last executing test programs:

2m51.607533761s ago: executing program 3 (id=568):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000002d00)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000002d40)={0x24, r2, 0x1, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

2m51.294161702s ago: executing program 3 (id=573):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000400)=ANY=[@ANYBLOB="1400000010000100f7000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000340000000144c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000200003801c0000800c00018006000100d10300000c000440000000000000000114000000110001"], 0xb8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)={0x38, 0xd, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xc, 0x3, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

2m51.114271058s ago: executing program 3 (id=577):
unshare(0x2c020400)
r0 = msgget$private(0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
msgsnd(r0, &(0x7f0000000480)=ANY=[@ANYRESDEC], 0x2000, 0x0)
msgrcv(r0, &(0x7f0000001080)={0x0, ""/1}, 0x5, 0x2, 0x3000)

2m50.997763902s ago: executing program 3 (id=580):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$cgroup2(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x800010, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='./file0/../file0\x00')

2m50.800811323s ago: executing program 3 (id=583):
unshare(0x26060400)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-avx\x00'}, 0x58)

2m49.356545265s ago: executing program 3 (id=596):
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}})
io_uring_enter(r0, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)

2m49.04291622s ago: executing program 32 (id=596):
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}})
io_uring_enter(r0, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)

1m13.0477296s ago: executing program 5 (id=1553):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000440)={0x48, 0x1, r1, 0x0, 0x97, 0x8000000})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000140)={0x28, 0x6, r1, 0x0, &(0x7f0000ff6000/0xa000)=nil, 0xa000})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000040)={0x28, 0x4, r1, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r0, 0x3ba0, &(0x7f0000000180)={0x48, 0x2, r1})

1m12.822424934s ago: executing program 5 (id=1557):
r0 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000001380)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$devlink(&(0x7f0000000280), r1)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
sendmsg$nl_route_sched(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x40d1}, 0x40d8)

1m11.776860361s ago: executing program 5 (id=1566):
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
r0 = add_key$user(&(0x7f0000000200), &(0x7f0000000440), &(0x7f00000000c0), 0x14b, 0xfffffffffffffffd)
r1 = add_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000002c0)='4', 0xba, 0xfffffffffffffffe)
r2 = add_key$user(&(0x7f0000000540), &(0x7f0000000380)={'syz', 0x2}, &(0x7f0000000580)="ed", 0x1, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r2, r0, r1}, 0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={'blake2b-256\x00'}})

1m11.608962933s ago: executing program 5 (id=1569):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x104)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x64)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0xc0049364, &(0x7f00000000c0))

1m11.282348783s ago: executing program 5 (id=1572):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x8000}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb10000a8880008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

1m10.118380996s ago: executing program 5 (id=1582):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x20800001, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0xd66, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x8000, @loopback, 0x26}, 0x1c)

1m9.617490567s ago: executing program 33 (id=1582):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x20800001, 0x4)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0xd66, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x8000, @loopback, 0x26}, 0x1c)

1m0.487297981s ago: executing program 4 (id=1672):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000140)=@ccm_128={{0x303}, "a6fd585c649f3931", "8b3cc3122aaf42efda2eee7b3a84f0bf", "bb71bae3", "13fe678ae397fd83"}, 0x28)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x40000000003, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0xcc, 0x2, 0x2], 0x10000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m0.04372834s ago: executing program 4 (id=1678):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f00000005c0)={@val={0xa, 0x88a8}, @void, @eth={@local, @empty, @void, {@ipv6={0x86dd, @generic={0x9, 0x6, "000400", 0x8, 0x2c, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {[], "dd2fab85fdfd6502"}}}}}}, 0x42)

52.920401792s ago: executing program 4 (id=1703):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, 0x0, 0x0)
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000180)={0x28, 0x4, 0x0, {0x2, 0xd12}}, 0x28)

52.464583895s ago: executing program 4 (id=1706):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040)=0x7)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040301, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x1000000000000, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0884113, &(0x7f0000000080)={0x1, 0xfffffdfe, 0x2, 0x8, 0x8000, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x1, 0xfffffffe, 0x2})

51.337407003s ago: executing program 4 (id=1715):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r0, &(0x7f0000000200)='./file1\x00', 0x40, 0x1)
sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40015}, 0x24004880)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40086602, &(0x7f0000000000))
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)

51.148497784s ago: executing program 4 (id=1717):
socket(0x2, 0x3, 0xff)
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = syz_io_uring_setup(0xa0, &(0x7f0000000640)={0x0, 0x105cc6, 0x400, 0x0, 0x207}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$SNDCTL_DSP_GETISPACE(r0, 0x8010500d, &(0x7f0000000000))

35.91532364s ago: executing program 34 (id=1717):
socket(0x2, 0x3, 0xff)
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = syz_io_uring_setup(0xa0, &(0x7f0000000640)={0x0, 0x105cc6, 0x400, 0x0, 0x207}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
ioctl$SNDCTL_DSP_GETISPACE(r0, 0x8010500d, &(0x7f0000000000))

3.469143166s ago: executing program 7 (id=2121):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x2, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={<r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000000b00)={0x0, 0xf22fff7f, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199c799c9b0c41101e625fcdb7bbfd12a3eeeef4540a5698f058aaf6a141e5d333929b92a7f64e925bf0ef424c3ef29fcd5fd4721c547fde6abe4d47048b64511693624b0d786711abe4a66e250fcbfe95ac9037e58f331b26b6ed0d08e5c73ba4c49", 0xc00e}], 0x9, &(0x7f00000001c0)=ANY=[@ANYBLOB="000026d5f47f000000000000010000000000020000000000140000000000000000000000020000000000000000000000140000000000000000000000020000000000000000000000110000000000000000000000010000000000000000000000110000000000000002000000010000000000000000000000000000000000000000000000070000008300000000960000206a77bdd1a004129054e7704a000002"], 0xf}, 0x0)

2.406098167s ago: executing program 7 (id=2131):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

2.145859879s ago: executing program 6 (id=2136):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$overlay(0x0, &(0x7f0000000180)='./file0/../file0/file0\x00', 0x0, 0x8000, 0x0)
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
symlink(&(0x7f0000000080)='./file0/../file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00')
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r1, {0x7, 0x28, 0x0, 0x40488060, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfffffffc}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000a280)="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", 0x2000, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x4, 0x6, 0x0, {0x5, 0x2, 0x1000b, 0x100000a, 0x3, 0x0, 0xfffffffe, 0x8000000, 0x0, 0x8000, 0x2000002, 0x0, r2, 0x7, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

2.013241595s ago: executing program 0 (id=2137):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'stdrng\x00'}, 0x58)
r2 = syz_io_uring_setup(0x10f, &(0x7f0000000380)={0x0, 0x211a, 0x0, 0x4, 0x306}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000040)=0xffefffdc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x2, r1, 0x0})
io_uring_enter(r2, 0x3516, 0xc2de, 0x8, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.012385272s ago: executing program 7 (id=2138):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x6, 0x5, 0x0, 0xfffffc}]}, 0x10)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)={@val={0x8, 0x800}, @val={0x3, 0x0, 0x0, 0x0, 0x14}, @ipv4=@generic={{0x6, 0x4, 0x1, 0x2b, 0x18, 0x68, 0x0, 0x60, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, {[@timestamp={0x44, 0x4, 0xf0, 0x0, 0x1}]}}}}, 0x26)

1.89041939s ago: executing program 1 (id=2139):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00', @ANYRES32=0x0, @ANYRES32], 0x48)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8"])
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x205, 0x6, 0x0, 0x0, 0x10003, 0x41, 0x400200cc0, 0xffd, 0x4, 0x0, 0x7, 0x0, 0x2, 0x0, 0x6a, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.827541206s ago: executing program 1 (id=2140):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

1.775652667s ago: executing program 0 (id=2141):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000001200)={0x0, 0xffffff1e, 0xffffffff, 0x4, 0x16, "001bf100eeff0000a2c2000100000000002000"})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_pts(r0, 0x101)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xd)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
read$FUSE(r3, 0x0, 0x0)

1.747219751s ago: executing program 1 (id=2142):
socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f0000000280)={<r0=>0xffffffffffffffff})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0}, 0x50)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
connect$inet6(r1, &(0x7f00000003c0)={0xa, 0xfffe, 0x3000001, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r1, &(0x7f00000000c0)="8f2a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x5ac)

1.602433213s ago: executing program 1 (id=2144):
gettid()
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89101)
syz_usb_connect$uac1(0x3, 0xa4, &(0x7f0000000200)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2406000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r1, @ANYBLOB="05"], 0x0)
pwritev(r0, &(0x7f00000002c0)=[{&(0x7f0000000300)='\x00!', 0x2}], 0x1, 0x7, 0x9)
timer_settime(0x0, 0x0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2e, 0x0, 0x0)

1.370398488s ago: executing program 0 (id=2146):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="000086dd03000a000000141200006c07010033d43afffe800000000000000000000000000010ff02000000000000000000000000000189"], 0x340a)

1.254445078s ago: executing program 7 (id=2148):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x6, 0x0, 0x7fff0001}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$VHOST_VDPA_SET_STATUS(0xffffffffffffffff, 0x4001af72, &(0x7f0000000080)=0x40)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f00000000c0)="b882008ee8f3cf66b80500000066b9f10000000f01c10fc7ba8c9eba610066ed0f01f766b80500000066b90b0000000f01c1ba6100eddfdfbaa10066b80098000066ef", 0x43}], 0x1, 0x5c, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.184871308s ago: executing program 6 (id=2150):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000180), 0xfefc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000004, 0x10012, r0, 0x0)
r1 = timerfd_create(0x0, 0x0)
timerfd_settime(r1, 0x3, &(0x7f0000000380)={{0x0, 0x989680}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
timerfd_settime(r2, 0x3, &(0x7f0000000440)={{0x0, 0x3938700}}, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x3ff, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x8, 0x2, 0x3, 0x0, 0x3})

1.046240946s ago: executing program 2 (id=2151):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@ipv4_newroute={0x24, 0x18, 0x1, 0x70bd2a, 0x25dfdbfd, {0x2, 0x0, 0x20, 0x8, 0xfe, 0x3, 0xff, 0x0, 0x1000}, [@RTA_TABLE={0x6, 0xf, 0x7fff}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000004c0)=ANY=[@ANYBLOB="010000000000000070000040"])

981.585035ms ago: executing program 2 (id=2152):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20a00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000040)="6c66b8ae008ec865da00b8010000000f01d90f01df0fc7360f320fae8f00a0000066b81f018ee8b9840b00000f32", 0x2e}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000000c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

969.652258ms ago: executing program 6 (id=2153):
syz_open_dev$dri(0x0, 0x1ff, 0x80800)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000005c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
connect$unix(r0, &(0x7f0000000500)=@file={0x1, './file2\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000001b40)=[{{&(0x7f0000000480)=@abs={0x1, 0x0, 0x4e20}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x20000010}}], 0x1, 0x20040805)

898.555108ms ago: executing program 2 (id=2154):
ioprio_set$pid(0x1, 0x0, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80000)
splice(r1, 0x0, r3, 0x0, 0x6, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
splice(r2, 0x0, r4, 0x0, 0x6, 0x7)
close_range(r0, 0xffffffffffffffff, 0x0)

897.985466ms ago: executing program 1 (id=2155):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, 0x0, 0x0)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x83, &(0x7f0000000040)={r3}, 0x8)

835.645571ms ago: executing program 0 (id=2156):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22102, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
write$vga_arbiter(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='lock io'], 0xc)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

780.487338ms ago: executing program 6 (id=2157):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000940)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000}], 0x1, 0xc050)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x4, 0x9, 0xfffa}, 0x1d, [0x7ffe, 0xc95a, 0xfffffff3, 0x9, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x81, 0x39cc191a, 0x10005f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x8, 0x4, 0x3c5e, 0x1, 0x3, 0x5, 0x1, 0x1f461e2c, 0x0, 0xe661, 0x4, 0x7, 0x101, 0x7fff, 0x4c75, 0x800, 0x242, 0x1003, 0xe, 0x0, 0x71, 0xfffffff8, 0x7, 0x0, 0x0, 0xd, 0x3e, 0x8f, 0x6, 0x10000006, 0x0, 0x5, 0x4, 0x8, 0x7, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x131, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x8, 0x2, 0x3, 0x0, 0x7, 0x5, 0x4800, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x0, 0x8000, 0x9, 0x400, 0x5, 0x6, 0x7, 0xff, 0x5, 0x5, 0x5f31, 0x4, 0x0, 0x2, 0x2, 0xa, 0x3, 0x9, 0xc, 0x800, 0x6, 0x7, 0x8000, 0x1, 0xfe000000, 0xff7f, 0x2, 0x7f, 0x9, 0x3010, 0x3, 0x9, 0x1, 0x7, 0x3, 0xa, 0x7, 0x42, 0x2], [0x7, 0x4, 0x0, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x7f, 0x3, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x7, 0xa, 0x3e7, 0x9, 0x5, 0x2, 0x102, 0x3, 0x800, 0x4, 0x6d01, 0x5, 0x38, 0x800003, 0x200, 0x80, 0xf, 0xd, 0x2950bfaf, 0x1000, 0xa4, 0x7, 0x53cf697b, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0xfffffff9, 0x1, 0x1, 0xffff, 0x0, 0x1a, 0x1c, 0x120000, 0x3, 0x6, 0xaaed, 0x4, 0x65], [0x9, 0xbb31, 0x3, 0xb, 0x1, 0x938, 0x7, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x2, 0xf58, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x7ffe, 0x0, 0x200a620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0xe, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0xfffff000, 0xffff, 0x3, 0x7f, 0x100, 0x9602, 0x4, 0x2, 0x4, 0x6, 0x1, 0x10080, 0x5, 0x8, 0x30b1d693, 0xa1f, 0x8, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1c, 0x1, 0x1fd, 0xffbf2441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

738.248053ms ago: executing program 7 (id=2158):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/slabinfo\x00', 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
pselect6(0x40, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0xc3ac}, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)

709.308515ms ago: executing program 0 (id=2159):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = memfd_create(&(0x7f0000000200)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%o\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aOg\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\x01\x80\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3Wt`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\bx\xd2x\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?p\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F[\x86\xc1\v X\t\xf1\xd8J\xe2\vr\x96\xe2\xf0\xd2>\xb0\xbd\xd8,\xea\xeaT\xa6\x12\x1d\x1b6\xcf\xd3\x84-Z\xb4\xc1hh\x81*\x00\x00\x00\x00\x00\x00', 0x0)
write$binfmt_misc(r2, &(0x7f0000000180)="e502", 0x2)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

677.144097ms ago: executing program 2 (id=2160):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x80001, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x5, 0xb, &(0x7f0000000540)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES16, @ANYRES32=0x0, @ANYRES8=r1], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000dc0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GET(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fbfbdf25270000000e0001006e655f64657673696d0000000f0002006e657464657673696d3000001c0053"], 0x50}, 0x1, 0x0, 0x0, 0x24040011}, 0x0)

673.095037ms ago: executing program 1 (id=2161):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x80)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x5, 0x1}, 0x50)

570.864946ms ago: executing program 6 (id=2162):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000280)="1d", 0x1, 0x200400c5, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x1, 0x845, 0x0, 0x0)

540.713376ms ago: executing program 7 (id=2163):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r0, 0x1000)
r1 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
r2 = dup(r1)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, 0x0, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000080)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e21, 0x8815, @private1, 0x800}}}, 0x30)

420.757269ms ago: executing program 2 (id=2164):
socket(0x11, 0x3, 0x0)
pipe(&(0x7f0000000440))
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x129c81, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x7f, 0x4000006, 0x3, "42341f9b1000007e4f00"})
syz_open_pts(r0, 0x103100)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="5c00000000010104000000000000000002001000240002801400018008000100e000000108000200e00000010c00028005000100000000001c0010800800014000000000d97405010000000008000240000000000800", @ANYRES64=r1], 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)

177.919543ms ago: executing program 0 (id=2165):
write$UHID_INPUT(0xffffffffffffffff, &(0x7f00000006c0)={0x8, {"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", 0x1000}}, 0x1006)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x1a9041, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x7f, 0x40, 0x0, 0xb9ff, 0x0, '\x00\x00@\x00'})
write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x12)

71.201415ms ago: executing program 6 (id=2166):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x39b3)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000ac0)=ANY=[@ANYRES32=r2, @ANYRES32=r1, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r2, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r0}, 0x20)
recvmmsg(r0, &(0x7f0000001b40)=[{{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000340)=""/83, 0x53}], 0x1}, 0x81}], 0x2, 0x21, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000280)=0x1, 0x4)

0s ago: executing program 2 (id=2167):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'veth0_to_bridge\x00', 0x400})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'pimreg0\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000140)={r3, r2, 0x25, 0x0, @val=@netfilter={0x1, 0x0, 0x7}}, 0x20)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000040)={'wg0\x00', 0x200})

kernel console output (not intermixed with test programs):

ion table beyond EOD, truncated
[  111.923836][ T6134] loop_reread_partitions: partition scan of loop2 (’ú¬åÛD÷×P‘½x½¥«™
É^Äé®8TA/ÎúÊw'6ª9»Úˆ"%m‚Îÿž9ŸöpÐë<ÔºèMÏ*Yº) failed (rc=-5)
[  112.055860][ T6139] netlink: 'syz.3.74': attribute type 29 has an invalid length.
[  112.127415][ T6142] netlink: 'syz.3.74': attribute type 29 has an invalid length.
[  112.302787][ T6145] netlink: 8 bytes leftover after parsing attributes in process `syz.4.75'.
[  112.833966][ T6163] syz.3.80 (6163) used greatest stack depth: 18552 bytes left
[  113.529287][ T6182] netlink: 'syz.0.86': attribute type 39 has an invalid length.
[  113.791515][ T6186] netlink: 20 bytes leftover after parsing attributes in process `syz.1.88'.
[  114.177671][ T6201] netlink: 'syz.4.92': attribute type 10 has an invalid length.
[  114.595300][ T6201] syz_tun: entered promiscuous mode
[  114.639643][ T6201] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  117.589953][ T5874] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  117.804991][ T5874] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  117.805026][ T5874] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  117.805064][ T5874] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  117.805085][ T5874] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.822457][ T6295] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  117.852731][ T5874] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  118.094766][ T5874] usb 2-1: USB disconnect, device number 2
[  118.281860][ T5949] udevd[5949]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  118.978272][   T37] audit: type=1326 audit(1760174282.911:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6341 comm="syz.2.141" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x0
[  119.357952][ T6353] binder: 6352:6353 ioctl 4018620d 0 returned -22
[  119.547428][ T5896] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  119.697353][ T5896] usb 2-1: Using ep0 maxpacket: 32
[  119.699792][ T5896] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  119.705693][ T5874] kernel write not supported for file bpf-prog (pid: 5874 comm: kworker/0:4)
[  119.732638][ T5896] usb 2-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[  119.732667][ T5896] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.732686][ T5896] usb 2-1: Product: syz
[  119.732699][ T5896] usb 2-1: Manufacturer: syz
[  119.732713][ T5896] usb 2-1: SerialNumber: syz
[  119.768140][ T5859] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  119.787101][ T5896] usb 2-1: config 0 descriptor??
[  119.802236][ T5896] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[  119.910477][ T6366] netlink: 56 bytes leftover after parsing attributes in process `syz.2.151'.
[  119.934666][ T5859] usb 5-1: config 3 has an invalid interface number: 253 but max is 0
[  119.934694][ T5859] usb 5-1: config 3 has no interface number 0
[  119.935824][ T5859] usb 5-1: config 3 interface 253 has no altsetting 0
[  119.941229][ T5859] usb 5-1: New USB device found, idVendor=0499, idProduct=105b, bcdDevice=fa.4e
[  119.941462][ T5859] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.941481][ T5859] usb 5-1: Product: syz
[  119.941495][ T5859] usb 5-1: Manufacturer: syz
[  119.941508][ T5859] usb 5-1: SerialNumber: syz
[  120.232801][ T5859] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  120.378085][ T5859] snd-usb-audio 5-1:3.253: probe with driver snd-usb-audio failed with error -2
[  120.396269][ T5859] usb 5-1: USB disconnect, device number 2
[  120.481148][ T5874] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  120.481765][ T5952] udevd[5952]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:3.253/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  120.634001][ T5874] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.634032][ T5874] usb 3-1: New USB device found, idVendor=046a, idProduct=0023, bcdDevice= 0.00
[  120.634044][ T5874] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.672325][ T5874] usb 3-1: config 0 descriptor??
[  120.691148][ T5896] input: gspca_pac7302 as /devices/platform/dummy_hcd.1/usb2/2-1/input/input5
[  120.858531][   T10] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  120.909249][ T5896] usb 2-1: USB disconnect, device number 3
[  121.016264][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  121.016364][   T10] usb 4-1: New USB device found, idVendor=056a, idProduct=00e3, bcdDevice= 0.00
[  121.016389][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.104868][   T10] usb 4-1: config 0 descriptor??
[  121.135221][ T5874] cherry 0003:046A:0023.0001: unbalanced delimiter at end of report description
[  121.159957][ T5874] cherry 0003:046A:0023.0001: probe with driver cherry failed with error -22
[  121.364750][ T5874] usb 3-1: USB disconnect, device number 3
[  121.743765][   T10] wacom 0003:056A:00E3.0002: unknown main item tag 0x2
[  121.743804][   T10] wacom 0003:056A:00E3.0002: unknown main item tag 0x2
[  121.826139][ T6393] bridge0: port 3(gretap0) entered blocking state
[  121.835077][ T6393] bridge0: port 3(gretap0) entered disabled state
[  121.835655][ T6393] gretap0: entered allmulticast mode
[  121.870686][ T6393] gretap0: entered promiscuous mode
[  121.872657][ T6393] bridge0: port 3(gretap0) entered blocking state
[  121.872816][ T6393] bridge0: port 3(gretap0) entered forwarding state
[  121.899584][ T6396] gretap0: left allmulticast mode
[  121.899613][ T6396] gretap0: left promiscuous mode
[  121.968066][ T6396] bridge0: port 3(gretap0) entered disabled state
[  121.999606][ T5892] usb 4-1: USB disconnect, device number 2
[  122.514309][ T6411] IPVS: Scheduler module ip_vs_sip not found
[  122.981666][ T6439] capability: warning: `syz.4.182' uses deprecated v2 capabilities in a way that may be insecure
[  123.318999][ T5874] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  123.467307][ T5874] usb 2-1: Using ep0 maxpacket: 16
[  123.473068][ T5874] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  123.473099][ T5874] usb 2-1: config 0 interface 0 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  123.473124][ T5874] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  123.473149][ T5874] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x8F has invalid wMaxPacketSize 0
[  123.473170][ T5874] usb 2-1: config 0 interface 0 has no altsetting 0
[  123.476285][ T5874] usb 2-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  123.476311][ T5874] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.476329][ T5874] usb 2-1: Product: syz
[  123.476343][ T5874] usb 2-1: Manufacturer: syz
[  123.476355][ T5874] usb 2-1: SerialNumber: syz
[  123.524007][ T5874] usb 2-1: config 0 descriptor??
[  123.804809][ T5874] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input6
[  123.811325][ T5154] synaptics_usb 2-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  123.896117][ T5154] synaptics_usb 2-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  123.952805][ T6442] synaptics_usb 2-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  123.999494][ T5154] synaptics_usb 2-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  124.071419][ T5892] usb 2-1: USB disconnect, device number 4
[  124.317448][ T5859] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  124.353929][ T6486] netlink: 12 bytes leftover after parsing attributes in process `syz.3.202'.
[  124.501658][ T5859] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  124.501706][ T5859] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  124.526344][ T5859] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  124.526373][ T5859] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.526392][ T5859] usb 5-1: Product: syz
[  124.526405][ T5859] usb 5-1: Manufacturer: syz
[  124.526418][ T5859] usb 5-1: SerialNumber: syz
[  125.632027][ T5859] cdc_ncm 5-1:1.0: bind() failure
[  125.691856][ T5859] cdc_ncm 5-1:1.1: probe with driver cdc_ncm failed with error -71
[  125.708746][ T5859] cdc_mbim 5-1:1.1: probe with driver cdc_mbim failed with error -71
[  125.711341][ T5859] usbtest 5-1:1.1: probe with driver usbtest failed with error -71
[  125.757738][ T5859] usb 5-1: USB disconnect, device number 3
[  126.345939][ T6548] loop2: detected capacity change from 0 to 7
[  126.438353][ T6548] Dev loop2: unable to read RDB block 7
[  126.441429][ T6548]  loop2: unable to read partition table
[  126.441661][ T6548] loop2: partition table beyond EOD, truncated
[  126.441698][ T6548] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  126.795158][ T6558] netlink: 4 bytes leftover after parsing attributes in process `syz.2.218'.
[  127.037317][ T6558] bond1: Invalid ad_actor_system MAC address.
[  127.037339][ T6558] bond1: option ad_actor_system: invalid value (1)
[  127.220221][ T6558] bond1 (unregistering): Released all slaves
[  129.065466][   T37] audit: type=1326 audit(1760174292.981:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.065519][   T37] audit: type=1326 audit(1760174292.991:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.123751][   T37] audit: type=1326 audit(1760174293.041:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.123807][   T37] audit: type=1326 audit(1760174293.051:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.123845][   T37] audit: type=1326 audit(1760174293.051:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.123882][   T37] audit: type=1326 audit(1760174293.051:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.225076][   T37] audit: type=1326 audit(1760174293.151:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.225126][   T37] audit: type=1326 audit(1760174293.151:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.225166][   T37] audit: type=1326 audit(1760174293.151:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.225204][   T37] audit: type=1326 audit(1760174293.151:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6614 comm="syz.3.240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  129.830471][ T5874] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  129.911357][ T5859] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  130.023867][ T5874] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  130.023895][ T5874] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  130.023906][ T5874] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  130.023931][ T5874] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  130.023942][ T5874] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.030171][ T5874] usb 4-1: config 0 descriptor??
[  130.101689][ T5859] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  130.101716][ T5859] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.169441][ T5859] usb 3-1: config 0 descriptor??
[  130.187450][ T5859] gspca_main: cpia1-2.14.0 probing 0813:0001
[  130.561148][ T5874] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  130.595869][ T5859] cpia1 3-1:0.0: unexpected state after lo power cmd: 00
[  130.741972][ T5874] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  130.800380][ T6652] netlink: 8 bytes leftover after parsing attributes in process `syz.4.254'.
[  130.834866][ T6654] vivid-001: disconnect
[  130.843633][ T6654] vivid-001: reconnect
[  131.009435][ T5859] gspca_cpia1: usb_control_msg 02, error -32
[  131.009913][ T5859] gspca_cpia1: usb_control_msg 02, error -71
[  131.009927][ T5859] cpia1 3-1:0.0: only firmware version 1 is supported (got: 0)
[  131.045017][ T5859] usb 3-1: USB disconnect, device number 4
[  132.379488][ T6679] input: syz0 as /devices/virtual/input/input7
[  132.757578][ T5896] usb 4-1: USB disconnect, device number 3
[  133.120782][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  133.120876][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  133.540999][ T5169] udevd[5169]: worker [5866] terminated by signal 33 (Unknown signal 33)
[  133.541045][ T5169] udevd[5169]: worker [5866] failed while handling '/devices/virtual/block/loop2'
[  133.544813][ T5169] udevd[5169]: worker [5971] terminated by signal 33 (Unknown signal 33)
[  133.544868][ T5169] udevd[5169]: worker [5971] failed while handling '/devices/virtual/block/loop1'
[  134.383213][ T6722] netlink: 20 bytes leftover after parsing attributes in process `syz.0.286'.
[  134.383253][ T6722] netlink: 28 bytes leftover after parsing attributes in process `syz.0.286'.
[  135.375169][ T6743] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  136.663346][ T5859] usb 4-1: new low-speed USB device number 4 using dummy_hcd
[  136.737487][ T5892] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  136.861661][ T5859] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  136.861726][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  136.861752][ T5859] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  136.861777][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  136.861802][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  136.865741][ T5859] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  136.865797][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  136.865824][ T5859] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  136.865848][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  136.865873][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  136.917780][ T5859] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[  136.917843][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  136.917868][ T5859] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  136.917891][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  136.917912][ T5859] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  136.930041][ T5892] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  136.930065][ T5892] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  136.942997][ T5892] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  136.943026][ T5892] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.943046][ T5892] usb 2-1: Product: syz
[  136.943059][ T5892] usb 2-1: Manufacturer: syz
[  136.943073][ T5892] usb 2-1: SerialNumber: syz
[  136.995706][ T5859] usb 4-1: string descriptor 0 read error: -22
[  136.995845][ T5859] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  136.995868][ T5859] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.123675][ T6783] netlink: 80 bytes leftover after parsing attributes in process `syz.4.314'.
[  137.158975][ T6783] netlink: 80 bytes leftover after parsing attributes in process `syz.4.314'.
[  137.218278][ T5859] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  137.372445][ T5892] usb 2-1: 0:2 : does not exist
[  137.388773][ T5892] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  137.443187][ T5892] usb 2-1: USB disconnect, device number 5
[  137.506847][   T10] usb 4-1: USB disconnect, device number 4
[  137.581677][ T5952] udevd[5952]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  137.979247][ T5130] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  138.130335][ T6805] netlink: 'syz.1.324': attribute type 1 has an invalid length.
[  138.131378][ T5130] usb 5-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  138.134510][ T5130] usb 5-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  138.134547][ T5130] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.134567][ T5130] usb 5-1: Product: syz
[  138.134581][ T5130] usb 5-1: Manufacturer: syz
[  138.134594][ T5130] usb 5-1: SerialNumber: syz
[  138.186888][ T5130] usb 5-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[  138.241333][   T37] kauditd_printk_skb: 2 callbacks suppressed
[  138.241350][   T37] audit: type=1326 audit(1760174302.171:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.241484][   T37] audit: type=1326 audit(1760174302.171:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.244506][   T37] audit: type=1326 audit(1760174302.171:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.246545][   T37] audit: type=1326 audit(1760174302.171:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.246596][   T37] audit: type=1326 audit(1760174302.171:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.246694][   T37] audit: type=1326 audit(1760174302.171:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.316508][   T37] audit: type=1326 audit(1760174302.231:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.344327][   T37] audit: type=1326 audit(1760174302.271:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.356394][   T37] audit: type=1326 audit(1760174302.281:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.363707][   T37] audit: type=1326 audit(1760174302.291:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6806 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114a1beec9 code=0x7ffc0000
[  138.564068][ T6811] loop8: detected capacity change from 0 to 8
[  138.597049][ T5986] Dev loop8: unable to read RDB block 8
[  138.597090][ T5986]  loop8: unable to read partition table
[  138.609666][ T5986] loop8: partition table beyond EOD, truncated
[  138.630152][ T6811] Dev loop8: unable to read RDB block 8
[  138.630199][ T6811]  loop8: unable to read partition table
[  138.630434][ T6811] loop8: partition table beyond EOD, truncated
[  138.630466][ T6811] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  138.742425][ T5892] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  138.913909][ T5892] usb 2-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice=80.99
[  138.913939][ T5892] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.913968][ T5892] usb 2-1: Product: syz
[  138.913981][ T5892] usb 2-1: Manufacturer: syz
[  138.913995][ T5892] usb 2-1: SerialNumber: syz
[  138.968534][ T5892] usb 2-1: config 0 descriptor??
[  139.204671][ T5859] usb 2-1: USB disconnect, device number 6
[  139.297676][ T5130] usb 5-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[  139.343342][ T5130] usb 5-1: USB disconnect, device number 4
[  140.177390][ T6856] netlink: 'syz.1.346': attribute type 29 has an invalid length.
[  140.178974][ T6856] netlink: 'syz.1.346': attribute type 29 has an invalid length.
[  140.184861][ T6856] netlink: 500 bytes leftover after parsing attributes in process `syz.1.346'.
[  140.185092][ T6856] unsupported nla_type 58
[  140.324702][ T6863] netlink: 'syz.1.349': attribute type 1 has an invalid length.
[  140.324726][ T6863] netlink: 'syz.1.349': attribute type 2 has an invalid length.
[  140.326738][ T6863] netlink: 'syz.1.349': attribute type 1 has an invalid length.
[  140.326757][ T6863] netlink: 'syz.1.349': attribute type 2 has an invalid length.
[  140.527027][ T6872] No memory to map
[  140.777321][ T5909] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  140.944950][ T5909] usb 4-1: config 0 has an invalid interface number: 55 but max is 0
[  140.944978][ T5909] usb 4-1: config 0 has no interface number 0
[  140.945030][ T5909] usb 4-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  140.945053][ T5909] usb 4-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  140.945076][ T5909] usb 4-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  140.945101][ T5909] usb 4-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64
[  140.945122][ T5909] usb 4-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  140.945160][ T5909] usb 4-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  140.945179][ T5909] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.975834][ T5909] usb 4-1: config 0 descriptor??
[  140.982544][ T6871] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  141.011148][ T6889] netlink: 'syz.1.359': attribute type 1 has an invalid length.
[  141.062422][ T5909] ldusb 4-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  141.267620][ T5892] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  141.356389][ T5130] usb 4-1: USB disconnect, device number 5
[  141.356565][    C1] ldusb 4-1:0.55: usb_submit_urb failed (-19)
[  141.373310][ T6871] ldusb 4-1:0.55: Couldn't submit interrupt_out_urb -2
[  141.398264][ T5130] ldusb 4-1:0.55: LD USB Device #0 now disconnected
[  141.441555][ T5892] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  141.441587][ T5892] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  141.441608][ T5892] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  141.441794][ T5892] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  141.441817][ T5892] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  141.470715][ T5892] usb 5-1: config 0 descriptor??
[  141.933628][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933666][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933692][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933717][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933742][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933767][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933791][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933816][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933841][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.933865][ T5892] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  141.955869][ T5892] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  142.227685][ T5896] usb 5-1: USB disconnect, device number 5
[  142.375451][ T6923] fido_id[6923]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  142.827326][ T5892] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  142.983749][ T5892] usb 4-1: config 0 interface 0 has no altsetting 0
[  142.983800][ T5892] usb 4-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[  142.983822][ T5892] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.016682][ T5892] usb 4-1: config 0 descriptor??
[  144.067716][ T5892] video4linux radio48: keene_cmd_set failed (-71)
[  144.067743][ T5892] radio-keene 4-1:0.0: V4L2 device registered as radio48
[  144.091275][ T5892] usb 4-1: USB disconnect, device number 6
[  144.765000][ T7004] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  144.765043][ T7004] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  144.772038][ T7004] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  145.512351][   T10] kernel read not supported for file /181/net/netstat (pid: 10 comm: kworker/0:1)
[  145.657492][ T5130] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  145.807347][ T5130] usb 5-1: Using ep0 maxpacket: 16
[  145.809793][ T5130] usb 5-1: config 0 interface 0 has no altsetting 0
[  145.809830][ T5130] usb 5-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  145.809859][ T5130] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.813953][ T5130] usb 5-1: config 0 descriptor??
[  145.930088][ T5874] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  146.077348][ T5874] usb 2-1: Using ep0 maxpacket: 16
[  146.080122][ T5874] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  146.080146][ T5874] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  146.086927][ T5874] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  146.087005][ T5874] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.087024][ T5874] usb 2-1: Product: syz
[  146.087037][ T5874] usb 2-1: Manufacturer: syz
[  146.087051][ T5874] usb 2-1: SerialNumber: syz
[  146.314552][ T5130] hid (null): invalid report_size -624650077
[  146.314618][ T5130] hid (null): unknown global tag 0xc
[  146.388086][ T5874] usb 2-1: 0:2 : does not exist
[  146.438256][ T5874] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  146.505165][ T5130] usb 5-1: USB disconnect, device number 6
[  146.549956][ T5874] usb 2-1: USB disconnect, device number 7
[  146.706803][ T5952] udevd[5952]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  148.783961][ T7105] process 'syz.1.453' launched './file0' with NULL argv: empty string added
[  149.697932][ T7137] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  149.704618][ T7132] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  150.123538][ T7150] netlink: 14 bytes leftover after parsing attributes in process `syz.2.474'.
[  152.801619][ T7199] netlink: 4 bytes leftover after parsing attributes in process `syz.2.496'.
[  153.191449][ T7212] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.502'.
[  153.298861][ T7215] ieee802154 phy0 wpan0: encryption failed: -22
[  153.447310][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  155.491015][ T7273] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  155.491046][ T7273] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  155.600582][ T7277] loop8: detected capacity change from 0 to 8
[  155.602893][ T5952] Dev loop8: unable to read RDB block 8
[  155.602943][ T5952]  loop8: unable to read partition table
[  155.603186][ T5952] loop8: partition table beyond EOD, truncated
[  155.618344][ T7277] Dev loop8: unable to read RDB block 8
[  155.618476][ T7277]  loop8: unable to read partition table
[  155.618709][ T7277] loop8: partition table beyond EOD, truncated
[  155.618747][ T7277] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  156.305554][ T7303] netlink: 40 bytes leftover after parsing attributes in process `syz.1.541'.
[  156.531135][ T7311] sock: sock_set_timeout: `syz.1.545' (pid 7311) tries to set negative timeout
[  157.281309][ T7342] input: syz0 as /devices/virtual/input/input8
[  158.384929][ T7389] hsr0: entered promiscuous mode
[  158.385532][ T7389] netlink: 4 bytes leftover after parsing attributes in process `syz.1.582'.
[  158.428754][ T7389] hsr_slave_0: left promiscuous mode
[  158.469410][ T7389] hsr_slave_1: left promiscuous mode
[  158.718245][ T7389] hsr0 (unregistering): left promiscuous mode
[  159.002658][   T10] hid_parser_main: 5 callbacks suppressed
[  159.002689][   T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  159.119210][   T10] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  159.743073][ T7415] input: syz1 as /devices/virtual/input/input9
[  160.537533][ T5867] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  160.671600][   T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.699785][ T5867] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[  160.699817][ T5867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.699842][ T5867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  160.699881][ T5867] usb 2-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00
[  160.699902][ T5867] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.837145][ T5867] usb 2-1: config 0 descriptor??
[  160.921199][ T5802] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  160.938670][ T5802] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  160.949319][ T5802] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  160.955086][ T5802] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  160.968571][ T5802] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  161.326371][ T5867] sony 0003:054C:024B.0007: unexpected long global item
[  161.327035][ T5867] sony 0003:054C:024B.0007: parse failed
[  161.327127][ T5867] sony 0003:054C:024B.0007: probe with driver sony failed with error -22
[  161.411412][   T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.540710][ T5867] usb 2-1: USB disconnect, device number 8
[  161.865861][ T7463] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  161.866470][ T7463] overlayfs: failed to set uuid (107/file1, err=-13); falling back to uuid=null.
[  161.986697][   T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.433310][   T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.031961][ T5812] Bluetooth: hci2: command tx timeout
[  163.280895][   T13] bridge_slave_1: left allmulticast mode
[  163.281122][   T13] bridge_slave_1: left promiscuous mode
[  163.290004][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.381836][   T13] bridge_slave_0: left allmulticast mode
[  163.381866][   T13] bridge_slave_0: left promiscuous mode
[  163.382096][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.658975][ T7507] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  164.365977][   T37] kauditd_printk_skb: 4 callbacks suppressed
[  164.365996][   T37] audit: type=1326 audit(1760174328.291:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7502 comm="syz.1.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c48a4eec9 code=0x7fc00000
[  165.126259][ T5812] Bluetooth: hci2: command tx timeout
[  166.157715][   T37] audit: type=1326 audit(1760174330.081:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  166.157768][   T37] audit: type=1326 audit(1760174330.081:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  166.159005][   T37] audit: type=1326 audit(1760174330.091:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  166.159399][   T37] audit: type=1326 audit(1760174330.091:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  166.159813][   T37] audit: type=1326 audit(1760174330.091:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  166.161661][   T37] audit: type=1326 audit(1760174330.091:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  166.162541][   T37] audit: type=1326 audit(1760174330.091:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  166.163049][   T37] audit: type=1326 audit(1760174330.091:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  166.164546][   T37] audit: type=1326 audit(1760174330.091:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7540 comm="syz.0.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  167.052253][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  167.152790][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  167.207463][ T5812] Bluetooth: hci2: command tx timeout
[  167.235286][   T13] bond0 (unregistering): Released all slaves
[  167.303004][   T13] bond1 (unregistering): Released all slaves
[  168.327286][   T10] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  168.479894][   T10] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  168.479953][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  168.479975][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  168.479995][   T10] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  168.480036][   T10] usb 2-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  168.480058][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.540953][   T10] usb 2-1: config 0 descriptor??
[  168.584875][ T7442] chnl_net:caif_netlink_parms(): no params data found
[  168.778025][ T5896] usb 2-1: USB disconnect, device number 9
[  168.941242][ T7622] netlink: 36 bytes leftover after parsing attributes in process `syz.2.674'.
[  169.272314][ T5812] Bluetooth: hci2: command tx timeout
[  169.670491][   T10] IPVS: starting estimator thread 0...
[  169.670906][ T7639] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  169.757604][ T7643] IPVS: using max 8 ests per chain, 19200 per kthread
[  170.090947][ T7644] syzkaller1: entered promiscuous mode
[  170.090974][ T7644] syzkaller1: entered allmulticast mode
[  170.329476][   T37] kauditd_printk_skb: 3 callbacks suppressed
[  170.329488][   T37] audit: type=1326 audit(1760174334.261:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57ab21af79 code=0x7ffc0000
[  170.329998][   T37] audit: type=1326 audit(1760174334.261:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  170.332739][   T37] audit: type=1326 audit(1760174334.261:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57ab21af79 code=0x7ffc0000
[  170.333297][   T37] audit: type=1326 audit(1760174334.261:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  170.334204][   T37] audit: type=1326 audit(1760174334.261:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57ab21af79 code=0x7ffc0000
[  170.334948][   T37] audit: type=1326 audit(1760174334.261:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57ab21af79 code=0x7ffc0000
[  170.475390][   T37] audit: type=1326 audit(1760174334.391:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  170.499074][   T37] audit: type=1326 audit(1760174334.401:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f57ab21af79 code=0x7ffc0000
[  170.502705][   T37] audit: type=1326 audit(1760174334.431:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  170.505957][   T37] audit: type=1326 audit(1760174334.431:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7657 comm="syz.2.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  170.517257][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  171.327676][ T7442] bridge0: port 1(bridge_slave_0) entered blocking state
[  171.327805][ T7442] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.328018][ T7442] bridge_slave_0: entered allmulticast mode
[  171.330799][ T7442] bridge_slave_0: entered promiscuous mode
[  171.509318][   T13] hsr_slave_0: left promiscuous mode
[  171.525934][ T7681] netlink: 104 bytes leftover after parsing attributes in process `syz.1.695'.
[  171.547897][   T13] hsr_slave_1: left promiscuous mode
[  171.549103][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.549249][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.611993][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.612022][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.767316][ T5874] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  171.893893][   T13] veth1_macvtap: left promiscuous mode
[  171.895162][   T13] veth0_macvtap: left promiscuous mode
[  171.895482][   T13] veth1_vlan: left promiscuous mode
[  171.895819][   T13] veth0_vlan: left promiscuous mode
[  171.943638][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  171.943666][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  171.943700][ T5874] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.de
[  171.943721][ T5874] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.005281][ T5874] usb 5-1: config 0 descriptor??
[  172.236447][ T5874] ath6kl: Failed to submit usb control message: -71
[  172.236501][ T5874] ath6kl: unable to send the bmi data to the device: -71
[  172.236516][ T5874] ath6kl: Unable to send get target info: -71
[  172.239337][ T5874] ath6kl: Failed to init ath6kl core: -71
[  172.300773][ T5874] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71
[  172.338073][ T5874] usb 5-1: USB disconnect, device number 7
[  175.487949][   T13] team0 (unregistering): Port device team_slave_1 removed
[  175.698777][   T13] team0 (unregistering): Port device team_slave_0 removed
[  178.203935][ T7442] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.204162][ T7442] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.204441][ T7442] bridge_slave_1: entered allmulticast mode
[  178.207030][ T7442] bridge_slave_1: entered promiscuous mode
[  178.416037][ T5867] IPVS: starting estimator thread 0...
[  178.546786][ T7753] IPVS: using max 10 ests per chain, 24000 per kthread
[  178.649737][ T7762] input: syz0 as /devices/virtual/input/input10
[  178.691059][ T7442] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  178.749896][ T7442] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  178.958357][   T37] kauditd_printk_skb: 111 callbacks suppressed
[  178.958378][   T37] audit: type=1326 audit(1760174343.880:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7769 comm="syz.0.731" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x0
[  179.156580][ T7442] team0: Port device team_slave_0 added
[  179.163004][ T7442] team0: Port device team_slave_1 added
[  179.293153][ T5867] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  179.457356][ T5867] usb 2-1: Using ep0 maxpacket: 8
[  179.459857][ T5867] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.460003][ T5867] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  179.460029][ T5867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[  179.460056][ T5867] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  179.460077][ T5867] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  179.463169][ T5867] usb 2-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  179.463197][ T5867] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  179.463217][ T5867] usb 2-1: Product: syz
[  179.463230][ T5867] usb 2-1: Manufacturer: syz
[  179.463244][ T5867] usb 2-1: SerialNumber: syz
[  179.565248][ T5867] usb 2-1: config 0 descriptor??
[  179.633436][ T7442] batman_adv: batadv0: Adding interface: batadv_slave_0
[  179.633452][ T7442] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  179.633476][ T7442] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  179.704609][ T7442] batman_adv: batadv0: Adding interface: batadv_slave_1
[  179.704627][ T7442] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  179.704702][ T7442] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  179.807884][ T5867] radio-si470x 2-1:0.0: DeviceID=0x0000 ChipID=0x0000
[  179.807910][ T5867] radio-si470x 2-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[  180.017336][ T5867] radio-si470x 2-1:0.0: software version 0, hardware version 0
[  180.017360][ T5867] radio-si470x 2-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0.
[  180.017379][ T5867] radio-si470x 2-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[  180.220653][ T5867] radio-si470x 2-1:0.0: submitting int urb failed (-90)
[  180.333749][ T7442] hsr_slave_0: entered promiscuous mode
[  180.338547][ T7442] hsr_slave_1: entered promiscuous mode
[  180.339430][ T7442] debugfs: 'hsr0' already exists in 'hsr'
[  180.339451][ T7442] Cannot create hsr debugfs directory
[  180.547599][  T992] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  180.625990][ T5867] radio-si470x 2-1:0.0: si470x_set_report: usb_control_msg returned -71
[  180.626334][ T5867] radio-si470x 2-1:0.0: probe with driver radio-si470x failed with error -22
[  180.645134][ T5867] usb 2-1: USB disconnect, device number 10
[  180.697408][  T992] usb 5-1: Using ep0 maxpacket: 16
[  180.698744][  T992] usb 5-1: too many configurations: 17, using maximum allowed: 8
[  180.739354][  T992] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  180.739381][  T992] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  180.739399][  T992] usb 5-1: Product: syz
[  180.739421][  T992] usb 5-1: Manufacturer: syz
[  180.739433][  T992] usb 5-1: SerialNumber: syz
[  180.799849][  T992] r8152-cfgselector 5-1: Unknown version 0x0000
[  180.799874][  T992] r8152-cfgselector 5-1: config 0 descriptor??
[  181.014004][  T992] r8152-cfgselector 5-1: Unknown version 0x0000
[  181.014539][  T992] r8152-cfgselector 5-1: bad CDC descriptors
[  181.057151][  T992] r8152-cfgselector 5-1: USB disconnect, device number 8
[  181.872883][ T7442] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  181.954815][ T7442] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  181.985679][ T7442] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  182.040042][ T7442] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  182.091841][ T7841] loop8: detected capacity change from 0 to 8
[  182.115271][ T5952] Dev loop8: unable to read RDB block 8
[  182.115316][ T5952]  loop8: unable to read partition table
[  182.115541][ T5952] loop8: partition table beyond EOD, truncated
[  182.140929][ T7841] Dev loop8: unable to read RDB block 8
[  182.140973][ T7841]  loop8: unable to read partition table
[  182.141178][ T7841] loop8: partition table beyond EOD, truncated
[  182.141196][ T7841] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  182.251017][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805e037400: rx timeout, send abort
[  182.333633][ T7851] loop9: detected capacity change from 0 to 7
[  182.356659][ T5952] Dev loop9: unable to read RDB block 7
[  182.356701][ T5952]  loop9: AHDI p2
[  182.356730][ T5952] loop9: partition table partially beyond EOD, truncated
[  182.389785][ T7851] Dev loop9: unable to read RDB block 7
[  182.389816][ T7851]  loop9: AHDI p2
[  182.389845][ T7851] loop9: partition table partially beyond EOD, truncated
[  182.513020][ T7442] 8021q: adding VLAN 0 to HW filter on device bond0
[  182.591029][ T7442] 8021q: adding VLAN 0 to HW filter on device team0
[  182.615147][ T4007] bridge0: port 1(bridge_slave_0) entered blocking state
[  182.620640][ T4007] bridge0: port 1(bridge_slave_0) entered forwarding state
[  182.634511][ T7857] warning: `syz.4.753' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  182.662005][ T4007] bridge0: port 2(bridge_slave_1) entered blocking state
[  182.662615][ T4007] bridge0: port 2(bridge_slave_1) entered forwarding state
[  182.752037][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805e037400: abort rx timeout. Force session deactivation
[  182.755221][    C1] vcan0: j1939_tp_rxtimer: 0xffff888032464800: rx timeout, send abort
[  183.255315][    C1] vcan0: j1939_tp_rxtimer: 0xffff888032464800: abort rx timeout. Force session deactivation
[  183.371217][ T7442] 8021q: adding VLAN 0 to HW filter on device batadv0
[  184.021136][ T7914] netlink: 24 bytes leftover after parsing attributes in process `syz.1.772'.
[  184.051718][ T7914] netlink: 24 bytes leftover after parsing attributes in process `syz.1.772'.
[  184.123964][ T7442] veth0_vlan: entered promiscuous mode
[  184.144957][ T7442] veth1_vlan: entered promiscuous mode
[  184.239855][ T7442] veth0_macvtap: entered promiscuous mode
[  184.258094][ T7442] veth1_macvtap: entered promiscuous mode
[  184.274436][ T7916] netlink: 64 bytes leftover after parsing attributes in process `syz.1.773'.
[  184.303538][ T7442] batman_adv: batadv0: Interface activated: batadv_slave_0
[  184.371328][ T7442] batman_adv: batadv0: Interface activated: batadv_slave_1
[  184.448374][   T43] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  184.450747][   T43] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  184.452411][   T43] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  184.467465][   T43] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  184.741395][ T7921] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  184.886373][ T7921] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  185.008938][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  185.008965][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  185.148429][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  185.148451][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  186.316816][ T5892] kernel read not supported for file /video7 (pid: 5892 comm: kworker/1:4)
[  186.606881][ T5874] IPVS: starting estimator thread 0...
[  186.697449][ T7989] IPVS: using max 8 ests per chain, 19200 per kthread
[  187.697276][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  187.777776][ T8032] netlink: 28 bytes leftover after parsing attributes in process `syz.1.822'.
[  188.044384][   T37] audit: type=1326 audit(1760174352.970:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.044417][   T37] audit: type=1326 audit(1760174352.970:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.099230][   T37] audit: type=1326 audit(1760174353.030:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.099649][   T37] audit: type=1326 audit(1760174353.030:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.100566][   T37] audit: type=1326 audit(1760174353.030:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.101097][   T37] audit: type=1326 audit(1760174353.030:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.101750][   T37] audit: type=1326 audit(1760174353.030:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.103608][   T37] audit: type=1326 audit(1760174353.030:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.104174][   T37] audit: type=1326 audit(1760174353.030:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.105410][   T37] audit: type=1326 audit(1760174353.030:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8042 comm="syz.2.826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x7ffc0000
[  188.543498][ T8049] netlink: 'syz.1.828': attribute type 1 has an invalid length.
[  188.543512][ T8049] netlink: 168 bytes leftover after parsing attributes in process `syz.1.828'.
[  190.251008][ T8090] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  190.829698][ T8113] netlink: 8 bytes leftover after parsing attributes in process `syz.2.857'.
[  190.857347][ T5909] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  191.009411][ T5909] usb 2-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  191.009441][ T5909] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.041431][ T8119] input: syz1 as /devices/virtual/input/input12
[  191.046907][ T5909] usb 2-1: config 0 descriptor??
[  191.072593][ T5909] gspca_main: cpia1-2.14.0 probing 0813:0001
[  191.470383][ T5909] cpia1 2-1:0.0: unexpected state after lo power cmd: 00
[  191.628966][ T5874] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  191.795414][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.795447][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.795485][ T5874] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  191.795507][ T5874] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.832127][ T5874] usb 5-1: config 0 descriptor??
[  191.875222][ T5909] cpia1 2-1:0.0: only firmware version 1 is supported (got: 0)
[  191.958928][ T8135] TCP: TCP_TX_DELAY enabled
[  192.057678][ T5874] usbhid 5-1:0.0: can't add hid device: -71
[  192.057806][ T5874] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  192.097396][ T5909] usb 2-1: USB disconnect, device number 11
[  192.103056][ T5874] usb 5-1: USB disconnect, device number 9
[  192.677437][ T5874] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  192.683103][ T8146] Bluetooth: MGMT ver 1.23
[  192.839408][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  192.839442][ T5874] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.839478][ T5874] usb 5-1: New USB device found, idVendor=097f, idProduct=3333, bcdDevice= 0.40
[  192.839499][ T5874] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.866694][ T5874] usb 5-1: config 0 descriptor??
[  193.380316][ T5874] hid-generic 0003:097F:3333.0008: hidraw0: USB HID v0.00 Device [HID 097f:3333] on usb-dummy_hcd.4-1/input0
[  193.491805][ T8173] team_slave_0: entered promiscuous mode
[  193.491855][ T8173] team_slave_1: entered promiscuous mode
[  193.492447][ T8173] team_slave_0: left promiscuous mode
[  193.492530][ T8173] team_slave_1: left promiscuous mode
[  193.494419][  T992] usb 5-1: USB disconnect, device number 10
[  193.681975][ T8170] fido_id[8170]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  194.261961][ T8196] loop6: detected capacity change from 0 to 7
[  194.295776][ T8196] Dev loop6: unable to read RDB block 7
[  194.295819][ T8196]  loop6: unable to read partition table
[  194.296011][ T8196] loop6: partition table beyond EOD, truncated
[  194.296043][ T8196] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  194.570467][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  194.570527][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  195.288557][ T8228] netlink: 4 bytes leftover after parsing attributes in process `syz.0.895'.
[  195.960770][ T8253] batadv_slave_0: entered promiscuous mode
[  195.976412][ T8252] batadv_slave_0: left promiscuous mode
[  196.912646][ T8277] netlink: 8 bytes leftover after parsing attributes in process `syz.4.915'.
[  196.989843][ T8277] netlink: 'syz.4.915': attribute type 1 has an invalid length.
[  196.989864][ T8277] netlink: 'syz.4.915': attribute type 2 has an invalid length.
[  197.336275][ T8290] af_packet: tpacket_rcv: packet too big, clamped from 256 to 4294967286. macoff=82
[  198.061056][ T8307] netlink: 146780 bytes leftover after parsing attributes in process `syz.5.929'.
[  198.061102][ T8307] openvswitch: netlink: Key 0 has unexpected len 37 expected 0
[  198.234468][ T8315] veth0: entered promiscuous mode
[  198.235092][ T8315] netlink: 4 bytes leftover after parsing attributes in process `syz.0.935'.
[  198.256644][ T8312] loop8: detected capacity change from 0 to 8
[  198.275240][ T8312] Dev loop8: unable to read RDB block 8
[  198.275286][ T8312]  loop8: unable to read partition table
[  198.275512][ T8312] loop8: partition table beyond EOD, truncated
[  198.275552][ T8312] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  198.914763][ T8323] veth0_to_team: entered promiscuous mode
[  199.542453][ T8357] netlink: 14212 bytes leftover after parsing attributes in process `syz.1.951'.
[  200.827430][ T5867] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  200.987560][ T5867] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  201.020898][ T5867] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  201.020929][ T5867] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  201.020949][ T5867] usb 5-1: SerialNumber: syz
[  201.766511][ T5867] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42
[  202.123961][ T5896] usb 5-1: USB disconnect, device number 11
[  202.129841][ T5896] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device
[  202.592097][ T8444] netlink: 830 bytes leftover after parsing attributes in process `syz.1.987'.
[  203.854047][ T8483] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1005'.
[  203.908028][ T8487] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1005'.
[  205.187415][ T5802] Bluetooth: hci5: command 0x1003 tx timeout
[  205.187435][ T5812] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  207.575355][ T8544] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1032'.
[  207.863625][ T8544] vxlan0: entered promiscuous mode
[  207.915488][ T1025] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  207.928134][ T1025] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  207.928182][ T1025] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  207.928215][ T1025] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  208.043741][ T8551] netlink: 'syz.5.1036': attribute type 1 has an invalid length.
[  208.043765][ T8551] netlink: 128 bytes leftover after parsing attributes in process `syz.5.1036'.
[  208.043781][ T8551] netlink: 'syz.5.1036': attribute type 2 has an invalid length.
[  208.043793][ T8551] netlink: 'syz.5.1036': attribute type 1 has an invalid length.
[  210.424405][ T8622] loop3: detected capacity change from 0 to 1
[  210.446274][ T8622] Dev loop3: unable to read RDB block 1
[  210.446438][ T8622]  loop3: unable to read partition table
[  210.446705][ T8622] loop3: partition table beyond EOD, truncated
[  210.446740][ T8622] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  211.648416][ T8651] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1078'.
[  211.648441][ T8651] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1078'.
[  211.914540][ T8660] Bluetooth: MGMT ver 1.23
[  211.987348][ T5810] Bluetooth: hci4: command 0x0406 tx timeout
[  211.987520][ T5810] Bluetooth: hci0: command 0x0406 tx timeout
[  211.987666][ T5810] Bluetooth: hci1: command 0x0406 tx timeout
[  212.301688][ T8670] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  214.947438][  T992] page_pool_release_retry() stalled pool shutdown: id 30, 1 inflight 60 sec
[  215.556650][ T8782] 9pnet_fd: Insufficient options for proto=fd
[  215.909768][ T8789] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1124'.
[  216.223504][ T5952] block nbd64: NBD_DISCONNECT
[  216.420420][   T61] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  216.420467][   T61] CPU: 0 UID: 0 PID: 61 Comm: kworker/u9:0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  216.420491][   T61] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  216.420505][   T61] Workqueue: hci4 hci_rx_work
[  216.420543][   T61] Call Trace:
[  216.420555][   T61]  <TASK>
[  216.420564][   T61]  dump_stack_lvl+0x189/0x250
[  216.420597][   T61]  ? __pfx_dump_stack_lvl+0x10/0x10
[  216.420621][   T61]  ? __pfx__printk+0x10/0x10
[  216.420650][   T61]  ? kernfs_path_from_node+0x2c/0x280
[  216.420670][   T61]  ? kernfs_path_from_node+0x243/0x280
[  216.420689][   T61]  ? kernfs_path_from_node+0x2c/0x280
[  216.420719][   T61]  sysfs_create_dir_ns+0x259/0x280
[  216.420743][   T61]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  216.420765][   T61]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  216.420789][   T61]  ? rt_spin_unlock+0x161/0x200
[  216.420811][   T61]  kobject_add_internal+0x5a5/0xb50
[  216.420848][   T61]  kobject_add+0x155/0x220
[  216.420880][   T61]  ? __pfx_kobject_add+0x10/0x10
[  216.420913][   T61]  ? get_device_parent+0x370/0x3a0
[  216.420948][   T61]  device_add+0x408/0xb50
[  216.420983][   T61]  hci_conn_add_sysfs+0xd5/0x1e0
[  216.421017][   T61]  le_conn_complete_evt+0xf39/0x1500
[  216.421056][   T61]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  216.421080][   T61]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  216.421104][   T61]  ? lockdep_hardirqs_on+0x9c/0x150
[  216.421140][   T61]  ? skb_pull_data+0xfb/0x200
[  216.421174][   T61]  hci_le_conn_complete_evt+0x187/0x450
[  216.421206][   T61]  hci_event_packet+0x78f/0x1200
[  216.421241][   T61]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  216.421266][   T61]  ? __pfx_hci_event_packet+0x10/0x10
[  216.421311][   T61]  ? hci_send_to_monitor+0xe2/0x570
[  216.421338][   T61]  hci_rx_work+0x46a/0xe80
[  216.421374][   T61]  ? process_scheduled_works+0x9ef/0x17b0
[  216.421401][   T61]  process_scheduled_works+0xade/0x17b0
[  216.421456][   T61]  ? __pfx_process_scheduled_works+0x10/0x10
[  216.421498][   T61]  worker_thread+0x8a0/0xda0
[  216.421550][   T61]  kthread+0x711/0x8a0
[  216.421581][   T61]  ? __pfx_worker_thread+0x10/0x10
[  216.421603][   T61]  ? __pfx_kthread+0x10/0x10
[  216.421629][   T61]  ? rt_spin_unlock+0x150/0x200
[  216.421652][   T61]  ? rt_spin_unlock+0x161/0x200
[  216.421668][   T61]  ? __pfx_kthread+0x10/0x10
[  216.421698][   T61]  ret_from_fork+0x4b9/0x870
[  216.421725][   T61]  ? __pfx_ret_from_fork+0x10/0x10
[  216.421756][   T61]  ? __switch_to_asm+0x39/0x70
[  216.421780][   T61]  ? __switch_to_asm+0x33/0x70
[  216.421803][   T61]  ? __pfx_kthread+0x10/0x10
[  216.421832][   T61]  ret_from_fork_asm+0x1a/0x30
[  216.421876][   T61]  </TASK>
[  216.423272][   T61] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  216.423322][   T61] Bluetooth: hci4: failed to register connection device
[  217.117411][   T61] Bluetooth: hci3: command 0x0406 tx timeout
[  217.390002][ T5952] udevd[5952]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  217.834034][ T8832] all (unregistering): Released all slaves
[  218.204346][ T8851] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  218.318397][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802a853800: rx timeout, send abort
[  218.321462][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88802a853800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  218.674470][ T5874] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  218.685614][ T5874] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  220.670686][ T8899] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  221.451986][ T8920] input: syz1 as /devices/virtual/input/input13
[  221.547355][ T5896] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  221.697349][ T5896] usb 2-1: Using ep0 maxpacket: 16
[  221.698776][ T8923] veth0_to_team: entered promiscuous mode
[  221.706922][ T5896] usb 2-1: config 0 has an invalid interface number: 69 but max is 0
[  221.706946][ T5896] usb 2-1: config 0 has no interface number 0
[  221.737678][ T5896] usb 2-1: New USB device found, idVendor=05ac, idProduct=0274, bcdDevice=f9.c2
[  221.737714][ T5896] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.737733][ T5896] usb 2-1: Product: syz
[  221.737746][ T5896] usb 2-1: Manufacturer: syz
[  221.737760][ T5896] usb 2-1: SerialNumber: syz
[  221.784817][ T5896] usb 2-1: config 0 descriptor??
[  221.812448][ T5896] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.69/input/input14
[  222.007417][ T5154] bcm5974 2-1:0.69: could not read from device
[  222.069237][ T5896] usb 2-1: USB disconnect, device number 12
[  223.069979][ T5909] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  223.187455][ T5812] Bluetooth: hci4: command 0x0406 tx timeout
[  223.229666][ T5909] usb 5-1: config 1 has an invalid descriptor of length 117, skipping remainder of the config
[  223.229692][ T5909] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.231211][ T5909] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  223.231236][ T5909] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  223.231255][ T5909] usb 5-1: SerialNumber: syz
[  223.455314][ T5909] usb 5-1: 0:2 : does not exist
[  223.469220][ T5909] usb 5-1: unit 255 not found!
[  223.489656][ T5909] usb 5-1: 5:0: cannot get min/max values for control 3 (id 5)
[  223.542751][ T5909] usb 5-1: USB disconnect, device number 12
[  223.666836][ T5952] udevd[5952]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  225.616609][ T9025] team_slave_0: entered allmulticast mode
[  225.637590][ T9026] team_slave_0: entered promiscuous mode
[  226.942845][   T61] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  226.942870][   T61] CPU: 0 UID: 0 PID: 61 Comm: kworker/u9:0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  226.942892][   T61] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  226.942905][   T61] Workqueue: hci2 hci_rx_work
[  226.942939][   T61] Call Trace:
[  226.942947][   T61]  <TASK>
[  226.942956][   T61]  dump_stack_lvl+0x189/0x250
[  226.942985][   T61]  ? __pfx_dump_stack_lvl+0x10/0x10
[  226.943007][   T61]  ? __pfx__printk+0x10/0x10
[  226.943034][   T61]  ? kernfs_path_from_node+0x2c/0x280
[  226.943052][   T61]  ? kernfs_path_from_node+0x243/0x280
[  226.943070][   T61]  ? kernfs_path_from_node+0x2c/0x280
[  226.943094][   T61]  sysfs_create_dir_ns+0x259/0x280
[  226.943114][   T61]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  226.943133][   T61]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  226.943156][   T61]  ? rt_spin_unlock+0x161/0x200
[  226.943178][   T61]  kobject_add_internal+0x5a5/0xb50
[  226.943213][   T61]  kobject_add+0x155/0x220
[  226.943244][   T61]  ? __pfx_kobject_add+0x10/0x10
[  226.943273][   T61]  ? get_device_parent+0x370/0x3a0
[  226.943306][   T61]  device_add+0x408/0xb50
[  226.943340][   T61]  hci_conn_add_sysfs+0xd5/0x1e0
[  226.943372][   T61]  le_conn_complete_evt+0xf39/0x1500
[  226.943410][   T61]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  226.943435][   T61]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  226.943470][   T61]  ? lockdep_hardirqs_on+0x9c/0x150
[  226.943498][   T61]  ? skb_pull_data+0xfb/0x200
[  226.943531][   T61]  hci_le_enh_conn_complete_evt+0x189/0x470
[  226.943556][   T61]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  226.943584][   T61]  hci_event_packet+0x78f/0x1200
[  226.943617][   T61]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  226.943641][   T61]  ? __pfx_hci_event_packet+0x10/0x10
[  226.943681][   T61]  ? hci_send_to_monitor+0xe2/0x570
[  226.943709][   T61]  hci_rx_work+0x46a/0xe80
[  226.943748][   T61]  ? process_scheduled_works+0x9ef/0x17b0
[  226.943775][   T61]  process_scheduled_works+0xade/0x17b0
[  226.943831][   T61]  ? __pfx_process_scheduled_works+0x10/0x10
[  226.943874][   T61]  worker_thread+0x8a0/0xda0
[  226.943929][   T61]  kthread+0x711/0x8a0
[  226.943959][   T61]  ? __pfx_worker_thread+0x10/0x10
[  226.943980][   T61]  ? __pfx_kthread+0x10/0x10
[  226.944004][   T61]  ? rt_spin_unlock+0x150/0x200
[  226.944025][   T61]  ? rt_spin_unlock+0x161/0x200
[  226.944039][   T61]  ? __pfx_kthread+0x10/0x10
[  226.944063][   T61]  ret_from_fork+0x4b9/0x870
[  226.944088][   T61]  ? __pfx_ret_from_fork+0x10/0x10
[  226.944120][   T61]  ? __switch_to_asm+0x39/0x70
[  226.944150][   T61]  ? __switch_to_asm+0x33/0x70
[  226.944173][   T61]  ? __pfx_kthread+0x10/0x10
[  226.944203][   T61]  ret_from_fork_asm+0x1a/0x30
[  226.944242][   T61]  </TASK>
[  226.944294][   T61] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  226.944336][   T61] Bluetooth: hci2: failed to register connection device
[  227.703720][ T9078] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1233'.
[  228.308860][ T9094] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1243'.
[  228.717378][ T5919] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  228.881244][ T5919] usb 2-1: config 0 interface 0 has no altsetting 0
[  228.881284][ T5919] usb 2-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[  228.881306][ T5919] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.913321][ T5919] usb 2-1: config 0 descriptor??
[  229.465927][ T9126] all (unregistering): Released all slaves
[  229.691337][    C0] vkms_vblank_simulate: vblank timer overrun
[  229.949691][ T5919] radio-keene 2-1:0.0: V4L2 device registered as radio48
[  230.171092][ T5896] usb 2-1: USB disconnect, device number 13
[  230.216901][ T9156] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1267'.
[  230.245466][ T9156] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1267'.
[  230.338857][    C0] vkms_vblank_simulate: vblank timer overrun
[  230.525481][    C0] vkms_vblank_simulate: vblank timer overrun
[  230.762631][    C0] vkms_vblank_simulate: vblank timer overrun
[  231.258654][ T9180] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1276'.
[  231.328432][ T9180] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1276'.
[  233.451270][ T9238] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1301'.
[  233.451292][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1301'.
[  233.707542][  T992] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  233.915477][  T992] usb 6-1: Using ep0 maxpacket: 32
[  233.918510][  T992] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  233.918541][  T992] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  233.918580][  T992] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  233.918691][  T992] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.979602][  T992] usb 6-1: config 0 descriptor??
[  234.015034][  T992] hub 6-1:0.0: USB hub found
[  234.226273][  T992] hub 6-1:0.0: 1 port detected
[  234.468665][ T1025] Bluetooth: hci5: Frame reassembly failed (-84)
[  235.162086][ T9265] block nbd4: Unsupported socket: should be TCP or UNIX.
[  235.516884][  T992] hub 6-1:0.0: hub_hub_status failed (err = -32)
[  235.516912][  T992] hub 6-1:0.0: config failed, can't get hub status (err -32)
[  235.538401][  T992] usbhid 6-1:0.0: can't add hid device: -32
[  235.538542][  T992] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[  235.582944][  T992] usb 6-1: USB disconnect, device number 2
[  236.067421][ T5867] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[  236.219754][ T5867] usb 5-1: config 150 has an invalid interface number: 204 but max is 2
[  236.219782][ T5867] usb 5-1: config 150 has 2 interfaces, different from the descriptor's value: 3
[  236.219803][ T5867] usb 5-1: config 150 has no interface number 0
[  236.219851][ T5867] usb 5-1: config 150 interface 204 has no altsetting 0
[  236.262778][ T5867] usb 5-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb
[  236.262806][ T5867] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  236.262825][ T5867] usb 5-1: Product: syz
[  236.262838][ T5867] usb 5-1: Manufacturer: syz
[  236.262852][ T5867] usb 5-1: SerialNumber: syz
[  236.361887][ T9300] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1327'.
[  236.467680][   T61] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  236.502793][ T5867] xr_serial 5-1:150.204: skipping garbage
[  236.502995][ T5867] xr_serial 5-1:150.204: xr_serial converter detected
[  237.057749][ T9317] netlink: 'syz.1.1334': attribute type 10 has an invalid length.
[  237.240231][ T9316] team0: entered promiscuous mode
[  237.240255][ T9316] team_slave_0: entered promiscuous mode
[  237.240732][ T9316] team_slave_1: entered promiscuous mode
[  237.311549][ T5867] usb 5-1: xr_serial converter now attached to ttyUSB0
[  237.385097][ T9317] macvlan1: entered promiscuous mode
[  237.389990][ T9317] team0: Port device macvlan1 added
[  237.527466][  T992] usb 5-1: USB disconnect, device number 13
[  237.547911][ T9332] netlink: 'syz.1.1341': attribute type 12 has an invalid length.
[  237.547931][ T9332] netlink: 'syz.1.1341': attribute type 29 has an invalid length.
[  237.547943][ T9332] netlink: 148 bytes leftover after parsing attributes in process `syz.1.1341'.
[  237.548729][ T9332] netlink: 'syz.1.1341': attribute type 12 has an invalid length.
[  237.548746][ T9332] netlink: 'syz.1.1341': attribute type 29 has an invalid length.
[  237.548756][ T9332] netlink: 148 bytes leftover after parsing attributes in process `syz.1.1341'.
[  237.608250][  T992] xr_serial ttyUSB0: xr_serial converter now disconnected from ttyUSB0
[  237.630684][  T992] xr_serial 5-1:150.204: device disconnected
[  238.425137][ T9360] netlink: 'syz.1.1354': attribute type 1 has an invalid length.
[  238.425159][ T9360] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1354'.
[  238.628440][ T9368] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1356'.
[  239.459466][ T5874] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  239.589441][ T9396] evm: overlay not supported
[  239.617340][ T5874] usb 2-1: Using ep0 maxpacket: 16
[  239.666538][ T5874] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  239.666570][ T5874] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  239.666607][ T5874] usb 2-1: New USB device found, idVendor=172f, idProduct=0032, bcdDevice= 0.00
[  239.666627][ T5874] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.688897][ T5874] usb 2-1: config 0 descriptor??
[  239.697481][ T5909] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  239.870098][ T5909] usb 5-1: Using ep0 maxpacket: 32
[  239.872647][ T5909] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  239.872677][ T5909] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  239.872714][ T5909] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  239.872737][ T5909] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.923544][ T5909] usb 5-1: config 0 descriptor??
[  239.942855][ T5909] hub 5-1:0.0: USB hub found
[  240.146099][ T5909] hub 5-1:0.0: 1 port detected
[  240.214058][ T5874] waltop 0003:172F:0032.000A: hidraw0: USB HID v0.81 Device [HID 172f:0032] on usb-dummy_hcd.1-1/input0
[  240.364169][ T5130] usb 2-1: USB disconnect, device number 14
[  240.614959][ T9400] fido_id[9400]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  240.779801][ T5909] hub 5-1:0.0: activate --> -90
[  240.994528][ T9417] netlink: 'syz.1.1379': attribute type 1 has an invalid length.
[  241.050212][ T9417] 8021q: adding VLAN 0 to HW filter on device bond1
[  241.186508][ T5874] usb 5-1: USB disconnect, device number 14
[  241.187530][ T5909] usb 5-1-port1: config error
[  241.188462][ T5909] usb 5-1-port1: attempt power cycle
[  241.274562][ T9419] bond1: (slave geneve2): making interface the new active one
[  241.284369][ T9419] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  242.728910][ T9476] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1400'.
[  243.946445][ T9505] overlayfs: failed to clone upperpath
[  243.957871][ T9506] netlink: 'syz.1.1414': attribute type 12 has an invalid length.
[  243.957895][ T9506] netlink: 'syz.1.1414': attribute type 29 has an invalid length.
[  243.957908][ T9506] netlink: 148 bytes leftover after parsing attributes in process `syz.1.1414'.
[  243.957933][ T9506] netlink: 51 bytes leftover after parsing attributes in process `syz.1.1414'.
[  244.286358][ T9517] hsr0: entered allmulticast mode
[  244.286383][ T9517] hsr_slave_0: entered allmulticast mode
[  244.286401][ T9517] hsr_slave_1: entered allmulticast mode
[  244.840895][ T9532] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1427'.
[  244.856138][ T9534] input: syz1 as /devices/virtual/input/input15
[  244.882505][ T9528] geneve2: entered promiscuous mode
[  244.882531][ T9528] geneve2: entered allmulticast mode
[  245.995913][ T9569] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  246.016096][ T9572] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  246.254274][ T9574] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  248.102320][ T5892] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  248.248984][ T5892] usb 5-1: Using ep0 maxpacket: 32
[  248.251587][ T5892] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  248.251619][ T5892] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  248.251658][ T5892] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  248.251681][ T5892] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.260625][ T5892] usb 5-1: config 0 descriptor??
[  248.268879][ T5892] hub 5-1:0.0: USB hub found
[  248.527862][ T5892] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  248.544268][ T5892] usbhid 5-1:0.0: can't add hid device: -71
[  248.544392][ T5892] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  248.580692][ T5892] usb 5-1: USB disconnect, device number 19
[  248.927344][ T5874] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  249.090777][ T5874] usb 2-1: Using ep0 maxpacket: 16
[  249.115054][ T5874] usb 2-1: config 1 interface 0 has no altsetting 0
[  249.130243][ T5874] usb 2-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.40
[  249.130272][ T5874] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  249.130292][ T5874] usb 2-1: Product: syz
[  249.130306][ T5874] usb 2-1: Manufacturer: syz
[  249.130320][ T5874] usb 2-1: SerialNumber: syz
[  249.588431][ T5874] usbhid 2-1:1.0: can't add hid device: -71
[  249.588565][ T5874] usbhid 2-1:1.0: probe with driver usbhid failed with error -71
[  249.621813][ T5874] usb 2-1: USB disconnect, device number 15
[  252.468178][ T5812] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  253.244983][   T37] kauditd_printk_skb: 3 callbacks suppressed
[  253.244999][   T37] audit: type=1326 audit(1760174418.170:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9768 comm="syz.0.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  253.245042][   T37] audit: type=1326 audit(1760174418.170:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9768 comm="syz.0.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  253.297351][   T37] audit: type=1326 audit(1760174418.220:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9766 comm="syz.4.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  253.304048][   T37] audit: type=1326 audit(1760174418.230:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9768 comm="syz.0.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  253.304096][   T37] audit: type=1326 audit(1760174418.230:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9768 comm="syz.0.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  253.304132][   T37] audit: type=1326 audit(1760174418.230:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9768 comm="syz.0.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  253.304169][   T37] audit: type=1326 audit(1760174418.230:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9768 comm="syz.0.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  253.304205][   T37] audit: type=1326 audit(1760174418.230:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9768 comm="syz.0.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  253.304241][   T37] audit: type=1326 audit(1760174418.230:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9768 comm="syz.0.1528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  253.305891][   T37] audit: type=1326 audit(1760174418.230:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9766 comm="syz.4.1527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  253.696163][ T9779] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1531'.
[  253.847439][ T5909] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  254.000472][ T5909] usb 2-1: config 0 has an invalid interface number: 233 but max is 0
[  254.000501][ T5909] usb 2-1: config 0 has an invalid descriptor of length 86, skipping remainder of the config
[  254.000520][ T5909] usb 2-1: config 0 has no interface number 0
[  254.000556][ T5909] usb 2-1: too many endpoints for config 0 interface 233 altsetting 41: 139, using maximum allowed: 30
[  254.000611][ T5909] usb 2-1: config 0 interface 233 altsetting 41 has 0 endpoint descriptors, different from the interface descriptor's value: 139
[  254.000637][ T5909] usb 2-1: config 0 interface 233 has no altsetting 0
[  254.000670][ T5909] usb 2-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[  254.000692][ T5909] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  254.013604][ T5909] usb 2-1: config 0 descriptor??
[  254.170727][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x1
[  254.170760][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  254.170785][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  254.170810][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  254.170830][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  254.170851][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  254.170911][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  254.170936][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  254.170960][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x2
[  254.170983][ T5874] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  254.222308][ T5909] usb 2-1: string descriptor 0 read error: -71
[  254.257831][ T5874] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  254.380218][ T5909] usb 2-1: selecting invalid altsetting 0
[  254.408908][ T9794] fido_id[9794]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  254.632603][ T5909] usb 2-1: USB disconnect, device number 16
[  255.090375][ T9812] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1544'.
[  255.090461][ T9812] bridge_slave_1: left allmulticast mode
[  255.090483][ T9812] bridge_slave_1: left promiscuous mode
[  255.094791][ T9812] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.213200][ T9812] bridge_slave_0: left allmulticast mode
[  255.213229][ T9812] bridge_slave_0: left promiscuous mode
[  255.234207][ T9812] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.998503][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  255.998565][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  256.157448][ T5874] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  256.272835][ T9838] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  256.325239][ T5874] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  256.325274][ T5874] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  256.325311][ T5874] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  256.325333][ T5874] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.384892][ T9825] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  256.438635][ T5874] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  256.674569][ T5909] usb 2-1: USB disconnect, device number 17
[  256.921370][ T5949] udevd[5949]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  258.585726][    C0] vkms_vblank_simulate: vblank timer overrun
[  258.921804][ T9898] sctp: [Deprecated]: syz.0.1579 (pid 9898) Use of struct sctp_assoc_value in delayed_ack socket option.
[  258.921804][ T9898] Use struct sctp_sack_info instead
[  259.271764][ T9904] overlayfs: failed to clone upperpath
[  259.739199][   T37] kauditd_printk_skb: 6 callbacks suppressed
[  259.739217][   T37] audit: type=1800 audit(1760174424.650:193): pid=9911 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.1587" name="nullb0" dev="tmpfs" ino=1643 res=0 errno=0
[  260.011344][   T12] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.403232][   T61] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  260.430525][   T61] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  260.431994][   T61] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  260.433338][   T61] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  260.435482][   T61] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  260.591009][   T12] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.836438][ T9940] 9pnet_fd: Insufficient options for proto=fd
[  260.942610][   T12] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.300743][   T12] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.483096][ T9960] kvm: user requested TSC rate below hardware speed
[  261.841592][ T9964] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  261.841736][ T9964] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  261.932298][ T9969] 9pnet_fd: Insufficient options for proto=fd
[  262.089274][ T9964] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  262.089374][ T9964] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  262.192545][   T12] bridge_slave_1: left allmulticast mode
[  262.192574][   T12] bridge_slave_1: left promiscuous mode
[  262.192833][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.203745][ T9964] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  262.203842][ T9964] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  262.297021][   T12] bridge_slave_0: left allmulticast mode
[  262.297054][   T12] bridge_slave_0: left promiscuous mode
[  262.317510][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.321177][ T9964] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  262.407864][ T9964] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  262.407962][ T9964] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  262.485773][ T9964] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  262.486326][ T9964] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  262.603720][ T9964] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  262.704864][ T9992] overlayfs: failed to clone upperpath
[  263.832184][ T5812] Bluetooth: hci0: command 0x0406 tx timeout
[  264.148050][ T5812] Bluetooth: hci1: command 0x0406 tx timeout
[  264.237404][ T5812] Bluetooth: hci4: command 0x0406 tx timeout
[  264.441148][   T37] audit: type=1326 audit(1760174429.370:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.441263][   T37] audit: type=1326 audit(1760174429.370:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.443287][   T37] audit: type=1326 audit(1760174429.370:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.443570][   T37] audit: type=1326 audit(1760174429.370:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.443807][   T37] audit: type=1326 audit(1760174429.370:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.444250][   T37] audit: type=1326 audit(1760174429.370:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.444645][   T37] audit: type=1326 audit(1760174429.370:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.444776][   T37] audit: type=1326 audit(1760174429.370:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.445113][   T37] audit: type=1326 audit(1760174429.370:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10029 comm="syz.0.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  264.467338][ T5812] Bluetooth: hci3: command 0x0406 tx timeout
[  264.547355][ T5812] Bluetooth: hci2: command 0x041b tx timeout
[  264.817417][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  265.145210][T10035] netlink: 'syz.2.1638': attribute type 4 has an invalid length.
[  265.845395][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  265.897917][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  265.907466][ T5812] Bluetooth: hci0: command 0x0406 tx timeout
[  265.949956][   T12] bond0 (unregistering): Released all slaves
[  266.012593][T10023] vlan2: entered allmulticast mode
[  266.012616][T10023] hsr_slave_1: entered allmulticast mode
[  266.078755][   T37] kauditd_printk_skb: 8 callbacks suppressed
[  266.078771][   T37] audit: type=1326 audit(1760174431.010:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.078814][   T37] audit: type=1326 audit(1760174431.010:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.080966][   T37] audit: type=1326 audit(1760174431.010:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.081011][   T37] audit: type=1326 audit(1760174431.010:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.081049][   T37] audit: type=1326 audit(1760174431.010:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.081338][   T37] audit: type=1326 audit(1760174431.010:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.084322][   T37] audit: type=1326 audit(1760174431.010:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.084479][   T37] audit: type=1326 audit(1760174431.010:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.084856][   T37] audit: type=1326 audit(1760174431.010:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.086129][   T37] audit: type=1326 audit(1760174431.010:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10036 comm="syz.4.1639" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcb56eec9 code=0x7ffc0000
[  266.237818][ T5812] Bluetooth: hci1: command 0x0406 tx timeout
[  266.307349][ T5812] Bluetooth: hci4: command 0x0406 tx timeout
[  266.543927][T10046] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  266.547406][ T5812] Bluetooth: hci3: command 0x0406 tx timeout
[  266.627981][ T5812] Bluetooth: hci2: command 0x041b tx timeout
[  266.789221][T10049] KVM: debugfs: duplicate directory 10049-4
[  267.331144][ T9926] chnl_net:caif_netlink_parms(): no params data found
[  267.665593][T10077] input: syz0 as /devices/virtual/input/input16
[  268.387395][ T5812] Bluetooth: hci4: command 0x0406 tx timeout
[  268.456029][T10105] overlayfs: failed to clone lowerpath
[  268.707408][ T5812] Bluetooth: hci2: command 0x041b tx timeout
[  268.793371][   T12] hsr_slave_0: left promiscuous mode
[  268.897551][   T12] hsr_slave_1: left promiscuous mode
[  268.898530][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  268.898553][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  268.931228][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  268.931254][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  268.938290][T10121] netlink: 'syz.1.1674': attribute type 21 has an invalid length.
[  268.938310][T10121] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1674'.
[  269.257622][   T12] veth1_macvtap: left promiscuous mode
[  269.257727][   T12] veth0_macvtap: left promiscuous mode
[  269.257983][   T12] veth1_vlan: left promiscuous mode
[  269.259396][   T12] veth0_vlan: left promiscuous mode
[  270.787421][ T5812] Bluetooth: hci2: command 0x041b tx timeout
[  272.138066][   T12] team0 (unregistering): Port device team_slave_1 removed
[  272.404573][   T12] team0 (unregistering): Port device team_slave_0 removed
[  272.867376][ T5812] Bluetooth: hci2: command 0x041b tx timeout
[  274.947460][ T5812] Bluetooth: hci2: command 0x041b tx timeout
[  275.238008][ T9926] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.238138][ T9926] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.238308][ T9926] bridge_slave_0: entered allmulticast mode
[  275.239818][ T9926] bridge_slave_0: entered promiscuous mode
[  275.287601][T10121] netlink: 'syz.1.1674': attribute type 21 has an invalid length.
[  275.287625][T10121] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1674'.
[  275.325763][ T9926] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.325897][ T9926] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.326128][ T9926] bridge_slave_1: entered allmulticast mode
[  275.349492][ T9926] bridge_slave_1: entered promiscuous mode
[  275.351247][ T4041] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  276.171476][ T4041] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  276.172820][ T4041] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  276.702967][ T4041] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  276.718010][ T9926] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  276.765705][ T9926] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  277.110247][ T9926] team0: Port device team_slave_0 added
[  277.114668][ T9926] team0: Port device team_slave_1 added
[  277.497394][ T9926] batman_adv: batadv0: Adding interface: batadv_slave_0
[  277.497407][ T9926] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  277.497422][ T9926] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  277.502710][ T9926] batman_adv: batadv0: Adding interface: batadv_slave_1
[  277.502726][ T9926] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  277.502750][ T9926] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  278.319582][ T9926] hsr_slave_0: entered promiscuous mode
[  278.321027][ T9926] hsr_slave_1: entered promiscuous mode
[  278.326857][ T9926] debugfs: 'hsr0' already exists in 'hsr'
[  278.326884][ T9926] Cannot create hsr debugfs directory
[  279.646840][ T9926] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  279.692897][ T9926] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  279.723302][ T9926] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  279.768715][ T9926] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  280.123668][ T9926] 8021q: adding VLAN 0 to HW filter on device bond0
[  280.193412][ T9926] 8021q: adding VLAN 0 to HW filter on device team0
[  280.214531][ T1440] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.214779][ T1440] bridge0: port 1(bridge_slave_0) entered forwarding state
[  280.264667][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.264817][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  280.971056][ T9926] 8021q: adding VLAN 0 to HW filter on device batadv0
[  281.856516][ T9926] veth0_vlan: entered promiscuous mode
[  281.901525][ T9926] veth1_vlan: entered promiscuous mode
[  281.997619][ T9926] veth0_macvtap: entered promiscuous mode
[  282.003414][ T9926] veth1_macvtap: entered promiscuous mode
[  282.165344][ T9926] batman_adv: batadv0: Interface activated: batadv_slave_0
[  282.208223][ T9926] batman_adv: batadv0: Interface activated: batadv_slave_1
[  282.261895][   T13] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  282.262318][   T13] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  282.290108][   T13] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  282.292167][   T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  282.421122][T10311] overlayfs: failed to clone upperpath
[  282.516413][T10313] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1747'.
[  282.699291][T10313] team1: entered promiscuous mode
[  282.699317][T10313] team1: entered allmulticast mode
[  282.883520][ T4041] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  282.883541][ T4041] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  282.924284][T10318] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1750'.
[  282.924315][T10318] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1750'.
[  283.089326][ T1440] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.089354][ T1440] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.292210][T10331] netlink: 'syz.2.1756': attribute type 39 has an invalid length.
[  284.089162][T10345] trusted_key: syz.6.1761 sent an empty control message without MSG_MORE.
[  284.873453][T10357] "syz.6.1765" (10357) uses obsolete ecb(arc4) skcipher
[  287.108225][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.439501][T10414] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1788'.
[  287.499652][T10414] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1788'.
[  287.505904][ T1025] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  287.521709][ T1025] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  287.521769][ T1025] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  287.521804][ T1025] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  287.774230][T10423] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1792'.
[  288.466568][T10442] netlink: 566 bytes leftover after parsing attributes in process `syz.1.1799'.
[  289.268832][T10468] overlayfs: failed to clone upperpath
[  290.050536][T10489] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  290.050568][T10489] overlayfs: failed to set xattr on upper
[  290.050577][T10489] overlayfs: ...falling back to redirect_dir=nofollow.
[  290.050585][T10489] overlayfs: ...falling back to index=off.
[  290.548132][T10508] netlink: 'syz.0.1823': attribute type 10 has an invalid length.
[  290.571142][T10508] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.595038][T10508] bridge_slave_1: left allmulticast mode
[  290.595069][T10508] bridge_slave_1: left promiscuous mode
[  290.595379][T10508] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.766082][T10508] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  291.767776][T10534] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1834'.
[  292.983833][T10564] netlink: 'syz.6.1845': attribute type 1 has an invalid length.
[  293.419481][T10569] overlayfs: failed to clone upperpath
[  294.090375][   T61] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  294.111086][   T61] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  294.112928][   T61] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  294.114184][   T61] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  294.115706][   T61] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  294.423625][T10586] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1856'.
[  294.441750][T10588] overlayfs: failed to clone upperpath
[  294.480975][ T5815] bond0: (slave syz_tun): Releasing backup interface
[  294.633203][T10586] bond1: entered promiscuous mode
[  294.633791][T10586] 8021q: adding VLAN 0 to HW filter on device bond1
[  294.841166][T10581] syz.6.1855 (10581) used greatest stack depth: 18104 bytes left
[  294.879379][T10601] kvm: requested 1676 ns i8254 timer period limited to 200000 ns
[  294.960334][   T37] kauditd_printk_skb: 7 callbacks suppressed
[  294.960350][   T37] audit: type=1326 audit(1760174459.890:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.960976][   T37] audit: type=1326 audit(1760174459.890:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.966782][   T37] audit: type=1326 audit(1760174459.890:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.969485][   T37] audit: type=1326 audit(1760174459.900:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.970603][   T37] audit: type=1326 audit(1760174459.900:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.970994][   T37] audit: type=1326 audit(1760174459.900:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.971239][   T37] audit: type=1326 audit(1760174459.900:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.971932][   T37] audit: type=1326 audit(1760174459.900:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.972192][   T37] audit: type=1326 audit(1760174459.900:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  294.972709][   T37] audit: type=1326 audit(1760174459.900:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10607 comm="syz.1.1865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c48a4eec9 code=0x7ffc0000
[  295.035190][T10610] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  295.079432][T10610] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  295.636021][T10471] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.668948][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.227525][ T5812] Bluetooth: hci5: command tx timeout
[  296.612729][T10471] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  297.134394][T10471] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  297.497721][T10471] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.307653][ T5812] Bluetooth: hci5: command tx timeout
[  298.395256][T10582] chnl_net:caif_netlink_parms(): no params data found
[  298.619514][T10723] loop9: detected capacity change from 0 to 7
[  298.621746][T10723] Dev loop9: unable to read RDB block 7
[  298.621779][T10723]  loop9: AHDI p1 p2 p3 p4
[  298.621806][T10723] loop9: partition table partially beyond EOD, truncated
[  298.622055][T10723] loop9: p1 start 218104172 is beyond EOD, truncated
[  298.622074][T10723] loop9: p3 size 4227858431 extends beyond EOD, truncated
[  298.843955][T10366] udevd[10366]: inotify_add_watch(7, /dev/loop9p3, 10) failed: No such file or directory
[  299.009677][T10731] overlayfs: failed to clone upperpath
[  299.026120][T10471] bridge_slave_1: left allmulticast mode
[  299.026146][T10471] bridge_slave_1: left promiscuous mode
[  299.026350][T10471] bridge0: port 2(bridge_slave_1) entered disabled state
[  299.212601][T10736] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  299.228865][T10471] bridge_slave_0: left allmulticast mode
[  299.228899][T10471] bridge_slave_0: left promiscuous mode
[  299.229186][T10471] bridge0: port 1(bridge_slave_0) entered disabled state
[  299.458413][T10739] kvm: pic: level sensitive irq not supported
[  299.460299][T10739] kvm: pic: level sensitive irq not supported
[  299.460461][T10739] kvm: pic: level sensitive irq not supported
[  299.460491][T10739] kvm: pic: level sensitive irq not supported
[  300.387344][ T5812] Bluetooth: hci5: command tx timeout
[  301.627891][T10471] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  301.688006][T10471] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  301.709853][T10471] bond0 (unregistering): Released all slaves
[  301.722175][T10471] bond1 (unregistering): Released all slaves
[  302.468170][ T5812] Bluetooth: hci5: command tx timeout
[  302.728035][T10582] bridge0: port 1(bridge_slave_0) entered blocking state
[  302.728147][T10582] bridge0: port 1(bridge_slave_0) entered disabled state
[  302.728368][T10582] bridge_slave_0: entered allmulticast mode
[  302.730502][T10582] bridge_slave_0: entered promiscuous mode
[  302.733204][T10582] bridge0: port 2(bridge_slave_1) entered blocking state
[  302.733323][T10582] bridge0: port 2(bridge_slave_1) entered disabled state
[  302.733504][T10582] bridge_slave_1: entered allmulticast mode
[  302.758992][T10582] bridge_slave_1: entered promiscuous mode
[  302.983168][T10805] netlink: 'syz.6.1935': attribute type 10 has an invalid length.
[  303.036713][T10807] overlayfs: failed to clone upperpath
[  303.330570][T10821] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  303.330588][T10821] IPv6: NLM_F_CREATE should be set when creating new route
[  303.394038][T10805] team0: Port device dummy0 added
[  303.481562][T10582] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  303.517635][T10582] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  303.599149][T10829] loop7: detected capacity change from 0 to 16384
[  303.787605][T10471] hsr_slave_0: left promiscuous mode
[  303.840995][T10471] hsr_slave_1: left promiscuous mode
[  303.842042][T10471] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  303.842067][T10471] batman_adv: batadv0: Removing interface: batadv_slave_0
[  303.869383][T10471] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  303.869410][T10471] batman_adv: batadv0: Removing interface: batadv_slave_1
[  303.899025][T10831] loop7: detected capacity change from 16384 to 0
[  303.901197][    C1] blk_print_req_error: 11 callbacks suppressed
[  303.901221][    C1] I/O error, dev loop7, sector 1280 op 0x0:(READ) flags 0x80700 phys_seg 12 prio class 2
[  303.902753][    C1] I/O error, dev loop7, sector 15432 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  304.095326][T10471] veth1_vlan: left promiscuous mode
[  304.099078][T10471] veth0_vlan: left promiscuous mode
[  304.756871][T10864] netlink: 'syz.2.1957': attribute type 10 has an invalid length.
[  304.831130][T10865] netlink: 'syz.2.1957': attribute type 10 has an invalid length.
[  305.389340][T10471] hsr0 (unregistering): left allmulticast mode
[  306.647954][T10471] team0 (unregistering): Port device team_slave_1 removed
[  306.888112][T10471] team0 (unregistering): Port device team_slave_0 removed
[  309.737958][ T5896] infiniband syz1: ib_query_port failed (-19)
[  309.776396][T10864] team0: Port device dummy0 added
[  309.852788][T10865] team0: Port device dummy0 removed
[  309.855919][T10865] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  309.878574][T10582] team0: Port device team_slave_0 added
[  310.123484][T10582] team0: Port device team_slave_1 added
[  310.260243][   T37] kauditd_printk_skb: 32 callbacks suppressed
[  310.260261][   T37] audit: type=1326 audit(1760174476.186:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10895 comm="syz.0.1971" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x0
[  310.561579][T10582] batman_adv: batadv0: Adding interface: batadv_slave_0
[  310.561597][T10582] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  310.561631][T10582] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  310.563931][T10582] batman_adv: batadv0: Adding interface: batadv_slave_1
[  310.563947][T10582] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  310.563973][T10582] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  310.790870][T10908] overlayfs: failed to clone upperpath
[  310.919109][T10582] hsr_slave_0: entered promiscuous mode
[  310.920587][T10582] hsr_slave_1: entered promiscuous mode
[  310.921746][T10582] debugfs: 'hsr0' already exists in 'hsr'
[  310.921768][T10582] Cannot create hsr debugfs directory
[  311.211082][T10471] IPVS: stop unused estimator thread 0...
[  311.969765][ T5896] libceph: connect (1)[c::]:6789 error -101
[  311.970969][ T5896] libceph: mon0 (1)[c::]:6789 connect error
[  311.980040][ T5896] libceph: connect (1)[c::]:6789 error -101
[  311.980242][ T5896] libceph: mon0 (1)[c::]:6789 connect error
[  311.999191][T10582] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  312.016653][T10945] ceph: No mds server is up or the cluster is laggy
[  312.043981][T10582] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  312.074499][T10582] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  312.152457][T10582] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  312.307863][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  312.428826][T10582] 8021q: adding VLAN 0 to HW filter on device bond0
[  312.466417][T10582] 8021q: adding VLAN 0 to HW filter on device team0
[  312.481854][ T1440] bridge0: port 1(bridge_slave_0) entered blocking state
[  312.482343][ T1440] bridge0: port 1(bridge_slave_0) entered forwarding state
[  312.502131][ T3359] bridge0: port 2(bridge_slave_1) entered blocking state
[  312.502834][ T3359] bridge0: port 2(bridge_slave_1) entered forwarding state
[  312.707521][ T5909] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  312.764645][T10582] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.879296][ T5909] usb 7-1: Using ep0 maxpacket: 8
[  312.892293][ T5909] usb 7-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  312.892323][ T5909] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.902234][ T5909] usb 7-1: config 0 descriptor??
[  313.152483][ T5909] asix 7-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  313.266240][T10582] veth0_vlan: entered promiscuous mode
[  313.309814][T10582] veth1_vlan: entered promiscuous mode
[  313.584564][T10582] veth0_macvtap: entered promiscuous mode
[  313.656408][T10582] veth1_macvtap: entered promiscuous mode
[  313.744210][T10582] batman_adv: batadv0: Interface activated: batadv_slave_0
[  313.765804][T10582] batman_adv: batadv0: Interface activated: batadv_slave_1
[  313.861809][T10473] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  313.872212][T10473] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  313.891588][T10473] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  313.896570][T10473] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  314.365950][ T5909] asix 7-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  314.365982][ T5909] asix 7-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0088: ffffffb9
[  314.366254][ T5909] asix 7-1:0.0: probe with driver asix failed with error -71
[  314.458975][ T5909] usb 7-1: USB disconnect, device number 2
[  314.492004][T10473] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  314.492024][T10473] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  314.614281][T10473] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  314.614303][T10473] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  314.880174][T11012] overlayfs: failed to clone upperpath
[  316.869256][T11064] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  317.393279][T11093] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2039'.
[  317.393384][T11093] bridge_slave_1: left allmulticast mode
[  317.393406][T11093] bridge_slave_1: left promiscuous mode
[  317.393671][T11093] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.432877][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  317.432949][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  317.489867][T11093] bridge_slave_0: left allmulticast mode
[  317.489899][T11093] bridge_slave_0: left promiscuous mode
[  317.490371][T11093] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.739355][T11097] 9pnet_fd: Insufficient options for proto=fd
[  318.171721][T11108] netlink: 'syz.6.2044': attribute type 1 has an invalid length.
[  318.345483][T11113] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2048'.
[  319.057441][ T5130] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  319.207316][ T5130] usb 8-1: Using ep0 maxpacket: 16
[  319.209277][ T5130] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 8
[  319.212009][ T5130] usb 8-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  319.212038][ T5130] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.212058][ T5130] usb 8-1: Product: syz
[  319.212084][ T5130] usb 8-1: Manufacturer: syz
[  319.212097][ T5130] usb 8-1: SerialNumber: syz
[  319.221141][ T5130] usb 8-1: config 0 descriptor??
[  319.256083][ T5130] ftdi_sio 8-1:0.0: FTDI USB Serial Device converter detected
[  319.268962][ T5130] usb 8-1: Detected FT232R
[  319.462125][ T5130] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  319.703754][ T5130] usb 8-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  319.889758][ T5130] usb 8-1: USB disconnect, device number 2
[  320.048550][ T5130] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  320.049342][ T5130] ftdi_sio 8-1:0.0: device disconnected
[  321.299292][   T37] audit: type=1326 audit(1760174487.216:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11175 comm="syz.2.2074" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f57ab27eec9 code=0x0
[  322.931461][ T5812] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci5/hci5:201'
[  322.931490][ T5812] CPU: 1 UID: 0 PID: 5812 Comm: kworker/u9:4 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  322.931515][ T5812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  322.931528][ T5812] Workqueue: hci5 hci_rx_work
[  322.931564][ T5812] Call Trace:
[  322.931572][ T5812]  <TASK>
[  322.931582][ T5812]  dump_stack_lvl+0x189/0x250
[  322.931613][ T5812]  ? __pfx_dump_stack_lvl+0x10/0x10
[  322.931637][ T5812]  ? __pfx__printk+0x10/0x10
[  322.931667][ T5812]  ? kernfs_path_from_node+0x2c/0x280
[  322.931688][ T5812]  ? kernfs_path_from_node+0x243/0x280
[  322.931706][ T5812]  ? kernfs_path_from_node+0x2c/0x280
[  322.931730][ T5812]  sysfs_create_dir_ns+0x259/0x280
[  322.931751][ T5812]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  322.931772][ T5812]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  322.931797][ T5812]  ? rt_spin_unlock+0x161/0x200
[  322.931826][ T5812]  kobject_add_internal+0x5a5/0xb50
[  322.931863][ T5812]  kobject_add+0x155/0x220
[  322.931895][ T5812]  ? __pfx_kobject_add+0x10/0x10
[  322.931930][ T5812]  ? get_device_parent+0x370/0x3a0
[  322.931966][ T5812]  device_add+0x408/0xb50
[  322.932001][ T5812]  hci_conn_add_sysfs+0xd5/0x1e0
[  322.932033][ T5812]  le_conn_complete_evt+0xf39/0x1500
[  322.932071][ T5812]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  322.932096][ T5812]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  322.932120][ T5812]  ? lockdep_hardirqs_on+0x9c/0x150
[  322.932148][ T5812]  ? skb_pull_data+0xfb/0x200
[  322.932181][ T5812]  hci_le_conn_complete_evt+0x187/0x450
[  322.932212][ T5812]  hci_event_packet+0x78f/0x1200
[  322.932246][ T5812]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  322.932270][ T5812]  ? __pfx_hci_event_packet+0x10/0x10
[  322.932311][ T5812]  ? hci_send_to_monitor+0xe2/0x570
[  322.932339][ T5812]  hci_rx_work+0x46a/0xe80
[  322.932378][ T5812]  ? process_scheduled_works+0x9ef/0x17b0
[  322.932405][ T5812]  process_scheduled_works+0xade/0x17b0
[  322.932461][ T5812]  ? __pfx_process_scheduled_works+0x10/0x10
[  322.932503][ T5812]  worker_thread+0x8a0/0xda0
[  322.932531][ T5812]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  322.932564][ T5812]  ? __kthread_parkme+0x7b/0x200
[  322.932601][ T5812]  kthread+0x711/0x8a0
[  322.932632][ T5812]  ? __pfx_worker_thread+0x10/0x10
[  322.932656][ T5812]  ? __pfx_kthread+0x10/0x10
[  322.932682][ T5812]  ? rt_spin_unlock+0x150/0x200
[  322.932705][ T5812]  ? rt_spin_unlock+0x161/0x200
[  322.932722][ T5812]  ? __pfx_kthread+0x10/0x10
[  322.932751][ T5812]  ret_from_fork+0x4b9/0x870
[  322.932783][ T5812]  ? __pfx_ret_from_fork+0x10/0x10
[  322.932822][ T5812]  ? __switch_to_asm+0x39/0x70
[  322.932847][ T5812]  ? __switch_to_asm+0x33/0x70
[  322.932872][ T5812]  ? __pfx_kthread+0x10/0x10
[  322.932902][ T5812]  ret_from_fork_asm+0x1a/0x30
[  322.932949][ T5812]  </TASK>
[  322.932978][ T5812] kobject: kobject_add_internal failed for hci5:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  322.933017][ T5812] Bluetooth: hci5: failed to register connection device
[  324.313093][T11241] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  326.488290][T11301] fuse: Bad value for 'fd'
[  327.649584][T11345] overlayfs: failed to clone upperpath
[  328.651586][T11384] netlink: 'syz.2.2160': attribute type 83 has an invalid length.
[  328.652185][   T37] audit: type=1326 audit(1760174494.579:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11382 comm="syz.0.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  328.652234][   T37] audit: type=1326 audit(1760174494.579:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11382 comm="syz.0.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  328.657481][   T37] audit: type=1326 audit(1760174494.579:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11382 comm="syz.0.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  328.657532][   T37] audit: type=1326 audit(1760174494.579:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11382 comm="syz.0.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  328.657571][   T37] audit: type=1326 audit(1760174494.579:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11382 comm="syz.0.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  328.784455][   T37] audit: type=1326 audit(1760174494.709:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11382 comm="syz.0.2159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b4d33eec9 code=0x7ffc0000
[  328.831640][ T5909] hid_parser_main: 26 callbacks suppressed
[  328.831660][ T5909] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  328.851045][ T5909] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  329.097271][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  329.107726][   T61] Bluetooth: hci5: command 0x0406 tx timeout
[  329.448031][T11400] ------------[ cut here ]------------
[  329.448051][T11400] WARNING: CPU: 1 PID: 11400 at net/core/sock_map.c:1667 sock_map_destroy+0x28b/0x2b0
[  329.448085][T11400] Modules linked in:
[  329.448101][T11400] CPU: 1 UID: 0 PID: 11400 Comm: syz.6.2166 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  329.448121][T11400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  329.448130][T11400] RIP: 0010:sock_map_destroy+0x28b/0x2b0
[  329.448154][T11400] Code: 8b 36 49 83 c6 38 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 a3 8d 58 f9 4d 8b 3e e9 79 ff ff ff e8 86 dd f6 f8 90 <0f> 0b 90 eb 9c e8 7b dd f6 f8 4c 89 e7 be 03 00 00 00 e8 ce 7b b8
[  329.448165][T11400] RSP: 0018:ffffc90005357bd8 EFLAGS: 00010293
[  329.448177][T11400] RAX: ffffffff88c76fba RBX: ffff88804912c000 RCX: ffff8880242f9e00
[  329.448187][T11400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  329.448195][T11400] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  329.448203][T11400] R10: dffffc0000000000 R11: ffffed100c001e46 R12: dffffc0000000000
[  329.448213][T11400] R13: ffff88804912c000 R14: ffffffff992c5f98 R15: ffffffff88c76d30
[  329.448223][T11400] FS:  0000555589703500(0000) GS:ffff888126ccb000(0000) knlGS:0000000000000000
[  329.448234][T11400] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  329.448245][T11400] CR2: 000000110c3c1bec CR3: 00000000244ba000 CR4: 00000000003526f0
[  329.448262][T11400] Call Trace:
[  329.448269][T11400]  <TASK>
[  329.448279][T11400]  ? __tcp_close+0x765/0x1010
[  329.448295][T11400]  inet_csk_destroy_sock+0x162/0x340
[  329.448318][T11400]  ? __tcp_close+0x765/0x1010
[  329.448331][T11400]  __tcp_close+0xd2e/0x1010
[  329.448349][T11400]  ? lock_sock_nested+0x5f/0x130
[  329.448372][T11400]  ? lock_sock_nested+0xdd/0x130
[  329.448396][T11400]  tcp_close+0x28/0x110
[  329.448412][T11400]  inet_release+0x144/0x190
[  329.448438][T11400]  sock_close+0xc0/0x240
[  329.448461][T11400]  ? __pfx_sock_close+0x10/0x10
[  329.448481][T11400]  __fput+0x45b/0xa80
[  329.448512][T11400]  task_work_run+0x1d4/0x260
[  329.448532][T11400]  ? __pfx_task_work_run+0x10/0x10
[  329.448554][T11400]  ? exit_to_user_mode_loop+0x40/0x130
[  329.448581][T11400]  exit_to_user_mode_loop+0xe9/0x130
[  329.448603][T11400]  do_syscall_64+0x2bd/0xfa0
[  329.448623][T11400]  ? lockdep_hardirqs_on+0x9c/0x150
[  329.448644][T11400]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.448661][T11400]  ? clear_bhb_loop+0x60/0xb0
[  329.448683][T11400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.448700][T11400] RIP: 0033:0x7f92111deec9
[  329.448716][T11400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.448731][T11400] RSP: 002b:00007ffd61e66be8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  329.448749][T11400] RAX: 0000000000000000 RBX: 000000000005056d RCX: 00007f92111deec9
[  329.448761][T11400] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  329.448773][T11400] RBP: 00007f9211437da0 R08: 0000000000000001 R09: 0000000861e66edf
[  329.448785][T11400] R10: 0000001b2f120000 R11: 0000000000000246 R12: 00007f921143609c
[  329.448797][T11400] R13: 00007f9211436090 R14: ffffffffffffffff R15: 00007ffd61e66d00
[  329.448829][T11400]  </TASK>
[  329.448846][T11400] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  329.448859][T11400] CPU: 1 UID: 0 PID: 11400 Comm: syz.6.2166 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  329.448879][T11400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  329.448889][T11400] Call Trace:
[  329.448896][T11400]  <TASK>
[  329.448902][T11400]  dump_stack_lvl+0x99/0x250
[  329.448925][T11400]  ? __asan_memcpy+0x40/0x70
[  329.448946][T11400]  ? __pfx_dump_stack_lvl+0x10/0x10
[  329.448966][T11400]  ? __pfx__printk+0x10/0x10
[  329.448999][T11400]  vpanic+0x237/0x6d0
[  329.449015][T11400]  ? __pfx_vpanic+0x10/0x10
[  329.449042][T11400]  panic+0xb9/0xc0
[  329.449058][T11400]  ? __pfx_panic+0x10/0x10
[  329.449094][T11400]  __warn+0x31b/0x4b0
[  329.449110][T11400]  ? sock_map_destroy+0x28b/0x2b0
[  329.449134][T11400]  ? sock_map_destroy+0x28b/0x2b0
[  329.449303][T11400]  report_bug+0x2be/0x4f0
[  329.449327][T11400]  ? sock_map_destroy+0x28b/0x2b0
[  329.449349][T11400]  ? sock_map_destroy+0x28b/0x2b0
[  329.449371][T11400]  ? sock_map_destroy+0x28d/0x2b0
[  329.449392][T11400]  handle_bug+0x84/0x160
[  329.449417][T11400]  exc_invalid_op+0x1a/0x50
[  329.449440][T11400]  asm_exc_invalid_op+0x1a/0x20
[  329.449458][T11400] RIP: 0010:sock_map_destroy+0x28b/0x2b0
[  329.449480][T11400] Code: 8b 36 49 83 c6 38 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 a3 8d 58 f9 4d 8b 3e e9 79 ff ff ff e8 86 dd f6 f8 90 <0f> 0b 90 eb 9c e8 7b dd f6 f8 4c 89 e7 be 03 00 00 00 e8 ce 7b b8
[  329.449496][T11400] RSP: 0018:ffffc90005357bd8 EFLAGS: 00010293
[  329.449513][T11400] RAX: ffffffff88c76fba RBX: ffff88804912c000 RCX: ffff8880242f9e00
[  329.449528][T11400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  329.449540][T11400] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  329.449551][T11400] R10: dffffc0000000000 R11: ffffed100c001e46 R12: dffffc0000000000
[  329.449566][T11400] R13: ffff88804912c000 R14: ffffffff992c5f98 R15: ffffffff88c76d30
[  329.449580][T11400]  ? __pfx_sock_map_destroy+0x10/0x10
[  329.449608][T11400]  ? sock_map_destroy+0x28a/0x2b0
[  329.449639][T11400]  ? sock_map_destroy+0x28a/0x2b0
[  329.449662][T11400]  ? __tcp_close+0x765/0x1010
[  329.449679][T11400]  inet_csk_destroy_sock+0x162/0x340
[  329.449704][T11400]  ? __tcp_close+0x765/0x1010
[  329.449720][T11400]  __tcp_close+0xd2e/0x1010
[  329.449740][T11400]  ? lock_sock_nested+0x5f/0x130
[  329.449766][T11400]  ? lock_sock_nested+0xdd/0x130
[  329.449794][T11400]  tcp_close+0x28/0x110
[  329.449812][T11400]  inet_release+0x144/0x190
[  329.449839][T11400]  sock_close+0xc0/0x240
[  329.449865][T11400]  ? __pfx_sock_close+0x10/0x10
[  329.449889][T11400]  __fput+0x45b/0xa80
[  329.449920][T11400]  task_work_run+0x1d4/0x260
[  329.449944][T11400]  ? __pfx_task_work_run+0x10/0x10
[  329.449967][T11400]  ? exit_to_user_mode_loop+0x40/0x130
[  329.449990][T11400]  exit_to_user_mode_loop+0xe9/0x130
[  329.450013][T11400]  do_syscall_64+0x2bd/0xfa0
[  329.450032][T11400]  ? lockdep_hardirqs_on+0x9c/0x150
[  329.450053][T11400]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.450071][T11400]  ? clear_bhb_loop+0x60/0xb0
[  329.450093][T11400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.450111][T11400] RIP: 0033:0x7f92111deec9
[  329.450129][T11400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.450144][T11400] RSP: 002b:00007ffd61e66be8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  329.450163][T11400] RAX: 0000000000000000 RBX: 000000000005056d RCX: 00007f92111deec9
[  329.450176][T11400] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  329.450188][T11400] RBP: 00007f9211437da0 R08: 0000000000000001 R09: 0000000861e66edf
[  329.450201][T11400] R10: 0000001b2f120000 R11: 0000000000000246 R12: 00007f921143609c
[  329.450215][T11400] R13: 00007f9211436090 R14: ffffffffffffffff R15: 00007ffd61e66d00
[  329.450262][T11400]  </TASK>
[  329.450592][T11400] Kernel Offset: disabled