last executing test programs:

7m5.700564685s ago: executing program 32 (id=735):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)

6m37.589023956s ago: executing program 1 (id=997):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r2 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r2, 0x400448c8, 0x0)

6m37.376362357s ago: executing program 1 (id=999):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r1, @ANYRES8=r1, @ANYRES32=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0x4)

6m37.207830195s ago: executing program 1 (id=1002):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)

6m36.985331448s ago: executing program 1 (id=1005):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000000), 0x1, 0x4c5, &(0x7f0000000540)="$eJzs3d1rW+cZAPBHUuzYjrd8bIwkgyWQQfZBLH8wYm+DsattF4GxwG42yDxbcVPLlrHkNDa5cNq7XPSitLRQetH7/gW9aa4aCqXXLb0tvSgpbepCWyio6Ehy/CE5aupIjc/vByd6z3sUPe8r8bw+es85OgGk1tnaP5mI4Yh4LyKO1le3P+Fs/WHj/s2Z2pKJavXyZ5nkebX15lOb/+9IRKxHxEBE/OtvEf/P7I5bXl2bny4WC8uN9XxlYSlfXl27cG1heq4wV1gcm7w4NTU5OjE+tW99vf3807cvvfmP/je+eu7e3RfefqvWrOHGtq392E/1rvfF8S11hyLiz48jWA/kGv0Z7HVDeCS1z+9nEXEuyf+jkUs+TSANqtVq9dvq4Xab16vAgZVN9oEz2ZGIqJez2ZGR+j78z2MoWyyVK7+/WlpZnK3vKx+LvuzVa8XCaOO7wrHoy9TWx5Lyg/XxHesTEck+8Iu5wWR9ZKZUnO3uUAfscGRH/n+Zq+c/kBK+8kN6yX9IL/kP6SX/Ib3kP6SX/If0kv+QXvIf0kv+Q3rJf0ivvfK/v4vtALrqn5cu1ZZq8/r32eurK/Ol6xdmC+X5kYWVmZGZ0vLSyFypNJdcs7PwsNcrlkpLY3+IlRv5SqFcyZdX164slFYWK1eS6/qvFPq60iugE8fP3PkgExHrfxxMltjyJ1+uwsFWrWai19cgA72R6/UABPSMqX9Ir+/xHb/tj4QBT7YWP9G7zUDr6r/E0uNoDdAN2V43AOiZ86cc/4O0Mv8P6WX+H9LLPj7wiPP/Yf4fnlzm/yG9htvc/+snW+7dNRoRP42I93N9h5v3+gIOguwnmcb+//mjvx7eubU/83VyiKA/Ip559fLLN6YrleWxWv3nm/WVVxr1471oP9CpZp428xgASK+N+zdnmks343761/pJCLvjH2rMTQ4kxyiHNjLbzlXI7NO5C+u3IuJkq/iZxv3O60c+hjZyu+KfaDxm6i+RtPdQct/07sQ/tSX+r7bEP/2D3xVIhzu18We0Vf5lk5yOzfzbPv4M79O5E+3Hv+zm+JdrM/6d6TDGU689+3Hb+LciTreM34w3kMTaGb/WtvMdxr/333//ot226uv112kVv6lWylcWlvLl1bULye/IzRUWxyYvTk1Njk6MT+WTOep8c6Z6tz+dfPfuXv0fahO/3t8PW/a/VvfbDvv/zS/f+c/ZPeL/5lzrz/9E8tj6/R+MiN91GP+L8Y/+125bLf5sm/5n94hfq5voMH75pb+7dhgAfkTKq2vz08ViYVlBQUFhs/CwkWO9OwMU8Ng8SPpetwQAAAAAAAAAAADoVDdOJ+51HwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoLvAgAA//+tldf6")
syz_open_dev$usbfs(0x0, 0x1ff, 0x2)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000880)=@loop={'/dev/loop', 0x0}, &(0x7f0000000840)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14113e, 0x6ceac77f206eabb9)
write$binfmt_script(r0, &(0x7f0000000080), 0x208e24b)
ioctl$TUNGETVNETLE(0xffffffffffffffff, 0x4010744d, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x84800, 0x92)

6m36.651272112s ago: executing program 1 (id=1006):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)

6m35.622068537s ago: executing program 1 (id=1023):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00), 0x1, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000fbdbdf250800000018000480130001"], 0x2c}}, 0x26008890)

6m35.227816897s ago: executing program 33 (id=1023):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00), 0x1, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd7000fbdbdf250800000018000480130001"], 0x2c}}, 0x26008890)

3m46.849394717s ago: executing program 0 (id=3141):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000080)={'veth0\x00', {0x2, 0x4e21, @broadcast}})

3m46.215883371s ago: executing program 0 (id=3148):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_ADD_RULE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[], 0x454}, 0x1, 0x0, 0x0, 0x40018}, 0x200000a0)

3m45.855431218s ago: executing program 0 (id=3151):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x9b)
r2 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r2, 0xc0105500, &(0x7f0000000000)=ANY=[@ANYBLOB="a1"])

3m45.314338913s ago: executing program 0 (id=3156):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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")
setns(r1, 0x24020000)
r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r4, &(0x7f0000000000)='.\x00', 0x9000, &(0x7f0000001dc0)={0x8, 0x85, 0x20000, {r4}}, 0x20)

3m44.280455849s ago: executing program 0 (id=3163):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0xffffffffffffff4a, 0x0}}], 0x1, 0x4)
r2 = memfd_create(&(0x7f00000001c0)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0\xbc]\x12\xc0D\x9f\x80\x8f\xfe\xf2\xc2)\xccm\xacz\xc1\xad\xe4\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x0)
write$binfmt_elf32(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b300000000002a002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03"], 0xd8)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

3m42.005229801s ago: executing program 0 (id=3194):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket(0x840000000002, 0x3, 0xff)
connect$inet(r2, &(0x7f0000000540)={0x2, 0x4e22, @remote}, 0x10)
sendmmsg$inet(r2, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

3m41.047346729s ago: executing program 34 (id=3194):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket(0x840000000002, 0x3, 0xff)
connect$inet(r2, &(0x7f0000000540)={0x2, 0x4e22, @remote}, 0x10)
sendmmsg$inet(r2, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

2m29.626309665s ago: executing program 3 (id=3856):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x100080, 0x0)

2m29.364493901s ago: executing program 3 (id=3860):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_MAX_VCPU_ID(r3, 0x4068aea3, &(0x7f0000000340)={0x80, 0x0, 0x1})

2m29.010880757s ago: executing program 3 (id=3865):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'wlan1\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x56, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}, @local, @void, {@canfd={0xd, {{0x0, 0x0, 0x0, 0x1}, 0x18, 0x0, 0x0, 0x0, "ea24f9be509e841b2d5ab1462e88e976f6753fd756ca1dd33469793aaf2bd1c3884dc52e311f8d787aab2dbce2211ea3e531be85b3a50f52fac59a8b4e863fb6"}}}}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}]}, 0x24}}, 0x0)
r5 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})

2m28.673735811s ago: executing program 3 (id=3870):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0x88f}}, {{0xa, 0x4e08, 0x4a3, @private2, 0x4f0}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x30, &(0x7f0000000780)={0x3, {{0xa, 0x4e23, 0x9, @mcast1, 0x8}}}, 0x90)

2m28.278129841s ago: executing program 3 (id=3872):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x803400, 0x0)
setpgid(0x0, r0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)

2m27.736114285s ago: executing program 3 (id=3880):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
mknodat$null(0xffffffffffffffff, 0x0, 0xd4e4, 0x103)

2m11.640618703s ago: executing program 35 (id=3880):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
mknodat$null(0xffffffffffffffff, 0x0, 0xd4e4, 0x103)

1m8.747004787s ago: executing program 2 (id=4901):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket(0x10, 0x3, 0x0)
recvmmsg$unix(r2, &(0x7f0000008f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
write(r2, &(0x7f0000000100)="1400000052004f7fb3e4bf80c296f8528f912210", 0x14)

1m8.443734628s ago: executing program 2 (id=4902):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f00007fe000/0x800000)=nil)

1m8.176971025s ago: executing program 2 (id=4905):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6(0x10, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000040)=[{0x48, 0x0, 0x0, 0xffeffffe}, {0x16}]}, 0x10)
sendto$inet6(r2, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)

1m7.928005649s ago: executing program 2 (id=4908):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000340)={0x0, <r1=>0x0, <r2=>0x0}, &(0x7f00000002c0)=0xc)
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r1, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX=r2, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14f3, &(0x7f0000001580)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc13, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r3, &(0x7f0000006b40)={0x2020}, 0x2020)

1m7.32433419s ago: executing program 2 (id=4914):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000040), 0x4)

1m6.681332995s ago: executing program 2 (id=4922):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r2)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000640)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7000fedbdf252500000005002b000000000005002a0002000000080002"], 0x2c}, 0x1, 0x0, 0x0, 0x200440c4}, 0x20004010)

1m6.000083063s ago: executing program 36 (id=4922):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r2)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000640)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd7000fedbdf252500000005002b000000000005002a0002000000080002"], 0x2c}, 0x1, 0x0, 0x0, 0x200440c4}, 0x20004010)

49.107816222s ago: executing program 9 (id=5094):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = getpgid(0x0)
r3 = syz_pidfd_open(r2, 0x0)
pidfd_getfd(r3, r3, 0x0)

48.870960535s ago: executing program 9 (id=5098):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)

48.357547957s ago: executing program 9 (id=5103):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="0200"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x4041)

47.846261679s ago: executing program 9 (id=5107):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000400)=@getrule={0x14, 0x22, 0x200, 0x70bd26, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2}, 0x44008040)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000280)='./file0\x00', 0x3800813, &(0x7f0000000080)=ANY=[@ANYBLOB='iocharset=cp1251,unhide,nojoliet,nojoliet,norock,overriderockperm,dmode=0x000000000000,nocompress,check=relaxed,norock,map=normal,check=relaxed,cruft,dmode=0x0\x0000000000000009,map=acorn,\x00'], 0x9, 0xa51, &(0x7f0000001240)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x206e)

47.320138622s ago: executing program 9 (id=5110):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r2, 0x0)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000000)={0x14, 0xa13ca8e5839881ae, 0x4})
sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

46.671461687s ago: executing program 9 (id=5121):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000001e7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000180)=r4, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'ip6gretap0\x00', <r5=>0x0})
sendto$packet(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x9900, r5, 0x1, 0xe0}, 0x14)

46.150695879s ago: executing program 37 (id=5121):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000001e7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000180)=r4, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'ip6gretap0\x00', <r5=>0x0})
sendto$packet(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x9900, r5, 0x1, 0xe0}, 0x14)

1.765937892s ago: executing program 8 (id=5676):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = fsopen(&(0x7f0000000040)='fuseblk\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000004c0)='fuseblk\x00', &(0x7f0000000d00)='\xe6usek\v\xf6u%\x9b\x00\x00\xad\xeb\x00\x00\x9b\x9bO\x88/\t\xcf\x9b\x9f\b\xb6\xfc\x9cVR\x82\x9a\xbdp\xbd\x83w\xf9Z\xd2\xcb\xcd\x89F\xd0#\xffxi\xe0KE}]\x8e\xca\xe3+\xc8\x98\x03\x91\x88\x1d\bn\x7f\x0e\x85\xa5\xb4\x05?_\xc9\xef\xe0Q\xdb\xb6\x935\xf1\x18\xac\xe0\x15\xf3\xde\xbd\xb5\xa1\x06\xfd7\x87\xe1\f\x0f\xf8\xc5\x8a\xdc!\x00\x00@\x00'/119, 0x0)
read(r2, 0x0, 0x27)

1.657206073s ago: executing program 8 (id=5677):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000003580)=""/4094, 0xffe}, {&(0x7f0000000040)=""/190, 0xbe}, {&(0x7f0000000100)=""/63, 0x37}, {&(0x7f0000000200)=""/107, 0x6b}, {&(0x7f0000002580)=""/4065, 0xff1}, {&(0x7f0000000380)=""/109}], 0x5}, 0xd}, {{0x0, 0x0, 0x0}, 0xfffffffd}, {{0x0, 0x0, 0x0}, 0x4}], 0x400021c, 0x40012002, 0x0)

1.410640078s ago: executing program 7 (id=5682):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
unshare(0x62040200)

1.38181939s ago: executing program 8 (id=5683):
rt_sigaction(0xd, &(0x7f0000000040)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.kill\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000000)={0x1, 0x0, 0xc08, 0x2})
fcntl$lock(r2, 0x5, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x7})

1.282098631s ago: executing program 6 (id=5684):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.freeze\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x3c, r3, 0x1, 0x20000000, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xfa}, @ETHTOOL_A_LINKMODES_LANES={0x8, 0x9, 0x2}]}, 0x3c}}, 0x42080)

1.243269155s ago: executing program 5 (id=5685):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f0000000080)=0x60, 0x2)

1.127184556s ago: executing program 4 (id=5686):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ec7000/0x3000)=nil, &(0x7f0000152000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ec1000/0x3000)=nil, &(0x7f0000ff0000/0x3000)=nil, 0x0}, 0x68)

1.114881598s ago: executing program 7 (id=5688):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
close(0x3)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_group_source_req(r2, 0x0, 0x2e, &(0x7f0000000080)={0x9, {{0x2, 0x10, @loopback}}, {{0x2, 0x0, @loopback}}}, 0x108)

1.114229997s ago: executing program 8 (id=5689):
rt_sigaction(0xd, &(0x7f00000000c0)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0xd]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0x8000000000000000]}, 0x8)
fcntl$setstatus(r2, 0x4, 0x400)
fcntl$setstatus(r2, 0x4, 0x4000)

1.069386872s ago: executing program 6 (id=5690):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x14)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r3, 0x4020aeb2, &(0x7f0000000740)={0x0, 0x12c, @pic={0x0, 0x0, 0x0, 0x0, 0x1}})

993.73587ms ago: executing program 5 (id=5691):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000001c0)={'ip6gre0\x00', 0x0})

904.414099ms ago: executing program 8 (id=5692):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNSETLINK(r2, 0x400454cd, 0x339)

877.771021ms ago: executing program 4 (id=5693):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000100)={0x0, 0x4000})

831.110556ms ago: executing program 6 (id=5694):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ec0), r2)
sendmsg$IEEE802154_START_REQ(r2, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000f00)={0x14, r3, 0x1, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x2000008c}, 0x8010)

812.815748ms ago: executing program 7 (id=5695):
rt_sigaction(0xd, &(0x7f0000000540)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x100000001]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, 0x0, 0x0)

751.191904ms ago: executing program 5 (id=5696):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
ioctl$TUNSETLINK(r2, 0x400454cd, 0x324)

648.967244ms ago: executing program 6 (id=5697):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r2, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4)

612.718728ms ago: executing program 4 (id=5698):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
ioctl$UI_SET_KEYBIT(r3, 0x40045565, 0x143)

611.770138ms ago: executing program 8 (id=5699):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r0, 0x0, r3, 0x0, 0x39000, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r4=>0x0)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x3ff})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timer_settime(r4, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
splice(r2, 0x0, r1, 0x0, 0x408cd, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfffffe3e)

539.112695ms ago: executing program 7 (id=5700):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c0017"], 0x38}}, 0x0)

422.096047ms ago: executing program 4 (id=5701):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
rt_sigaction(0x11, &(0x7f0000000140)={0x0, 0x40000002, 0x0, {[0xd5d]}}, 0x0, 0x8, &(0x7f0000000280))

420.902077ms ago: executing program 5 (id=5702):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/ip6_flowlabel\x00')
statx(r2, 0x0, 0x7000, 0x200, 0x0)

342.183335ms ago: executing program 6 (id=5703):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000000)="0900bf65653f47f4020000008bd458d1e7cbdaf300000f34e7e4165f081ae36850f6d15c3e681411f7a496c0da04003c242f5bedaf6bec340dee49474362b24cb800edc500", 0x0, 0x48)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r3, 0xffffffffffffffff, 0x200000000000000)

285.033771ms ago: executing program 7 (id=5704):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = open(&(0x7f0000000300)='.\x00', 0x100000, 0x0)
flock(r2, 0x1)
flock(r2, 0x1)

240.293456ms ago: executing program 5 (id=5705):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_int(r2, 0x0, 0x5, &(0x7f0000000080)=0x9, 0x4)
setsockopt$MRT_ADD_MFC(r2, 0x0, 0x5, &(0x7f0000000040)={@rand_addr=0x64010102, @private=0xa010101, 0xfffa, "66e5aff8e7eb3af1f6cec2e74200fcff8b84aea317000023f84992000400", 0x96bd, 0x1000003, 0xfffffff9, 0xfffffff9}, 0x3c)

197.66145ms ago: executing program 4 (id=5706):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
socket(0x1e, 0x4, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000d379)={&(0x7f0000000200)={0x18, 0x14, 0x301, 0x0, 0x0, {0x1e}, [@generic="c1"]}, 0x18}}, 0x0)

84.107191ms ago: executing program 6 (id=5707):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r2 = socket(0x2, 0x2, 0x0)
setsockopt$inet_icmp_ICMP_FILTER(r2, 0x1, 0x1, &(0x7f0000000000)={0x1}, 0x4)

6.397509ms ago: executing program 7 (id=5708):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x2c, &(0x7f0000000140)=0x1, 0x4)

4.002959ms ago: executing program 5 (id=5709):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000007, 0x20031, 0xffffffffffffffff, 0xffffe000)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffa000/0x2000)=nil)
remap_file_pages(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x7, 0x80000)

0s ago: executing program 4 (id=5710):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
lseek(r2, 0x0, 0x1)

kernel console output (not intermixed with test programs):

in process `syz.0.1867'.
[  251.029681][ T8917] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1874'.
[  251.702847][   T26] audit: type=1326 audit(1763144183.598:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  251.754571][ T8942] netlink: 'syz.5.1886': attribute type 4 has an invalid length.
[  251.757858][   T26] audit: type=1326 audit(1763144183.598:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  251.840527][   T26] audit: type=1326 audit(1763144183.626:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  251.897173][   T26] audit: type=1326 audit(1763144183.626:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  251.992486][   T26] audit: type=1326 audit(1763144183.626:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  252.094684][   T26] audit: type=1326 audit(1763144183.626:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  252.125453][ T8950] x_tables: duplicate underflow at hook 1
[  252.171206][   T26] audit: type=1326 audit(1763144183.636:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  252.264238][   T26] audit: type=1326 audit(1763144183.636:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  252.389230][   T26] audit: type=1326 audit(1763144183.636:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  252.468601][   T26] audit: type=1326 audit(1763144183.636:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8939 comm="syz.3.1885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  252.852296][ T8977] loop5: detected capacity change from 0 to 1024
[  252.909763][ T8977] EXT4-fs: Ignoring removed orlov option
[  252.994856][ T8977] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  253.237359][ T6058] EXT4-fs (loop5): unmounting filesystem.
[  254.683407][ T9001] loop3: detected capacity change from 0 to 40427
[  255.752094][ T9070] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1943'.
[  257.269830][ T9105] netlink: 92 bytes leftover after parsing attributes in process `syz.6.1958'.
[  258.716195][ T9146] tipc: Started in network mode
[  258.726100][ T9146] tipc: Node identity 0000000000002d210000000000000001, cluster identity 4711
[  258.754042][ T9146] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  259.087124][ T9156] binder: 9154:9156 ioctl 40046205 0 returned -22
[  259.805060][ T9175] overlayfs: failed to resolve '/J�v��z/': -2
[  260.107868][ T9188] binder_alloc: binder_alloc_mmap_handler: 9187 2000000a0000-2000000a2000 already mapped failed -16
[  260.298429][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  260.304855][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  260.479321][ T9201] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2003'.
[  260.580888][ T9204] Bluetooth: MGMT ver 1.22
[  260.597338][ T9206] tipc: Started in network mode
[  260.618338][ T9206] tipc: Node identity ac14140f, cluster identity 4711
[  260.676890][ T9206] tipc: New replicast peer: 255.255.255.255
[  260.694988][ T9206] tipc: Enabled bearer <udp:syz2>, priority 10
[  260.733593][ T9210] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2004'.
[  260.744007][ T9210] tipc: Disabling bearer <udp:syz2>
[  261.279827][ T9229] netlink: 76 bytes leftover after parsing attributes in process `syz.6.2015'.
[  261.534907][ T9240] netlink: 52 bytes leftover after parsing attributes in process `syz.6.2021'.
[  263.381013][ T9287] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  263.508355][ T9291] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  264.161856][   T26] kauditd_printk_skb: 46 callbacks suppressed
[  264.161874][   T26] audit: type=1107 audit(1763144195.290:188): pid=9304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  264.304109][ T9307] 8021q: adding VLAN 0 to HW filter on device bond0
[  264.352076][ T9315] loop3: detected capacity change from 0 to 1024
[  264.369243][ T9307] bond0: (slave rose0): Enslaving as an active interface with an up link
[  264.577318][ T5716] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  264.629589][ T4408] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  264.724384][ T9324] tipc: Started in network mode
[  264.761737][ T9324] tipc: Node identity 0000000000002d210000000000000001, cluster identity 4711
[  264.822909][ T9324] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  265.090631][ T9333] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[  265.873937][ T9366] netlink: 182 bytes leftover after parsing attributes in process `syz.3.2074'.
[  267.619474][ T9428] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2095'.
[  268.801281][ T9464] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2108'.
[  269.363625][ T9479] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[  269.807080][ T9491] netlink: 84 bytes leftover after parsing attributes in process `syz.6.2117'.
[  269.855734][ T9491] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2117'.
[  273.847311][ T9629] device veth0_to_bond entered promiscuous mode
[  273.873584][ T9632] IPv6: NLM_F_CREATE should be specified when creating new route
[  274.008491][ T9635] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2176'.
[  274.150641][ T4320] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  274.353723][ T4320] usb 4-1: too many configurations: 244, using maximum allowed: 8
[  274.384736][ T4320] usb 4-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  274.407136][ T4320] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  274.415230][ T4320] usb 4-1: Product: syz
[  274.430553][ T4320] usb 4-1: Manufacturer: syz
[  274.446230][ T4320] usb 4-1: SerialNumber: syz
[  274.729103][ T4320] rtl8150 4-1:1.0: couldn't reset the device
[  274.735417][ T4320] rtl8150: probe of 4-1:1.0 failed with error -5
[  274.789180][ T4320] usb 4-1: USB disconnect, device number 5
[  274.884229][ T9666] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2190'.
[  276.957198][ T9734] netlink: 156 bytes leftover after parsing attributes in process `syz.5.2220'.
[  277.015369][ T9734] netlink: 156 bytes leftover after parsing attributes in process `syz.5.2220'.
[  278.078207][ T9770] netlink: 128 bytes leftover after parsing attributes in process `syz.2.2237'.
[  279.582362][ T9815] netlink: 68 bytes leftover after parsing attributes in process `syz.5.2256'.
[  282.954881][ T9927] Zero length message leads to an empty skb
[  284.911238][ T9971] binder: 9970:9971 ioctl c0306201 200000000280 returned -14
[  285.604032][ T9998] netlink: 68 bytes leftover after parsing attributes in process `syz.6.2333'.
[  285.847041][T10003] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2335'.
[  285.865495][T10003] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  285.901547][T10003] batman_adv: batadv0: Removing interface: batadv_slave_0
[  285.910254][T10003] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  285.918062][T10003] batman_adv: batadv0: Removing interface: batadv_slave_1
[  286.041110][ T9995] loop5: detected capacity change from 0 to 32768
[  286.057344][ T9995] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop5 scanned by syz.5.2332 (9995)
[  286.084625][ T9995] BTRFS info (device loop5): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  286.095292][ T9995] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  286.105678][ T9995] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  286.116812][ T9995] BTRFS info (device loop5): use zstd compression, level 3
[  286.124185][ T9995] BTRFS info (device loop5): using free space tree
[  286.456794][ T9995] BTRFS info (device loop5): enabling ssd optimizations
[  286.983167][ T6058] BTRFS info (device loop5): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  287.242727][ T4408] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 10 /dev/loop5 scanned by udevd (4408)
[  288.179761][T10077] netlink: 'syz.6.2359': attribute type 2 has an invalid length.
[  288.220065][T10077] netlink: 1 bytes leftover after parsing attributes in process `syz.6.2359'.
[  288.750554][T10095] loop5: detected capacity change from 0 to 1024
[  289.097830][T10107] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2372'.
[  289.324252][T10113] netlink: 288 bytes leftover after parsing attributes in process `syz.0.2376'.
[  290.142374][   T26] audit: type=1326 audit(1763144219.667:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.166276][   T26] audit: type=1326 audit(1763144219.667:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.264806][   T26] audit: type=1326 audit(1763144219.667:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.365022][   T26] audit: type=1326 audit(1763144219.667:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.456227][   T26] audit: type=1326 audit(1763144219.667:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.486645][   T26] audit: type=1326 audit(1763144219.667:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.536341][   T26] audit: type=1326 audit(1763144219.667:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.588888][   T26] audit: type=1326 audit(1763144219.667:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.631910][   T26] audit: type=1326 audit(1763144219.667:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.662099][   T26] audit: type=1326 audit(1763144219.667:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10142 comm="syz.5.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f295f98f6c9 code=0x7ffc0000
[  290.741728][ T4334] usb 4-1: new low-speed USB device number 6 using dummy_hcd
[  290.889455][T10168] netlink: 'syz.6.2402': attribute type 19 has an invalid length.
[  290.970206][ T4334] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0
[  291.002760][ T4334] usb 4-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  291.053157][ T4334] usb 4-1: config 0 interface 0 has no altsetting 0
[  291.059861][ T4334] usb 4-1: New USB device found, idVendor=056a, idProduct=00c5, bcdDevice= 0.00
[  291.116941][ T4334] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.126901][ T4334] usb 4-1: config 0 descriptor??
[  291.370961][ T4334] usbhid 4-1:0.0: can't add hid device: -71
[  291.388212][ T4334] usbhid: probe of 4-1:0.0 failed with error -71
[  291.417317][ T4334] usb 4-1: USB disconnect, device number 6
[  293.333549][T10251] loop5: detected capacity change from 0 to 7
[  294.678831][T10298] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  295.480143][T10322] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2474'.
[  300.304338][T10463] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2534'.
[  300.383493][T10467] netlink: 140 bytes leftover after parsing attributes in process `syz.5.2536'.
[  300.733493][T10473] kvm: pic: non byte read
[  300.738617][T10473] kvm: pic: non byte read
[  300.772931][T10473] kvm: pic: non byte read
[  300.777648][T10473] kvm: pic: non byte read
[  300.782544][T10473] kvm: pic: single mode not supported
[  300.782679][T10473] kvm: pic: non byte read
[  300.833334][T10473] kvm: pic: non byte read
[  300.853131][T10473] kvm: pic: non byte read
[  300.873512][T10473] kvm: pic: non byte read
[  300.889104][T10473] kvm: pic: non byte read
[  303.754650][T10551] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2574'.
[  304.365617][T10570] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2583'.
[  305.107000][T10594] loop5: detected capacity change from 0 to 128
[  306.067708][ T5716] kworker/u4:11: attempt to access beyond end of device
[  306.067708][ T5716] loop5: rw=1, sector=145, nr_sectors = 896 limit=128
[  306.165348][   T47] Bluetooth: hci4: command 0x0406 tx timeout
[  307.192999][T10638] loop5: detected capacity change from 0 to 8
[  307.396457][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  307.396473][   T26] audit: type=1326 audit(1763144235.863:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  307.507934][   T26] audit: type=1326 audit(1763144235.891:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  307.584596][   T26] audit: type=1326 audit(1763144235.900:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  307.641858][   T26] audit: type=1326 audit(1763144235.900:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  307.670520][   T26] audit: type=1326 audit(1763144235.900:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  307.694922][   T26] audit: type=1326 audit(1763144235.947:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  307.718331][   T26] audit: type=1326 audit(1763144235.947:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f047338f703 code=0x7ffc0000
[  307.741324][   T26] audit: type=1326 audit(1763144235.947:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f047338f787 code=0x7ffc0000
[  307.794212][   T26] audit: type=1326 audit(1763144235.947:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f0473346b3d code=0x7ffc0000
[  307.859713][   T26] audit: type=1326 audit(1763144235.947:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10642 comm="syz.3.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f04733c3e09 code=0x7ffc0000
[  308.180949][T10667] loop5: detected capacity change from 0 to 128
[  308.218547][T10667] FAT-fs (loop5): Unrecognized mount option "18446744073709551615���" or missing value
[  309.458445][   T41] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  309.667416][   T41] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  309.695896][   T41] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  309.727921][   T41] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  309.781320][   T41] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  309.816981][   T41] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.861549][   T41] usb 1-1: config 0 descriptor??
[  310.371164][   T41] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  310.452104][   T41] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  311.280760][   T47] Bluetooth: hci2: command 0x0407 tx timeout
[  311.841251][T10760] netlink: 196 bytes leftover after parsing attributes in process `syz.5.2669'.
[  312.117888][    C0] plantronics 0003:047F:FFFF.0004: usb_submit_urb(ctrl) failed: -1
[  313.018776][   T41] usb 1-1: USB disconnect, device number 8
[  313.463433][T10807] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2690'.
[  313.736337][T10819] binder: 10818:10819 ioctl c0306201 200000000080 returned -14
[  313.752908][T10817] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  313.892934][T10817] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  313.967627][T10817] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  316.429524][T10888] netlink: 'syz.6.2726': attribute type 17 has an invalid length.
[  316.853961][T10898] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  316.885452][T10898] overlayfs: missing 'lowerdir'
[  318.670351][T10955] tipc: New replicast peer: 255.255.255.255
[  318.688139][T10955] tipc: Enabled bearer <udp:syz2>, priority 10
[  320.066184][T11002] fuse: Bad value for 'fd'
[  320.588022][T10984] loop0: detected capacity change from 0 to 32768
[  320.633476][T10984] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.2771 (10984)
[  320.713972][T10984] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  320.768718][T10984] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  320.815725][T10984] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  320.873088][T10984] BTRFS info (device loop0): force zstd compression, level 3
[  320.880929][T10984] BTRFS info (device loop0): turning on sync discard
[  320.913806][T10984] BTRFS info (device loop0): force clearing of disk cache
[  320.943238][T10984] BTRFS info (device loop0): enabling disk space caching
[  320.979695][T10984] BTRFS info (device loop0): turning off discard
[  320.991063][T10984] BTRFS info (device loop0): disk space caching is enabled
[  321.440354][T11063] binder: 11060:11063 ioctl 40046205 0 returned -22
[  321.550765][T10984] BTRFS info (device loop0): enabling ssd optimizations
[  321.564264][T10984] BTRFS info (device loop0): rebuilding free space tree
[  321.720448][T10984] BTRFS info (device loop0): disabling free space tree
[  321.749643][T10984] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  321.787117][T11073] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  321.799450][T10984] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  321.820466][T11073] overlayfs: missing 'lowerdir'
[  322.095328][   T26] kauditd_printk_skb: 274 callbacks suppressed
[  322.095344][   T26] audit: type=1800 audit(2000000005.873:500): pid=10984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2771" name="file1" dev="loop0" ino=263 res=0 errno=0
[  322.393145][ T4267] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  323.566678][T11117] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=on.
[  323.777169][T11124] netlink: 'syz.6.2825': attribute type 19 has an invalid length.
[  324.161332][T11136] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  324.986382][T11162] 9pnet: Unknown protocol version 9
[  325.114513][T11165] binder: 11164:11165 ioctl c0306201 200000000080 returned -14
[  325.284614][T11173] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2847'.
[  325.780241][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  325.786673][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  326.095865][T11204] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=on.
[  326.477183][T11216] netlink: 'syz.5.2867': attribute type 6 has an invalid length.
[  326.566222][T11216] netlink: 'syz.5.2867': attribute type 6 has an invalid length.
[  328.436846][T11263] xt_connbytes: Forcing CT accounting to be enabled
[  328.444276][T11263] Cannot find set identified by id 0 to match
[  328.834610][T11273] binder: 11271:11273 unknown command 0
[  328.845307][T11273] binder: 11271:11273 ioctl c0306201 200000000300 returned -22
[  329.440235][T11289] Bluetooth: MGMT ver 1.22
[  330.655588][T11317] netlink: 'syz.0.2916': attribute type 11 has an invalid length.
[  331.192434][   T26] audit: type=1326 audit(2000000014.420:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11333 comm="syz.3.2923" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f047338f6c9 code=0x0
[  332.060554][T11360] loop2: detected capacity change from 0 to 128
[  332.090228][T11360] EXT4-fs: Ignoring removed nobh option
[  332.156529][T11360] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  332.210725][T11360] ext4 filesystem being mounted at /594/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  332.485417][ T4281] EXT4-fs (loop2): unmounting filesystem.
[  334.866270][T11451] netlink: 'syz.3.2976': attribute type 4 has an invalid length.
[  335.220064][T11463] netlink: 156 bytes leftover after parsing attributes in process `syz.6.2981'.
[  335.239889][T11463] netlink: 156 bytes leftover after parsing attributes in process `syz.6.2981'.
[  335.474415][T11468] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2986'.
[  335.512772][T11470] tipc: Enabling of bearer <ic:h> rejected, media not registered
[  335.885120][T11482] block device autoloading is deprecated and will be removed.
[  337.268184][T11533] raw_sendmsg: syz.2.3015 forgot to set AF_INET. Fix it!
[  338.068543][T11562] netlink: 328 bytes leftover after parsing attributes in process `syz.3.3028'.
[  338.352748][T11570] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3033'.
[  338.376123][T11570] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3033'.
[  338.574652][T11576] netlink: 100 bytes leftover after parsing attributes in process `syz.6.3035'.
[  339.261965][T11601] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3046'.
[  339.282641][   T11] tipc: Subscription rejected, illegal request
[  340.023785][T11628] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3059'.
[  340.150310][T11632] loop3: detected capacity change from 0 to 256
[  340.299989][T11636] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3063'.
[  340.812076][T11653] netlink: 140 bytes leftover after parsing attributes in process `syz.6.3071'.
[  341.374492][T11641] Bluetooth: hci0: Opcode 0x0c20 failed: -4
[  342.659659][   T47] Bluetooth: hci0: command 0x0c20 tx timeout
[  342.743447][T11712] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3099'.
[  343.298322][T11729] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3107'.
[  343.615809][T11740] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3107'.
[  344.156030][T11760] netlink: 96 bytes leftover after parsing attributes in process `syz.5.3118'.
[  344.383616][T11764] netlink: 104 bytes leftover after parsing attributes in process `syz.5.3120'.
[  345.675605][T11802] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3137'.
[  345.731826][T11806] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3137'.
[  347.735659][T11844] loop0: detected capacity change from 0 to 128
[  348.649842][ T4267] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fff0000)
[  348.658386][ T4267] FAT-fs (loop0): Filesystem has been set read-only
[  349.398724][T11881] netlink: 'syz.2.3174': attribute type 4 has an invalid length.
[  349.873232][T11898] binder: 11897:11898 ioctl c0306201 200000000680 returned -14
[  349.987606][   T51] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  350.161421][   T51] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  350.377529][   T51] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  350.411058][T11909] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3188'.
[  350.554789][   T51] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  350.683325][T11916] netlink: 60 bytes leftover after parsing attributes in process `syz.6.3191'.
[  351.465066][   T51] tipc: Left network mode
[  352.604003][ T4320] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  352.794870][ T4286] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  352.808254][ T4320] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  352.818618][ T4286] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  352.827273][ T4320] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  352.836351][ T4286] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  352.845187][ T4286] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  352.853057][ T4286] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  352.860637][ T4286] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  352.872381][ T4320] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  352.917482][ T4320] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  352.925837][ T4320] usb 3-1: SerialNumber: syz
[  353.171692][ T4320] usb 3-1: 0:2 : does not exist
[  353.286216][ T4320] usb 3-1: USB disconnect, device number 7
[  353.607950][ T4408] udevd[4408]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  354.276615][T11954] chnl_net:caif_netlink_parms(): no params data found
[  354.397283][   T51] device hsr_slave_0 left promiscuous mode
[  354.427275][   T51] device hsr_slave_1 left promiscuous mode
[  354.441196][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  354.458587][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  354.482914][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  354.507727][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  354.619453][   T51] device bridge_slave_1 left promiscuous mode
[  354.626582][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  354.675203][   T51] device bridge_slave_0 left promiscuous mode
[  354.681520][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  354.716219][T11998] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3217'.
[  354.804443][   T51] device veth1_macvtap left promiscuous mode
[  354.816940][   T51] device veth0_macvtap left promiscuous mode
[  354.843059][   T51] device veth1_vlan left promiscuous mode
[  354.848906][   T51] device veth0_vlan left promiscuous mode
[  355.024087][   T47] Bluetooth: hci0: command 0x0409 tx timeout
[  356.399586][   T51] team0 (unregistering): Port device team_slave_1 removed
[  356.493341][   T51] team0 (unregistering): Port device team_slave_0 removed
[  356.593839][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  356.712346][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  357.247995][   T47] Bluetooth: hci0: command 0x041b tx timeout
[  357.658763][   T51] bond0 (unregistering): Released all slaves
[  357.809569][T12025] netlink: 'syz.2.3225': attribute type 6 has an invalid length.
[  358.022814][T11954] bridge0: port 1(bridge_slave_0) entered blocking state
[  358.065716][T11954] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.085098][T11954] device bridge_slave_0 entered promiscuous mode
[  358.124346][T11954] bridge0: port 2(bridge_slave_1) entered blocking state
[  358.184889][T11954] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.207576][T11954] device bridge_slave_1 entered promiscuous mode
[  358.337581][T11954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  358.361697][T11954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  358.506649][T11954] team0: Port device team_slave_0 added
[  358.542348][T11954] team0: Port device team_slave_1 added
[  358.609130][T11954] batman_adv: batadv0: Adding interface: batadv_slave_0
[  358.623466][T11954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  358.724195][T11954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  358.752757][T11954] batman_adv: batadv0: Adding interface: batadv_slave_1
[  358.761341][T11954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  358.825266][T11954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  358.859471][    C0] vcan0: j1939_tp_rxtimer: 0xffff888058987800: rx timeout, send abort
[  359.012659][T11954] device hsr_slave_0 entered promiscuous mode
[  359.048864][T11954] device hsr_slave_1 entered promiscuous mode
[  359.065294][T11954] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  359.087285][T11954] Cannot create hsr debugfs directory
[  359.402375][    C0] vcan0: j1939_tp_rxtimer: 0xffff888058987800: abort rx timeout. Force session deactivation
[  359.457502][   T47] Bluetooth: hci0: command 0x040f tx timeout
[  359.715841][   T47] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  359.725001][   T47] Bluetooth: hci2: Injecting HCI hardware error event
[  359.735019][ T4286] Bluetooth: hci2: hardware error 0x00
[  359.789988][T12096] binder: 12094:12096 ioctl c0306201 200000000940 returned -14
[  359.890911][T11954] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  360.045184][T11954] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  360.066153][T11954] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  360.134490][T11954] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  360.469615][T11954] 8021q: adding VLAN 0 to HW filter on device bond0
[  360.526677][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  360.555872][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  360.601215][T11954] 8021q: adding VLAN 0 to HW filter on device team0
[  360.643891][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  360.682293][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  360.708900][T12089] loop5: detected capacity change from 0 to 40427
[  360.724629][ T4358] bridge0: port 1(bridge_slave_0) entered blocking state
[  360.731885][ T4358] bridge0: port 1(bridge_slave_0) entered forwarding state
[  360.775698][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  360.780547][T12089] F2FS-fs (loop5): build fault injection attr: rate: 771, type: 0x3ffff
[  360.825730][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  360.858855][ T4358] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.866076][ T4358] bridge0: port 2(bridge_slave_1) entered forwarding state
[  360.880700][T12089] F2FS-fs (loop5): invalid crc value
[  360.915877][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  360.938487][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  360.951375][T12089] F2FS-fs (loop5): Found nat_bits in checkpoint
[  360.973191][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  361.043841][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  361.083072][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  361.112204][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  361.160709][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  361.198458][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  361.248547][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  361.268143][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  361.288067][T12089] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  361.307956][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  361.350553][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  361.374670][T11954] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  361.582954][T12089] syz.5.3245: attempt to access beyond end of device
[  361.582954][T12089] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  361.674495][   T47] Bluetooth: hci0: command 0x0419 tx timeout
[  361.923673][ T6058] syz-executor: attempt to access beyond end of device
[  361.923673][ T6058] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  361.941248][ T4286] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  362.080993][T12150] overlayfs: workdir and upperdir must be separate subtrees
[  362.472857][T12158] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3264'.
[  362.608035][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  362.634247][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  362.672530][T11954] 8021q: adding VLAN 0 to HW filter on device batadv0
[  364.763543][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  364.778314][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  364.859401][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  364.881872][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  364.929763][T11954] device veth0_vlan entered promiscuous mode
[  364.969481][T11954] device veth1_vlan entered promiscuous mode
[  365.020694][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  365.037842][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  365.082301][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  365.152743][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  365.177995][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  365.247430][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  365.293455][T11954] device veth0_macvtap entered promiscuous mode
[  365.329552][T11954] device veth1_macvtap entered promiscuous mode
[  365.399112][T11954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.432632][T11954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.459782][T11954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.511911][T11954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.551497][T11954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.586265][T11954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.618675][T11954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  365.650161][T11954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.689714][T11954] batman_adv: batadv0: Interface activated: batadv_slave_0
[  365.748462][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  365.757503][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  365.803778][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  365.835835][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  365.870104][T11954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  365.891996][T11954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.906872][T11954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  365.930733][T11954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.951327][T11954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  365.972976][T11954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  365.990173][T11954] batman_adv: batadv0: Interface activated: batadv_slave_1
[  366.003171][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  366.028437][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  366.073891][T11954] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  366.106228][T11954] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  366.138685][T11954] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  366.149240][T12247] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[  366.163062][T11954] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  366.464056][T10440] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  366.494508][T10440] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  366.562537][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  366.586699][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  366.594743][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  366.639032][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  368.663112][T12309] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[  369.224540][T12326] netlink: 'syz.6.3321': attribute type 4 has an invalid length.
[  369.754850][   T11] tipc: Subscription rejected, illegal request
[  369.766958][T12346] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3328'.
[  371.206736][   T26] audit: type=1326 audit(2000000051.957:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  371.273204][   T26] audit: type=1326 audit(2000000051.957:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  371.361602][   T26] audit: type=1326 audit(2000000051.957:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  371.484537][T12391] overlayfs: failed to clone lowerpath
[  371.526140][   T26] audit: type=1326 audit(2000000051.957:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  371.634778][   T26] audit: type=1326 audit(2000000051.966:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  371.747644][   T26] audit: type=1326 audit(2000000051.966:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  371.882496][   T26] audit: type=1326 audit(2000000051.966:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  372.049820][   T26] audit: type=1326 audit(2000000051.966:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  372.602838][   T26] audit: type=1326 audit(2000000051.966:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  372.710694][   T26] audit: type=1326 audit(2000000051.966:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12387 comm="syz.2.3340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  372.745434][T12407] ksmbd: Unknown IPC event: 4, ignore.
[  373.552456][T12435] loop3: detected capacity change from 0 to 128
[  374.810007][T12444] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3362'.
[  376.900950][T12498] 9pnet_fd: Insufficient options for proto=fd
[  377.406850][ T4334] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[  377.635289][ T4334] usb 3-1: config 1 has an invalid interface number: 105 but max is 0
[  377.663691][ T4334] usb 3-1: config 1 has no interface number 0
[  377.671068][ T4334] usb 3-1: config 1 interface 105 has no altsetting 0
[  377.703092][ T4334] usb 3-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=31.6d
[  377.727122][ T4334] usb 3-1: New USB device strings: Mfr=107, Product=102, SerialNumber=146
[  377.747417][ T4334] usb 3-1: Product: syz
[  377.767708][ T4334] usb 3-1: Manufacturer: syz
[  377.784834][ T4334] usb 3-1: SerialNumber: syz
[  378.023712][T12529] binder_alloc: binder_alloc_mmap_handler: 12528 200000ffc000-200000fff000 already mapped failed -16
[  378.395406][T12538] device wg2 entered promiscuous mode
[  378.439925][ T4334] aqc111 3-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x20) reg index 0x0000: -71
[  378.462420][ T4334] aqc111: probe of 3-1:1.105 failed with error -71
[  378.506924][ T4334] usb 3-1: USB disconnect, device number 8
[  379.224144][T12418] Set syz1 is full, maxelem 65536 reached
[  379.270663][T12562] overlayfs: missing 'lowerdir'
[  379.289060][T12564] binder: 12563:12564 ioctl c0306201 200000000080 returned -14
[  381.219305][T12617] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3434'.
[  382.533288][T12650] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3448'.
[  382.855497][T12663] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3451'.
[  385.089297][T12723] loop3: detected capacity change from 0 to 128
[  386.721794][T12750] loop5: detected capacity change from 0 to 2048
[  386.822859][T12750] EXT4-fs (loop5): failed to initialize system zone (-117)
[  386.852835][T12750] EXT4-fs (loop5): mount failed
[  387.626482][T12768] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  387.668720][T12768] overlayfs: missing 'lowerdir'
[  389.488540][T12822] loop2: detected capacity change from 0 to 256
[  389.563805][ T4408] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  389.710693][T12803] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  390.894679][T12862] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3527'.
[  391.278889][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  391.285712][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  392.470676][T12893] netlink: 182 bytes leftover after parsing attributes in process `syz.6.3542'.
[  393.621932][T12918] syz.3.3551 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  395.272377][T12960] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3565'.
[  395.420245][T12966] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3568'.
[  395.459883][T12966] 9pnet_fd: Insufficient options for proto=fd
[  396.219056][T12991] binder: 12990:12991 ioctl c018620c 200000000180 returned -1
[  397.126190][T13024] overlayfs: overlapping lowerdir path
[  397.689895][T13038] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3592'.
[  398.125830][T13053] loop3: detected capacity change from 0 to 128
[  398.221496][ T4408] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  398.562088][ T7383] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  398.626132][ T7383] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  398.888126][T13066] Invalid ELF header len 1
[  399.816496][T13097] overlayfs: overlapping lowerdir path
[  400.311945][T13110] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  401.086624][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  401.086640][   T26] audit: type=1326 audit(2000000079.981:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13127 comm="syz.5.3623" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f295f98f6c9 code=0x0
[  401.124350][T13133] netlink: 108 bytes leftover after parsing attributes in process `syz.3.3624'.
[  401.693086][T13148] netlink: 17 bytes leftover after parsing attributes in process `syz.3.3629'.
[  404.561142][T13192] Bluetooth: MGMT ver 1.22
[  407.632329][T13278] overlayfs: failed to resolve './file0': -2
[  408.005561][T13287] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3676'.
[  408.521303][T13293] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3679'.
[  409.846689][T13315] netlink: 17 bytes leftover after parsing attributes in process `syz.5.3690'.
[  412.480850][T13354] netlink: 92 bytes leftover after parsing attributes in process `syz.7.3693'.
[  412.998246][T13367] x_tables: duplicate underflow at hook 2
[  413.809629][T13394] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3722'.
[  414.026463][T13398] bpf: Bad value for 'mode'
[  414.153010][T13404] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3727'.
[  416.176725][T13471] netlink: 20 bytes leftover after parsing attributes in process `syz.7.3758'.
[  416.910363][T13497] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  419.071114][T13558] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3798'.
[  419.320511][T13564] loop5: detected capacity change from 0 to 1024
[  419.442912][T13564] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  419.724421][ T6058] EXT4-fs (loop5): unmounting filesystem.
[  420.653270][   T26] audit: type=1326 audit(2000000098.342:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  420.706396][   T26] audit: type=1326 audit(2000000098.370:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  420.769530][   T26] audit: type=1326 audit(2000000098.370:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  420.842325][   T26] audit: type=1326 audit(2000000098.370:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  420.969009][   T26] audit: type=1326 audit(2000000098.370:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  421.039109][   T26] audit: type=1326 audit(2000000098.370:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  421.111946][   T26] audit: type=1326 audit(2000000098.370:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  421.166665][   T26] audit: type=1326 audit(2000000098.379:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  421.267330][   T26] audit: type=1326 audit(2000000098.379:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=40000003 syscall=69 compat=1 ip=0x200000000006 code=0x7ffc0000
[  421.350791][   T26] audit: type=1326 audit(2000000098.379:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.3.3820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f047338f6c9 code=0x7ffc0000
[  421.362116][T13628] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3827'.
[  424.240203][T13716] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  424.376208][T13716] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  424.388268][T13716] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  424.423147][T13725] netlink: 'syz.2.3871': attribute type 11 has an invalid length.
[  424.484164][T13722] loop5: detected capacity change from 0 to 8192
[  424.589223][T13718] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3869'.
[  424.957448][T13737] overlayfs: overlapping lowerdir path
[  425.428275][T13753] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3885'.
[  425.613766][T13761] devpts: called with bogus options
[  425.963219][T13775] binder: Bad value for 'max'
[  427.080959][T13825] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3919'.
[  427.312407][T13835] Invalid ELF header type: 3 != 1
[  428.767985][T13867] overlayfs: conflicting lowerdir path
[  429.078718][T13877] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3945'.
[  429.261557][T13885] device erspan0 entered promiscuous mode
[  429.652260][T13902] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  429.693235][T13902] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  429.727413][T13902] 8021q: adding VLAN 0 to HW filter on device team0
[  429.761642][T13902] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  431.008556][T13952] netlink: 'syz.7.3972': attribute type 6 has an invalid length.
[  431.017148][T13952] IPv6: NLM_F_CREATE should be specified when creating new route
[  432.477098][T13983] netlink: 168864 bytes leftover after parsing attributes in process `syz.7.3986'.
[  432.516686][T13983] netlink: zone id is out of range
[  432.571196][T13985] binder: 13984:13985 unknown command 0
[  432.577205][T13985] binder: 13984:13985 ioctl c0306201 200000000080 returned -22
[  433.215365][T14011] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  433.502353][T14018] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4003'.
[  434.132520][T14033] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4009'.
[  434.172365][T14035] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4011'.
[  434.535202][T14047] netlink: 'syz.6.4017': attribute type 11 has an invalid length.
[  439.156363][T14187] netlink: 'syz.6.4077': attribute type 10 has an invalid length.
[  439.199893][T14187] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  439.222603][T14186] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  439.367510][T14195] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4081'.
[  440.367898][   T41] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  440.400669][T14237] netlink: 'syz.6.4102': attribute type 1 has an invalid length.
[  440.428493][T14237] device bond1 entered promiscuous mode
[  440.434920][T14237] 8021q: adding VLAN 0 to HW filter on device bond1
[  440.458064][T14237] device bridge0 entered promiscuous mode
[  440.465463][T14237] bond1: (slave bridge0): Enslaving as a backup interface with an up link
[  440.551214][ T6338] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  440.565140][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  440.585050][   T41] usb 3-1: config 0 has no interfaces?
[  440.599103][   T41] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  440.631889][   T41] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.664379][   T41] usb 3-1: Product: syz
[  440.669301][   T41] usb 3-1: Manufacturer: syz
[  440.673984][   T41] usb 3-1: SerialNumber: syz
[  440.698823][   T41] usb 3-1: config 0 descriptor??
[  440.720322][ T4465] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  440.975411][T10051] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  441.108711][T14219] device veth0_vlan left promiscuous mode
[  441.123303][T14219] device veth0_vlan entered promiscuous mode
[  441.144594][T14222] tipc: Bearer <eth:macvlan0>: already 2 bearers with priority 10
[  441.169001][T14222] tipc: Bearer <eth:macvlan0>: trying with adjusted priority
[  441.184578][T14222] tipc: Enabled bearer <eth:macvlan0>, priority 9
[  441.191570][T10051] usb 6-1: Using ep0 maxpacket: 32
[  441.220185][T10051] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  441.222566][ T9934] usb 3-1: USB disconnect, device number 9
[  441.260059][T10051] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  441.292126][T10051] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  441.308537][T10051] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.335943][T10051] usb 6-1: config 0 descriptor??
[  441.647034][   T47] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  441.662771][   T47] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  441.679150][   T47] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  441.688614][   T47] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  441.697017][   T47] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  441.706375][   T47] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  441.797537][T10051] savu 0003:1E7D:2D5A.0006: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.5-1/input0
[  442.180025][   T41] usb 6-1: USB disconnect, device number 8
[  442.428516][T14264] chnl_net:caif_netlink_parms(): no params data found
[  442.500666][T14287] tipc: Bearer <udp:syz1>: already 2 bearers with priority 10
[  442.508457][T14287] tipc: Bearer <udp:syz1>: trying with adjusted priority
[  442.516474][T14287] tipc: Enabling of bearer <udp:syz1> rejected, max 3 bearers permitted
[  442.979137][   T11] tipc: Resetting bearer <eth:macvlan0>
[  443.259367][   T11] tipc: Disabling bearer <eth:macvlan0>
[  443.556160][T14264] bridge0: port 1(bridge_slave_0) entered blocking state
[  443.569416][T14264] bridge0: port 1(bridge_slave_0) entered disabled state
[  443.601917][T14264] device bridge_slave_0 entered promiscuous mode
[  443.625243][T14264] bridge0: port 2(bridge_slave_1) entered blocking state
[  443.652169][T14264] bridge0: port 2(bridge_slave_1) entered disabled state
[  443.695047][T14264] device bridge_slave_1 entered promiscuous mode
[  443.770449][T14316] overlayfs: missing 'lowerdir'
[  443.781200][T14264] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  443.808239][T14264] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  443.874444][ T4286] Bluetooth: hci1: command 0x0409 tx timeout
[  443.942285][T14264] team0: Port device team_slave_0 added
[  443.966881][T14264] team0: Port device team_slave_1 added
[  444.051253][T14264] batman_adv: batadv0: Adding interface: batadv_slave_0
[  444.098336][T14264] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  444.167518][T14264] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  444.192524][T14264] batman_adv: batadv0: Adding interface: batadv_slave_1
[  444.203093][T14264] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  444.268764][T14264] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  444.334364][T14327] netlink: 28 bytes leftover after parsing attributes in process `syz.6.4140'.
[  444.388754][T14264] device hsr_slave_0 entered promiscuous mode
[  444.418308][T14264] device hsr_slave_1 entered promiscuous mode
[  444.439617][T14264] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  444.450599][T14264] Cannot create hsr debugfs directory
[  444.963507][T14264] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  444.991136][T14264] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  445.016729][T14264] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  445.070053][T14264] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  445.311591][T14264] 8021q: adding VLAN 0 to HW filter on device bond0
[  445.361946][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  445.405074][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  445.445781][T14264] 8021q: adding VLAN 0 to HW filter on device team0
[  445.475244][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  445.484789][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  445.517001][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  445.524291][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  445.569483][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  445.623502][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  445.655303][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  445.686863][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  445.694123][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  445.747683][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  445.791380][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  445.832253][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  445.871760][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  445.900794][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  445.957333][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  445.990045][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  446.005897][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  446.037662][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  446.090541][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  446.102182][   T47] Bluetooth: hci1: command 0x041b tx timeout
[  446.165668][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  446.235066][T14264] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  446.986221][T14264] 8021q: adding VLAN 0 to HW filter on device batadv0
[  447.015227][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  447.030444][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  447.800603][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  447.819219][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  447.925577][T14264] device veth0_vlan entered promiscuous mode
[  447.942581][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  447.954671][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  447.994694][T14264] device veth1_vlan entered promiscuous mode
[  448.022036][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  448.030982][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  448.038903][T14445] netlink: 84 bytes leftover after parsing attributes in process `syz.6.4183'.
[  448.047544][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  448.075670][T14448] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  448.098869][T14448] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  448.198591][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  448.222440][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  448.261143][ T4465] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  448.280244][T14264] device veth0_macvtap entered promiscuous mode
[  448.308640][   T47] Bluetooth: hci1: command 0x040f tx timeout
[  448.323972][T14264] device veth1_macvtap entered promiscuous mode
[  448.345046][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.356845][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.367825][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.378591][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.388754][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.399534][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.410398][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.422328][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.469697][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  448.491998][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.510746][T14264] batman_adv: batadv0: Interface activated: batadv_slave_0
[  448.549100][T14459] netlink: 'syz.5.4189': attribute type 12 has an invalid length.
[  448.576226][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  448.596230][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  448.624248][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  448.683338][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  448.729983][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.768213][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.788145][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.818753][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.829577][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.843363][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.853829][T14264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  448.870331][T14264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  448.892073][T14264] batman_adv: batadv0: Interface activated: batadv_slave_1
[  448.937980][ T4359] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  448.957905][ T4359] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  448.982234][T14264] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  449.022323][T14264] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  449.039930][T14264] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  449.062161][T14264] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  449.274306][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  449.296338][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  449.381633][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  449.419475][ T4530] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  449.447280][ T4530] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  449.476706][ T4359] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  449.749353][T14494] binder: 14493:14494 ioctl 401c5820 200000000000 returned -22
[  450.063142][T14503] netlink: 2 bytes leftover after parsing attributes in process `syz.2.4209'.
[  450.525594][   T47] Bluetooth: hci1: command 0x0419 tx timeout
[  452.174108][T14565] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4236'.
[  452.426362][T14578] netlink: 52 bytes leftover after parsing attributes in process `syz.7.4241'.
[  452.444272][T14580] netlink: 2 bytes leftover after parsing attributes in process `syz.5.4243'.
[  452.879834][T14597] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4251'.
[  452.902654][T14597] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4251'.
[  455.445002][T14678] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4289'.
[  456.765028][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  456.782764][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  456.971951][T10440] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.270137][T10440] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.462446][T10440] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.669048][T10440] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.806583][T14763] netlink: 308 bytes leftover after parsing attributes in process `syz.6.4327'.
[  458.160781][T10440] tipc: Disabling bearer <udp:syz0>
[  458.170116][T10440] tipc: Left network mode
[  458.835275][T14800] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4344'.
[  458.862521][T14797] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  459.290175][T14816] netlink: 64 bytes leftover after parsing attributes in process `syz.6.4349'.
[  459.500601][ T4401] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  459.742247][ T4401] usb 9-1: config 0 has no interfaces?
[  459.750472][ T4401] usb 9-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  459.786970][ T4401] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  459.842387][ T4401] usb 9-1: Product: syz
[  459.856326][ T4401] usb 9-1: Manufacturer: syz
[  459.874712][ T4401] usb 9-1: SerialNumber: syz
[  459.915552][ T4401] usb 9-1: config 0 descriptor??
[  460.626781][T14855] loop5: detected capacity change from 0 to 4096
[  460.765009][T14814] device veth0_vlan left promiscuous mode
[  460.776072][T14855] EXT4-fs: Mount option(s) incompatible with ext3
[  460.791516][T14814] device veth0_vlan entered promiscuous mode
[  460.832862][T14817] tipc: Started in network mode
[  460.837883][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  460.837898][   T26] audit: type=1326 audit(2000000136.048:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  460.890149][T14817] tipc: Node identity aaaaaaaaaa34, cluster identity 4711
[  460.935261][T14817] tipc: Enabled bearer <eth:macvlan0>, priority 10
[  460.972264][   T26] audit: type=1326 audit(2000000136.048:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  461.090269][T10051] usb 9-1: USB disconnect, device number 2
[  461.093035][   T26] audit: type=1326 audit(2000000136.048:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  461.147934][T10440] device hsr_slave_0 left promiscuous mode
[  461.163586][T10440] device hsr_slave_1 left promiscuous mode
[  461.187432][   T26] audit: type=1326 audit(2000000136.057:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  461.221662][T10440] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  461.244213][T10440] batman_adv: batadv0: Removing interface: batadv_slave_0
[  461.260866][T10440] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  461.300899][   T26] audit: type=1326 audit(2000000136.057:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  461.325065][T10440] batman_adv: batadv0: Removing interface: batadv_slave_1
[  461.344801][T10440] device bridge_slave_1 left promiscuous mode
[  461.365778][T10440] bridge0: port 2(bridge_slave_1) entered disabled state
[  461.387725][T10440] device bridge_slave_0 left promiscuous mode
[  461.394059][T10440] bridge0: port 1(bridge_slave_0) entered disabled state
[  461.404656][   T26] audit: type=1326 audit(2000000136.057:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  461.493284][   T26] audit: type=1326 audit(2000000136.057:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  461.568225][   T26] audit: type=1326 audit(2000000136.057:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  461.592995][T10440] device veth1_macvtap left promiscuous mode
[  461.599095][T10440] device veth0_macvtap left promiscuous mode
[  461.637688][T10440] device veth1_vlan left promiscuous mode
[  461.647227][T10440] device veth0_vlan left promiscuous mode
[  461.670155][   T26] audit: type=1326 audit(2000000136.057:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  461.781138][   T26] audit: type=1326 audit(2000000136.057:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14863 comm="syz.7.4365" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fc869b8f6c9 code=0x7ffc0000
[  462.745161][ T7383] tipc: Node number set to 10398378
[  463.146958][T14903] 9pnet_fd: Insufficient options for proto=fd
[  465.166320][T10440] team0 (unregistering): Port device team_slave_1 removed
[  465.328426][T10440] team0 (unregistering): Port device team_slave_0 removed
[  465.541329][T10440] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  465.657460][T10440] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  466.477583][T14982] overlayfs: failed to clone upperpath
[  466.739695][T10440] bond0 (unregistering): Released all slaves
[  468.354832][T15042] binder: 15038:15042 ioctl c0306201 200000000300 returned -11
[  469.304426][T10440] tipc: Resetting bearer <eth:macvlan0>
[  469.436345][T10440] tipc: Disabling bearer <eth:macvlan0>
[  469.486666][T15062] tipc: Started in network mode
[  469.501947][T15062] tipc: Node identity aaaaaaaaaa34, cluster identity 4711
[  469.527345][T15062] tipc: Enabled bearer <eth:macvlan0>, priority 10
[  470.269888][T15099] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4461'.
[  470.595871][ T4401] tipc: Node number set to 10398378
[  470.649879][T15107] loop2: detected capacity change from 0 to 4096
[  470.723738][T15107] EXT4-fs: Mount option(s) incompatible with ext3
[  472.023621][   T26] kauditd_printk_skb: 62 callbacks suppressed
[  472.023638][   T26] audit: type=1326 audit(2000000146.537:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.143646][   T26] audit: type=1326 audit(2000000146.537:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.245346][   T26] audit: type=1326 audit(2000000146.537:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.353458][   T26] audit: type=1326 audit(2000000146.537:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.451478][   T26] audit: type=1326 audit(2000000146.537:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.597783][   T26] audit: type=1326 audit(2000000146.546:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.699910][   T26] audit: type=1326 audit(2000000146.546:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.769847][   T26] audit: type=1326 audit(2000000146.546:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.829828][   T26] audit: type=1326 audit(2000000146.546:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f00f378f6c9 code=0x7ffc0000
[  472.901223][   T26] audit: type=1326 audit(2000000146.546:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15147 comm="syz.2.4476" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0x200000000006 code=0x7ffc0000
[  473.589912][T15203] loop8: detected capacity change from 0 to 512
[  473.719773][T15203] EXT4-fs: Ignoring removed orlov option
[  473.725670][T15203] EXT4-fs: Ignoring removed i_version option
[  473.871165][T15203] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  474.016059][T15203] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  474.088678][T15203] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  474.131310][T15203] EXT4-fs error (device loop8): __ext4_get_inode_loc:4513: comm syz.8.4497: Invalid inode table block 54106 in block_group 0
[  474.198667][T15203] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  474.920904][T14264] EXT4-fs (loop8): unmounting filesystem.
[  475.608858][T15257] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4518'.
[  475.626868][T15257] netlink: 17 bytes leftover after parsing attributes in process `syz.6.4518'.
[  475.691881][T15257] tipc: Invalid UDP bearer configuration
[  475.691928][T15257] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  476.177132][T15281] tipc: MTU too low for tipc bearer
[  476.269624][T15284] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4529'.
[  476.592374][T15300] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  477.630675][ T9934] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  477.833131][ T9934] usb 9-1: Using ep0 maxpacket: 32
[  477.841429][ T9934] usb 9-1: config 0 has an invalid interface number: 89 but max is 0
[  477.861655][ T9934] usb 9-1: config 0 has no interface number 0
[  477.886340][ T9934] usb 9-1: config 0 interface 89 has no altsetting 0
[  477.908542][ T9934] usb 9-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[  477.928660][ T9934] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  477.950330][ T9934] usb 9-1: Product: syz
[  477.954577][ T9934] usb 9-1: Manufacturer: syz
[  477.959215][ T9934] usb 9-1: SerialNumber: syz
[  477.980970][ T9934] usb 9-1: config 0 descriptor??
[  478.016191][ T9934] em28xx 9-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[  478.055026][ T9934] em28xx 9-1:0.89: Video interface 89 found: bulk
[  478.657757][ T9934] em28xx 9-1:0.89: unknown em28xx chip ID (0)
[  479.570435][ T9934] em28xx 9-1:0.89: writing to i2c device at 0xa0 failed (error=-5)
[  479.579365][ T9934] em28xx 9-1:0.89: failed to read eeprom (err=-5)
[  479.633845][ T9934] em28xx 9-1:0.89: em28xx_i2c_register: em28xx_i2_eeprom failed! retval [-5]
[  479.741139][ T9934] em28xx 9-1:0.89: Identified as Terratec Grabby (card=67)
[  479.748522][ T9934] em28xx 9-1:0.89: analog set to bulk mode.
[  479.815688][ T9934] usb 9-1: USB disconnect, device number 3
[  479.837448][ T9934] em28xx 9-1:0.89: Disconnecting em28xx
[  479.843897][   T41] em28xx 9-1:0.89: Registering V4L2 extension
[  479.998536][T15417] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4576'.
[  480.091208][   T41] em28xx 9-1:0.89: Config register raw data: 0xffffffed
[  480.103369][   T41] em28xx 9-1:0.89: AC97 chip type couldn't be determined
[  480.110515][   T41] em28xx 9-1:0.89: No AC97 audio processor
[  480.188389][   T41] usb 9-1: Decoder not found
[  480.215251][   T41] em28xx 9-1:0.89: failed to create media graph
[  480.247688][   T41] em28xx 9-1:0.89: V4L2 device video103 deregistered
[  480.325868][   T41] em28xx 9-1:0.89: Registering snapshot button...
[  480.343724][T15428] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  480.419076][   T41] input: em28xx snapshot button as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.89/input/input15
[  480.493928][   T41] em28xx 9-1:0.89: Remote control support is not available for this card.
[  480.524019][ T9934] em28xx 9-1:0.89: Closing input extension
[  480.534852][ T9934] em28xx 9-1:0.89: Deregistering snapshot button
[  480.706968][ T9934] em28xx 9-1:0.89: Freeing device
[  480.844670][T15444] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  480.900444][T15444] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  480.925523][T15444] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  480.964681][T15444] device bridge_slave_0 left promiscuous mode
[  481.002986][T15444] bridge0: port 1(bridge_slave_0) entered disabled state
[  481.063331][T15444] device bridge_slave_1 left promiscuous mode
[  481.085483][T15444] bridge0: port 2(bridge_slave_1) entered disabled state
[  481.122198][T15444] bond0: (slave bond_slave_0): Releasing backup interface
[  481.178750][T15444] bond0: (slave bond_slave_1): Releasing backup interface
[  481.336503][T15444] team0: Port device team_slave_0 removed
[  481.387636][T15444] team0: Port device team_slave_1 removed
[  481.404970][T15444] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  481.430165][T15444] batman_adv: batadv0: Removing interface: batadv_slave_0
[  481.459136][T15444] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  481.488411][T15444] batman_adv: batadv0: Removing interface: batadv_slave_1
[  481.665589][T15460] can0: slcan on ptm0.
[  481.852408][T15459] can0 (unregistered): slcan off ptm0.
[  482.193861][T15487] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4602'.
[  484.087008][T15548] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  484.188634][ T6338] bond1: (slave bridge0): link status definitely down, disabling slave
[  484.917724][T15579] binder: 15577:15579 ioctl 40046205 0 returned -22
[  484.961451][T15583] netlink: 84 bytes leftover after parsing attributes in process `syz.6.4636'.
[  485.242199][T15593] netlink: 132 bytes leftover after parsing attributes in process `syz.8.4640'.
[  485.535549][   T26] kauditd_printk_skb: 2 callbacks suppressed
[  485.535564][   T26] audit: type=1326 audit(2000000159.212:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15604 comm="syz.8.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd28b8f6c9 code=0x7ffc0000
[  485.633496][   T26] audit: type=1326 audit(2000000159.212:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15604 comm="syz.8.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd28b8f6c9 code=0x7ffc0000
[  485.706833][   T26] audit: type=1326 audit(2000000159.250:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15604 comm="syz.8.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fdd28b8f6c9 code=0x7ffc0000
[  485.807229][   T26] audit: type=1326 audit(2000000159.250:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15604 comm="syz.8.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd28b8f6c9 code=0x7ffc0000
[  485.902452][   T26] audit: type=1326 audit(2000000159.250:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15604 comm="syz.8.4644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd28b8f6c9 code=0x7ffc0000
[  486.195055][T15631] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4654'.
[  486.415542][T15643] loop2: detected capacity change from 0 to 8
[  486.453096][T15643] unable to read id index table
[  486.687001][T15649] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4662'.
[  488.706408][T15731] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  489.644325][T15764] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  489.760782][T15764] bridge0: port 2(bridge_slave_1) entered disabled state
[  489.768464][T15764] bridge0: port 1(bridge_slave_0) entered disabled state
[  490.676843][T15804] netlink: 32 bytes leftover after parsing attributes in process `syz.8.4730'.
[  490.939996][T15814] binder: 15812:15814 ioctl c018620c 200000000000 returned -22
[  492.405317][T15866] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4755'.
[  492.804322][T15874] kvm: pic: non byte write
[  493.835630][T15903] 9pnet_fd: Insufficient options for proto=fd
[  493.938432][T15907] af_packet: tpacket_rcv: packet too big, clamped from 4087 to 3944. macoff=96
[  499.908012][T16098] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4849'.
[  500.159247][T16110] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4855'.
[  501.412711][T16158] netlink: 'syz.6.4873': attribute type 58 has an invalid length.
[  501.463462][T10051] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  501.687833][T10051] usb 6-1: Using ep0 maxpacket: 16
[  501.695930][T10051] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  501.739553][T10051] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  501.769257][T10051] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  501.833259][T10051] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  501.868438][T10051] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  501.903309][T10051] usb 6-1: Product: syz
[  501.907549][T10051] usb 6-1: Manufacturer: syz
[  501.957652][T10051] usb 6-1: SerialNumber: syz
[  502.231971][T16145] usb usb8: usbfs: process 16145 (syz.5.4868) did not claim interface 0 before use
[  502.446376][T10051] usb 6-1: 0:2 : does not exist
[  502.466450][T16192] loop8: detected capacity change from 0 to 512
[  502.535084][T10051] usb 6-1: USB disconnect, device number 9
[  502.540949][T16192] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  502.541081][T16192] ext4 filesystem being mounted at /116/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  502.692817][   T26] audit: type=1800 audit(2000000175.312:617): pid=16200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4886" name="file2" dev="loop8" ino=16 res=0 errno=0
[  502.764665][T16192] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4886'.
[  502.795774][   T26] audit: type=1800 audit(2000000175.349:618): pid=16192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.4886" name="file1" dev="loop8" ino=15 res=0 errno=0
[  502.990356][T14264] EXT4-fs (loop8): unmounting filesystem.
[  504.993411][T16266] loop2: detected capacity change from 0 to 256
[  505.063538][T16266] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d)
[  505.489896][T16277] binder: Bad value for 'max'
[  505.585825][T16281] netlink: 'syz.5.4913': attribute type 4 has an invalid length.
[  505.666130][T16281] netlink: 17 bytes leftover after parsing attributes in process `syz.5.4913'.
[  506.189828][   T51] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.317521][T16298] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4921'.
[  506.333206][T16301] loop8: detected capacity change from 0 to 16
[  506.395676][T16301] erofs: (device loop8): mounted with root inode @ nid 36.
[  506.512851][   T51] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.547083][T16301] erofs: (device loop8): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  506.612189][T16301] erofs: (device loop8): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[1851]
[  506.669645][T16306] erofs: (device loop8): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  506.683668][   T51] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.688609][T16301] erofs: (device loop8): z_erofs_read_folio: failed to read, err [-117]
[  506.702613][T16306] erofs: (device loop8): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  506.702685][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 42 @ nid 36
[  506.702786][T16306] erofs: (device loop8): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  506.702803][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 41 @ nid 36
[  506.702822][T16306] erofs: (device loop8): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  506.702838][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 40 @ nid 36
[  506.823872][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 39 @ nid 36
[  506.889443][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 38 @ nid 36
[  506.937097][   T51] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  506.962194][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 36 @ nid 36
[  506.999688][T16306] erofs: (device loop8): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  507.018616][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 31 @ nid 36
[  507.080688][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 25 @ nid 36
[  507.121183][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 24 @ nid 36
[  507.167739][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 19 @ nid 36
[  507.258527][T16306] syz.8.4924: attempt to access beyond end of device
[  507.258527][T16306] loop8: rw=524288, sector=784, nr_sectors = 64 limit=16
[  507.331364][T16306] syz.8.4924: attempt to access beyond end of device
[  507.331364][T16306] loop8: rw=524288, sector=13478624080, nr_sectors = 24 limit=16
[  507.397923][T16306] syz.8.4924: attempt to access beyond end of device
[  507.397923][T16306] loop8: rw=524288, sector=13478624032, nr_sectors = 48 limit=16
[  507.449405][   T51] tipc: Disabling bearer <udp:syz0>
[  507.455318][   T51] tipc: Disabling bearer <udp:syz2>
[  507.473418][T16306] erofs: (device loop8): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[2639]
[  507.481294][   T51] tipc: Left network mode
[  507.528304][T16306] erofs: (device loop8): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  507.537885][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 47 @ nid 36
[  507.581028][T16306] erofs: (device loop8): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  507.602567][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 46 @ nid 36
[  507.678756][T16306] erofs: (device loop8): z_erofs_readahead: readahead error at page 45 @ nid 36
[  507.720528][T16306] syz.8.4924: attempt to access beyond end of device
[  507.720528][T16306] loop8: rw=524288, sector=16, nr_sectors = 16 limit=16
[  507.790726][T16306] erofs: (device loop8): z_erofs_lz4_decompress_mem: failed to decompress -29 in[58, 4038] out[3537]
[  507.908318][ T4286] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  507.920575][ T4286] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  507.929972][ T4286] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  507.937929][ T4286] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  507.955383][ T4286] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  507.963734][ T4286] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  509.282254][T16336] chnl_net:caif_netlink_parms(): no params data found
[  509.859872][T16336] bridge0: port 1(bridge_slave_0) entered blocking state
[  509.890488][T16336] bridge0: port 1(bridge_slave_0) entered disabled state
[  509.914142][T16336] device bridge_slave_0 entered promiscuous mode
[  510.129470][   T47] Bluetooth: hci3: command 0x0409 tx timeout
[  510.371801][T16336] bridge0: port 2(bridge_slave_1) entered blocking state
[  510.380797][T16336] bridge0: port 2(bridge_slave_1) entered disabled state
[  510.399915][T16336] device bridge_slave_1 entered promiscuous mode
[  510.415145][T16412] netlink: 'syz.8.4957': attribute type 1 has an invalid length.
[  510.545824][   T51] device hsr_slave_0 left promiscuous mode
[  510.563101][   T51] device hsr_slave_1 left promiscuous mode
[  510.588962][   T51] device bridge_slave_1 left promiscuous mode
[  510.595318][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  510.621877][   T51] device bridge_slave_0 left promiscuous mode
[  510.640740][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  510.747836][   T51] device veth1_macvtap left promiscuous mode
[  510.754252][   T51] device veth0_macvtap left promiscuous mode
[  511.097651][T16433] fuse: Bad value for 'fd'
[  512.127076][   T51] team0 (unregistering): Port device team_slave_1 removed
[  512.260350][   T51] team0 (unregistering): Port device team_slave_0 removed
[  512.347350][ T4272] Bluetooth: hci3: command 0x041b tx timeout
[  512.432620][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  512.566658][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  513.450717][   T51] bond0 (unregistering): Released all slaves
[  513.569603][T16336] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  513.594790][T16336] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  513.747538][T16336] team0: Port device team_slave_0 added
[  513.802293][T16336] team0: Port device team_slave_1 added
[  513.974305][T16336] batman_adv: batadv0: Adding interface: batadv_slave_0
[  514.019773][T16336] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  514.098548][T16336] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  514.163021][T16336] batman_adv: batadv0: Adding interface: batadv_slave_1
[  514.220910][T16336] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  514.287340][T16336] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  514.533671][T16336] device hsr_slave_0 entered promiscuous mode
[  514.561417][T16336] device hsr_slave_1 entered promiscuous mode
[  514.563175][ T4272] Bluetooth: hci3: command 0x040f tx timeout
[  514.610878][T16336] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  514.618978][T16336] Cannot create hsr debugfs directory
[  515.127381][T16336] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  515.168058][T16336] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  515.226722][T16336] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  515.257130][T16336] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  515.505769][T16542] bridge0: port 1(gretap0) entered blocking state
[  515.522746][T16542] bridge0: port 1(gretap0) entered disabled state
[  515.554572][T16542] device gretap0 entered promiscuous mode
[  515.577528][T16542] bridge0: port 1(gretap0) entered blocking state
[  515.584508][T16542] bridge0: port 1(gretap0) entered forwarding state
[  515.643573][T16548] device gretap0 left promiscuous mode
[  515.656216][T16548] bridge0: port 1(gretap0) entered disabled state
[  515.841097][T16336] 8021q: adding VLAN 0 to HW filter on device bond0
[  515.917631][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  515.946089][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  515.985389][T16336] 8021q: adding VLAN 0 to HW filter on device team0
[  516.053319][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  516.088149][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  516.142431][ T4377] bridge0: port 1(bridge_slave_0) entered blocking state
[  516.149618][ T4377] bridge0: port 1(bridge_slave_0) entered forwarding state
[  516.194684][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  516.215576][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  516.256394][ T4377] bridge0: port 2(bridge_slave_1) entered blocking state
[  516.263653][ T4377] bridge0: port 2(bridge_slave_1) entered forwarding state
[  516.290088][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  516.310282][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  516.359455][T16568] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5019'.
[  516.379002][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  516.408525][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  516.438221][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  516.461501][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  516.482448][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  516.512328][T16336] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  516.542176][T16336] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  516.559150][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  516.568297][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  516.579241][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  516.591765][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  516.611447][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  516.638491][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  516.667316][T16581] netlink: 9 bytes leftover after parsing attributes in process `syz.8.5024'.
[  516.693943][T16581] device gretap0 entered promiscuous mode
[  516.781211][ T4272] Bluetooth: hci3: command 0x0419 tx timeout
[  517.052325][T16594] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5028'.
[  517.542780][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  517.576103][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  517.626806][T16336] 8021q: adding VLAN 0 to HW filter on device batadv0
[  518.103248][T16637] overlayfs: failed to clone upperpath
[  518.153157][T16635] netlink: 104 bytes leftover after parsing attributes in process `syz.6.5041'.
[  518.316102][T16644] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  518.732482][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  518.761438][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  518.817791][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  518.837669][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  518.863053][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  518.882990][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  518.905164][T16336] device veth0_vlan entered promiscuous mode
[  518.945128][T16336] device veth1_vlan entered promiscuous mode
[  519.087413][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  519.104481][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  519.134463][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  519.154695][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  519.221838][T16336] device veth0_macvtap entered promiscuous mode
[  519.266501][T16336] device veth1_macvtap entered promiscuous mode
[  519.331795][T16336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  519.387103][T16336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  519.428356][T16336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  519.465898][T16336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  519.526687][T16336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  519.629128][T16336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  519.689981][T16336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  519.780324][T16336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  519.800482][T16336] batman_adv: batadv0: Interface activated: batadv_slave_0
[  519.812787][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  519.823903][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  519.863324][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  519.887972][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  519.928316][T16336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  519.954483][T16336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  520.006136][T16336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  520.027640][T16336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  520.047882][T16336] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  520.093045][T16336] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  520.168769][T16336] batman_adv: batadv0: Interface activated: batadv_slave_1
[  520.223059][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  520.249205][ T4358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  520.305235][T16336] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  520.334721][T16336] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  520.399119][T16336] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  520.440900][T16336] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  520.711742][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  520.743728][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  520.817735][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  520.855992][T10440] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  520.866434][T10440] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  520.916457][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  521.534194][T16710] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5065'.
[  522.251639][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[  522.258096][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[  524.610184][T16805] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5101'.
[  525.153389][T16819] loop9: detected capacity change from 0 to 1764
[  526.265297][T10440] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  526.542760][T10440] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  526.761111][T10440] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  526.804446][T16863] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5126'.
[  527.044905][T16872] usb usb7: usbfs: process 16872 (syz.8.5128) did not claim interface 0 before use
[  527.183772][T16863] device hsr_slave_1 left promiscuous mode
[  527.302262][T10440] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  527.507718][   T47] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  527.524333][   T47] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  527.533463][   T47] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  527.543374][   T47] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  527.554359][   T47] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  527.561997][   T47] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  528.751062][T16880] chnl_net:caif_netlink_parms(): no params data found
[  529.563429][T16880] bridge0: port 1(bridge_slave_0) entered blocking state
[  529.602966][T16880] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.625463][T16880] device bridge_slave_0 entered promiscuous mode
[  529.741718][   T47] Bluetooth: hci3: command 0x0409 tx timeout
[  529.844504][T16880] bridge0: port 2(bridge_slave_1) entered blocking state
[  529.856880][T16880] bridge0: port 2(bridge_slave_1) entered disabled state
[  529.914782][T16880] device bridge_slave_1 entered promiscuous mode
[  530.457508][T16880] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  530.537925][T16880] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  531.035502][T16880] team0: Port device team_slave_0 added
[  531.794365][T16880] team0: Port device team_slave_1 added
[  531.958404][   T47] Bluetooth: hci3: command 0x041b tx timeout
[  532.039002][T10440] device hsr_slave_0 left promiscuous mode
[  532.079798][T10440] device hsr_slave_1 left promiscuous mode
[  532.150212][T10440] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  532.169010][T10440] batman_adv: batadv0: Removing interface: batadv_slave_0
[  532.211256][T10440] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  532.233964][T10440] batman_adv: batadv0: Removing interface: batadv_slave_1
[  532.264723][T10440] device bridge_slave_1 left promiscuous mode
[  532.297682][T10440] bridge0: port 2(bridge_slave_1) entered disabled state
[  532.342109][T10440] device bridge_slave_0 left promiscuous mode
[  532.365985][T10440] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.482723][T17031] fuse: Bad value for 'fd'
[  532.518549][T10440] device veth1_macvtap left promiscuous mode
[  532.540432][T10440] device veth0_macvtap left promiscuous mode
[  532.570586][T10440] device veth1_vlan left promiscuous mode
[  532.595021][T10440] device veth0_vlan left promiscuous mode
[  533.686119][T10440] team0 (unregistering): Port device team_slave_1 removed
[  533.744818][T10440] team0 (unregistering): Port device team_slave_0 removed
[  533.804009][T10440] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  533.867389][T10440] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  534.185827][   T47] Bluetooth: hci3: command 0x040f tx timeout
[  534.636119][T10440] bond0 (unregistering): Released all slaves
[  534.768359][T16880] batman_adv: batadv0: Adding interface: batadv_slave_0
[  534.776509][T16880] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  534.802927][T16880] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  534.818191][T16880] batman_adv: batadv0: Adding interface: batadv_slave_1
[  534.825590][T16880] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  534.852988][T16880] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  535.025114][T16880] device hsr_slave_0 entered promiscuous mode
[  535.071540][T17068] netlink: 182 bytes leftover after parsing attributes in process `syz.7.5200'.
[  535.092189][T16880] device hsr_slave_1 entered promiscuous mode
[  535.100970][T16880] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  535.118522][T16880] Cannot create hsr debugfs directory
[  535.236039][T17074] netlink: 96 bytes leftover after parsing attributes in process `syz.5.5203'.
[  535.396057][T17079] netlink: 'syz.8.5205': attribute type 4 has an invalid length.
[  535.462911][T17079] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  535.700939][T17090] netlink: 68 bytes leftover after parsing attributes in process `syz.8.5209'.
[  535.712563][T17085] netlink: 72 bytes leftover after parsing attributes in process `syz.5.5207'.
[  535.934437][T16880] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.169383][T16880] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.211316][T17101] netlink: 36 bytes leftover after parsing attributes in process `syz.7.5212'.
[  536.227159][T17103] netlink: 188 bytes leftover after parsing attributes in process `syz.6.5213'.
[  536.352476][T16880] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.392228][   T47] Bluetooth: hci3: command 0x0419 tx timeout
[  536.604039][T16880] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.785141][T17120] loop5: detected capacity change from 0 to 2048
[  536.911257][T17120] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  537.059620][T17137] EXT4-fs error (device loop5): ext4_do_update_inode:5268: inode #12: comm syz.5.5220: corrupted inode contents
[  537.145299][T17137] EXT4-fs error (device loop5): ext4_do_update_inode:5268: inode #12: comm syz.5.5220: corrupted inode contents
[  537.182599][T17137] EXT4-fs error (device loop5): ext4_try_add_inline_entry:1354: inode #12: comm syz.5.5220: mark_inode_dirty error
[  537.230439][T16880] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  537.274139][T16880] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  537.314540][T16880] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  537.371545][T16880] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  537.438955][ T6058] EXT4-fs (loop5): unmounting filesystem.
[  537.708812][T16880] 8021q: adding VLAN 0 to HW filter on device bond0
[  537.815020][T16880] 8021q: adding VLAN 0 to HW filter on device team0
[  537.862627][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  537.883457][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  537.911493][T17162] netlink: 76 bytes leftover after parsing attributes in process `syz.8.5232'.
[  537.951107][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  537.971106][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  538.023298][T10440] bridge0: port 1(bridge_slave_0) entered blocking state
[  538.030458][T10440] bridge0: port 1(bridge_slave_0) entered forwarding state
[  538.067680][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  538.087387][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  538.108117][T10440] bridge0: port 2(bridge_slave_1) entered blocking state
[  538.115285][T10440] bridge0: port 2(bridge_slave_1) entered forwarding state
[  538.178989][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  538.211592][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  538.253131][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  538.300960][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  538.337100][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  538.376572][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  538.440978][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  538.471607][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  538.509973][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  538.531458][ T6338] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  538.583496][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  538.607581][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  538.662740][T16880] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  538.847198][T17193] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5244'.
[  539.779117][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  539.795598][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  539.837545][T16880] 8021q: adding VLAN 0 to HW filter on device batadv0
[  541.367833][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  541.395099][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  541.496841][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  541.520040][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  541.553946][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  541.582536][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  541.627058][T16880] device veth0_vlan entered promiscuous mode
[  541.656780][T16880] device veth1_vlan entered promiscuous mode
[  541.734449][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  541.756967][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  541.781854][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  541.816686][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  541.844313][T16880] device veth0_macvtap entered promiscuous mode
[  541.874514][T16880] device veth1_macvtap entered promiscuous mode
[  541.943585][T16880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  541.980022][T16880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.003197][T16880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  542.025700][T16880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.056681][T16880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  542.087018][T16880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.136238][T16880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  542.178437][T16880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.209456][T16880] batman_adv: batadv0: Interface activated: batadv_slave_0
[  542.241125][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  542.261048][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  542.288041][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  542.319119][T10440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  542.342007][T16880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  542.368335][T16880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.407790][T16880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  542.424547][T16880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.440553][T16880] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  542.459881][T16880] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  542.488115][T16880] batman_adv: batadv0: Interface activated: batadv_slave_1
[  542.537620][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  542.557940][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  542.588720][T16880] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  542.625069][T16880] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  542.646446][T16880] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  542.673196][T16880] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  542.943735][ T4377] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  542.969500][ T4377] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  543.027137][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  543.078769][ T4465] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  543.114410][ T4465] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  543.158258][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  543.204709][T17317] netlink: 2 bytes leftover after parsing attributes in process `syz.8.5285'.
[  543.205045][T17316] sock: sock_timestamping_bind_phc: sock not bind to device
[  543.428811][T17320] netlink: 'syz.4.5122': attribute type 4 has an invalid length.
[  543.462183][T17320] netlink: 'syz.4.5122': attribute type 21 has an invalid length.
[  543.490686][T17320] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.5122'.
[  544.699697][T17364] netlink: 72 bytes leftover after parsing attributes in process `syz.8.5299'.
[  545.375910][T17390] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  547.005681][T17447] netlink: 68 bytes leftover after parsing attributes in process `syz.7.5338'.
[  547.602029][T17461] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  549.487184][T17516] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5366'.
[  550.744302][T17553] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5383'.
[  550.855517][ T4334] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  551.065669][ T4334] usb 6-1: Using ep0 maxpacket: 32
[  551.078889][ T4334] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  551.104229][ T4334] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  551.154641][ T4334] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  551.185269][ T4334] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  551.216903][ T4334] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  551.270708][ T4334] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  551.303447][ T4334] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  551.335116][ T4334] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  551.362880][ T4334] usb 6-1: config 0 descriptor??
[  551.550514][T17571] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5391'.
[  551.585291][T17571] bridge0: port 2(bridge_slave_1) entered disabled state
[  551.613137][ T4334] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 10 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  551.625181][T17571] device bridge_slave_1 left promiscuous mode
[  551.631719][T17571] bridge0: port 2(bridge_slave_1) entered disabled state
[  551.661140][ T4334] usb 6-1: USB disconnect, device number 10
[  551.702789][ T4334] usblp0: removed
[  553.864084][   T26] audit: type=1326 audit(2000000007.055:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17640 comm="syz.5.5424" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f295f98f6c9 code=0x0
[  554.158112][T17652] netlink: 60 bytes leftover after parsing attributes in process `syz.4.5429'.
[  555.616552][T17716] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5459'.
[  555.756096][T17718] Driver unsupported XDP return value 0 on prog  (id 229) dev N/A, expect packet loss!
[  555.776064][T17722] overlayfs: missing 'lowerdir'
[  556.065531][T17733] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5467'.
[  556.721864][T17760] loop5: detected capacity change from 0 to 2048
[  556.803686][T17760] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  556.829081][T17760] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  556.836492][T17767] netlink: 17 bytes leftover after parsing attributes in process `syz.7.5483'.
[  556.855138][T17760] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[  556.870695][T17760] EXT4-fs (loop5): This should not happen!! Data will be lost
[  556.870695][T17760] 
[  556.882457][T17760] EXT4-fs (loop5): Total free blocks count 0
[  556.888661][T17760] EXT4-fs (loop5): Free/Dirty block details
[  556.894869][T17760] EXT4-fs (loop5): free_blocks=2415919104
[  556.900882][T17760] EXT4-fs (loop5): dirty_blocks=48
[  556.906182][T17760] EXT4-fs (loop5): Block reservation details
[  556.912274][T17760] EXT4-fs (loop5): i_reserved_data_blocks=3
[  557.029060][ T6058] EXT4-fs (loop5): unmounting filesystem.
[  557.865258][T17804] netlink: 40 bytes leftover after parsing attributes in process `syz.7.5496'.
[  560.195172][T17890] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  564.275790][T17987] netlink: 80 bytes leftover after parsing attributes in process `syz.5.5579'.
[  564.612775][T17998] netlink: 72 bytes leftover after parsing attributes in process `syz.6.5586'.
[  564.771405][T18004] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5588'.
[  564.861340][T18009] fuse: Bad value for 'fd'
[  566.582185][T18031] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  566.589817][T18031] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  566.595898][T18031] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  566.601988][T18031] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  566.685111][T18031] Bluetooth: hci1: Suspend notifier action (1) failed: -4
[  566.694920][T18031] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  566.700970][T18031] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  566.715349][T18031] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  568.023557][T18071] binder: 18070:18071 ioctl c0306201 200000000300 returned -11
[  568.087152][T18075] overlayfs: unrecognized mount option "/C][Ij���J���{eJ�v��z/@�F����7���G����!�I�$�@V�\" or missing value
[  568.579423][T18095] netlink: 'syz.5.5631': attribute type 4 has an invalid length.
[  568.793809][   T47] Bluetooth: hci1: command 0x0c1a tx timeout
[  568.800055][   T47] Bluetooth: hci4: command 0x0c1a tx timeout
[  568.878576][T18107] Bluetooth: hci3: command 0x0c1a tx timeout
[  569.475297][ T4272] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  569.930978][ T4334] usb 6-1: new low-speed USB device number 11 using dummy_hcd
[  570.148462][ T4334] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  570.167181][ T4334] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  570.187848][ T4334] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  570.210430][ T4334] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.250273][ T4334] usb 6-1: config 0 descriptor??
[  570.473348][T18173] loop9: detected capacity change from 0 to 7
[  570.498717][ T4334] usb 6-1: USB disconnect, device number 11
[  570.516545][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.526275][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.535565][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.544850][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.561020][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.570269][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.586623][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.595922][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.605892][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.615260][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.624266][    C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.633581][    C0] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.649842][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.659094][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.667013][T18173] ldm_validate_partition_table(): Disk read failed.
[  570.685143][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.694454][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.703021][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.712471][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.721603][    C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  570.730861][    C1] Buffer I/O error on dev loop9, logical block 0, async page read
[  570.740269][T18173] Dev loop9: unable to read RDB block 0
[  570.747089][T18173]  loop9: unable to read partition table
[  570.753130][T18173] loop9: partition table beyond EOD, truncated
[  570.763611][T18173] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  570.763611][T18173] 
) failed (rc=-5)
[  571.016676][T18107] Bluetooth: hci1: command 0x0406 tx timeout
[  571.095328][T18107] Bluetooth: hci3: command 0x0406 tx timeout
[  572.895483][T18262] 
[  572.897897][T18262] ======================================================
[  572.904938][T18262] WARNING: possible circular locking dependency detected
[  572.911995][T18262] syzkaller #0 Not tainted
[  572.916434][T18262] ------------------------------------------------------
[  572.923477][T18262] syz.5.5709/18262 is trying to acquire lock:
[  572.929574][T18262] ffff888076060290 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: process_measurement+0x33c/0x1a10
[  572.940353][T18262] 
[  572.940353][T18262] but task is already holding lock:
[  572.947751][T18262] ffff88804d25b5d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770
[  572.957821][T18262] 
[  572.957821][T18262] which lock already depends on the new lock.
[  572.957821][T18262] 
[  572.968269][T18262] 
[  572.968269][T18262] the existing dependency chain (in reverse order) is:
[  572.977315][T18262] 
[  572.977315][T18262] -> #1 (&mm->mmap_lock){++++}-{3:3}:
[  572.984929][T18262]        down_read_killable+0x4c/0x340
[  572.990461][T18262]        mmap_read_lock_killable+0x1d/0x60
[  572.996353][T18262]        lock_mm_and_find_vma+0x2b1/0x2f0
[  573.002126][T18262]        do_user_addr_fault+0x2db/0xb10
[  573.007721][T18262]        exc_page_fault+0x60/0x100
[  573.012895][T18262]        asm_exc_page_fault+0x22/0x30
[  573.018309][T18262]        fault_in_readable+0x13e/0x1f0
[  573.023816][T18262]        fault_in_iov_iter_readable+0xbb/0x2e0
[  573.030006][T18262]        generic_perform_write+0x1d2/0x560
[  573.035941][T18262]        __generic_file_write_iter+0x172/0x430
[  573.042133][T18262]        generic_file_write_iter+0xab/0x2e0
[  573.048069][T18262]        vfs_write+0x44c/0x960
[  573.052887][T18262]        ksys_write+0x143/0x240
[  573.057787][T18262]        do_syscall_64+0x4c/0xa0
[  573.062768][T18262]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  573.069259][T18262] 
[  573.069259][T18262] -> #0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}:
[  573.078005][T18262]        __lock_acquire+0x2cf8/0x7c50
[  573.083428][T18262]        lock_acquire+0x1b4/0x490
[  573.088495][T18262]        down_write+0x36/0x60
[  573.093226][T18262]        process_measurement+0x33c/0x1a10
[  573.098991][T18262]        ima_file_mmap+0x104/0x150
[  573.104149][T18262]        __se_sys_remap_file_pages+0x53e/0x770
[  573.110346][T18262]        do_syscall_64+0x4c/0xa0
[  573.115340][T18262]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  573.121792][T18262] 
[  573.121792][T18262] other info that might help us debug this:
[  573.121792][T18262] 
[  573.132048][T18262]  Possible unsafe locking scenario:
[  573.132048][T18262] 
[  573.139523][T18262]        CPU0                    CPU1
[  573.144916][T18262]        ----                    ----
[  573.150306][T18262]   lock(&mm->mmap_lock);
[  573.154674][T18262]                                lock(&sb->s_type->i_mutex_key#12);
[  573.162696][T18262]                                lock(&mm->mmap_lock);
[  573.169585][T18262]   lock(&sb->s_type->i_mutex_key#12);
[  573.175090][T18262] 
[  573.175090][T18262]  *** DEADLOCK ***
[  573.175090][T18262] 
[  573.183343][T18262] 1 lock held by syz.5.5709/18262:
[  573.188478][T18262]  #0: ffff88804d25b5d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770
[  573.198981][T18262] 
[  573.198981][T18262] stack backtrace:
[  573.204916][T18262] CPU: 1 PID: 18262 Comm: syz.5.5709 Not tainted syzkaller #0
[  573.212408][T18262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  573.222508][T18262] Call Trace:
[  573.225922][T18262]  <TASK>
[  573.228882][T18262]  dump_stack_lvl+0x168/0x22e
[  573.233608][T18262]  ? load_image+0x3b0/0x3b0
[  573.238155][T18262]  ? show_regs_print_info+0x12/0x12
[  573.243485][T18262]  ? print_circular_bug+0x12b/0x1a0
[  573.248734][T18262]  check_noncircular+0x274/0x310
[  573.253717][T18262]  ? add_chain_block+0x940/0x940
[  573.258797][T18262]  ? lockdep_lock+0xdc/0x1e0
[  573.263433][T18262]  ? verify_lock_unused+0x140/0x140
[  573.268671][T18262]  ? __lock_acquire+0x13c0/0x7c50
[  573.273736][T18262]  ? _find_first_zero_bit+0xcf/0x100
[  573.279086][T18262]  __lock_acquire+0x2cf8/0x7c50
[  573.283989][T18262]  ? ima_match_policy+0x104/0x2100
[  573.289146][T18262]  ? verify_lock_unused+0x140/0x140
[  573.294398][T18262]  ? ima_match_policy+0x207a/0x2100
[  573.299643][T18262]  ? finish_task_switch+0x265/0x8f0
[  573.304900][T18262]  lock_acquire+0x1b4/0x490
[  573.309454][T18262]  ? process_measurement+0x33c/0x1a10
[  573.314898][T18262]  ? __might_sleep+0xd0/0xd0
[  573.319555][T18262]  ? read_lock_is_recursive+0x10/0x10
[  573.324978][T18262]  ? ima_get_action+0x71/0xa0
[  573.329714][T18262]  down_write+0x36/0x60
[  573.333919][T18262]  ? process_measurement+0x33c/0x1a10
[  573.339344][T18262]  process_measurement+0x33c/0x1a10
[  573.344597][T18262]  ? preempt_schedule+0xa7/0xb0
[  573.349498][T18262]  ? ima_file_mmap+0x150/0x150
[  573.354321][T18262]  ? aa_file_perm+0x117/0xec0
[  573.359060][T18262]  ? mtree_range_walk+0x672/0x7b0
[  573.364121][T18262]  ? aa_get_current_label+0x110/0x1d0
[  573.369561][T18262]  ? apparmor_current_getsecid_subj+0xb1/0x110
[  573.375776][T18262]  ima_file_mmap+0x104/0x150
[  573.380419][T18262]  ? ima_file_free+0x3e0/0x3e0
[  573.385237][T18262]  ? common_file_perm+0x171/0x1c0
[  573.390384][T18262]  ? bpf_lsm_mmap_file+0x5/0x10
[  573.395291][T18262]  ? security_mmap_file+0x11b/0x180
[  573.400553][T18262]  __se_sys_remap_file_pages+0x53e/0x770
[  573.406246][T18262]  ? __x64_sys_remap_file_pages+0xc0/0xc0
[  573.412032][T18262]  ? lockdep_hardirqs_on+0x94/0x140
[  573.417290][T18262]  ? __x64_sys_remap_file_pages+0x1c/0xc0
[  573.423164][T18262]  do_syscall_64+0x4c/0xa0
[  573.427627][T18262]  ? clear_bhb_loop+0x60/0xb0
[  573.432353][T18262]  ? clear_bhb_loop+0x60/0xb0
[  573.437072][T18262]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  573.443049][T18262] RIP: 0033:0x7f295f98f6c9
[  573.447545][T18262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  573.467467][T18262] RSP: 002b:00007f295dbf6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8
[  573.475936][T18262] RAX: ffffffffffffffda RBX: 00007f295fbe5fa0 RCX: 00007f295f98f6c9
[  573.483959][T18262] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000200000ffb000
[  573.491984][T18262] RBP: 00007f295fa11f91 R08: 0000000000080000 R09: 0000000000000000
[  573.500015][T18262] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  573.508028][T18262] R13: 00007f295fbe6038 R14: 00007f295fbe5fa0 R15: 00007ffd4989ec58
[  573.516143][T18262]  </TASK>
[  573.567871][ T4272] Bluetooth: hci1: command 0x0406 tx timeout