last executing test programs:

1m48.400157424s ago: executing program 0 (id=841):
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

1m47.232806318s ago: executing program 0 (id=853):
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

1m46.251103901s ago: executing program 0 (id=847):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
socket$packet(0x11, 0x3, 0x300)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000c80)="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", 0x193}, {&(0x7f00000007c0)="02999344565d9c61d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e432bcb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc402189195e92dc1d73fce0d96439a53073df328509806e960", 0x7d}, {&(0x7f00000002c0)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc90c269ad6d38d57619127cee4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f64e6c19ba36b2778c5f4a1c58625fe19516af43c9870c5b8191e23778abe7df2280d459b1651686a53ca52dce9570444c153f9c2903ae4c868074e89477bf6ed2ab648b0498ac8c0f90844ed9a26675199d5ff9b391c1dec077b5099cf9aecd1a9d94e2", 0xce}, {&(0x7f0000000f00)="397d5f2e855cb2b0b1e61d3fe47dc3e798cf47cfebf169e77257f308b498e5b417227094d569a445", 0x28}, {0x0}], 0x5}}], 0x1, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1m45.774133385s ago: executing program 0 (id=850):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r0, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x100}, 0x0)
pselect6(0x40, &(0x7f0000000100)={0xfffffffffffffffb, 0x800000000000009, 0x404, 0x9, 0x0, 0xfffffffffffffffd, 0x200000000, 0x4}, 0x0, 0x0, 0x0, 0x0)

1m45.13274001s ago: executing program 0 (id=854):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
r0 = syz_clone(0x80002080, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$fuse(0x0, &(0x7f0000000180)='./file0/../file0\x00', 0x0, 0x0, 0x0)

1m44.914630966s ago: executing program 0 (id=857):
syz_open_dev$tty1(0xc, 0x4, 0x1)
lsm_list_modules(0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
write$sndseq(r1, 0x0, 0x0)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0x100)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000001140)={0x80, 0x1})

1m29.826299528s ago: executing program 32 (id=857):
syz_open_dev$tty1(0xc, 0x4, 0x1)
lsm_list_modules(0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
write$sndseq(r1, 0x0, 0x0)
poll(&(0x7f0000000080)=[{r1}], 0x1, 0x100)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000001140)={0x80, 0x1})

8.19802853s ago: executing program 5 (id=1389):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4001}, 0x20000004)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x40002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe50, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

8.197259937s ago: executing program 1 (id=1380):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x48240, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x20000004, 0x10048484, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffff9}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x141001, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
pwritev2(r2, &(0x7f0000000140)=[{0x0}], 0x1, 0x81, 0x0, 0x2)
close(r0)

7.532303795s ago: executing program 4 (id=1381):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="010000000300000004000000ff07"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1b, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600), 0x0, 0x401, r3, 0x0, 0x100000000000000}, 0x38)

7.375958933s ago: executing program 1 (id=1382):
r0 = io_uring_setup(0x479, &(0x7f0000000ac0)={0x0, 0x905e, 0x2, 0x2, 0x4000020})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000040)="a6", 0xffffff4c, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

6.87710379s ago: executing program 3 (id=1383):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x10}}, 0x0)

6.631930943s ago: executing program 2 (id=1385):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f0000001ac0)={r3, 0x0, {0x0, 0x0, 0x0, 0x2ead, 0x7fff, 0x0, 0x0, 0x0, 0xd, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9102139c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e3bb3f10000000000000010e2000000000000000000000100", [0x3]}})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.631413194s ago: executing program 5 (id=1386):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
setsockopt$RXRPC_SECURITY_KEYRING(r3, 0x110, 0x2, 0x0, 0x0)

4.897069605s ago: executing program 1 (id=1387):
socket$inet6(0xa, 0x2, 0x0)
socket(0x3, 0x4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x40001, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x200f, 0xfffffffffffffffe}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

4.896779947s ago: executing program 3 (id=1388):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x1, 0x0)
fchdir(r3)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000040), 0x208e24b)

4.896517554s ago: executing program 4 (id=1390):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x20, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0xe403, 0x0, 0x0, 0x10000}}, 0x20}}, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r0}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
close(r2)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x13, 0x10, 0x8, 0x0, 0x0, 0x1, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x8, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000005000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4d, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r4, 0x0, 0x0}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r3}, &(0x7f0000000080), &(0x7f00000000c0)='%pK    \x00'}, 0x20)

4.835917845s ago: executing program 4 (id=1391):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000980)={'wg2\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000180)="0b031407e0ff640f0200475400f6a13bb1000e00080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r4}, 0x14)

4.635802994s ago: executing program 5 (id=1392):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfe, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f00000002c0))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000010000104a5270b7357000000925e4a44", @ANYRES32, @ANYBLOB="0dfa130016000000240012000c00010000000000000000000c0002f60800000001180000080001"], 0x44}}, 0x0)
r2 = socket(0x10, 0x803, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={0xffffffffffffffff, 0x53, 0xd, 0x9})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB='H\x00\x00\x00'], 0x48}}, 0x0)

4.635217728s ago: executing program 2 (id=1393):
symlinkat(0x0, 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00')
r0 = io_uring_setup(0x7691, &(0x7f0000000140)={0x0, 0x58fb, 0x10, 0x801, 0x23f})
r1 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(r1, 0x101)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r2, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
sendmmsg$inet(r2, &(0x7f00000007c0)=[{{0x0, 0x0, &(0x7f0000001940)=[{&(0x7f00000017c0)="be", 0x1}], 0x1}}], 0x1, 0x20048045)
close_range(r0, 0xffffffffffffffff, 0x0)

4.040358099s ago: executing program 4 (id=1394):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

3.722932092s ago: executing program 2 (id=1395):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)

2.815159598s ago: executing program 1 (id=1396):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
fcntl$setpipe(r0, 0x407, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50}, 0x50)
vmsplice(r0, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
fcntl$setpipe(r0, 0x407, 0x2000000)
syz_clone(0x63021400, 0x0, 0x0, 0x0, 0x0, 0x0)

2.695494171s ago: executing program 2 (id=1397):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x2, 0xe8e80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000840)={{0x400007b, 0x4, 0x4, 0x4, 'syz0\x00', 0x6}, 0x1, 0x20000000, 0x6, r2, 0x0, 0x4, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r0, 0xc0405519, &(0x7f0000000ac0)={0x6, 0x1, 0x9, 0x10, '\x00', 0x35})

2.676805024s ago: executing program 5 (id=1398):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000240)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
memfd_create(&(0x7f0000000300)='\x00\xc2\xea\x99\xbb\x1c\xdfjw\x97\x05\xa3\xa2\'\xdd\xe4q\xbf\t\x8c\xe0\x19`\x8e\x00\x00\x00\x00\x00\x00\x00\x00\x00\b \xff\x13\x96\xe3?\xdfH\x8c\xe4V\xe2\xfe\v8\x04\xa5\xf6y_w\xd8\xcf\x90k\x05\x00\xf9\x1e\xe8m\x0e\x12\xa015\xc2\xb3u|K\x111\xd4\f8\xeb\x18\xad\xbb!1\x85\x96P\x1b\xa1\x9a\x81\xf8\xb1\xecB)\xe5\xaa7\xfe\xdd,_\x95\x00\x00\x00j^\xaec}\x1a\xb4\x17\xafP\x85I\xd5\xa0I\xb0\xaf\xb5\x8b\\\x05\xd7g\xcbV\x8e\xd0\xac\x87I7\xbd\xc6\x9bI\x92\xb2\x87.\xb3\x1fs\xe7-\xdd+\r\xb4\x117\xa7ei~\xb8\x16\xd1P\xf2\x84\x89K\x16\xd0F|\xa3\x89\xc9~9\x00'/204, 0x6)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x40, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe3000/0x18000)=nil, &(0x7f0000000400)=[@text64={0x40, 0x0}], 0x1, 0x67, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x4)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x40, 0x3, 0x4, '\x00', 0x8})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.493466757s ago: executing program 2 (id=1399):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(&(0x7f0000000080)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='udf\x00', 0x1000040, 0x0)
r0 = syz_open_dev$ndb(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
fstat(r0, 0x0)
socket$key(0xf, 0x3, 0x2)

2.323273601s ago: executing program 3 (id=1400):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0, 0x198)
chdir(&(0x7f00000003c0)='./bus\x00')
open(&(0x7f0000000140)='./file0\x00', 0x60842, 0x110)
r0 = syz_io_uring_setup(0xd1, &(0x7f0000000480)={0x0, 0x1c41, 0x400, 0xfffffffc, 0x338}, &(0x7f0000000080)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

1.805117908s ago: executing program 2 (id=1401):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x0, 0x0, "810000cc2b000000000000fa25ffff00ffffff"})
r3 = syz_open_pts(r2, 0x141601)
write(r3, &(0x7f0000000000)="d5", 0xfffffedf)
dup3(r3, r2, 0x0)

1.656305964s ago: executing program 3 (id=1402):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x6, 0x7fffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)

1.583395847s ago: executing program 5 (id=1403):
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[], 0x38}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x40, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x4)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="940000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0300000000000000640012800b000100697036677265000054"], 0x94}}, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0xff, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x6b, 0x0, 0x9, 0x9, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfd, '\x00', 0x80, 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.329487492s ago: executing program 3 (id=1404):
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f00000004c0), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
cachestat(r1, &(0x7f0000000040), &(0x7f0000000080), 0x0)

1.270921755s ago: executing program 4 (id=1405):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x1}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = syz_open_procfs(0x0, &(0x7f0000000380)='mountinfo\x00')
r4 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r4, r3, 0x0, 0x80000000)
syz_open_procfs(0x0, 0x0)

1.184071942s ago: executing program 5 (id=1406):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x2000, 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
write$tcp_mem(r3, &(0x7f0000000180)={0x5, 0x20, 0x544c, 0x20, 0x100000001}, 0x48)
write$binfmt_script(r3, &(0x7f0000000340)={'#! ', './file1/../file0'}, 0x14)

1.047226851s ago: executing program 4 (id=1407):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f0000004140)="a1af56567af19ce4706948d30f35abf6494690656d554e6190797369db23a302f328aa47a2e54509379ba2e477e6e0461d2e45920d509fa49de04732cd2f4a4e34d73eb464d09605a698ad2219a2175ebcc560f740fe531ba46ded4232d273d1865282844f5a3b54d7f154c21a8a82228e27b2c1af662a92e53d81cae3ea68707ce43f89c3321797039a0a39e24b83035dbfb1ac9668b5f87c4ae50250e92c8b113ed58f60015d9c1990253e6646c02901b08a2ec0acceb7ac1e28f59b1e22663432bd5435083b604934bda5f4897467677ac5609bb6e1d1f938a1a8238d2df6db69fcffa48a08ef9231830ceb045a999a9ba43b4d605ce7bb4736ee8bdaac3399576ad3d434c12f1ae8fc5e06dbbfac985d7105c3b7f431854465b6f732e1397e4647e88e86b0a3b01c1ef689a4bd3963deb3b06190576c690ab257b9845b4d412f248184e124b5228f4236d020d4b80ff0772d9515685918c41cad06498a6833d591c191916067759bfeceec176d582621bf23b8d827e2c8977822d64ca19c168fa8a4ea90a60ed60854342e7c42ce11f414dcff1fff715d10ed263d305e5c563ee13a1527795b012e01b8442026032a761cf5104f00dc28a761596d8393e3750be1a8788fa7152a3cd8e051a963120417af9bd3e659bbaac6406a70ba347641aeffac9436fc2352bf7822dabd7a4911a5b947f9c07f805e67ec8c7d787ff358b426494b87aaac46c2d4061ccf3d19201d8d099dddf2b257cacbba656cb7626b0d3fa11881e99799b92f0a07813eac359a64a61a03d6527a24a4fee8e6cbd74932adba5ad3a865788e874b796cc8555522b19f76676646f21f31fad8c360982ce2b23fd4aec43bff16e0f3f1e1e804daf28f236081d0686108fde25f7e6a7bef08b793beca5b21b5f4893543ef1e3a216378cb76a54fa879ad9624a60a0b3306c8548e1a22b735213969421dc9ef70338bb780ad55adfb6b4f4ca3d8ce7c697ce3f0a6210a27cc900ea2218c52ac06bbcbb91adff643f1a3b93db67d7902f23eb89ab2f892970551127b39e7bb9f37c62adb8abed20c8c84531d143c6be2b8b05766e248a94aae400b36a3399ba174ffe14ffd354f508ce30ea991f57018a3534e0eac9cb49d0e6085f93b367d817ee83b24c11f9d38044a9739f4fd41b6a8129fda808bb930beba6223dfe154b23d7c39ac4fb6656169275c31e15d37d3d96b0aaa13637f1c28178f5fc4ebbe1af6acc985c783a30dffde8d7eb0c8863e3481caf2606a4b6930c234736404d4eeefdda697193f57d332540a423831db671d7d3e8e15ef3d6a26b83a5053bdc2f0b378c6b39ad0b8b9c7bd5c4bf81018ce15d0b344772f6c6f469e40c9848cbcb1b3ccb721b4b1f895a6e034380d882bd30a20f1c2b8ae138e6728306e16f6093774d21b798cd73a16bc577be751deb434ef019dd454fa3ce3cc3b2634ea4957548bf226d0b24bce757382c639dae891e55dcb24ffc9dc2c08acfafabd4565dbcad34e1a8e781c56e9144f0e85a5cf6c79a5d1a8b3479cdc178215f05081eebdc03607798c66fd043824756e896c2b69fe5e843e0eb26c86a37a8944e93a7f3b2a863136d56579d0377f9424cf00dd6da7b19066f990ce05e1b93479f125cbcc5c91aea56ef04950164079f5e22ebfd77d54676b2de392ab20298876bce1ae9941ae109d7088edb29d02539aec8f276b862bb28fa6a68bb1a0bda1b0ec6e5891e93777d9b126d6add7eb36a7f75c435618d368c04156f8a116d0c843ad04842d7b7c84cd87e75fb81ec16ef184fd3119c16c950b84bca9a12a86f0e333d9fe34622f5a51e9772dc8b94c491e16db0c537e211b01c9f13f9e7a7b2f4d8053baded5d6018561b547562efbeab2946f3ef872d0256196c75fd7f520da7aea0f63a278052925c6c88307bed0336c5632ca98086e7712af309f99a6adb3ec4417eaa9aefe3fd43c4402bc13868832d6dfaa97de7ed43fe3711917de97058d60067d5eeb90ecb428182d07092c516e6eef6781756e308926faa9796dd1a29dd4c3827115fa8e14bbe449f4144785b9581a198273adb8bab0d4080adbb592b25fd74d426233f537562a4a98b07f4b2060b4f496c66a0169391b713fdd991fa90cfc313245f57900d980adcbd46ada0a7bdfdfec4bf8ba12e37724c9dfd7fbbe4541bf21cc393249a555746268e7e33bdb43f2cd4932e39fc818e49d0e588d12a3a297be074ad83db57be9d4455ab0685b087e8ee9f5c7c33e10c9d6be572b58c88b79756c45eb9eed6d0275944d9cc1cbc8c498917aa2fd79c00567d4f9f768579f891e23fa9548c5fbff150d2873ecc72da8d0077a223f9d18700b690d8046783bba756a2c9863b7ffc7022b2da68a332f72f704bc38a0fcc4f445891f1ca1ef5dad28b87ce8bdef23ffe29ee23f2c0a002c80cf99399dc7276aec6f9d8b6ff3d7554409a4e38d2029a43f8a70da62b33c44f5f4f299eec825302c52e5f83d462b81512775107059826c8880578f01d8cb53af86ad61a7e36c2ccdf55ce197ec2a78219a5b952a9bd12ac2cc3271e84e6dad464c7ec9d9f0310614200a98cfa933d5db05c00c95c59fc5bb8844ff856ee7f9b091700b1a93ae1c00a40d9e5e6ce036f90a6dc34faa9dc8e8972c49b055f9a43ae10251705a960f2cfc8430cf9bcafc26c8eccc8b75a788beb41d180d4364f3083f3ffb5e39049979903c76f440810b7ea608ff84f5e56f9e0653bf15b6b6332d458f8d2e2b17d7bd2305a8909996d2ebfc2ee2ff697fccb215bd8c73d4b9f5b597308f98ed8fbda58f52cf8443f5a9db7f0f6e75e1c9e47d73f8d0624e9e6f33c2dee3c6ff394082d78ffd3a68309b3085e1a7c106f62c3959a353672cadadf6c058fe366b03fcd95a23f564c55a3ce9a914c11c8b2d6040147a1539b106adecce531646fea4db06775fe5d1bf9cb0107941b620043ac9b7936b2af9849eca9c46062945b137dfa355a7ee0c81a0193fa60a70e59b407af06a7f181a3e4ccc81f2c580a6c6cf67a8bf93eb8ff2151b7074144bf7c5cff97814e0c00c138d984559ac8b95a45a4497174130bbb0db22fa53187db1d923d9ded441a4d2fcbe0ff5736ecc3d94bfbb2df632ac88a02f2c9f73312e7a9c2d8d6c0bbfc774595e2e63669f2b5bbf6ee6a1ab0c25e313d819b02c785494eda4cace033e96b1ecc5b155a14e0c8d51d54d8bf33e499d0913d9605a419bc6c73c6bb07d1a306adb27dfedbe81a386fb3bb659764442c4d9d66673a916ee5a6ae59abc994fff64f2db0c83e2b18944f619cfdea0ea0911064ab690b2e03670a3e3667651c1980d0491a40312307e4534671c9c8ca8712506eff211577783c81dc05ffae4a9c6d7554f9fec07b25451c70e6f4d4b160544b66d66dd88ef1c77f09133db317c39fca05b68ef3eee3c28cbe31982adb0693fe9699d06654150346915ccdb17c69ea3aa8bb36b5f321060f6237dec73a011b233b81a6337bd77da5da753593fe30282456a0da2c4a18911ab5a8af13c8f623e5684f74f322ba103482d9abec31a684707671759ac8bb2592d66350745f77f18bd6a6cba542644f1fdf0dca14a08f4ffd1365969ee896cb39e845f71590eb4c73cc624cdcfbdea2352ad5173e5e919fcb98f6d960341047d181075ec8b1e92f40ecd5a1bf157925329748cc7af0239a7803a0c947479e070b026baf6738c29c9a8351685abd43775726ec0bfeff4d51fd3fcb04b108de286c5f61a82ef496e20133ef8b4ae243e81b20822ea6285c70bf1a33cb9f4ceeec053f60992c0023bd5acb0d4a9a55ef377f2837784ada634070a85b0a42fabf288130d6b74ca23473fbce932bedb44cd51dae78efd058dde5d7eb4aadfe3dd8346420567e745ced5189db6df22edbc66580a236f6ab148a3efd69bdea3dac7cffb47df44dbef7fcb436902bb30d65d65d5320c3b76ac17f43d27b2deda8692ba03ac2ae60e4ed2a9232c71a98b9869259a410b901f38cd6712f69f2dc3f92b7c5909f3595e99c9fc77d4d33f9a0e57d5f121e2de782b22cf7fb9bf22fc6afde5e42876ff8005f8a042bb5a9b67d60f40a7ad1cd73810a4f704f14823d4074e5a32b028c8360432b8aff539705961fee84d6c60b2b4d2efad60fb20c1da653869349b81e6c3d56c96ce56a833ee9a2b3e92a4b96c5a545910406751b4e7da24a328de0e20042d1ecc3bf7fd97071bb2740f497307501d90fa9c8e5cd63a703096955f4934d9140ad295cae59232cf005574d875e098637ecb757305a51d102ae5323b23a61c1a1b888c5974a243e42bfc391114ba5ba28e2375cf1d6d1a63e6bd5cf9aff9af16bdc927f642151597fe6d18ab008426f25054ee8e39136e2c217ad1f4cbfccdaf9a0cbd97edef5fef9b2ec486a4b21d79021103deec2ceb26c0b0035856ea2370aa3a8de925797722aeeee2d504184988f9f8727915c389f043c3de2b0d8e3046c46b33cb1615f291f272ade0029cad1f1d2e723e62cf739b667b005de14c3ed265e3bc2d553bb232f88b92a8284996c50e141608623ca7677a9cefb85fb0e0e77e23b9767dd65fbc119a15969ecd10f8033d9f37a748a895fd39390563f5f7998bb10eda8610855eaeb2499d8234975edb16c438069e8701bec0a86ae108a19b9f54782648af4b7b04a1d7b6b3a853c24f2393120918d1eed7b40f467c88857ee9cddf5f01db495f3138984387adfe3cf51a47dca021f9f31b44af1d1ae7c9f4c768f2a46d5c012a937985f56436ae15528ae3597590c927be9676a4ca80a19d44457b06991c02488c96e31094cd963b64e8623fc7000009ddb29b0dbb13671c321d24e322a05cf215dd04eabc2cc6fdaed762d3f9da0f1e0e4b7ba13a6036771c9403457dfddecb71579de33c597860a2e49d7b5052a6b018ddb409a7a84f8f6651d070a4c913b7a721490c8f97c085de8315019952deae16434a3e5fd5d242b1b333d8a801aaa67e4aa599b818c8e747ecac2e9c6176bec7e34ecb84450903f5aa6c6c6bf539b240506562d73c5dfbacdfbcc9db3089701f2c7fe6d6b8d6728f8a1b90a911338463e6fd824ecda51578865b3c363b4b79f6c698e27760c1090f8ae52d6fd3f0f9488f1c25feab4b48c03ddcf74a8b6d2b0fc6b5a89b8051c99edee357fcb875f523f7a88a5f25222fc0ba159873b47fe906e88f920943e453048cdea455dd98fe77f55d9c92e205b87120ac5ef791cd7d6ce7d2cfe689db61096c6e4fc359c9aa4dd3d1205358da38882073ef7268239f7c74b0f3cd60ca239b2fcdc3f5c774559ffbb2b821f1314987d8cbe5342db9567a864d569abfde85f1124e2b178be4d020c4244ddb0cf4ef7124f295a81b9c10227ea886e6f6ea2dca031a026a4f946f49598b76141a0b18170bb3cfa9136c49c69d71732aa223db1e65553aa03bec9b0a35c31eb4e6b0dab02ec2c2d851a731be9cec6078456631c68761e14dbc9afa2c3f631a160ebf9d1fd3c2ecccf6d4aebaf0fafe2e9f47ea9d386425a7950671cde77c6951ef43a1ed32f0ed6fcda74ca9333d2513e4a40cfca01a17bfbc13b0229e2b16400880d96e4c687fc54ed0b34326126f845bd7cd2063c51abbf8bb61f6f1dc3606959f2dececc6e3e08d808841c4779ca0f5f51e7e03260d0b75b1b0355f8544c1639b2f0bfd6f95c4f6d151073a086ecc890d6366acbcee869020cf347e700a8361bd8d5c53e6480526aaf31c9c655eae11831184746a709387e60d68c062e5e05e578d11687f6a5411ffac4cfd62331f63a9726ae77c5799bcca05d6983c985cd23d025e3367ef8c7ee903de557322f38629628ee3076ac483f8257c6335a478412cad1d73b6fd43c37a62dd7a0ae7601f12b4478c3f2ee105a915ff2052d23a8b9af3ca59013f553006259d4cce52212862d22c08c29affa3520b33a6b68cf2b9f91d9258dc5052bf360977ba81a37701118f635379d852b6481843604c111bcfa4970afd5a0fa52824cb27ac9a77b7575e3e0cd043c29c5682a47fe94fd6c2c225b6d9939b99c18b5fb898c5f28e87a5b6a0bbeaa2c4725cf5494765d79a50d2417e84130bb37f540e8db7064e57935ec3c6f9caa2a9a1ced0f8c6eebcb9b688490b31f864dcd9b726628218b42f45aa82f2bcdf2c7532c9669ea7ffb6842451ac314a35cdb0855312448c24efd6583a582e15ad5e7f7b714f0ac703a24e2ee8769a868079af8660931ba325ea1c9b636ef7b13766204dd733c3bc69f11e026c382ac0fa5ce8413fb9f84408e4648a5e66b8592093a17a42cb105b616b8239d2031200eecb9beca6d411a71f072fd159eac0a4f4392a0cedb96248dad497b2379f3162254045ce276503093e5e7ab062b942cf6f2302a5ab9af1b3a315ec67faf84b70fdbdb39044a22cd7bd0f62ba66ce2257f3aa0f56d53c8157c4db3297087e25ec24696813430f386f5ad55bf6289f62e1492dc6ac3bb5047e933d54ec338cafb3bfae8336215611bc3e8a5cafaca7c70f580570518a675cc2075c7593e1d98ef02b74f06b041b6ed9b06e820d32b413de06235441a52346c3fd2e723816c7b481fbf564a525646ba62c615060b2f9fb0ff0f00c376c6dfcdb060aca7af2f07f6030a2ca324c8380c11f9c1182acdea2123c52f5a40b44909180a14037c760c4ecc10f20206445aa65cf835f09633491f608598f1fe5cb5175ddc48070fe0608335af27ded864f97dd52c235b7c4ece6bda153224b773c64235c1099054a55849cd1af7832abd1383e82f63715c9cc24543397bd56e34fd5d28e49021bb483617a3444fdcf8cdeb33bd8675334a897e17966fcbc1e5c5c5399bb6bf02a9bbfaa5f3c58d2efd007dcb1190af4ab4b71987ff7824bd9b9c6d6fb0b144c1fd462805aabf2c7fbb043ff22b496e41a4a81957892efe74d614d62d4b04bbf544fb03826e9baa2a84f32da4d1154c1d0fbdcc17f24a49633761d2b5962e618d8a9be2bf373cdc9c45ecff0148f355075fde5ad5e8da5d59498eb2b7f77a4c0622edd29d7dfedd748b750d0b48057fa7b8ff575714a408a926f6e0cad081eb24780fdbb116fb8dfefb2006f765ff95fe4def6b83fa97b3f54204a0c00cf71c4a1efeface1198a94610570816d08c19af76b03afa42f722abbfebb2c99a905300918dbcd131fce84632bf4f7f5dabd1b5b05742755b45e50eb89ee278e0f6f1a8ad3d9f907b9accbe4845f6591f8361b52e4dd8f19823efd7e89c2ba80c70671eea397e1953daa12907ce59d940a6dcfb3eef7ba7405bb489c38319ac4fee62dec986f4f0975dc1b9f576ebdbca90c42e7f3b1928154af66de5e54b16d8b6541f55daa90812ea7dab78a87d969e4bf95c47f70ce84f9e41e542bbb91f77105c8314e8bd5d8d37e11d9af07c5dcedfab1f21642bb30fb332f7c6bfe13cde2f28f104344777066afe5b0f6db14390f587e64417b0dab027cef4c5daedc75812a7452d45e57e8e274ad8cd8a10b2b9ce0f371809101e9340f2fa0a59501020e48f862572fef70b350938e00a921fb1c080e933eaad2d56daeed692e7d69d4b95a2d1a620da88247314bd73a20cc7a504427df77ba969b5adbf74321e982c2a1913b66a8687960c8fb71a850c1003c76fe1c3bbbc8eb142dfa01f5df52b72bde0c8884374f72eeb8038ad57beb6c732c511bd5847ae8d4b69e195f87b03379279936dda69e11cfda279f37e53a05cb787f118d66f62a87037981937d6083e47e31de6a2700cb7976c0dfcf972bdd458e561f13b3e30368c8bacb722611db7627ad4e00a34f69a5eb9edc7eae464b2422a4c38bed04c49b15fce25ccd22347720273127236d6e8178cb414d1b4dc36cabd19f713782bde48db7094577042083cf5d42224eaa69e0d70b57e6f1764a825909c48858cda13ab13ee203fd0d57291acf508f91f9bc428d4c9ea06a9df3c9ce183e0c101a4d52fd87866c2146219beb15e616ce239cb025ef3dfdb3a2568a833c88a66a580ca9d3f2b770647d5baa42a707351688dc0be3b15d2cead64792e9f9688ef95ea5274c08ee13c4a3797ce346dceeaf7d81a18181839ebeed412baf43ec1abb35b7930ed7a528f9a0bbccd1ea6eb525488c6731150afe791bf58e524de4cc62e174d134bf5d170132efdb2cbb42b882219de563cbe6280ce4cd8482699442b236d1bd54517c3ad25fb3d68a649920357d85f343f0b46ce4a78b1836b6ecb198f1f1686597206c09ad4534717402eefc0d5a90639f91b84d3de00e7d815059640ada64140687c3e404432c74e91907cdcf3e07e997eed9de114767829833920a9fa5bebf7d99fc4f461375f3426b136b680230c7aa135f0d2d72be7bdf8667a8cf0dd0bf5490e393b5a465d37b9ee0d659c8c0f96681b71a867978b3503a45dfe95e49b9d11b8ca953ab01ec1714ca9ca1e1ed5998e02934901dcac10a2553a94618db7d79c4a48741afe3bceaa994833595808f8080f6eafadd31caee252a7d115db962320be9503147d39adbd11b1cd4cf2cd4bf94d9036ea61b2d4791c6326af653847d2b6dd83f5df51eb9473ae0c305abe5f3896175d82a2b569bf100166004886dc58432cd678c0a4a152013b2646a68284567b898e6f3d38a9187b6d10075234b2e11b7c929b308bbcb82f4a8ceafc503f18536092f2965d13875060c926b5404ccf3bcfb1389688fb4bf57ff79201d8a00cbb54a12b3be4693b4a295284c90e7d0f08b632eb0411bbd01d51112afe5db173a8159dd38fe6e9804f6ae779479ffdc697ec572b0934704dfcc3e9b2bec95587285299d1d79192b2324e4eaf4de74df050170562c08e0a821f47745f63ecbbb767846ddcc331f459013ec90de697346f1e57345a51fd9d2233cb3591c406bc25ff5c098c331cd026aca7ac1fb1c35c3d3597c7deb89620a364044b30c77d5071bea5b196a0c380ad40370985713838b1c830130a5fc15c5501748a2c8369e77c3fd4ec2f5de572ee183f526359f28865d68eb87c21f8fcd4a09d76ee6d9ef31561d9c97ae3672500e342a798b04177f2c5896bd06b4c96a58aa839185ae44b838d763872bbf1e7b665848f1e186b5ab6cd4628f4725324981b0aff0b9af2f78883dc8433d2dc26c1766e0ec77c4eb63da1f859c09ace8889fd2c5ec7f7e11eeb547900dd9332b7b96ea6be35aea692e54c1cc3d1211bc843f8e8ce71abb88873e132fe214a7e7670fcac38516b6935b9e0a2eeb43a0aebd25676db551d8cff4fe0b6cecbd59701317022511a2d612864c09496c99af48e1cd066c5bae55b415ec08e99947ac94885ddf875d8f8af199aba32c0bfc27f6e19e57380618e7940481077edf6270ea3befce28a55c2a68a961142e959690ba294afd57c5530a5fbd5f60d791a3f06720947c74cec26a571a9f2e5cf98cccefba8beff72f2570f8a0e1a130c0e85d4fbb6a6f0b881af274c9eb063ef09176d43f8f18bdb35a0acb1c6305ba5563d1b6baff53b1251305de413052667c4cf9f94460bf348fb27ab5719ae44faf02dae55d8eab643040834b04aab15a197568e8ebd296638b01e5ea34e39ed47ffb58a47027d4b7d978028b7812a141df233065e93c20dc736af1cdcedcf7e766eab238b3b4d3df022f50b43973c47d1c80055e4fdf569e50fd382e840b76a6db6c06b1f0603a2234b9175c5e15a22855b57cd5257d9b5a456712f281f83e1c6c87f58be8166f8b2e85e9f54d24fe3b420d77a22745dfc7ebc89e21acf1c6649324f4c5bf53e188ce3216dbdec21a06fa9e61d830814697727305fb48c705c4d6c4bdfb874e43a8fb1423e2d2d6bdfe22a0d2b211d3beb86937c639c934cfe9a4b6c2853ff353829028854e8d7d75f29f01c4d7c297fe0236345ecce914b3be4907788a39c093c9f9e2c930a15563cc453d08123deadf853c83db0e3986d993e44e441a874411b7905708462e1ba42ea22521d7c57089a77b14b6dbe57f0ce69c7c4f1c0d53385655a8ed6294f113d33ad8867ac05e80403e6a8103d1574fab80f43a4a3af93a67678346d7b3b977a1381afb93990b1cc3aa73cc463f72bd898f647f3f5a3b342fb5e37140ddc499edda92ee624039ef3f802c9055e20b7d6e4f5a109cb4ca1bf84d37d1e78d45a10f45602b61216ea8969eba3a0075256faf8e577de835bf0b37311d16310645effca6751cf502a035d7ac7d1ca2c23547a739116efb586dfe2762ca4bf5ce5fc48913efb41a4a93fdb240f0895cdf306ddd13337d38a58402561dd663bbc675e1a378d4f770ba5e308c6ada84faf18ab2b387b0ac139a57dc534e278a1afecafcaed3746701cee14edce6c85cc39c91ed5be8a178d2fcd97567e8ab661d573278062bfc3c83acbfcdeec7f08d3c1197ccf830c883eaaa01e2cc44e91cdc1c47c03797528a9dd63cde259b4b211b57af121b125fefb26c110da83bbc150e2663a22273cc855cb3c52d02fd92db59a7c876d1a18e66cd64708aa478f3f10e726210dbbe2fb1afedb2034a7d59ad774e73f97d7b4b121cc25b90dd4fb5179816174dc4650b2da366d11a519f4310972944625c839b01040c712c635d967269c6c07189b5b1b496403e35e9ef01ecf7e795c357ae08b4736d2c1bcbe556cc671ffa37677b740baebaeb1b74c922d1ac83cb3ab86735d07ebffe072ca08ebd56d0ae89d5535a63bee75810468b1560534ecdb4a16495f9a7f42164df055942e94011848c5dac783a69fbdcac9c477850320af0c10da48775434088c7d090202f927463123639dbc1d48a871e4f20f75563f6dba586db6d12e2e7f36e7da4915037fcddb4413336b423f6b888bcf297fb8d33493e9fc2e992afeb1b83aaeaf46f4aba9bb0aa2708272ce5b0c90ef9f6c366c20e90d0f87aeba828196acdc4306131c515319776dfab27de1e3a501cfc560bd3a1dd29e54b87de9a01d0351184ed5cc3323cef72fd423dfbb0ac90eeec5474432ec1e4c64d68605c378320c0e97a3d89a409b7d969d6e116c2ba861f57418d8eaac5bff85c416ec5224d92df53d8f272c7e02e832bd21ef4d6b4a9bd307f8c1756c3e6c155bb2ce5807311d60b2fb31357c89119af443af2d3a4d08fb6221aaeee97bfdae51ebf6c51f98300033ec513ad6996041441d474ccf3a2548a11b94527ebc2e24d7519b1ded645da3af62060a4ae19eddc3bf331c4c762d9672de22558c655ba05338d985da134230fef2d0639743bdb4695517dd9e3733827050617b3cc792d12b3280e0000b22ad5130b27f9a5e25b965028874db5b5efdf881043e1279187294bbc35865af7662b23b9adf614a9af41fe4d0c9cfe62106a2bb6d294d3ca554062b2c7a0299f82fd5eb6841fedf096753b1a63a6b4dcce3837ee36062055c9f52b3272f411709db86d59db530fd1ed9cc2138817c290a2777d1d54cf4b7b2f8737444b58334a1c26f63ffda10b749b5796fa61ce6f74fecef2c4766a05d0468c1d7056beb8fa9cf7d51d5115690bcb889f09dbe01b1c55ac860a00cc159f6683d33fdca16d815fab5bbf00", 0x2000, &(0x7f0000000440)={&(0x7f0000000340)={0x50, 0x0, 0x4, {0x7, 0x28, 0x0, 0x8010, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
faccessat2(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x3, 0x300)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
umount2(&(0x7f0000000040)='.\x00', 0x2)
syz_fuse_handle_req(r0, &(0x7f0000006140)="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", 0x2000, &(0x7f0000000700)={&(0x7f00000002c0)={0xffffffffffffffdd, 0x0, 0x0, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.040246062s ago: executing program 1 (id=1408):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)

86.917195ms ago: executing program 1 (id=1409):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd26, 0x2, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}}, 0x0)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x2, {0x0, 0x0, 0x0, r6, {0x0, 0xc}, {}, {0x7, 0xa}}}, 0x24}}, 0x0)

0s ago: executing program 3 (id=1410):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0)
sendto$inet6(r0, &(0x7f00000002c0)="e8", 0xfffffffffffffd79, 0x2000c850, 0x0, 0x4d)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup3(r0, r1, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000001f00)=""/4106, 0xfffffffffffffccb, 0x0, 0x0}, &(0x7f0000000080)=0x40)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000001380)=0x40)

kernel console output (not intermixed with test programs):

560][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.436859][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.447694][ T5844] Bluetooth: hci4: command tx timeout
[   75.448611][   T55] Bluetooth: hci0: command tx timeout
[   75.453135][ T5835] Bluetooth: hci2: command tx timeout
[   75.461766][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.476762][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.487597][ T5828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.498179][ T5828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.509430][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.521890][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.534455][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.544538][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.555011][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.564843][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.575394][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.585256][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.596097][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.607545][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.635219][ T5828] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.644003][ T5828] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.653216][ T5828] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.661906][ T5828] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.676867][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.688442][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.698641][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.709100][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.718961][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.729440][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.739281][ T5824] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.750580][ T5824] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.762195][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.806450][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.816728][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.836233][ T5824] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.848634][ T5824] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.857428][ T5824] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.866257][ T5824] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.927301][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.938561][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.979057][ T3008] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.989380][ T3008] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.027618][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.045685][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.086767][ T3030] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.101335][ T3030] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.150518][ T5826] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   76.184910][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.193647][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.310289][ T1152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.338182][ T1152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.408473][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.421821][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.467674][ T1152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.502344][ T1152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.547064][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.568672][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.077407][ T5930] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   77.337231][ T5930] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   77.399406][ T5937] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6'.
[   77.445037][   T55] Bluetooth: hci3: command tx timeout
[   77.454174][   T55] Bluetooth: hci1: command tx timeout
[   77.524311][   T55] Bluetooth: hci4: command tx timeout
[   77.530557][   T55] Bluetooth: hci2: command tx timeout
[   77.542310][   T55] Bluetooth: hci0: command tx timeout
[   77.872647][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   78.055767][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   78.158348][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   78.252359][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   78.549067][   T30] audit: type=1326 audit(1744365145.262:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=5952 comm="syz.2.11" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f37b9b8d169 code=0x0
[   78.738939][ T5963] netlink: 'syz.3.14': attribute type 1 has an invalid length.
[   78.810209][ T5963] veth3: entered promiscuous mode
[   78.818208][ T5963] bridge0: port 3(veth3) entered blocking state
[   78.826680][ T5963] bridge0: port 3(veth3) entered disabled state
[   78.833491][ T5963] veth3: entered allmulticast mode
[   78.872508][ T5882] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   78.965784][ T5969] evm: overlay not supported
[   79.035883][ T5882] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   79.059169][ T5882] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   79.074405][ T5882] usb 5-1: New USB device found, idVendor=054c, idProduct=0268, bcdDevice= 0.10
[   79.101868][ T5882] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.170110][ T5882] usb 5-1: config 0 descriptor??
[   79.619282][ T5882] sony 0003:054C:0268.0001: unknown main item tag 0x0
[   79.651250][ T5882] sony 0003:054C:0268.0001: unknown main item tag 0x0
[   79.670002][ T5882] sony 0003:054C:0268.0001: unknown main item tag 0x0
[   79.693346][ T5882] sony 0003:054C:0268.0001: unknown main item tag 0x0
[   79.721706][ T5882] sony 0003:054C:0268.0001: unknown main item tag 0x0
[   79.729013][ T5878] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   79.794664][ T5882] sony 0003:054C:0268.0001: hiddev0,hidraw0: USB HID v80.00 Device [HID 054c:0268] on usb-dummy_hcd.4-1/input0
[   79.815065][ T5882] sony 0003:054C:0268.0001: failed to claim input
[   79.871217][ T5882] usb 5-1: USB disconnect, device number 2
[   79.904172][ T5878] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   79.912542][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.923855][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   79.935241][ T5878] usb 3-1: config 0 has no interfaces?
[   79.949150][ T5878] usb 3-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64
[   79.960989][ T5878] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   80.003712][ T5878] usb 3-1: Product: syz
[   80.021146][ T5878] usb 3-1: Manufacturer: syz
[   80.049818][ T5878] usb 3-1: SerialNumber: syz
[   80.070255][ T5878] usb 3-1: config 0 descriptor??
[   80.143542][ T5985] syz.3.22 (5985) used greatest stack depth: 19240 bytes left
[   80.348953][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.681427][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.690219][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.698933][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   81.914926][ T5879] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   82.113779][ T5879] usb 2-1: Using ep0 maxpacket: 8
[   82.148008][ T5879] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[   82.169273][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   82.200681][ T5879] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   82.227945][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   82.278996][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   82.296563][ T5879] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[   82.326709][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   82.367993][ T5879] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   82.390635][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   82.418264][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   82.447709][ T5879] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[   82.467684][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   82.533907][ T5878] usb 3-1: USB disconnect, device number 2
[   82.614026][ T5879] usb 2-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   82.988307][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   83.034713][   T30] audit: type=1800 audit(1744365149.742:3): pid=6033 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.40" name="file0" dev="overlay" ino=78 res=0 errno=0
[   83.039474][ T5879] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   83.171689][ T5879] usb 2-1: string descriptor 0 read error: -22
[   83.204125][ T5879] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   83.240562][ T5879] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.317038][ T5879] adutux 2-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   83.446266][ T6039] syzkaller0: entered promiscuous mode
[   83.451841][ T6039] syzkaller0: entered allmulticast mode
[   83.738831][ T6051] netlink: 'syz.1.33': attribute type 1 has an invalid length.
[   83.759030][ T6051] netlink: 8 bytes leftover after parsing attributes in process `syz.1.33'.
[   83.812217][ T5882] usb 2-1: USB disconnect, device number 2
[   84.452282][   T10] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   84.622657][   T10] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   84.643918][   T10] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[   84.667510][   T10] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   84.689537][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   84.717128][   T10] usb 1-1: SerialNumber: syz
[   84.979883][   T10] usb 1-1: 0:2 : does not exist
[   85.004281][   T10] usb 1-1: unit 255 not found!
[   85.051874][   T10] usb 1-1: 5:0: cannot get min/max values for control 9 (id 5)
[   85.147197][ T6086] netlink: 168 bytes leftover after parsing attributes in process `syz.3.57'.
[   85.249536][   T10] usb 1-1: USB disconnect, device number 2
[   85.574798][ T5831] udevd[5831]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   86.383632][   T52] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   86.635459][   T52] usb 1-1: Using ep0 maxpacket: 32
[   86.642004][   T52] usb 1-1: config 225 has an invalid interface number: 18 but max is 0
[   86.655983][   T52] usb 1-1: config 225 has no interface number 0
[   86.667532][   T52] usb 1-1: New USB device found, idVendor=2040, idProduct=6500, bcdDevice=db.32
[   86.677106][   T52] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.699162][   T52] usb 1-1: Product: syz
[   86.717574][   T52] usb 1-1: Manufacturer: syz
[   86.729258][ T1705] cfg80211: failed to load regulatory.db
[   86.765635][   T52] usb 1-1: SerialNumber: syz
[   87.056314][   T52] usb 1-1: USB disconnect, device number 3
[   88.640331][ T6120] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.864077][ T6120] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.095660][ T6120] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.114256][ T6132] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   89.395824][ T6120] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.705716][ T6120] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.788578][ T6120] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.866292][ T6120] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.919796][ T6120] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.579435][ T6157] random: crng reseeded on system resumption
[   90.919335][ T6169] mkiss: ax0: crc mode is auto.
[   90.979097][ T6173] fuse: Bad value for 'fd'
[   93.992198][ T1206] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   94.193107][ T1206] usb 5-1: Using ep0 maxpacket: 16
[   94.253418][ T1206] usb 5-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[   94.293696][ T1206] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   94.301734][ T1206] usb 5-1: Product: syz
[   94.368518][ T1206] usb 5-1: Manufacturer: syz
[   94.400776][ T1206] usb 5-1: SerialNumber: syz
[   94.451441][ T1206] usb 5-1: config 0 descriptor??
[   94.497619][ T1206] as10x_usb: device has been detected
[   94.549161][ T1206] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led))
[   94.712978][ T1206] usb 5-1: DVB: registering adapter 1 frontend 0 (Sky IT Digital Key (green led))...
[   94.734269][   T52] libceph: connect (1)[c::]:6789 error -101
[   94.763780][   T52] libceph: mon0 (1)[c::]:6789 connect error
[   94.804732][ T6210] ceph: No mds server is up or the cluster is laggy
[   94.869755][ T1206] as10x_usb: error during firmware upload part1
[   94.893775][ T1206] Registered device Sky IT Digital Key (green led)
[   94.918562][ T1206] usb 5-1: USB disconnect, device number 3
[   95.024702][ T1206] Unregistered device Sky IT Digital Key (green led)
[   95.036386][ T1206] as10x_usb: device has been disconnected
[   95.950489][   T30] audit: type=1326 audit(1744365162.662:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6231 comm="syz.1.101" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fadd638d169 code=0x0
[   97.080290][ T6253] netlink: 64 bytes leftover after parsing attributes in process `syz.0.106'.
[   98.914192][ T6266] XFS (nullb0): Invalid superblock magic number
[   99.623223][ T6285] RDS: rds_bind could not find a transport for ::ffff:172.30.0.2, load rds_tcp or rds_rdma?
[  103.333501][ T6332] mac80211_hwsim hwsim10 wlan1: entered allmulticast mode
[  103.472419][ T6332] netlink: 'syz.0.131': attribute type 10 has an invalid length.
[  104.218434][ T6332] mac80211_hwsim hwsim10 wlan1: left allmulticast mode
[  104.650625][ T6332] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  106.084635][   T55] Bluetooth: hci4: Malformed MSFT vendor event: 0x02
[  107.105205][ T6362] overlayfs: failed to clone upperpath
[  109.161820][ T6391] capability: warning: `syz.0.150' uses deprecated v2 capabilities in a way that may be insecure
[  109.785939][ T6405] syz.3.155 uses obsolete (PF_INET,SOCK_PACKET)
[  109.876463][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc1) = 0x60000000000
[  109.922723][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc1) = 0x60000000001
[  109.982450][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc2) = 0x60000000000
[  110.028981][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc2) = 0x60000000001
[  110.171098][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc1) = 0x60000000000
[  110.214171][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc1) = 0x60000000001
[  110.247236][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc2) = 0x60000000000
[  110.308051][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc2) = 0x60000000001
[  110.345415][ T6413] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  110.381895][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc1) = 0x60000000000
[  110.391366][ T6403] kvm: kvm [6402]: vcpu0, guest rIP: 0x28e Unhandled WRMSR(0xc1) = 0x60000000001
[  111.645313][ T6435] overlayfs: failed to clone upperpath
[  112.516526][   T55] block nbd2: Receive control failed (result -107)
[  112.742256][ T6448] syz.2.168: attempt to access beyond end of device
[  112.742256][ T6448] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  112.842274][ T6447] nbd2: detected capacity change from 0 to 12
[  112.877818][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  113.346219][ T6452] kvm: pic: non byte read
[  113.398115][ T6448] block nbd2: Dead connection, failed to find a fallback
[  113.453097][ T6448] block nbd2: shutting down sockets
[  113.453553][ T5831] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.458483][ T6448] I/O error, dev nbd2, sector 10 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.472833][ T5831] Buffer I/O error on dev nbd2, logical block 0, async page read
[  113.497153][ T5831] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.518061][ T5831] Buffer I/O error on dev nbd2, logical block 1, async page read
[  113.542476][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=5, location=5
[  113.556350][ T6448] I/O error, dev nbd2, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.589615][ T5831] I/O error, dev nbd2, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.645727][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=4, location=4
[  113.662241][ T5831] Buffer I/O error on dev nbd2, logical block 2, async page read
[  113.670175][ T5831] I/O error, dev nbd2, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.708409][ T5831] Buffer I/O error on dev nbd2, logical block 3, async page read
[  113.733167][ T6448] I/O error, dev nbd2, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.742510][ T5831] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.751529][ T5831] Buffer I/O error on dev nbd2, logical block 0, async page read
[  113.769992][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=3, location=3
[  113.840394][ T5831] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.850768][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  113.936904][ T6459] netlink: 'syz.4.172': attribute type 10 has an invalid length.
[  113.951851][ T5831] Buffer I/O error on dev nbd2, logical block 1, async page read
[  113.957753][ T6459] batman_adv: batadv0: Adding interface: team0
[  113.966152][ T6459] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.991626][ T6459] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  114.368599][ T5831] I/O error, dev nbd2, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  114.442484][ T5831] Buffer I/O error on dev nbd2, logical block 2, async page read
[  114.452599][ T5831] Buffer I/O error on dev nbd2, logical block 3, async page read
[  114.461588][ T5831] Buffer I/O error on dev nbd2, logical block 0, async page read
[  114.462834][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  114.472630][ T5831] Buffer I/O error on dev nbd2, logical block 1, async page read
[  114.544994][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=2, location=2
[  114.566076][ T5831] ldm_validate_partition_table(): Disk read failed.
[  114.583933][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=1, location=1
[  114.594275][ T5831] Dev nbd2: unable to read RDB block 0
[  114.603278][ T1206] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  114.610686][ T5831]  nbd2: unable to read partition table
[  114.618624][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=0, location=0
[  114.632290][ T5831] nbd2: partition table beyond EOD, truncated
[  114.677224][ T5831] ldm_validate_partition_table(): Disk read failed.
[  114.685446][ T5831] Dev nbd2: unable to read RDB block 0
[  114.691695][ T5831]  nbd2: unable to read partition table
[  114.691998][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  114.722396][ T5831] nbd2: partition table beyond EOD, truncated
[  114.748083][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  114.770946][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=0, location=0
[  114.802018][ T6448] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  114.837798][ T1206] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  114.850897][ T6448] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  114.872688][ T1206] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.880701][ T1206] usb 1-1: Product: syz
[  114.887310][ T1206] usb 1-1: Manufacturer: syz
[  114.916179][ T1206] usb 1-1: SerialNumber: syz
[  114.944445][ T1206] usb 1-1: config 0 descriptor??
[  116.088111][ T6476] netlink: 4 bytes leftover after parsing attributes in process `syz.4.180'.
[  116.137800][ T1206] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  116.176607][ T6486] netlink: 12 bytes leftover after parsing attributes in process `syz.4.180'.
[  118.082477][ T5882] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  118.085093][ T1206] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  118.299564][ T1206] usb 1-1: USB disconnect, device number 4
[  118.392673][ T5882] usb 2-1: Using ep0 maxpacket: 32
[  120.049047][   T55] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  120.058905][   T55] CPU: 0 UID: 0 PID: 55 Comm: kworker/u9:0 Not tainted 6.15.0-rc1-syzkaller-00246-g900241a5cc15 #0 PREEMPT(full) 
[  120.058929][   T55] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  120.058948][   T55] Workqueue: hci2 hci_rx_work
[  120.058988][   T55] Call Trace:
[  120.058994][   T55]  <TASK>
[  120.058999][   T55]  dump_stack_lvl+0x241/0x360
[  120.059017][   T55]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.059029][   T55]  ? __pfx__printk+0x10/0x10
[  120.059042][   T55]  ? kernfs_path_from_node+0x2b/0x250
[  120.059064][   T55]  ? kernfs_path_from_node+0x217/0x250
[  120.059087][   T55]  sysfs_create_dir_ns+0x2fd/0x3f0
[  120.059110][   T55]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  120.059141][   T55]  kobject_add_internal+0x435/0x8d0
[  120.059172][   T55]  kobject_add+0x15b/0x230
[  120.059190][   T55]  ? do_raw_spin_unlock+0x13c/0x8b0
[  120.059203][   T55]  ? device_add+0x3e7/0xbf0
[  120.059218][   T55]  ? __pfx_kobject_add+0x10/0x10
[  120.059239][   T55]  ? _raw_spin_unlock+0x28/0x50
[  120.059261][   T55]  ? get_device_parent+0x165/0x410
[  120.059285][   T55]  device_add+0x4e5/0xbf0
[  120.059306][   T55]  hci_conn_add_sysfs+0xe8/0x200
[  120.059322][   T55]  le_conn_complete_evt+0xc6e/0x12a0
[  120.059341][   T55]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  120.059357][   T55]  ? __mutex_unlock_slowpath+0x229/0x800
[  120.059382][   T55]  ? __skb_clone+0x5c/0x6d0
[  120.059404][   T55]  ? skb_pull_data+0x112/0x230
[  120.059429][   T55]  hci_le_enh_conn_complete_evt+0x185/0x420
[  120.059454][   T55]  hci_event_packet+0xa5c/0x1550
[  120.059471][   T55]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  120.059485][   T55]  ? __pfx_hci_event_packet+0x10/0x10
[  120.059501][   T55]  ? kcov_remote_start+0x480/0x7d0
[  120.059518][   T55]  ? lockdep_hardirqs_on+0x9d/0x150
[  120.059542][   T55]  ? hci_send_to_monitor+0xdc/0x530
[  120.059565][   T55]  hci_rx_work+0x3f3/0xdb0
[  120.059598][   T55]  ? process_scheduled_works+0x9cb/0x18e0
[  120.059610][   T55]  process_scheduled_works+0xac3/0x18e0
[  120.059635][   T55]  ? __pfx_process_scheduled_works+0x10/0x10
[  120.059650][   T55]  ? assign_work+0x367/0x3d0
[  120.059668][   T55]  worker_thread+0x870/0xd50
[  120.059702][   T55]  ? __kthread_parkme+0x1a8/0x200
[  120.059725][   T55]  ? __pfx_worker_thread+0x10/0x10
[  120.059743][   T55]  kthread+0x7b7/0x940
[  120.059758][   T55]  ? __pfx_worker_thread+0x10/0x10
[  120.059768][   T55]  ? __pfx_kthread+0x10/0x10
[  120.059778][   T55]  ? __pfx_kthread+0x10/0x10
[  120.059789][   T55]  ? __pfx_kthread+0x10/0x10
[  120.059800][   T55]  ? __pfx_kthread+0x10/0x10
[  120.059815][   T55]  ? _raw_spin_unlock_irq+0x23/0x50
[  120.059830][   T55]  ? lockdep_hardirqs_on+0x9d/0x150
[  120.059849][   T55]  ? __pfx_kthread+0x10/0x10
[  120.059870][   T55]  ret_from_fork+0x4b/0x80
[  120.059886][   T55]  ? __pfx_kthread+0x10/0x10
[  120.059901][   T55]  ret_from_fork_asm+0x1a/0x30
[  120.059923][   T55]  </TASK>
[  120.059941][   T55] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  120.357583][   T55] Bluetooth: hci2: failed to register connection device
[  120.447366][ T5882] usb 2-1: device descriptor read/all, error -71
[  120.782386][ T6551] netlink: 64 bytes leftover after parsing attributes in process `syz.4.205'.
[  125.245426][ T6615] netlink: 64 bytes leftover after parsing attributes in process `syz.2.220'.
[  125.522343][   T10] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  125.714352][ T6617] overlayfs: upper fs does not support file handles, falling back to index=off.
[  125.867362][   T10] usb 1-1: Using ep0 maxpacket: 16
[  125.892473][   T10] usb 1-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[  125.911791][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.935654][   T10] usb 1-1: Product: syz
[  125.953444][   T10] usb 1-1: Manufacturer: syz
[  125.958080][   T10] usb 1-1: SerialNumber: syz
[  126.013747][   T10] usb 1-1: config 0 descriptor??
[  126.047155][   T10] as10x_usb: device has been detected
[  126.091773][   T10] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led))
[  126.131120][   T10] usb 1-1: DVB: registering adapter 1 frontend 0 (Sky IT Digital Key (green led))...
[  126.161734][   T10] as10x_usb: error during firmware upload part1
[  126.170444][   T10] Registered device Sky IT Digital Key (green led)
[  126.841533][   T10] usb 1-1: USB disconnect, device number 5
[  126.952812][   T10] Unregistered device Sky IT Digital Key (green led)
[  126.963203][   T10] as10x_usb: device has been disconnected
[  128.300272][ T6655] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  128.311640][   T10] IPVS: starting estimator thread 0...
[  128.412287][ T6660] IPVS: using max 28 ests per chain, 67200 per kthread
[  128.801265][ T6664] netlink: 4 bytes leftover after parsing attributes in process `syz.3.239'.
[  130.564482][   T10] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  130.742264][   T10] usb 2-1: Using ep0 maxpacket: 16
[  130.754719][   T10] usb 2-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[  130.764237][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.772585][   T10] usb 2-1: Product: syz
[  130.777759][   T10] usb 2-1: Manufacturer: syz
[  130.785137][   T10] usb 2-1: SerialNumber: syz
[  130.801197][   T10] usb 2-1: config 0 descriptor??
[  130.886390][   T10] as10x_usb: device has been detected
[  130.899059][   T10] dvbdev: DVB: registering new adapter (Sky IT Digital Key (green led))
[  130.928945][   T10] usb 2-1: DVB: registering adapter 1 frontend 0 (Sky IT Digital Key (green led))...
[  131.077699][   T10] as10x_usb: error during firmware upload part1
[  131.237672][   T10] Registered device Sky IT Digital Key (green led)
[  131.313912][   T10] usb 2-1: USB disconnect, device number 5
[  131.489666][   T10] Unregistered device Sky IT Digital Key (green led)
[  131.537513][   T10] as10x_usb: device has been disconnected
[  131.571142][ T6708] vlan2: entered allmulticast mode
[  131.622746][ T6708] bond0: entered allmulticast mode
[  131.648564][ T6708] bond_slave_0: entered allmulticast mode
[  131.706252][ T6708] bond_slave_1: entered allmulticast mode
[  131.773700][ T6708] bridge0: port 3(vlan2) entered blocking state
[  131.802355][ T6708] bridge0: port 3(vlan2) entered disabled state
[  131.820160][ T6708] vlan2: entered promiscuous mode
[  131.825490][ T6708] bond0: entered promiscuous mode
[  131.830792][ T6708] bond_slave_0: entered promiscuous mode
[  131.837540][ T6708] bond_slave_1: entered promiscuous mode
[  131.844494][ T6708] bridge0: port 3(vlan2) entered blocking state
[  131.850983][ T6708] bridge0: port 3(vlan2) entered forwarding state
[  132.719977][ T6724] netlink: 24 bytes leftover after parsing attributes in process `syz.4.259'.
[  132.774151][ T6730] block nbd2: shutting down sockets
[  132.818671][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  132.822685][ T6724] netlink: 4 bytes leftover after parsing attributes in process `syz.4.259'.
[  132.825380][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  135.662703][ T6795] overlayfs: failed to clone upperpath
[  135.815576][ T6802] overlayfs: failed to clone upperpath
[  135.909526][ T6804] netlink: 4 bytes leftover after parsing attributes in process `syz.0.289'.
[  137.522181][   T55] Bluetooth: hci4: command tx timeout
[  138.863748][ T6867] 9pnet: Found fid 0 not clunked
[  139.619234][ T6882] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  141.333906][ T6899] xt_CT: No such helper "syz1"
[  142.128257][ T6931] overlayfs: failed to get index nlink (file1/bus, err=-61)
[  142.645755][ T6945] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  142.788098][   T30] audit: type=1326 audit(1744365209.472:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  142.841677][   T30] audit: type=1326 audit(1744365209.472:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  142.948096][   T30] audit: type=1326 audit(1744365209.532:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  143.091964][   T30] audit: type=1326 audit(1744365209.532:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  143.272316][   T30] audit: type=1326 audit(1744365209.532:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  143.352211][   T30] audit: type=1326 audit(1744365209.532:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  143.422197][   T30] audit: type=1326 audit(1744365209.532:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  143.969374][   T30] audit: type=1326 audit(1744365209.532:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  144.212752][   T30] audit: type=1326 audit(1744365209.542:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  144.635042][   T30] audit: type=1326 audit(1744365209.542:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6944 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4580b8d169 code=0x7ffc0000
[  144.869363][ T6974] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  145.431756][ T6992] netlink: 'syz.3.352': attribute type 13 has an invalid length.
[  146.108977][ T6992] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  146.141288][ T6998] batman_adv: batadv0: Adding interface: dummy0
[  146.158707][ T6998] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  146.185050][ T6998] batman_adv: batadv0: Interface activated: dummy0
[  146.201213][ T7001] batadv0: mtu less than device minimum
[  146.209003][ T7001] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  146.220818][ T7001] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  146.231962][ T7001] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  146.243736][ T7001] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  146.255481][ T7001] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  146.267312][ T7001] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  146.279227][ T7001] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  146.748299][   T10] hid-generic 0003:0003:FFFFFFFD.0002: unknown main item tag 0x0
[  146.758395][   T10] hid-generic 0003:0003:FFFFFFFD.0002: unknown main item tag 0x0
[  146.776387][   T10] hid-generic 0003:0003:FFFFFFFD.0002: hidraw0: USB HID v0.00 Device [syz0] on syz0
[  146.944907][ T7034] netlink: 'syz.3.367': attribute type 1 has an invalid length.
[  147.012924][ T7034] 8021q: adding VLAN 0 to HW filter on device bond1
[  147.055879][ T7038] bond1: (slave veth5): Enslaving as an active interface with a down link
[  147.092304][ T1705] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  147.103548][ T7034] ip6erspan0: entered allmulticast mode
[  147.113374][ T7034] bond1: (slave ip6erspan0): making interface the new active one
[  147.124266][ T7034] ip6erspan0: entered promiscuous mode
[  147.130526][ T7034] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  147.170700][ T7034] syz.3.367 (7034) used greatest stack depth: 18744 bytes left
[  147.254305][ T1705] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  147.271069][ T1705] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  147.300656][ T1705] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.319013][ T1705] usb 3-1: config 0 descriptor??
[  147.332001][ T1705] pwc: Askey VC010 type 2 USB webcam detected.
[  147.479796][ T7051] overlayfs: failed to clone upperpath
[  147.699471][ T7061] netlink: 4 bytes leftover after parsing attributes in process `syz.0.375'.
[  147.745582][ T1705] pwc: recv_control_msg error -32 req 02 val 2b00
[  147.755487][ T1705] pwc: recv_control_msg error -32 req 02 val 2700
[  147.762695][ T1705] pwc: recv_control_msg error -32 req 02 val 2c00
[  147.770499][ T1705] pwc: recv_control_msg error -32 req 04 val 1000
[  147.778947][ T1705] pwc: recv_control_msg error -32 req 04 val 1300
[  147.786217][ T1705] pwc: recv_control_msg error -32 req 04 val 1400
[  147.798153][ T1705] pwc: recv_control_msg error -32 req 02 val 2000
[  148.006432][ T1705] pwc: recv_control_msg error -71 req 04 val 1500
[  148.020759][ T1705] pwc: recv_control_msg error -71 req 02 val 2500
[  148.027650][ T1705] pwc: recv_control_msg error -71 req 02 val 2400
[  148.034585][ T1705] pwc: recv_control_msg error -71 req 02 val 2600
[  148.041408][ T1705] pwc: recv_control_msg error -71 req 02 val 2900
[  148.048184][ T1705] pwc: recv_control_msg error -71 req 02 val 2800
[  148.055279][ T1705] pwc: recv_control_msg error -71 req 04 val 1100
[  148.062201][ T1705] pwc: recv_control_msg error -71 req 04 val 1200
[  148.072314][ T5882] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  148.080457][ T1705] pwc: Registered as video103.
[  148.086991][ T1705] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input5
[  148.106362][ T1705] usb 3-1: USB disconnect, device number 3
[  148.255226][ T5882] usb 1-1: config 252 has an invalid interface number: 186 but max is 0
[  148.263842][ T5882] usb 1-1: config 252 has no interface number 0
[  148.272177][ T5882] usb 1-1: New USB device found, idVendor=0403, idProduct=bcd8, bcdDevice=27.67
[  148.281291][ T5882] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.289318][ T5882] usb 1-1: Product: syz
[  148.294263][ T5882] usb 1-1: Manufacturer: syz
[  148.298865][ T5882] usb 1-1: SerialNumber: syz
[  148.308998][ T5882] ftdi_sio 1-1:252.186: FTDI USB Serial Device converter detected
[  148.317905][ T5882] ftdi_sio ttyUSB0: unknown device type: 0x2767
[  148.520466][   T10] usb 1-1: USB disconnect, device number 6
[  148.527580][   T10] ftdi_sio 1-1:252.186: device disconnected
[  150.150353][ T7097] input: syz0 as /devices/virtual/input/input6
[  151.016170][ T7115] netlink: 64 bytes leftover after parsing attributes in process `syz.1.390'.
[  151.630266][ T7142] [U] 
[  151.633160][ T7142] [U] 
[  151.635867][ T7142] [U] 
[  151.638571][ T7142] [U] 
[  151.648188][ T7142] [U] 
[  151.650912][ T7142] [U] 
[  151.653615][ T7142] [U] 
[  151.656314][ T7142] [U] 
[  151.661637][ T7142] [U] 
[  151.664352][ T7142] [U] 
[  151.667051][ T7142] [U] 
[  151.669751][ T7142] [U] 
[  151.693102][ T7142] [U] 
[  151.695834][ T7142] [U] 
[  151.698533][ T7142] [U] 
[  151.701236][ T7142] [U] 
[  151.707853][ T7142] [U] 
[  151.710580][ T7142] [U] 
[  151.713288][ T7142] [U] 
[  151.715990][ T7142] [U] 
[  151.728394][ T7142] [U] 
[  151.731116][ T7142] [U] 
[  151.733824][ T7142] [U] 
[  151.736518][ T7142] [U] 
[  151.740121][ T7142] [U] 
[  151.742835][ T7142] [U] 
[  151.745534][ T7142] [U] 
[  151.748238][ T7142] [U] 
[  151.755035][ T7142] [U] 
[  151.757759][ T7142] [U] 
[  151.760445][ T7142] [U] 
[  151.763122][ T7142] [U] 
[  151.767230][ T7142] [U] 
[  151.769946][ T7142] [U] 
[  151.772644][ T7142] [U] 
[  151.775345][ T7142] [U] 
[  151.781677][ T7142] [U] 
[  151.784395][ T7142] [U] 
[  151.787097][ T7142] [U] 
[  151.789794][ T7142] [U] 
[  151.801915][ T7142] [U] 
[  151.804635][ T7142] [U] 
[  151.807336][ T7142] [U] 
[  151.810035][ T7142] [U] 
[  151.818404][ T7142] [U] 
[  151.821121][ T7142] [U] 
[  151.823814][ T7142] [U] 
[  151.826517][ T7142] [U] 
[  151.829834][ T7142] [U] 
[  151.832543][ T7142] [U] 
[  151.835243][ T7142] [U] 
[  151.837948][ T7142] [U] 
[  151.852671][ T7142] [U] 
[  151.855388][ T7142] [U] 
[  151.858090][ T7142] [U] 
[  151.860788][ T7142] [U] 
[  151.867299][ T7142] [U] 
[  151.870007][ T7142] [U] 
[  151.872689][ T7142] [U] 
[  151.875364][ T7142] [U] 
[  151.878195][ T7142] [U] 
[  151.880898][ T7142] [U] 
[  151.883598][ T7142] [U] 
[  151.886294][ T7142] [U] 
[  151.898120][ T7142] [U] 
[  151.900840][ T7142] [U] 
[  151.903546][ T7142] [U] 
[  151.906249][ T7142] [U] 
[  151.979725][ T7142] [U] 
[  151.982467][ T7142] [U] 
[  151.985167][ T7142] [U] 
[  151.987864][ T7142] [U] 
[  151.998255][ T7142] [U] 
[  152.000978][ T7142] [U] 
[  152.003677][ T7142] [U] 
[  152.006373][ T7142] [U] 
[  152.009171][ T7142] [U] 
[  152.011879][ T7142] [U] 
[  152.014580][ T7142] [U] 
[  152.017275][ T7142] [U] 
[  152.035653][ T7142] [U] 
[  152.038374][ T7142] [U] 
[  152.041080][ T7142] [U] 
[  152.043780][ T7142] [U] 
[  152.050307][ T7142] [U] 
[  152.053029][ T7142] [U] 
[  152.055724][ T7142] [U] 
[  152.058406][ T7142] [U] 
[  152.086751][ T7142] [U] 
[  152.089478][ T7142] [U] 
[  152.092179][ T7142] [U] 
[  152.094853][ T7142] [U] 
[  152.101134][ T7142] [U] 
[  152.103845][ T7142] [U] 
[  152.106513][ T7142] [U] 
[  152.109180][ T7142] [U] 
[  152.126677][ T7142] [U] 
[  152.129369][ T7142] [U] 
[  152.132039][ T7142] [U] 
[  152.134706][ T7142] [U] 
[  152.141684][ T7142] [U] 
[  152.144373][ T7142] [U] 
[  152.147042][ T7142] [U] 
[  152.149707][ T7142] [U] 
[  152.156664][ T7142] [U] 
[  152.159364][ T7142] [U] 
[  152.162031][ T7142] [U] 
[  152.164697][ T7142] [U] 
[  152.167592][ T7142] [U] 
[  152.170271][ T7142] [U] 
[  152.172941][ T7142] [U] 
[  152.175607][ T7142] [U] 
[  152.183534][ T7142] [U] 
[  152.186232][ T7142] [U] 
[  152.188915][ T7142] [U] 
[  152.191588][ T7142] [U] 
[  152.196792][ T7142] [U] 
[  152.199518][ T7142] [U] 
[  152.202221][ T7142] [U] 
[  152.204916][ T7142] [U] 
[  152.209973][ T7142] [U] 
[  152.212690][ T7142] [U] 
[  152.215385][ T7142] [U] 
[  152.218079][ T7142] [U] 
[  152.223046][ T7142] [U] 
[  152.225759][ T7142] [U] 
[  152.228466][ T7142] [U] 
[  152.253709][ T7141] [U] 
[  153.685668][ T7177] netlink: 8 bytes leftover after parsing attributes in process `syz.1.416'.
[  153.721296][ T7177] netlink: 4 bytes leftover after parsing attributes in process `syz.1.416'.
[  153.802237][ T7177] netlink: 32 bytes leftover after parsing attributes in process `syz.1.416'.
[  154.106340][   T55] block nbd0: Receive control failed (result -107)
[  154.144330][ T7177] nbd0: detected capacity change from 0 to 256
[  155.822786][ T7190] netlink: 8 bytes leftover after parsing attributes in process `syz.1.420'.
[  155.902198][ T7190] nbd: nbd0 already in use
[  156.385315][ T7203] netlink: 96 bytes leftover after parsing attributes in process `syz.0.425'.
[  157.065166][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  157.065183][   T30] audit: type=1326 audit(1744365223.732:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7199 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c7458d169 code=0x7fc00000
[  158.016856][ T7236] netlink: 4 bytes leftover after parsing attributes in process `syz.0.434'.
[  158.037889][ T7236] bridge_slave_1: left allmulticast mode
[  158.043737][ T7236] bridge_slave_1: left promiscuous mode
[  158.050660][ T7236] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.077414][ T7236] bridge_slave_0: left allmulticast mode
[  158.087356][ T7236] bridge_slave_0: left promiscuous mode
[  158.093240][ T7236] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.593332][ T7271] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  158.625723][ T7271] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  158.657358][ T7266] kvm: pic: non byte write
[  158.681776][ T7271] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  159.197347][ T7288] overlayfs: failed to clone upperpath
[  159.702064][ T7295] netlink: 'syz.3.456': attribute type 4 has an invalid length.
[  159.739922][ T7295] netlink: 'syz.3.456': attribute type 4 has an invalid length.
[  160.038947][ T7311] batman_adv: batadv0: Interface deactivated: dummy0
[  160.045995][ T7311] batman_adv: batadv0: Removing interface: dummy0
[  160.066378][ T7311] bridge_slave_0: left allmulticast mode
[  160.092448][ T7311] bridge_slave_0: left promiscuous mode
[  160.102467][ T7311] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.125837][ T7311] bridge_slave_1: left allmulticast mode
[  160.151894][ T7311] bridge_slave_1: left promiscuous mode
[  160.162557][ T7311] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.197099][ T7311] bond0: (slave bond_slave_0): Releasing backup interface
[  160.215076][ T7311] bond0: (slave bond_slave_1): Releasing backup interface
[  160.248724][ T7311] team0: Port device team_slave_0 removed
[  160.280907][ T7311] team0: Port device team_slave_1 removed
[  160.289891][ T7311] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.311206][ T7311] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.320934][ T7311] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  160.329010][ T7311] batman_adv: batadv0: Removing interface: batadv_slave_1
[  160.376302][ T7313] team0: Mode changed to "loadbalance"
[  160.702349][ T6187] ip6erspan0: left promiscuous mode
[  161.732217][ T1206] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  162.272231][ T1206] usb 2-1: Using ep0 maxpacket: 8
[  162.324383][ T1206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  162.356226][ T1206] usb 2-1: New USB device found, idVendor=050d, idProduct=3201, bcdDevice= 0.00
[  162.401295][ T1206] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.509762][ T1206] usb 2-1: config 0 descriptor??
[  163.018279][ T1206] belkin 0003:050D:3201.0003: unknown main item tag 0x0
[  163.030825][ T1206] belkin 0003:050D:3201.0003: unknown main item tag 0x0
[  163.040425][ T1206] belkin 0003:050D:3201.0003: item fetching failed at offset 2/5
[  163.098764][ T1206] belkin 0003:050D:3201.0003: parse failed
[  163.111160][ T1206] belkin 0003:050D:3201.0003: probe with driver belkin failed with error -22
[  163.219636][ T1206] usb 2-1: USB disconnect, device number 6
[  163.877236][ T7398] overlayfs: failed to clone upperpath
[  164.209860][ T7413] overlayfs: failed to clone upperpath
[  165.532245][ T5879] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  165.667293][ T7444] netlink: 24 bytes leftover after parsing attributes in process `syz.1.514'.
[  165.737892][ T5879] usb 3-1: config 1 has an invalid descriptor of length 111, skipping remainder of the config
[  165.770700][ T5879] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  165.785959][ T5879] usb 3-1: config 1 has no interface number 0
[  165.795700][ T5879] usb 3-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  165.820278][ T5879] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  165.829637][ T5879] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.837707][ T5879] usb 3-1: Product: syz
[  165.858108][ T5879] usb 3-1: Manufacturer: syz
[  165.882452][ T5879] usb 3-1: SerialNumber: syz
[  165.903358][ T5879] usb 3-1: selecting invalid altsetting 1
[  166.351190][ T7458] netlink: 4 bytes leftover after parsing attributes in process `syz.3.518'.
[  166.524723][ T5879] usb 3-1: selecting invalid altsetting 1
[  166.532353][ T5879] cdc_ncm 3-1:1.1: bind() failure
[  166.711668][ T5879] usb 3-1: USB disconnect, device number 4
[  171.857689][   T55] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  171.867734][   T55] CPU: 1 UID: 0 PID: 55 Comm: kworker/u9:0 Not tainted 6.15.0-rc1-syzkaller-00246-g900241a5cc15 #0 PREEMPT(full) 
[  171.867758][   T55] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  171.867769][   T55] Workqueue: hci3 hci_rx_work
[  171.867797][   T55] Call Trace:
[  171.867804][   T55]  <TASK>
[  171.867812][   T55]  dump_stack_lvl+0x241/0x360
[  171.867841][   T55]  ? __pfx_dump_stack_lvl+0x10/0x10
[  171.867864][   T55]  ? __pfx__printk+0x10/0x10
[  171.867886][   T55]  ? kernfs_path_from_node+0x2b/0x250
[  171.867919][   T55]  ? kernfs_path_from_node+0x217/0x250
[  171.867944][   T55]  sysfs_create_dir_ns+0x2fd/0x3f0
[  171.867969][   T55]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  171.868001][   T55]  kobject_add_internal+0x435/0x8d0
[  171.868033][   T55]  kobject_add+0x15b/0x230
[  171.868053][   T55]  ? do_raw_spin_unlock+0x13c/0x8b0
[  171.868075][   T55]  ? device_add+0x3e7/0xbf0
[  171.868095][   T55]  ? __pfx_kobject_add+0x10/0x10
[  171.868116][   T55]  ? _raw_spin_unlock+0x28/0x50
[  171.868138][   T55]  ? get_device_parent+0x165/0x410
[  171.868161][   T55]  device_add+0x4e5/0xbf0
[  171.868186][   T55]  hci_conn_add_sysfs+0xe8/0x200
[  171.868213][   T55]  le_conn_complete_evt+0xc6e/0x12a0
[  171.868248][   T55]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  171.868265][   T55]  ? __mutex_unlock_slowpath+0x229/0x800
[  171.868289][   T55]  ? __skb_clone+0x5c/0x6d0
[  171.868311][   T55]  ? skb_pull_data+0x112/0x230
[  171.868337][   T55]  hci_le_enh_conn_complete_evt+0x185/0x420
[  171.868366][   T55]  hci_event_packet+0xa5c/0x1550
[  171.868394][   T55]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  171.868420][   T55]  ? __pfx_hci_event_packet+0x10/0x10
[  171.868449][   T55]  ? kcov_remote_start+0x480/0x7d0
[  171.868471][   T55]  ? lockdep_hardirqs_on+0x9d/0x150
[  171.868495][   T55]  ? hci_send_to_monitor+0xdc/0x530
[  171.868518][   T55]  hci_rx_work+0x3f3/0xdb0
[  171.868553][   T55]  ? process_scheduled_works+0x9cb/0x18e0
[  171.868571][   T55]  process_scheduled_works+0xac3/0x18e0
[  171.868621][   T55]  ? __pfx_process_scheduled_works+0x10/0x10
[  171.868650][   T55]  ? assign_work+0x367/0x3d0
[  171.868671][   T55]  worker_thread+0x870/0xd50
[  171.868710][   T55]  ? __kthread_parkme+0x1a8/0x200
[  171.868733][   T55]  ? __pfx_worker_thread+0x10/0x10
[  171.868752][   T55]  kthread+0x7b7/0x940
[  171.868775][   T55]  ? __pfx_worker_thread+0x10/0x10
[  171.868795][   T55]  ? __pfx_kthread+0x10/0x10
[  171.868813][   T55]  ? __pfx_kthread+0x10/0x10
[  171.868833][   T55]  ? __pfx_kthread+0x10/0x10
[  171.868854][   T55]  ? __pfx_kthread+0x10/0x10
[  171.868873][   T55]  ? _raw_spin_unlock_irq+0x23/0x50
[  171.868889][   T55]  ? lockdep_hardirqs_on+0x9d/0x150
[  171.868914][   T55]  ? __pfx_kthread+0x10/0x10
[  171.868937][   T55]  ret_from_fork+0x4b/0x80
[  171.868954][   T55]  ? __pfx_kthread+0x10/0x10
[  171.868975][   T55]  ret_from_fork_asm+0x1a/0x30
[  171.869017][   T55]  </TASK>
[  171.869938][   T55] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  172.161461][   T55] Bluetooth: hci3: failed to register connection device
[  172.367487][ T7549] netlink: 'syz.1.553': attribute type 7 has an invalid length.
[  172.414811][ T7549] netlink: 8 bytes leftover after parsing attributes in process `syz.1.553'.
[  172.694863][ T7560] netlink: 96 bytes leftover after parsing attributes in process `syz.3.557'.
[  172.818138][   T30] audit: type=1800 audit(1744365239.532:18): pid=7565 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.559" name="nullb0" dev="tmpfs" ino=592 res=0 errno=0
[  172.925080][ T7569] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  173.760716][ T7594] kernel read not supported for file /eth0 (pid: 7594 comm: syz.0.570)
[  173.778929][   T30] audit: type=1800 audit(1744365240.482:19): pid=7594 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.570" name="eth0" dev="mqueue" ino=16340 res=0 errno=0
[  174.754609][ T7617] overlayfs: failed to clone upperpath
[  175.256640][ T7624] netlink: 12 bytes leftover after parsing attributes in process `syz.3.581'.
[  175.357358][ T7625] bridge_slave_1: left allmulticast mode
[  175.400225][ T7625] bridge_slave_1: left promiscuous mode
[  175.432405][ T7625] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.491037][ T7625] bridge1: port 1(bridge_slave_1) entered blocking state
[  175.516738][ T7625] bridge1: port 1(bridge_slave_1) entered disabled state
[  175.545775][ T7625] bridge_slave_1: entered allmulticast mode
[  175.570869][ T7625] bridge_slave_1: entered promiscuous mode
[  175.610922][ T7638] Zero length message leads to an empty skb
[  176.812485][ T5886] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  176.997508][ T5886] usb 2-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  177.006776][ T5886] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.031134][ T5886] usb 2-1: config 0 descriptor??
[  177.055005][ T5886] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  178.079019][ T7685] ucma_write: process 353 (syz.4.603) changed security contexts after opening file descriptor, this is not allowed.
[  178.081724][ T5886] usb 2-1: USB disconnect, device number 7
[  178.891004][ T5879] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  178.912614][ T5879] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  178.934391][ T5879] hid-generic 0000:0003:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  180.905989][ T7739] 8021q: adding VLAN 0 to HW filter on device batadv1
[  180.963683][ T7739] batadv1: entered promiscuous mode
[  180.971493][ T7739] batadv1: entered allmulticast mode
[  180.992800][ T7739] bond0: (slave batadv1): Enslaving as an active interface with an up link
[  181.097037][ T7750] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  182.712276][ T1705] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  182.848934][ T7783] netlink: 256 bytes leftover after parsing attributes in process `syz.0.638'.
[  182.886119][ T1705] usb 5-1: Using ep0 maxpacket: 8
[  183.077593][ T1705] usb 5-1: config 135 has an invalid interface number: 230 but max is 0
[  183.207892][ T1705] usb 5-1: config 135 has an invalid descriptor of length 97, skipping remainder of the config
[  183.277805][ T1705] usb 5-1: config 135 has no interface number 0
[  183.319761][ T1705] usb 5-1: too many endpoints for config 135 interface 230 altsetting 126: 53, using maximum allowed: 30
[  183.382426][ T1705] usb 5-1: config 135 interface 230 altsetting 126 has 0 endpoint descriptors, different from the interface descriptor's value: 53
[  183.402357][ T1705] usb 5-1: config 135 interface 230 has no altsetting 0
[  183.421826][ T1705] usb 5-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  183.439986][ T1705] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.520630][ T1705] usb 5-1: Product: syz
[  183.525487][ T1705] usb 5-1: Manufacturer: syz
[  183.530929][ T1705] usb 5-1: SerialNumber: syz
[  183.759110][ T1705] usb 5-1: Found UVC 0.00 device syz (18ec:3288)
[  183.778413][ T1705] usb 5-1: No valid video chain found.
[  183.788334][ T1705] usb 5-1: USB disconnect, device number 4
[  183.913943][ T7801] net_ratelimit: 12 callbacks suppressed
[  183.913957][ T7801] dccp_close: ABORT with 36 bytes unread
[  185.252482][   T52] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  185.523862][   T52] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  185.539086][   T52] usb 1-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  185.551593][   T52] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.567988][   T52] usb 1-1: config 0 descriptor??
[  185.995389][   T52] lg-g15 0003:046D:C222.0005: unbalanced collection at end of report description
[  186.018228][   T52] lg-g15 0003:046D:C222.0005: probe with driver lg-g15 failed with error -22
[  186.143528][   T30] audit: type=1800 audit(1744365252.862:20): pid=7844 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.660" name="nullb0" dev="tmpfs" ino=592 res=0 errno=0
[  186.296553][ T7848] process 'syz.2.662' launched './file1' with NULL argv: empty string added
[  186.550405][ T7857] Process accounting resumed
[  186.623435][ T5879] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  186.712493][ T1206] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  186.728280][   T52] usb 1-1: USB disconnect, device number 7
[  186.782364][ T5879] usb 3-1: Using ep0 maxpacket: 16
[  186.809970][ T5879] usb 3-1: config 1 has an invalid interface number: 203 but max is 0
[  186.819892][ T5879] usb 3-1: config 1 has no interface number 0
[  186.841326][ T5879] usb 3-1: New USB device found, idVendor=0b95, idProduct=2790, bcdDevice=63.9c
[  186.854413][ T5879] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.867366][   T30] audit: type=1800 audit(1744365253.582:21): pid=7870 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.672" name="nullb0" dev="tmpfs" ino=592 res=0 errno=0
[  186.889153][ T1206] usb 5-1: Using ep0 maxpacket: 32
[  186.894689][ T5879] usb 3-1: Product: syz
[  186.899163][ T5879] usb 3-1: Manufacturer: syz
[  186.908204][ T1206] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  186.916970][ T5879] usb 3-1: SerialNumber: syz
[  186.921698][ T1206] usb 5-1: config 0 has no interface number 0
[  186.930458][ T1206] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  186.955483][ T1206] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  186.972457][ T1206] usb 5-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  186.982180][ T1206] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.997514][ T1206] usb 5-1: config 0 descriptor??
[  187.185850][ T7852] Bluetooth: MGMT ver 1.23
[  187.212883][ T5879] aqc111 3-1:1.203: probe with driver aqc111 failed with error -22
[  187.247778][ T5879] usb 3-1: USB disconnect, device number 5
[  187.639902][ T1206] input: HID 28bd:0094 Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.1/0003:28BD:0094.0006/input/input7
[  187.719042][ T1206] uclogic 0003:28BD:0094.0006: input,hidraw0: USB HID v0.00 Device [HID 28bd:0094] on usb-dummy_hcd.4-1/input1
[  187.838028][ T7909] =======================================================
[  187.838028][ T7909] WARNING: The mand mount option has been deprecated and
[  187.838028][ T7909]          and is ignored by this kernel. Remove the mand
[  187.838028][ T7909]          option from the mount to silence this warning.
[  187.838028][ T7909] =======================================================
[  187.850756][ T5879] usb 5-1: USB disconnect, device number 5
[  187.906845][ T7909] tracefs: Invalid uid '0x00000000ffffffff'
[  188.247595][   T30] audit: type=1800 audit(1744365254.962:22): pid=7915 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.685" name="bus" dev="tmpfs" ino=1090 res=0 errno=0
[  188.615874][   T30] audit: type=1800 audit(1744365255.322:23): pid=7923 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.686" name="nullb0" dev="tmpfs" ino=592 res=0 errno=0
[  188.653414][   T55] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  188.662884][   T55] Bluetooth: hci2: Injecting HCI hardware error event
[  188.671035][   T55] Bluetooth: hci2: hardware error 0x00
[  189.512356][   T52] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  189.682903][   T52] usb 2-1: Using ep0 maxpacket: 8
[  189.838938][   T52] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  189.849992][   T52] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  189.899608][   T52] usb 2-1: Product: syz
[  189.924907][   T52] usb 2-1: Manufacturer: syz
[  189.929584][   T52] usb 2-1: SerialNumber: syz
[  189.983275][   T52] usb 2-1: config 0 descriptor??
[  190.030626][ T7947] overlayfs: upper fs does not support tmpfile.
[  190.201695][   T52] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  190.602433][   T10] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  190.752394][   T10] usb 1-1: Using ep0 maxpacket: 32
[  190.761477][   T10] usb 1-1: config 0 interface 0 has no altsetting 0
[  190.776417][   T10] usb 1-1: New USB device found, idVendor=056a, idProduct=033c, bcdDevice= 0.00
[  190.789998][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.802583][   T10] usb 1-1: config 0 descriptor??
[  190.817589][   T55] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  190.925461][ T7982] tipc: Started in network mode
[  190.930534][ T7982] tipc: Node identity 7f000001, cluster identity 4711
[  190.940744][ T7982] tipc: Enabled bearer <udp:syz2>, priority 10
[  190.974688][ T7982] tipc: Enabled bearer <eth:team0>, priority 0
[  191.222149][   T10] usbhid 1-1:0.0: can't add hid device: -71
[  191.239539][   T10] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  191.254481][   T52] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  191.262651][   T10] usb 1-1: USB disconnect, device number 8
[  191.266587][   T52] usb 2-1: USB disconnect, device number 8
[  191.792400][   T10] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  191.962979][   T10] usb 3-1: Using ep0 maxpacket: 32
[  191.974405][   T10] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[  191.991735][   T10] usb 3-1: config 0 has no interface number 0
[  192.009626][   T10] usb 3-1: config 0 interface 184 has no altsetting 0
[  192.021355][   T10] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  192.035639][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.044201][   T10] usb 3-1: Product: syz
[  192.048829][   T10] usb 3-1: Manufacturer: syz
[  192.055609][ T5879] tipc: Node number set to 2130706433
[  192.062414][   T10] usb 3-1: SerialNumber: syz
[  192.069768][   T10] usb 3-1: config 0 descriptor??
[  192.077486][   T10] smsc75xx v1.0.0
[  192.152496][   T52] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  192.322383][   T52] usb 2-1: Using ep0 maxpacket: 8
[  193.110417][   T10] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  193.123402][   T10] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  193.144886][   T52] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  193.182932][   T52] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.207151][   T52] usb 2-1: config 0 descriptor??
[  193.482250][ T5879] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  193.643834][ T5879] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  193.667309][ T5879] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  193.676679][ T5879] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.689413][ T5879] usb 1-1: config 0 descriptor??
[  193.705360][ T5879] pwc: Askey VC010 type 2 USB webcam detected.
[  193.948346][   T10] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[  193.959292][   T10] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[  193.969019][   T10] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -61
[  193.980256][   T10] smsc75xx 3-1:0.184: probe with driver smsc75xx failed with error -61
[  194.107072][ T5879] pwc: recv_control_msg error -32 req 02 val 2b00
[  194.114692][ T5879] pwc: recv_control_msg error -32 req 02 val 2700
[  194.122013][ T5879] pwc: recv_control_msg error -32 req 02 val 2c00
[  194.131798][ T5879] pwc: recv_control_msg error -32 req 04 val 1000
[  194.139520][ T5879] pwc: recv_control_msg error -32 req 04 val 1300
[  194.150256][ T5879] pwc: recv_control_msg error -32 req 04 val 1400
[  194.158136][ T5879] pwc: recv_control_msg error -32 req 02 val 2000
[  194.170508][ T5882] usb 3-1: USB disconnect, device number 6
[  194.251757][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  194.258152][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  194.370095][ T5879] pwc: recv_control_msg error -71 req 04 val 1500
[  194.379092][ T5879] pwc: recv_control_msg error -71 req 02 val 2500
[  194.387249][ T5879] pwc: recv_control_msg error -71 req 02 val 2400
[  194.394320][ T5879] pwc: recv_control_msg error -71 req 02 val 2600
[  194.401150][ T5879] pwc: recv_control_msg error -71 req 02 val 2900
[  194.408227][ T5879] pwc: recv_control_msg error -71 req 02 val 2800
[  194.415342][ T5879] pwc: recv_control_msg error -71 req 04 val 1100
[  194.422403][ T5879] pwc: recv_control_msg error -71 req 04 val 1200
[  194.431598][ T5879] pwc: Registered as video103.
[  194.438228][ T5879] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input8
[  194.451382][ T5879] usb 1-1: USB disconnect, device number 9
[  195.392596][   T52] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x8001: -71
[  195.409680][   T52] asix 2-1:0.0: probe with driver asix failed with error -71
[  195.431714][   T52] usb 2-1: USB disconnect, device number 9
[  195.670749][ T8066] netlink: 28 bytes leftover after parsing attributes in process `syz.2.738'.
[  195.684351][ T8066] netlink: 28 bytes leftover after parsing attributes in process `syz.2.738'.
[  195.700175][ T8066] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  195.723731][ T8066] syz_tun: entered promiscuous mode
[  195.978343][ T8075] netlink: 'syz.3.742': attribute type 3 has an invalid length.
[  196.002683][ T8075] netlink: 8 bytes leftover after parsing attributes in process `syz.3.742'.
[  196.056643][ T8079] vlan2: entered promiscuous mode
[  196.061959][ T8079] syz_tun: entered promiscuous mode
[  196.325037][ T5840] Bluetooth: hci1: command 0x0406 tx timeout
[  196.334273][ T5840] Bluetooth: hci0: command 0x0406 tx timeout
[  196.336696][ T5846] Bluetooth: hci3: command 0x0406 tx timeout
[  197.133606][ T1206] usb 3-1: new full-speed USB device number 7 using dummy_hcd
[  197.309959][ T1206] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  197.324321][ T1206] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  197.358132][ T1206] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  197.421430][ T1206] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.634888][ T8100] netlink: 12 bytes leftover after parsing attributes in process `syz.4.751'.
[  197.704588][ T1206] usb 3-1: usb_control_msg returned -32
[  197.729167][ T1206] usbtmc 3-1:16.0: can't read capabilities
[  200.300001][ T8121] block nbd0: Dead connection, failed to find a fallback
[  200.318730][ T8121] block nbd0: shutting down sockets
[  200.335086][   T10] usb 3-1: USB disconnect, device number 7
[  200.342214][ T8121] blk_print_req_error: 71 callbacks suppressed
[  200.342230][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.362820][ T8121] buffer_io_error: 64 callbacks suppressed
[  200.362835][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.382282][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.393285][   T55] Bluetooth: hci3: unexpected event for opcode 0x0c12
[  200.405842][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.414235][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.424638][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.432680][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.441963][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.450031][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.459422][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.484708][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.548209][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.559971][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.578602][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.586738][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.598961][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.607845][ T8121] ldm_validate_partition_table(): Disk read failed.
[  200.681296][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.690649][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.702737][ T8121] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  200.722180][ T8121] Buffer I/O error on dev nbd0, logical block 0, async page read
[  200.731428][ T8121] Dev nbd0: unable to read RDB block 0
[  200.757580][ T8121]  nbd0: unable to read partition table
[  202.893382][ T8165] netlink: 4 bytes leftover after parsing attributes in process `syz.4.769'.
[  202.930691][ T8165] vlan2: left promiscuous mode
[  202.954525][ T8165] bond0: left promiscuous mode
[  202.961755][ T8165] bond_slave_0: left promiscuous mode
[  202.972267][ T8165] bond_slave_1: left promiscuous mode
[  202.977853][ T8165] batadv1: left promiscuous mode
[  202.993918][ T8165] bridge0: port 3(vlan2) entered disabled state
[  203.013856][ T8165] bridge_slave_1: left allmulticast mode
[  203.026475][ T8165] bridge_slave_1: left promiscuous mode
[  203.032440][ T8165] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.089417][ T8165] bridge_slave_0: left allmulticast mode
[  203.106381][ T8165] bridge_slave_0: left promiscuous mode
[  203.122009][ T8165] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.360801][ T8175] netlink: 24 bytes leftover after parsing attributes in process `syz.1.772'.
[  204.106118][ T8182] netlink: 4 bytes leftover after parsing attributes in process `syz.1.772'.
[  204.428266][   T55] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  204.541741][   T55] Bluetooth: hci3: Injecting HCI hardware error event
[  204.784072][   T55] Bluetooth: hci3: hardware error 0x00
[  204.880330][ T8194] netlink: 'syz.1.777': attribute type 1 has an invalid length.
[  204.995779][ T8194] 8021q: adding VLAN 0 to HW filter on device bond1
[  205.207447][ T8197] bond1: (slave veth5): Enslaving as an active interface with a down link
[  205.277177][ T8199] ip6erspan0: entered allmulticast mode
[  205.291972][ T8199] bond1: (slave ip6erspan0): making interface the new active one
[  205.336424][ T8199] ip6erspan0: entered promiscuous mode
[  205.381849][ T8199] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  207.012915][   T55] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  207.658808][   T52] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  207.863337][   T52] usb 1-1: Using ep0 maxpacket: 16
[  207.900314][ T8246] netlink: 4 bytes leftover after parsing attributes in process `syz.3.793'.
[  207.949917][   T52] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  207.980543][   T52] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  207.998082][   T52] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  208.009333][   T52] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.026592][   T52] usb 1-1: Product: syz
[  208.033042][   T52] usb 1-1: Manufacturer: syz
[  208.105663][   T52] usb 1-1: SerialNumber: syz
[  208.441902][   T52] usb 1-1: 0:2 : does not exist
[  208.474022][   T52] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  208.527555][   T52] usb 1-1: USB disconnect, device number 10
[  209.368575][ T8259] veth1_to_bond: entered allmulticast mode
[  209.388108][ T8259] veth1_to_bond: entered promiscuous mode
[  209.397586][ T8259] veth1_to_bond: left promiscuous mode
[  209.437324][ T8259] veth1_to_bond: left allmulticast mode
[  211.280512][ T8294] program syz.0.813 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  214.602980][ T8352] kvm: MONITOR instruction emulated as NOP!
[  214.895478][ T8359] syzkaller0: entered promiscuous mode
[  214.942209][ T8359] syzkaller0: entered allmulticast mode
[  216.610015][ T8374] overlayfs: failed to clone upperpath
[  218.751698][ T8411] overlayfs: failed to clone upperpath
[  221.334171][ T3008] ip6erspan0: left promiscuous mode
[  221.842250][   T52] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  221.869704][ T8468] overlayfs: failed to resolve './file0': -2
[  222.037343][   T52] usb 2-1: Using ep0 maxpacket: 16
[  222.086577][   T52] usb 2-1: config index 0 descriptor too short (expected 65316, got 36)
[  222.114497][   T52] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  222.124254][   T52] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  222.158044][   T52] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  222.178108][ T8479] netlink: 'syz.3.880': attribute type 2 has an invalid length.
[  222.269132][   T52] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  222.326261][   T52] usb 2-1: config 0 interface 0 has no altsetting 0
[  222.338922][   T52] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  222.348279][   T52] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.517803][   T52] usb 2-1: config 0 descriptor??
[  223.147591][   T52] hid (null): unknown global tag 0x6c
[  223.176430][   T52] hid (null): unknown global tag 0xc
[  223.181845][   T52] hid (null): unknown global tag 0xd
[  223.214836][   T52] hid (null): unknown global tag 0xd
[  224.458979][   T55] Bluetooth: hci1: unexpected event for opcode 0x0c5b
[  224.762300][ T1206] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  225.033590][ T1206] usb 3-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  225.043417][ T1206] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.070816][ T1206] usb 3-1: config 0 descriptor??
[  225.597348][ T1206] usb 3-1: USB disconnect, device number 8
[  225.830802][ T8534] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  225.845589][ T8534] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  225.879101][ T1206] usb 2-1: USB disconnect, device number 10
[  226.488406][ T8538] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  226.499706][   T10] IPVS: starting estimator thread 0...
[  226.732293][ T8542] IPVS: using max 32 ests per chain, 76800 per kthread
[  226.772186][ T1206] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  227.012324][ T1206] usb 3-1: Using ep0 maxpacket: 32
[  227.033733][ T1206] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  227.049852][ T1206] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  227.059751][ T1206] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  227.069298][ T1206] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.087913][ T1206] usb 3-1: config 0 descriptor??
[  227.099033][ T1206] hub 3-1:0.0: USB hub found
[  227.170838][ T8550] fuse: Bad value for 'rootmode'
[  227.324607][ T1206] hub 3-1:0.0: 1 port detected
[  228.102410][ T5922] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  228.264703][ T5922] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  228.275411][ T5922] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  228.285831][ T5922] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.300037][ T5922] usb 5-1: config 0 descriptor??
[  228.309693][ T5922] pwc: Askey VC010 type 2 USB webcam detected.
[  228.452809][ T8571] syzkaller0: entered promiscuous mode
[  228.458340][ T8571] syzkaller0: entered allmulticast mode
[  229.033775][ T1206] hub 3-1:0.0: hub_hub_status failed (err = -32)
[  229.040400][ T1206] hub 3-1:0.0: config failed, can't get hub status (err -32)
[  229.076648][ T1206] usbhid 3-1:0.0: can't add hid device: -32
[  229.090178][ T1206] usbhid 3-1:0.0: probe with driver usbhid failed with error -32
[  229.099169][ T5922] pwc: recv_control_msg error -32 req 02 val 2b00
[  229.128991][ T5922] pwc: recv_control_msg error -32 req 02 val 2700
[  229.139374][ T1206] usb 3-1: USB disconnect, device number 9
[  229.150769][ T5922] pwc: recv_control_msg error -32 req 02 val 2c00
[  229.169020][ T5922] pwc: recv_control_msg error -32 req 04 val 1000
[  229.178504][ T5922] pwc: recv_control_msg error -32 req 04 val 1300
[  229.199590][ T5922] pwc: recv_control_msg error -32 req 04 val 1400
[  229.212870][ T5922] pwc: recv_control_msg error -32 req 02 val 2000
[  229.226362][ T5922] pwc: recv_control_msg error -32 req 02 val 2100
[  229.973827][ T5922] pwc: recv_control_msg error -71 req 02 val 2500
[  229.989144][ T5922] pwc: recv_control_msg error -71 req 02 val 2400
[  230.008667][ T5922] pwc: recv_control_msg error -71 req 02 val 2600
[  230.028716][ T5922] pwc: recv_control_msg error -71 req 02 val 2900
[  230.039838][ T5922] pwc: recv_control_msg error -71 req 02 val 2800
[  230.161221][ T5922] pwc: recv_control_msg error -71 req 04 val 1100
[  230.187230][ T5922] pwc: recv_control_msg error -71 req 04 val 1200
[  230.252918][ T5922] pwc: Registered as video103.
[  230.287416][ T5922] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input9
[  230.365235][ T5922] usb 5-1: USB disconnect, device number 6
[  230.620297][ T8591] xt_nat: multiple ranges no longer supported
[  232.004036][ T5922] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  232.391253][    C1] dccp_v4_rcv: dropped packet with invalid checksum
[  232.433712][ T5922] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  232.452262][ T5922] usb 3-1: New USB device found, idVendor=1bc7, idProduct=9010, bcdDevice=36.53
[  232.461325][ T5922] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.477753][ T5922] usb 3-1: config 0 descriptor??
[  232.492040][ T5922] option 3-1:0.0: GSM modem (1-port) converter detected
[  232.504230][ T8621] netlink: 4 bytes leftover after parsing attributes in process `syz.4.928'.
[  232.615210][ T8625] hub 6-0:1.0: USB hub found
[  232.621201][ T8625] hub 6-0:1.0: 1 port detected
[  232.700182][ T1705] usb 3-1: USB disconnect, device number 10
[  232.711947][ T1705] option 3-1:0.0: device disconnected
[  234.017516][ T8644] warning: `syz.2.937' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  237.069949][ T5835] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  237.088208][ T5835] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  237.117485][ T5835] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  237.129120][ T8687] batman_adv: batadv0: Adding interface: dummy0
[  237.151675][ T8687] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  237.177287][ T5835] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  237.184583][ T8687] batman_adv: batadv0: Interface activated: dummy0
[  237.221779][ T5835] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  237.225500][ T8692] batadv0: mtu less than device minimum
[  237.247150][ T8692] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  237.259128][ T8692] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  237.270265][ T8692] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  237.281449][ T8692] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  237.292705][ T8692] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  237.303932][ T8692] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  237.315107][ T8692] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  237.326287][ T8692] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  237.522478][ T5835] Bluetooth: hci4: command 0x0405 tx timeout
[  238.159877][ T8718] overlayfs: failed to clone upperpath
[  238.165246][   T30] audit: type=1326 audit(1744365304.882:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.958" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c7458d169 code=0x0
[  238.402270][ T8684] chnl_net:caif_netlink_parms(): no params data found
[  238.745623][ T8684] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.768336][ T8684] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.786932][ T8684] bridge_slave_0: entered allmulticast mode
[  238.797965][ T8684] bridge_slave_0: entered promiscuous mode
[  238.826612][ T8684] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.837180][ T8684] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.846728][ T8684] bridge_slave_1: entered allmulticast mode
[  238.858081][ T8684] bridge_slave_1: entered promiscuous mode
[  238.998962][ T8684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  239.020252][ T8684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  239.283273][   T55] Bluetooth: hci3: command tx timeout
[  239.738611][ T8684] team0: Port device team_slave_0 added
[  239.749186][ T8684] team0: Port device team_slave_1 added
[  239.794482][ T8757] netlink: 4 bytes leftover after parsing attributes in process `syz.1.970'.
[  239.842301][ T8759] netlink: 180 bytes leftover after parsing attributes in process `syz.3.971'.
[  239.912534][ T8764] netlink: 20 bytes leftover after parsing attributes in process `syz.4.973'.
[  240.001817][ T8684] batman_adv: batadv0: Adding interface: batadv_slave_0
[  240.014575][ T8684] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  240.041616][ T8684] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  240.067537][ T8769] batman_adv: batadv0: Removing interface: team0
[  240.093022][ T8769] bond0: (slave bond_slave_0): Releasing backup interface
[  240.103116][ T8769] bond_slave_0: left allmulticast mode
[  240.124537][ T8769] bond0: (slave bond_slave_1): Releasing backup interface
[  240.135771][ T8769] bond_slave_1: left allmulticast mode
[  240.186549][ T8769] team0: Port device team_slave_0 removed
[  240.204846][ T8769] team0: Port device team_slave_1 removed
[  240.228342][ T8769] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  240.236159][ T8769] batman_adv: batadv0: Removing interface: batadv_slave_0
[  240.254703][ T8769] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  240.265812][ T8769] batman_adv: batadv0: Removing interface: batadv_slave_1
[  240.279519][ T8769] bond0: (slave batadv1): Releasing backup interface
[  240.291733][ T8769] batadv1: left allmulticast mode
[  240.301405][ T8684] batman_adv: batadv0: Adding interface: batadv_slave_1
[  240.317970][ T8684] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  240.345174][ T8684] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  240.375505][ T8771] team0: Mode changed to "loadbalance"
[  240.498684][ T8684] hsr_slave_0: entered promiscuous mode
[  240.505817][ T8684] hsr_slave_1: entered promiscuous mode
[  240.511951][ T8684] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  240.519819][ T8684] Cannot create hsr debugfs directory
[  241.153132][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802279e400: rx timeout, send abort
[  241.372205][   T55] Bluetooth: hci3: command tx timeout
[  241.653253][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802279dc00: rx timeout, send abort
[  241.662544][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802279e400: abort rx timeout. Force session deactivation
[  241.837906][ T8795] netlink: 'syz.4.984': attribute type 7 has an invalid length.
[  241.866809][ T8795] netlink: 8 bytes leftover after parsing attributes in process `syz.4.984'.
[  241.927646][ T8684] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  241.965971][ T8684] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  242.006202][ T8684] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  242.031972][ T8684] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  242.161627][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802279dc00: abort rx timeout. Force session deactivation
[  242.209351][ T8684] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.257601][ T8684] 8021q: adding VLAN 0 to HW filter on device team0
[  242.294290][   T63] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.301965][   T63] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.334128][   T63] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.341288][   T63] bridge0: port 2(bridge_slave_1) entered forwarding state
[  242.796256][ T8684] 8021q: adding VLAN 0 to HW filter on device batadv0
[  242.877408][   T30] audit: type=1326 audit(1744365309.592:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8812 comm="syz.3.989" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4580b8d169 code=0x0
[  243.202833][ T5922] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  243.443549][   T55] Bluetooth: hci3: command tx timeout
[  243.491526][ T5922] usb 3-1: Using ep0 maxpacket: 16
[  243.512191][ T5922] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  243.526092][ T5922] usb 3-1: New USB device found, idVendor=046d, idProduct=c531, bcdDevice= 0.00
[  243.546279][ T5922] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.574735][ T5922] usb 3-1: config 0 descriptor??
[  243.819214][ T8684] veth0_vlan: entered promiscuous mode
[  244.282425][ T8684] veth1_vlan: entered promiscuous mode
[  244.387358][ T8684] veth0_macvtap: entered promiscuous mode
[  244.398954][ T8684] veth1_macvtap: entered promiscuous mode
[  244.421221][ T8684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  244.437944][ T8684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.448427][ T8684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  244.459723][ T8684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.469786][ T8684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  244.500751][ T8684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.515365][ T8842] Bluetooth: MGMT ver 1.23
[  244.522351][ T8684] batman_adv: batadv0: Interface activated: batadv_slave_0
[  244.531054][   T10] usb 3-1: USB disconnect, device number 11
[  244.533673][ T8684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  244.548341][ T8684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.558741][ T8684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  244.570133][ T8684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.580401][ T8684] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  244.591038][ T8684] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.613053][ T8684] batman_adv: batadv0: Interface activated: batadv_slave_1
[  244.625819][ T8684] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.634929][ T8684] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.645713][ T8684] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.659332][ T8684] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.708009][ T8836] x_tables: duplicate entry at hook 2
[  244.871932][   T30] audit: type=1800 audit(1744365311.582:26): pid=8848 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.999" name="bus" dev="overlay" ino=1010 res=0 errno=0
[  244.976764][ T3030] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.001378][ T3030] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.058654][   T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.073952][   T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.252189][ T5882] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  245.535839][   T55] Bluetooth: hci3: command tx timeout
[  245.586345][ T8858] __vm_enough_memory: pid: 8858, comm: syz.2.1003, bytes: 21199830306816 not enough memory for the allocation
[  245.621792][ T5882] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  245.650718][ T5882] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[  245.677413][ T5882] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  245.703764][ T5882] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  245.705272][ T8861] netfs: Couldn't get user pages (rc=-14)
[  245.715671][ T5882] usb 2-1: Product: syz
[  245.721838][ T5882] usb 2-1: Manufacturer: syz
[  245.726583][ T8861] netfs: Zero-sized read [R=2]
[  245.734359][ T5882] usb 2-1: SerialNumber: syz
[  245.959952][ T8852] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  247.420222][ T8852] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  247.634774][ T5882] cdc_ncm 2-1:1.0: MAC-Address: 42:42:42:42:42:42
[  247.641266][ T5882] cdc_ncm 2-1:1.0: dwNtbInMaxSize=14 is too small. Using 2048
[  247.670840][ T5882] cdc_ncm 2-1:1.0: setting rx_max = 2048
[  247.914736][ T5882] cdc_ncm 2-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.1-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  248.290643][ T5882] usb 2-1: USB disconnect, device number 11
[  248.318034][ T5882] cdc_ncm 2-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.1-1, CDC NCM (NO ZLP)
[  249.659170][ T8937] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1025'.
[  249.673174][ T8937] bridge_slave_1: left allmulticast mode
[  249.681233][ T8937] bridge_slave_1: left promiscuous mode
[  249.697874][ T8937] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.788400][ T8944] capability: warning: `syz.1.1026' uses 32-bit capabilities (legacy support in use)
[  250.546821][   T55] Bluetooth: hci0: unexpected event for opcode 0x2002
[  250.870172][ T8960] net_ratelimit: 11 callbacks suppressed
[  250.870185][ T8960] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  251.006249][ T8962] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  251.052404][ T8966] 8021q: VLANs not supported on ip6gre0
[  251.159730][ T8967] syzkaller0: entered promiscuous mode
[  251.177841][ T8967] syzkaller0: entered allmulticast mode
[  251.387097][   T30] audit: type=1800 audit(1744365318.082:27): pid=8978 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.1038" name="nullb0" dev="tmpfs" ino=592 res=0 errno=0
[  251.689707][ T8992] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1045'.
[  252.022206][ T5878] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  252.443209][ T5878] usb 2-1: Using ep0 maxpacket: 8
[  252.467280][ T5878] usb 2-1: config 0 has an invalid interface number: 52 but max is 0
[  252.646679][   T55] Bluetooth: hci0: command 0x0406 tx timeout
[  252.653466][ T5878] usb 2-1: config 0 has an invalid descriptor of length 55, skipping remainder of the config
[  252.676962][ T5878] usb 2-1: config 0 has no interface number 0
[  252.683750][ T5878] usb 2-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 55, changing to 9
[  252.695041][ T5878] usb 2-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 8496, setting to 1024
[  252.713031][ T5878] usb 2-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  252.726122][ T5878] usb 2-1: config 0 interface 52 has no altsetting 0
[  252.739212][ T5878] usb 2-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  252.748546][ T5878] usb 2-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0
[  252.761129][ T5878] usb 2-1: Manufacturer: syz
[  252.789677][ T5878] usb 2-1: config 0 descriptor??
[  252.866481][   T30] audit: type=1800 audit(1744365319.582:28): pid=9012 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.1051" name="nullb0" dev="tmpfs" ino=592 res=0 errno=0
[  253.027717][ T5878] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.52/input/input11
[  253.242294][   T55] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  253.252623][ T5878] usb 2-1: USB disconnect, device number 12
[  253.252657][    C1] synaptics_usb 2-1:0.52: synusb_irq - usb_submit_urb failed with result: -19
[  253.564427][ T5922] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  253.734719][ T5922] usb 6-1: Using ep0 maxpacket: 16
[  253.742928][ T5922] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  253.754495][ T5922] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  253.786941][ T5922] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  253.797170][ T5922] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  253.809794][ T5922] usb 6-1: Product: syz
[  253.814955][ T5922] usb 6-1: Manufacturer: syz
[  253.819649][ T5922] usb 6-1: SerialNumber: syz
[  254.039089][ T5922] usb 6-1: 0:2 : does not exist
[  254.061231][ T5922] usb 6-1: 5:0: failed to get current value for ch 0 (-22)
[  254.131827][ T5922] usb 6-1: USB disconnect, device number 2
[  254.516463][ T9009] netlink: 'syz.4.1049': attribute type 3 has an invalid length.
[  254.524904][ T9009] netlink: 666 bytes leftover after parsing attributes in process `syz.4.1049'.
[  254.567232][ T9027] vlan3: entered promiscuous mode
[  254.591980][ T9027] vlan2: entered promiscuous mode
[  254.608620][ T9027] gretap0: entered promiscuous mode
[  254.656420][ T9031] batman_adv: batadv0: Interface deactivated: dummy0
[  254.667857][ T9031] batman_adv: batadv0: Removing interface: dummy0
[  254.749445][ T9031] bridge_slave_0: left allmulticast mode
[  254.792272][ T9031] bridge_slave_0: left promiscuous mode
[  255.023306][ T9031] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.079964][ T9031] bridge_slave_1: left allmulticast mode
[  255.100526][ T9031] bridge_slave_1: left promiscuous mode
[  255.120361][ T9031] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.168551][ T9031] bond0: (slave bond_slave_0): Releasing backup interface
[  255.185806][ T9031] bond0: (slave bond_slave_1): Releasing backup interface
[  255.219938][ T5922] libceph: connect (1)[c::]:6789 error -101
[  255.230351][ T9031] team0: Port device team_slave_0 removed
[  255.234773][ T5922] libceph: mon0 (1)[c::]:6789 connect error
[  255.260762][ T9031] team0: Port device team_slave_1 removed
[  255.267844][ T9031] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  255.271974][ T9049] ceph: No mds server is up or the cluster is laggy
[  255.283423][ T9031] batman_adv: batadv0: Removing interface: batadv_slave_0
[  255.295719][ T9031] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  255.305262][ T9031] batman_adv: batadv0: Removing interface: batadv_slave_1
[  255.368556][ T9031] bond1: (slave veth5): Releasing active interface
[  255.399954][ T9031] bond1: (slave veth5): the permanent HWaddr of slave - 6e:43:11:94:32:be - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  255.432827][ T9031] ip6erspan0: entered promiscuous mode
[  255.469015][ T9031] bond1: (slave ip6erspan0): Releasing active interface
[  255.493436][ T9031] ip6erspan0: left promiscuous mode
[  255.605995][ T9067] syz_tun: entered allmulticast mode
[  255.629300][ T9066] syz_tun: left allmulticast mode
[  255.688841][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  255.695307][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  255.998359][ T9083] dns_resolver: Unsupported server list version (0)
[  256.741694][ T9093] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  256.904251][ T9101] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1079'.
[  258.121421][ T5922] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  258.157658][ T9124] IPVS: sync thread started: state = MASTER, mcast_ifn = sit0, syncid = 0, id = 0
[  258.297250][ T5922] usb 3-1: Using ep0 maxpacket: 32
[  258.311383][ T9132] overlayfs: failed to clone upperpath
[  258.333246][ T5922] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  258.359444][ T5922] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  258.391018][ T5922] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=4a.83
[  258.402131][ T5922] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.420574][ T5922] usb 3-1: Product: syz
[  258.430296][ T5922] usb 3-1: Manufacturer: syz
[  258.546828][ T5922] usb 3-1: SerialNumber: syz
[  258.652319][ T1705] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  258.712246][ T5922] usb 3-1: config 0 descriptor??
[  258.892573][ T1705] usb 6-1: Using ep0 maxpacket: 32
[  258.993635][ T1705] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  259.042312][ T1705] usb 6-1: config 0 has no interfaces?
[  259.047876][ T1705] usb 6-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  259.077217][ T1705] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.233157][ T1705] usb 6-1: config 0 descriptor??
[  261.064284][ T9161] input: syz0 as /devices/virtual/input/input12
[  261.374263][ T5878] usb 6-1: USB disconnect, device number 3
[  262.096742][ T5922] usb 3-1: USB disconnect, device number 12
[  262.302260][ T9179] netlink: 'syz.2.1104': attribute type 10 has an invalid length.
[  262.401602][ T9179] batman_adv: batadv0: Adding interface: team0
[  262.408263][ T9179] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  262.433933][ T9179] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  263.047101][ T9188] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1109'.
[  263.062270][ T9188] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1109'.
[  263.112693][ T9188] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1109'.
[  263.152241][ T9188] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1109'.
[  263.656803][ T9192] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1110'.
[  263.992557][ T9199] netlink: 'syz.1.1112': attribute type 10 has an invalid length.
[  264.022321][ T9199] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1112'.
[  264.521229][ T9206] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1112'.
[  264.582891][ T9199] team0: Port device geneve0 added
[  264.597342][ T9208] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  264.674403][ T9206] team1 (uninitialized): Failed to send options change via netlink (err -105)
[  264.770339][ T9206] 8021q: adding VLAN 0 to HW filter on device team1
[  266.056480][ T9236] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1123'.
[  267.852176][ T5922] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  268.124861][ T5922] usb 3-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  268.138438][ T5922] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  268.167649][ T5922] usb 3-1: config 0 descriptor??
[  268.199764][ T5922] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  269.219815][ T5922] usb 3-1: USB disconnect, device number 13
[  270.041309][ T9302] overlayfs: upper fs does not support tmpfile.
[  270.582203][   T52] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  270.752364][   T52] usb 5-1: Using ep0 maxpacket: 32
[  270.761145][   T52] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  270.777418][   T52] usb 5-1: config 0 has no interface number 0
[  270.790068][   T52] usb 5-1: config 0 interface 184 has no altsetting 0
[  270.807978][   T52] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  270.845123][   T52] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.862376][ T1206] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  270.864453][   T52] usb 5-1: Product: syz
[  270.886139][   T52] usb 5-1: Manufacturer: syz
[  270.890741][   T52] usb 5-1: SerialNumber: syz
[  270.900818][   T52] usb 5-1: config 0 descriptor??
[  270.911058][   T52] smsc75xx v1.0.0
[  271.014170][ T1206] usb 6-1: config 0 has no interfaces?
[  271.021845][ T1206] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  271.046138][ T1206] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  271.069884][ T1206] usb 6-1: Product: syz
[  271.084923][ T1206] usb 6-1: Manufacturer: syz
[  271.102940][ T1206] usb 6-1: config 0 descriptor??
[  271.192757][   T55] Bluetooth: hci1: unexpected event for opcode 0x0c12
[  271.338048][ T1206] usb 6-1: USB disconnect, device number 4
[  271.390123][ T9333] vlan3: entered promiscuous mode
[  271.396804][ T9333] syz_tun: entered promiscuous mode
[  271.521367][   T52] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  271.532879][   T52] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  271.995032][ T9344] kvm: pic: non byte write
[  272.318804][ T9352] 8021q: adding VLAN 0 to HW filter on device batadv1
[  272.351138][   T52] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[  272.369037][   T52] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[  272.379546][   T52] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -61
[  272.398851][   T52] smsc75xx 5-1:0.184: probe with driver smsc75xx failed with error -61
[  272.603833][   T52] usb 5-1: USB disconnect, device number 7
[  273.035694][ T5922] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  273.202245][ T5922] usb 6-1: Using ep0 maxpacket: 8
[  273.240141][ T5922] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  273.267993][ T5922] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  273.296655][ T5922] usb 6-1: Product: syz
[  273.325480][ T5922] usb 6-1: Manufacturer: syz
[  273.330099][ T5922] usb 6-1: SerialNumber: syz
[  273.548834][ T5922] usb 6-1: config 0 descriptor??
[  273.804607][ T5922] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  274.954182][ T5922] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  274.981153][ T5922] usb 6-1: USB disconnect, device number 5
[  275.204107][   T55] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  275.213924][   T55] Bluetooth: hci1: Injecting HCI hardware error event
[  275.224533][ T5835] Bluetooth: hci1: hardware error 0x00
[  275.427264][ T9381] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1177'.
[  275.568328][ T9383] overlayfs: failed to clone upperpath
[  275.683642][ T9386] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1177'.
[  276.176171][ T9401] xt_hashlimit: invalid rate
[  276.393107][ T9407] program syz.5.1186 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  277.445082][ T5835] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  278.107266][ T9428] kvm: pic: level sensitive irq not supported
[  278.658135][ T9440] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  282.816395][ T9512] trusted_key: syz.1.1219 sent an empty control message without MSG_MORE.
[  283.662190][   T10] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  283.867398][   T10] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  283.877564][   T10] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  283.906111][   T10] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  283.915504][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.112298][ T1206] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  284.129662][   T10] usb 5-1: usb_control_msg returned -32
[  284.135656][   T10] usbtmc 5-1:16.0: can't read capabilities
[  284.265329][ T1206] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  284.284368][ T1206] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  284.298003][ T1206] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  284.302269][ T9533] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1230'.
[  284.307396][ T1206] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  284.325497][ T1206] usb 6-1: SerialNumber: syz
[  284.549644][ T1206] usb 6-1: 0:2 : does not exist
[  284.564041][ T1206] usb 6-1: unit 255 not found!
[  284.572009][ T1206] usb 6-1: 5:0: cannot get min/max values for control 2 (id 5)
[  284.591445][ T9538] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1232'.
[  284.597936][ T1206] usb 6-1: USB disconnect, device number 6
[  284.717076][ T9541] overlayfs: failed to clone upperpath
[  285.112683][ T9556] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  285.539818][ T9565] xt_nat: multiple ranges no longer supported
[  286.014855][   T52] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  286.222386][   T52] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  286.261167][ T5878] usb 5-1: USB disconnect, device number 8
[  286.301301][   T52] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  286.335163][   T52] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.356433][   T52] usb 6-1: config 0 descriptor??
[  286.365783][   T52] pwc: Askey VC010 type 2 USB webcam detected.
[  286.475143][ T9578] overlayfs: failed to clone upperpath
[  286.788837][   T52] pwc: recv_control_msg error -32 req 02 val 2b00
[  286.803201][   T52] pwc: recv_control_msg error -32 req 02 val 2700
[  286.810386][   T52] pwc: recv_control_msg error -32 req 02 val 2c00
[  286.817354][   T52] pwc: recv_control_msg error -32 req 04 val 1000
[  286.824757][   T52] pwc: recv_control_msg error -32 req 04 val 1300
[  286.831785][   T52] pwc: recv_control_msg error -32 req 04 val 1400
[  286.839755][   T52] pwc: recv_control_msg error -32 req 02 val 2000
[  286.850331][   T52] pwc: recv_control_msg error -32 req 02 val 2100
[  287.061431][   T52] pwc: recv_control_msg error -71 req 02 val 2500
[  287.074315][   T52] pwc: recv_control_msg error -71 req 02 val 2400
[  287.081123][   T52] pwc: recv_control_msg error -71 req 02 val 2600
[  287.096027][   T52] pwc: recv_control_msg error -71 req 02 val 2900
[  287.111468][   T52] pwc: recv_control_msg error -71 req 02 val 2800
[  287.322037][   T52] pwc: recv_control_msg error -71 req 04 val 1100
[  287.434413][   T52] pwc: recv_control_msg error -71 req 04 val 1200
[  287.536279][   T52] pwc: Registered as video103.
[  287.543122][   T52] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input13
[  287.560167][   T52] usb 6-1: USB disconnect, device number 7
[  289.432864][ T5878] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  289.602950][ T9619] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1259'.
[  289.618898][ T5878] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  289.650708][ T5878] usb 6-1: New USB device found, idVendor=1bc7, idProduct=9010, bcdDevice=36.53
[  289.672236][ T9619] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1259'.
[  289.688108][ T5878] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.701841][ T9619] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1259'.
[  289.706321][ T9614] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  289.738129][ T9614] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  289.753565][ T5878] usb 6-1: config 0 descriptor??
[  289.763570][ T9620] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1261'.
[  289.775835][ T5878] option 6-1:0.0: GSM modem (1-port) converter detected
[  289.815597][ T9623] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1261'.
[  289.905402][ T9614] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  289.929509][ T9614] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  290.009792][ T9625] netlink: 128 bytes leftover after parsing attributes in process `syz.4.1262'.
[  290.094835][ T9614] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  290.200977][ T9614] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  290.354769][ T9614] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  290.434280][ T9614] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  290.564225][ T9614] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  290.712606][ T5922] usb 6-1: USB disconnect, device number 8
[  290.721832][ T5922] option 6-1:0.0: device disconnected
[  291.698585][ T5835] Bluetooth: hci0: command 0x0406 tx timeout
[  292.169118][ T5835] Bluetooth: hci4: command 0x0405 tx timeout
[  292.629910][ T9654] xt_CT: You must specify a L4 protocol and not use inversions on it
[  293.172596][ T5835] Bluetooth: hci3: command 0x0405 tx timeout
[  293.842631][ T5835] Bluetooth: hci0: command 0x0406 tx timeout
[  294.252878][ T5835] Bluetooth: hci4: command 0x0405 tx timeout
[  294.479526][   T30] audit: type=1326 audit(1744365361.192:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9668 comm="syz.1.1278" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fadd638d169 code=0x0
[  294.697631][   T30] audit: type=1800 audit(1744365361.412:30): pid=9691 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.5.1282" name="bus" dev="overlay" ino=352 res=0 errno=0
[  295.202617][ T5835] Bluetooth: hci3: command 0x0405 tx timeout
[  295.937979][ T5835] Bluetooth: hci0: command 0x0406 tx timeout
[  296.352328][ T5835] Bluetooth: hci4: command 0x0405 tx timeout
[  296.541164][ T9732] affs: No valid root block on device nullb0
[  296.992227][   T52] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  297.145107][   T52] usb 6-1: Using ep0 maxpacket: 16
[  297.153204][   T52] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  297.168604][   T52] usb 6-1: New USB device found, idVendor=046d, idProduct=c531, bcdDevice= 0.00
[  297.179653][   T52] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.190729][   T52] usb 6-1: config 0 descriptor??
[  297.283018][ T5835] Bluetooth: hci3: command 0x0405 tx timeout
[  297.807991][ T9728] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82
[  298.067512][ T9749] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.143101][ T1206] usb 6-1: USB disconnect, device number 9
[  298.231435][ T1705] libceph: connect (1)[c::]:6789 error -101
[  298.238224][ T1705] libceph: mon0 (1)[c::]:6789 connect error
[  298.240073][ T9749] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.327104][ T9749] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.520464][ T1705] libceph: connect (1)[c::]:6789 error -101
[  298.549031][ T1705] libceph: mon0 (1)[c::]:6789 connect error
[  298.575352][ T9749] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.985158][ T9760] ceph: No mds server is up or the cluster is laggy
[  299.445686][ T9781] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1307'.
[  299.477857][    C1] vcan0: j1939_tp_rxtimer: 0xffff888012a1dc00: rx timeout, send abort
[  300.268519][ T8911] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.348818][ T5835] Bluetooth: hci4: unexpected event for opcode 0x2002
[  300.368685][ T8911] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.384789][ T9791] tipc: Started in network mode
[  300.391334][ T9791] tipc: Node identity 4, cluster identity 4711
[  300.398155][ T9791] tipc: Node number set to 4
[  300.441806][ T8911] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.556678][ T8911] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.903612][ T5922] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  301.222240][ T5922] usb 6-1: Using ep0 maxpacket: 16
[  301.532355][ T5922] usb 6-1: config index 0 descriptor too short (expected 65316, got 36)
[  301.540733][ T5922] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[  301.552247][ T5922] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[  301.561150][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  301.582424][ T5922] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  301.592242][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[  301.599526][ T5922] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  301.611205][ T5922] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.638502][ T5922] usb 6-1: config 0 descriptor??
[  301.841118][ T8911] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  301.870996][ T8911] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  301.922931][ T8911] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  301.978136][ T8911] bond0 (unregistering): Released all slaves
[  302.151110][ T5922] hid (null): unknown global tag 0x6c
[  302.167370][ T5922] hid (null): unknown global tag 0xc
[  302.192480][ T5922] hid (null): unknown global tag 0xd
[  302.204574][ T5922] hid (null): unknown global tag 0xd
[  302.446705][ T5835] Bluetooth: hci4: command 0x0405 tx timeout
[  302.530308][   T30] audit: type=1326 audit(1744365369.242:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  302.605993][   T30] audit: type=1326 audit(1744365369.242:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  302.639454][ T8911] hsr_slave_0: left promiscuous mode
[  302.706646][ T8911] hsr_slave_1: left promiscuous mode
[  302.810109][ T8911] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  302.846840][   T30] audit: type=1326 audit(1744365369.262:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  302.944381][ T8911] batman_adv: batadv0: Removing interface: batadv_slave_0
[  303.036629][   T30] audit: type=1326 audit(1744365369.262:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  303.059995][   T30] audit: type=1326 audit(1744365369.262:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  303.060886][ T8911] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  303.081524][   T30] audit: type=1326 audit(1744365369.262:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  303.081567][   T30] audit: type=1326 audit(1744365369.262:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  303.081604][   T30] audit: type=1326 audit(1744365369.262:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  303.081637][   T30] audit: type=1326 audit(1744365369.262:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  303.081670][   T30] audit: type=1326 audit(1744365369.262:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9826 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f37b9b8d169 code=0x7ffc0000
[  303.204307][ T8911] batman_adv: batadv0: Removing interface: batadv_slave_1
[  303.893919][ T8911] veth1_macvtap: left promiscuous mode
[  303.899841][ T8911] veth0_macvtap: left promiscuous mode
[  303.912875][ T8911] veth1_vlan: left promiscuous mode
[  303.918366][ T8911] veth0_vlan: left promiscuous mode
[  305.057127][ T9849] 9pnet_fd: Insufficient options for proto=fd
[  305.380392][ T9852] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  305.451615][ T9852] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  306.803672][ T8911] team0 (unregistering): Port device team_slave_1 removed
[  306.868303][ T8911] team0 (unregistering): Port device team_slave_0 removed
[  307.348663][   T52] usb 6-1: USB disconnect, device number 10
[  308.522336][ T9894] loop2: detected capacity change from 0 to 7
[  308.713572][ T9894] Dev loop2: unable to read RDB block 7
[  309.304088][ T9894]  loop2: unable to read partition table
[  309.324683][ T9894] loop2: partition table beyond EOD, truncated
[  309.330882][ T9894] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  312.402261][   T52] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  312.512159][ T1705] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  312.552312][   T52] usb 6-1: Using ep0 maxpacket: 8
[  312.559458][   T52] usb 6-1: config 135 has an invalid interface number: 230 but max is 0
[  312.560065][ T9932] overlayfs: failed to clone lowerpath
[  312.568261][   T52] usb 6-1: config 135 has an invalid descriptor of length 97, skipping remainder of the config
[  312.592222][   T52] usb 6-1: config 135 has no interface number 0
[  312.596415][ T9932] overlayfs: failed to clone upperpath
[  312.598634][   T52] usb 6-1: too many endpoints for config 135 interface 230 altsetting 126: 53, using maximum allowed: 30
[  312.616324][   T52] usb 6-1: config 135 interface 230 altsetting 126 has 0 endpoint descriptors, different from the interface descriptor's value: 53
[  312.630069][   T52] usb 6-1: config 135 interface 230 has no altsetting 0
[  312.639545][   T52] usb 6-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  312.649067][   T52] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.657343][   T52] usb 6-1: Product: syz
[  312.661616][   T52] usb 6-1: Manufacturer: syz
[  312.666713][   T52] usb 6-1: SerialNumber: syz
[  312.682002][ T1705] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  312.694789][ T1705] usb 2-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  312.714260][ T1705] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.754296][ T1705] usb 2-1: config 0 descriptor??
[  312.869001][ T9937] Process accounting resumed
[  312.896576][ T9942] netlink: 'syz.4.1358': attribute type 10 has an invalid length.
[  312.904886][ T9942] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1358'.
[  312.928652][   T52] usb 6-1: Found UVC 0.00 device syz (18ec:3288)
[  312.935230][   T52] usb 6-1: No valid video chain found.
[  312.947126][   T52] usb 6-1: USB disconnect, device number 11
[  312.959811][ T9945] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1358'.
[  312.969600][ T9942] team0: Port device geneve0 added
[  312.976661][ T9945] team1 (uninitialized): Failed to send options change via netlink (err -105)
[  313.054399][ T9945] 8021q: adding VLAN 0 to HW filter on device team1
[  313.197723][ T1705] lg-g15 0003:046D:C222.000B: unbalanced collection at end of report description
[  313.217063][ T1705] lg-g15 0003:046D:C222.000B: probe with driver lg-g15 failed with error -22
[  314.421671][   T52] usb 2-1: USB disconnect, device number 13
[  314.714491][ T9972] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  315.540350][ T9995] netlink: 'syz.3.1378': attribute type 10 has an invalid length.
[  315.556045][ T9995] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1378'.
[  315.576835][ T9995] team0: Port device geneve0 added
[  315.590059][ T9995] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1378'.
[  315.605404][ T9995] team1 (uninitialized): Failed to send options change via netlink (err -105)
[  315.665009][ T9995] 8021q: adding VLAN 0 to HW filter on device team1
[  317.127740][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  317.137165][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  318.443798][T10021] loop6: detected capacity change from 0 to 63
[  318.453019][    C0] blk_print_req_error: 6 callbacks suppressed
[  318.453036][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.468312][    C0] buffer_io_error: 6 callbacks suppressed
[  318.468328][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.504685][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.513906][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.521921][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.531115][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.540726][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.549925][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.806367][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.815596][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.839399][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.848664][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.865344][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.874575][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.887989][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.897223][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.916032][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.925263][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.940723][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  318.949951][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  318.958133][T10021] ldm_validate_partition_table(): Disk read failed.
[  318.986339][T10021] Dev loop6: unable to read RDB block 0
[  319.009889][T10021]  loop6: unable to read partition table
[  319.040578][T10021] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  319.889952][T10049] netlink: 'syz.5.1392': attribute type 10 has an invalid length.
[  319.920952][T10049] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1392'.
[  320.200730][T10052] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1392'.
[  320.285323][T10052] 8021q: adding VLAN 0 to HW filter on device team1
[  321.111201][T10049] team0: Port device geneve0 added
[  322.157740][T10074] overlayfs: failed to clone upperpath
[  322.443986][T10080] overlayfs: failed to clone upperpath
[  323.896468][ T8914] ==================================================================
[  323.904564][ T8914] BUG: KASAN: slab-out-of-bounds in iov_iter_revert+0x1c1/0x5a0
[  323.912225][ T8914] Read of size 4 at addr ffff88802ecd34f8 by task kworker/u8:14/8914
[  323.920298][ T8914] 
[  323.922633][ T8914] CPU: 1 UID: 0 PID: 8914 Comm: kworker/u8:14 Not tainted 6.15.0-rc1-syzkaller-00246-g900241a5cc15 #0 PREEMPT(full) 
[  323.922657][ T8914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  323.922669][ T8914] Workqueue: events_unbound netfs_write_collection_worker
[  323.922695][ T8914] Call Trace:
[  323.922701][ T8914]  <TASK>
[  323.922709][ T8914]  dump_stack_lvl+0x241/0x360
[  323.922741][ T8914]  ? __pfx_dump_stack_lvl+0x10/0x10
[  323.922761][ T8914]  ? rcu_is_watching+0x15/0xb0
[  323.922779][ T8914]  ? __virt_addr_valid+0x183/0x530
[  323.922799][ T8914]  ? lock_release+0x4e/0x3e0
[  323.922817][ T8914]  ? __virt_addr_valid+0x183/0x530
[  323.922836][ T8914]  ? __virt_addr_valid+0x183/0x530
[  323.922857][ T8914]  print_report+0x16e/0x5b0
[  323.922880][ T8914]  ? __virt_addr_valid+0x183/0x530
[  323.922899][ T8914]  ? __virt_addr_valid+0x183/0x530
[  323.922916][ T8914]  ? __virt_addr_valid+0x45f/0x530
[  323.922935][ T8914]  ? __phys_addr+0xba/0x170
[  323.922955][ T8914]  ? iov_iter_revert+0x1c1/0x5a0
[  323.922975][ T8914]  kasan_report+0x143/0x180
[  323.922991][ T8914]  ? iov_iter_revert+0x1c1/0x5a0
[  323.923014][ T8914]  iov_iter_revert+0x1c1/0x5a0
[  323.923038][ T8914]  netfs_retry_writes+0x17f2/0x19d0
[  323.923066][ T8914]  ? rcu_read_lock_sched_held+0x91/0x140
[  323.923087][ T8914]  ? __pfx_netfs_retry_writes+0x10/0x10
[  323.923109][ T8914]  ? xfd_validate_state+0x6e/0x150
[  323.923134][ T8914]  netfs_write_collection_worker+0x2fc0/0x3bf0
[  323.923186][ T8914]  ? process_scheduled_works+0x9cb/0x18e0
[  323.923204][ T8914]  process_scheduled_works+0xac3/0x18e0
[  323.923234][ T8914]  ? __pfx_process_scheduled_works+0x10/0x10
[  323.923256][ T8914]  ? assign_work+0x367/0x3d0
[  323.923274][ T8914]  worker_thread+0x870/0xd50
[  323.923299][ T8914]  ? __kthread_parkme+0x1a8/0x200
[  323.923318][ T8914]  ? __pfx_worker_thread+0x10/0x10
[  323.923336][ T8914]  kthread+0x7b7/0x940
[  323.923356][ T8914]  ? __pfx_worker_thread+0x10/0x10
[  323.923373][ T8914]  ? __pfx_kthread+0x10/0x10
[  323.923391][ T8914]  ? __pfx_kthread+0x10/0x10
[  323.923410][ T8914]  ? __pfx_kthread+0x10/0x10
[  323.923429][ T8914]  ? __pfx_kthread+0x10/0x10
[  323.923448][ T8914]  ? _raw_spin_unlock_irq+0x23/0x50
[  323.923465][ T8914]  ? lockdep_hardirqs_on+0x9d/0x150
[  323.923482][ T8914]  ? __pfx_kthread+0x10/0x10
[  323.923502][ T8914]  ret_from_fork+0x4b/0x80
[  323.923518][ T8914]  ? __pfx_kthread+0x10/0x10
[  323.923537][ T8914]  ret_from_fork_asm+0x1a/0x30
[  323.923567][ T8914]  </TASK>
[  323.923573][ T8914] 
[  324.161771][ T8914] Allocated by task 1:
[  324.165824][ T8914]  kasan_save_track+0x3f/0x80
[  324.170492][ T8914]  __kasan_kmalloc+0x9d/0xb0
[  324.175070][ T8914]  __kmalloc_node_track_caller_noprof+0x295/0x4d0
[  324.181473][ T8914]  krealloc_noprof+0x10f/0x300
[  324.186386][ T8914]  add_sysfs_param+0x165/0x840
[  324.191152][ T8914]  kernel_add_sysfs_param+0xb4/0x130
[  324.196437][ T8914]  param_sysfs_builtin+0x1dd/0x2a0
[  324.201539][ T8914]  param_sysfs_builtin_init+0x31/0x40
[  324.206901][ T8914]  do_one_initcall+0x24a/0x940
[  324.211654][ T8914]  do_initcall_level+0x157/0x210
[  324.216577][ T8914]  do_initcalls+0x71/0xd0
[  324.220905][ T8914]  kernel_init_freeable+0x432/0x5d0
[  324.226096][ T8914]  kernel_init+0x1d/0x2b0
[  324.230422][ T8914]  ret_from_fork+0x4b/0x80
[  324.234828][ T8914]  ret_from_fork_asm+0x1a/0x30
[  324.239586][ T8914] 
[  324.241901][ T8914] The buggy address belongs to the object at ffff88802ecd34e0
[  324.241901][ T8914]  which belongs to the cache kmalloc-16 of size 16
[  324.255789][ T8914] The buggy address is located 8 bytes to the right of
[  324.255789][ T8914]  allocated 16-byte region [ffff88802ecd34e0, ffff88802ecd34f0)
[  324.270192][ T8914] 
[  324.272508][ T8914] The buggy address belongs to the physical page:
[  324.278916][ T8914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2ecd3
[  324.287668][ T8914] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  324.294770][ T8914] page_type: f5(slab)
[  324.298754][ T8914] raw: 00fff00000000000 ffff88801b041640 dead000000000100 dead000000000122
[  324.307337][ T8914] raw: 0000000000000000 0000000000800080 00000000f5000000 0000000000000000
[  324.315916][ T8914] page dumped because: kasan: bad access detected
[  324.322326][ T8914] page_owner tracks the page as allocated
[  324.328034][ T8914] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 36, tgid 36 (kworker/u8:2), ts 19181812861, free_ts 19145257811
[  324.346953][ T8914]  post_alloc_hook+0x1f4/0x240
[  324.351720][ T8914]  get_page_from_freelist+0x351d/0x36b0
[  324.357270][ T8914]  __alloc_frozen_pages_noprof+0x211/0x5b0
[  324.363069][ T8914]  alloc_pages_mpol+0x339/0x690
[  324.367905][ T8914]  allocate_slab+0x8f/0x3a0
[  324.372395][ T8914]  ___slab_alloc+0xc3b/0x1500
[  324.377068][ T8914]  __slab_alloc+0x58/0xa0
[  324.381398][ T8914]  __kmalloc_noprof+0x2ea/0x4d0
[  324.386241][ T8914]  security_task_alloc+0x4a/0x340
[  324.391255][ T8914]  copy_process+0x1605/0x3d10
[  324.395915][ T8914]  kernel_clone+0x227/0x880
[  324.400405][ T8914]  user_mode_thread+0x148/0x1c0
[  324.405245][ T8914]  call_usermodehelper_exec_work+0x5c/0x230
[  324.411135][ T8914]  process_scheduled_works+0xac3/0x18e0
[  324.416674][ T8914]  worker_thread+0x870/0xd50
[  324.421253][ T8914]  kthread+0x7b7/0x940
[  324.425312][ T8914] page last free pid 1206 tgid 1206 stack trace:
[  324.431620][ T8914]  __free_frozen_pages+0xddf/0x10a0
[  324.436813][ T8914]  vfree+0x1c3/0x360
[  324.440696][ T8914]  delayed_vfree_work+0x56/0x80
[  324.445535][ T8914]  process_scheduled_works+0xac3/0x18e0
[  324.451065][ T8914]  worker_thread+0x870/0xd50
[  324.455641][ T8914]  kthread+0x7b7/0x940
[  324.459697][ T8914]  ret_from_fork+0x4b/0x80
[  324.464100][ T8914]  ret_from_fork_asm+0x1a/0x30
[  324.468867][ T8914] 
[  324.471177][ T8914] Memory state around the buggy address:
[  324.476789][ T8914]  ffff88802ecd3380: 00 00 fc fc 00 00 fc fc 00 00 fc fc 00 00 fc fc
[  324.484837][ T8914]  ffff88802ecd3400: 00 00 fc fc 00 00 fc fc fa fb fc fc 00 04 fc fc
[  324.492885][ T8914] >ffff88802ecd3480: 00 00 fc fc 00 04 fc fc 00 00 fc fc 00 00 fc fc
[  324.500926][ T8914]                                                                 ^
[  324.508886][ T8914]  ffff88802ecd3500: 00 00 fc fc 00 02 fc fc 00 02 fc fc 00 00 fc fc
[  324.516930][ T8914]  ffff88802ecd3580: 00 03 fc fc 00 00 fc fc 00 00 fc fc fa fb fc fc
[  324.524972][ T8914] ==================================================================
[  324.559484][ T8914] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  324.566723][ T8914] CPU: 1 UID: 0 PID: 8914 Comm: kworker/u8:14 Not tainted 6.15.0-rc1-syzkaller-00246-g900241a5cc15 #0 PREEMPT(full) 
[  324.578969][ T8914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  324.589026][ T8914] Workqueue: events_unbound netfs_write_collection_worker
[  324.596134][ T8914] Call Trace:
[  324.599402][ T8914]  <TASK>
[  324.602320][ T8914]  dump_stack_lvl+0x241/0x360
[  324.606989][ T8914]  ? __pfx_dump_stack_lvl+0x10/0x10
[  324.612178][ T8914]  ? __pfx__printk+0x10/0x10
[  324.616768][ T8914]  ? vscnprintf+0x5d/0x90
[  324.621083][ T8914]  panic+0x349/0x880
[  324.624973][ T8914]  ? check_panic_on_warn+0x21/0xb0
[  324.630076][ T8914]  ? __pfx_panic+0x10/0x10
[  324.634497][ T8914]  ? _raw_spin_unlock_irqrestore+0x134/0x140
[  324.640473][ T8914]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  324.646879][ T8914]  ? print_report+0x519/0x5b0
[  324.651552][ T8914]  check_panic_on_warn+0x86/0xb0
[  324.656479][ T8914]  ? iov_iter_revert+0x1c1/0x5a0
[  324.661403][ T8914]  end_report+0x77/0x160
[  324.665639][ T8914]  kasan_report+0x154/0x180
[  324.670128][ T8914]  ? iov_iter_revert+0x1c1/0x5a0
[  324.675058][ T8914]  iov_iter_revert+0x1c1/0x5a0
[  324.679816][ T8914]  netfs_retry_writes+0x17f2/0x19d0
[  324.685011][ T8914]  ? rcu_read_lock_sched_held+0x91/0x140
[  324.690630][ T8914]  ? __pfx_netfs_retry_writes+0x10/0x10
[  324.696168][ T8914]  ? xfd_validate_state+0x6e/0x150
[  324.701269][ T8914]  netfs_write_collection_worker+0x2fc0/0x3bf0
[  324.707431][ T8914]  ? process_scheduled_works+0x9cb/0x18e0
[  324.713139][ T8914]  process_scheduled_works+0xac3/0x18e0
[  324.718682][ T8914]  ? __pfx_process_scheduled_works+0x10/0x10
[  324.724649][ T8914]  ? assign_work+0x367/0x3d0
[  324.729226][ T8914]  worker_thread+0x870/0xd50
[  324.733814][ T8914]  ? __kthread_parkme+0x1a8/0x200
[  324.738831][ T8914]  ? __pfx_worker_thread+0x10/0x10
[  324.743933][ T8914]  kthread+0x7b7/0x940
[  324.747991][ T8914]  ? __pfx_worker_thread+0x10/0x10
[  324.753094][ T8914]  ? __pfx_kthread+0x10/0x10
[  324.757671][ T8914]  ? __pfx_kthread+0x10/0x10
[  324.762250][ T8914]  ? __pfx_kthread+0x10/0x10
[  324.766831][ T8914]  ? __pfx_kthread+0x10/0x10
[  324.771411][ T8914]  ? _raw_spin_unlock_irq+0x23/0x50
[  324.776596][ T8914]  ? lockdep_hardirqs_on+0x9d/0x150
[  324.781781][ T8914]  ? __pfx_kthread+0x10/0x10
[  324.786358][ T8914]  ret_from_fork+0x4b/0x80
[  324.790759][ T8914]  ? __pfx_kthread+0x10/0x10
[  324.795337][ T8914]  ret_from_fork_asm+0x1a/0x30
[  324.800100][ T8914]  </TASK>
[  324.803345][ T8914] Kernel Offset: disabled
[  324.807655][ T8914] Rebooting in 86400 seconds..