last executing test programs:

25.55438926s ago: executing program 0 (id=3871):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000019100)='net/udp6\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
waitid(0x0, 0x0, 0x0, 0xb, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, &(0x7f0000000080)={0x5, 0x7})
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565b, &(0x7f0000000000)={0x6})
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r2, &(0x7f0000006d40)=[{{&(0x7f0000000100)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000140)='j', 0x1}], 0x1}}, {{&(0x7f0000000840)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000002a00)=[{&(0x7f0000000880)='*', 0x1}], 0x1}}], 0x2, 0x48000)

24.086253153s ago: executing program 1 (id=3876):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmsg$unix(r0, &(0x7f0000000700)={&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000380)=""/247, 0xf7}, {&(0x7f0000000480)=""/119, 0x77}, {&(0x7f0000000500)=""/29, 0x1d}, {&(0x7f0000000540)=""/127, 0x7f}, {&(0x7f00000005c0)=""/82, 0x52}], 0x5, &(0x7f00000006c0)=[@cred={{0x1c}}], 0x20}, 0x2000)

23.29967048s ago: executing program 0 (id=3879):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mremap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha384\x00'}, 0x58)
r1 = timerfd_create(0x0, 0x0)
timerfd_settime(r1, 0x3, &(0x7f0000000100)={{}, {0x0, 0x989680}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a40)=ANY=[@ANYBLOB], 0x74}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
r3 = socket$kcm(0xa, 0x922000000003, 0x11)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004f40)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0xc}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x15}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x88}}, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={&(0x7f0000000500)=@l2tp6={0xa, 0x0, 0x3, @loopback, 0x1, 0xfffffffe}, 0x80, 0x0}, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)

23.133609829s ago: executing program 0 (id=3880):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close(0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
mknodat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x400, 0x2)
fchdir(0xffffffffffffffff)
r3 = open(&(0x7f0000000000)='./file1\x00', 0x80242, 0x8)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x1000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x19}}}, 0xa0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000002, 0x13, 0xffffffffffffffff, 0x0)
sendfile(r3, r3, &(0x7f0000000080), 0x4d9b6eaf)

22.938533974s ago: executing program 1 (id=3881):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x3d03)
ioctl$USBDEVFS_ALLOW_SUSPEND(r2, 0x5522)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
r3 = userfaultfd(0x801)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x1, 0x7ffc1ffb}]})
kexec_load(0x0, 0x0, 0x0, 0xa0000)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x7, 0x8, @loopback, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=[@ip_tos_int={{0x14, 0x11a, 0x1, 0x8}}], 0x28}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xe)
r6 = syz_open_procfs(0x0, &(0x7f0000000440)='projid_map\x00')
write$tcp_mem(r6, &(0x7f0000000180)={0x6, 0x20, 0x0, 0x20, 0x1}, 0x48)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, 0x0, 0x35)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="3800000010000108fdffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000008001b000000000010001a800c002d80080001"], 0x38}}, 0x0)
r7 = syz_open_dev$loop(&(0x7f0000000100), 0x6, 0x20000)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a300000000009"], 0xe4}, 0x1, 0x0, 0x0, 0x8001}, 0x20050840)
write$binfmt_misc(r8, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r7, 0x4c0a, &(0x7f00000002c0)={r8, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd00000080190000000000d97f7549acbd8989001800", [0x0, 0x2000000000001]}})

22.333746824s ago: executing program 4 (id=3884):
socket$netlink(0x10, 0x3, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r1, @ANYBLOB="0000000003120100500012800b0001006272696467650000400002800800050001000000060027000000000008000100150008000500250000000000080004000000"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x40004)

22.162577023s ago: executing program 4 (id=3885):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r0, &(0x7f00000003c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB], &(0x7f00002bf000)='GPL\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r2 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000180)={r0, r1})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000001380)={<r3=>0xffffffffffffffff})
sendmsg$TCPDIAG_GETSOCK(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000002e40)=ANY=[], 0x1058}, 0x1, 0x0, 0x0, 0x40080}, 0x4000)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
preadv(r4, &(0x7f00000014c0)=[{&(0x7f0000000340)=""/191, 0xfffffd90}], 0x1, 0x182, 0x0)

21.976873569s ago: executing program 1 (id=3887):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_fuse_handle_req(r0, &(0x7f000000a100)="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", 0x2000, &(0x7f0000000200)={&(0x7f0000000400)={0x50, 0x0, 0x100000001, {0x7, 0x28, 0x80007a, 0x2143040, 0x104, 0x1, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x236, &(0x7f0000000240)={0x0, 0x8101, 0x0, 0xfffffffe, 0x338}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000600)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, 0x0, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000480)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x2, 0x1, 0x0, 0x9678, 0x0, 0x0, {0x1}})
read$FUSE(r0, &(0x7f0000006080)={0x2020}, 0x2020)
r4 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$NFT_BATCH(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x2c, 0x14, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWFLOWTABLE={0x1c, 0x16, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x9c}, 0x1, 0x0, 0x0, 0xc091}, 0x4002)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x149002, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$P9_RSTATu(r5, &(0x7f00000004c0)=ANY=[@ANYBLOB="930200007d00000005f000000000000005fe"], 0x232)

21.497795232s ago: executing program 1 (id=3888):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x6, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
rt_sigqueueinfo(0x0, 0x6, &(0x7f0000000040)={0xc, 0x0, 0x6})
getpriority(0x1, 0x0)
bind$tipc(0xffffffffffffffff, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)

21.301540337s ago: executing program 4 (id=3890):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000240)={0x38, 0x9, 0x8, 0x8001, 0x0, 0x4, 0x6, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(0xffffffffffffffff, 0x40085112, 0x0)
timerfd_create(0x0, 0x0)
clock_adjtime(0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x2f)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$sock(r3, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
ioctl$PTP_EXTTS_REQUEST2(0xffffffffffffffff, 0x40603d10, 0x0)
recvfrom(r4, &(0x7f0000000040)=""/60, 0x3c, 0x40, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000000180)={0x4, 0x4, 0x6000, 0xa7000, &(0x7f0000ffc000/0x2000)=nil, 0x0, r5})
r6 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_PRE_FAULT_MEMORY(r6, 0xc040aed5, &(0x7f00000000c0)={0xd000, 0x522ca32015d0bed2})
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, 0x0)
ioctl$XFS_IOC_PATH_TO_FSHANDLE(0xffffffffffffffff, 0xc0385868, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)

20.927944908s ago: executing program 3 (id=3891):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmsg$unix(r0, &(0x7f0000000700)={&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000380)=""/247, 0xf7}, {&(0x7f0000000480)=""/119, 0x77}, {&(0x7f0000000500)=""/29, 0x1d}, {&(0x7f0000000540)=""/127, 0x7f}, {&(0x7f00000005c0)=""/82, 0x52}], 0x5, &(0x7f00000006c0)=[@cred={{0x1c}}], 0x20}, 0x2000)

20.914291386s ago: executing program 0 (id=3892):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8004, 0x0, 0x9, 0x7, 0xfffffdffffffffff, 0xfa11, 0xffffffff}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRESHEX], 0x164}, 0x1, 0x0, 0x0, 0x8090}, 0x4000000)
r2 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x4040000)
bind$inet6(r2, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r6)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r6, 0x74)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x28, 0x0, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}]}]}, 0x28}}, 0x0)
socket$netlink(0x10, 0x3, 0x13)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000140)={'wlan0\x00'})
socket$alg(0x26, 0x5, 0x0)

19.914621394s ago: executing program 3 (id=3893):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200407f9, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000140)="91f8a9849519def28691bbc4173c3d6f357d0272b7319130feaab952ac4703cad04be68907e50e997fc26e4c91ea4feb931647fc5393de2500000000", 0x3c}, {&(0x7f0000000e80)="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", 0x119}, {&(0x7f00000002c0)="641a6a2b863c0dd89801925ab48c844221841a87729aca4f2dd9194838b58523947f720c0ecddddb8e618e16ea418060862fdb55f8799bf9c3ecf3812b886138dc5e474541dc531f94fb9c624173cee8b8e3c30aee406b06e859075700000000bdd2bd8853ecedf6056e713bfa99afecaa4a5228f090006692a76749a831a000"/138, 0x8a}, {&(0x7f00000001c0)="985e44efeabe001cabcf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bca6122c3506", 0x43}], 0x4}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000b80)="f77d2b5dd5f7d74f0748cf3d2cf218d644566a14103b1c7dd35fd2951bd022f10f2dc7f4ce0d8ac5f4abaca4b97b706153756913b7dd48248b5bfb10460019248bf238743fa2aeb5bef21ce832db670920dc5e911ef2ad63e849901d1001129dbacbfd4924d7545517fd18b5d29978f32a5b5c81755cb89cc0490958ba3211eb99df5cdbbc0f9c941aaa1495893dada02d8188acd26b5afd7476413f322c8f79de769debb56343f3eded2dca93ed6641e50fe595e1e0dbe84ed0f70abb4ed2dfb6648df7dbbd18fa5533a6b0acc138c81a8acbcb2fb79a7d7857d41bca238e0548c5e955d74bbb106fe965274cbb3a29b895df0b4e028b6d65c115b81328e0b660253f1c9a359dde67917fa232e2f566483ddbb93ff9b103c1cac356c9f0f6ab5fe77ea4610f71ec6dc988fddf29b8d0b6aaa82752580b62b5f51800d10077f07319b6ffeff06e4dea184fd7a0a0f4d441763e30d1bc475502a1de1ffbc0e30cb1", 0x161}, {&(0x7f0000000640)="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", 0xfc}, {&(0x7f0000001300)="e0cda6472d1ccfb4d1d46bf348a3b7ff9e5b6b3e30ef2266c86a085e37271763c50968fe2e2eb13b9472381bade936f9a85e26aac6ebd21115f086751d870434cf07dbd92e0ea2322f163473dad24cffe6d23ffa95b04a2653e8a7c9ab042e4bde850bc9f6147f1a48e86eec8223fd33fc6c1f0b457883374393fbd08a3281a268aff6688fb41eecbdd328ef0fcbe09cd9e34c6b9d641ba6fb677edede912815299a33", 0xa3}], 0x3}}, {{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000000c0)="9d910b8618214bae2e342dc08ae97b143ffc6ab012a1586720306bf83d3388e0c1ac3c108fc990989ac1b22c3dd83b3626fb0fabd889b211911a46bcf8", 0x3d}, {&(0x7f0000000380)="b40978b34848d8f56550e6c1f3306cb0c73974e45c4d76137dff606065e1f2eeb46c557cd921109449369d696cdb497b4e457215ac489460e2717343343bc65a", 0x40}, {&(0x7f0000001e00)="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", 0xdc4}], 0x3}}], 0x3, 0x2090)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

19.686026652s ago: executing program 3 (id=3894):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e9"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000040), 0xfffffffffffffffb, 0x48b01)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0xfffffff8, 0x85, &(0x7f0000000000)={0x4b5a9da54893e123, 0x1, 0x8, 0x2}, 0x8, 0x20400000, 0xc, 0x0, 0x0, 0x20000, 0x0})
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004840}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

19.339677469s ago: executing program 4 (id=3896):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="180000002500010324bd5502ffdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20004888}, 0x0)
recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000002640)=[{&(0x7f00000010c0)=""/237, 0xed}, {&(0x7f0000001380)=""/99, 0x63}, {&(0x7f0000001280)=""/41, 0x29}, {&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000002700)=""/36, 0x24}, {&(0x7f0000003dc0)=""/4096, 0x1000}, {&(0x7f0000002440)=""/247, 0xf7}, {&(0x7f0000002540)=""/210, 0xd2}], 0x8}, 0x22120)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)

19.23037653s ago: executing program 1 (id=3897):
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x24044c41)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0xe84, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000000, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x1, 0x4, 0x5}, {0x4a7, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x7, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x40008}, {0x0, 0x5, 0x1437, 0xffffffff, 0xee57, 0x9}, {0x77d, 0x8, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x5, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x1, 0x10001, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x50}, {0xfffffffc, 0x4, 0xffff, 0x8, 0xffffffff, 0xfffffffe}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x3e}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0x0, 0xeac}, {0x9, 0x2, 0xd77, 0x8, 0x113, 0x8d3f}, {0x7, 0xffffffff, 0x4, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x9, 0x7ff, 0x3, 0xad47, 0xf83b}, {0x1ff, 0x5, 0x7, 0xfff, 0x9}, {0x4, 0x0, 0x200, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0x10001, 0x9, 0x200, 0xdabc, 0x1}, {0x6, 0x10, 0xf, 0x2, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0xffffffff}, {0x80000000, 0x6, 0x0, 0x6, 0x6, 0xd}, {0xa5d, 0x9, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x1, 0xffffffff}, {0x4d9, 0x45db8bad, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x1, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x10, 0x7ff, 0x3, 0x4}, {0x3, 0x7, 0x4, 0x4, 0x1c716ddc, 0x2}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x2, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x5, 0x4, 0x4, 0x67}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x3, 0x2, 0xffff, 0x2, 0x8}, {0x7, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x9, 0x1000, 0x9, 0x9}, {0xe, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0xe3f6, 0x8, 0xfffffff7, 0x1, 0x6, 0xc}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f5, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x8, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x7, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0xe000, 0xb, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x2, 0x9, 0x3, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x3, 0x5, 0x4, 0x3649}, {0x7, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x3, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x900, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0xffffffff, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x0, 0xfc, 0x7, 0x6, 0x10}, {0xf, 0x1, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0x10001, 0x6, 0x1, 0x9, 0xfffffff8}, {0x3, 0x3, 0x7, 0x9, 0x10, 0x1}, {0x5, 0xdfd0, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0x6, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x3}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x7, 0x10000, 0x9, 0x4, 0x88}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0x5, 0x7, 0x5, 0x4, 0x80000001}, {0x3, 0x0, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0xfffffffe}, {0x10001, 0x5, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x3, 0x3, 0x6, 0x800, 0x7}, {0x0, 0x8000, 0x3, 0x2, 0x1, 0x3}, {0x3, 0x3, 0xbfffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0x1, 0x3}, {0x6, 0x7, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0x3, 0x9, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffffa, 0x1, 0x3, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x4, 0x96, 0x81, 0x0, 0x101, 0x7}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x800}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0xfffffffd, 0x3}, {0x1, 0xe2, 0x401, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x106, 0x0, 0x7, 0x9, 0x0, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6f, 0x0, 0xa54f}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x3, 0x4, 0x2, 0x1, 0x6, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x0, 0xe61, 0xc5c3, 0x3, 0x1}, {0x7, 0x5, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x0, 0x6, 0x10001, 0x40ce7, 0xec, 0x1000}, {0xffffffff, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0xcf}, {0x37, 0x622, 0x2, 0x3, 0x7, 0x2}], [{0x5}, {0xccffbfc290ab3baa}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4}, {}, {0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {}, {0x1, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4}, {0x2}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x4}, {0x4, 0x1}, {}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3}, {0x1, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1}, {0x2}, {0x3, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x5}, {0x0, 0x1}, {0x2}, {0x0, 0x1}, {0x5}, {}, {0x2}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x1}, {0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0xe84}, 0x1, 0x0, 0x0, 0x81}, 0x800)

19.202976084s ago: executing program 3 (id=3898):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_fuse_handle_req(r0, &(0x7f000000a100)="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", 0x2000, &(0x7f0000000200)={&(0x7f0000000400)={0x50, 0x0, 0x100000001, {0x7, 0x28, 0x80007a, 0x2143040, 0x104, 0x1, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_io_uring_setup(0x236, &(0x7f0000000240)={0x0, 0x8101, 0x0, 0xfffffffe, 0x338}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000600)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, 0x0, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000480)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x2, 0x1, 0x0, 0x9678, 0x0, 0x0, {0x1}})
read$FUSE(r0, &(0x7f0000006080)={0x2020}, 0x2020)
r4 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$NFT_BATCH(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x2c, 0x14, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWFLOWTABLE={0x1c, 0x16, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x9c}, 0x1, 0x0, 0x0, 0xc091}, 0x4002)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x149002, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$P9_RSTATu(r5, &(0x7f00000004c0)=ANY=[@ANYBLOB="930200007d00000005f000000000000005fe"], 0x232)

19.168560648s ago: executing program 2 (id=3899):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x8e40, 0x0)
close(r1)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff5644d, 0x70b923, 0x7fffe, {0x0, 0x0, 0x0, r7, {}, {0xb, 0xb}, {0xf, 0xb}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x6, 0x808, 0x205, 0x1, 0xc}, 0xb, 0x0, 0x32, 0x5, 0xa, 0x2, 0x9, 0xd, 0x1, 0x1, {0xffff1c72, 0x23, 0x7, 0xc, 0xfffffffe, 0x7583}}}}]}, 0x78}}, 0x8000)
sendto$packet(r4, &(0x7f0000000240)="bad33075218151db00316f3a277f953286ddd1dc9119f992e83de525e4a40e81692d09dc6b6b0ef1", 0x5ea, 0x2000041, &(0x7f0000000080)={0x11, 0x88a8, r3, 0x1, 0xda, 0x6, @remote}, 0x14)

19.090508664s ago: executing program 4 (id=3900):
r0 = syz_open_dev$vim2m(0x0, 0x2, 0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="580000000206030000000000000000000300000705000100070000000900020073797a31000000000c00078008001240000000050500050002000000050004000100000011000300686173683a69702c706f727400"], 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070088000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x90)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_usb_connect(0x2, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000059770c40c009030243d30000000109021200"], 0x0)
syz_usb_control_io$uac1(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r4, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r5, 0xffffffffffffffff, 0x0)

19.053159527s ago: executing program 1 (id=3901):
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000580)=@abs, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0xe060400)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000009593d1044062180b738010203010902120001000000000904"], 0x0)

18.658465145s ago: executing program 0 (id=3902):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
r1 = socket(0x23, 0x6, 0x1000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x0, &(0x7f0000000040)})
ioctl$sock_FIOGETOWN(r2, 0x8903, 0x0)
sched_setattr(0x0, &(0x7f0000000180)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x100000001, 0xffffffff, 0x108, 0x65aa}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000100)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mknod(&(0x7f00000000c0)='./file1/file3\x00', 0xc000, 0x81b)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r4, &(0x7f0000000100)=[{&(0x7f00000000c0)='4', 0x1}], 0x1)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000037c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@ipv6_deladdrlabel={0x38, 0x48, 0x301, 0x70bd2d, 0x25dfdbfc, {0xa, 0x0, 0x80, 0x0, 0x0, 0x5}, [@IFAL_ADDRESS={0x14, 0x1, @loopback}, @IFAL_LABEL={0x8, 0x2, 0x9}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000881}, 0x44040)
recvfrom$rxrpc(r1, &(0x7f00000003c0)=""/92, 0x5c, 0x100, &(0x7f0000000140)=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e24, @local}}, 0x24)
write$sysctl(r4, &(0x7f0000000180)='4\x00', 0x2)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f00000002c0)={0x84, &(0x7f0000000500)=ANY=[@ANYRESDEC=r4, @ANYRES8, @ANYRESDEC, @ANYBLOB="8a96b5b1cb41cc6cddf50c4be17d728e2cb3436818b951770e0a3d79c92880699e5b2909179886496f13e415cab9d0794d54cf5075903075bdae1e574e0f3dac3688937db0571810ef9590d1d96f7ac3f72953ed90e080d8f34d0d1580a37ead8131174b4b5bb9dcd2be17607e41d1d42048f1504974f9bbdb2bc99676069585e5b7c27e6c5080406e6442926ca111eff156e0", @ANYRES16=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

18.625883779s ago: executing program 3 (id=3903):
r0 = openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000fdc01a40f30c74933bbc0000000109021b0001000000000904000001a7a00f00090582de", @ANYRESDEC], 0x0)
sendmsg$nl_route(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x2a240}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_LINK={0x8, 0x1, 0x4}, @IFLA_XFRM_IF_ID={0x8, 0x2, 0x1}]}}}, @IFLA_LINK={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x800)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
ioctl$KVM_SET_TSC_KHZ_cpu(r3, 0xaea2, 0x1)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(gcm(aes))\x00'}, 0x58)
bind$alg(r4, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'pcrypt(generic-gcm-aesni)\x00'}, 0x58)
ftruncate(0xffffffffffffffff, 0xffff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f00000004c0)=@multiplanar_userptr={0x5, 0x4, 0x4, 0x20, 0x6, {}, {0x3, 0x8, 0x0, 0x3, 0x6, 0xf5, "2af344db"}, 0xddd4, 0x2, {0x0}, 0x2})
r5 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x8000})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r6=>r4}, './file0\x00'})
ioctl$UI_DEV_SETUP(r6, 0x405c5503, &(0x7f0000000180)={{0x0, 0x7ff, 0xe, 0x9}, 'syz1\x00', 0x22})
ioctl$DMA_BUF_IOCTL_SYNC(r5, 0x40086200, &(0x7f00000000c0)=0x7)

18.536242643s ago: executing program 2 (id=3904):
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
write(0xffffffffffffffff, &(0x7f0000000080)="11000000140025000307f4f9002304000a", 0x11)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000900)=ANY=[@ANYBLOB="15a31ae9b77a306d5d3418def83421daef8bc61f50c603b6e2072bf9aa93746fe11ce6cc33ca4fe0f3cbfd228dd5a2951f1218dacfd2cc0e36966c9fde554cdc4ca8602ee26302ae43760573b94c", @ANYRESDEC=0x0, @ANYBLOB, @ANYRES64, @ANYRES64, @ANYRESHEX, @ANYRES16], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee7, 0x8031, r2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdir(0x0, 0x0)
getresgid(&(0x7f0000000500), &(0x7f0000000540)=<r6=>0x0, &(0x7f0000000a40))
fchownat(0xffffffffffffffff, &(0x7f0000000280)='./file1\x00', 0x0, r6, 0x400)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtaction={0x14, 0x30, 0xb, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x6a00}}, 0x14}}, 0x200ce8c4)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80d5}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="58000000020601080000000000000000000000040900020073797a3100000000050004000000000011000300686173683a6e65742c6e6574000000000c000780080012400000000205000500020000000500010006"], 0x58}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="500000000906010200000000000000e1020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0c00"], 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)

17.622071477s ago: executing program 2 (id=3905):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000001240)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x0, 0xb29, 0x14}, @ipv4=@udp={{0x6, 0x4, 0x3, 0x1b, 0x7f0, 0x66, 0x0, 0x40, 0x11, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x3a}, {[@timestamp={0x44, 0x4, 0x1e, 0x0, 0x6}]}}, {0x4e20, 0x4e21, 0x7d8, 0x0, @wg=@data={0x4, 0x202, 0x1ff, "e8771ac366586e56f446dcd22ec94c672f1cd650516a2fbeddd0cb5cffc4ef63a1c2be9551171e48bb8559ac9077c099289048d76df434e4ec536c04816b127eb525176f5737b934b37a9d109ea3aa64d0fb30013becb29f6a39d4cbdbc4e2540996ed75b90498301c99df853d4baac4654e6f1a06cf03a87aa2d2d74199bcafa0dc84a8ea112fba51687b8727bb905c7b42a0c9b26559b4ecc397c6a33731df0fca1aee35968435e8129f8e6d52a0754fcaa693706c4557af6be8821983e702fdd3dac90b6cbe00b1fe59f5bcd890dbb87c0d8d80ba8727e4ff6b89af3ecda43705a9dc113396c950947e85193eabe1364909509babcad37d21392d071480ff4f69dc5db442263d4608ff94e5157c65bb35c3f4a7af6bfb562a317cf13292abdbd5ac3f31d47da6fe5e8be324c78b37e2f351955bbf5f18f86a0cd98d68dca14aea59917ce05e0dc0e3a2033d22a506109db846c49f8c7d575c02349736311e40bc497c9a7da1fe4f94d8e601a5cff4cbd63ed730a01c7f07dd74d603b951557b93e551b0e028232412d568dadc29c2c9e01ca85b83d779cd3b918f9c73ba471ee9079fc42b511b45c3d4f80a46f8e9ad22a05ef5422348ff415b2131e2b2ae0ef5fab9f678bc5ef02d611655d6264e0755e176ade135a971851bd22666ae753ff5135bf14a005cea45a8b163706ea52af786f2b48362ec8619f8f728ab9fee21bcc9e000d1c470a51cec5a510f06de4dc52fc82e0be10fe0ac55f09e086cdb7f5d5f935033e4925a6ca1b1ea42f511dafd63a3cc32bcfe20aca26adb6eded22fc956b96cf2b70b5e78dbf4c2da06438c9be342f44f1dbc9bc4e453bad09f8e7d2b611e9f33f681c4342e31fee49d613b170d9ae6c93c7ece1bf0d8aaf00870b6896b8fee4ee9d705608a044ec3537ae6c46b5345e4c41576911757d4ed5bdee8e14f73df14b88af36b4c303346d88b424fea428c77cabc55198fafbcec9b027f9a9759638d733fe2dec7996ddba717fd7e0f0188f9213701c304a2b01186c72a8cfdcb87dd9c8711ec0c438eb7c229b8dfbec5c14bfeec20810b4be8944f7d6f44e5bb8839b84afe25a8654ac821efb9c850394d452873db8e9f05de381103b1278f3b34ec0b920d3aa111c82fe424588debe04dd75ac991c5f650f0b8e72c1783d975d663fc0d939f32bca98650141b381af26436c6352d98a6e30843d956ad68f998851b8c64c49a59ca6937355ac4412009cd0a2e4cacf5b02063908f7937e7563e6f63703adc5aff159f3628eb64071fc74e4e66e142113a176c2a649d653f55e833a3f184f91995547a79f46c7ca02813136c920fe6f69fe466656518478ccb84c02d751a502dff90558ce066d9be71c8fa800d7a1d56b5ca52be3122aae2cfbfe1b11d454ad72bdf7fd9d450a74734594f5e566ac2a37ca8b648fee012bf7f83f1126743b0f4791592e17dfca010a3dafeac81b88c5a47d948fc772fe4b48146b10aa319a13ca4f4dc05861859929d3c1d69967d18290cc87777a4231a6ce8dc2a4e34450e3a7659c05e5e12239d768ef8394f82278b975a68497571d1e5191ac329a66b5219f3f7f20f21261cdc3028a3662b6c10198bf7d3d513b5b823d4703cb29d89b84da69a6358a269769a8b23712c6291e77fc4da837e0857b4bbc08bba0659c55a1e06fdf1736df13948824a37515f8c49de6d502519077197debfc74709ed564315279ec804c7a0305526b14efcab44364105aa805efd97f0444d6016e35712dba75b038ea63917e6163614a3a6c694d7612e00cddab8bd31f6ba146d08e949d50ed3b0ef8fd3412ffd020bfabbcfbc5c3fa436022de3fd973869066871ec639653f3b4b5f01374adf3b60940d241a5dda6df550662ccb1a4575e2419baf1a76a246c9b7f39a05c03d832aa28293a54c619865fed0fdccd570859ffc7b1844ea8cff1e12389382e39211e665fec9d82faf11fd2300412d24dab176515aff938a6b12b5427b7fa6b42a3042248977b2f4eae9d96534a85b9ed500f62866d39f5301a3b6e60d392248fcfad25c2803c875e00010f40caca1a5932e00765c3b52427a2a8d6875a73ccb3b8e78dd27555994bf4358b2e577efe8886939515be37889e3656a5e0a949619f0f0b9cae7dc59a2415bec72df3439e563cfe69b7952abfad6cb6a979c146355e590ace810017d04075f23a1554a81bcdfb82c2396fd61fe95cd0f9c2e394bdbb0900648675ec09b94b1d4672e613be577cb398bb5d188b7c09865e2edbb273f8d9b0ae836f24b34ae6cd22e37e1ab31c835c23bd8f6deb49402f19406b0c7cddfbe357ab496910a8efa939dd9ab91de3ba67d07103063fbf9ee6fbd7b61c6b65ebe735cfab2c1162b379a3cbcbdb14d82b7f2e707ddd896ac5085ef5b15da85663df079bd5ef6180c775a4b7d645630aa9ea704f69ec8ea052f8f41e62f0e6f78a5a846e9130c53eb29a7bab9b102bf08729243f6ffe0ee6f28e98e4d0c1f49813aa04c2774f1f076310d923e900fe1c609bc5a308421fb82a12b03b9be47ce6d88635bb1722739d1abcdbc28133de131d2151d76f565be56813bb3edcf4d870f4acd0bfe5b30d60ef065158bf7b8401096a1647de88c7b0144eacecabfdf9d48d91573e82f2efecab095339e799e36ab3ee1eb66db9f9c21d96bcb2b7bf4ab01e8e56df8c4bca2bed7732472468a3b447024bc997adff639ba35e2af10f661199c4a8a2b2a8e3e59ff4ed5da468c1c2c41001efc0529636ce4ef9dd6b28deed0ad5a758abd2a3a3f024f56dd17fb4"}}}}, 0x7fe)

17.47434847s ago: executing program 4 (id=3906):
openat$adsp1(0xffffffffffffff9c, 0x0, 0xa40c2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x4, 0x0, 0x8001, 0xfa11, 0x9}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x2d0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x330)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000080))
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x40000000040201, 0x0)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r6, 0xc0984124, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x20, 0x2, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x4, 0x3}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x10, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x6a}}]}]}}}, @IFLA_LINK={0x8}]}, 0x58}, 0x1, 0xba01}, 0x8800)

17.342775066s ago: executing program 2 (id=3907):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg2\x00'})
socket(0x10, 0x3, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x4780, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r1, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x6, &(0x7f0000006680))
umount2(&(0x7f00000002c0)='./file0\x00', 0xb)
syz_open_dev$video(&(0x7f0000000000), 0x8, 0x20202)
syz_open_dev$audion(&(0x7f0000000040), 0x1ff, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x80000000, 0x0)
syz_open_dev$usbfs(&(0x7f0000000040), 0x76, 0x101a01)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x1cf)
r2 = creat(&(0x7f00000002c0)='./file1\x00', 0x40)
ioctl$sock_proto_private(r2, 0x89e5, &(0x7f0000000300)="6218633c30a215e8f12b4d06")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

16.956878906s ago: executing program 2 (id=3908):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0x6, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
rt_sigqueueinfo(0x0, 0x6, &(0x7f0000000040)={0xc, 0x0, 0x6})
getpriority(0x1, 0x0)
bind$tipc(0xffffffffffffffff, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)

16.584836458s ago: executing program 0 (id=3909):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e9"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000040), 0xfffffffffffffffb, 0x48b01)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0xfffffff8, 0x85, &(0x7f0000000000)={0x4b5a9da54893e123, 0x1, 0x8, 0x2}, 0x8, 0x20400000, 0xc, 0x0, 0x0, 0x20000, 0x0})
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004840}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16.43145726s ago: executing program 3 (id=3910):
socket$netlink(0x10, 0x3, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r1, @ANYBLOB="0000000003120100500012800b0001006272696467650000400002800800050001000000060027000000000008000100150008000500250000000000080004000000"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x40004)

15.066360242s ago: executing program 2 (id=3911):
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x24044c41)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0xe84, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000000, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x1, 0x4, 0x5}, {0x4a7, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x7, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x40008}, {0x0, 0x5, 0x1437, 0xffffffff, 0xee57, 0x9}, {0x77d, 0x8, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x5, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x1, 0x10001, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x50}, {0xfffffffc, 0x4, 0xffff, 0x8, 0xffffffff, 0xfffffffe}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x3e}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0x0, 0xeac}, {0x9, 0x2, 0xd77, 0x8, 0x113, 0x8d3f}, {0x7, 0xffffffff, 0x4, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x9, 0x7ff, 0x3, 0xad47, 0xf83b}, {0x1ff, 0x5, 0x7, 0xfff, 0x9}, {0x4, 0x0, 0x200, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0x10001, 0x9, 0x200, 0xdabc, 0x1}, {0x6, 0x10, 0xf, 0x2, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0xffffffff}, {0x80000000, 0x6, 0x0, 0x6, 0x6, 0xd}, {0xa5d, 0x9, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x1, 0xffffffff}, {0x4d9, 0x45db8bad, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x1, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x10, 0x7ff, 0x3, 0x4}, {0x3, 0x7, 0x4, 0x4, 0x1c716ddc, 0x2}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x2, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x5, 0x4, 0x4, 0x67}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x3, 0x2, 0xffff, 0x2, 0x8}, {0x7, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x9, 0x1000, 0x9, 0x9}, {0xe, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0xe3f6, 0x8, 0xfffffff7, 0x1, 0x6, 0xc}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f5, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x8, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x7, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0xe000, 0xb, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x2, 0x9, 0x3, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x3, 0x5, 0x4, 0x3649}, {0x7, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x3, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x900, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0xffffffff, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x0, 0xfc, 0x7, 0x6, 0x10}, {0xf, 0x1, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0x10001, 0x6, 0x1, 0x9, 0xfffffff8}, {0x3, 0x3, 0x7, 0x9, 0x10, 0x1}, {0x5, 0xdfd0, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0x6, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x3}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x7, 0x10000, 0x9, 0x4, 0x88}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0x5, 0x7, 0x5, 0x4, 0x80000001}, {0x3, 0x0, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0xfffffffe}, {0x10001, 0x5, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x3, 0x3, 0x6, 0x800, 0x7}, {0x0, 0x8000, 0x3, 0x2, 0x1, 0x3}, {0x3, 0x3, 0xbfffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0x1, 0x3}, {0x6, 0x7, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0x3, 0x9, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffffa, 0x1, 0x3, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x4, 0x96, 0x81, 0x0, 0x101, 0x7}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x800}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0xfffffffd, 0x3}, {0x1, 0xe2, 0x401, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x106, 0x0, 0x7, 0x9, 0x0, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6f, 0x0, 0xa54f}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x3, 0x4, 0x2, 0x1, 0x6, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x0, 0xe61, 0xc5c3, 0x3, 0x1}, {0x7, 0x5, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x0, 0x6, 0x10001, 0x40ce7, 0xec, 0x1000}, {0xffffffff, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0xcf}, {0x37, 0x622, 0x2, 0x3, 0x7, 0x2}], [{0x5}, {0xccffbfc290ab3baa}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4}, {}, {0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {}, {0x1, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4}, {0x2}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x4}, {0x4, 0x1}, {}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3}, {0x1, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1}, {0x2}, {0x3, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x5}, {0x0, 0x1}, {0x2}, {0x0, 0x1}, {0x5}, {}, {0x2}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x1}, {0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0xe84}, 0x1, 0x0, 0x0, 0x81}, 0x800)

4.001531328s ago: executing program 32 (id=3901):
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000580)=@abs, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0xe060400)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000009593d1044062180b738010203010902120001000000000904"], 0x0)

1.497928743s ago: executing program 33 (id=3909):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e9"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000040), 0xfffffffffffffffb, 0x48b01)
ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0xfffffff8, 0x85, &(0x7f0000000000)={0x4b5a9da54893e123, 0x1, 0x8, 0x2}, 0x8, 0x20400000, 0xc, 0x0, 0x0, 0x20000, 0x0})
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004840}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.422251729s ago: executing program 34 (id=3906):
openat$adsp1(0xffffffffffffff9c, 0x0, 0xa40c2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x4, 0x0, 0x8001, 0xfa11, 0x9}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x2d0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x330)
r4 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0x40045532, &(0x7f0000000080))
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x40000000040201, 0x0)
r6 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r6, 0xc0984124, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x20, 0x2, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x4, 0x3}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x10, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x6a}}]}]}}}, @IFLA_LINK={0x8}]}, 0x58}, 0x1, 0xba01}, 0x8800)

513.339204ms ago: executing program 35 (id=3910):
socket$netlink(0x10, 0x3, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=ANY=[@ANYBLOB="7000000010000304000080000000000000007400", @ANYRES32=r1, @ANYBLOB="0000000003120100500012800b0001006272696467650000400002800800050001000000060027000000000008000100150008000500250000000000080004000000"], 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x40)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x40004)

0s ago: executing program 36 (id=3911):
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x24044c41)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0xe84, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000000, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x1, 0x4, 0x5}, {0x4a7, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x7, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x40008}, {0x0, 0x5, 0x1437, 0xffffffff, 0xee57, 0x9}, {0x77d, 0x8, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x5, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x1, 0x10001, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x50}, {0xfffffffc, 0x4, 0xffff, 0x8, 0xffffffff, 0xfffffffe}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x3e}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0x0, 0xeac}, {0x9, 0x2, 0xd77, 0x8, 0x113, 0x8d3f}, {0x7, 0xffffffff, 0x4, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x9, 0x7ff, 0x3, 0xad47, 0xf83b}, {0x1ff, 0x5, 0x7, 0xfff, 0x9}, {0x4, 0x0, 0x200, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0x10001, 0x9, 0x200, 0xdabc, 0x1}, {0x6, 0x10, 0xf, 0x2, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0xffffffff}, {0x80000000, 0x6, 0x0, 0x6, 0x6, 0xd}, {0xa5d, 0x9, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x1, 0xffffffff}, {0x4d9, 0x45db8bad, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x1, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x10, 0x7ff, 0x3, 0x4}, {0x3, 0x7, 0x4, 0x4, 0x1c716ddc, 0x2}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x2, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x5, 0x4, 0x4, 0x67}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x3, 0x2, 0xffff, 0x2, 0x8}, {0x7, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x9, 0x1000, 0x9, 0x9}, {0xe, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0xe3f6, 0x8, 0xfffffff7, 0x1, 0x6, 0xc}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f5, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x8, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x7, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0xe000, 0xb, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x2, 0x9, 0x3, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x3, 0x5, 0x4, 0x3649}, {0x7, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x3, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x900, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0xffffffff, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x0, 0xfc, 0x7, 0x6, 0x10}, {0xf, 0x1, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0x10001, 0x6, 0x1, 0x9, 0xfffffff8}, {0x3, 0x3, 0x7, 0x9, 0x10, 0x1}, {0x5, 0xdfd0, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0x6, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x3}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x7, 0x10000, 0x9, 0x4, 0x88}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0x5, 0x7, 0x5, 0x4, 0x80000001}, {0x3, 0x0, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0xfffffffe}, {0x10001, 0x5, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x3, 0x3, 0x6, 0x800, 0x7}, {0x0, 0x8000, 0x3, 0x2, 0x1, 0x3}, {0x3, 0x3, 0xbfffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0x1, 0x3}, {0x6, 0x7, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0x3, 0x9, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffffa, 0x1, 0x3, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x4, 0x96, 0x81, 0x0, 0x101, 0x7}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x800}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0xfffffffd, 0x3}, {0x1, 0xe2, 0x401, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x106, 0x0, 0x7, 0x9, 0x0, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6f, 0x0, 0xa54f}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x3, 0x4, 0x2, 0x1, 0x6, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x0, 0xe61, 0xc5c3, 0x3, 0x1}, {0x7, 0x5, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x0, 0x6, 0x10001, 0x40ce7, 0xec, 0x1000}, {0xffffffff, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0xcf}, {0x37, 0x622, 0x2, 0x3, 0x7, 0x2}], [{0x5}, {0xccffbfc290ab3baa}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4}, {}, {0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {}, {0x1, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4}, {0x2}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x4}, {0x4, 0x1}, {}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3}, {0x1, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x0, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1}, {0x2}, {0x3, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x5}, {0x0, 0x1}, {0x2}, {0x0, 0x1}, {0x5}, {}, {0x2}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x1}, {0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0xe84}, 0x1, 0x0, 0x0, 0x81}, 0x800)

kernel console output (not intermixed with test programs):

3107'.
[ 1078.472811][ T4452] usb 4-1: new full-speed USB device number 16 using dummy_hcd
[ 1078.631176][ T4452] usb 4-1: device descriptor read/64, error -71
[ 1078.774695][ T5055] bond2 (unregistering): Released all slaves
[ 1078.907097][ T4452] usb 4-1: new full-speed USB device number 17 using dummy_hcd
[ 1079.078910][ T4452] usb 4-1: device descriptor read/64, error -71
[ 1079.102767][ T5055] bond1 (unregistering): Released all slaves
[ 1079.197374][ T4452] usb usb4-port1: attempt power cycle
[ 1079.606715][ T4452] usb 4-1: new full-speed USB device number 18 using dummy_hcd
[ 1080.188547][ T5055] team0 (unregistering): Port device team_slave_1 removed
[ 1080.284929][ T5055] team0 (unregistering): Port device team_slave_0 removed
[ 1080.357669][ T5055] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1080.502756][ T5055] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1080.907639][ T5055] bond0 (unregistering): Released all slaves
[ 1081.004382][T16755] netlink: 'syz.4.3103': attribute type 13 has an invalid length.
[ 1081.035675][ T4452] usb 4-1: device descriptor read/8, error -71
[ 1081.353343][   T26] kauditd_printk_skb: 12 callbacks suppressed
[ 1081.353357][   T26] audit: type=1326 audit(1773183105.581:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1081.578430][T16791] loop6: detected capacity change from 0 to 7
[ 1081.584600][   T26] audit: type=1326 audit(1773183105.621:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1081.691764][T16201] Dev loop6: unable to read RDB block 7
[ 1081.696174][   T26] audit: type=1326 audit(1773183105.621:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1081.721608][   T26] audit: type=1326 audit(1773183105.621:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1081.738935][T16201]  loop6: AHDI p2 p3
[ 1081.744032][   T26] audit: type=1326 audit(1773183105.621:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1081.821514][   T26] audit: type=1326 audit(1773183105.621:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1081.884850][T16201] loop6: partition table partially beyond EOD, truncated
[ 1082.005789][   T26] audit: type=1326 audit(1773183105.621:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1082.029854][   T26] audit: type=1326 audit(1773183105.621:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1082.072189][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1083.304946][T16808] 9pnet_virtio: no channels available for device syz
[ 1084.155029][T16807] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1084.160013][   T26] audit: type=1326 audit(1773183105.631:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1084.357152][   T26] audit: type=1326 audit(1773183105.631:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16785 comm="syz.3.3109" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1084.867265][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1085.240335][T16617] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1085.310770][T16617] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1085.362224][T16617] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1085.424091][T16617] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1085.874072][T16617] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1086.249701][T16835] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1086.527666][T16830] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1086.535276][T16830] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1086.546858][T16842] netlink: 14 bytes leftover after parsing attributes in process `syz.3.3121'.
[ 1087.454359][T16830] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1087.576118][T16830] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1088.425866][T16830] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.439969][T16830] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.449766][T16830] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.462881][T16830] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1088.571205][T16843] netlink: 'syz.2.3120': attribute type 13 has an invalid length.
[ 1088.673158][T16843] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1088.718035][T16843] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1088.730528][T16843] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1088.848984][T16617] 8021q: adding VLAN 0 to HW filter on device team0
[ 1088.870293][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1088.899039][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1088.960753][T16853] tipc: Failed to remove unknown binding: 66,1,1/0:4144582444/4144582446
[ 1089.022684][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1089.041383][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1089.067547][ T5055] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1089.074726][ T5055] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1089.083343][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1089.092493][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1089.101340][ T5055] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1089.108609][ T5055] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1089.116829][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1089.153327][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1089.182059][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1089.213572][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1089.250516][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1089.282477][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1089.298256][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1089.326819][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1089.469011][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1089.527693][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1089.595170][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1089.636948][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1089.723262][T16863] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3125'.
[ 1090.008101][T16863] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1090.020991][T16863] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1090.064273][T16863] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1090.085046][T16617] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1090.517781][T16880] netlink: 'syz.3.3129': attribute type 1 has an invalid length.
[ 1090.567696][T16880] netlink: 'syz.3.3129': attribute type 2 has an invalid length.
[ 1090.569644][T16884] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3129'.
[ 1091.259041][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1091.288668][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1091.343184][T16617] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1091.484530][T16892] device syzkaller0 entered promiscuous mode
[ 1091.615590][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1091.661174][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1091.763992][T15840] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1091.769177][T16903] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3132'.
[ 1091.791966][T15840] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1091.812173][T16617] device veth0_vlan entered promiscuous mode
[ 1091.820213][T15840] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1091.838648][T15840] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1091.877577][T16617] device veth1_vlan entered promiscuous mode
[ 1092.032954][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1092.044724][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1092.055196][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1092.155303][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1092.323732][T16617] device veth0_macvtap entered promiscuous mode
[ 1092.345063][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1092.381417][T16617] device veth1_macvtap entered promiscuous mode
[ 1093.046517][T16921] netlink: 'syz.3.3135': attribute type 13 has an invalid length.
[ 1093.234388][T16617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1093.289901][T16617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1093.365292][T16617] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1093.404309][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1093.426898][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1093.580100][T16617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1093.612466][T16617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1093.682121][T16617] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1093.717388][ T4788] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1093.746297][ T4788] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1093.800885][T16617] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1093.830181][T16617] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1093.838996][T16617] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1093.968686][T16617] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1094.856728][ T4381] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1094.873860][ T4381] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1094.911297][ T5055] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1094.936317][ T4381] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1094.951744][ T4381] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1094.989532][ T4788] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1095.122441][T16939] netlink: 52 bytes leftover after parsing attributes in process `syz.0.3080'.
[ 1095.645918][T16951] device syzkaller1 entered promiscuous mode
[ 1095.847854][T16956] device vlan2 entered promiscuous mode
[ 1095.866486][T16956] device bond0 entered promiscuous mode
[ 1095.900874][T16956] device bond_slave_0 entered promiscuous mode
[ 1095.926737][T16956] device bond_slave_1 entered promiscuous mode
[ 1098.231663][ T4283] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1098.249757][ T4283] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1098.262678][ T4283] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1098.272067][T15755] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1098.385126][ T4283] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1098.392911][T15755] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1098.725969][T16974] Set syz1 is full, maxelem 65536 reached
[ 1099.056664][T16981] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1099.128692][T16984] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3149'.
[ 1099.195192][T16988] netlink: 14 bytes leftover after parsing attributes in process `syz.0.3150'.
[ 1099.652856][T16979] chnl_net:caif_netlink_parms(): no params data found
[ 1100.035888][T16979] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1100.496240][ T4283] Bluetooth: hci5: command 0x0409 tx timeout
[ 1100.725053][T16979] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1100.738731][T16979] device bridge_slave_0 entered promiscuous mode
[ 1100.820784][T16979] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1100.834907][T16979] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1100.880112][T16979] device bridge_slave_1 entered promiscuous mode
[ 1101.057986][T16979] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1101.135364][T16979] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1101.195852][T17008] device syzkaller0 entered promiscuous mode
[ 1101.320279][T16979] team0: Port device team_slave_0 added
[ 1101.375510][T16979] team0: Port device team_slave_1 added
[ 1101.510637][ T4788] tipc: Left network mode
[ 1101.516684][T16979] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1101.565353][T16979] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1101.713728][T16979] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1101.940025][T16979] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1101.953592][T16979] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1102.002614][T16979] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1102.014898][T17015] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3155'.
[ 1102.199313][T16979] device hsr_slave_0 entered promiscuous mode
[ 1102.222544][T16979] device hsr_slave_1 entered promiscuous mode
[ 1102.252554][T16979] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1102.278352][T16979] Cannot create hsr debugfs directory
[ 1102.575975][ T4283] Bluetooth: hci5: command 0x041b tx timeout
[ 1102.705157][ T4309] usb 2-1: new full-speed USB device number 25 using dummy_hcd
[ 1102.914776][ T4309] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1102.931895][ T4309] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1102.950038][ T4309] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1102.976131][ T4309] usb 2-1: Product: syz
[ 1102.998612][ T4309] usb 2-1: Manufacturer: syz
[ 1103.013950][ T4309] usb 2-1: SerialNumber: syz
[ 1103.045852][ T4309] usb 2-1: config 0 descriptor??
[ 1103.052803][ T4788] bond2: (slave gre1): Releasing backup interface
[ 1103.072158][ T4788] bond2: Destroying bond
[ 1103.543796][T17048] input: syz0 as /devices/virtual/input/input9
[ 1103.598456][T16201] udevd[16201]: setting owner of /dev/input/js0 to uid=0, gid=104 failed: No such file or directory
[ 1103.781036][ T4788] bond2 (unregistering): Released all slaves
[ 1104.186571][T17054] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3162'.
[ 1104.664390][ T4283] Bluetooth: hci5: command 0x040f tx timeout
[ 1104.721113][T17066] device syzkaller0 entered promiscuous mode
[ 1104.818239][ T4788] device hsr_slave_0 left promiscuous mode
[ 1104.844261][ T4788] device hsr_slave_1 left promiscuous mode
[ 1104.914655][ T4788] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1104.941005][ T4788] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1105.006574][ T4788] device bridge_slave_1 left promiscuous mode
[ 1105.044316][ T4788] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1105.171671][ T4788] device bridge_slave_0 left promiscuous mode
[ 1105.191966][ T4788] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1105.302917][T17082] netlink: 'syz.3.3164': attribute type 1 has an invalid length.
[ 1105.311622][T17082] netlink: 'syz.3.3164': attribute type 2 has an invalid length.
[ 1105.958593][ T4788] bond6 (unregistering): Released all slaves
[ 1106.264583][ T4788] bond5 (unregistering): Released all slaves
[ 1106.537804][ T4268] usb 2-1: USB disconnect, device number 25
[ 1106.616305][ T4788] bond4 (unregistering): Released all slaves
[ 1106.743170][ T4283] Bluetooth: hci5: command 0x0419 tx timeout
[ 1106.888318][ T4788] bond3 (unregistering): Released all slaves
[ 1107.025910][ T4268] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[ 1107.141597][ T4788] bond1 (unregistering): Released all slaves
[ 1107.222752][ T4268] usb 2-1: Using ep0 maxpacket: 32
[ 1107.239380][ T4268] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1107.269034][ T4268] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1107.292132][ T4268] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1107.300798][ T4268] usb 2-1: Product: syz
[ 1107.305566][ T4268] usb 2-1: Manufacturer: syz
[ 1107.310502][ T4268] usb 2-1: SerialNumber: syz
[ 1107.328426][ T4268] usb 2-1: config 0 descriptor??
[ 1107.334426][T17089] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1108.255629][ T4788] team0 (unregistering): Port device team_slave_1 removed
[ 1108.331822][ T4788] team0 (unregistering): Port device team_slave_0 removed
[ 1108.410202][ T4788] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1108.489656][ T4788] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1108.992573][ T4788] bond0 (unregistering): Released all slaves
[ 1109.161533][T17082] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3164'.
[ 1109.214282][T17097] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3167'.
[ 1109.460212][T16979] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1109.547590][T16979] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1109.632691][T16979] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1109.715392][T16979] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1109.795422][   T26] kauditd_printk_skb: 24 callbacks suppressed
[ 1109.795436][   T26] audit: type=1326 audit(1773183134.045:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1109.824109][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1109.920564][   T26] audit: type=1326 audit(1773183134.085:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1109.942936][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1110.148071][   T26] audit: type=1326 audit(1773183134.085:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1110.227896][T16979] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1110.263299][   T26] audit: type=1326 audit(1773183134.085:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1110.319351][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1110.334634][T15940] usb 2-1: USB disconnect, device number 26
[ 1110.368212][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1110.391282][   T26] audit: type=1326 audit(1773183134.085:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1110.440795][T16979] 8021q: adding VLAN 0 to HW filter on device team0
[ 1110.568436][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1110.615635][   T26] audit: type=1326 audit(1773183134.095:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1110.646922][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1110.691464][ T4379] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1110.698640][ T4379] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1110.760717][   T26] audit: type=1326 audit(1773183134.095:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1110.819168][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1110.871523][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1110.923902][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1110.939219][   T26] audit: type=1326 audit(1773183134.095:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1110.994217][ T4379] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1111.001399][ T4379] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1111.071406][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1111.079890][   T26] audit: type=1326 audit(1773183134.095:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1111.154398][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1111.168284][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1111.181592][   T26] audit: type=1326 audit(1773183134.095:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17103 comm="syz.2.3170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19d959c799 code=0x7ffc0000
[ 1111.278781][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1111.335443][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1111.399961][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1111.489288][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1111.604737][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1111.664551][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1111.752384][T16979] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1111.789026][T16979] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1111.826343][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1111.839715][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1112.750159][T17154] device syzkaller0 entered promiscuous mode
[ 1112.778642][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1112.806457][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1112.946049][T16979] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1113.944976][T17169] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1114.389460][T17171] 9pnet_virtio: no channels available for device syz
[ 1115.490308][   T26] kauditd_printk_skb: 14 callbacks suppressed
[ 1115.490470][   T26] audit: type=1326 audit(1773183139.738:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1115.621670][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.628002][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1115.776944][T17180] loop6: detected capacity change from 0 to 7
[ 1115.788459][   T26] audit: type=1326 audit(1773183139.738:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1115.852473][T16201] Dev loop6: unable to read RDB block 7
[ 1115.858165][T16201]  loop6: AHDI p2 p3
[ 1115.868578][T16201] loop6: partition table partially beyond EOD, truncated
[ 1115.886575][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1116.000892][T17180] Dev loop6: unable to read RDB block 7
[ 1116.051713][T17180]  loop6: AHDI p2 p3
[ 1116.055936][   T26] audit: type=1326 audit(1773183139.888:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1116.247694][   T26] audit: type=1326 audit(1773183139.888:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1116.298356][T17180] loop6: partition table partially beyond EOD, truncated
[ 1116.391804][T17180] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1116.442132][ T4872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1116.470683][   T26] audit: type=1326 audit(1773183139.888:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1116.504576][ T4872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1116.548877][   T26] audit: type=1326 audit(1773183139.898:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1116.571221][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1116.618252][ T4872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1116.664922][ T4872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1116.678890][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1116.727767][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1116.810812][ T4872] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1116.824218][T17201] netlink: 14 bytes leftover after parsing attributes in process `syz.3.3182'.
[ 1116.840808][   T26] audit: type=1326 audit(1773183139.898:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1116.863912][ T4872] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1116.880951][T16979] device veth0_vlan entered promiscuous mode
[ 1116.941773][T16979] device veth1_vlan entered promiscuous mode
[ 1116.958733][   T26] audit: type=1326 audit(1773183139.898:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1117.074748][T10120] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1117.084638][T10120] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1117.094247][   T26] audit: type=1326 audit(1773183139.898:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1117.121525][T10120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1117.131487][T10120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1117.144857][T16979] device veth0_macvtap entered promiscuous mode
[ 1117.162416][   T26] audit: type=1326 audit(1773183139.898:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17172 comm="syz.0.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1117.191681][T16979] device veth1_macvtap entered promiscuous mode
[ 1117.251536][T16979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1117.302668][T16979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1117.378604][T16979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1117.437866][T16979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1117.518258][T16979] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1117.536573][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1117.565041][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1117.631572][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1117.697589][ T4281] Bluetooth: hci4: command 0x0406 tx timeout
[ 1117.744200][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1117.797934][T16979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1117.849772][T16979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1117.907407][T16979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1117.947407][T16979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1118.013702][T16979] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1118.056316][T10120] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1118.074636][T10120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1118.125705][T16979] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1118.155744][T16979] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1118.197423][T16979] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1118.246064][T16979] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1118.436817][T15840] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1118.458041][T15840] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1118.480502][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1118.525459][ T4381] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1118.560371][ T4381] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1118.575154][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1118.884546][T17234] device syzkaller0 entered promiscuous mode
[ 1119.686941][T15496] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[ 1119.927645][T15496] usb 3-1: Using ep0 maxpacket: 16
[ 1119.970526][T15496] usb 3-1: New USB device found, idVendor=0644, idProduct=8021, bcdDevice=38.b7
[ 1119.993642][T15496] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1120.014163][T15496] usb 3-1: Product: syz
[ 1120.024426][T15496] usb 3-1: Manufacturer: syz
[ 1120.032479][T15496] usb 3-1: SerialNumber: syz
[ 1120.054829][T15496] usb 3-1: config 0 descriptor??
[ 1120.080515][T15496] hub 3-1:0.0: bad descriptor, ignoring hub
[ 1120.105116][T15496] hub: probe of 3-1:0.0 failed with error -5
[ 1121.558359][T17271] netlink: 14 bytes leftover after parsing attributes in process `syz.0.3194'.
[ 1122.328295][ T4268] usb 3-1: USB disconnect, device number 31
[ 1123.551903][T17304] netlink: 'syz.4.3205': attribute type 1 has an invalid length.
[ 1123.751213][T17308] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1124.116510][T15829] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[ 1124.304226][T15829] usb 5-1: Using ep0 maxpacket: 32
[ 1124.310975][T15829] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1124.355994][T15829] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1124.420328][T15829] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1124.551989][T15829] usb 5-1: Product: syz
[ 1124.577356][T15829] usb 5-1: Manufacturer: syz
[ 1124.600379][T15829] usb 5-1: SerialNumber: syz
[ 1124.666801][T17322] netlink: 'syz.1.3209': attribute type 1 has an invalid length.
[ 1124.677730][T17322] netlink: 'syz.1.3209': attribute type 2 has an invalid length.
[ 1124.691405][T17322] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3209'.
[ 1124.744938][T15829] usb 5-1: config 0 descriptor??
[ 1124.812797][T17310] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1126.408884][T17338] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1126.904343][T15829] usb 5-1: USB disconnect, device number 24
[ 1126.968238][T17341] vivid-002: =================  START STATUS  =================
[ 1126.994170][T17341] vivid-002: Radio HW Seek Mode: Bounded
[ 1127.003147][T17341] vivid-002: Radio Programmable HW Seek: false
[ 1127.017290][T17341] vivid-002: RDS Rx I/O Mode: Block I/O
[ 1127.024831][T17341] vivid-002: Generate RBDS Instead of RDS: false
[ 1127.039177][T17341] vivid-002: RDS Reception: true
[ 1127.045310][T17341] vivid-002: RDS Program Type: 0 inactive
[ 1127.052637][T17341] vivid-002: RDS PS Name:  inactive
[ 1127.065742][T17341] vivid-002: RDS Radio Text:  inactive
[ 1127.076033][T17341] vivid-002: RDS Traffic Announcement: false inactive
[ 1127.091535][T17341] vivid-002: RDS Traffic Program: false inactive
[ 1127.112127][T17341] vivid-002: RDS Music: false inactive
[ 1127.119838][T17341] vivid-002: ==================  END STATUS  ==================
[ 1128.946435][T17363] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3220'.
[ 1132.291135][T17397] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1132.611017][T17406] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3232'.
[ 1132.775296][T17406] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1132.814033][T17406] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1132.891391][T17406] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1132.939213][T17406] 8021q: adding VLAN 0 to HW filter on device team0
[ 1132.956072][T17406] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1132.984798][T15840] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1133.268747][T17406] syz.3.3232 (17406) used greatest stack depth: 20144 bytes left
[ 1133.963179][T17423] ipt_ECN: cannot use operation on non-tcp rule
[ 1134.579139][T15829] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[ 1134.789051][T15829] usb 4-1: Using ep0 maxpacket: 16
[ 1135.570535][T15829] usb 4-1: New USB device found, idVendor=0644, idProduct=8021, bcdDevice=38.b7
[ 1135.632476][T15829] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1135.715574][T15829] usb 4-1: Product: syz
[ 1135.789982][T15829] usb 4-1: Manufacturer: syz
[ 1135.794808][T15829] usb 4-1: SerialNumber: syz
[ 1135.880784][T15829] usb 4-1: config 0 descriptor??
[ 1135.948028][T15829] hub 4-1:0.0: bad descriptor, ignoring hub
[ 1135.967066][T15829] hub: probe of 4-1:0.0 failed with error -5
[ 1137.236279][T17462] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1137.441975][T13774] usb 4-1: USB disconnect, device number 20
[ 1139.096794][ T4268] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1139.288280][ T4268] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1139.335219][ T4268] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1139.377233][ T4268] usb 4-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[ 1139.404262][ T4268] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1139.436368][ T4268] usb 4-1: config 0 descriptor??
[ 1139.873940][ T4268] logitech-djreceiver 0003:046D:C71F.0005: unknown main item tag 0x7
[ 1139.898584][ T4268] logitech-djreceiver 0003:046D:C71F.0005: hidraw0: USB HID v0.00 Device [HID 046d:c71f] on usb-dummy_hcd.3-1/input0
[ 1140.087003][T15826] usb 4-1: USB disconnect, device number 21
[ 1140.303761][T17496] fido_id[17496]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[ 1141.285923][T15829] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[ 1141.475809][T15829] usb 4-1: Using ep0 maxpacket: 16
[ 1141.507966][T15829] usb 4-1: New USB device found, idVendor=0644, idProduct=8021, bcdDevice=38.b7
[ 1141.683157][T15829] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1141.713922][T15829] usb 4-1: Product: syz
[ 1141.751186][T15829] usb 4-1: Manufacturer: syz
[ 1141.809745][T17520] netlink: 'syz.1.3266': attribute type 1 has an invalid length.
[ 1141.817910][T15829] usb 4-1: SerialNumber: syz
[ 1141.852417][T17520] netlink: 'syz.1.3266': attribute type 2 has an invalid length.
[ 1141.876690][T17520] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3266'.
[ 1141.907000][T15829] usb 4-1: config 0 descriptor??
[ 1141.984472][T15829] hub 4-1:0.0: bad descriptor, ignoring hub
[ 1142.002174][T15829] hub: probe of 4-1:0.0 failed with error -5
[ 1142.062059][T17520] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1142.086215][T17520] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1142.096707][T17520] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1142.109782][T17520] 8021q: adding VLAN 0 to HW filter on device team0
[ 1142.150027][T17520] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1142.205600][T17523] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1143.119821][T17531] device wlan0 entered promiscuous mode
[ 1143.227526][T17531] batman_adv: batadv0: Adding interface: macsec1
[ 1143.234302][T17531] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1143.265127][T17531] batman_adv: batadv0: Interface activated: macsec1
[ 1143.274944][ T4281] Bluetooth: hci0: command 0x0406 tx timeout
[ 1143.563921][T17538] device syzkaller0 entered promiscuous mode
[ 1143.847224][T15940] usb 4-1: USB disconnect, device number 22
[ 1144.480621][T17546] ipt_ECN: cannot use operation on non-tcp rule
[ 1146.101247][T17566] device syzkaller0 entered promiscuous mode
[ 1146.390058][T17572] vivid-000: =================  START STATUS  =================
[ 1146.434739][T17572] vivid-000: Radio HW Seek Mode: Bounded
[ 1146.441979][T17572] vivid-000: Radio Programmable HW Seek: false
[ 1146.448745][T17572] vivid-000: RDS Rx I/O Mode: Block I/O
[ 1146.465431][T17572] vivid-000: Generate RBDS Instead of RDS: false
[ 1146.471911][T17572] vivid-000: RDS Reception: true
[ 1146.500729][T17572] vivid-000: RDS Program Type: 0 inactive
[ 1146.513144][T17572] vivid-000: RDS PS Name:  inactive
[ 1146.538969][T17572] vivid-000: RDS Radio Text:  inactive
[ 1146.567261][T17572] vivid-000: RDS Traffic Announcement: false inactive
[ 1146.588145][T17572] vivid-000: RDS Traffic Program: false inactive
[ 1146.596062][T17572] vivid-000: RDS Music: false inactive
[ 1146.608534][T17572] vivid-000: ==================  END STATUS  ==================
[ 1147.099735][T17587] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1147.330778][T17594] ipt_ECN: cannot use operation on non-tcp rule
[ 1149.544174][T17607] device syzkaller0 entered promiscuous mode
[ 1149.690417][T17609] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1150.111356][ T4268] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1150.361195][ T4268] usb 2-1: Using ep0 maxpacket: 32
[ 1150.368089][ T4268] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1151.613590][ T4268] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1152.518577][ T4268] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1152.596774][ T4268] usb 2-1: Product: syz
[ 1152.609122][ T4268] usb 2-1: Manufacturer: syz
[ 1152.637116][ T4268] usb 2-1: SerialNumber: syz
[ 1152.687968][ T4268] usb 2-1: config 0 descriptor??
[ 1152.706754][T17611] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1152.828357][ T4268] usb 2-1: USB disconnect, device number 27
[ 1153.178965][T17632] netlink: 'syz.4.3302': attribute type 1 has an invalid length.
[ 1153.220502][T17632] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1153.733853][T17641] device syzkaller0 entered promiscuous mode
[ 1153.958259][T17652] netlink: 'syz.2.3307': attribute type 13 has an invalid length.
[ 1153.992038][T17652] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1154.045493][T17652] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1154.106469][T17652] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1154.146821][T17653] fuse: Bad value for 'fd'
[ 1154.224333][T17660] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3310'.
[ 1154.509128][T15829] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[ 1154.709271][T15829] usb 4-1: Using ep0 maxpacket: 32
[ 1154.721628][T15829] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1154.833916][T15829] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1154.903576][T15829] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1154.956741][T15829] usb 4-1: Product: syz
[ 1154.972459][T15829] usb 4-1: Manufacturer: syz
[ 1154.991997][T15829] usb 4-1: SerialNumber: syz
[ 1155.018116][T15829] usb 4-1: config 0 descriptor??
[ 1155.035754][T17659] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1155.057258][T17671] netlink: 'syz.2.3315': attribute type 1 has an invalid length.
[ 1155.071442][   T26] kauditd_printk_skb: 47 callbacks suppressed
[ 1155.071453][   T26] audit: type=1326 audit(1773183179.338:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.161604][T17671] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1155.173025][   T26] audit: type=1326 audit(1773183179.378:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.198415][T17675] loop6: detected capacity change from 0 to 7
[ 1155.210594][T16201] Dev loop6: unable to read RDB block 7
[ 1155.217226][T16201]  loop6: AHDI p2 p3
[ 1155.233538][T16201] loop6: partition table partially beyond EOD, truncated
[ 1155.277617][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1155.323508][T17675] Dev loop6: unable to read RDB block 7
[ 1155.331272][T17675]  loop6: AHDI p2 p3
[ 1155.337717][T17675] loop6: partition table partially beyond EOD, truncated
[ 1155.368476][T17675] loop6: p2 size 157513074 extends beyond EOD, 
[ 1155.371077][   T26] audit: type=1326 audit(1773183179.378:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.403547][T17675] truncated
[ 1155.408203][   T26] audit: type=1326 audit(1773183179.378:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.436993][   T26] audit: type=1326 audit(1773183179.378:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.536304][   T26] audit: type=1326 audit(1773183179.378:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.636236][   T26] audit: type=1326 audit(1773183179.378:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.770705][   T26] audit: type=1326 audit(1773183179.388:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.913963][   T26] audit: type=1326 audit(1773183179.388:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1155.914102][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1156.073506][   T26] audit: type=1326 audit(1773183179.388:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17668 comm="syz.0.3314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1156.442938][T17682] tipc: Failed to remove unknown binding: 66,1,1/0:2624985214/2624985216
[ 1156.887595][T17687] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1157.207353][T13774] usb 4-1: USB disconnect, device number 23
[ 1157.696776][T17695] netlink: 'syz.1.3320': attribute type 1 has an invalid length.
[ 1158.073350][T17697] device syzkaller0 entered promiscuous mode
[ 1158.138319][T17699] ipt_ECN: cannot use operation on non-tcp rule
[ 1158.928991][T17708] fuse: Bad value for 'fd'
[ 1159.898650][T17720] netlink: 'syz.0.3326': attribute type 1 has an invalid length.
[ 1159.945231][T17720] netlink: 'syz.0.3326': attribute type 2 has an invalid length.
[ 1160.124180][T17720] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3326'.
[ 1160.715179][T17720] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1160.722730][T17720] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1160.849806][T17730] loop2: detected capacity change from 0 to 7
[ 1160.917273][T16201] Dev loop2: unable to read RDB block 7
[ 1160.923792][T16201]  loop2: AHDI p1 p2 p3
[ 1160.942698][T16201] loop2: partition table partially beyond EOD, truncated
[ 1160.989603][T16201] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1161.043773][T16201] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1161.085894][T15826] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 1161.109528][T17730] Dev loop2: unable to read RDB block 7
[ 1161.125480][T17730]  loop2: AHDI p1 p2 p3
[ 1161.147245][T17730] loop2: partition table partially beyond EOD, truncated
[ 1161.175822][T17730] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1161.183424][T17730] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1161.282712][T17739] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3332'.
[ 1161.285911][T15826] usb 3-1: Using ep0 maxpacket: 32
[ 1161.312368][T15826] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1161.367236][T15826] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1161.399323][T15826] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1161.429926][T15826] usb 3-1: Product: syz
[ 1161.441876][T15826] usb 3-1: Manufacturer: syz
[ 1161.462490][T15826] usb 3-1: SerialNumber: syz
[ 1161.493122][T15826] usb 3-1: config 0 descriptor??
[ 1161.509578][T17731] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1161.562774][ T3637] Dev loop2: unable to read RDB block 7
[ 1161.578953][ T3637]  loop2: AHDI p1 p2 p3
[ 1161.600493][ T3637] loop2: partition table partially beyond EOD, truncated
[ 1161.635735][ T3637] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1161.670882][ T3637] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1162.113941][T17720] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1162.349125][T17720] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1162.373358][T17746] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1162.595101][T15940] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[ 1162.795112][T15940] usb 5-1: Using ep0 maxpacket: 16
[ 1162.804222][T15940] usb 5-1: config 0 has no interfaces?
[ 1162.822521][T15940] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1162.833164][T15940] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1162.844649][T15940] usb 5-1: Product: syz
[ 1162.849224][T15940] usb 5-1: Manufacturer: syz
[ 1162.854004][T15940] usb 5-1: SerialNumber: syz
[ 1162.869728][T15940] usb 5-1: config 0 descriptor??
[ 1162.982182][T17720] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1162.991978][T17720] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1163.002664][T17720] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1163.012827][T17720] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1163.131351][T15496] usb 5-1: USB disconnect, device number 25
[ 1163.319066][T15745] usb 3-1: USB disconnect, device number 32
[ 1165.872831][T17761] netlink: 'syz.4.3337': attribute type 1 has an invalid length.
[ 1166.011933][T17766] netlink: 'syz.2.3340': attribute type 13 has an invalid length.
[ 1166.116990][T17766] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1166.170220][T17766] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1166.178938][T17766] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1166.256366][ T4381] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1166.281890][ T4381] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1166.318874][ T4336] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1167.178104][T17783] netlink: 'syz.2.3344': attribute type 1 has an invalid length.
[ 1167.187414][T17783] netlink: 'syz.2.3344': attribute type 2 has an invalid length.
[ 1167.206348][T17783] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3344'.
[ 1168.008293][T17783] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1168.015868][T17783] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1168.657682][T17793] fuse: Bad value for 'fd'
[ 1168.862048][ T4281] Bluetooth: hci1: command 0x0406 tx timeout
[ 1169.173755][T17796] IPVS: lblc: FWM 3 0x00000003 - no destination available
[ 1169.235423][T17783] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1169.357517][T17783] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1169.649122][T17809] netlink: 'syz.1.3349': attribute type 1 has an invalid length.
[ 1169.685059][T17809] netlink: 'syz.1.3349': attribute type 2 has an invalid length.
[ 1170.279740][T17783] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1170.296593][T17783] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1170.323504][T17783] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1170.347029][T17783] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1170.568633][T17809] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3349'.
[ 1171.699738][T17828] loop2: detected capacity change from 0 to 7
[ 1171.747444][T17828] Dev loop2: unable to read RDB block 7
[ 1171.757352][T17828]  loop2: AHDI p2 p3
[ 1171.763241][T17828] loop2: partition table partially beyond EOD, truncated
[ 1171.803499][T17828] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1172.112936][ T3637] Dev loop2: unable to read RDB block 7
[ 1172.118516][ T3637]  loop2: AHDI p2 p3
[ 1172.214252][ T3637] loop2: partition table partially beyond EOD, truncated
[ 1172.230270][ T3637] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1173.764589][T17856] fuse: Bad value for 'fd'
[ 1174.943769][T17872] netlink: 'syz.2.3364': attribute type 1 has an invalid length.
[ 1174.964482][T17872] netlink: 'syz.2.3364': attribute type 2 has an invalid length.
[ 1175.097783][T17872] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3364'.
[ 1175.400541][T17882] netlink: 'syz.3.3367': attribute type 1 has an invalid length.
[ 1175.415924][T17882] netlink: 'syz.3.3367': attribute type 2 has an invalid length.
[ 1175.434287][T17882] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3367'.
[ 1175.618568][T15745] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[ 1175.808545][T15745] usb 5-1: Using ep0 maxpacket: 32
[ 1175.815799][T15745] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1175.853695][T15745] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1175.885493][T15745] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1175.908784][T15745] usb 5-1: Product: syz
[ 1175.913217][T15745] usb 5-1: Manufacturer: syz
[ 1175.960723][T15745] usb 5-1: SerialNumber: syz
[ 1175.995627][T15745] usb 5-1: config 0 descriptor??
[ 1176.009980][T17881] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1176.272438][T15826] usb 5-1: USB disconnect, device number 26
[ 1177.020577][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.026939][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.073093][   T26] kauditd_printk_skb: 28 callbacks suppressed
[ 1177.073108][   T26] audit: type=1326 audit(1773183201.349:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1177.136783][T17894] loop6: detected capacity change from 0 to 7
[ 1177.171307][T16201] Dev loop6: unable to read RDB block 7
[ 1177.178166][T16201]  loop6: AHDI p2 p3
[ 1177.196662][T16201] loop6: partition table partially beyond EOD, truncated
[ 1177.236741][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1177.257952][   T26] audit: type=1326 audit(1773183201.349:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1177.311598][T17894] Dev loop6: unable to read RDB block 7
[ 1177.320450][T17894]  loop6: AHDI p2 p3
[ 1177.328259][T17894] loop6: partition table partially beyond EOD, truncated
[ 1177.359207][T17894] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1177.402989][T17899] fuse: Bad value for 'fd'
[ 1177.406406][   T26] audit: type=1326 audit(1773183201.389:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1177.581778][   T26] audit: type=1326 audit(1773183201.389:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1177.696928][   T26] audit: type=1326 audit(1773183201.389:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1177.840440][   T26] audit: type=1326 audit(1773183201.389:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1177.966516][   T26] audit: type=1326 audit(1773183201.389:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1178.124583][   T26] audit: type=1326 audit(1773183201.389:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1178.196863][   T26] audit: type=1326 audit(1773183201.389:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1178.266889][   T26] audit: type=1326 audit(1773183201.389:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17891 comm="syz.1.3371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1178.793788][T17921] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3377'.
[ 1179.229356][T16471] usb 3-1: new full-speed USB device number 33 using dummy_hcd
[ 1179.386807][T16471] usb 3-1: device descriptor read/64, error -71
[ 1179.666719][T16471] usb 3-1: new full-speed USB device number 34 using dummy_hcd
[ 1179.976505][T16471] usb 3-1: device descriptor read/64, error -71
[ 1180.096449][T16471] usb usb3-port1: attempt power cycle
[ 1180.217380][T17944] netlink: 'syz.4.3386': attribute type 1 has an invalid length.
[ 1180.331697][T17944] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1180.506219][T16471] usb 3-1: new full-speed USB device number 35 using dummy_hcd
[ 1180.590273][T16471] usb 3-1: device descriptor read/8, error -71
[ 1180.905934][T16471] usb 3-1: new full-speed USB device number 36 using dummy_hcd
[ 1180.967606][T16471] usb 3-1: device descriptor read/8, error -71
[ 1181.085939][T16471] usb usb3-port1: unable to enumerate USB device
[ 1181.544449][T17961] ipt_ECN: cannot use operation on non-tcp rule
[ 1183.081892][T17972] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3395'.
[ 1183.391937][T17972] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1183.402118][T17972] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1183.412545][T17972] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1183.475914][T17972] 8021q: adding VLAN 0 to HW filter on device team0
[ 1183.526495][T17972] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1183.584359][T17979] netlink: 'syz.4.3396': attribute type 13 has an invalid length.
[ 1184.237267][T17979] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1184.383029][T17979] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1184.484407][T17979] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1185.547556][T18011] netlink: 'syz.3.3405': attribute type 2 has an invalid length.
[ 1187.807523][   T26] kauditd_printk_skb: 30 callbacks suppressed
[ 1187.807539][   T26] audit: type=1326 audit(1773183212.094:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1187.847742][T18040] loop6: detected capacity change from 0 to 7
[ 1187.863461][T16201] Dev loop6: unable to read RDB block 7
[ 1187.879398][T16201]  loop6: AHDI p2 p3
[ 1187.897671][T16201] loop6: partition table partially beyond EOD, truncated
[ 1187.919417][   T26] audit: type=1326 audit(1773183212.124:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1187.949708][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1187.978813][T18040] Dev loop6: unable to read RDB block 7
[ 1187.984728][T18040]  loop6: AHDI p2 p3
[ 1187.994603][T18040] loop6: partition table partially beyond EOD, truncated
[ 1187.997716][   T26] audit: type=1326 audit(1773183212.124:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1188.028617][T18040] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1188.040251][   T26] audit: type=1326 audit(1773183212.124:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1188.164905][   T26] audit: type=1326 audit(1773183212.124:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1188.223831][   T26] audit: type=1326 audit(1773183212.124:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1188.262632][   T26] audit: type=1326 audit(1773183212.124:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1188.368074][   T26] audit: type=1326 audit(1773183212.124:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1188.394105][   T26] audit: type=1326 audit(1773183212.124:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1188.424616][   T26] audit: type=1326 audit(1773183212.124:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18034 comm="syz.3.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1188.632111][T13774] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[ 1189.331719][ T4283] Bluetooth: hci2: command 0x0406 tx timeout
[ 1189.666189][T13774] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1189.692195][T13774] usb 5-1: config 0 interface 0 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1189.777447][T13774] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1189.855287][T13774] usb 5-1: New USB device found, idVendor=0463, idProduct=1215, bcdDevice= 0.00
[ 1189.932576][T13774] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1189.959355][T13774] usb 5-1: config 0 descriptor??
[ 1189.993244][T13774] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[ 1190.032812][T18065] tipc: Failed to remove unknown binding: 66,1,1/0:1555160162/1555160164
[ 1190.341285][T18068] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3424'.
[ 1191.226753][T18080] netlink: 'syz.1.3426': attribute type 1 has an invalid length.
[ 1191.236652][T18080] netlink: 'syz.1.3426': attribute type 2 has an invalid length.
[ 1191.795878][T18090] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1191.931233][T13774] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[ 1192.141242][T13774] usb 4-1: Using ep0 maxpacket: 16
[ 1192.214276][T13774] usb 4-1: New USB device found, idVendor=0644, idProduct=8021, bcdDevice=38.b7
[ 1192.233168][T13774] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1192.263284][T13774] usb 4-1: Product: syz
[ 1192.275070][T13774] usb 4-1: Manufacturer: syz
[ 1192.287300][T13774] usb 4-1: SerialNumber: syz
[ 1192.311849][T13774] usb 4-1: config 0 descriptor??
[ 1192.338584][T13774] hub 4-1:0.0: bad descriptor, ignoring hub
[ 1192.363064][T13774] hub: probe of 4-1:0.0 failed with error -5
[ 1192.504400][T13774] usb 5-1: USB disconnect, device number 27
[ 1192.878524][T18100] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3432'.
[ 1193.509622][T15829] usb 5-1: new full-speed USB device number 28 using dummy_hcd
[ 1193.532530][T18110] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3434'.
[ 1193.618060][T18110] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1193.627825][T18110] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1193.679580][T15829] usb 5-1: device descriptor read/64, error -71
[ 1193.969464][T15829] usb 5-1: new full-speed USB device number 29 using dummy_hcd
[ 1194.269499][T15829] usb 5-1: device descriptor read/64, error -71
[ 1194.289521][T13774] usb 4-1: USB disconnect, device number 24
[ 1194.389771][T15829] usb usb5-port1: attempt power cycle
[ 1194.799260][T15829] usb 5-1: new full-speed USB device number 30 using dummy_hcd
[ 1194.843999][T15829] usb 5-1: device descriptor read/8, error -71
[ 1195.113406][T18119] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1195.128910][T15829] usb 5-1: new full-speed USB device number 31 using dummy_hcd
[ 1195.199415][T15829] usb 5-1: device descriptor read/8, error -71
[ 1195.368868][T15829] usb usb5-port1: unable to enumerate USB device
[ 1195.430759][T18125] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3438'.
[ 1197.352831][T18150] netlink: 'syz.2.3443': attribute type 1 has an invalid length.
[ 1197.369994][T18150] netlink: 'syz.2.3443': attribute type 2 has an invalid length.
[ 1197.589976][T18150] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3443'.
[ 1198.017399][T18150] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1198.070999][T18150] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1198.106369][T18150] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1198.121256][T18150] 8021q: adding VLAN 0 to HW filter on device team0
[ 1198.188761][T18150] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1199.991644][T18180] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1200.732381][T18198] netlink: 'syz.0.3456': attribute type 1 has an invalid length.
[ 1200.740903][T18198] netlink: 'syz.0.3456': attribute type 2 has an invalid length.
[ 1200.753721][T18197] tipc: Failed to remove unknown binding: 66,1,1/0:1995986748/1995986750
[ 1201.463632][T18215] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3461'.
[ 1201.795571][T15829] usb 2-1: new full-speed USB device number 28 using dummy_hcd
[ 1201.965438][T15829] usb 2-1: device descriptor read/64, error -71
[ 1202.245262][T15829] usb 2-1: new full-speed USB device number 29 using dummy_hcd
[ 1202.415253][T15829] usb 2-1: device descriptor read/64, error -71
[ 1202.539197][T15829] usb usb2-port1: attempt power cycle
[ 1202.686426][   T26] kauditd_printk_skb: 37 callbacks suppressed
[ 1202.686441][   T26] audit: type=1326 audit(1773183226.982:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18219 comm="syz.4.3463" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x0
[ 1202.826737][T18230] device syzkaller1 entered promiscuous mode
[ 1202.954929][T15829] usb 2-1: new full-speed USB device number 30 using dummy_hcd
[ 1202.998136][T18232] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3464'.
[ 1203.016298][T15829] usb 2-1: device descriptor read/8, error -71
[ 1203.294785][T15829] usb 2-1: new full-speed USB device number 31 using dummy_hcd
[ 1203.355629][T15829] usb 2-1: device descriptor read/8, error -71
[ 1203.535994][T15829] usb usb2-port1: unable to enumerate USB device
[ 1204.565198][T18253] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1204.797096][T18261] netlink: 'syz.4.3473': attribute type 2 has an invalid length.
[ 1205.437376][T18267] device syzkaller0 entered promiscuous mode
[ 1206.138515][T18275] device syzkaller1 entered promiscuous mode
[ 1206.202357][T18276] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1206.218858][T18276] random: crng reseeded on system resumption
[ 1207.171610][T18290] netlink: 'syz.4.3479': attribute type 1 has an invalid length.
[ 1207.192209][T18290] netlink: 'syz.4.3479': attribute type 2 has an invalid length.
[ 1207.230515][T18290] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3479'.
[ 1208.108898][   T26] audit: type=1326 audit(1773183232.405:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1208.149552][T18290] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1208.157131][T18290] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1208.170887][   T26] audit: type=1326 audit(1773183232.425:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1208.201886][T18300] loop6: detected capacity change from 0 to 7
[ 1208.245907][T16201] Dev loop6: unable to read RDB block 7
[ 1208.251516][T16201]  loop6: AHDI p2 p3
[ 1208.263925][   T26] audit: type=1326 audit(1773183232.435:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1208.327529][T16201] loop6: partition table partially beyond EOD, truncated
[ 1208.361272][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1208.384968][T18300] Dev loop6: unable to read RDB block 7
[ 1208.392642][T18300]  loop6: AHDI p2 p3
[ 1208.396633][T18300] loop6: partition table partially beyond EOD, truncated
[ 1208.415155][   T26] audit: type=1326 audit(1773183232.435:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1208.450789][T18300] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1208.511620][   T26] audit: type=1326 audit(1773183232.435:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1208.640477][   T26] audit: type=1326 audit(1773183232.435:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1208.698338][T18302] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1208.798321][   T26] audit: type=1326 audit(1773183232.435:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1208.876458][   T26] audit: type=1326 audit(1773183232.435:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1208.970341][   T26] audit: type=1326 audit(1773183232.435:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1209.048519][   T26] audit: type=1326 audit(1773183232.435:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18296 comm="syz.3.3482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x7ffc0000
[ 1209.202935][T18290] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1209.254255][T18290] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1209.614930][T18290] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1209.626258][T18290] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1209.637665][T18290] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1209.653398][T18290] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1209.785351][T18290] batman_adv: batadv0: Interface deactivated: macsec1
[ 1210.025136][T18315] device syzkaller0 entered promiscuous mode
[ 1210.098094][T18319] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3485'.
[ 1210.128439][T18318] device syzkaller0 entered promiscuous mode
[ 1210.401223][T15940] usb 3-1: new full-speed USB device number 37 using dummy_hcd
[ 1210.561260][T15940] usb 3-1: device descriptor read/64, error -71
[ 1210.832046][T15940] usb 3-1: new full-speed USB device number 38 using dummy_hcd
[ 1210.990923][T15940] usb 3-1: device descriptor read/64, error -71
[ 1211.164068][T15940] usb usb3-port1: attempt power cycle
[ 1211.347636][T18336] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3491'.
[ 1211.580579][T15940] usb 3-1: new full-speed USB device number 39 using dummy_hcd
[ 1211.615974][T18336] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1211.634871][T15940] usb 3-1: device descriptor read/8, error -71
[ 1211.644692][T18336] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1211.667407][T18336] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1211.705024][T18336] 8021q: adding VLAN 0 to HW filter on device team0
[ 1211.874586][T18336] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1211.990380][T15940] usb 3-1: new full-speed USB device number 40 using dummy_hcd
[ 1212.095251][T15940] usb 3-1: device descriptor read/8, error -71
[ 1212.199964][T18344] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3495'.
[ 1212.270332][T15940] usb usb3-port1: unable to enumerate USB device
[ 1213.101667][T18355] loop6: detected capacity change from 0 to 7
[ 1213.126477][T16201] Dev loop6: unable to read RDB block 7
[ 1213.140696][T16201]  loop6: AHDI p2 p3
[ 1213.160899][T16201] loop6: partition table partially beyond EOD, truncated
[ 1213.237147][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1213.270194][T18355] Dev loop6: unable to read RDB block 7
[ 1213.279837][T18355]  loop6: AHDI p2 p3
[ 1213.283773][T18355] loop6: partition table partially beyond EOD, truncated
[ 1213.321609][T18355] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1213.386209][   T26] kauditd_printk_skb: 77 callbacks suppressed
[ 1213.386223][   T26] audit: type=1326 audit(1773183237.687:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18353 comm="syz.0.3497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1213.503229][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1213.639536][   T26] audit: type=1326 audit(1773183237.687:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18353 comm="syz.0.3497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x7ffc0000
[ 1213.787197][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1213.990879][T18364] netlink: 'syz.3.3498': attribute type 1 has an invalid length.
[ 1213.998831][T18364] netlink: 'syz.3.3498': attribute type 2 has an invalid length.
[ 1214.227365][T18364] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3498'.
[ 1215.098906][T15829] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[ 1215.371795][T15829] usb 2-1: Using ep0 maxpacket: 16
[ 1215.431560][T15829] usb 2-1: New USB device found, idVendor=0644, idProduct=8021, bcdDevice=38.b7
[ 1215.465695][T15829] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1215.532860][T18387] netlink: 'syz.0.3504': attribute type 1 has an invalid length.
[ 1215.564606][T18387] netlink: 'syz.0.3504': attribute type 2 has an invalid length.
[ 1215.576699][T15829] usb 2-1: Product: syz
[ 1215.591659][T15829] usb 2-1: Manufacturer: syz
[ 1215.606293][T15829] usb 2-1: SerialNumber: syz
[ 1215.659399][T15829] usb 2-1: config 0 descriptor??
[ 1215.675808][T18387] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3504'.
[ 1215.706039][T15829] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1215.970853][T15829] hub: probe of 2-1:0.0 failed with error -5
[ 1217.444081][T18413] netlink: 'syz.2.3508': attribute type 1 has an invalid length.
[ 1217.464086][T18413] netlink: 'syz.2.3508': attribute type 2 has an invalid length.
[ 1217.650472][T18413] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3508'.
[ 1217.952641][T18413] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1218.104598][T18413] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1218.407512][T15829] usb 2-1: USB disconnect, device number 32
[ 1219.941962][T18447] netlink: 'syz.1.3520': attribute type 1 has an invalid length.
[ 1219.952731][T18447] netlink: 'syz.1.3520': attribute type 2 has an invalid length.
[ 1219.978190][T18447] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3520'.
[ 1220.076003][T18450] netlink: 'syz.3.3521': attribute type 13 has an invalid length.
[ 1222.174625][T18474] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1225.153763][ T4283] Bluetooth: hci5: command 0x0406 tx timeout
[ 1226.718090][T18535] netlink: 'syz.2.3542': attribute type 1 has an invalid length.
[ 1226.755318][T18535] netlink: 'syz.2.3542': attribute type 2 has an invalid length.
[ 1227.855613][T18552] netlink: 'syz.4.3546': attribute type 1 has an invalid length.
[ 1227.899499][T18552] netlink: 'syz.4.3546': attribute type 2 has an invalid length.
[ 1228.071102][T18552] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3546'.
[ 1229.672465][   T26] audit: type=1326 audit(1773183253.985:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18565 comm="syz.3.3553" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce67b9c799 code=0x0
[ 1229.721605][T15829] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[ 1229.932973][T15829] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1229.940936][T15829] usb 3-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[ 1229.957227][T15829] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1229.985387][T15829] usb 3-1: config 0 descriptor??
[ 1229.990156][T18577] netlink: 'syz.4.3554': attribute type 13 has an invalid length.
[ 1230.793764][T18589] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3557'.
[ 1231.091972][T15940] usb 4-1: new full-speed USB device number 25 using dummy_hcd
[ 1231.301400][T15940] usb 4-1: too many configurations: 109, using maximum allowed: 8
[ 1231.327409][T18568] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1231.340960][T18568] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1231.356688][T15940] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1231.358308][T15829] video4linux radio48: keene_cmd_set failed (-71)
[ 1231.387075][T15940] usb 4-1: can't read configurations, error -61
[ 1231.401083][T15829] radio-keene 3-1:0.0: V4L2 device registered as radio48
[ 1231.477802][T15829] usb 3-1: USB disconnect, device number 41
[ 1231.571040][T15940] usb 4-1: new full-speed USB device number 26 using dummy_hcd
[ 1231.855997][T15940] usb 4-1: too many configurations: 109, using maximum allowed: 8
[ 1231.884652][T15940] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1231.896906][T15940] usb 4-1: can't read configurations, error -61
[ 1231.909146][T15940] usb usb4-port1: attempt power cycle
[ 1232.320308][T15940] usb 4-1: new full-speed USB device number 27 using dummy_hcd
[ 1232.405868][T15940] usb 4-1: too many configurations: 109, using maximum allowed: 8
[ 1232.475566][T15940] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1232.507627][T15940] usb 4-1: can't read configurations, error -61
[ 1232.789954][T15940] usb 4-1: new full-speed USB device number 28 using dummy_hcd
[ 1232.876201][T15940] usb 4-1: too many configurations: 109, using maximum allowed: 8
[ 1232.980918][T15940] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1232.997215][T15940] usb 4-1: can't read configurations, error -61
[ 1233.022909][T15940] usb usb4-port1: unable to enumerate USB device
[ 1233.059506][T18604] netlink: 'syz.2.3562': attribute type 1 has an invalid length.
[ 1233.068228][T18604] netlink: 'syz.2.3562': attribute type 2 has an invalid length.
[ 1234.755862][T18618] netlink: 'syz.0.3565': attribute type 1 has an invalid length.
[ 1234.815916][T18618] netlink: 'syz.0.3565': attribute type 2 has an invalid length.
[ 1234.888480][T18618] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3565'.
[ 1238.439662][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.446037][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.221193][T18659] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3573'.
[ 1240.871639][   T26] audit: type=1326 audit(1773183265.181:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18676 comm="syz.1.3578" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x0
[ 1241.516706][T18691] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3579'.
[ 1243.660331][T18721] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3586'.
[ 1244.858152][T18740] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3591'.
[ 1245.363686][T15940] usb 4-1: new full-speed USB device number 29 using dummy_hcd
[ 1245.616128][T15940] usb 4-1: config 1 has an invalid interface number: 128 but max is 1
[ 1245.638299][T15940] usb 4-1: config 1 has an invalid descriptor of length 129, skipping remainder of the config
[ 1245.676778][T15940] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1245.704128][T15940] usb 4-1: config 1 has no interface number 0
[ 1246.557954][T15940] usb 4-1: config 1 interface 128 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1246.625199][T15940] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1246.654803][T15940] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1246.663235][T15940] usb 4-1: Product: syz
[ 1246.667640][T15940] usb 4-1: Manufacturer: syz
[ 1246.672248][T15940] usb 4-1: SerialNumber: syz
[ 1246.724131][T15940] cdc_wdm: probe of 4-1:1.128 failed with error -22
[ 1247.758848][   T26] audit: type=1326 audit(1773183272.074:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1247.795544][T18772] loop6: detected capacity change from 0 to 7
[ 1247.816598][T16201] Dev loop6: unable to read RDB block 7
[ 1247.822680][T16201]  loop6: AHDI p2 p3
[ 1247.842446][T16201] loop6: partition table partially beyond EOD, truncated
[ 1247.869746][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1247.887345][   T26] audit: type=1326 audit(1773183272.104:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1247.941868][   T26] audit: type=1326 audit(1773183272.104:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1247.983999][T18772] Dev loop6: unable to read RDB block 7
[ 1247.990976][T18772]  loop6: AHDI p2 p3
[ 1247.996694][T18772] loop6: partition table partially beyond EOD, truncated
[ 1248.020458][   T26] audit: type=1326 audit(1773183272.104:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1248.063594][T18772] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1248.095967][   T26] audit: type=1326 audit(1773183272.104:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1248.173061][   T26] audit: type=1326 audit(1773183272.104:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1248.260330][   T26] audit: type=1326 audit(1773183272.104:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1248.401610][   T26] audit: type=1326 audit(1773183272.104:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1248.561139][   T26] audit: type=1326 audit(1773183272.104:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1248.713357][   T26] audit: type=1326 audit(1773183272.104:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18770 comm="syz.1.3600" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa12259c799 code=0x7ffc0000
[ 1249.192125][T18793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3604'.
[ 1249.209663][T18793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3604'.
[ 1249.296698][T15829] usb 4-1: USB disconnect, device number 29
[ 1249.994891][T18792] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1251.433883][T18835] loop6: detected capacity change from 0 to 7
[ 1251.469957][T16201] Dev loop6: unable to read RDB block 7
[ 1251.477779][T16201]  loop6: AHDI p2 p3
[ 1251.491959][T16201] loop6: partition table partially beyond EOD, truncated
[ 1251.527140][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1251.569755][T18835] Dev loop6: unable to read RDB block 7
[ 1251.586659][T18835]  loop6: AHDI p2 p3
[ 1251.595936][T18835] loop6: partition table partially beyond EOD, truncated
[ 1251.677327][T18835] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1255.053994][T18886] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1257.527046][T18920] device syzkaller1 entered promiscuous mode
[ 1257.780203][T18928] device syzkaller0 entered promiscuous mode
[ 1258.109352][T18935] netlink: 'syz.3.3639': attribute type 1 has an invalid length.
[ 1258.117769][T18935] netlink: 'syz.3.3639': attribute type 2 has an invalid length.
[ 1258.134077][T18935] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3639'.
[ 1259.050513][T18949] netlink: 'syz.0.3645': attribute type 3 has an invalid length.
[ 1259.452950][T18954] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1259.477538][T18955] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1259.835746][T18966] device syzkaller1 entered promiscuous mode
[ 1259.977149][T18972] device syzkaller0 entered promiscuous mode
[ 1260.283295][T18974] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1262.031587][T19000] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1262.327059][   T26] kauditd_printk_skb: 85 callbacks suppressed
[ 1262.327074][   T26] audit: type=1326 audit(1773183286.652:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18992 comm="syz.4.3659" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x0
[ 1262.791073][T19019] netlink: 'syz.2.3663': attribute type 1 has an invalid length.
[ 1262.805340][T19019] netlink: 'syz.2.3663': attribute type 2 has an invalid length.
[ 1262.821362][T19019] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3663'.
[ 1262.855755][T19019] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1262.902028][T19019] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1263.916325][   T26] audit: type=1326 audit(1773183288.243:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1263.962883][T19026] loop6: detected capacity change from 0 to 7
[ 1264.003050][   T26] audit: type=1326 audit(1773183288.263:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1264.029961][T16201] Dev loop6: unable to read RDB block 7
[ 1264.037884][T16201]  loop6: AHDI p2 p3
[ 1264.045178][T16201] loop6: partition table partially beyond EOD, truncated
[ 1264.063910][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1264.118093][   T26] audit: type=1326 audit(1773183288.263:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1264.174450][T19026] Dev loop6: unable to read RDB block 7
[ 1264.179053][   T26] audit: type=1326 audit(1773183288.263:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1264.214611][T19026]  loop6: AHDI p2 p3
[ 1264.232443][T19026] loop6: partition table partially beyond EOD, truncated
[ 1264.289112][   T26] audit: type=1326 audit(1773183288.263:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1264.314259][T19026] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1264.353016][   T26] audit: type=1326 audit(1773183288.263:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1264.474699][   T26] audit: type=1326 audit(1773183288.263:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1264.533748][   T26] audit: type=1326 audit(1773183288.263:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1264.538648][T19030] tipc: Started in network mode
[ 1264.590801][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1264.611023][   T26] audit: type=1326 audit(1773183288.263:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19025 comm="syz.4.3666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1264.710474][T19030] tipc: Node identity 5e0cfe8684fc, cluster identity 4711
[ 1264.725811][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1264.759555][T19030] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1264.810738][T19031] device syzkaller0 entered promiscuous mode
[ 1264.821419][T19044] loop2: detected capacity change from 0 to 7
[ 1264.839530][T16201] Dev loop2: unable to read RDB block 7
[ 1264.846431][T16201]  loop2: AHDI p2 p3
[ 1264.858308][T16201] loop2: partition table partially beyond EOD, truncated
[ 1264.988958][T19044] Dev loop2: unable to read RDB block 7
[ 1264.996057][T19044]  loop2: AHDI p2 p3
[ 1265.001172][T19044] loop2: partition table partially beyond EOD, truncated
[ 1265.078613][ T3637] Dev loop2: unable to read RDB block 7
[ 1265.085327][ T3637]  loop2: AHDI p2 p3
[ 1265.091221][ T3637] loop2: partition table partially beyond EOD, truncated
[ 1265.123312][T19030] tipc: Resetting bearer <eth:syzkaller0>
[ 1265.185426][T19029] tipc: Resetting bearer <eth:syzkaller0>
[ 1265.226391][T19029] tipc: Disabling bearer <eth:syzkaller0>
[ 1265.377287][ T3637] Dev loop2: unable to read RDB block 7
[ 1265.406440][ T3637]  loop2: AHDI p2 p3
[ 1265.444777][ T3637] loop2: partition table partially beyond EOD, truncated
[ 1266.297658][T19071] loop6: detected capacity change from 0 to 7
[ 1266.342456][T16201] Dev loop6: unable to read RDB block 7
[ 1266.349251][T16201]  loop6: AHDI p2 p3
[ 1266.353892][T16201] loop6: partition table partially beyond EOD, truncated
[ 1266.364489][T19074] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1266.380020][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1266.400531][T19071] Dev loop6: unable to read RDB block 7
[ 1266.411356][T19071]  loop6: AHDI p2 p3
[ 1266.424147][T19071] loop6: partition table partially beyond EOD, truncated
[ 1266.480835][T19071] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1266.718635][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1266.764216][T16201] udevd[16201]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1267.281400][T19090] netlink: 14 bytes leftover after parsing attributes in process `syz.0.3684'.
[ 1270.445342][T19127] netlink: 'syz.3.3698': attribute type 1 has an invalid length.
[ 1270.453207][T19127] netlink: 'syz.3.3698': attribute type 2 has an invalid length.
[ 1270.465436][T19127] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3698'.
[ 1270.488086][T19127] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1270.495501][T19127] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1270.503536][T19127] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1270.510950][T19127] 8021q: adding VLAN 0 to HW filter on device team0
[ 1270.519744][T19127] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1271.152113][   T26] kauditd_printk_skb: 90 callbacks suppressed
[ 1271.152127][   T26] audit: type=1326 audit(1773183295.486:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19131 comm="syz.0.3700" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fef8319c799 code=0x0
[ 1271.293291][ T4788] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1271.467968][T19149] loop2: detected capacity change from 0 to 7
[ 1271.506793][T19148] device syzkaller0 entered promiscuous mode
[ 1271.515943][T16201] Dev loop2: unable to read RDB block 7
[ 1271.531748][T16201]  loop2: AHDI p2 p3
[ 1271.555352][T16201] loop2: partition table partially beyond EOD, truncated
[ 1271.598475][T19149] Dev loop2: unable to read RDB block 7
[ 1271.613015][T19149]  loop2: AHDI p2 p3
[ 1271.628561][T19149] loop2: partition table partially beyond EOD, truncated
[ 1272.244628][T19161] netlink: 14 bytes leftover after parsing attributes in process `syz.2.3706'.
[ 1273.875270][T19184] netlink: 'syz.1.3712': attribute type 1 has an invalid length.
[ 1273.883622][T19184] netlink: 'syz.1.3712': attribute type 2 has an invalid length.
[ 1273.902012][T19184] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3712'.
[ 1275.234694][T19197] device syzkaller1 entered promiscuous mode
[ 1275.441980][T19199] device syzkaller0 entered promiscuous mode
[ 1276.112498][T19212] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1278.597636][T19229] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1278.841758][   T27] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1278.852904][   T27] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1278.885220][   T27] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1278.917503][   T27] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1278.944290][   T27] rtc rtc0: __rtc_set_alarm: err=-22
[ 1280.259483][T19243] netlink: 14 bytes leftover after parsing attributes in process `syz.4.3726'.
[ 1281.073336][T19208] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1281.561490][T19254] device ip6gre1 entered promiscuous mode
[ 1281.625649][T19255] netlink: 'syz.0.3728': attribute type 1 has an invalid length.
[ 1281.633619][T19255] netlink: 'syz.0.3728': attribute type 2 has an invalid length.
[ 1281.654587][T19255] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3728'.
[ 1282.290577][T19271] relay: one or more items not logged [item size (56) > sub-buffer size (3)]
[ 1284.255629][T19290] device syzkaller0 entered promiscuous mode
[ 1289.666580][T19352] device syzkaller0 entered promiscuous mode
[ 1289.774645][T19356] device syzkaller0 entered promiscuous mode
[ 1289.996333][   T26] audit: type=1326 audit(1773183314.336:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19350 comm="syz.2.3753" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f19d959c799 code=0x0
[ 1291.833816][T19384] device syzkaller0 entered promiscuous mode
[ 1292.128174][T19391] loop2: detected capacity change from 0 to 7
[ 1292.154519][T19391] Dev loop2: unable to read RDB block 7
[ 1292.185605][T19391]  loop2: AHDI p2 p3
[ 1292.194016][T19391] loop2: partition table partially beyond EOD, truncated
[ 1292.492540][T15940] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[ 1292.751290][T15940] usb 4-1: Using ep0 maxpacket: 32
[ 1292.812651][T15940] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1292.825609][T15940] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1292.835912][T15940] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1292.845695][T15940] usb 4-1: Product: syz
[ 1292.850726][T15940] usb 4-1: Manufacturer: syz
[ 1292.857503][T15940] usb 4-1: SerialNumber: syz
[ 1292.890565][T15940] usb 4-1: config 0 descriptor??
[ 1292.898150][T19396] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1293.435385][T19420] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1294.230747][T19426] device syzkaller0 entered promiscuous mode
[ 1295.266372][T15940] usb 4-1: USB disconnect, device number 30
[ 1295.800474][T19442] device syzkaller0 entered promiscuous mode
[ 1296.345097][T19452] device syzkaller0 entered promiscuous mode
[ 1296.593121][T19461] tipc: Failed to remove unknown binding: 66,1,1/0:3654769528/3654769530
[ 1296.678202][T15829] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[ 1296.879735][T15829] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1296.913748][T15829] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1296.927764][T15829] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1296.943019][T15829] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1296.961508][T15829] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1296.971222][T15829] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1296.979728][T15829] usb 4-1: Manufacturer: syz
[ 1297.003703][T15829] usb 4-1: config 0 descriptor??
[ 1297.434076][T15829] appleir 0003:05AC:8243.0006: unknown main item tag 0x0
[ 1297.445220][T15829] appleir 0003:05AC:8243.0006: No inputs registered, leaving
[ 1297.498293][T15829] appleir 0003:05AC:8243.0006: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0
[ 1297.732957][T15940] usb 4-1: USB disconnect, device number 31
[ 1298.092469][T19480] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3796'.
[ 1298.143370][T19483] MPTCP: kernel_bind error, err=-98
[ 1298.213622][T19485] device syzkaller0 entered promiscuous mode
[ 1298.233614][T19488] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1298.982878][T19501] netlink: 'syz.4.3800': attribute type 10 has an invalid length.
[ 1299.041961][T19501] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1299.848516][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1299.855508][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.528832][T19514] netlink: 'syz.2.3804': attribute type 1 has an invalid length.
[ 1300.541916][T19514] netlink: 'syz.2.3804': attribute type 2 has an invalid length.
[ 1300.583986][T19514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3804'.
[ 1300.612608][T19514] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1300.724379][T19514] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1300.749925][T19526] tipc: Failed to remove unknown binding: 66,1,1/0:2088117447/2088117449
[ 1302.932083][T19550] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1303.155015][   T27] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 1303.364740][   T27] usb 5-1: Using ep0 maxpacket: 8
[ 1303.386146][   T27] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1303.538159][   T27] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1303.655050][   T27] usb 5-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=35.76
[ 1303.672540][   T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1303.707105][   T27] usb 5-1: Product: syz
[ 1303.718716][   T27] usb 5-1: Manufacturer: syz
[ 1303.729941][   T27] usb 5-1: SerialNumber: syz
[ 1303.748992][   T27] usb 5-1: config 0 descriptor??
[ 1303.920384][T19563] device syzkaller1 entered promiscuous mode
[ 1304.759694][T19578] loop2: detected capacity change from 0 to 7
[ 1304.769544][T16201] Dev loop2: unable to read RDB block 7
[ 1304.776822][T16201]  loop2: AHDI p2 p3
[ 1304.780733][T16201] loop2: partition table partially beyond EOD, truncated
[ 1304.998335][T19578] Dev loop2: unable to read RDB block 7
[ 1305.008426][T19578]  loop2: AHDI p2 p3
[ 1305.079998][T19578] loop2: partition table partially beyond EOD, truncated
[ 1305.489342][ T3637] Dev loop2: unable to read RDB block 7
[ 1305.496322][ T3637]  loop2: AHDI p2 p3
[ 1305.512273][ T3637] loop2: partition table partially beyond EOD, truncated
[ 1306.350197][T13774] usb 5-1: USB disconnect, device number 32
[ 1306.580326][T19599] kAFS: unable to lookup cell '(,c¾Ì'
[ 1307.832305][T19609] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3831'.
[ 1308.260524][T19613] device syzkaller1 entered promiscuous mode
[ 1309.466240][T19633] MPTCP: kernel_bind error, err=-98
[ 1309.958611][T19640] netlink: 'syz.3.3839': attribute type 1 has an invalid length.
[ 1310.095762][T19640] netlink: 'syz.3.3839': attribute type 2 has an invalid length.
[ 1310.239201][T19640] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3839'.
[ 1310.279743][T19640] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1310.326831][T19640] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1310.390532][T19646] loop2: detected capacity change from 0 to 7
[ 1310.435234][T16201] Dev loop2: unable to read RDB block 7
[ 1310.440837][T16201]  loop2: AHDI p2 p3
[ 1310.460053][T16201] loop2: partition table partially beyond EOD, truncated
[ 1310.484956][T19646] Dev loop2: unable to read RDB block 7
[ 1310.521145][T19646]  loop2: AHDI p2 p3
[ 1310.551291][T19646] loop2: partition table partially beyond EOD, truncated
[ 1311.037557][ T3637] Dev loop2: unable to read RDB block 7
[ 1311.051104][ T3637]  loop2: AHDI p2 p3
[ 1311.089972][ T3637] loop2: partition table partially beyond EOD, truncated
[ 1311.770633][T19663] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3844'.
[ 1313.122677][T19683] x_tables: ip6_tables: SNPT target: used from hooks FORWARD, but only usable from INPUT/POSTROUTING
[ 1313.191861][T19684] loop6: detected capacity change from 0 to 7
[ 1313.208893][T16201] Dev loop6: unable to read RDB block 7
[ 1313.219927][T16201]  loop6: AHDI p2 p3
[ 1313.228359][T16201] loop6: partition table partially beyond EOD, truncated
[ 1313.251466][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1313.276495][T19684] Dev loop6: unable to read RDB block 7
[ 1313.292783][T19684]  loop6: AHDI p2 p3
[ 1313.307043][T19684] loop6: partition table partially beyond EOD, truncated
[ 1313.319819][T19684] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1313.468072][T19688] tipc: Failed to remove unknown binding: 66,1,1/0:671784123/671784125
[ 1314.486877][T19695] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1314.531694][T19699] netlink: 'syz.1.3856': attribute type 1 has an invalid length.
[ 1314.579014][T19699] netlink: 'syz.1.3856': attribute type 2 has an invalid length.
[ 1314.639551][T19699] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3856'.
[ 1314.824632][T19699] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1314.845203][T19699] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1314.924225][T19699] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1314.950973][T19699] 8021q: adding VLAN 0 to HW filter on device team0
[ 1315.024770][T19699] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1315.109516][T19705] loop2: detected capacity change from 0 to 7
[ 1315.169132][T16201] Dev loop2: unable to read RDB block 7
[ 1315.174744][T16201]  loop2: AHDI p2 p3
[ 1315.199070][T16201] loop2: partition table partially beyond EOD, truncated
[ 1315.228129][T19705] Dev loop2: unable to read RDB block 7
[ 1315.337137][T19705]  loop2: AHDI p2 p3
[ 1315.348260][T19705] loop2: partition table partially beyond EOD, truncated
[ 1315.402307][ T3637] Dev loop2: unable to read RDB block 7
[ 1315.407924][ T3637]  loop2: AHDI p2 p3
[ 1315.417098][ T3637] loop2: partition table partially beyond EOD, truncated
[ 1316.438234][T13774] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[ 1316.709738][T13774] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 1316.738051][T13774] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1316.788080][T13774] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1316.847895][T13774] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 1316.914111][T13774] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 1316.996226][T13774] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 1317.036679][T13774] usb 2-1: Manufacturer: syz
[ 1317.082701][T13774] usb 2-1: config 0 descriptor??
[ 1317.328284][T19727] device syzkaller0 entered promiscuous mode
[ 1317.501645][T13774] appleir 0003:05AC:8243.0007: unknown main item tag 0x0
[ 1317.521827][T13774] appleir 0003:05AC:8243.0007: No inputs registered, leaving
[ 1317.562692][T13774] appleir 0003:05AC:8243.0007: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[ 1317.697661][T13774] usb 2-1: USB disconnect, device number 33
[ 1317.743190][   T26] audit: type=1326 audit(1773183342.089:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1317.746005][T19728] fido_id[19728]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[ 1317.765643][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1317.796191][T19731] loop6: detected capacity change from 0 to 7
[ 1317.813449][T16202] Dev loop6: unable to read RDB block 7
[ 1317.820306][T16202]  loop6: AHDI p2 p3
[ 1317.825521][T16202] loop6: partition table partially beyond EOD, truncated
[ 1317.847305][T16202] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1317.880590][   T26] audit: type=1326 audit(1773183342.129:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1317.909257][T19731] Dev loop6: unable to read RDB block 7
[ 1317.914958][T19731]  loop6: AHDI p2 p3
[ 1317.916120][   T26] audit: type=1326 audit(1773183342.129:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1317.919427][T19731] loop6: partition table partially beyond EOD, 
[ 1317.945003][   T26] audit: type=1326 audit(1773183342.129:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1317.976594][   T26] audit: type=1326 audit(1773183342.129:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1317.999612][   T26] audit: type=1326 audit(1773183342.129:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1318.022825][   T26] audit: type=1326 audit(1773183342.129:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1318.045546][T19731] truncated
[ 1318.051490][T19731] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1318.059003][   T26] audit: type=1326 audit(1773183342.129:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1318.084020][   T26] audit: type=1326 audit(1773183342.139:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1318.107046][   T26] audit: type=1326 audit(1773183342.139:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19729 comm="syz.4.3865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11f919c799 code=0x7ffc0000
[ 1318.371696][T19654] Set syz1 is full, maxelem 65536 reached
[ 1318.543240][T19735] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1319.076089][T19762] loop2: detected capacity change from 0 to 7
[ 1319.086478][T16201] Dev loop2: unable to read RDB block 7
[ 1319.093257][T16201]  loop2: AHDI p2 p3
[ 1319.115981][T16201] loop2: partition table partially beyond EOD, truncated
[ 1319.145686][T19762] Dev loop2: unable to read RDB block 7
[ 1319.215966][T19762]  loop2: AHDI p2 p3
[ 1319.358465][T19762] loop2: partition table partially beyond EOD, truncated
[ 1319.792226][T19765] device syzkaller0 entered promiscuous mode
[ 1319.969278][ T3637] Dev loop2: unable to read RDB block 7
[ 1319.985036][ T3637]  loop2: AHDI p2 p3
[ 1320.050905][ T3637] loop2: partition table partially beyond EOD, truncated
[ 1320.698513][T19773] trusted_key: encrypted_key: key user:syz not found
[ 1321.375942][T19793] loop6: detected capacity change from 0 to 7
[ 1321.416370][T16201] Dev loop6: unable to read RDB block 7
[ 1321.424779][T16201]  loop6: AHDI p2 p3
[ 1321.445750][T16201] loop6: partition table partially beyond EOD, truncated
[ 1321.475117][T16201] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1321.502910][T19793] Dev loop6: unable to read RDB block 7
[ 1321.511274][T19793]  loop6: AHDI p2 p3
[ 1321.519089][T19793] loop6: partition table partially beyond EOD, truncated
[ 1321.554326][T19793] loop6: p2 size 157513074 extends beyond EOD, truncated
[ 1321.591353][T19795] device syzkaller1 entered promiscuous mode
[ 1322.487402][T19804] device syzkaller0 entered promiscuous mode
[ 1323.468458][T19827] MPTCP: kernel_bind error, err=-98
[ 1324.670607][T19836] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1325.418952][T19848] device syzkaller0 entered promiscuous mode
[ 1325.473672][   T27] usb 5-1: new full-speed USB device number 33 using dummy_hcd
[ 1325.773548][T15829] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[ 1325.800198][   T27] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1325.810454][   T27] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1325.820511][   T27] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[ 1325.829723][   T27] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1325.841046][   T27] usb 5-1: config 0 descriptor??
[ 1325.854704][T13774] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[ 1325.964092][T15829] usb 2-1: Using ep0 maxpacket: 16
[ 1325.978409][T15829] usb 2-1: New USB device found, idVendor=0644, idProduct=8021, bcdDevice=38.b7
[ 1326.010746][T15829] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1326.027581][T15829] usb 2-1: Product: syz
[ 1326.036510][T15829] usb 2-1: Manufacturer: syz
[ 1326.042895][T15829] usb 2-1: SerialNumber: syz
[ 1326.049398][T13774] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 14385, setting to 1024
[ 1326.066098][   T27] usb 5-1: string descriptor 0 read error: -71
[ 1326.086781][   T27] usb 5-1: USB disconnect, device number 33
[ 1326.109138][T13774] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[ 1326.120143][T15829] usb 2-1: config 0 descriptor??
[ 1326.133955][T15829] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1326.148887][T13774] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1326.159860][T15829] hub: probe of 2-1:0.0 failed with error -5
[ 1326.187769][T13774] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1326.211935][T13774] usb 4-1: config 0 descriptor??
[ 1326.223430][T19859] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[ 1326.610746][T19873] device syzkaller1 entered promiscuous mode
[ 1327.946581][T19895] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1342.440537][ T4281] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1342.456500][ T4281] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1342.476982][ T4281] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1342.510282][ T4281] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1342.523412][ T4281] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1342.530808][ T4281] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1343.362100][T15755] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1343.368960][T19911] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1343.376843][T19909] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1343.393325][T19909] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1343.401491][T19909] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1343.410767][T19909] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1343.419886][T19911] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1343.426970][T19909] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1343.437827][T19909] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1343.448216][ T4283] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1343.457347][T19909] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1343.465638][T19909] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1344.037204][T19909] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1344.054645][T19909] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1344.064083][T19909] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1344.077706][T19909] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1344.088488][T19909] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 1344.096008][T19909] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1344.460981][T19911] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1344.475107][T19911] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1344.485581][T19911] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1344.495258][T19911] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1344.504849][T19911] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 1344.512811][T19911] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1344.614232][T19909] Bluetooth: hci3: command 0x0409 tx timeout
[ 1345.584778][T19909] Bluetooth: hci6: command 0x0409 tx timeout
[ 1345.591773][T19909] Bluetooth: hci7: command 0x0409 tx timeout
[ 1346.143338][T19909] Bluetooth: hci8: command 0x0409 tx timeout
[ 1346.613170][T19909] Bluetooth: hci9: command 0x0409 tx timeout
[ 1346.693191][T19909] Bluetooth: hci3: command 0x041b tx timeout
[ 1347.652659][T19909] Bluetooth: hci7: command 0x041b tx timeout
[ 1347.658716][T19909] Bluetooth: hci6: command 0x041b tx timeout
[ 1348.212487][T19909] Bluetooth: hci8: command 0x041b tx timeout
[ 1348.691990][T19909] Bluetooth: hci9: command 0x041b tx timeout
[ 1348.772092][T19909] Bluetooth: hci3: command 0x040f tx timeout
[ 1349.741564][T19909] Bluetooth: hci6: command 0x040f tx timeout
[ 1349.747644][T19909] Bluetooth: hci7: command 0x040f tx timeout
[ 1350.291393][T19909] Bluetooth: hci8: command 0x040f tx timeout
[ 1350.770963][T19909] Bluetooth: hci9: command 0x040f tx timeout
[ 1350.850946][T19909] Bluetooth: hci3: command 0x0419 tx timeout
[ 1351.810585][T19909] Bluetooth: hci7: command 0x0419 tx timeout
[ 1351.817085][T19909] Bluetooth: hci6: command 0x0419 tx timeout
[ 1352.370171][T19909] Bluetooth: hci8: command 0x0419 tx timeout
[ 1352.860108][T19909] Bluetooth: hci9: command 0x0419 tx timeout
[ 1361.249299][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.255682][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1386.404463][ T3637] udevd[3637]: worker [16201] /devices/platform/dummy_hcd.3/usb4/4-1 is taking a long time
[ 1405.403301][T19911] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1405.414577][T19911] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1405.424071][ T4281] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1405.432305][T19911] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1405.441448][T19911] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 1405.450042][T19911] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1405.671355][T19909] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1405.681830][T19909] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1405.690626][T19909] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1405.698874][T19909] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1405.706727][T19909] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 1405.714184][T19909] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1406.114472][ T4281] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1406.122225][ T4283] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1406.136824][ T4281] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1406.141476][ T4283] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1406.152873][ T4283] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1406.153251][T15755] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1406.165366][ T4283] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1406.175349][ T4283] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 1406.182796][ T4283] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1406.183440][ T4281] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1406.199878][ T4281] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 1406.207419][ T4281] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1406.275920][T19911] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 1406.288506][T19911] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 1406.303819][ T4281] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 1406.311969][ T4281] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 1406.321070][ T4281] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[ 1406.334438][ T4281] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 1407.472717][ T4281] Bluetooth: hci10: command 0x0409 tx timeout
[ 1407.782511][ T4281] Bluetooth: hci11: command 0x0409 tx timeout
[ 1408.262422][ T4281] Bluetooth: hci12: command 0x0409 tx timeout
[ 1408.269749][ T4281] Bluetooth: hci13: command 0x0409 tx timeout
[ 1408.422352][ T4281] Bluetooth: hci14: command 0x0409 tx timeout
[ 1409.541727][ T4281] Bluetooth: hci10: command 0x041b tx timeout
[ 1409.871539][ T4281] Bluetooth: hci11: command 0x041b tx timeout
[ 1410.341345][ T4281] Bluetooth: hci13: command 0x041b tx timeout
[ 1410.347498][ T4281] Bluetooth: hci12: command 0x041b tx timeout
[ 1410.501110][ T4281] Bluetooth: hci14: command 0x041b tx timeout
[ 1411.620635][ T4281] Bluetooth: hci10: command 0x040f tx timeout
[ 1411.940493][ T4281] Bluetooth: hci11: command 0x040f tx timeout
[ 1412.430586][ T4281] Bluetooth: hci12: command 0x040f tx timeout
[ 1412.436815][ T4281] Bluetooth: hci13: command 0x040f tx timeout
[ 1412.580088][ T4281] Bluetooth: hci14: command 0x040f tx timeout
[ 1413.699610][ T4281] Bluetooth: hci10: command 0x0419 tx timeout
[ 1414.019439][ T4281] Bluetooth: hci11: command 0x0419 tx timeout
[ 1414.499303][ T4281] Bluetooth: hci13: command 0x0419 tx timeout
[ 1414.505449][ T4281] Bluetooth: hci12: command 0x0419 tx timeout
[ 1414.659204][ T4281] Bluetooth: hci14: command 0x0419 tx timeout
[ 1422.656956][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1422.663281][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1465.683521][ T4283] Bluetooth: hci3: command 0x0406 tx timeout
[ 1465.683639][ T4281] Bluetooth: hci7: command 0x0406 tx timeout
[ 1465.689636][ T4283] Bluetooth: hci6: command 0x0406 tx timeout
[ 1467.384082][T19911] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[ 1467.403575][T19911] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[ 1467.418029][T19911] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[ 1467.427875][T19911] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[ 1467.435717][T19911] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[ 1467.448564][T19911] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[ 1468.294740][ T4283] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[ 1468.322788][ T4283] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[ 1468.333339][ T4283] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[ 1468.347905][ T4283] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[ 1468.357930][ T4283] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[ 1468.365418][ T4283] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[ 1468.438615][T19911] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[ 1468.447440][T19911] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[ 1468.458433][T19911] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[ 1468.466584][T19911] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[ 1468.474639][T19911] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[ 1468.487708][T19911] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[ 1468.593644][ T4281] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[ 1468.610695][ T4281] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[ 1468.622399][ T4281] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[ 1468.634860][ T4281] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[ 1468.645009][ T4281] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[ 1468.655371][ T4281] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[ 1468.679503][T15755] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[ 1468.688633][T15755] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[ 1468.696125][T15755] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[ 1468.696280][ T4281] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[ 1468.726173][ T4281] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3
[ 1468.733642][ T4281] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[ 1469.511789][T19953] Bluetooth: hci15: command 0x0409 tx timeout
[ 1470.391215][T19953] Bluetooth: hci16: command 0x0409 tx timeout
[ 1470.561244][T19953] Bluetooth: hci17: command 0x0409 tx timeout
[ 1470.791273][T19953] Bluetooth: hci19: command 0x0409 tx timeout
[ 1470.791309][T19911] Bluetooth: hci9: command 0x0406 tx timeout
[ 1470.791364][T19911] Bluetooth: hci8: command 0x0406 tx timeout
[ 1470.798397][T19953] Bluetooth: hci18: command 0x0409 tx timeout
[ 1471.590684][T19953] Bluetooth: hci15: command 0x041b tx timeout
[ 1472.480222][T19953] Bluetooth: hci16: command 0x041b tx timeout
[ 1472.630274][T19953] Bluetooth: hci17: command 0x041b tx timeout
[ 1472.870067][T19953] Bluetooth: hci19: command 0x041b tx timeout
[ 1472.876217][T19953] Bluetooth: hci18: command 0x041b tx timeout
[ 1473.669657][T19953] Bluetooth: hci15: command 0x040f tx timeout
[ 1474.559214][T19953] Bluetooth: hci16: command 0x040f tx timeout
[ 1474.709020][T19953] Bluetooth: hci17: command 0x040f tx timeout
[ 1474.949095][T19953] Bluetooth: hci18: command 0x040f tx timeout
[ 1474.955256][T19953] Bluetooth: hci19: command 0x040f tx timeout
[ 1475.758605][T19953] Bluetooth: hci15: command 0x0419 tx timeout
[ 1476.628271][T19953] Bluetooth: hci16: command 0x0419 tx timeout
[ 1476.787956][T19953] Bluetooth: hci17: command 0x0419 tx timeout
[ 1477.028136][T19953] Bluetooth: hci19: command 0x0419 tx timeout
[ 1477.034308][T19953] Bluetooth: hci18: command 0x0419 tx timeout
[ 1484.066225][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.072562][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1488.542492][   T28] INFO: task kworker/u4:4:56 blocked for more than 143 seconds.
[ 1488.550183][   T28]       Not tainted syzkaller #0
[ 1488.571047][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1488.583672][   T28] task:kworker/u4:4    state:D stack:22928 pid:56    ppid:2      flags:0x00004000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1488.621232][   T28] Workqueue: events_unbound fsnotify_mark_destroy_workfn
[ 1488.642010][   T28] Call Trace:
[ 1488.645338][   T28]  <TASK>
[ 1488.648282][   T28]  __schedule+0x11d1/0x40e0
[ 1488.751979][   T28]  ? __sched_text_start+0x8/0x8
[ 1488.756914][   T28]  ? kthread_data+0x4b/0xc0
[ 1488.761707][   T28]  ? wq_worker_sleeping+0x60/0x280
[ 1488.802093][   T28]  schedule+0xb9/0x180
[ 1488.806233][   T28]  schedule_timeout+0xbd/0x2d0
[ 1488.811034][   T28]  ? console_conditional_schedule+0x40/0x40
[ 1488.871921][   T28]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1488.878011][   T28]  ? lock_chain_count+0x20/0x20
[ 1488.912043][   T28]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1488.917136][   T28]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1488.951827][   T28]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1488.957093][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1488.973886][   T28]  ? wait_for_completion+0x276/0x5a0
[ 1488.979681][   T28]  wait_for_completion+0x2c7/0x5a0
[ 1489.008927][   T28]  ? io_schedule+0xd0/0xd0
[ 1489.019239][   T28]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1489.034180][   T28]  ? debug_object_active_state+0x6a/0x380
[ 1489.040046][   T28]  __synchronize_srcu+0x2b9/0x350
[ 1489.056573][   T28]  ? synchronize_srcu_expedited+0x20/0x20
[ 1489.069212][   T28]  ? rcu_read_lock_any_held+0x130/0x130
[ 1489.080905][   T28]  ? __rwlock_init+0x140/0x140
[ 1489.094849][   T28]  ? ktime_get_mono_fast_ns+0x199/0x1b0
[ 1489.100551][   T28]  ? synchronize_srcu+0x192/0x1b0
[ 1489.117455][   T28]  ? process_one_work+0x7b0/0x1160
[ 1489.129332][   T28]  fsnotify_mark_destroy_workfn+0x106/0x2f0
[ 1489.141162][   T28]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1489.154178][   T28]  ? fsnotify_connector_destroy_workfn+0xa0/0xa0
[ 1489.160615][   T28]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1489.175315][   T28]  ? process_one_work+0x7b0/0x1160
[ 1489.180484][   T28]  process_one_work+0x8a2/0x1160
[ 1489.197424][   T28]  ? worker_detach_from_pool+0x240/0x240
[ 1489.207242][   T28]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1489.221236][   T28]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1489.231338][   T28]  ? kthread_data+0x4b/0xc0
[ 1489.244890][   T28]  worker_thread+0xaa2/0x1270
[ 1489.249669][   T28]  ? __kthread_parkme+0x162/0x1c0
[ 1489.264294][   T28]  kthread+0x29d/0x330
[ 1489.268488][   T28]  ? worker_clr_flags+0x1a0/0x1a0
[ 1489.285015][   T28]  ? kthread_blkcg+0xd0/0xd0
[ 1489.289676][   T28]  ret_from_fork+0x1f/0x30
[ 1489.301308][   T28]  </TASK>
[ 1489.312748][   T28] INFO: task kworker/u4:1:10120 blocked for more than 144 seconds.
[ 1489.320706][   T28]       Not tainted syzkaller #0
[ 1489.337334][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1489.354059][   T28] task:kworker/u4:1    state:D stack:23152 pid:10120 ppid:2      flags:0x00004000
[ 1489.369292][   T28] Workqueue: events_unbound fsnotify_connector_destroy_workfn
[ 1489.383550][   T28] Call Trace:
[ 1489.386883][   T28]  <TASK>
[ 1489.389829][   T28]  __schedule+0x11d1/0x40e0
[ 1489.406307][   T28]  ? __sched_text_start+0x8/0x8
[ 1489.411231][   T28]  ? kthread_data+0x4b/0xc0
[ 1489.427452][   T28]  ? wq_worker_sleeping+0x60/0x280
[ 1489.442951][   T28]  schedule+0xb9/0x180
[ 1489.447083][   T28]  schedule_timeout+0xbd/0x2d0
[ 1489.463018][   T28]  ? console_conditional_schedule+0x40/0x40
[ 1489.468980][   T28]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1489.486688][   T28]  ? lock_chain_count+0x20/0x20
[ 1489.498616][   T28]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1489.510351][   T28]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1489.523125][   T28]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1489.528472][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1489.545317][   T28]  ? wait_for_completion+0x276/0x5a0
[ 1489.550670][   T28]  wait_for_completion+0x2c7/0x5a0
[ 1489.566663][   T28]  ? io_schedule+0xd0/0xd0
[ 1489.571141][   T28]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1489.594083][   T28]  ? debug_object_active_state+0x6a/0x380
[ 1489.599872][   T28]  __synchronize_srcu+0x2b9/0x350
[ 1489.616646][   T28]  ? synchronize_srcu_expedited+0x20/0x20
[ 1489.629419][   T28]  ? rcu_read_lock_any_held+0x130/0x130
[ 1489.641058][   T28]  ? __rwlock_init+0x140/0x140
[ 1489.654557][   T28]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1489.660512][   T28]  ? ktime_get_mono_fast_ns+0x199/0x1b0
[ 1489.676911][   T28]  ? synchronize_srcu+0x192/0x1b0
[ 1489.689232][   T28]  ? process_one_work+0x7b0/0x1160
[ 1489.700528][   T28]  fsnotify_connector_destroy_workfn+0x40/0xa0
[ 1489.715738][   T28]  ? process_one_work+0x7b0/0x1160
[ 1489.720995][   T28]  process_one_work+0x8a2/0x1160
[ 1489.737363][   T28]  ? worker_detach_from_pool+0x240/0x240
[ 1489.748988][   T28]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1489.760877][   T28]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1489.775321][   T28]  ? kthread_data+0x4b/0xc0
[ 1489.779890][   T28]  worker_thread+0xaa2/0x1270
[ 1489.796279][   T28]  ? __kthread_parkme+0x162/0x1c0
[ 1489.805383][   T28]  kthread+0x29d/0x330
[ 1489.809505][   T28]  ? worker_clr_flags+0x1a0/0x1a0
[ 1489.826166][   T28]  ? kthread_blkcg+0xd0/0xd0
[ 1489.830816][   T28]  ret_from_fork+0x1f/0x30
[ 1489.846660][   T28]  </TASK>
[ 1489.849769][   T28] INFO: task syz-executor:16074 blocked for more than 144 seconds.
[ 1489.867237][   T28]       Not tainted syzkaller #0
[ 1489.879184][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1489.894002][   T28] task:syz-executor    state:D stack:22544 pid:16074 ppid:1      flags:0x00004006
[ 1489.912570][   T28] Call Trace:
[ 1489.915898][   T28]  <TASK>
[ 1489.918852][   T28]  __schedule+0x11d1/0x40e0
[ 1489.935737][   T28]  ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 1489.951311][   T28]  ? __sched_text_start+0x8/0x8
[ 1489.956214][   T28]  ? do_raw_spin_lock+0x128/0x2f0
[ 1489.972526][   T28]  ? prepare_to_wait_event+0x430/0x470
[ 1489.978082][   T28]  schedule+0xb9/0x180
[ 1489.993804][   T28]  synchronize_rcu_expedited+0x7ad/0x890
[ 1490.020591][   T28]  ? exit_to_user_mode_loop+0x70/0x110
[ 1490.036620][   T28]  ? synchronize_rcu+0x3f0/0x3f0
[ 1490.056573][   T28]  ? wake_bit_function+0x200/0x200
[ 1490.079273][   T28]  ? namespace_unlock+0x1d7/0x430
[ 1490.093301][   T28]  ? __lock_acquire+0x7d10/0x7d10
[ 1490.098385][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1490.115294][   T28]  ? shrink_dentry_list+0x688/0x6a0
[ 1490.120594][   T28]  ? up_write+0x1bb/0x420
[ 1490.136642][   T28]  namespace_unlock+0x23f/0x430
[ 1490.148974][   T28]  ? put_mnt_ns+0xd6/0x120
[ 1490.159530][   T28]  ? umount_tree+0xe20/0xe20
[ 1490.171128][   T28]  ? umount_mnt+0x2c0/0x2c0
[ 1490.180044][   T28]  ? do_raw_spin_lock+0x128/0x2f0
[ 1490.194800][   T28]  ? free_nsproxy+0x49/0x3c0
[ 1490.199453][   T28]  ? do_raw_spin_unlock+0x11d/0x230
[ 1490.223157][   T28]  ? free_nsproxy+0x49/0x3c0
[ 1490.227818][   T28]  put_mnt_ns+0xdb/0x120
[ 1490.243393][   T28]  free_nsproxy+0x49/0x3c0
[ 1490.247879][   T28]  do_exit+0x97d/0x2480
[ 1490.276486][   T28]  ? put_task_struct+0x80/0x80
[ 1490.281358][   T28]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1490.287367][   T28]  ? lock_chain_count+0x20/0x20
[ 1490.311136][   T28]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1490.316227][   T28]  do_group_exit+0x217/0x2d0
[ 1490.320842][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1490.345493][   T28]  get_signal+0x1272/0x1350
[ 1490.350085][   T28]  arch_do_signal_or_restart+0xc4/0x1350
[ 1490.372171][   T28]  ? __ia32_sys_waitid+0xc0/0xc0
[ 1490.377180][   T28]  ? kernel_waitid+0x3d0/0x3d0
[ 1490.401115][   T28]  ? __might_sleep+0xd0/0xd0
[ 1490.405847][   T28]  ? get_sigframe_size+0x10/0x10
[ 1490.410812][   T28]  ? __x64_sys_wait4+0x1b4/0x230
[ 1490.431104][   T28]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1490.436740][   T28]  exit_to_user_mode_loop+0x70/0x110
[ 1490.469606][   T28]  exit_to_user_mode_prepare+0xee/0x180
[ 1490.496454][   T28]  syscall_exit_to_user_mode+0x16/0x40
[ 1490.502031][   T28]  do_syscall_64+0x58/0xa0
[ 1490.506509][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1490.516355][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1490.521118][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1490.527034][   T28] RIP: 0033:0x7fa12255cfce
[ 1490.571008][   T28] RSP: 002b:00007ffd640c6008 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[ 1490.579504][   T28] RAX: fffffffffffffe00 RBX: 00005555791de500 RCX: 00007fa12255cfce
[ 1490.603077][   T28] RDX: 0000000040000000 RSI: 00007ffd640c60ac RDI: ffffffffffffffff
[ 1490.627092][   T28] RBP: 00007ffd640c60ac R08: 0000000000000000 R09: 0000000000000000
[ 1490.654016][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000000000d0
[ 1490.670947][   T28] R13: 00005555791f19f0 R14: 0000000000143e58 R15: 00007ffd640c6100
[ 1490.678997][   T28]  </TASK>
[ 1490.698647][   T28] INFO: task udevd:16201 blocked for more than 145 seconds.
[ 1490.736087][   T28]       Not tainted syzkaller #0
[ 1490.741105][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1490.749780][   T28] task:udevd           state:D stack:23472 pid:16201 ppid:3637   flags:0x00004002
[ 1490.774458][   T28] Call Trace:
[ 1490.777802][   T28]  <TASK>
[ 1490.780745][   T28]  __schedule+0x11d1/0x40e0
[ 1490.804149][   T28]  ? __sched_text_start+0x8/0x8
[ 1490.809076][   T28]  ? __mutex_trylock_common+0x86/0x260
[ 1490.828739][   T28]  ? trace_raw_output_contention_end+0xd0/0xd0
[ 1490.847519][   T28]  schedule+0xb9/0x180
[ 1490.861732][   T28]  schedule_preempt_disabled+0xf/0x20
[ 1490.867178][   T28]  __mutex_lock+0x562/0xaf0
[ 1490.886965][   T28]  ? __mutex_lock+0x3b2/0xaf0
[ 1490.901864][   T28]  ? uevent_show+0x16c/0x320
[ 1490.906596][   T28]  ? mutex_lock_nested+0x10/0x10
[ 1490.935928][   T28]  uevent_show+0x16c/0x320
[ 1490.940414][   T28]  dev_attr_show+0x50/0xb0
[ 1490.965908][   T28]  sysfs_kf_seq_show+0x349/0x4b0
[ 1490.971034][   T28]  ? device_get_ownership+0xa0/0xa0
[ 1490.976264][   T28]  seq_read_iter+0x49b/0xd50
[ 1491.005832][   T28]  ? common_file_perm+0x171/0x1c0
[ 1491.011112][   T28]  vfs_read+0x4a7/0xa00
[ 1491.015350][   T28]  ? do_raw_spin_unlock+0x11d/0x230
[ 1491.040793][   T28]  ? kernel_read+0x1e0/0x1e0
[ 1491.045456][   T28]  ? __x64_sys_newfstat+0x19a/0x220
[ 1491.050680][   T28]  ? __rseq_handle_notify_resume+0x3a9/0x11f0
[ 1491.082215][   T28]  ? __fdget_pos+0x2b5/0x360
[ 1491.086836][   T28]  ksys_read+0x14c/0x250
[ 1491.115847][   T28]  ? vfs_write+0xa30/0xa30
[ 1491.120333][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1491.125623][   T28]  do_syscall_64+0x4c/0xa0
[ 1491.130065][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1491.156128][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1491.175916][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1491.181921][   T28] RIP: 0033:0x7f52682a7407
[ 1491.186364][   T28] RSP: 002b:00007ffd1e4d5580 EFLAGS: 00000202 ORIG_RAX: 0000000000000000
[ 1491.227190][   T28] RAX: ffffffffffffffda RBX: 00007f526821d880 RCX: 00007f52682a7407
[ 1491.240378][   T28] RDX: 0000000000001000 RSI: 000055cdf3404550 RDI: 0000000000000008
[ 1491.261198][   T28] RBP: 00007f52683efff0 R08: 0000000000000000 R09: 0000000000000000
[ 1491.269237][   T28] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000a
[ 1491.302689][   T28] R13: 00007f52683efea0 R14: 0000000000000000 R15: 000055cdf3405dc0
[ 1491.333699][   T28]  </TASK>
[ 1491.336818][   T28] INFO: task syz.1.3901:19854 blocked for more than 146 seconds.
[ 1491.353850][   T28]       Not tainted syzkaller #0
[ 1491.358834][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1491.390603][   T28] task:syz.1.3901      state:D stack:27760 pid:19854 ppid:16074  flags:0x00004006
[ 1491.399906][   T28] Call Trace:
[ 1491.430575][   T28]  <TASK>
[ 1491.433572][   T28]  __schedule+0x11d1/0x40e0
[ 1491.438124][   T28]  ? __sched_text_start+0x8/0x8
[ 1491.463916][   T28]  ? __mutex_trylock_common+0x86/0x260
[ 1491.469444][   T28]  ? trace_raw_output_contention_end+0xd0/0xd0
[ 1491.495258][   T28]  schedule+0xb9/0x180
[ 1491.499478][   T28]  schedule_preempt_disabled+0xf/0x20
[ 1491.535638][   T28]  __mutex_lock+0x562/0xaf0
[ 1491.540214][   T28]  ? __mutex_lock+0x3b2/0xaf0
[ 1491.544980][   T28]  ? synchronize_rcu_expedited+0x3c0/0x890
[ 1491.575756][   T28]  ? mutex_lock_nested+0x10/0x10
[ 1491.581763][   T28]  ? do_raw_spin_lock+0x128/0x2f0
[ 1491.586829][   T28]  ? __rwlock_init+0x140/0x140
[ 1491.616113][   T28]  ? do_raw_spin_unlock+0x11d/0x230
[ 1491.621499][   T28]  synchronize_rcu_expedited+0x3c0/0x890
[ 1491.627173][   T28]  ? synchronize_rcu+0x3f0/0x3f0
[ 1491.646601][   T28]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1491.679630][   T28]  ? lock_chain_count+0x20/0x20
[ 1491.684610][   T28]  ? namespace_unlock+0x1d7/0x430
[ 1491.689662][   T28]  ? __lock_acquire+0x7d10/0x7d10
[ 1491.715547][   T28]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1491.726041][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1491.746840][   T28]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1491.765581][   T28]  ? shrink_dentry_list+0x688/0x6a0
[ 1491.785229][   T28]  ? up_write+0x1bb/0x420
[ 1491.789626][   T28]  namespace_unlock+0x23f/0x430
[ 1491.825686][   T28]  ? put_mnt_ns+0xd6/0x120
[ 1491.830170][   T28]  ? umount_tree+0xe20/0xe20
[ 1491.860374][   T28]  ? umount_mnt+0x2c0/0x2c0
[ 1491.864951][   T28]  ? do_raw_spin_lock+0x128/0x2f0
[ 1491.870001][   T28]  ? free_nsproxy+0x49/0x3c0
[ 1491.882734][   T28]  ? do_raw_spin_unlock+0x11d/0x230
[ 1491.887997][   T28]  ? free_nsproxy+0x49/0x3c0
[ 1491.907499][   T28]  put_mnt_ns+0xdb/0x120
[ 1491.932482][   T28]  free_nsproxy+0x49/0x3c0
[ 1491.936980][   T28]  do_exit+0x97d/0x2480
[ 1491.967629][   T28]  ? put_task_struct+0x80/0x80
[ 1491.977465][   T28]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1492.020404][   T28]  ? lock_chain_count+0x20/0x20
[ 1492.025319][   T28]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1492.050420][   T28]  do_group_exit+0x217/0x2d0
[ 1492.055094][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1492.080252][   T28]  get_signal+0x1272/0x1350
[ 1492.084841][   T28]  arch_do_signal_or_restart+0xc4/0x1350
[ 1492.110248][   T28]  ? do_futex+0x310/0x320
[ 1492.114722][   T28]  ? __might_fault+0xc2/0x120
[ 1492.119484][   T28]  ? __might_fault+0xa6/0x120
[ 1492.150294][   T28]  ? get_sigframe_size+0x10/0x10
[ 1492.155444][   T28]  ? __ia32_sys_get_robust_list+0x100/0x100
[ 1492.171772][   T28]  ? __remove_hrtimer+0x470/0x470
[ 1492.180306][   T28]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1492.185828][   T28]  exit_to_user_mode_loop+0x70/0x110
[ 1492.210185][   T28]  exit_to_user_mode_prepare+0xee/0x180
[ 1492.215810][   T28]  syscall_exit_to_user_mode+0x16/0x40
[ 1492.230170][   T28]  do_syscall_64+0x58/0xa0
[ 1492.234649][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1492.239341][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1492.260244][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1492.266203][   T28] RIP: 0033:0x7fa12259c799
[ 1492.280218][   T28] RSP: 002b:00007fa1234480e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 1492.288688][   T28] RAX: fffffffffffffe00 RBX: 00007fa122816098 RCX: 00007fa12259c799
[ 1492.310334][   T28] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa122816098
[ 1492.318364][   T28] RBP: 00007fa122816090 R08: 0000000000000000 R09: 0000000000000000
[ 1492.340133][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1492.348168][   T28] R13: 00007fa122816128 R14: 00007ffd640c5c20 R15: 00007ffd640c5d08
[ 1492.380117][   T28]  </TASK>
[ 1492.383273][   T28] INFO: task syz.4.3906:19882 blocked for more than 147 seconds.
[ 1492.400157][   T28]       Not tainted syzkaller #0
[ 1492.405673][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1492.430207][   T28] task:syz.4.3906      state:D stack:25200 pid:19882 ppid:16979  flags:0x00004004
[ 1492.439478][   T28] Call Trace:
[ 1492.450089][   T28]  <TASK>
[ 1492.453070][   T28]  __schedule+0x11d1/0x40e0
[ 1492.457619][   T28]  ? __sched_text_start+0x8/0x8
[ 1492.475143][   T28]  schedule+0xb9/0x180
[ 1492.479290][   T28]  schedule_timeout+0xbd/0x2d0
[ 1492.500072][   T28]  ? console_conditional_schedule+0x40/0x40
[ 1492.506041][   T28]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1492.520073][   T28]  ? lock_chain_count+0x20/0x20
[ 1492.524983][   T28]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1492.540350][   T28]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1492.546188][   T28]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1492.562039][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1492.567321][   T28]  ? wait_for_completion+0x276/0x5a0
[ 1492.595054][   T28]  wait_for_completion+0x2c7/0x5a0
[ 1492.600561][   T28]  ? io_schedule+0xd0/0xd0
[ 1492.605003][   T28]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1492.629982][   T28]  ? debug_object_active_state+0x6a/0x380
[ 1492.635770][   T28]  __synchronize_srcu+0x2b9/0x350
[ 1492.660247][   T28]  ? synchronize_srcu_expedited+0x20/0x20
[ 1492.666157][   T28]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[ 1492.671874][   T28]  ? rcu_read_lock_any_held+0x130/0x130
[ 1492.677466][   T28]  ? __rwlock_init+0x140/0x140
[ 1492.699946][   T28]  ? do_raw_spin_unlock+0x11d/0x230
[ 1492.705213][   T28]  kvm_swap_active_memslots+0x2df/0x3c0
[ 1492.754971][   T28]  kvm_set_memslot+0x58a/0xf90
[ 1492.759936][   T28]  __kvm_set_memory_region+0x7e0/0x9b0
[ 1492.765437][   T28]  ? __might_fault+0xa6/0x120
[ 1492.789900][   T28]  kvm_vm_ioctl_set_memory_region+0x6f/0xa0
[ 1492.795856][   T28]  kvm_vm_ioctl+0x8fe/0xb30
[ 1492.805550][   T28]  ? kvm_device_release+0x1f0/0x1f0
[ 1492.810812][   T28]  ? __kmem_cache_free+0xb6/0x1f0
[ 1492.815963][   T28]  ? tomoyo_path_number_perm+0x205/0x650
[ 1492.855236][   T28]  ? tomoyo_path_number_perm+0x5a4/0x650
[ 1492.860963][   T28]  ? tomoyo_path_number_perm+0x205/0x650
[ 1492.866657][   T28]  ? __fget_files+0x28/0x4b0
[ 1492.895455][   T28]  ? __fget_files+0x28/0x4b0
[ 1492.900199][   T28]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 1492.905241][   T28]  ? security_file_ioctl+0x7c/0xa0
[ 1492.929836][   T28]  ? kvm_device_release+0x1f0/0x1f0
[ 1492.935111][   T28]  __se_sys_ioctl+0xfa/0x170
[ 1492.939729][   T28]  do_syscall_64+0x4c/0xa0
[ 1492.970053][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1492.974802][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1492.979506][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1493.014891][   T28] RIP: 0033:0x7f11f919c799
[ 1493.019373][   T28] RSP: 002b:00007f11f9fd7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1493.044870][   T28] RAX: ffffffffffffffda RBX: 00007f11f9416180 RCX: 00007f11f919c799
[ 1493.065022][   T28] RDX: 0000200000000400 RSI: 000000004020ae46 RDI: 0000000000000004
[ 1493.094716][   T28] RBP: 00007f11f9232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1493.109742][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1493.117880][   T28] R13: 00007f11f9416218 R14: 00007f11f9416180 R15: 00007ffc340de738
[ 1493.169723][   T28]  </TASK>
[ 1493.172805][   T28] INFO: task syz.0.3909:19898 blocked for more than 147 seconds.
[ 1493.199692][   T28]       Not tainted syzkaller #0
[ 1493.204687][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1493.239671][   T28] task:syz.0.3909      state:D stack:25136 pid:19898 ppid:16617  flags:0x00004004
[ 1493.249081][   T28] Call Trace:
[ 1493.270022][   T28]  <TASK>
[ 1493.273013][   T28]  __schedule+0x11d1/0x40e0
[ 1493.277560][   T28]  ? __sched_text_start+0x8/0x8
[ 1493.289660][   T28]  schedule+0xb9/0x180
[ 1493.293789][   T28]  schedule_timeout+0xbd/0x2d0
[ 1493.298575][   T28]  ? console_conditional_schedule+0x40/0x40
[ 1493.329625][   T28]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1493.335685][   T28]  ? lock_chain_count+0x20/0x20
[ 1493.369625][   T28]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1493.374718][   T28]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1493.409687][   T28]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1493.414960][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1493.442678][   T28]  ? wait_for_completion+0x276/0x5a0
[ 1493.448044][   T28]  wait_for_completion+0x2c7/0x5a0
[ 1493.482617][   T28]  ? io_schedule+0xd0/0xd0
[ 1493.487196][   T28]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1493.519571][   T28]  ? debug_object_active_state+0x6a/0x380
[ 1493.525372][   T28]  __synchronize_srcu+0x2b9/0x350
[ 1493.549549][   T28]  ? synchronize_srcu_expedited+0x20/0x20
[ 1493.555343][   T28]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[ 1493.589525][   T28]  ? rcu_read_lock_any_held+0x130/0x130
[ 1493.595156][   T28]  ? __rwlock_init+0x140/0x140
[ 1493.622499][   T28]  ? do_raw_spin_unlock+0x11d/0x230
[ 1493.627777][   T28]  kvm_swap_active_memslots+0x2df/0x3c0
[ 1493.671643][   T28]  kvm_set_memslot+0x58a/0xf90
[ 1493.676488][   T28]  __kvm_set_memory_region+0x7e0/0x9b0
[ 1493.702146][   T28]  ? __might_fault+0xa6/0x120
[ 1493.706906][   T28]  kvm_vm_ioctl_set_memory_region+0x6f/0xa0
[ 1493.725549][   T28]  kvm_vm_ioctl+0x8fe/0xb30
[ 1493.744869][   T28]  ? kvm_device_release+0x1f0/0x1f0
[ 1493.759408][   T28]  ? __kmem_cache_free+0xb6/0x1f0
[ 1493.764496][   T28]  ? tomoyo_path_number_perm+0x205/0x650
[ 1493.791771][   T28]  ? tomoyo_path_number_perm+0x5a4/0x650
[ 1493.797482][   T28]  ? tomoyo_path_number_perm+0x205/0x650
[ 1493.842376][   T28]  ? __fget_files+0x28/0x4b0
[ 1493.847037][   T28]  ? __fget_files+0x28/0x4b0
[ 1493.882411][   T28]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 1493.887503][   T28]  ? security_file_ioctl+0x7c/0xa0
[ 1493.919439][   T28]  ? kvm_device_release+0x1f0/0x1f0
[ 1493.924708][   T28]  __se_sys_ioctl+0xfa/0x170
[ 1493.939425][   T28]  do_syscall_64+0x4c/0xa0
[ 1493.943904][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1493.948602][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1493.969387][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1493.975351][   T28] RIP: 0033:0x7fef8319c799
[ 1493.989295][   T28] RSP: 002b:00007fef84047028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1493.997776][   T28] RAX: ffffffffffffffda RBX: 00007fef83416090 RCX: 00007fef8319c799
[ 1494.029354][   T28] RDX: 0000200000000400 RSI: 000000004020ae46 RDI: 0000000000000004
[ 1494.037495][   T28] RBP: 00007fef83232c99 R08: 0000000000000000 R09: 0000000000000000
[ 1494.059352][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1494.067406][   T28] R13: 00007fef83416128 R14: 00007fef83416090 R15: 00007ffefeccdb18
[ 1494.089260][   T28]  </TASK>
[ 1494.099300][   T28] INFO: task syz.3.3910:19897 blocked for more than 148 seconds.
[ 1494.107226][   T28]       Not tainted syzkaller #0
[ 1494.119226][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1494.127948][   T28] task:syz.3.3910      state:D stack:26224 pid:19897 ppid:15728  flags:0x00004004
[ 1494.159231][   T28] Call Trace:
[ 1494.164689][   T28]  <TASK>
[ 1494.167638][   T28]  __schedule+0x11d1/0x40e0
[ 1494.192387][   T28]  ? __sched_text_start+0x8/0x8
[ 1494.197310][   T28]  ? wq_worker_last_func+0x40/0x40
[ 1494.224331][   T28]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1494.230374][   T28]  ? prepare_to_wait_event+0x430/0x470
[ 1494.235878][   T28]  schedule+0xb9/0x180
[ 1494.264326][   T28]  synchronize_rcu_expedited+0x6e6/0x890
[ 1494.270076][   T28]  ? synchronize_rcu+0x3f0/0x3f0
[ 1494.275046][   T28]  ? verify_lock_unused+0x140/0x140
[ 1494.304515][   T28]  ? sync_rcu_exp_done_unlocked+0x140/0x140
[ 1494.324277][   T28]  ? wake_bit_function+0x200/0x200
[ 1494.344212][   T28]  synchronize_rcu+0x128/0x3f0
[ 1494.349091][   T28]  ? schedule_delayed_monitor_work+0x160/0x160
[ 1494.355368][   T28]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[ 1494.377053][   T28]  ? __might_sleep+0xd0/0xd0
[ 1494.399128][   T28]  ? mutex_unlock+0x10/0x10
[ 1494.403696][   T28]  ? __local_bh_enable_ip+0x136/0x1c0
[ 1494.434271][   T28]  ? _local_bh_enable+0xa0/0xa0
[ 1494.439284][   T28]  packet_release+0x96b/0xc00
[ 1494.444017][   T28]  sock_close+0xd5/0x240
[ 1494.448344][   T28]  ? sock_mmap+0x90/0x90
[ 1494.474235][   T28]  __fput+0x22c/0x920
[ 1494.478305][   T28]  task_work_run+0x1d0/0x260
[ 1494.494151][   T28]  ? task_work_cancel+0x220/0x220
[ 1494.499294][   T28]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1494.504790][   T28]  exit_to_user_mode_loop+0xe6/0x110
[ 1494.534178][   T28]  exit_to_user_mode_prepare+0xee/0x180
[ 1494.549017][   T28]  syscall_exit_to_user_mode+0x16/0x40
[ 1494.554719][   T28]  do_syscall_64+0x58/0xa0
[ 1494.584253][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1494.589040][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1494.593784][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1494.625669][   T28] RIP: 0033:0x7fce67b9c799
[ 1494.630185][   T28] RSP: 002b:00007ffc250abf88 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1494.638642][   T28] RAX: 0000000000000000 RBX: 00007ffc250ac070 RCX: 00007fce67b9c799
[ 1494.668952][   T28] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1494.677069][   T28] RBP: 0000000000144442 R08: 0000000000000001 R09: 0000000000000000
[ 1494.714065][   T28] R10: 0000001b32d20000 R11: 0000000000000246 R12: 00007ffc250ac0b0
[ 1494.734002][   T28] R13: 00007fce67e15fac R14: 00000000001444ca R15: 00007fce67e15fa0
[ 1494.748926][   T28]  </TASK>
[ 1494.752049][   T28] INFO: task syz.2.3911:19900 blocked for more than 149 seconds.
[ 1494.778903][   T28]       Not tainted syzkaller #0
[ 1494.787794][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1494.808882][   T28] task:syz.2.3911      state:D stack:26224 pid:19900 ppid:16351  flags:0x00004004
[ 1494.818160][   T28] Call Trace:
[ 1494.843890][   T28]  <TASK>
[ 1494.846879][   T28]  __schedule+0x11d1/0x40e0
[ 1494.851455][   T28]  ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 1494.857376][   T28]  ? __sched_text_start+0x8/0x8
[ 1494.883936][   T28]  ? do_raw_spin_lock+0x128/0x2f0
[ 1494.889106][   T28]  ? prepare_to_wait_event+0x430/0x470
[ 1494.894595][   T28]  schedule+0xb9/0x180
[ 1494.898687][   T28]  synchronize_rcu_expedited+0x7ad/0x890
[ 1494.932950][   T28]  ? synchronize_rcu+0x3f0/0x3f0
[ 1494.937970][   T28]  ? wake_bit_function+0x200/0x200
[ 1494.962196][   T28]  ? __might_sleep+0xd0/0xd0
[ 1494.966849][   T28]  ? __mutex_lock+0x1ab/0xaf0
[ 1494.986236][   T28]  __tun_detach+0x81f/0x1500
[ 1495.008805][   T28]  tun_chr_close+0x109/0x1b0
[ 1495.013469][   T28]  ? tun_chr_open+0x4d0/0x4d0
[ 1495.018170][   T28]  __fput+0x22c/0x920
[ 1495.038785][   T28]  task_work_run+0x1d0/0x260
[ 1495.043613][   T28]  ? task_work_cancel+0x220/0x220
[ 1495.048671][   T28]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1495.054721][   T28]  exit_to_user_mode_loop+0xe6/0x110
[ 1495.060120][   T28]  exit_to_user_mode_prepare+0xee/0x180
[ 1495.065695][   T28]  syscall_exit_to_user_mode+0x16/0x40
[ 1495.098833][   T28]  do_syscall_64+0x58/0xa0
[ 1495.103324][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1495.108101][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1495.148749][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1495.154806][   T28] RIP: 0033:0x7f19d959c799
[ 1495.159743][   T28] RSP: 002b:00007ffd10686e08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1495.168535][   T28] RAX: 0000000000000000 RBX: 00007ffd10686ef0 RCX: 00007f19d959c799
[ 1495.188771][   T28] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1495.196799][   T28] RBP: 000000000014493a R08: 0000000000000001 R09: 0000000000000000
[ 1495.228672][   T28] R10: 0000001b31a20000 R11: 0000000000000246 R12: 00007ffd10686f30
[ 1495.236711][   T28] R13: 00007f19d9815fac R14: 000000000014497a R15: 00007f19d9815fa0
[ 1495.269061][   T28]  </TASK>
[ 1495.272209][   T28] INFO: task syz-executor:19903 blocked for more than 150 seconds.
[ 1495.288672][   T28]       Not tainted syzkaller #0
[ 1495.298705][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1495.307397][   T28] task:syz-executor    state:D stack:25424 pid:19903 ppid:1      flags:0x00004004
[ 1495.363661][   T28] Call Trace:
[ 1495.366997][   T28]  <TASK>
[ 1495.370088][   T28]  __schedule+0x11d1/0x40e0
[ 1495.374643][   T28]  ? __sched_text_start+0x8/0x8
[ 1495.388593][   T28]  ? __mutex_trylock_common+0x86/0x260
[ 1495.394130][   T28]  ? trace_raw_output_contention_end+0xd0/0xd0
[ 1495.418589][   T28]  schedule+0xb9/0x180
[ 1495.422737][   T28]  schedule_preempt_disabled+0xf/0x20
[ 1495.428231][   T28]  __mutex_lock+0x562/0xaf0
[ 1495.448569][   T28]  ? __mutex_lock+0x3b2/0xaf0
[ 1495.453401][   T28]  ? rtnetlink_rcv_msg+0x824/0xfc0
[ 1495.458652][   T28]  ? mutex_lock_nested+0x10/0x10
[ 1495.463630][   T28]  ? rtnetlink_rcv_msg+0x226/0xfc0
[ 1495.478636][   T28]  rtnetlink_rcv_msg+0x824/0xfc0
[ 1495.483640][   T28]  ? rtnetlink_bind+0x80/0x80
[ 1495.488336][   T28]  ? mark_lock+0x94/0x320
[ 1495.523635][   T28]  ? __lock_acquire+0x12f4/0x7d10
[ 1495.528790][   T28]  ? verify_lock_unused+0x140/0x140
[ 1495.534025][   T28]  ? netlink_sendmsg+0x654/0xbd0
[ 1495.558535][   T28]  ? verify_lock_unused+0x140/0x140
[ 1495.563834][   T28]  netlink_rcv_skb+0x1fb/0x450
[ 1495.586890][   T28]  ? rtnetlink_bind+0x80/0x80
[ 1495.597634][   T28]  ? netlink_ack+0x1170/0x1170
[ 1495.604914][   T28]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1495.622802][   T28]  netlink_unicast+0x74d/0x8d0
[ 1495.627649][   T28]  netlink_sendmsg+0x8ad/0xbd0
[ 1495.647300][   T28]  ? netlink_getsockopt+0x550/0x550
[ 1495.657713][   T28]  ? aa_sock_msg_perm+0x94/0x150
[ 1495.664491][   T28]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[ 1495.675232][   T28]  ? security_socket_sendmsg+0x7c/0xa0
[ 1495.681018][   T28]  __sys_sendto+0x497/0x650
[ 1495.685635][   T28]  ? __ia32_sys_getpeername+0x80/0x80
[ 1495.696214][   T28]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1495.702474][   T28]  ? lock_chain_count+0x20/0x20
[ 1495.707383][   T28]  __x64_sys_sendto+0xda/0xf0
[ 1495.717172][   T28]  do_syscall_64+0x4c/0xa0
[ 1495.721873][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1495.726689][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1495.736914][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1495.743694][   T28] RIP: 0033:0x7f70dbb5cfce
[ 1495.748143][   T28] RSP: 002b:00007fff86ec4ad8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1495.761789][   T28] RAX: ffffffffffffffda RBX: 000055555bad5500 RCX: 00007f70dbb5cfce
[ 1495.770997][   T28] RDX: 0000000000000028 RSI: 00007f70dc944670 RDI: 0000000000000003
[ 1495.783272][   T28] RBP: 0000000000000001 R08: 00007fff86ec4b54 R09: 000000000000000c
[ 1495.792466][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[ 1495.804498][   T28] R13: 0000000000000000 R14: 00007f70dc944670 R15: 0000000000000000
[ 1495.813873][   T28]  </TASK>
[ 1495.816946][   T28] 
[ 1495.816946][   T28] Showing all locks held in the system:
[ 1495.836116][   T28] 1 lock held by rcu_tasks_kthre/12:
[ 1495.841804][   T28]  #0: ffffffff8cb2dfb0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[ 1495.857394][   T28] 1 lock held by rcu_tasks_trace/13:
[ 1495.862911][   T28]  #0: ffffffff8cb2e7d0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[ 1495.879435][   T28] 3 locks held by kworker/1:1/27:
[ 1495.884491][   T28]  #0: ffff88814cf20138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1495.899861][   T28]  #1: ffffc90000a3fd00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1495.916409][   T28]  #2: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x15/0x30
[ 1495.928411][   T28] 1 lock held by khungtaskd/28:
[ 1495.933286][   T28]  #0: ffffffff8cb2d620 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[ 1495.947448][   T28] 2 locks held by kworker/u4:4/56:
[ 1495.953951][   T28]  #0: ffff888017479138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1495.969652][   T28]  #1: ffffc90001577d00 ((reaper_work).work){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1495.982949][   T28] 2 locks held by klogd/3626:
[ 1495.987763][   T28] 2 locks held by getty/4024:
[ 1495.994623][   T28]  #0: ffff88802faa2098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[ 1496.007736][   T28]  #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x429/0x1390
[ 1496.020171][   T28] 2 locks held by kworker/u4:1/10120:
[ 1496.025756][   T28]  #0: ffff888017479138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1496.039818][   T28]  #1: ffffc90004f7fd00 (connector_reaper_work){+.+.}-{0:0}, at: process_one_work+0x7b0/0x1160
[ 1496.057445][   T28] 5 locks held by kworker/0:1/13774:
[ 1496.074633][   T28] 4 locks held by udevd/16201:
[ 1496.088116][   T28]  #0: ffff88807e4b80a0 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0xad/0xd50
[ 1496.111937][   T28]  #1: ffff8880780f1c88 (&of->mutex){+.+.}-{3:3}, at: kernfs_seq_start+0x58/0x410
[ 1496.136980][   T28]  #2: ffff8880595cf1d8 (kn->active#5){++++}-{0:0}, at: kernfs_seq_start+0xae/0x410
[ 1496.162028][   T28]  #3: ffff88807610b190 (&dev->mutex){....}-{3:3}, at: uevent_show+0x16c/0x320
[ 1496.183778][   T28] 1 lock held by syz.1.3901/19854:
[ 1496.201765][   T28]  #0: ffffffff8cb332f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x3c0/0x890
[ 1496.233034][   T28] 1 lock held by syz.4.3906/19882:
[ 1496.242797][   T28]  #0: ffffc90004d690a8 (&kvm->slots_lock){+.+.}-{3:3}, at: kvm_vm_ioctl_set_memory_region+0x64/0xa0
[ 1496.276127][   T28] 1 lock held by syz.0.3909/19898:
[ 1496.281321][   T28]  #0: ffffc90004e1b0a8 (&kvm->slots_lock){+.+.}-{3:3}, at: kvm_vm_ioctl_set_memory_region+0x64/0xa0
[ 1496.317602][   T28] 2 locks held by syz.3.3910/19897:
[ 1496.322916][   T28]  #0: ffff8880548b8810 (&sb->s_type->i_mutex_key#11){+.+.}-{3:3}, at: sock_close+0x90/0x240
[ 1496.356332][   T28]  #1: ffffffff8cb332f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x2ec/0x890
[ 1496.384511][   T28] 1 lock held by syz.2.3911/19900:
[ 1496.399731][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3d/0x1b0
[ 1496.424069][   T28] 1 lock held by syz-executor/19903:
[ 1496.439503][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.473331][   T28] 1 lock held by syz-executor/19907:
[ 1496.478714][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.513449][   T28] 1 lock held by syz-executor/19908:
[ 1496.526454][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.551096][   T28] 1 lock held by syz-executor/19914:
[ 1496.556433][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.585793][   T28] 1 lock held by syz-executor/19917:
[ 1496.601297][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.626594][   T28] 1 lock held by dhcpcd/19919:
[ 1496.641697][   T28]  #0: ffff88807ca6e130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xce0
[ 1496.673029][   T28] 1 lock held by dhcpcd/19920:
[ 1496.677857][   T28]  #0: ffff88804e766130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xce0
[ 1496.707363][   T28] 1 lock held by dhcpcd/19921:
[ 1496.721136][   T28]  #0: ffff88807de48130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xce0
[ 1496.745839][   T28] 1 lock held by dhcpcd/19922:
[ 1496.763596][   T28]  #0: ffff88801a3be130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xce0
[ 1496.789579][   T28] 1 lock held by syz-executor/19928:
[ 1496.794922][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.824197][   T28] 1 lock held by syz-executor/19930:
[ 1496.842062][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.866762][   T28] 1 lock held by syz-executor/19932:
[ 1496.902911][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.932331][   T28] 1 lock held by syz-executor/19934:
[ 1496.937667][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1496.985503][   T28] 1 lock held by syz-executor/19936:
[ 1497.003529][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1497.032055][   T28] 1 lock held by syz-executor/19940:
[ 1497.037396][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1497.066675][   T28] 1 lock held by syz-executor/19945:
[ 1497.084680][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1497.110869][   T28] 1 lock held by syz-executor/19947:
[ 1497.116384][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1497.150375][   T28] 1 lock held by syz-executor/19949:
[ 1497.155714][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1497.185388][   T28] 1 lock held by syz-executor/19950:
[ 1497.201011][   T28]  #0: ffffffff8dd469e8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x824/0xfc0
[ 1497.225711][   T28] 
[ 1497.235672][   T28] =============================================
[ 1497.235672][   T28] 
[ 1497.258360][   T28] NMI backtrace for cpu 1
[ 1497.262735][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted syzkaller #0
[ 1497.269962][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1497.280033][   T28] Call Trace:
[ 1497.283319][   T28]  <TASK>
[ 1497.286436][   T28]  dump_stack_lvl+0x188/0x24e
[ 1497.291128][   T28]  ? preempt_schedule_thunk+0x16/0x18
[ 1497.296524][   T28]  ? show_regs_print_info+0x12/0x12
[ 1497.301742][   T28]  ? load_image+0x400/0x400
[ 1497.306265][   T28]  ? vprintk_emit+0x59f/0x6a0
[ 1497.310965][   T28]  ? printk_sprint+0x460/0x460
[ 1497.315748][   T28]  nmi_cpu_backtrace+0x3e6/0x460
[ 1497.320740][   T28]  ? nmi_trigger_cpumask_backtrace+0x450/0x450
[ 1497.326912][   T28]  ? _printk+0xda/0x130
[ 1497.331077][   T28]  ? load_image+0x400/0x400
[ 1497.335594][   T28]  ? load_image+0x400/0x400
[ 1497.340109][   T28]  ? nmi_trigger_cpumask_backtrace+0xf3/0x450
[ 1497.346192][   T28]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 1497.352348][   T28]  nmi_trigger_cpumask_backtrace+0x1d4/0x450
[ 1497.358350][   T28]  watchdog+0xeee/0xf30
[ 1497.362732][   T28]  ? watchdog+0x1ed/0xf30
[ 1497.367087][   T28]  kthread+0x29d/0x330
[ 1497.371161][   T28]  ? hungtask_pm_notify+0x40/0x40
[ 1497.376205][   T28]  ? kthread_blkcg+0xd0/0xd0
[ 1497.380806][   T28]  ret_from_fork+0x1f/0x30
[ 1497.385247][   T28]  </TASK>
[ 1497.388595][   T28] Sending NMI from CPU 1 to CPUs 0:
[ 1497.393823][    C0] NMI backtrace for cpu 0
[ 1497.393835][    C0] CPU: 0 PID: 13774 Comm: kworker/0:1 Not tainted syzkaller #0
[ 1497.393850][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1497.393860][    C0] Workqueue: usb_hub_wq hub_event
[ 1497.393882][    C0] RIP: 0010:unwind_next_frame+0x65/0x20b0
[ 1497.393925][    C0] Code: 9a 00 4c 8b 63 48 4c 8d 7b 38 4c 89 f8 48 c1 e8 03 48 89 44 24 50 42 80 3c 30 00 74 08 4c 89 ff e8 70 44 9a 00 4c 89 7c 24 58 <4c> 8b 6b 38 49 89 df 49 c1 ef 03 43 0f b6 04 37 84 c0 0f 85 a0 19
[ 1497.393937][    C0] RSP: 0018:ffffc90000007450 EFLAGS: 00000046
[ 1497.393950][    C0] RAX: 1ffff92000000eac RBX: ffffc90000007528 RCX: 0000000080000100
[ 1497.393962][    C0] RDX: dffffc0000000000 RSI: ffffffff8511fada RDI: ffffc90000007528
[ 1497.393973][    C0] RBP: ffffc90000007570 R08: ffffc900000075f0 R09: 000000000000001d
[ 1497.393984][    C0] R10: dffffc0000000000 R11: fffff52000000eb1 R12: ffffffff8511fada
[ 1497.393995][    C0] R13: ffffc90000007940 R14: dffffc0000000000 R15: ffffc90000007560
[ 1497.394006][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1497.394025][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1497.394035][    C0] CR2: 000055d82af8a000 CR3: 000000002eac4000 CR4: 00000000003526f0
[ 1497.394049][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1497.394057][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1497.394067][    C0] Call Trace:
[ 1497.394072][    C0]  <IRQ>
[ 1497.394082][    C0]  ? usb_probe_interface+0x5c5/0xb20
[ 1497.394152][    C0]  ? really_probe+0x2aa/0xc70
[ 1497.394171][    C0]  ? stack_trace_save+0xf0/0xf0
[ 1497.394188][    C0]  arch_stack_walk+0x10c/0x140
[ 1497.394243][    C0]  ? usb_register_driver+0x3d0/0x3d0
[ 1497.394257][    C0]  ? really_probe+0x2aa/0xc70
[ 1497.394275][    C0]  stack_trace_save+0xa6/0xf0
[ 1497.394291][    C0]  ? stack_trace_snprint+0xf0/0xf0
[ 1497.394308][    C0]  ? hrtimer_run_softirq+0x183/0x2a0
[ 1497.394326][    C0]  kasan_set_track+0x4b/0x70
[ 1497.394372][    C0]  ? kasan_set_track+0x4b/0x70
[ 1497.394387][    C0]  ? kasan_save_free_info+0x2d/0x50
[ 1497.394400][    C0]  ? ____kasan_slab_free+0x126/0x1e0
[ 1497.394416][    C0]  ? slab_free_freelist_hook+0x131/0x1a0
[ 1497.394431][    C0]  ? __kmem_cache_free+0xb6/0x1f0
[ 1497.394445][    C0]  ? dummy_timer+0xb7d/0x3090
[ 1497.394483][    C0]  ? __hrtimer_run_queues+0x54a/0xd50
[ 1497.394497][    C0]  ? hrtimer_run_softirq+0x183/0x2a0
[ 1497.394512][    C0]  ? handle_softirqs+0x2a1/0x930
[ 1497.394525][    C0]  ? __irq_exit_rcu+0x13b/0x230
[ 1497.394538][    C0]  ? irq_exit_rcu+0x5/0x20
[ 1497.394550][    C0]  ? sysvec_apic_timer_interrupt+0xa0/0xc0
[ 1497.394565][    C0]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1497.394582][    C0]  ? kasan_check_range+0x84/0x290
[ 1497.394599][    C0]  ? zone_watermark_fast+0x41/0x240
[ 1497.394622][    C0]  ? get_page_from_freelist+0x3c6/0x1ab0
[ 1497.394639][    C0]  ? __alloc_pages+0x1ec/0x4f0
[ 1497.394656][    C0]  ? alloc_slab_page+0x5d/0x160
[ 1497.394671][    C0]  ? new_slab+0x87/0x2c0
[ 1497.394684][    C0]  ? ___slab_alloc+0xbc6/0x1240
[ 1497.394698][    C0]  ? __kmem_cache_alloc_node+0x1a0/0x260
[ 1497.394712][    C0]  ? __kmalloc_node_track_caller+0x9e/0x230
[ 1497.394758][    C0]  ? __alloc_skb+0x22a/0x7e0
[ 1497.394783][    C0]  ? __netdev_alloc_skb+0x114/0x4f0
[ 1497.394799][    C0]  ? ath6kl_usb_post_recv_transfers+0x207/0x6f0
[ 1497.394861][    C0]  ? ath6kl_usb_power_on+0x66/0x280
[ 1497.394875][    C0]  ? ath6kl_core_init+0x1d6/0x1090
[ 1497.394889][    C0]  ? ath6kl_usb_probe+0x144a/0x1540
[ 1497.394903][    C0]  ? usb_probe_interface+0x5c5/0xb20
[ 1497.394917][    C0]  ? really_probe+0x2aa/0xc70
[ 1497.394946][    C0]  ? __kmem_cache_free+0xb6/0x1f0
[ 1497.394959][    C0]  kasan_save_free_info+0x2d/0x50
[ 1497.394973][    C0]  ____kasan_slab_free+0x126/0x1e0
[ 1497.394991][    C0]  slab_free_freelist_hook+0x131/0x1a0
[ 1497.395009][    C0]  ? dummy_timer+0xb7d/0x3090
[ 1497.395028][    C0]  __kmem_cache_free+0xb6/0x1f0
[ 1497.395045][    C0]  dummy_timer+0xb7d/0x3090
[ 1497.395070][    C0]  ? mark_lock+0x94/0x320
[ 1497.395092][    C0]  ? lock_chain_count+0x20/0x20
[ 1497.395114][    C0]  ? dummy_free_streams+0x530/0x530
[ 1497.395132][    C0]  __hrtimer_run_queues+0x54a/0xd50
[ 1497.395150][    C0]  ? dummy_free_streams+0x530/0x530
[ 1497.395168][    C0]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 1497.395183][    C0]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[ 1497.395229][    C0]  hrtimer_run_softirq+0x183/0x2a0
[ 1497.395246][    C0]  handle_softirqs+0x2a1/0x930
[ 1497.395263][    C0]  ? __irq_exit_rcu+0x13b/0x230
[ 1497.395279][    C0]  ? do_softirq+0x210/0x210
[ 1497.395296][    C0]  __irq_exit_rcu+0x13b/0x230
[ 1497.395310][    C0]  ? irq_exit_rcu+0x20/0x20
[ 1497.395328][    C0]  irq_exit_rcu+0x5/0x20
[ 1497.395340][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[ 1497.395354][    C0]  </IRQ>
[ 1497.395359][    C0]  <TASK>
[ 1497.395364][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1497.395381][    C0] RIP: 0010:kasan_check_range+0x84/0x290
[ 1497.395399][    C0] Code: 49 c1 e9 03 4b 8d 1c 21 49 89 df 4d 29 df 49 83 ff 10 7f 29 4d 85 ff 0f 84 38 01 00 00 4c 89 cb 48 f7 d3 4c 01 f3 41 80 3b 00 <0f> 85 86 01 00 00 49 ff c3 48 ff c3 75 ee e9 18 01 00 00 44 89 dd
[ 1497.395410][    C0] RSP: 0018:ffffc9000c36e658 EFLAGS: 00000246
[ 1497.395423][    C0] RAX: 0000000000000001 RBX: ffffffffffffffff RCX: ffffffff81c80fe1
[ 1497.395433][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88813fffb440
[ 1497.395442][    C0] RBP: 0000000000000901 R08: ffff88813fffb447 R09: 1ffff11027fff688
[ 1497.395453][    C0] R10: dffffc0000000000 R11: ffffed1027fff688 R12: dffffc0000000001
[ 1497.395464][    C0] R13: 0000000000000003 R14: 1ffff11027fff688 R15: 0000000000000001
[ 1497.395478][    C0]  ? zone_watermark_fast+0x41/0x240
[ 1497.395500][    C0]  zone_watermark_fast+0x41/0x240
[ 1497.395520][    C0]  get_page_from_freelist+0x3c6/0x1ab0
[ 1497.395540][    C0]  ? ret_from_fork+0x1f/0x30
[ 1497.395559][    C0]  ? verify_lock_unused+0x140/0x140
[ 1497.395579][    C0]  ? __next_zones_zonelist+0x99/0x120
[ 1497.395599][    C0]  __alloc_pages+0x1ec/0x4f0
[ 1497.395617][    C0]  ? zone_statistics+0x170/0x170
[ 1497.395639][    C0]  ? alloc_pages+0x4d8/0x740
[ 1497.395680][    C0]  ? lock_chain_count+0x20/0x20
[ 1497.395699][    C0]  alloc_slab_page+0x5d/0x160
[ 1497.395715][    C0]  new_slab+0x87/0x2c0
[ 1497.395731][    C0]  ___slab_alloc+0xbc6/0x1240
[ 1497.395747][    C0]  ? __netdev_alloc_skb+0x114/0x4f0
[ 1497.395765][    C0]  ? __netdev_alloc_skb+0x114/0x4f0
[ 1497.395783][    C0]  __kmem_cache_alloc_node+0x1a0/0x260
[ 1497.395800][    C0]  ? __netdev_alloc_skb+0x114/0x4f0
[ 1497.395816][    C0]  __kmalloc_node_track_caller+0x9e/0x230
[ 1497.395836][    C0]  ? __netdev_alloc_skb+0x114/0x4f0
[ 1497.395852][    C0]  __alloc_skb+0x22a/0x7e0
[ 1497.395871][    C0]  __netdev_alloc_skb+0x114/0x4f0
[ 1497.395889][    C0]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1497.395903][    C0]  ? __alloc_skb+0x7e0/0x7e0
[ 1497.395919][    C0]  ? usb_hcd_submit_urb+0x32c/0x19c0
[ 1497.395942][    C0]  ath6kl_usb_post_recv_transfers+0x207/0x6f0
[ 1497.395965][    C0]  ath6kl_usb_power_on+0x66/0x280
[ 1497.395981][    C0]  ath6kl_core_init+0x1d6/0x1090
[ 1497.395996][    C0]  ? free_zapped_rcu+0x1f0/0x1f0
[ 1497.396022][    C0]  ? ath6kl_core_rx_complete+0x70/0x70
[ 1497.396036][    C0]  ? ath6kl_core_create+0x7d6/0x980
[ 1497.396051][    C0]  ? memcpy+0x3c/0x60
[ 1497.396064][    C0]  ? ath6kl_core_create+0x7d6/0x980
[ 1497.396080][    C0]  ath6kl_usb_probe+0x144a/0x1540
[ 1497.396103][    C0]  usb_probe_interface+0x5c5/0xb20
[ 1497.396123][    C0]  ? usb_register_driver+0x3d0/0x3d0
[ 1497.396137][    C0]  really_probe+0x2aa/0xc70
[ 1497.396155][    C0]  ? pm_runtime_barrier+0x147/0x1c0
[ 1497.396218][    C0]  __driver_probe_device+0x18c/0x330
[ 1497.396235][    C0]  driver_probe_device+0x4f/0x420
[ 1497.396253][    C0]  __device_attach_driver+0x2c6/0x510
[ 1497.396269][    C0]  ? coredump_store+0x90/0x90
[ 1497.396286][    C0]  bus_for_each_drv+0x184/0x210
[ 1497.396301][    C0]  ? coredump_store+0x90/0x90
[ 1497.396316][    C0]  ? subsys_find_device_by_id+0x360/0x360
[ 1497.396336][    C0]  __device_attach+0x2a8/0x480
[ 1497.396353][    C0]  ? device_attach+0x20/0x20
[ 1497.396370][    C0]  ? kobject_uevent_env+0x35f/0x8a0
[ 1497.396388][    C0]  bus_probe_device+0xbc/0x1e0
[ 1497.396402][    C0]  ? device_add+0x97c/0xfb0
[ 1497.396444][    C0]  device_add+0xa00/0xfb0
[ 1497.396466][    C0]  usb_set_configuration+0x1991/0x1fd0
[ 1497.396493][    C0]  usb_generic_driver_probe+0x89/0x150
[ 1497.396509][    C0]  usb_probe_device+0x139/0x270
[ 1497.396525][    C0]  ? usb_register_device_driver+0x230/0x230
[ 1497.396540][    C0]  really_probe+0x2aa/0xc70
[ 1497.396557][    C0]  ? pm_runtime_barrier+0x147/0x1c0
[ 1497.396573][    C0]  __driver_probe_device+0x18c/0x330
[ 1497.396591][    C0]  driver_probe_device+0x4f/0x420
[ 1497.396609][    C0]  __device_attach_driver+0x2c6/0x510
[ 1497.396625][    C0]  ? coredump_store+0x90/0x90
[ 1497.396641][    C0]  bus_for_each_drv+0x184/0x210
[ 1497.396656][    C0]  ? coredump_store+0x90/0x90
[ 1497.396672][    C0]  ? subsys_find_device_by_id+0x360/0x360
[ 1497.396691][    C0]  __device_attach+0x2a8/0x480
[ 1497.396709][    C0]  ? device_attach+0x20/0x20
[ 1497.396723][    C0]  ? __kmem_cache_free+0xb6/0x1f0
[ 1497.396740][    C0]  ? kobject_uevent_env+0x35f/0x8a0
[ 1497.396756][    C0]  bus_probe_device+0xbc/0x1e0
[ 1497.396769][    C0]  ? device_add+0x97c/0xfb0
[ 1497.396788][    C0]  device_add+0xa00/0xfb0
[ 1497.396810][    C0]  usb_new_device+0xd66/0x1650
[ 1497.396831][    C0]  ? lock_chain_count+0x20/0x20
[ 1497.396848][    C0]  ? usb_disconnect+0x8a0/0x8a0
[ 1497.396865][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1497.396879][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[ 1497.396894][    C0]  hub_event+0x2dcf/0x5560
[ 1497.396932][    C0]  ? hub_post_resume+0x120/0x120
[ 1497.396949][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 1497.396966][    C0]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1497.396981][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 1497.396996][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1497.397017][    C0]  ? process_one_work+0x7b0/0x1160
[ 1497.397033][    C0]  process_one_work+0x8a2/0x1160
[ 1497.397055][    C0]  ? worker_detach_from_pool+0x240/0x240
[ 1497.397072][    C0]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1497.397086][    C0]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1497.397101][    C0]  ? kthread_data+0x4b/0xc0
[ 1497.397121][    C0]  worker_thread+0xaa2/0x1270
[ 1497.397144][    C0]  ? __kthread_parkme+0x162/0x1c0
[ 1497.397164][    C0]  kthread+0x29d/0x330
[ 1497.397176][    C0]  ? worker_clr_flags+0x1a0/0x1a0
[ 1497.397191][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 1497.397204][    C0]  ret_from_fork+0x1f/0x30
[ 1497.397227][    C0]  </TASK>
[ 1498.429179][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[ 1498.436062][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted syzkaller #0
[ 1498.443282][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1498.453522][   T28] Call Trace:
[ 1498.456807][   T28]  <TASK>
[ 1498.459747][   T28]  dump_stack_lvl+0x188/0x24e
[ 1498.464443][   T28]  ? memcpy+0x3c/0x60
[ 1498.468434][   T28]  ? show_regs_print_info+0x12/0x12
[ 1498.473646][   T28]  ? load_image+0x400/0x400
[ 1498.478176][   T28]  panic+0x2e5/0x730
[ 1498.482090][   T28]  ? schedule_preempt_disabled+0x20/0x20
[ 1498.487742][   T28]  ? bpf_jit_dump+0xd0/0xd0
[ 1498.492274][   T28]  ? __irq_work_queue_local+0x12c/0x190
[ 1498.497946][   T28]  ? nmi_trigger_cpumask_backtrace+0x35b/0x450
[ 1498.504114][   T28]  ? nmi_trigger_cpumask_backtrace+0x360/0x450
[ 1498.510282][   T28]  watchdog+0xf2d/0xf30
[ 1498.514454][   T28]  ? watchdog+0x1ed/0xf30
[ 1498.518894][   T28]  kthread+0x29d/0x330
[ 1498.522970][   T28]  ? hungtask_pm_notify+0x40/0x40
[ 1498.528006][   T28]  ? kthread_blkcg+0xd0/0xd0
[ 1498.532604][   T28]  ret_from_fork+0x1f/0x30
[ 1498.537046][   T28]  </TASK>
[ 1498.540483][   T28] Kernel Offset: disabled
[ 1498.544799][   T28] Rebooting in 86400 seconds..