x7f0000000300)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x11, '\x00', r8, 0x0, r1, 0x8, &(0x7f0000000440)={0x2, 0x3}, 0x8, 0x10, &(0x7f0000000480)={0x1, 0x5, 0x3, 0x3}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000004c0)=[r4], &(0x7f0000000500)=[{0x1, 0x5, 0x1, 0x6}], 0x10, 0xe, @void, @value}, 0x94)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newlink={0x2c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4100, 0x1b102}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_EXPECTED_FD={0x8, 0x8, r9}]}]}, 0x2c}}, 0x0)

5.915481777s ago: executing program 4 (id=1324):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getsig(0x4202, r0, 0x5, &(0x7f0000000080))

5.793422698s ago: executing program 4 (id=1325):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r3, 0x0, 0x3, &(0x7f0000000000)=0x6, 0x4)

4.773052923s ago: executing program 4 (id=1327):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000005f80)=@newtfilter={0x90, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {}, {0xa, 0x6}}, [@filter_kind_options=@f_flow={{0x9}, {0x58, 0x2, [@TCA_FLOW_ACT={0x54, 0x9, 0x0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x20000001, 0x4, 0x2}, 0x1, r3}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xff, 0x5}}]}, 0x90}}, 0x0)

4.464175387s ago: executing program 4 (id=1328):
socket$nl_netfilter(0x10, 0x3, 0xc)
unshare(0x6a040000)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCADDRT(r0, 0x890c, &(0x7f0000000040)={0x0, @l2tp={0x2, 0x0, @empty}, @l2tp={0x2, 0x0, @broadcast, 0xfffffffe}, @nl=@unspec, 0x0, 0x0, 0x0, 0x0, 0x3})

4.463085887s ago: executing program 6 (id=1329):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x19, 0x1c, &(0x7f0000001840)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1b}}, {}, [@snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x5}, {0x3, 0x3, 0x6, 0xa, 0xa}, {0x5, 0x1, 0xb, 0x8, 0xa, 0x4}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x0}, {}, {0x18, 0x2, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x2}, {0x46, 0x0, 0x0, 0x76}}], {{}, {0x6, 0x0, 0xb, 0x8}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x480, @void, @value}, 0x94)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_disconnect(r2)
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
r3 = syz_open_dev$hiddev(&(0x7f0000000040), 0x2, 0x801)
ioctl$HIDIOCSUSAGES(r3, 0x501c4814, &(0x7f0000000300)={{0x1, 0x2, 0x0, 0x4, 0xfffffffa, 0x80000001}, 0x8000033f, [0x26, 0x1f, 0x9, 0x40, 0x0, 0xf8cd, 0x7fff, 0x6, 0xffffff6b, 0x6, 0x4, 0x3, 0xfffffff2, 0x81, 0x9, 0x9, 0x3, 0x6, 0x3, 0x91a, 0x0, 0x6, 0x8, 0x2, 0x18, 0x47, 0x7f, 0x31, 0x83e, 0x9d, 0x80000000, 0x2, 0xfffff001, 0x0, 0x8001, 0x6498e749, 0x824, 0x7, 0x81, 0x2, 0x5000000, 0xa, 0x0, 0x34e, 0x0, 0x14cd0497, 0x800, 0x9, 0x2, 0x0, 0x400, 0xffffffff, 0x2, 0xc6e, 0x8, 0x80000000, 0x15888778, 0x80000000, 0x6, 0x5, 0xf262, 0x8, 0x6, 0x5, 0x1, 0x2, 0x8, 0x2, 0x7fffffff, 0x10, 0xffffd377, 0x0, 0x7f, 0x0, 0x0, 0x8, 0xfffffffb, 0x7, 0xffffffff, 0x8001, 0x8, 0xf1, 0x8, 0x6, 0x9, 0x7, 0x8, 0x2, 0xd9f7, 0x766b, 0x1, 0x7, 0x100, 0x1, 0xffffffff, 0xf, 0x5, 0x0, 0x765ead3, 0xffffffff, 0x1, 0x3, 0x6, 0x7, 0x7fffffff, 0x1, 0x1, 0x0, 0xe, 0x5, 0x6, 0xffff0001, 0x7, 0x80, 0x8, 0x8, 0x6, 0x8, 0x2, 0x8, 0x0, 0x9, 0x4, 0x7, 0x9, 0x9, 0xfffffffc, 0x2, 0x3, 0x4, 0x8, 0xb, 0x8f, 0xa056, 0x904, 0x401, 0x7, 0x6, 0x4, 0x8, 0x5, 0x5b, 0xab, 0x7ff, 0x8f93, 0x9, 0x8, 0x0, 0x8, 0x1, 0x9170, 0x9, 0xfffffff5, 0x7fffffff, 0xd, 0x7d, 0x8, 0x0, 0x10, 0xf229, 0x5, 0x9, 0x2, 0x0, 0x10001, 0x3ff, 0x9, 0x9, 0xffffffff, 0x47, 0x1, 0x2, 0x51, 0x7, 0x0, 0x4, 0x4, 0x9, 0x6, 0x3, 0x0, 0xb8, 0x1000, 0x3, 0x9, 0x6, 0x10001, 0x9, 0x506, 0x401, 0x9, 0x2, 0x9, 0x38, 0x2, 0x89, 0x8, 0x757, 0x5, 0x6, 0x7, 0x0, 0x6, 0x6e7, 0x8, 0xc, 0x4a7e, 0x8, 0x9, 0x400, 0x7f, 0x28, 0x704, 0x96, 0xa, 0x773, 0xa, 0x1, 0x40ee, 0x4, 0x76, 0x2, 0x9, 0x9, 0x9, 0x40, 0x7, 0x0, 0x2, 0x7f, 0x6, 0xfffffff5, 0x0, 0x4, 0x8, 0x7, 0x2, 0x180000, 0x0, 0x0, 0x2, 0x8, 0x3539015, 0x7ff00, 0x1000, 0x2, 0x5, 0xfffffffe, 0x5, 0x80, 0x7, 0x6, 0xfb, 0x5, 0x7, 0x9, 0x5, 0x5, 0x7, 0x6, 0x2, 0x5, 0xfffffff7, 0x2, 0x200, 0x5, 0x6, 0x8, 0x1, 0x0, 0x45, 0x8, 0x9, 0x1, 0x40, 0x8, 0x8, 0x7fff, 0x9, 0x9, 0xd7, 0x10000, 0xfffffffd, 0x11a, 0x9, 0x91b1, 0x1, 0x9, 0x6, 0x72, 0x0, 0x0, 0x7fffffff, 0x1, 0x401, 0x9, 0x3, 0x1, 0x6, 0xb0f, 0x1, 0x6, 0x1, 0x7fffffff, 0x7, 0x1350, 0x5, 0x9, 0x4, 0x7, 0x76ff, 0x40, 0x9, 0x13e, 0x9, 0x0, 0x0, 0xff, 0x8, 0x1, 0x4, 0x7fffffff, 0x2, 0x2, 0x5, 0x40, 0x4, 0xd, 0x19cc, 0x6, 0x10001, 0x4, 0x37, 0x6, 0x7, 0x8, 0x9, 0x1f, 0x9, 0x1, 0x3, 0x7f, 0x2, 0x3, 0x7, 0x9, 0x9, 0xfb640, 0x1, 0x7, 0x3, 0x40, 0x4, 0xd40, 0x4d6f, 0x1, 0x9, 0xf7, 0xe9, 0x8, 0x1000, 0xffffffff, 0x8000, 0x80000001, 0x9e3, 0xdef, 0x5, 0x400, 0x9, 0x5, 0x400, 0x9, 0xc0000000, 0x9, 0x4, 0x4, 0x9, 0x7f, 0xffff, 0x1, 0x3, 0x1, 0x8, 0x200, 0xd28d, 0x2, 0x1, 0x4, 0xfffff000, 0xffffffff, 0x7, 0x400, 0x0, 0x6, 0x6, 0x2ccc, 0x7, 0x6, 0x5, 0x9, 0xeef, 0xd, 0x3, 0xfffffffe, 0x6, 0xba48, 0x4, 0xa, 0xffff76a5, 0x0, 0x9, 0x7fffffff, 0xb0, 0x1, 0x0, 0x2, 0x400, 0x7, 0xfc, 0xfff, 0x680, 0x1a, 0x62, 0x3000000, 0x5, 0xc, 0x2000, 0x4, 0xfa8f, 0x140000, 0xfffffffa, 0x4, 0x7fff, 0x4, 0x8, 0xffffff00, 0x6, 0x4, 0x1, 0xfffffffe, 0x4, 0x7, 0x0, 0x6, 0x1, 0x10000, 0x3, 0x4, 0xfffffbd4, 0x80000000, 0xd, 0x5, 0x3ff, 0x53, 0xfc, 0x9, 0x8, 0x7, 0x1, 0xd16d, 0x39eaaba2, 0x2, 0x6, 0x7, 0xe, 0xb, 0x7, 0x5, 0x6, 0x7, 0x7, 0x332, 0x7, 0x7, 0x0, 0xfffff001, 0x200, 0x3, 0x1, 0x7, 0x9, 0xc8f, 0x9, 0x7, 0x5, 0x2, 0x8, 0x8, 0xf3c, 0x4, 0x4, 0x8, 0x80000001, 0x7, 0x1, 0xb, 0x8, 0x36, 0x7, 0x7, 0x5, 0x6f6f, 0x1, 0x2, 0xffffffff, 0xffffffff, 0x80000000, 0xffe6, 0xfffffff7, 0x1d32, 0x4, 0x7fffffff, 0x6, 0xfffffffc, 0x7, 0x1, 0x8, 0x1264, 0x3ff, 0x8, 0x4, 0x5, 0x6, 0x8, 0x101, 0x10, 0x5, 0x800, 0x400000, 0xff, 0x4, 0x2, 0x92, 0x3, 0x244, 0x61, 0x1, 0x0, 0x4, 0x4f, 0xe, 0x9, 0x1ff, 0x4, 0x4, 0x0, 0xc, 0x200, 0x9, 0x4, 0x81, 0x3, 0x1, 0x4, 0xffffffae, 0x2, 0xfffffffd, 0x7fffffff, 0x6, 0x0, 0x7, 0x6, 0x6, 0xc0, 0x5, 0x8, 0x10001, 0x9, 0x7, 0xfffffd63, 0xe, 0x8, 0xfffffff8, 0x7c7e1ef6, 0x0, 0x7, 0x6, 0x7, 0x8, 0x8, 0xffff, 0x4, 0x9, 0x2, 0x6, 0x5, 0x4, 0x7, 0x7, 0x4, 0x6, 0x2c, 0xd, 0x4, 0xfffffffd, 0xb8, 0x7, 0xaff, 0x1, 0x0, 0x1ff, 0x4, 0x6, 0x762a, 0x8, 0x9, 0x3, 0x9, 0x2, 0xfff, 0x0, 0x8, 0xff, 0x9, 0xf0f9, 0xfffeffff, 0x800, 0xa1b2, 0xe00, 0x4, 0x4e74, 0x10, 0x2, 0x10001, 0x1, 0x1, 0x7fffffff, 0xe217, 0x7, 0x9, 0x8, 0x7fff, 0x9, 0xaf4, 0x6, 0x6, 0xb3, 0x0, 0x80, 0x0, 0x8, 0x7fff, 0x8, 0x81, 0x2, 0x0, 0x6, 0x1, 0x2, 0x401, 0x1, 0x9, 0x80000000, 0x4, 0x1, 0x10001, 0x3, 0x0, 0xb139, 0xc, 0x401, 0x9, 0x7, 0x4c4, 0x5, 0x7fff, 0x9, 0xfa, 0x5, 0x6, 0x4, 0x8, 0x8, 0xf, 0x6, 0x9, 0xae73, 0x9, 0x2, 0x10, 0x1, 0xfffffffb, 0x7fffffff, 0x4, 0xfffffff1, 0x5, 0x0, 0x6, 0x1, 0x7ff, 0x8, 0xc, 0x4, 0x7, 0x3ff, 0x8, 0x2, 0x4, 0x0, 0x6, 0xeec, 0x8001, 0x0, 0x3, 0xe, 0x1, 0x9, 0x7fff, 0xffffff80, 0xfff, 0x2, 0x3ff, 0x4, 0x5a00, 0x0, 0x3, 0x3, 0xff, 0x7, 0x5, 0x10000, 0x3, 0x3, 0x7ac, 0x2, 0xc1fa, 0x800, 0x8, 0x10001, 0x1995b9d5, 0x7, 0xfffffe65, 0x4, 0x10000, 0x800, 0x3, 0x2, 0x16, 0x5, 0x80, 0x3, 0x10, 0x101, 0xffff, 0x800, 0x8, 0x101, 0x5, 0x6, 0x9d, 0x66, 0x7, 0x2, 0x9, 0x7fff, 0x6, 0x0, 0x80000000, 0xca0, 0x2, 0x4, 0x7, 0xfffffff9, 0x0, 0x5, 0x1, 0x37, 0x6, 0xd45c, 0x3ff, 0x200, 0x7, 0x7, 0x0, 0x6, 0x8, 0x4, 0x7fffffff, 0x4, 0x9f, 0x3, 0x4, 0x1, 0x6, 0x7, 0x81, 0x99, 0xc0, 0x7, 0x3, 0xfffffff8, 0x2, 0xc60d, 0xfff, 0x4, 0x7, 0x1, 0x2, 0x3dc00, 0x1, 0x9, 0x9, 0x0, 0x5, 0x7, 0xd4, 0xfffffff8, 0xb0000000, 0xd0, 0x401, 0x9, 0x1, 0xfffffffa, 0xfffffffb, 0x101, 0xc, 0x71c16969, 0xfb29, 0x2, 0xfffffff9, 0x8, 0x35, 0x0, 0x4c5, 0x7fb1e7c5, 0x2, 0x166, 0xe9, 0x7, 0x1d, 0x8, 0x9, 0x10, 0x1000, 0x7f, 0xa69, 0x0, 0x1, 0x9, 0x8, 0x0, 0x100, 0x3, 0xcb, 0xed6, 0x800, 0x10000, 0x7ff, 0x3012, 0x9, 0x9, 0x7, 0xfffffffe, 0x6, 0x1, 0x9, 0x40, 0x1, 0x94d, 0x4, 0x0, 0x4, 0x3f00, 0xffffffff, 0x80000001, 0x1, 0x4, 0x3, 0xffffffff, 0xb, 0x5, 0x101, 0x7, 0x6, 0x64a5, 0x9, 0x71, 0x6a, 0x0, 0x3, 0xffffffff, 0xd, 0x3, 0x8, 0x8, 0x2, 0xfffffffc, 0x8, 0x36836a74, 0x6, 0x8, 0x2, 0x2a, 0x5, 0x8, 0xffff, 0x40, 0x6, 0x1, 0x6, 0x81, 0x401, 0x7, 0x3, 0x3, 0x7, 0x6, 0xfffffe01, 0x1c145837, 0x729, 0xfff, 0x8, 0xb42, 0x12000000, 0x2, 0x7, 0x9a2, 0x2, 0x8, 0x6, 0x5, 0x3, 0xffffffcf, 0x3, 0x7, 0x5, 0x4, 0x3, 0xffff, 0xa, 0x7ff, 0x6, 0x1, 0xfe1, 0xb1a, 0x4, 0x5, 0x2, 0x3, 0x7ff, 0x7, 0x1, 0x3, 0x9, 0x2, 0x6, 0x0, 0x63a, 0x1, 0x8fb, 0x1, 0x6, 0x9, 0x2, 0x2, 0xfffffffd, 0x2, 0xb, 0x8cb0, 0x3, 0xd, 0x9, 0x0, 0x6, 0x0, 0x1, 0x1, 0x7, 0x9, 0x7, 0x0, 0x100, 0x36c5dc65, 0xd, 0x80, 0x8, 0x75, 0x35, 0x7fffffff, 0xd, 0x200, 0xcf0, 0x92c, 0x8, 0x6, 0x5, 0x5, 0x7f, 0x9000, 0x7, 0x7, 0x2, 0x7, 0x1, 0x3, 0x1, 0x3, 0x9, 0x4, 0x1, 0x8, 0x7f, 0x5, 0x1f1d, 0x6e89, 0x1, 0x2, 0x4, 0x4, 0x6, 0x7, 0xa43, 0x1, 0x0, 0x200, 0x6, 0x8, 0x662a0, 0x2c, 0xfffffff4, 0xfffffffe, 0x3, 0x9f9, 0x8f]})
dup(0xffffffffffffffff)
r4 = socket$kcm(0x10, 0x2, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r4, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
mkdir(0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@setlink={0x3c, 0x13, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xa, r7}, @IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}]}, 0x3c}}, 0x0)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r8, 0x8922, &(0x7f0000000080)={'dummy0\x00'})
r9 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r9, &(0x7f00000002c0), 0x0)
syz_usb_disconnect(r2)

3.665874359s ago: executing program 2 (id=1330):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000001c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x80, 0x0)
iopl(0x3)
shutdown(0xffffffffffffffff, 0x0)
ioctl$TCSETS(r0, 0x404c4701, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='wchan\x00')
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet6_int(r1, 0x29, 0x50, 0x0, &(0x7f00000005c0))
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x181200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$evdev(0x0, 0x0, 0x60000)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0e00000004000000040000000300000000000000", @ANYRES32=r2, @ANYBLOB="0000000000d4000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)

3.241329325s ago: executing program 0 (id=1331):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

3.240881214s ago: executing program 5 (id=1332):
syz_open_dev$tty1(0xc, 0x4, 0x1)
set_mempolicy(0x4003, &(0x7f0000000200)=0x7, 0x3)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000180)={0x1, 0xaa4, 0x0, &(0x7f0000000340)})
ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x20000000000000, 0x4})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000024000/0x18000)=nil, &(0x7f0000000680)=[@text16={0x10, &(0x7f0000000280)="66b9800000c00f326635010000000f3064660f38828e4258660f08676ac744240012e93bf96766c744240201000000f20f78ecf5543e660f3829544e66b9800000c00f326635002000000f300f01df66b80500000066b900200000a90a000f01c40f019c09000f01c2", 0x69}], 0x1, 0x1c, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0xff, 0x1}, 0x20)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r1, 0x4068aea3, &(0x7f0000000100)={0xbc, 0x0, 0x4})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r4 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
write$cgroup_int(r4, &(0x7f0000000540), 0xfffffdd8)
r5 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0)
iopl(0x3)
r6 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc)=<r7=>0x0)
timer_settime(r7, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r8 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
preadv2(r8, &(0x7f0000000180)=[{&(0x7f0000000000)=""/167, 0xa7}], 0x1, 0x0, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
finit_module(r5, 0x0, 0x3)

3.133086876s ago: executing program 0 (id=1333):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="050000000b0000000a00000009"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001380)="96be8a7feca9b1a8fbee7536d4baf4c914ed9a500f9eaa461123f0b5", &(0x7f0000001680), 0x8000, r0}, 0x38)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
bpf$MAP_UPDATE_BATCH(0x19, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, 0xffffffff, r0}, 0x38)

2.520102295s ago: executing program 2 (id=1334):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680))
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)

2.401679156s ago: executing program 2 (id=1335):
syz_emit_ethernet(0x4e, &(0x7f0000002740)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd606410a600183c0000000000000000000000ffffac1414bbff0200000000000000000000000000010002000c00000000000000000100"], 0x0)

2.251135198s ago: executing program 5 (id=1336):
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
io_uring_setup(0x4dcf, &(0x7f0000000580)={0x0, 0x1670, 0x1, 0x0, 0x3d3})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x11)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setfsuid(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = openat$rdma_cm(0xffffff9c, 0x0, 0x2, 0x0)
add_key$keyring(&(0x7f0000000340), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r1, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_io_uring_complete(0x0)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r3, 0x941c, 0x0)
syz_usbip_server_init(0x1)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0xffffffffffffff90)
syz_open_dev$sg(0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300)=[<r5=>0x0], &(0x7f0000000340), 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r4, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[0x0, r5], 0x2})
close(0x3)
close_range(r0, 0xffffffffffffffff, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)

2.052157811s ago: executing program 2 (id=1337):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r3, 0x0, 0x3, &(0x7f0000000000)=0x6, 0x4)

1.901394983s ago: executing program 6 (id=1338):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x18, &(0x7f0000000180)=ANY=[@ANYBLOB="00030f"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_disconnect(r0)

1.812059795s ago: executing program 0 (id=1339):
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x9300)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
pselect6(0x40, &(0x7f0000000000)={0x3, 0x445, 0x7f, 0x8, 0x10001, 0x8000000000000001, 0x9, 0x401}, &(0x7f0000000040)={0x10, 0x752, 0x7ff, 0xa314, 0x4, 0xffffffffffffffff, 0x10000, 0x24000000000}, &(0x7f0000000180)={0x5, 0x9, 0x8, 0xa, 0x7235, 0x71e7, 0x4, 0x6}, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={[0x6]}, 0x8})

292.073026ms ago: executing program 0 (id=1340):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYRESDEC=r0], 0x14}, 0x1, 0x0, 0x0, 0x2400c850}, 0x800)
r3 = syz_open_dev$video(&(0x7f0000000000), 0x7, 0x0)
ioctl$VIDIOC_QUERYCTRL(r3, 0xc0445624, &(0x7f0000001d00)={0x6071d56f, 0x0, "b058b584c75da73d1f7600450b8add59e9665ce1d040fef200"})
mkdir(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0)
rmdir(&(0x7f0000000700)='./cgroup/../file0\x00')
io_uring_enter(0xffffffffffffffff, 0x2deb, 0x5f8b, 0x6, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
r6 = socket$kcm(0x2b, 0x0, 0x0)
sendmsg$inet(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x404884c)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
readv(0xffffffffffffffff, 0x0, 0x0)
ioctl$EVIOCGKEY(0xffffffffffffffff, 0x80404518, &(0x7f0000000240)=""/183)
r8 = openat(0xffffffffffffff9c, &(0x7f0000001080)='./cgroup/../file0/file0\x00', 0x32800, 0x100)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
r9 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$apparmor_exec(r9, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x564)
close(r8)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000080)=0x4)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000048000000030a05020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a3000000000080007006e6174003c000000060a01040000000000000000010000001400048010000180090001006d6173710000000008000b40000000000900010073797a300000000014000000110001"], 0xcc}}, 0x0)
close(r6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)

291.843246ms ago: executing program 2 (id=1341):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r0, &(0x7f00000004c0)={0x232, 0x7d, 0x0, {{0x500, 0xf1, 0x0, 0x5000000, {}, 0x0, 0x0, 0x0, 0x0, 0x1f, '\x04nodev{cvfox%\xff\xff\xff\x81\x02\x00\x00\x00\x00\x001\xff\xce\xbc\x92\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\"\x00}\xfag>\xff\xeb\t\xb51\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00/\xa9Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x01\x00\x00\x00', 0x12, '\xcf\xb6\x00'/18, 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xd4\x89\xdad\x9a7\x00'}, 0x12c, 'odev-n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x232)

272.957476ms ago: executing program 2 (id=1342):
userfaultfd(0x80001)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x14, 0x30, 0x1, 0x70bd26}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$cec(&(0x7f0000000400), 0x0, 0x80200)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)="87f74d568b22e72c7b123a00", 0xc, 0x20008080}, 0x8000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x40)
setxattr$system_posix_acl(&(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000680)={{}, {}, [], {}, [], {0x10, 0x1}}, 0x24, 0x3)
setxattr$system_posix_acl(&(0x7f0000000000)='./bus\x00', 0x0, 0x0, 0x0, 0x3)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
futex(&(0x7f000000cffc)=0x1, 0xd, 0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b"])
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

247.012927ms ago: executing program 0 (id=1343):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, 0x0, 0x40000)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
creat(0x0, 0xecf86c37d53049cc)
lsetxattr$security_ima(&(0x7f0000000480)='./file0\x00', &(0x7f0000000100), &(0x7f0000000380)=@v2={0x3, 0x2, 0xfe, 0xe79f, 0x2, 'JE'}, 0xb, 0x1)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)

0s ago: executing program 5 (id=1344):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
r0 = fsopen(0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
openat$cgroup_procs(r1, 0x0, 0x2, 0x0)
socket$inet6(0xa, 0xa, 0x400000)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x3, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000000080071000040"])
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r4, 0xc008ae88, &(0x7f0000000040)=ANY=[])
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$9p_virtio(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x0, 0x0)
chdir(0x0)

kernel console output (not intermixed with test programs):

=================================================
[   76.941956][ T4273] WARNING: The mand mount option has been deprecated and
[   76.941956][ T4273]          and is ignored by this kernel. Remove the mand
[   76.941956][ T4273]          option from the mount to silence this warning.
[   76.941956][ T4273] =======================================================
[   76.994861][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   77.005525][   T13] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   77.014631][   T13] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.028349][ T4273] EXT4-fs (loop2): Ignoring removed nobh option
[   77.029642][ T1424] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.044960][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   77.045668][ T4273] EXT4-fs (loop2): Ignoring removed bh option
[   77.062470][   T13] usb 2-1: Product: syz
[   77.063672][ T4277] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   77.069384][ T1424] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.093145][ T4273] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   77.100467][   T13] usb 2-1: Manufacturer: syz
[   77.120037][   T13] usb 2-1: SerialNumber: syz
[   77.156739][ T4259] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   77.164231][ T4259] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   77.167255][ T4273] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[   77.244254][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   77.302371][ T4269] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.315741][ T4269] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.329582][ T4269] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   77.370350][ T4285] loop0: detected capacity change from 0 to 512
[   77.477915][   T13] cdc_ether: probe of 2-1:1.0 failed with error -22
[   77.486009][ T4289] loop3: detected capacity change from 0 to 256
[   77.528400][   T13] usb 2-1: USB disconnect, device number 2
[   77.541370][ T4289] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   77.552744][ T4289] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[   77.568438][ T4285] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[   77.574682][ T4289] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   77.589185][ T4285] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   77.656523][ T4285] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   77.687638][ T4285] EXT4-fs (loop0): 1 truncate cleaned up
[   77.693445][ T4285] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,min_batch_time=0x0000000000000001,grpjquota=,nomblk_io_submit,nodiscard,quota,,errors=continue. Quota mode: writeback.
[   77.725697][ T4217] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   77.782468][ T4285] EXT4-fs (loop0): shut down requested (0)
[   78.087579][ T4217] usb 5-1: Using ep0 maxpacket: 32
[   78.118443][ T4296] loop3: detected capacity change from 0 to 4096
[   78.215421][ T4217] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   78.247342][ T4296] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   78.287243][ T4217] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   78.344273][ T4304] mmap: syz.1.14 (4304) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[   78.362068][ T4217] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[   78.411608][ T4296] EXT4-fs error (device loop3): ext4_do_update_inode:5203: inode #15: comm syz.3.12: corrupted inode contents
[   78.430883][ T4217] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.489987][ T4217] usb 5-1: config 0 descriptor??
[   78.520797][ T4296] EXT4-fs error (device loop3): ext4_dirty_inode:6039: inode #15: comm syz.3.12: mark_inode_dirty error
[   78.559574][ T4304] loop1: detected capacity change from 0 to 2048
[   78.625723][ T4296] EXT4-fs error (device loop3): ext4_do_update_inode:5203: inode #15: comm syz.3.12: corrupted inode contents
[   78.681306][ T4304] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   78.729469][ T4296] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #15: comm syz.3.12: mark_inode_dirty error
[   78.928478][ T4296] EXT4-fs error (device loop3): ext4_do_update_inode:5203: inode #15: comm syz.3.12: corrupted inode contents
[   79.015038][ T4296] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #15: comm syz.3.12: mark_inode_dirty error
[   79.082548][ T4296] EXT4-fs error (device loop3): ext4_do_update_inode:5203: inode #15: comm syz.3.12: corrupted inode contents
[   79.127389][ T4296] EXT4-fs error (device loop3): ext4_truncate:4273: inode #15: comm syz.3.12: mark_inode_dirty error
[   79.180416][ T4296] EXT4-fs error (device loop3) in ext4_setattr:5607: Corrupt filesystem
[   79.231223][ T4307] EXT4-fs error (device loop3): ext4_do_update_inode:5203: inode #15: comm syz.3.12: corrupted inode contents
[   79.525450][ T4215] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   79.569282][   T26] audit: type=1804 audit(1749472605.377:2): pid=4304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.14" name="/newroot/1/file1/bus" dev="loop1" ino=18 res=1 errno=0
[   79.615037][ T4311] loop0: detected capacity change from 0 to 512
[   79.701466][ T4217] savu 0003:1E7D:2D5A.0001: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[   79.716983][ T4305] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   79.738897][ T4305] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   79.753868][ T4305] EXT4-fs (loop1): This should not happen!! Data will be lost
[   79.753868][ T4305] 
[   79.764691][ T4305] EXT4-fs (loop1): Total free blocks count 0
[   79.772675][ T4305] EXT4-fs (loop1): Free/Dirty block details
[   79.774993][ T4311] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   79.791170][ T4305] EXT4-fs (loop1): free_blocks=2415919504
[   79.805453][ T4305] EXT4-fs (loop1): dirty_blocks=16
[   79.810808][ T4305] EXT4-fs (loop1): Block reservation details
[   79.854145][ T4311] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.855484][ T4305] EXT4-fs (loop1): i_reserved_data_blocks=1
[   79.873879][ T4215] usb 3-1: Using ep0 maxpacket: 8
[   79.896535][ T4304] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   79.937789][ T4304] EXT4-fs (loop1): This should not happen!! Data will be lost
[   79.937789][ T4304] 
[   79.982418][   T13] usb 5-1: USB disconnect, device number 2
[   79.995257][ T4217] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   80.016092][ T4215] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   80.035239][ T4215] usb 3-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[   80.042656][ T4311] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.15: bg 0: block 13312: padding at end of block bitmap is not set
[   80.052119][ T4215] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.084947][ T4215] usb 3-1: config 0 descriptor??
[   80.227581][ T4320] loop1: detected capacity change from 0 to 1024
[   80.286514][ T4320] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   80.397264][ T4217] usb 4-1: config 0 interface 0 altsetting 185 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.425092][ T4217] usb 4-1: config 0 interface 0 has no altsetting 0
[   80.441794][ T4217] usb 4-1: New USB device found, idVendor=05ac, idProduct=027a, bcdDevice= 0.00
[   80.451388][ T4217] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.467291][ T4328] loop1: detected capacity change from 0 to 512
[   80.478896][ T4217] usb 4-1: config 0 descriptor??
[   80.542255][ T4328] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.19: casefold flag without casefold feature
[   80.590081][ T4215] kye 0003:0458:4018.0002: unbalanced delimiter at end of report description
[   80.600594][ T4215] kye 0003:0458:4018.0002: parse failed
[   80.607742][ T4215] kye: probe of 0003:0458:4018.0002 failed with error -22
[   80.642501][ T4331] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   80.666234][ T4328] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.19: couldn't read orphan inode 15 (err -117)
[   80.684985][ T4328] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   80.744067][ T4332] loop4: detected capacity change from 0 to 2048
[   80.787048][ T4332]  loop4: p1 < > p3
[   80.802916][ T4332] loop4: p3 size 134217728 extends beyond EOD, truncated
[   80.958889][ T4217] hid-generic 0003:05AC:027A.0003: collection stack underflow
[   80.985317][ T4217] hid-generic 0003:05AC:027A.0003: item 0 4 0 12 parsing failed
[   81.004241][ T4217] hid-generic: probe of 0003:05AC:027A.0003 failed with error -22
[   81.044367][ T4337] kvm: emulating exchange as write
[   81.171133][ T4341] loop1: detected capacity change from 0 to 128
[   81.177208][ T1108] usb 4-1: USB disconnect, device number 2
[   81.195492][ T4294] udevd[4294]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   81.212020][ T4336] udevd[4336]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   81.406632][ T4215] usb 3-1: USB disconnect, device number 2
[   81.509332][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[   81.518930][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[   81.535509][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!!
[   81.545308][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!!
[   81.555406][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   81.567413][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   81.576808][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   81.586019][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   81.595063][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   81.604269][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   81.842568][ T4344] loop2: detected capacity change from 0 to 512
[   81.906657][ T4341] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   81.972818][ T4344] EXT4-fs (loop2): orphan cleanup on readonly fs
[   81.981049][ T4341] ext4 filesystem being mounted at /5/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   82.062661][ T4344] EXT4-fs error (device loop2): ext4_quota_enable:6408: comm syz.2.25: Bad quota inum: 11, type: 1
[   82.155555][ T4344] EXT4-fs warning (device loop2): ext4_enable_quotas:6456: Failed to enable quota tracking (type=1, err=-117, ino=11). Please run e2fsck to fix.
[   82.290175][ T4344] EXT4-fs (loop2): Cannot turn on quotas: error -117
[   82.315483][ T4344] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   82.343223][ T4214] Bluetooth: hci4: command 0x0405 tx timeout
[   82.408981][ T4363] loop4: detected capacity change from 0 to 2048
[   82.518685][ T4263]  loop4: p1 < > p3
[   82.526519][ T4263] loop4: p3 size 134217728 extends beyond EOD, truncated
[   82.560157][ T4363]  loop4: p1 < > p3
[   82.572835][ T4363] loop4: p3 size 134217728 extends beyond EOD, truncated
[   82.625442][ T1108] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   82.655019][ T4369] loop2: detected capacity change from 0 to 256
[   82.908683][ T1108] usb 4-1: Using ep0 maxpacket: 8
[   83.065685][ T4387] loop4: detected capacity change from 0 to 256
[   83.076336][ T4336] udevd[4336]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   83.114522][ T4389] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   83.211111][ T4393] netlink: 8 bytes leftover after parsing attributes in process `syz.1.40'.
[   83.218768][ T1108] usb 4-1: config index 0 descriptor too short (expected 262, got 92)
[   83.239774][ T1108] usb 4-1: config 128 has too many interfaces: 254, using maximum allowed: 32
[   83.248858][ T1108] usb 4-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[   83.260037][ T1108] usb 4-1: config 128 has 0 interfaces, different from the descriptor's value: 254
[   83.284483][ T4391] 9pnet: Insufficient options for proto=fd
[   83.577221][ T1108] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   83.643842][ T1108] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.696949][ T4294] udevd[4294]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   83.767732][ T4387] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   83.812667][ T1108] usb 4-1: Product: syz
[   83.817391][ T1108] usb 4-1: Manufacturer: syz
[   83.822340][ T1108] usb 4-1: SerialNumber: syz
[   84.271616][ T4387] process 'syz.4.35' launched './file0' with NULL argv: empty string added
[   84.340627][ T4400] netlink: 144 bytes leftover after parsing attributes in process `syz.2.42'.
[   84.367354][   T21] usb 4-1: USB disconnect, device number 3
[   84.713745][ T4406] usb usb8: usbfs: process 4406 (syz.2.45) did not claim interface 0 before use
[   84.922988][ T4411] loop2: detected capacity change from 0 to 1024
[   85.185187][    C0] sched: RT throttling activated
[   85.306092][ T4411] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[   85.398700][ T4411] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   85.458807][ T4411] EXT4-fs (loop2): orphan cleanup on readonly fs
[   85.471409][ T4421] loop4: detected capacity change from 0 to 1024
[   85.568201][ T4411] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5835: Corrupt filesystem
[   85.574944][ T4421] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   85.598136][ T4411] EXT4-fs error (device loop2): ext4_dirty_inode:6039: inode #3: comm syz.2.46: mark_inode_dirty error
[   85.640753][ T4411] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:476: comm syz.2.46: Invalid block bitmap block 3 in block_group 0
[   85.661842][ T4411] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5835: Corrupt filesystem
[   85.668907][ T4419] loop3: detected capacity change from 0 to 1024
[   85.693107][ T4421] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,norecovery,min_batch_time=0x0000000000000001,nojournal_checksum,debug_want_extra_isize=0x0000000000000080,nodelalloc,errors=remount-ro,acl,auto_da_alloc=0x0000000000000343,jqfmt=vfsold,barrier=0x00000000000000. Quota mode: none.
[   85.756342][ T4427] loop1: detected capacity change from 0 to 4096
[   85.781360][ T4411] EXT4-fs error (device loop2): ext4_dirty_inode:6039: inode #3: comm syz.2.46: mark_inode_dirty error
[   85.804977][ T4411] Quota error (device loop2): write_blk: dquota write failed
[   85.819804][ T4421] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #11: comm syz.4.48: missing EA_INODE flag
[   85.836199][ T4427] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   85.851134][ T4411] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #3: block 1: comm syz.2.46: lblock 6 mapped to illegal pblock 1 (length 1)
[   85.922578][ T4411] Quota error (device loop2): write_blk: dquota write failed
[   85.932083][ T4411] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[   85.936310][ T4421] EXT4-fs (loop4): Remounting filesystem read-only
[   85.960565][ T4411] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #3: block 48: comm syz.2.46: lblock 0 mapped to illegal pblock 48 (length 1)
[   85.975538][   T26] audit: type=1800 audit(1749472611.777:3): pid=4419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.50" name="file1" dev="loop3" ino=20 res=0 errno=0
[   85.995886][ T4421] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.48: error while reading EA inode 11 err=-117
[   86.024218][ T4411] Quota error (device loop2): v2_write_file_info: Can't write info structure
[   86.044003][ T4411] EXT4-fs error (device loop2): ext4_acquire_dquot:6204: comm syz.2.46: Failed to acquire dquot type 0
[   86.060879][ T4421] EXT4-fs (loop4): Remounting filesystem read-only
[   86.089269][ T4421] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2825: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   86.113351][ T4411] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #3: block 49: comm syz.2.46: lblock 1 mapped to illegal pblock 49 (length 1)
[   86.387913][ T4411] Quota error (device loop2): do_insert_tree: Can't read tree quota block 1
[   86.648801][ T4411] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   86.745518][ T4411] EXT4-fs error (device loop2): ext4_acquire_dquot:6204: comm syz.2.46: Failed to acquire dquot type 0
[   86.780095][ T4411] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5835: Corrupt filesystem
[   86.799570][ T4411] EXT4-fs error (device loop2): ext4_evict_inode:282: inode #15: comm syz.2.46: mark_inode_dirty error
[   86.814390][ T4411] EXT4-fs warning (device loop2): ext4_evict_inode:285: couldn't mark inode dirty (err -117)
[   86.838183][    T7] cfg80211: failed to load regulatory.db
[   86.921592][ T4411] EXT4-fs (loop2): 1 orphan inode deleted
[   86.997650][ T4411] EXT4-fs (loop2): mounted filesystem without journal. Opts: i_version,jqfmt=vfsold,minixdf,nogrpid,abort,noblock_validity,barrier=0x00000000000000cc,journal_dev=0x0000000000000f35,,errors=continue. Quota mode: none.
[   87.011163][ T4444] netlink: 'syz.1.56': attribute type 2 has an invalid length.
[   87.049886][ T4444] netlink: 'syz.1.56': attribute type 1 has an invalid length.
[   87.092620][ T4411] syz.2.46 (4411) used greatest stack depth: 20768 bytes left
[   87.618031][ T4456] loop2: detected capacity change from 0 to 512
[   87.651896][ T4456] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   87.820679][ T4456] EXT4-fs (loop2): 1 truncate cleaned up
[   87.863213][ T4456] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000004,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[   88.544224][   T13] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   88.544317][ T4214] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   89.446240][   T26] audit: type=1800 audit(1749472615.257:4): pid=4485 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.61" name="file1" dev="loop2" ino=16 res=0 errno=0
[   89.602749][ T4214] usb 2-1: Using ep0 maxpacket: 16
[   89.727634][ T4214] usb 2-1: config index 0 descriptor too short (expected 32804, got 36)
[   89.777810][ T4214] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   89.790784][   T13] usb 4-1: Using ep0 maxpacket: 32
[   89.955789][   T13] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   90.218844][ T4214] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[   90.237176][   T13] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   90.268879][ T4214] usb 2-1: config 0 interface 0 has no altsetting 0
[   90.283964][   T13] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[   90.308728][ T4214] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[   91.017082][ T4495] loop1: detected capacity change from 0 to 128
[   91.033829][   T13] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.047131][ T4214] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.061020][   T13] usb 4-1: config 0 descriptor??
[   91.088017][ T4495] FAT-fs (loop1): FAT read failed (blocknr 252)
[   91.091579][   T13] usb 4-1: can't set config #0, error -71
[   91.123910][ T4214] usb 2-1: config 0 descriptor??
[   91.130160][   T13] usb 4-1: USB disconnect, device number 4
[   91.402087][ T4513] loop2: detected capacity change from 0 to 256
[   91.507960][ T4513] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[   91.684448][ T4519] loop4: detected capacity change from 0 to 512
[   91.774553][ T4519] EXT4-fs (loop4): Ignoring removed nobh option
[   92.098393][ T4519] EXT4-fs error (device loop4): ext4_do_update_inode:5203: inode #3: comm syz.4.79: corrupted inode contents
[   92.113630][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.120388][ T4519] EXT4-fs error (device loop4): ext4_dirty_inode:6039: inode #3: comm syz.4.79: mark_inode_dirty error
[   92.136904][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.151356][ T4519] EXT4-fs error (device loop4): ext4_do_update_inode:5203: inode #3: comm syz.4.79: corrupted inode contents
[   92.172939][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.179754][ T4519] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #3: comm syz.4.79: mark_inode_dirty error
[   92.196365][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.211242][ T4519] Quota error (device loop4): write_blk: dquota write failed
[   92.219570][ T4519] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   92.229854][ T4519] EXT4-fs error (device loop4): ext4_acquire_dquot:6204: comm syz.4.79: Failed to acquire dquot type 0
[   92.230655][ T4214] usbhid 2-1:0.0: can't add hid device: -71
[   92.248326][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.269264][ T4519] EXT4-fs error (device loop4): ext4_do_update_inode:5203: inode #16: comm syz.4.79: corrupted inode contents
[   92.283667][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.290349][ T4519] EXT4-fs error (device loop4): ext4_dirty_inode:6039: inode #16: comm syz.4.79: mark_inode_dirty error
[   92.302307][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.309073][ T4519] EXT4-fs error (device loop4): ext4_do_update_inode:5203: inode #16: comm syz.4.79: corrupted inode contents
[   92.321438][   T13] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[   92.329176][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.336019][ T4519] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz.4.79: mark_inode_dirty error
[   92.347578][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.354173][ T4519] EXT4-fs error (device loop4): ext4_do_update_inode:5203: inode #16: comm syz.4.79: corrupted inode contents
[   92.368739][ T4214] usbhid: probe of 2-1:0.0 failed with error -71
[   92.375307][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.382114][ T4519] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   92.402831][ T4214] usb 2-1: USB disconnect, device number 3
[   92.409169][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.415784][ T4519] EXT4-fs error (device loop4): ext4_do_update_inode:5203: inode #16: comm syz.4.79: corrupted inode contents
[   92.440627][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.447565][ T4519] EXT4-fs error (device loop4): ext4_truncate:4273: inode #16: comm syz.4.79: mark_inode_dirty error
[   92.458944][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.465627][ T4519] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   92.476547][ T4519] EXT4-fs (loop4): Remounting filesystem read-only
[   92.483610][ T4519] EXT4-fs (loop4): 1 truncate cleaned up
[   92.489381][ T4519] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,. Quota mode: writeback.
[   92.501357][ T4519] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.533931][ T4531] 9pnet: Insufficient options for proto=fd
[   92.635517][   T13] usb 4-1: Using ep0 maxpacket: 8
[   92.997955][   T13] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[   93.006875][   T13] usb 4-1: config 179 has no interface number 0
[   93.013302][   T13] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[   93.026200][   T13] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[   93.038024][   T13] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 102, changing to 10
[   93.054385][   T13] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 24624, setting to 1024
[   93.070672][   T13] usb 4-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   93.195473][ T4274] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   93.218068][ T4549] loop1: detected capacity change from 0 to 256
[   93.434334][ T4549] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   93.597126][ T4274] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   93.687642][ T4549] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   93.818838][   T13] usb 4-1: config 179 interface 65 has no altsetting 0
[   93.826015][   T13] usb 4-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[   93.835819][ T4274] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   93.836800][   T13] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.884327][ T4274] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.906421][ T4274] usb 3-1: Product: syz
[   93.930930][ T4274] usb 3-1: Manufacturer: syz
[   93.943705][   T13] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input5
[   93.945367][ T4274] usb 3-1: SerialNumber: syz
[   94.217234][   T13] usb 4-1: USB disconnect, device number 5
[   94.225358][    C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   94.251391][   T13] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[   94.476938][ T4568] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   94.697911][ T4570] loop1: detected capacity change from 0 to 256
[   94.819610][ T4570] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   94.926105][ T4570] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[   95.105680][ T4570] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x43c9847d, utbl_chksum : 0xe619d30d)
[   95.516075][ T4576] loop4: detected capacity change from 0 to 4096
[   95.763303][ T4576] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   96.225383][ T4274] cdc_ncm 3-1:1.0: failed to get mac address
[   96.965508][ T4274] cdc_ncm 3-1:1.0: bind() failure
[   97.051255][ T4274] cdc_ncm: probe of 3-1:1.1 failed with error -71
[   97.165692][ T4274] cdc_mbim: probe of 3-1:1.1 failed with error -71
[   97.227537][ T4274] usbtest: probe of 3-1:1.1 failed with error -71
[   97.266498][ T4274] usb 3-1: USB disconnect, device number 3
[   98.200166][ T4613] loop1: detected capacity change from 0 to 256
[   98.317882][ T4615] loop2: detected capacity change from 0 to 512
[   98.382102][ T4615] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   98.424395][ T4613] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011bf5, chksum : 0xdfba1b89, utbl_chksum : 0xe619d30d)
[   98.528498][ T4613] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   99.191280][ T4615] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.117: casefold flag without casefold feature
[   99.267307][ T4615] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.117: couldn't read orphan inode 15 (err -117)
[   99.299510][ T4630] capability: warning: `syz.3.121' uses deprecated v2 capabilities in a way that may be insecure
[   99.332467][ T4615] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   99.644458][ T4640] loop2: detected capacity change from 0 to 4096
[   99.695626][ T4635] loop1: detected capacity change from 0 to 8192
[   99.697934][ T4640] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  100.305343][   T13] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  100.565427][   T13] usb 4-1: Using ep0 maxpacket: 16
[  100.716028][   T13] usb 4-1: config 0 has an invalid interface number: 160 but max is 0
[  100.774232][   T13] usb 4-1: config 0 has no interface number 0
[  100.901816][   T13] usb 4-1: config 0 interface 160 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  101.235368][   T13] usb 4-1: config 0 interface 160 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  101.426194][   T13] usb 4-1: New USB device found, idVendor=07aa, idProduct=0017, bcdDevice=6c.f5
[  101.470100][   T13] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.555083][   T13] usb 4-1: Product: syz
[  101.587855][   T13] usb 4-1: Manufacturer: syz
[  101.640976][   T13] usb 4-1: SerialNumber: syz
[  102.089247][   T13] usb 4-1: config 0 descriptor??
[  103.777568][    T7] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  103.835484][    T7] Bluetooth: hci4: Injecting HCI hardware error event
[  103.874964][ T4183] Bluetooth: hci4: hardware error 0x00
[  103.888692][   T13] usb 4-1: can't set config #0, error -71
[  103.904352][   T13] usb 4-1: USB disconnect, device number 6
[  104.604336][ T4693] loop3: detected capacity change from 0 to 256
[  104.655518][ T4693] exfat: Deprecated parameter 'namecase'
[  104.727031][ T4693] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  104.870148][ T4693] attempt to access beyond end of device
[  104.870148][ T4693] loop3: rw=524288, want=34359738496, limit=256
[  104.944500][ T4693] attempt to access beyond end of device
[  104.944500][ T4693] loop3: rw=0, want=34359738496, limit=256
[  104.967107][   T26] audit: type=1800 audit(1749472631.786:5): pid=4693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.142" name="file1" dev="loop3" ino=1048604 res=0 errno=0
[  104.967765][ T4693] exFAT-fs (loop3): error, tried to truncate zeroed cluster.
[  105.225691][ T4274] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  105.631537][   T26] audit: type=1800 audit(1749472632.446:6): pid=4693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.142" name="file1" dev="loop3" ino=1048604 res=0 errno=0
[  105.695549][ T4274] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  105.735604][ T4274] usb 5-1: New USB device found, idVendor=046d, idProduct=c343, bcdDevice= 0.00
[  105.775521][ T4274] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.868562][ T4274] usb 5-1: config 0 descriptor??
[  105.881003][ T4712] loop1: detected capacity change from 0 to 1024
[  105.970185][ T4712] EXT4-fs (loop1): Ignoring removed orlov option
[  106.004759][ T4712] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  106.765498][ T4712] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,max_batch_time=0x0000000000000006,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  106.922542][   T26] audit: type=1800 audit(1749472633.736:7): pid=4731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.148" name="file1" dev="loop1" ino=13 res=0 errno=0
[  106.939935][ T4735] tmpfs: Unknown parameter 'quota'
[  107.203512][ T4274] logitech-hidpp-device 0003:046D:C343.0004: unknown main item tag 0x0
[  107.223054][ T4274] logitech-hidpp-device 0003:046D:C343.0004: unknown main item tag 0x0
[  107.232602][ T4274] logitech-hidpp-device 0003:046D:C343.0004: unknown main item tag 0x0
[  107.241319][ T4274] logitech-hidpp-device 0003:046D:C343.0004: unknown main item tag 0x0
[  107.250452][ T4274] logitech-hidpp-device 0003:046D:C343.0004: unknown main item tag 0x0
[  107.269891][ T4274] logitech-hidpp-device 0003:046D:C343.0004: hidraw0: USB HID v0.05 Device [HID 046d:c343] on usb-dummy_hcd.4-1/input0
[  107.403463][    T7] usb 5-1: USB disconnect, device number 3
[  107.539320][ T4743] fido_id[4743]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  108.764034][ T4755] tmpfs: Unknown parameter 'usrquota'
[  112.135877][ T4806] device wireguard0 entered promiscuous mode
[  113.622303][ T4831] netlink: 8 bytes leftover after parsing attributes in process `syz.2.176'.
[  113.662077][ T4831] netlink: 8 bytes leftover after parsing attributes in process `syz.2.176'.
[  114.815316][ T4852] netlink: 8 bytes leftover after parsing attributes in process `syz.1.183'.
[  114.824126][ T4852] netlink: 8 bytes leftover after parsing attributes in process `syz.1.183'.
[  118.163417][ T4885] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.516164][ T4885] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.745922][ T4885] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.008844][ T4885] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.329094][ T4885] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.390362][ T4885] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.451963][ T4885] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.628977][ T4885] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.585621][ T4963] Zero length message leads to an empty skb
[  127.933009][ T4982] binder: 4981:4982 ioctl c0306201 200000000280 returned -14
[  132.898544][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  132.904999][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  136.429915][ T5053] netlink: 'syz.2.246': attribute type 13 has an invalid length.
[  136.595416][ T4216] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  136.965492][ T4216] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  137.000995][ T4216] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  137.090677][ T4216] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  137.124095][ T4216] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  137.133923][ T4216] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.145417][ T4216] usb 2-1: config 0 descriptor??
[  137.153207][ T5053] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.161896][ T5053] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.710904][ T4216] usbhid 2-1:0.0: can't add hid device: -71
[  137.742805][ T4216] usbhid: probe of 2-1:0.0 failed with error -71
[  137.763707][ T4216] usb 2-1: USB disconnect, device number 4
[  138.580237][ T5053] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  138.742536][ T5053] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  139.683806][ T5053] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.704093][ T5053] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.721825][ T5053] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  139.746876][ T5053] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  140.745283][ T4213] Bluetooth: hci5: command 0x0409 tx timeout
[  140.870498][ T5077] 9pnet_virtio: no channels available for device syz
[  140.875734][ T5053] syz.2.246 (5053) used greatest stack depth: 19912 bytes left
[  142.627313][ T5066] chnl_net:caif_netlink_parms(): no params data found
[  142.815331][ T4216] Bluetooth: hci5: command 0x041b tx timeout
[  142.996198][ T5066] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.046657][ T5066] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.092369][ T5066] device bridge_slave_0 entered promiscuous mode
[  143.131586][ T5066] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.171825][ T5066] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.201616][ T5066] device bridge_slave_1 entered promiscuous mode
[  143.410576][ T5066] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  143.464423][ T5066] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  143.669779][ T5066] team0: Port device team_slave_0 added
[  143.826057][ T5066] team0: Port device team_slave_1 added
[  143.927004][ T5066] batman_adv: batadv0: Adding interface: batadv_slave_0
[  143.934435][ T5066] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.037483][ T5066] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  144.192728][ T5066] batman_adv: batadv0: Adding interface: batadv_slave_1
[  144.225261][ T5066] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.383968][ T5066] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  144.716257][ T5066] device hsr_slave_0 entered promiscuous mode
[  144.815709][ T5066] device hsr_slave_1 entered promiscuous mode
[  144.850160][ T5066] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  144.871793][ T5066] Cannot create hsr debugfs directory
[  144.895478][ T4274] Bluetooth: hci5: command 0x040f tx timeout
[  145.228360][   T26] audit: type=1326 audit(2000000005.540:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  145.311245][   T26] audit: type=1326 audit(2000000005.560:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  145.416731][   T26] audit: type=1326 audit(2000000005.570:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  145.533616][   T26] audit: type=1326 audit(2000000005.570:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  145.650267][   T26] audit: type=1326 audit(2000000005.570:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  145.657143][ T5066] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  145.830366][   T26] audit: type=1326 audit(2000000005.570:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  145.919853][ T5132] input: syz0 as /devices/virtual/input/input6
[  145.954532][ T5066] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  145.968485][   T26] audit: type=1326 audit(2000000005.570:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  146.018949][ T5066] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  146.129257][ T5066] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  146.143872][   T26] audit: type=1326 audit(2000000005.570:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  146.295892][   T26] audit: type=1326 audit(2000000005.570:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  146.500345][   T26] audit: type=1326 audit(2000000005.580:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5090 comm="syz.2.257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7eff59d1ab19 code=0x7ffc0000
[  146.565343][ T5066] 8021q: adding VLAN 0 to HW filter on device bond0
[  146.675067][ T4433] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  146.715885][ T4433] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  146.791062][ T5066] 8021q: adding VLAN 0 to HW filter on device team0
[  146.877150][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  146.935975][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  146.976151][ T4230] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.982748][ T4215] Bluetooth: hci5: command 0x0419 tx timeout
[  146.983277][ T4230] bridge0: port 1(bridge_slave_0) entered forwarding state
[  146.996343][ T5143] capability: warning: `syz.1.269' uses 32-bit capabilities (legacy support in use)
[  147.163808][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  147.206783][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  147.277081][ T4230] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.284907][ T4230] bridge0: port 2(bridge_slave_1) entered forwarding state
[  147.369613][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  147.451602][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  147.506293][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  147.539810][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  147.599618][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  147.669450][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  147.727917][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  147.739786][ T5160] netlink: 32 bytes leftover after parsing attributes in process `syz.2.271'.
[  147.810378][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  147.869291][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  147.921848][  T254] ODEBUG: Out of memory. ODEBUG disabled
[  148.030518][ T5066] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  148.031271][ T5066] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  148.090114][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  148.090854][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  148.091301][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  148.734236][ T5066] 8021q: adding VLAN 0 to HW filter on device batadv0
[  148.815889][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  148.823490][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  149.674544][ T5203] 9pnet_virtio: no channels available for device syz
[  153.287175][ T5208] overlayfs: failed to resolve './file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  153.472602][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  153.922019][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  153.995905][ T5057] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  154.029403][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  154.076182][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  154.112488][ T5066] device veth0_vlan entered promiscuous mode
[  154.128005][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  154.170507][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  154.229606][ T5066] device veth1_vlan entered promiscuous mode
[  154.337954][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  154.365633][ T5057] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  154.373536][ T5223] loop4: detected capacity change from 0 to 256
[  154.386115][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  154.394688][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  154.425214][ T5057] usb 3-1: New USB device found, idVendor=046d, idProduct=c343, bcdDevice= 0.00
[  154.434564][ T5057] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.466221][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  154.497623][ T5066] device veth0_macvtap entered promiscuous mode
[  154.509130][ T5223] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011bf5, chksum : 0xdfba1b89, utbl_chksum : 0xe619d30d)
[  154.537157][ T5057] usb 3-1: config 0 descriptor??
[  154.565357][ T5223] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  154.584099][ T5066] device veth1_macvtap entered promiscuous mode
[  154.646846][ T5066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.668957][ T5066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  155.696591][ T5057] logitech-hidpp-device 0003:046D:C343.0005: unknown main item tag 0x0
[  156.176200][ T5066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.187205][ T5066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.203265][ T5066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.692188][ T5057] logitech-hidpp-device 0003:046D:C343.0005: unknown main item tag 0x0
[  156.702279][ T5066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  156.885227][ T5057] logitech-hidpp-device 0003:046D:C343.0005: unknown main item tag 0x0
[  156.915195][ T5066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  156.932322][ T5057] logitech-hidpp-device 0003:046D:C343.0005: unknown main item tag 0x0
[  156.971669][ T5057] logitech-hidpp-device 0003:046D:C343.0005: unknown main item tag 0x0
[  157.005622][ T5066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.046373][ T5057] logitech-hidpp-device 0003:046D:C343.0005: hidraw0: USB HID v0.05 Device [HID 046d:c343] on usb-dummy_hcd.2-1/input0
[  157.096764][ T5066] batman_adv: batadv0: Interface activated: batadv_slave_0
[  157.146608][ T5057] usb 3-1: USB disconnect, device number 4
[  157.198618][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  157.231022][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  157.294481][ T5066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  157.409234][ T5066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.440387][ T5066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  157.501600][ T5066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.535477][ T5247] fido_id[5247]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  157.555181][ T5066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  157.585284][ T5066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.642265][ T5066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  157.704580][ T5066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  157.727831][ T5243] Invalid ELF header type: 3 != 1
[  157.737682][ T5066] batman_adv: batadv0: Interface activated: batadv_slave_1
[  157.767165][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  157.836966][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  157.927915][ T5066] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  157.979575][ T5066] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  159.261273][ T5066] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  159.270532][ T5066] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.997299][ T4524] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.055439][ T4524] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.546015][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  160.566891][ T4230] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.583511][ T4230] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.791246][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  163.357248][ T5291] netlink: 8 bytes leftover after parsing attributes in process `syz.5.301'.
[  164.980604][ T5310] fuse: Bad value for 'fd'
[  165.785607][ T5056] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  166.025319][ T5056] usb 6-1: Using ep0 maxpacket: 32
[  166.145349][ T5056] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  166.190587][ T5056] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  166.241971][ T5056] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  166.257695][ T5322] loop2: detected capacity change from 0 to 512
[  166.284510][ T5056] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.323289][ T5322] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  166.331343][ T5322] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  166.353317][ T5056] usb 6-1: config 0 descriptor??
[  166.577263][ T5322] EXT4-fs (loop2): 1 truncate cleaned up
[  166.590997][ T5322] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,min_batch_time=0x0000000000000001,grpjquota=,nomblk_io_submit,nodiscard,quota,,errors=continue. Quota mode: writeback.
[  167.237599][ T5056] savu 0003:1E7D:2D5A.0006: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.5-1/input0
[  167.352113][ T5322] EXT4-fs (loop2): shut down requested (0)
[  167.370328][ T5056] usb 6-1: USB disconnect, device number 2
[  167.601049][ T5335] fido_id[5335]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  167.705280][ T4215] Bluetooth: hci5: command 0x0405 tx timeout
[  169.001187][ T5380] lo speed is unknown, defaulting to 1000
[  169.030113][ T5380] lo speed is unknown, defaulting to 1000
[  169.047537][ T5380] lo speed is unknown, defaulting to 1000
[  169.560901][ T5380] infiniband s
z1: set active
[  169.566169][ T5380] infiniband s
z1: added lo
[  169.622558][ T5380] infiniband s
z1: Couldn't open port 1
[  169.658362][ T5380] RDS/IB: s
z1: added
[  169.663141][ T5380] smc: adding ib device s
z1 with port count 1
[  169.670099][ T5380] smc:    ib device s
z1 port 1 has pnetid 
[  169.680879][ T5380] lo speed is unknown, defaulting to 1000
[  169.706883][ T4215] lo speed is unknown, defaulting to 1000
[  169.726946][ T4215] lo speed is unknown, defaulting to 1000
[  169.911885][ T5380] lo speed is unknown, defaulting to 1000
[  170.051146][ T5380] lo speed is unknown, defaulting to 1000
[  170.155331][ T5380] lo speed is unknown, defaulting to 1000
[  170.261944][ T5380] lo speed is unknown, defaulting to 1000
[  170.341596][ T5380] lo speed is unknown, defaulting to 1000
[  170.901899][ T5399] device wireguard0 entered promiscuous mode
[  173.079728][ T5459] netlink: 8 bytes leftover after parsing attributes in process `syz.0.351'.
[  174.185662][ T5488] netlink: 27 bytes leftover after parsing attributes in process `syz.0.359'.
[  174.422150][   T26] kauditd_printk_skb: 58 callbacks suppressed
[  174.422166][   T26] audit: type=1326 audit(2000000002.800:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  174.450798][    C1] vkms_vblank_simulate: vblank timer overrun
[  174.523445][   T26] audit: type=1326 audit(2000000002.800:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  174.623543][   T26] audit: type=1326 audit(2000000002.890:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  174.676272][   T26] audit: type=1326 audit(2000000002.890:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  174.798081][   T26] audit: type=1326 audit(2000000002.900:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  175.015287][ T5495] fuse: Unknown parameter '0x0000000000000005'
[  175.021943][   T26] audit: type=1326 audit(2000000002.900:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  175.114465][   T26] audit: type=1326 audit(2000000002.900:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  175.475179][   T26] audit: type=1326 audit(2000000002.900:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  176.743697][   T26] audit: type=1326 audit(2000000002.900:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f73b554e290 code=0x7ffc0000
[  176.771656][    C0] vkms_vblank_simulate: vblank timer overrun
[  177.174912][   T26] audit: type=1326 audit(2000000002.900:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5491 comm="syz.0.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73b554f929 code=0x7ffc0000
[  177.836510][ T4215] Bluetooth: hci2: command 0x0406 tx timeout
[  178.229741][ T5537] 9pnet_virtio: no channels available for device syz
[  179.075437][ T5544] 9pnet_virtio: no channels available for device syz
[  180.423421][ T5566] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  181.114829][ T5569] tmpfs: Unknown parameter 'quo'
[  182.095212][ T5569] overlayfs: failed to clone upperpath
[  182.592260][ T5578] netlink: 8 bytes leftover after parsing attributes in process `syz.1.388'.
[  183.894991][ T5595] QAT: Stopping all acceleration devices.
[  184.056833][ T5592] syz.0.394 uses obsolete (PF_INET,SOCK_PACKET)
[  184.158200][ T5592] device ipvlan0 entered promiscuous mode
[  184.861060][ T5622] 9pnet_virtio: no channels available for device syz
[  186.087087][ T5630] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 5, id = 0
[  189.725388][ T5679] netlink: 'syz.2.424': attribute type 2 has an invalid length.
[  189.827457][ T5686] netlink: 'syz.4.427': attribute type 12 has an invalid length.
[  189.867042][ T5686] netlink: 132 bytes leftover after parsing attributes in process `syz.4.427'.
[  190.753415][ T5686] 9pnet_virtio: no channels available for device syz
[  191.034435][ T5709] netlink: 16 bytes leftover after parsing attributes in process `syz.1.434'.
[  191.091932][ T5709] netlink: 16 bytes leftover after parsing attributes in process `syz.1.434'.
[  191.342592][   T21] Bluetooth: hci2: command 0x0406 tx timeout
[  191.349397][   T21] Bluetooth: hci3: command 0x0406 tx timeout
[  191.360403][   T21] Bluetooth: hci1: command 0x0406 tx timeout
[  191.368295][   T21] Bluetooth: hci0: command 0x0406 tx timeout
[  192.643128][ T5743] netlink: 'syz.2.439': attribute type 9 has an invalid length.
[  192.710092][ T5746] fuse: Bad value for 'fd'
[  192.870855][ T5746] netlink: 12 bytes leftover after parsing attributes in process `syz.0.444'.
[  192.880699][ T5746] netlink: 31 bytes leftover after parsing attributes in process `syz.0.444'.
[  192.891371][ T5746] netlink: 'syz.0.444': attribute type 3 has an invalid length.
[  192.900568][ T5746] netlink: 'syz.0.444': attribute type 2 has an invalid length.
[  192.912804][ T5746] netlink: 31 bytes leftover after parsing attributes in process `syz.0.444'.
[  194.361693][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  194.368236][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  194.779530][ T5795] netlink: 4 bytes leftover after parsing attributes in process `syz.5.461'.
[  196.314696][ T5823] lo speed is unknown, defaulting to 1000
[  196.637765][ T5848] netlink: 48 bytes leftover after parsing attributes in process `syz.2.475'.
[  196.865923][ T5851] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  198.387131][   T26] kauditd_printk_skb: 38 callbacks suppressed
[  198.387147][   T26] audit: type=1400 audit(2000000026.771:124): apparmor="DENIED" operation="stack_onexec" info="label not found" error=-2 profile="unconfined" name=3AAE86AD47AA0D9495E6D80F7BDE2D18FFB36CF152AED2D408FB58E305FC8E2F2F7D91F81B621CC4214D4A27E1614FBEE0BEAC8F4A045070B770212D46D4A2DF096B791F2A4BA218E12CB76AA24945B70A7C9DD5EDEAC52B5A876F73CFBE66371A72F11F3D9544D6B59B4A5541DCEF5CBF11FFFF37DFD147CCA3E5098A207BE806EA7167101F8C1B5C8FE41E170FD0C775DBC5BE0B6D3AB625AB702E5B1DC15F9C4B3D09BE812F340E681E0694F5BADF640DA3FDFC2F929B4C2BEB9A592C577287B6021BFEEC24146C7F95608BB60A736207A09D9F47E89C4044EADDE57CDEFD15F25B822D2EAF2205DF0D6B71B63EE0B63CB598F26509AF36983578F6F4198A0843CC1B1BD780015007AB9709CC6211E3B5C685B972B5C5E95F054A7A9FE149282F679C8466B9734E3850EC98419DD0C887715902F9E7802842085BC606F30C2654869E9E3701FD0FC69137FE165592689465EEBD5CAFAD7C29DE2ADADEC42A818D8EE389CA1FE33A1EF23617C89116A3A458B56612E4C36C43A9150D5331ADBB0BEB01A062B1F1349FC2ECEA76CB7C40CDFE378185F3099B1D71414D0F
[  199.413077][ T5890] netlink: 8 bytes leftover after parsing attributes in process `syz.4.490'.
[  199.618282][    C1] vkms_vblank_simulate: vblank timer overrun
[  199.780261][ T5898] tmpfs: Unknown parameter 'usrquota'
[  200.067660][ T5906] device gre0 entered promiscuous mode
[  200.166975][ T5906] netlink: 16 bytes leftover after parsing attributes in process `syz.4.497'.
[  200.425706][ T5919] fuse: Unknown parameter '��'
[  200.674813][ T5925] 9pnet_virtio: no channels available for device syz
[  201.633530][ T4215] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  202.063535][ T4215] usb 6-1: Using ep0 maxpacket: 16
[  203.820938][ T5945] 9pnet_virtio: no channels available for device syz
[  204.253418][ T4215] usb 6-1: unable to read config index 0 descriptor/all
[  204.260501][ T4215] usb 6-1: can't read configurations, error -71
[  207.945475][ T6022] tmpfs: Unknown parameter 'grpquota'
[  207.959576][ T6022] 9pnet_virtio: no channels available for device syz
[  209.331305][   T26] audit: type=1326 audit(2000000037.712:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6027 comm="syz.2.535" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff59d7e929 code=0x0
[  210.436596][ T6049] netlink: 4 bytes leftover after parsing attributes in process `syz.5.542'.
[  210.486778][ T6049] netlink: 4 bytes leftover after parsing attributes in process `syz.5.542'.
[  210.629486][   T26] audit: type=1326 audit(2000000039.012:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.5.542" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f887ffbd929 code=0x0
[  214.099295][ T6079] 9pnet_virtio: no channels available for device syz
[  214.368088][ T6087] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  214.674452][ T1424] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.917496][ T1424] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.998400][ T1424] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.043537][  T150] block nbd5: Attempted send on invalid socket
[  215.050959][  T150] blk_update_request: I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  215.063631][ T6112] FAT-fs (nbd5): unable to read boot sector
[  215.095906][ T6115] overlayfs: failed to resolve './file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  215.127499][ T6103] 9pnet_virtio: no channels available for device syz
[  215.329837][ T1424] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.222291][ T6183] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  218.659330][   T26] audit: type=1326 audit(2000000007.800:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  218.694238][ T1424] device hsr_slave_0 left promiscuous mode
[  218.711124][ T1424] device hsr_slave_1 left promiscuous mode
[  218.758669][ T1424] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  218.787760][ T1424] batman_adv: batadv0: Removing interface: batadv_slave_0
[  218.795522][   T26] audit: type=1326 audit(2000000007.830:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  218.835785][ T1424] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  218.861878][ T1424] batman_adv: batadv0: Removing interface: batadv_slave_1
[  218.879618][   T26] audit: type=1326 audit(2000000007.830:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  219.043820][ T1424] device bridge_slave_1 left promiscuous mode
[  220.153753][   T26] audit: type=1326 audit(2000000007.830:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  220.234587][ T1424] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.246763][   T26] audit: type=1326 audit(2000000007.830:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  220.337272][   T26] audit: type=1326 audit(2000000007.830:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  220.397766][ T1424] device bridge_slave_0 left promiscuous mode
[  220.412624][ T1424] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.452625][   T26] audit: type=1326 audit(2000000007.830:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  220.493543][ T1424] device veth1_macvtap left promiscuous mode
[  220.539580][ T1424] device veth0_macvtap left promiscuous mode
[  220.542707][   T26] audit: type=1326 audit(2000000007.830:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  220.552574][ T1424] device veth1_vlan left promiscuous mode
[  220.636386][   T26] audit: type=1326 audit(2000000007.870:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  220.683298][ T1424] device veth0_vlan left promiscuous mode
[  220.709041][   T26] audit: type=1326 audit(2000000007.870:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6170 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  220.967033][ T6227] overlayfs: failed to clone lowerpath
[  221.540714][ T1424] team0 (unregistering): Port device team_slave_1 removed
[  221.559395][ T1424] team0 (unregistering): Port device team_slave_0 removed
[  221.590371][ T1424] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  221.622557][ T1424] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  221.779360][ T1424] bond0 (unregistering): Released all slaves
[  221.861955][ T6210] netdevsim netdevsim1: Direct firmware load for .
[  221.861955][ T6210]  failed with error -2
[  221.888647][ T6210] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  221.888647][ T6210] 
[  224.879799][ T6328] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[  226.321340][ T6359] netlink: 48 bytes leftover after parsing attributes in process `syz.4.627'.
[  226.473067][ T6365] syz.4.628[6365] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  226.478676][ T6365] syz.4.628[6365] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  226.716307][ T6372] 9pnet_virtio: no channels available for device syz
[  226.753886][ T6374] netlink: 'syz.2.630': attribute type 5 has an invalid length.
[  229.422849][ T6431] netlink: 8 bytes leftover after parsing attributes in process `syz.4.648'.
[  229.516486][ T6431] netlink: 4 bytes leftover after parsing attributes in process `syz.4.648'.
[  230.887816][ T6437] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.896475][ T6437] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.594480][ T6456] 9pnet_virtio: no channels available for device syz
[  231.740029][   T26] kauditd_printk_skb: 59 callbacks suppressed
[  231.740045][   T26] audit: type=1326 audit(2000000020.881:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6457 comm="syz.2.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff59d7e929 code=0x7ffc0000
[  231.934271][   T26] audit: type=1326 audit(2000000020.931:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6457 comm="syz.2.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff59d7e929 code=0x7ffc0000
[  232.071836][   T26] audit: type=1326 audit(2000000020.931:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6457 comm="syz.2.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7eff59d7e929 code=0x7ffc0000
[  232.075708][   T26] audit: type=1326 audit(2000000020.931:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6457 comm="syz.2.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff59d7e929 code=0x7ffc0000
[  232.532373][   T26] audit: type=1326 audit(2000000020.931:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6457 comm="syz.2.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff59d7e929 code=0x7ffc0000
[  232.679268][ T6437] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  232.770696][ T6437] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  234.187713][ T6437] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.197952][ T6437] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.212335][ T6437] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.222087][ T6437] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.633469][ T4220] libceph: connect (1)[c::]:6789 error -101
[  234.690310][ T4220] libceph: mon0 (1)[c::]:6789 connect error
[  234.874281][ T6505] ceph: No mds server is up or the cluster is laggy
[  234.903463][   T23] libceph: connect (1)[c::]:6789 error -101
[  234.911266][   T23] libceph: mon0 (1)[c::]:6789 connect error
[  235.439344][   T23] libceph: connect (1)[c::]:6789 error -101
[  235.451714][   T23] libceph: mon0 (1)[c::]:6789 connect error
[  235.476943][ T6531] tipc: Started in network mode
[  235.498603][ T6522] tmpfs: Unknown parameter 'c��loc'
[  235.581810][ T6531] tipc: Node identity ced1bf5c62a9, cluster identity 4711
[  235.658652][ T6531] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  235.746537][ T6526] tipc: Resetting bearer <eth:syzkaller0>
[  235.867053][ T6526] tipc: Disabling bearer <eth:syzkaller0>
[  236.071639][ T6546] block device autoloading is deprecated. It will be removed in Linux 5.19
[  236.927830][ T6559] device bond0 entered promiscuous mode
[  237.069425][ T6559] device bond_slave_0 entered promiscuous mode
[  237.096167][ T6559] device bond_slave_1 entered promiscuous mode
[  237.752531][ T6597] netlink: 'syz.4.683': attribute type 8 has an invalid length.
[  239.770743][ T6634] netlink: 36 bytes leftover after parsing attributes in process `syz.4.689'.
[  240.563439][ T6667] netlink: 104 bytes leftover after parsing attributes in process `syz.4.696'.
[  240.651538][ T6671] tmpfs: Unknown parameter 'quota'
[  242.812614][ T6692] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  242.838805][ T6692] device batadv_slave_0 entered promiscuous mode
[  243.860064][ T6734] platform regulatory.0: loading /lib/firmware/regulatory.db.p7s failed with error -4
[  243.870384][ T6734] platform regulatory.0: Direct firmware load for regulatory.db.p7s failed with error -4
[  243.880682][ T6734] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db.p7s
[  243.896597][ T6734] syz.2.710 (6734) used greatest stack depth: 18304 bytes left
[  243.904747][   T26] audit: type=1800 audit(2000000033.001:201): pid=6734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.710" name="regulatory.db.p7s" dev="sda1" ino=449 res=0 errno=0
[  247.261361][ T6817] vcan0: tx drop: invalid sa for name 0x0000000000000001
[  248.972666][ T6828] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=none:owns=io+mem
[  249.999071][ T6847] tmpfs: Unknown parameter 'usrquota'
[  250.470821][ T6861] netlink: 20 bytes leftover after parsing attributes in process `syz.4.750'.
[  252.038244][ T6889] tmpfs: Unknown parameter 'grpquota'
[  252.414626][ T6896] tmpfs: Unknown parameter 'usrquota'
[  252.437384][ T6896] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  253.473978][ T6921] 9pnet_virtio: no channels available for device syz
[  253.756039][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.774076][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.797390][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.814172][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.828651][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.837261][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.845945][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.854731][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.863355][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.879288][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.905196][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  253.940991][ T6944] netlink: 8 bytes leftover after parsing attributes in process `syz.2.770'.
[  253.956764][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  254.000274][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  254.760605][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  254.768499][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  254.784865][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  254.795935][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  254.817788][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.558135][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.614344][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.638748][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.777937][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  255.784374][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  255.810048][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.827565][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.838946][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.849633][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.863384][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.889975][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.913871][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  255.964329][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.182721][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.219926][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.248587][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.260147][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.269908][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.280308][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.289870][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.300259][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.308550][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.317946][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.326264][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.334321][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.342696][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.350945][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: unknown main item tag 0x0
[  256.375267][ T4218] hid-generic 0000:007F:FFFFFFFE.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  256.573205][ T6981] fido_id[6981]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  257.611295][   T26] audit: type=1800 audit(2000000046.762:202): pid=6996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.781" name="regulatory.db.p7s" dev="sda1" ino=449 res=0 errno=0
[  257.611556][ T6996] platform regulatory.0: loading /lib/firmware/regulatory.db.p7s failed with error -4
[  257.643327][ T6996] platform regulatory.0: Direct firmware load for regulatory.db.p7s failed with error -4
[  257.653311][ T6996] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db.p7s
[  259.829384][ T7017] syz.4.786[7017] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  259.829942][ T7017] syz.4.786[7017] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  260.213162][ T7021] device syzkaller1 entered promiscuous mode
[  261.134459][ T7051] netlink: 68 bytes leftover after parsing attributes in process `syz.5.797'.
[  261.579182][ T7059] vcan0 speed is unknown, defaulting to 1000
[  261.621957][ T7059] vcan0 speed is unknown, defaulting to 1000
[  261.641056][ T7059] vcan0 speed is unknown, defaulting to 1000
[  261.693411][ T7061] smc: net device lo applied user defined pnetid SYZ1
[  262.527124][ T1108] vcan0 speed is unknown, defaulting to 1000
[  262.526615][ T7059] infiniband syz1: set down
[  262.570278][ T7059] infiniband syz1: added vcan0
[  262.789670][ T7059] infiniband syz1: Couldn't open port 1
[  262.865527][ T7059] RDS/IB: syz1: added
[  262.869710][ T7059] smc: adding ib device syz1 with port count 1
[  262.930080][ T7059] smc:    ib device syz1 port 1 has pnetid 
[  262.940705][ T1108] vcan0 speed is unknown, defaulting to 1000
[  262.950895][ T7059] vcan0 speed is unknown, defaulting to 1000
[  262.970263][ T4159] Bluetooth: hci5: command 0x0406 tx timeout
[  263.335042][ T7059] vcan0 speed is unknown, defaulting to 1000
[  264.175686][ T7059] vcan0 speed is unknown, defaulting to 1000
[  264.856482][ T7059] vcan0 speed is unknown, defaulting to 1000
[  265.454287][ T7059] vcan0 speed is unknown, defaulting to 1000
[  265.629302][ T7134] netlink: 36 bytes leftover after parsing attributes in process `syz.2.815'.
[  265.651689][ T7136] netlink: 24 bytes leftover after parsing attributes in process `syz.1.814'.
[  266.016411][ T7139] netlink: 4 bytes leftover after parsing attributes in process `syz.2.815'.
[  266.732455][ T7148] overlayfs: failed to clone upperpath
[  268.087789][ T7164] overlayfs: failed to clone upperpath
[  268.668186][ T7186] lo speed is unknown, defaulting to 1000
[  272.697140][ T4213] Bluetooth: hci5: command 0x0405 tx timeout
[  272.940330][ T7186] vcan0 speed is unknown, defaulting to 1000
[  273.301127][ T7227] netlink: 'syz.0.829': attribute type 1 has an invalid length.
[  275.129580][ T7256] tmpfs: Unknown parameter 'quota'
[  276.657659][ T7268] lo speed is unknown, defaulting to 1000
[  277.912769][ T7280] kernel profiling enabled (shift: 17)
[  278.326499][ T7268] vcan0 speed is unknown, defaulting to 1000
[  278.514377][ T7301] lo speed is unknown, defaulting to 1000
[  278.881546][ T7309] loop2: detected capacity change from 0 to 2048
[  278.939442][ T7309]  loop2: p1 < > p3
[  278.951406][ T7309] loop2: p3 size 134217728 extends beyond EOD, truncated
[  279.090871][ T7301] vcan0 speed is unknown, defaulting to 1000
[  279.091299][ T7304] lo speed is unknown, defaulting to 1000
[  279.230213][ T7314] 9pnet_virtio: no channels available for device syz
[  279.522023][ T7319] loop2: detected capacity change from 0 to 1024
[  279.962682][ T7304] vcan0 speed is unknown, defaulting to 1000
[  280.057951][ T7321] loop5: detected capacity change from 0 to 256
[  280.859894][ T7321] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011bf5, chksum : 0xdfba1b89, utbl_chksum : 0xe619d30d)
[  280.913293][ T7321] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  283.364389][ T7340] lo speed is unknown, defaulting to 1000
[  283.912419][ T7340] vcan0 speed is unknown, defaulting to 1000
[  285.174703][ T7354] netlink: 8 bytes leftover after parsing attributes in process `syz.1.871'.
[  286.499294][ T7380] vcan0: tx drop: invalid da for name 0xfffffffffffffffc
[  290.215370][ T7404] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.234027][ T7404] bond0: (slave rose0): Enslaving as an active interface with an up link
[  290.258718][ T5215] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  291.238500][ T4218] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  291.638815][ T4218] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  291.702676][ T4218] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  291.958875][ T4218] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  291.973305][ T4218] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  291.982201][ T4218] usb 3-1: Product: syz
[  291.991358][ T4218] usb 3-1: Manufacturer: syz
[  292.005536][ T4218] usb 3-1: SerialNumber: syz
[  292.059566][ T4218] cdc_mbim 3-1:1.0: skipping garbage
[  292.308525][ T7420] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  294.353351][ T7482] infiniband s
z1: set active
[  294.377444][ T7482] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  294.405349][ T7482] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  294.413853][ T7482] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  294.627348][ T4220] lo speed is unknown, defaulting to 1000
[  295.024452][ T7490] lo speed is unknown, defaulting to 1000
[  295.128481][ T4218] cdc_mbim 3-1:1.0: failed GET_NTB_PARAMETERS
[  295.134671][ T4218] cdc_mbim 3-1:1.0: bind() failure
[  295.180730][ T4218] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  295.187682][ T4218] cdc_ncm 3-1:1.1: bind() failure
[  295.274879][ T4218] usb 3-1: USB disconnect, device number 5
[  295.800942][ T7490] vcan0 speed is unknown, defaulting to 1000
[  297.388258][   T26] audit: type=1326 audit(2000000086.544:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7540 comm="syz.0.922" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f73b554f929 code=0x0
[  298.447041][ T7543] binder: 7502:7543 ioctl 400c620e 200000000000 returned -22
[  298.528742][ T7558] overlayfs: failed to clone lowerpath
[  298.552415][ T7543] netlink: 'syz.2.913': attribute type 10 has an invalid length.
[  298.602181][ T7543] batman_adv: batadv0: Adding interface: team0
[  298.608512][ T7543] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  298.634097][ T7543] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  300.450919][ T7617] fuse: Unknown parameter ''
[  302.276820][ T7617] lo speed is unknown, defaulting to 1000
[  302.775482][ T7617] vcan0 speed is unknown, defaulting to 1000
[  306.362330][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.389891][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.432360][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.471796][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.511453][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.551442][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.588630][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.632355][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.673856][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.709993][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.746428][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.780600][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.820884][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.863580][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.912556][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  306.971517][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.037220][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.248216][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.256465][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.264722][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.273413][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.281616][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.297585][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.305572][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.433639][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.661721][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  307.858610][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.173078][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.203271][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.237776][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.270611][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.291116][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.319324][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.332766][ T7668] lo speed is unknown, defaulting to 1000
[  308.354051][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.378636][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.412130][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.438646][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.477011][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.517542][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.546170][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.569203][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.613403][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.627614][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: unknown main item tag 0x0
[  308.676479][ T4219] hid-generic 0000:007F:FFFFFFFE.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  309.037910][ T7680] fido_id[7680]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  309.051828][   T26] audit: type=1804 audit(2000000098.195:204): pid=7683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.961" name="/newroot/182/bus/bus" dev="overlay" ino=993 res=1 errno=0
[  309.252353][ T7668] vcan0 speed is unknown, defaulting to 1000
[  311.873539][ T7714] lo speed is unknown, defaulting to 1000
[  312.215682][ T7714] vcan0 speed is unknown, defaulting to 1000
[  312.512947][ T7733] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  313.011212][ T7714] chnl_net:caif_netlink_parms(): no params data found
[  313.417910][ T7714] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.455508][ T7714] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.505700][ T7714] device bridge_slave_0 entered promiscuous mode
[  313.542418][ T7714] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.577472][ T7714] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.606041][ T7714] device bridge_slave_1 entered promiscuous mode
[  313.731348][ T7714] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  313.848054][ T4219] Bluetooth: hci0: command 0x0409 tx timeout
[  314.560863][ T7714] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  314.698721][ T7714] team0: Port device team_slave_0 added
[  314.730285][ T7714] team0: Port device team_slave_1 added
[  314.883327][ T7766] Process accounting resumed
[  314.940124][ T7714] batman_adv: batadv0: Adding interface: batadv_slave_0
[  314.967525][ T7714] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  315.069983][ T7714] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  315.095608][ T7714] batman_adv: batadv0: Adding interface: batadv_slave_1
[  315.102692][ T7714] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  315.984695][ T4216] Bluetooth: hci0: command 0x041b tx timeout
[  315.993160][ T7714] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  316.515722][ T7714] device hsr_slave_0 entered promiscuous mode
[  316.538122][ T7714] device hsr_slave_1 entered promiscuous mode
[  316.555628][ T7714] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  316.572543][ T7714] Cannot create hsr debugfs directory
[  316.957021][ T4159] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[  317.035134][ T7714] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  317.079851][ T7714] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  317.119058][ T7714] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  317.159882][ T7714] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  317.223461][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  317.229853][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  317.250893][   T26] audit: type=1326 audit(2000000106.405:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  317.328164][   T26] audit: type=1326 audit(2000000106.405:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  317.401856][   T26] audit: type=1326 audit(2000000106.435:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  317.425309][ T4159] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  317.457156][ T4159] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  317.479972][ T7714] 8021q: adding VLAN 0 to HW filter on device bond0
[  317.491478][ T4159] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  317.512000][   T26] audit: type=1326 audit(2000000106.455:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  317.555418][ T4159] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.565419][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  317.585987][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  317.594785][ T4159] usb 6-1: config 0 descriptor??
[  317.607701][   T26] audit: type=1326 audit(2000000106.455:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  317.629748][ T7714] 8021q: adding VLAN 0 to HW filter on device team0
[  317.677113][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  317.696543][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  317.707078][   T26] audit: type=1326 audit(2000000106.455:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  317.731132][ T4230] bridge0: port 1(bridge_slave_0) entered blocking state
[  317.738472][ T4230] bridge0: port 1(bridge_slave_0) entered forwarding state
[  317.798676][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  317.809174][   T26] audit: type=1326 audit(2000000106.485:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  317.821869][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  317.882703][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  317.911164][ T4230] bridge0: port 2(bridge_slave_1) entered blocking state
[  317.918354][ T4230] bridge0: port 2(bridge_slave_1) entered forwarding state
[  317.934130][   T26] audit: type=1326 audit(2000000106.485:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  318.007138][   T21] Bluetooth: hci0: command 0x040f tx timeout
[  318.029659][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  318.061579][   T26] audit: type=1326 audit(2000000106.485:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  318.087711][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  318.138540][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  318.171970][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  318.187334][   T26] audit: type=1326 audit(2000000106.485:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7789 comm="syz.4.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35cb03b19 code=0x7ffc0000
[  318.220895][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  318.241381][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  318.292585][ T7714] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  318.342704][ T7714] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  318.398807][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  318.410363][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  318.448962][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  318.479948][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  318.499715][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  318.537331][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  318.954640][ T5215] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  318.970600][ T5215] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  319.030897][ T7714] 8021q: adding VLAN 0 to HW filter on device batadv0
[  319.806971][ T4159] usbhid 6-1:0.0: can't add hid device: -71
[  319.813781][ T7809] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in;
[  319.813781][ T7809]    program syz.5.998 not setting count and/or reply_len properly
[  319.952191][ T4159] usbhid: probe of 6-1:0.0 failed with error -71
[  320.003727][ T4159] usb 6-1: USB disconnect, device number 5
[  320.044458][ T5215] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  320.082302][ T5215] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  320.090976][ T4274] Bluetooth: hci0: command 0x0419 tx timeout
[  322.048607][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  322.065645][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  322.133173][ T7714] device veth0_vlan entered promiscuous mode
[  322.305094][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  322.338750][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  322.365561][ T7714] device veth1_vlan entered promiscuous mode
[  322.637617][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  322.647401][ T7825] 9pnet: Insufficient options for proto=fd
[  322.677609][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  322.751444][ T7714] device veth0_macvtap entered promiscuous mode
[  322.780107][ T7714] device veth1_macvtap entered promiscuous mode
[  322.925876][ T7714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.016456][ T7714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.066818][ T7714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.107003][ T7714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.213695][ T7714] batman_adv: batadv0: Interface activated: batadv_slave_0
[  323.230606][ T1424] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  323.251549][ T1424] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  323.271979][ T1424] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  323.299134][ T1424] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  323.334677][ T7714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.350421][ T7714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.377835][ T7714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.431496][ T7714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.477864][ T7714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  323.538109][ T7714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.580076][ T7714] batman_adv: batadv0: Interface activated: batadv_slave_1
[  323.641211][ T1424] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  323.670407][ T1424] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  323.715901][ T7714] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  323.744003][ T7714] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  323.777025][ T7714] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  323.805646][ T7714] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  324.055045][ T4230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  324.092001][ T4230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  324.149845][ T4689] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  324.159953][ T1424] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  324.178220][ T4689] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  324.211867][ T4524] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  331.676325][ T4217] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  331.997059][ T4217] usb 3-1: Using ep0 maxpacket: 8
[  332.636264][ T4217] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  332.658128][ T4217] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  332.669854][ T4217] usb 3-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  332.780449][ T4217] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  332.823204][ T4217] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  332.835318][ T4217] usb 3-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  333.016199][ T4217] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  333.116223][ T4217] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  333.128314][ T4217] usb 3-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  333.456379][ T4217] usb 3-1: string descriptor 0 read error: -71
[  333.463012][ T4217] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  333.515967][ T4217] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.576197][ T4217] usb 3-1: can't set config #168, error -71
[  333.587367][ T4217] usb 3-1: USB disconnect, device number 6
[  335.376070][ T7945] program syz.5.1036 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  335.914362][ T7960] UBIFS error (pid: 7960): cannot open "./file0", error -22
[  337.413352][ T7969] netlink: 'syz.6.1043': attribute type 1 has an invalid length.
[  337.536685][ T7973] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1045'.
[  344.335293][ T8026] lo speed is unknown, defaulting to 1000
[  344.409141][ T8031] tmpfs: Unknown parameter 'grpquota'
[  344.811452][ T8026] vcan0 speed is unknown, defaulting to 1000
[  346.727805][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.745465][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.755778][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.773810][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.783249][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.802540][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.817041][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.866256][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.874765][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.910638][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.928857][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.952770][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  346.987514][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.002692][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.011639][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.025067][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.038037][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.059469][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.091541][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.111887][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.281186][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.309606][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.356669][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.430014][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.646190][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  347.849498][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.205087][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.251551][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.280430][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.636060][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.645001][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.653525][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.685225][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.723297][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.782383][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.804901][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.843638][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.892420][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.938178][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  348.975414][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  349.004032][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  349.144677][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  349.162874][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: unknown main item tag 0x0
[  349.982232][ T4213] hid-generic 0000:007F:FFFFFFFE.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  350.231674][ T8086] fido_id[8086]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  352.376869][ T8134] overlayfs: statfs failed on './file0'
[  355.655328][   T26] kauditd_printk_skb: 792 callbacks suppressed
[  355.655395][   T26] audit: type=1326 audit(2000000373.740:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8163 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  355.834401][ T8170] overlayfs: failed to clone upperpath
[  355.872558][   T26] audit: type=1326 audit(2000000373.740:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8163 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  356.031142][   T26] audit: type=1326 audit(2000000373.870:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8163 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  356.221060][   T26] audit: type=1326 audit(2000000373.870:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8163 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35cb67929 code=0x7ffc0000
[  356.329355][ T8181] overlayfs: failed to clone upperpath
[  356.985955][ T8185] program syz.6.1118 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  357.197698][ T8189] lo speed is unknown, defaulting to 1000
[  357.483905][ T8189] vcan0 speed is unknown, defaulting to 1000
[  357.544757][ T4274] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  357.954796][ T4274] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  357.974739][ T4274] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  358.014724][ T4274] usb 7-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  358.032329][ T4274] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.084381][ T4274] usb 7-1: config 0 descriptor??
[  358.336621][ T8195] tmpfs: Unknown parameter 'usrquota'
[  358.654736][ T4274] usbhid 7-1:0.0: can't add hid device: -71
[  358.670957][ T4274] usbhid: probe of 7-1:0.0 failed with error -71
[  358.680229][ T4274] usb 7-1: USB disconnect, device number 2
[  359.845181][ T4219] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  359.853795][ T4219] Bluetooth: hci3: Injecting HCI hardware error event
[  359.861965][ T4183] Bluetooth: hci3: hardware error 0x00
[  359.988037][ T8213] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1127'.
[  360.044739][ T8213] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1127'.
[  360.090138][   T26] audit: type=1326 audit(2000000378.240:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8212 comm="syz.5.1127" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f887ffbd929 code=0x0
[  360.343962][ T4219] Process accounting resumed
[  360.593792][ T8227] rdma_rxe: rxe_register_device failed with error -23
[  360.602249][ T8227] rdma_rxe: failed to add lo
[  362.670672][ T8243] 9pnet_virtio: no channels available for device syz
[  367.849018][ T8292] netlink: 'syz.5.1146': attribute type 4 has an invalid length.
[  367.858031][ T8292] netlink: 152 bytes leftover after parsing attributes in process `syz.5.1146'.
[  368.040306][ T8292] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  370.929880][ T8312] netdevsim netdevsim6 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  370.940860][ T8312] netdevsim netdevsim6 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  370.950719][ T8312] netdevsim netdevsim6 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  370.970973][ T8312] netdevsim netdevsim6 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  370.981334][ T8312] device geneve2 entered promiscuous mode
[  371.025661][ T4274] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  371.737635][ T8339] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1166'.
[  373.395430][ T8378] 9pnet_virtio: no channels available for device syz
[  374.113889][ T1108] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  374.363807][ T1108] usb 6-1: Using ep0 maxpacket: 32
[  374.523847][ T1108] usb 6-1: unable to get BOS descriptor or descriptor too short
[  374.644137][ T1108] usb 6-1: config index 0 descriptor too short (expected 34347, got 43)
[  374.663042][ T1108] usb 6-1: config 31 has too many interfaces: 196, using maximum allowed: 32
[  374.692977][ T1108] usb 6-1: config 31 has an invalid descriptor of length 0, skipping remainder of the config
[  374.833751][ T1108] usb 6-1: config 31 has 1 interface, different from the descriptor's value: 196
[  374.853731][ T1108] usb 6-1: config 31 has no interface number 0
[  374.860626][ T1108] usb 6-1: config 31 interface 81 altsetting 3 has an invalid endpoint with address 0x93, skipping
[  375.403704][ T1108] usb 6-1: config 31 interface 81 has no altsetting 0
[  375.763784][ T1108] usb 6-1: string descriptor 0 read error: -22
[  375.771187][ T1108] usb 6-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice=24.ac
[  375.821885][ T1108] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.462919][ T1108] usb 6-1: USB disconnect, device number 6
[  378.647513][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  378.653879][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  385.003391][ T8479] lo speed is unknown, defaulting to 1000
[  385.462035][ T8479] vcan0 speed is unknown, defaulting to 1000
[  385.763969][ T8487] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1204'.
[  385.920430][ T8489] [U] 
[  385.923805][ T8489] [U] K{�
[  385.931007][ T8489] [U] �t �1��Š�F���fˊ�`G�J��g���������o��/�mC�
[  385.949881][ T8489] [U] t�ؖ/,�~�Ĝ��j���}8���'o1��"�7-�JQ�K��W��q�5c%"�H12��Y������X�`����`+��(��!(���z'�tXln�I�g�j����ݭ�p�~�7�!���"�����(�5�Ob���̓J�
[  386.016157][ T8489] [U] �k\&�}6�6�X�HX�������.`�a�$�40|϶��9��ި����U��4���Vbz��}�w�M�T���Q��Φr�4��
[  386.240950][ T8489] [U] ".h6��"�k�[����J�4��I�n��[Z(��C|T�]z{��3�c=��x�����4�w�)\T�XJ��SH{q;칢��t��+���g����d�.˂�>y����wUh�fN����hl]S�2���\g%�O�&z)��'�pul�_<�	�ذ����`ұT�������;_�"(�u{7j��2X �/�'��c���I����H�c�ճ�V�=��Ai�%w�Es� R��j���g��r����hI
���a��6-�D��V�� i"��n� ��Asc~4���8c�*�OO5/��J�~���w�vK+����3��Y)��M���v��yq潀DTr�
Otpem%f��ej�A5��T_-X~�^aaۂ�q��
[  386.614614][ T8489] [U] 	+�w�G?]��'a:	��)�
����' B>t���f/��<'�U�'��h�i�.+]e�.�-ɿ���%��>2`�^U�8F.�6��3��+�A�«���g3�p��6:�^0��t��v�'E�t����YC�n��rϩ�n�Pj�;�Z������8!��\���A�ʖ2��$�­wi.��#��/Bai���`��4j��d�y@�z��gW�5˿B��ٜ�N�y"vI2��
[  386.658202][ T8489] [U] �T�_K5�t�YJ���9��c�$br�L�Nul��9w���|�G�"ʃ�%����C�؝���q��
 ��3��q��N^HP*��$	�.�7yӱ�2�
[  386.672254][ T8489] [U] �?���h��*����3�7�鍾^#Q�"0~���(�o�XL�b�,'v��=���C�S���G�S��0�ւ��`���ه��=1(��p#�2DO*Ƀ
[  386.689271][ T8489] [U] �s��g������Gu��d-{���|&������2��L�c_��!`��oz֥�B��%>�r��w���Ss�H"�yA4�O.�Y��䏄RTԶ�B�[+/<<R�B����|Фe���۠�V96#���ͤ�j�U�%
s851���ҩs�P��\��?q�|L��QX�0�K�1orɴ2��|��d�F�������2ޔ���0��H�}C[/����px^��o
[  386.962576][ T8494] [U] �؛���(J�Л��m��xz�;�����؝_����*3�3��5�\�xm��U��AK!aQ`�
[  387.584372][ T8517] tmpfs: Unknown parameter 'quot'
[  392.248044][ T8585] device bond0 entered promiscuous mode
[  392.284087][ T8585] device bond_slave_0 entered promiscuous mode
[  392.303801][ T8597] overlayfs: failed to clone upperpath
[  392.413755][ T8585] device bond_slave_1 entered promiscuous mode
[  394.608983][ T8617] netlink: 'syz.6.1246': attribute type 11 has an invalid length.
[  395.730193][ T8617] Set syz1 is full, maxelem 65536 reached
[  396.463021][ T8640] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1257'.
[  396.471997][ T8640] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1257'.
[  396.572367][   T26] audit: type=1326 audit(2000000414.722:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8639 comm="syz.0.1257" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f73b554f929 code=0x0
[  399.507612][ T8671] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  399.760631][ T8674] 9pnet_virtio: no channels available for device 127.0.0.1
[  400.624515][ T8690] 9pnet_virtio: no channels available for device syz
[  401.907393][ T8700] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1274'.
[  401.932284][ T8700] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1274'.
[  401.973173][   T26] audit: type=1326 audit(2000000420.132:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8699 comm="syz.6.1274" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4c29f24929 code=0x0
[  402.073749][ T8702] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  402.082727][ T8702] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  402.091503][ T8702] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  402.100319][ T8702] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  402.109164][ T8702] device geneve2 entered promiscuous mode
[  402.142528][ T4216] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  403.033206][ T8723] lo speed is unknown, defaulting to 1000
[  405.434033][ T8723] vcan0 speed is unknown, defaulting to 1000
[  408.419577][ T8752] device syzkaller1 entered promiscuous mode
[  408.716448][ T8757] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1291'.
[  408.735179][ T8757] device wg1 entered promiscuous mode
[  408.911991][ T4220] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  409.035101][ T8772] overlayfs: overlapping lowerdir path
[  410.347191][ T4220] usb 3-1: config 0 has no interfaces?
[  410.352837][ T4220] usb 3-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  410.363442][ T4220] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  410.392286][ T4220] usb 3-1: config 0 descriptor??
[  410.422027][ T8785] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1301'.
[  410.514198][   T26] audit: type=1326 audit(2000000000.010:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.4.1304" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd35cb67929 code=0x0
[  411.426284][   T21] usb 3-1: USB disconnect, device number 7
[  411.451142][ T8794] 9pnet_virtio: no channels available for device syz
[  411.486346][ T8796] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1306'.
[  411.635975][ T8801] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  411.662009][ T8801] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  411.683484][ T8801] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  411.700394][ T8801] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  411.720333][ T8801] device bond0 left promiscuous mode
[  411.741299][ T8801] device bond_slave_0 left promiscuous mode
[  411.761360][ T8801] device bond_slave_1 left promiscuous mode
[  411.784337][ T8801] 8021q: adding VLAN 0 to HW filter on device bond0
[  411.805993][ T8801] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  411.824116][ T8801] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  411.854959][ T8801] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  413.651553][   T26] audit: type=1326 audit(2000000003.160:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8820 comm="syz.5.1315" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f887ffbd929 code=0x0
[  413.971683][ T5057] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  414.381954][ T5057] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  414.407869][ T5057] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  414.423754][ T5057] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  414.489871][ T5057] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  414.541812][ T5057] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  414.596107][ T5057] usb 7-1: config 0 descriptor??
[  414.743928][ T8835] overlayfs: missing 'lowerdir'
[  415.137311][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.574824][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.582362][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.590011][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.597505][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.606285][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.613760][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.621258][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.628738][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.636742][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.644230][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.651805][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.659224][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.666731][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.674297][ T5057] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  415.683168][ T5057] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  415.708124][ T5057] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  415.726236][ T5057] usb 7-1: USB disconnect, device number 3
[  415.879668][ T8841] autofs4:pid:8841:autofs_fill_super: called with bogus options
[  415.948788][ T8840] fido_id[8840]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  415.965742][ T8838] lo speed is unknown, defaulting to 1000
[  416.134802][ T8845] blk_update_request: I/O error, dev loop6, sector 2 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 0
[  416.163803][ T8845] hfsplus: unable to find HFS+ superblock
[  417.215205][ T8838] vcan0 speed is unknown, defaulting to 1000
[  418.280984][ T8865] lo speed is unknown, defaulting to 1000
[  418.571356][ T4220] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  418.769283][ T8865] vcan0 speed is unknown, defaulting to 1000
[  418.941536][ T4220] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  418.975757][ T4220] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  419.013570][ T4220] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  419.057705][ T4220] usb 7-1: config 0 descriptor??
[  419.079681][ T8883] Invalid ELF header magic: != ELF
[  419.422300][ T4220] usbhid 7-1:0.0: can't add hid device: -71
[  419.471101][ T4220] usbhid: probe of 7-1:0.0 failed with error -71
[  419.486414][ T4220] usb 7-1: USB disconnect, device number 4
[  419.611374][ T8867] batman_adv: batadv0: Adding interface: dummy0
[  419.635421][ T8867] batman_adv: batadv0: The MTU of interface dummy0 is too small (0) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  419.732253][ T8867] batman_adv: batadv0: Interface activated: dummy0
[  419.761261][ T8867] batadv0: mtu less than device minimum
[  419.772208][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  419.789911][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  419.803513][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  419.817507][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  419.830812][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  419.844776][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  419.857829][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  419.871338][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  419.884378][ T8867] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  420.491279][ T5057] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  421.034637][ T8900] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(10)
[  421.041760][ T8900] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  421.054844][ T8900] vhci_hcd vhci_hcd.0: Device attached
[  421.138586][ T8903] vhci_hcd: connection closed
[  421.144909][ T4524] vhci_hcd: stop threads
[  421.226388][ T4524] vhci_hcd: release socket
[  421.303617][ T4524] vhci_hcd: disconnect device
[  421.331330][ T4220] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[  422.019171][ T5057] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  422.075247][ T5057] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  422.105951][ T5057] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  440.085445][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  440.092535][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  529.084982][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  529.093363][    C1] rcu: 	1-...!: (10633 ticks this GP) idle=d6f/1/0x4000000000000000 softirq=25174/25176 fqs=118 
[  529.106399][    C1] 	(t=10500 jiffies g=37357 q=46)
[  529.111692][    C1] rcu: rcu_preempt kthread starved for 10262 jiffies! g37357 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  529.123632][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  529.134361][    C1] rcu: RCU grace-period kthread stack dump:
[  529.140927][    C1] task:rcu_preempt     state:R  running task     stack:28032 pid:   15 ppid:     2 flags:0x00004000
[  529.152583][    C1] Call Trace:
[  529.156045][    C1]  <TASK>
[  529.159447][    C1]  __schedule+0x11b8/0x43b0
[  529.165116][    C1]  ? release_firmware_map_entry+0x190/0x190
[  529.171937][    C1]  schedule+0x11b/0x1e0
[  529.177250][    C1]  schedule_timeout+0x15c/0x280
[  529.182270][    C1]  ? console_conditional_schedule+0x40/0x40
[  529.188688][    C1]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  529.194938][    C1]  ? update_process_times+0x200/0x200
[  529.200513][    C1]  ? prepare_to_swait_event+0x331/0x350
[  529.206704][    C1]  rcu_gp_fqs_loop+0x29e/0x11b0
[  529.211780][    C1]  ? dyntick_save_progress_counter+0x230/0x230
[  529.218568][    C1]  ? rcu_gp_init+0x10e0/0x10e0
[  529.223989][    C1]  ? finish_swait+0xc0/0x1d0
[  529.228875][    C1]  rcu_gp_kthread+0x98/0x350
[  529.233852][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  529.240168][    C1]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  529.247328][    C1]  ? __kthread_parkme+0x157/0x1b0
[  529.254028][    C1]  kthread+0x436/0x520
[  529.258166][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  529.263577][    C1]  ? kthread_blkcg+0xd0/0xd0
[  529.269268][    C1]  ret_from_fork+0x1f/0x30
[  529.274884][    C1]  </TASK>
[  529.278110][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  529.287233][    C1] Sending NMI from CPU 1 to CPUs 0:
[  529.293960][    C0] NMI backtrace for cpu 0 skipped: idling at default_idle+0xb/0x10
[  529.294907][    C1] NMI backtrace for cpu 1
[  529.310637][    C1] CPU: 1 PID: 8911 Comm: syz.2.1342 Not tainted 5.15.185-syzkaller #0
[  529.320253][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  529.330824][    C1] Call Trace:
[  529.335144][    C1]  <IRQ>
[  529.338843][    C1]  dump_stack_lvl+0x168/0x230
[  529.345708][    C1]  ? show_regs_print_info+0x20/0x20
[  529.351250][    C1]  ? load_image+0x3b0/0x3b0
[  529.357041][    C1]  ? try_to_wake_up+0x3d4/0x1050
[  529.363198][    C1]  nmi_cpu_backtrace+0x397/0x3d0
[  529.368666][    C1]  ? nmi_trigger_cpumask_backtrace+0x280/0x280
[  529.376420][    C1]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[  529.382634][    C1]  ? _raw_spin_lock+0x40/0x40
[  529.387865][    C1]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  529.395662][    C1]  nmi_trigger_cpumask_backtrace+0x163/0x280
[  529.403454][    C1]  rcu_dump_cpu_stacks+0x22f/0x380
[  529.409044][    C1]  print_cpu_stall+0x31d/0x5f0
[  529.414536][    C1]  rcu_sched_clock_irq+0x6d8/0x1110
[  529.420121][    C1]  ? rcutree_dead_cpu+0x20/0x20
[  529.425575][    C1]  ? account_process_tick+0x227/0x3a0
[  529.431257][    C1]  update_process_times+0x193/0x200
[  529.436842][    C1]  tick_sched_timer+0x37d/0x560
[  529.443453][    C1]  __hrtimer_run_queues+0x4fe/0xc40
[  529.448958][    C1]  ? tick_setup_sched_timer+0x2c0/0x2c0
[  529.455949][    C1]  ? hrtimer_interrupt+0x8d0/0x8d0
[  529.462883][    C1]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  529.469430][    C1]  hrtimer_interrupt+0x3bb/0x8d0
[  529.475111][    C1]  __sysvec_apic_timer_interrupt+0x137/0x4a0
[  529.483076][    C1]  sysvec_apic_timer_interrupt+0x9b/0xc0
[  529.489430][    C1]  </IRQ>
[  529.492803][    C1]  <TASK>
[  529.495759][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  529.503646][    C1] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40
[  529.510867][    C1] Code: f6 ff 0f 1f 00 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 8e 9a b1 f7 48 89 df e8 56 6f b2 f7 e8 a1 13 d3 f7 fb bf 01 00 00 00 <e8> 86 93 a6 f7 65 8b 05 27 a3 57 76 85 c0 74 02 5b c3 e8 d4 ad 55
[  529.531522][    C1] RSP: 0018:ffffc900032bfbc0 EFLAGS: 00000282
[  529.537903][    C1] RAX: e1279374bf849c00 RBX: ffff888022723780 RCX: e1279374bf849c00
[  529.546364][    C1] RDX: dffffc0000000000 RSI: ffffffff8a0b11c0 RDI: 0000000000000001
[  529.554858][    C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: ffffed10044e46f1
[  529.563090][    C1] R10: ffffed10044e46f1 R11: 1ffff110044e46f0 R12: ffff888022723780
[  529.571824][    C1] R13: 0000000000000011 R14: dffffc0000000000 R15: 0000000004000000
[  529.579828][    C1]  get_signal+0x11d6/0x12c0
[  529.584383][    C1]  arch_do_signal_or_restart+0xc1/0x1300
[  529.590270][    C1]  ? _copy_from_user+0x111/0x170
[  529.595352][    C1]  ? __ia32_sys_rt_sigreturn+0x660/0x790
[  529.601130][    C1]  ? load_gs_index+0x120/0x120
[  529.606339][    C1]  ? get_sigframe_size+0x10/0x10
[  529.611549][    C1]  ? exit_to_user_mode_loop+0x3b/0x130
[  529.617025][    C1]  exit_to_user_mode_loop+0x9e/0x130
[  529.623406][    C1]  exit_to_user_mode_prepare+0xb1/0x140
[  529.629237][    C1]  syscall_exit_to_user_mode+0x16/0x40
[  529.634895][    C1]  do_syscall_64+0x58/0xa0
[  529.639664][    C1]  ? clear_bhb_loop+0x30/0x80
[  529.644491][    C1]  ? clear_bhb_loop+0x30/0x80
[  529.650392][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  529.656764][    C1] RIP: 0033:0x7eff59d7e929
[  529.661882][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  529.688030][    C1] RSP: 002b:00007eff57be6038 EFLAGS: 00000246
[  529.695453][    C1] RAX: 0000200000000000 RBX: 00007eff59fa5fa0 RCX: 00007eff59d7e929
[  529.705828][    C1] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000200000000000
[  529.714982][    C1] RBP: 00007eff59e00b39 R08: ffffffffffffffff R09: 0000000000000000
[  529.723723][    C1] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  529.732177][    C1] R13: 0000000000000000 R14: 00007eff59fa5fa0 R15: 00007ffd14779758
[  529.742417][    C1]  </TASK>
[  529.745642][    C1] vkms_vblank_simulate: vblank timer overrun