last executing test programs:

6.931506307s ago: executing program 3 (id=1517):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffff9, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0xfffe}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newtfilter={0x6c, 0x2c, 0xf3f, 0x70bd2b, 0x25dfdbbd, {0x0, 0x0, 0x0, r2, {0xc, 0xc}, {}, {0x7, 0xfff1}}, [@filter_kind_options=@f_basic={{0xa}, {0x3c, 0x2, [@TCA_BASIC_EMATCHES={0x38, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x2}}, @TCA_EMATCH_TREE_LIST={0x2c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x1}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x0, 0x86, 0x1}, {0x5, 0x7}}}]}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0xff01, 0x8, 0x4}, {0x4, 0x5, 0x7}}}]}]}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20041090}, 0x4880)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001800)=ANY=[@ANYBLOB="180000002500010324bd7002ffdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x4008}, 0x0)
recvmmsg(r3, &(0x7f0000003440)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000003c0)=""/4092, 0x1000}, {&(0x7f00000013c0)=""/251, 0xfb}, {&(0x7f00000014c0)=""/44, 0x2c}], 0x3}, 0x5}, {{0x0, 0x0, 0x0}, 0x7}, {{0x0, 0x0, &(0x7f0000003280)=[{&(0x7f0000000240)=""/111, 0x6f}, {&(0x7f0000001b80)=""/130, 0x82}, {&(0x7f0000001c40)=""/4096, 0x1000}, {&(0x7f0000000040)=""/165, 0xa5}, {&(0x7f0000002d00)=""/127, 0x7f}, {&(0x7f0000002d80)=""/208, 0xd0}, {&(0x7f0000002e80)=""/251, 0xfb}, {&(0x7f0000002f80)=""/245, 0xf5}, {0x0, 0x20}, {&(0x7f0000003180)=""/246, 0xf6}], 0xa}, 0x81}], 0x400000000000043, 0x40012032, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000000c0), r5)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r6, 0x1, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x24008001}, 0x80)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f00000016c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001680)={&(0x7f0000001500)={0x170, r7, 0x400, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0xdffd, 0x4d}}}}, [@NL80211_ATTR_SCHED_SCAN_MATCH={0x13c, 0x84, 0x0, 0x1, [{0x74, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @random="295d01c8a2e9"}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x4c, 0x6, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x8, 0x3, 0x6}, @NL80211_BAND_2GHZ={0x8, 0x0, 0x200000}, @NL80211_BAND_LC={0x8, 0x5, 0x7}, @NL80211_BAND_LC={0x8, 0x5, 0x7}, @NL80211_BAND_60GHZ={0x8, 0x2, 0x7}, @NL80211_BAND_5GHZ={0x8, 0x1, 0xe00000}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x6}, @NL80211_BAND_6GHZ={0x8, 0x3, 0xdb17}, @NL80211_BAND_2GHZ={0x8, 0x0, 0x80000000}]}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0xc, 0x6, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x8, 0x1, 0x4}]}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0xc, 0x6, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x8, 0x3, 0x8}]}]}, {0xb4, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ap_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ap_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ap_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x81}, @NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x54, 0x6, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x8, 0x0, 0xfffffff8}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x1000}, @NL80211_BAND_2GHZ={0x8, 0x0, 0x7}, @NL80211_BAND_6GHZ={0x8, 0x3, 0x7}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x1}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x10000}, @NL80211_BAND_LC={0x8, 0x5, 0xffff3e0e}, @NL80211_BAND_6GHZ={0x8, 0x3, 0x6}, @NL80211_BAND_6GHZ={0x8, 0x3, 0x6}, @NL80211_BAND_5GHZ={0x8, 0x1, 0x5a}]}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @from_mac}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ibss_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ibss_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @from_mac=@device_b}]}]}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x2}]}, 0x170}}, 0x40884)

5.861729466s ago: executing program 3 (id=1519):
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x4, 0x6}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x3c, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff3}, {}, {0x7, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_CT_ZONE={0x6, 0x5d, 0x9}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20041090}, 0xd0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x810}, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0))
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x20004, r4, 0x2})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r5)
r6 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000300)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r7, 0x0, 0x8014)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732"], 0xa8}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="6000000002060108000000000000000005000003050005000a000000050001000700000005000400000000000900020073797a310000000014000300686173683a69702c706f72742c69700014000780080006400000020008000840"], 0x60}, 0x1, 0x0, 0x0, 0x90}, 0x40c0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000300000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r10 = socket$kcm(0x28, 0x1, 0x0)
close(r10)

5.433786506s ago: executing program 0 (id=1520):
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x4, 0x6}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x3c, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff3}, {}, {0x7, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_CT_ZONE={0x6, 0x5d, 0x9}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20041090}, 0xd0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x810}, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0))
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x20004, r4, 0x2})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r5)
r6 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000300)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r7, 0x0, 0x8014)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732"], 0xa8}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="6000000002060108000000000000000005000003050005000a000000050001000700000005000400000000000900020073797a310000000014000300686173683a69702c706f72742c69700014000780080006400000020008000840"], 0x60}, 0x1, 0x0, 0x0, 0x90}, 0x40c0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000300000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r10 = socket$kcm(0x28, 0x1, 0x0)
close(r10)

4.624504978s ago: executing program 3 (id=1522):
prctl$PR_SET_IO_FLUSHER(0x43, 0x1)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
setresuid(0xee01, 0xee01, 0x0)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x6, 0x6, 0x2002, 0x87, 0xffffffff, 0x40})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x1ff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000840)="a6", 0x1, 0x200080c0, &(0x7f00000001c0)={0xa, 0x4e22, 0x8000, @remote, 0x5}, 0x1c)
prctl$PR_SET_IO_FLUSHER(0x43, 0xffffffff)
prctl$PR_SET_IO_FLUSHER(0x39, 0x0)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)

4.189402691s ago: executing program 3 (id=1524):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1e, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x7, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r0, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)=[0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000000180))
r5 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x800e0)
ioctl$EVIOCGBITKEY(r5, 0x80404521, &(0x7f0000000140)=""/186)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'erspan0\x00'})
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCBRDELBR(r6, 0x89a3, &(0x7f0000000200)='bridge0\x00')

4.189160878s ago: executing program 1 (id=1525):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a48000000060a010400000000000000000a0000040900010073797a31000000000900020073797a32000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001000000000000fe00000100000a"], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x1c, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7902009875f37538e486dd6317ce62667f2c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa88"], 0xfdef)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200"], 0xcfa4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x600, 0x0, 0x21cb2, 0x6}, [@IFLA_ADDRESS={0xa, 0x3, @random="08e7eebc872f"}, @IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x4, 0x2, 0x0, 0x1, @void}}}]}, 0x40}}, 0x0)

4.182040994s ago: executing program 0 (id=1526):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3400000040000701fcffffff00000100017c0000040042800c0001800600060065580000100002800c00038008"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x20, 0xc000}, 0x40840)

4.084538465s ago: executing program 0 (id=1527):
r0 = gettid()
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffffffff5]}, 0x8, 0x0)
ppoll(&(0x7f0000000000)=[{r1}], 0x1, 0x0, 0x0, 0x0)
tkill(r0, 0x7)
syz_emit_ethernet(0x46, 0x0, 0x0)
memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f00000195c0)=""/102392, 0x18ff8)
mount$overlay(0x0, 0x0, 0x0, 0x1, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
socket(0x28, 0x5, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x22, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x7, 0x0, 0x0, 0x100, 0x41, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe4000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f00000000c0)="3b76210fb6150f209e440f20c0663503000000440f22c00fa2660fc7b2d42af30fa7d0440f20c066350d000000440f22c06767f2caab12bad004ec", 0x3b}], 0x1, 0xd, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000240)={[0x10583a, 0x5, 0xa, 0x1, 0x6, 0x2, 0x1041, 0x4, 0x7, 0x7ffffffffffffffc, 0x3, 0xffffffff, 0x1, 0x9, 0xbe6, 0x6a], 0xeeee8000, 0x1000d6})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = openat$qrtrtun(0xffffff9c, &(0x7f0000000080), 0x84140)
read$qrtrtun(r5, &(0x7f0000000300)=""/73, 0x49)

2.839314071s ago: executing program 3 (id=1530):
rseq(&(0x7f0000000080), 0x20, 0x0, 0x0)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/ipc\x00')
setns(r0, 0x2000000)
r1 = memfd_create(&(0x7f00000002c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9\xd6\x1c\x1b*\x9a!?\x7f\xa5\xad\x9a,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{&\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+\x02\x00\x00\x00\x00\x00\x00\x00\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5', 0x2)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

2.835568809s ago: executing program 3 (id=1531):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x9, &(0x7f00000014c0)=ANY=[@ANYBLOB="18010000756c6c2500000000002020207b1af8ff00000000bfa1000000000000070100001cfeffffb702000008000000b70300000000000085000000ce00000095"], &(0x7f0000001540)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x2}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x68c81, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(r2, &(0x7f0000000200)={0x11, 0x10, 0xfa00, {0x0}}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newlink={0x5c, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x37c13, 0x71a2b}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @loopback}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x56}, @IFLA_TXQLEN={0x8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
getpgid(0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000014c0)=@base={0x6, 0x4, 0x2, 0x7, 0x10092, 0x1, 0xe92, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @value=r0}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xd, 0x0, &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r6, r5}, 0xc)
sendmsg$inet(0xffffffffffffffff, 0x0, 0xd007)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x50, 0x10, 0x401, 0xfffffffc, 0x0, {}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_STARTUP_QUERY_INTVL={0xc, 0x23, 0x7}, @IFLA_BR_PRIORITY={0x6, 0x6, 0x737}, @IFLA_BR_STP_STATE={0x8}]}}}]}, 0x50}}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1, 0x4, &(0x7f0000006680))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0x16, &(0x7f00000004c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x3}, [@generic={0x5, 0xc, 0x0, 0x6, 0x8}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000002, 0x0, 0x0, 0x0, 0x401}, @call={0x85, 0x0, 0x0, 0x8d}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6043}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}, @map_fd={0x18, 0xb, 0x1, 0x0, r5}]}, &(0x7f0000000580)='GPL\x00', 0xfffffff8, 0xf9, &(0x7f0000000600)=""/249, 0x40f00, 0x5e, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000000900)={0x5, 0x5}, 0x8, 0x10, &(0x7f0000000140)={0x81, 0xe, 0x1c2, 0x7fffffff}, 0x10, 0x0, 0x0, 0x5, &(0x7f00000009c0), &(0x7f0000000a00)=[{0x4, 0x1, 0x9}, {0x2, 0x2, 0x1, 0xb}, {0x1, 0x4, 0xb, 0xa}, {0x1, 0x5, 0x4, 0x9}, {0x3, 0x4, 0xc, 0xa}], 0x10, 0xfffffffb}, 0x94)
r7 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_REWIND(r7, 0xc0844123, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3000)
syz_open_procfs(0x0, &(0x7f0000000380)='mounts\x00')

2.79566687s ago: executing program 0 (id=1532):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000180)=0x6f)
r1 = dup2(r0, r0)
ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000001c0)=0x2)
read$FUSE(r1, &(0x7f00000063c0)={0x2020}, 0x2020)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = syz_io_uring_setup(0x3636, &(0x7f0000000300)={0x0, 0x770f, 0x1000, 0x0, 0x211, 0x0, r1}, &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400))
r4 = io_uring_setup(0x78e1, &(0x7f0000000280)={0x0, 0xaba9, 0x0, 0xfffffffc, 0x35, 0x0, r3})
io_uring_setup(0x79d1, &(0x7f0000000200)={0x0, 0xcd71, 0x10000, 0x1, 0xd5, 0x0, r4})
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
socket$key(0xf, 0x3, 0x2)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
r5 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
preadv(r5, &(0x7f0000000100)=[{&(0x7f0000000040)=""/166, 0xa6}], 0x1, 0x0, 0x8)
syz_clone3(&(0x7f0000000180)={0x23800000, &(0x7f0000000040)=<r6=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_setup(0x8, &(0x7f0000000600)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r6, 0x0}])
readv(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000001000)=""/4096, 0x18}], 0x1)

2.736646239s ago: executing program 1 (id=1533):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$BTRFS_IOC_ENCODED_READ(r0, 0x891e, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r3, 0x1, 0x23, &(0x7f0000000000)=0x2, 0x4)
bind$inet(r3, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r3, &(0x7f00000040c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2)
sendto$inet(r3, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300), r1)
sendmsg$IPVS_CMD_FLUSH(r2, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x60, r4, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x40, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@local}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x6f5e}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x80}, 0x80000)

2.601756851s ago: executing program 1 (id=1534):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$BTRFS_IOC_ENCODED_READ(r0, 0x891e, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007680)=[{{0x0, 0x0, &(0x7f0000004380)=[{&(0x7f0000003040)="0bf12f97719a69a7ca5977e388c2d76b4d1b92e4a23bd77124e4d6275dc780a537495b5ed2e0655676a9c29f566325c724fc2ab6074707977a1edf7d07f6f1670df3e8f8816d1eb451cafdafa5ad4985e15df7fd794c7cab167ee1034c0e18c2775ecc6205b8669493a7798734ca63cdee55b1c946d0981545ef28e49bded1abbdd97d1539b139ff21ebb213fb2fdddb1e5684121ca81f4ee24ef3d90bd73245187bda523c07a62a21eb96d8c0040661171db152aa345c9c1165b51e3d6c1c9253011f638d8fb27c2f5611fd14800588e5d924480e7e3db1407c44f294", 0xdd}, {&(0x7f0000003140)="f51729dd81e5c9a7ff449e51463b349775733fa40484a8bed52f6b719ddc83eb09991ec4957dcb7a05ce91beeaf9927e52490e31e59fed37183dd91ab400ea242852ebe6c3546691ec7cafbde8af346ebcc5241d910c3daa83b7888995d6ef29ac90a8736226fb6f6e08f4b3623c27eb7f0fdae6a03a8b6de7ca2eb91f708b2ec95328f48c", 0x85}, {&(0x7f0000003200)="d76cfbfcfd5dfc71ed1a9420ff2cb67d60f34400bc73cd7f0ebd65e858eb24f071c1a8ae0b460bf713cb68361b8ec34f5d199c6f93f8e1155404c1fd871887ee485549d2745a854cfbf888a3a6927063fff7993c73976a26b42271902873049167d7466f9f8c9614e8a7380cd8cb12f5f8919b86a7ca628c9d5369be1d2c0188b3a8d961b90bc83909f1060d4e94d6c8cd23f084e0cc0edc378ea2047599c4b84c04f155555371e526bbe80dc3", 0xad}, {&(0x7f00000032c0)="af32af9e83fa79695ce2b4d239fe89fb5189814c547dacb2e7e87cfb0bb4b00ac1bc7dc3ca441472745cfb414fabfa8f74", 0x31}, {&(0x7f0000003300)="715f88d09ad032323bf140096a936e2d5682f0aa448d6a940351708d05256c8c1e136b8e0066b050c0db0c9eeca13347b85a43cd80eb97a9ee56d3c4180c25b89d838656c4fc6277cba2f868b20fbbff2e037880e91c88e68b73f50b622150f0efde8ea0816d1306fa8b3b566e0b49d327", 0x71}, {&(0x7f0000003380)="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", 0xc09}], 0x6, 0x0, 0x0, 0x4008000}}], 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r2 = open(&(0x7f00000001c0)='./file1\x00', 0x4040, 0xd7)
preadv2(r2, &(0x7f00000000c0)=[{0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x5, 0x3, 0x4, 0x100, r2, 0x7f, '\x00', 0x0, r2}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xf, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x14, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000001bc6500850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f00000000c0)=r7, 0x4)
sendmsg$unix(r6, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
syz_open_dev$usbmon(&(0x7f00000001c0), 0xfff, 0x101000)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r8}})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r10, 0x1, 0x23, &(0x7f0000000000)=0x2, 0x4)
bind$inet(r10, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r10, &(0x7f00000040c0)=[{{0x0, 0x0, 0x0}, 0xc92e}], 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r9)
sendto$inet(r10, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
r11 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300), r1)
sendmsg$IPVS_CMD_FLUSH(r9, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x50, r11, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x6}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x9}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x80000)

2.414865933s ago: executing program 1 (id=1535):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd26, 0x25dfdc00, {0x0, 0x0, 0x0, r5, {0x0, 0x4}, {}, {0x8, 0xfff2}}, [@filter_kind_options=@f_u32={{0x8}, {0x10, 0x2, [@TCA_U32_CLASSID={0x8, 0x1, {0x5, 0x7ff6}}, @TCA_U32_POLICE={0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000)

2.253678289s ago: executing program 0 (id=1536):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3a}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
r4 = socket(0x15, 0x5, 0x0)
getsockopt(r4, 0x200000000114, 0x2711, 0x0, &(0x7f0000000000))
listen(r3, 0x8000)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x78, 0x30, 0xb, 0x80002000, 0x0, {}, [{0x64, 0x1, [@m_ct={0x60, 0x1, 0x0, 0x0, {{0x7}, {0x38, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_LABELS={0x14, 0x7, "4614c334e344ae53204373dc0ddeb17f"}, @TCA_CT_ZONE={0x6, 0x8}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r6 = syz_open_dev$usbfs(0x0, 0xb, 0x101301)
ioctl$USBDEVFS_CONNECTINFO(r6, 0x8008550e, &(0x7f0000000080))
socket$kcm(0x11, 0xa, 0x300)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000000000008100000081"], 0x48)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f0000000240)='syzkaller\x00', 0x1}, 0x94)
sendmsg$nl_route(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="2c000000160000032abd7000fddbdf250a78a3fd218162ac8b2a1378efd690bb0be8356c566a5e028e0bb578f71c213f668c904abbba2d3ccb9bcda6bdcff5f88e368e4263fd538bea593c4baf038e6b4a528448275e5931", @ANYRES32=0x0, @ANYBLOB="14000100ff020000000000000000000000000001"], 0x2c}}, 0xc884)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0x3b, 0x0, &(0x7f0000000000)="ff", 0x0, 0x149c, 0x503, 0x0, 0xffffff77, 0x0, 0x0, 0x5, 0xffff80fe, 0x40}, 0x4c)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write(r8, &(0x7f0000000080)="29000300010003", 0x7)

2.118626543s ago: executing program 1 (id=1537):
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x3, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000800000000000000000000000850000000e000000850000000700000095"], 0x0}, 0x94)
r1 = socket$xdp(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={<r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', <r3=>0x0})
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r1, &(0x7f0000000100)={0x2c, 0x0, r3}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000019240)={'gre0\x00', &(0x7f0000019180)={'sit0\x00', r3, 0xf840, 0x0, 0x6, 0x80000001, {{0x24, 0x4, 0x1, 0x0, 0x90, 0x65, 0x0, 0xf7, 0x2f, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0x32}, {[@end, @lsrr={0x83, 0x13, 0xd7, [@local, @multicast2, @dev={0xac, 0x14, 0x14, 0x18}, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp_addr={0x44, 0x1c, 0xdb, 0x1, 0x2, [{@private=0xa010102}, {@multicast2, 0x8}, {@dev={0xac, 0x14, 0x14, 0x11}, 0x4}]}, @timestamp_addr={0x44, 0x4c, 0xa, 0x1, 0x9, [{@rand_addr=0x64010102, 0x3}, {@local, 0xc19}, {@broadcast, 0x9a0}, {@multicast2, 0x4}, {@empty, 0x5}, {@loopback, 0x3ff}, {@local, 0x3ff}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7}, {@broadcast, 0x9}]}]}}}}})
getresuid(0x0, 0x0, 0x0)
mount$9p_virtio(&(0x7f0000019080), 0x0, 0x0, 0x3200006, &(0x7f0000019280)=ANY=[@ANYRES64])
r4 = openat$autofs(0xffffffffffffff9c, 0x0, 0x149000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000000500)={{0x1, 0x1, 0x6b, 0xffffffffffffffff, {0x101}}, '\x00'})
getpid()
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000019140)='net/fib_trie\x00')
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, 0x0)
pread64(r5, &(0x7f0000000080)=""/102356, 0x18fd4, 0x200)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xff05, 0x10000000, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0xbc2a4219f6b34c13}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x40}}, 0x20000840)

2.036272484s ago: executing program 2 (id=1538):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x1e, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x7, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x10000000}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(r0, &(0x7f0000000b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)=[0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETENCODER(0xffffffffffffffff, 0xc01464a6, &(0x7f0000000180))
r5 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x800e0)
ioctl$EVIOCGBITKEY(r5, 0x80404521, &(0x7f0000000140)=""/186)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'erspan0\x00'})
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCBRDELBR(r6, 0x89a3, &(0x7f0000000200)='bridge0\x00')

978.749595ms ago: executing program 1 (id=1539):
pipe2$9p(&(0x7f0000000300)={<r0=>0xffffffffffffffff}, 0x4400)
fcntl$setpipe(r0, 0x407, 0x2)
r1 = openat2$dir(0xffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x200880, 0x212, 0x12}, 0x18)
file_getattr(r1, &(0x7f0000000380)='./file0\x00', &(0x7f0000000100), 0x18, 0x400)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(r3, 0x8, &(0x7f00000000c0)=0x3)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000003a40)=[{{&(0x7f0000000540)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000006c0)=[{&(0x7f00000005c0)="52fd82e3d8639ab1bc06526360fef8530f1388b7f100cfb6e98957e82649db9d82bb8caee8e351d603d00ba5a4b9e784fa4aeb75e18f522fce7949fb39ddc5cfc7eee41d6306e1a076957e65f3ac00511eb52a1a09e2e09896a4ea34a860321586fdba94505ff9139352adcd2f38aa32918aa90ca72f61fe6f6693f6d3c5e2af3673429dcaf33d1a33bc8b2b55ba153fe762e38e0dc679335e692b5b938cbe216805fb6d3acef7de5fa34e9695bd5fe44e9311f9b37580b82baffc9f711f39d7446826e3dae4ebd66f9ac2fae82624b75b30628ab86a1ab21ccbebb86d4967bcd55f634f9d6247a30a3824782bd5f6da3d0c", 0xf2}], 0x1, 0x0, 0x0, 0x4000898}}, {{&(0x7f0000000700)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000940)=[{&(0x7f0000000780)="aa196a71cda126d7cb642e4d6bf528f8ee9cf83d5ef19a9de49f3bd3a64c3e56b2e617c30598c7adcb6b54c4c7df0c76cd0253194b1ed433c6160e044e57a437ebce1c9ee98362d0402809eb065935e4eb3f296c7e2d6ad9aed567b5e9a8", 0x5e}, {&(0x7f0000000800)="636843bc2e3bcf788e05a2b5c9c3f6aeebce6b9b181855da893185103bf20ae3aa264c3aa473f00a850ca5e804e896", 0x2f}], 0x2, &(0x7f0000000980)=[@cred={{0x18, 0x1, 0x2, {r3, 0xee01}}}], 0x18, 0x4001}}, {{&(0x7f0000001300)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000013c0)=[{&(0x7f0000001380)="91d9f8bc345a502df388ff2d9043", 0xe}], 0x1, &(0x7f0000001a80)=[@cred={{0x18, 0x1, 0x2, {r3}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, r2]}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @rights={{0x1c, 0x1, 0x1, [r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x8c, 0x20008004}}, {{&(0x7f0000001b40)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000034c0)=[{&(0x7f0000001bc0)="40944f85b6f157168000154967827f63875e43f281c3e6e8aa26f9913d9eb2eb019a7f376686a7b11a4ccde8b288628e6a63bcf521392f4a3bc66cf018854c2a20", 0x41}, {&(0x7f0000001c40)="e48639ae63c8cd2982cca0a06df257407da5182b0c186e70eff2070187b6a55e227af09abde9c690796b6be9ca6b43a88b807101588dc2a6c1a3fb01b0b7e877e8906d26278f19d67b72386684ef68216cb67a634daa7a6d75d4b1e2d877f22db1d9581c06ce24fbca6a10d9f478c91e6487e9ce4021ea9055d18bf967b5d8050ab208006f606bc404aec92ac8056381032857030994cd9c5c43", 0x9a}, {&(0x7f00000022c0)="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", 0x1000}, {&(0x7f00000032c0)="c00b80a76400c89224497923357d37b7ce4b421f3c91891c1abe559988d4d84d1c60cc8710a62eb2e6656aba7a77cca006dcbd57c1ea5d785cad57c3351b73e1f183ba34aab5bbad6edd", 0x4a}, {&(0x7f0000003340)="e556c4751ee9b4896ee875678136b97f81314c42654d645b569b7a57cccf368f968620311a5c2cc4bdf922c131ed53846889128adfdc16acb417fb243a564e358b2dd66bfc8bdcfe1c0f017a1a153324552ecd2456bc7d51d7a5e0623115ddba6c0219510a0c35ad91e9f85b8fe59b20e773589491", 0x75}, {&(0x7f00000033c0)="650b0e89a19f084f902bb8d295881869e3e9f989c3110ae083376ff4cd25743f34dc72b21708283731f8d213598d1375b6bf5b15d404a135ea7d534e6011c28522a538e2425a23", 0x47}, {&(0x7f0000003440)="3ab7286815e4506bd15448bd60002d9d90054adf934bdb913f1f2c47e7354dcf16ba071e386bacbbdd8d1d4bc7e1039455012eaccdd136c78923ff5069580b62553c3755d8950920d52a172936a165f1e74939e58a0faa4326428449de", 0x5d}], 0x7, &(0x7f0000003500)=[@cred={{0x18}}, @cred={{0x18, 0x1, 0x2, {r3}}}], 0x30, 0x20004000}}, {{&(0x7f0000003540)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003a00)=[{&(0x7f00000035c0)="0a98f4471da864aa27030d3e5593bd13e667a037045d87f896e341b04b2cba5ec4606b45f3a826d47218ba2a8268c5faae91f303cce5d70b3a370d0da94c13560c63465d365935db5fb72f6f9b4d4bba13319bdfecc894e265474aabb091", 0x5e}, {&(0x7f0000003640)="7128a8ff581fc7e257a222e2d417562360bddfb9d95d9c451ea43a5fb3d81dbf328c59211b99c65de4971dd2b371897f1e5b7af8adb64b2e0188df7c667eb4922032dd9405133662645adc3c99089b712435678bc54c4d7478", 0x59}, {&(0x7f00000036c0)="23fe07908d43d006f1f157366ce3388e9ae14915c641825df0a9e7802a6eaaad200f7a3fe36a1f6309d5a7d72e9171d5ef4faa183707dcc5dc227a013abe69424e719a599425ae42fd857cb64d12b5bfc7dd728361547298f44e440d5818eaf8c295d665f073d6e495467f5325c9dcd132a013f3552cf28d58b3355d13b8c37912937dcc43190b6db0ced094fd4918ee2c84824ad989ba9d6b36a88e77bf57a7cd451dce6dbfaf54a287eff73a4bece09a0e5f99ba82eb2d21fe57a925b2c5af9f31520e4bc8d3c30a452ff08edc043a8c5068230a1220a5fcad", 0xda}, {&(0x7f00000037c0)="2c7e531f828844863c94e5a46994d94c4d4fc17ffad4b6c0cdffaecbcc9c5962b5c43548fc5dd8a9790dfc95e522778ba2e3e74015e551c972cddfb134189abab6c2d1cafd9ed808ae480af6384505a42c5d5dc1ac53efc5b685d5210f8caaf03510058f6ff0254c18176d65e2bea55d9ffc118569e0f47510a8b724cc7129355c2b65bb993e66a163", 0x89}, {&(0x7f0000003880)="1dace38176", 0x5}, {&(0x7f00000038c0)="d05ee4588fbfb269ab4423707650a269c0f73eb86e53fc0b35b49c78207b073e002b179d88fb82e8ec01cd1697bac6928b8e1b3f20a66301165dac9cb614eb64e02c856fa4c30ddb9b1dd339eb97199bf9d2", 0x52}, {&(0x7f00000002c0)}, {&(0x7f0000003980)="f67070644f342d7499e0e3014f95b89b157f66fe9b85504ee25dcc69684979dad80d8f15f9c7cc9eda96badf66285c7a86cfdb24f7fde0cdca5445df68cc58cd92aff4fc8497984d9e20be968833e75a312b411b", 0x54}], 0x8, 0x0, 0x0, 0x2}}], 0x5, 0x4000004)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x40, 0x0)
close(r7)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000003c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xe, 0x6}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0xffffff98, 0x3ff, 0x37dc}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000f00)=@newqdisc={0x134, 0x28, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffbddc, {0x0, 0x0, 0x0, r11, {0xc, 0xfffa}, {0xffff}, {0x5, 0x1}}, [@qdisc_kind_options=@q_red={{0x8}, {0x108, 0x2, [@TCA_RED_STAB={0x104, 0x2, "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"}]}}]}, 0x134}, 0x1, 0x0, 0x0, 0x4040098}, 0x4084)
r12 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r12, &(0x7f0000000480)="c1858aec1d0a21756f66b4805f3a", 0xe, 0x40000, &(0x7f0000000240)={0x11, 0xf8, 0x0, 0x1, 0x5, 0x6, @random="24f51e8e0a5a"}, 0x14)

294.215186ms ago: executing program 0 (id=1540):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x109001, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
syz_open_dev$ttys(0xc, 0x2, 0x0)
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, 0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000240)={&(0x7f000046a000/0x2000)=nil, &(0x7f000012a000/0x3000)=nil, 0x2000, 0x3})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15)
r2 = syz_open_dev$I2C(0x0, 0x1, 0x2603)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0)
write$sndseq(r3, &(0x7f0000000600)=[{0x6, 0x0, 0x0, 0x0, @tick, {0x3, 0xfd}, {0xa}, @raw32={[0x5, 0x5, 0x9]}}, {0x0, 0x0, 0x0, 0x0, @time={0x4000000, 0x4}, {}, {0x5}, @quote={{0x6, 0x73}, 0x401}}, {0x4, 0x0, 0xfe, 0x0, @time={0x3, 0x1}, {}, {}, @connect={{0x5, 0x5f}, {0x2, 0xf}}}, {0x1, 0x0, 0x1, 0x0, @time={0x6, 0x5}, {0x4, 0x1}, {0x7, 0x8}, @quote={{0x2, 0xd8}, 0x8}}], 0x70)
ioctl$I2C_RDWR(r2, 0x707, 0x0)
fsync(0xffffffffffffffff)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000180), 0x4919, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r6=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000b40)=@newlink={0x44, 0x10, 0x401, 0x20000, 0x12, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x44}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054)
ioctl$TUNSETPERSIST(r0, 0x400454c9, 0x200000000000001)

293.681109ms ago: executing program 2 (id=1541):
mkdir(&(0x7f0000000080)='./file1\x00', 0x8)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
chdir(&(0x7f00000000c0)='./file1\x00')
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x1)
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000300)={0x10, 0xfffffffffffffffe}, 0x10)
open$dir(&(0x7f0000000100)='./file0\x00', 0x101a00, 0x8) (fail_nth: 2)

164.726944ms ago: executing program 2 (id=1542):
r0 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x8000, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x80}}, 0x4008080)
pipe(&(0x7f0000000480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="8000000000"], 0x80}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0xc)
clock_getres(0x1700, 0x0)
splice(r2, 0x0, r4, 0x0, 0x10d00, 0xf)
sendmsg$nl_route(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000020008100020009000000000000000000080035005e216e22"], 0x24}, 0x1, 0x0, 0x0, 0x81}, 0x44004)
ioctl$CDROMSTOP(r0, 0x5307)
openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x8000, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[], 0x80}}, 0x4008080) (async)
pipe(&(0x7f0000000480)) (async)
vmsplice(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1) (async)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="8000000000"], 0x80}}, 0x0) (async)
socket$netlink(0x10, 0x3, 0xc) (async)
clock_getres(0x1700, 0x0) (async)
splice(r2, 0x0, r4, 0x0, 0x10d00, 0xf) (async)
sendmsg$nl_route(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000020008100020009000000000000000000080035005e216e22"], 0x24}, 0x1, 0x0, 0x0, 0x81}, 0x44004) (async)
ioctl$CDROMSTOP(r0, 0x5307) (async)

44.994428ms ago: executing program 2 (id=1543):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a7c000000060a0b0400000000000000000200fffe500004802800018007000100637400001c000280080001400000000208000240000000160500030000000000240001800b0001007470726f7879000014000280080002400000000e080001"], 0xa4}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), r0)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0003983a00000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0)

43.203231ms ago: executing program 2 (id=1544):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x4})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$dsp(0xffffffffffffff9c, 0x0, 0x8041, 0x0)
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8080}, 0x20004450)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x4}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}, 0x1, 0x0, 0x0, 0x40}, 0x24000840)
syz_emit_ethernet(0x7e, &(0x7f0000000300)={@local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x48, 0x11, 0x0, @remote, @local, {[], {0x4e20, 0xe22, 0x48, 0x0, @wg=@cookie={0x3, 0x2, "88c73b21f267636d01dbe5712c1c941e1cdafbbb43f09c28", "e13808ca72381f41e5fff9620915b6f78670dfaf9a2038083179cf6b7931c9b4"}}}}}}}, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r2, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff})
ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000400))
ioctl$sock_TIOCINQ(r2, 0x541b, &(0x7f0000000040))
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000080)='./cgroup\x00', &(0x7f0000000000)='squashfs\x00', 0x200013, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r4 = openat$ocfs2_control(0xffffff9c, &(0x7f0000000280), 0x881, 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000300)='\x00', &(0x7f0000000340)='^!{.,\x00', 0x0)
setsockopt$packet_int(r4, 0x107, 0x14, &(0x7f00000000c0)=0x3ff, 0x4)

0s ago: executing program 2 (id=1545):
lsm_set_self_attr(0x68, &(0x7f0000000380)=ANY=[@ANYBLOB="460000000000000003000000000000002000"/32], 0x20, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f00000001c0), 0x80, &(0x7f0000000640)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f24650030303030303030303030303030303030303034303030302c75732fbb83ab2cb932fdd9e765725f69643def0a722b72776517361fb1092849fd3a0bdd63cd5c5232a0ab5c142e959484ad10687cf571e71a4b3ff913c43d988e08e5b10c216ae4440c2c5c4229d788df0d855154d97556b573b34f66a13d372e6e", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESOCT=r0, @ANYBLOB=',\x00']) (async)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f00000001c0), 0x80, &(0x7f0000000640)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f24650030303030303030303030303030303030303034303030302c75732fbb83ab2cb932fdd9e765725f69643def0a722b72776517361fb1092849fd3a0bdd63cd5c5232a0ab5c142e959484ad10687cf571e71a4b3ff913c43d988e08e5b10c216ae4440c2c5c4229d788df0d855154d97556b573b34f66a13d372e6e", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESOCT=r0, @ANYBLOB=',\x00'])
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2) (async)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000500)=ANY=[@ANYBLOB="3800a4560bf92fe22468bfdea704afaf8bba95f72394", @ANYRES16=r3, @ANYBLOB="0100000000000003000008000000180001801400020073797a5f74756e0000000000000000000c0002800400010004000380"], 0x38}}, 0x4000880)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="98000000540000032abd7000c29b13ceb4fddbdf", @ANYRES32=0x0, @ANYBLOB="20000100", @ANYRES32=0x0, @ANYBLOB="01030000fe8000000000000000000000000000bb0000000020000100", @ANYRES32=0x0, @ANYBLOB="00000300fc02000000000000000000000000000086dd000020000100", @ANYRES32=0x0, @ANYBLOB="00020400640101020000000000000000000000008edd000020000100", @ANYRES32=0x0, @ANYBLOB="00010400ffffffff00000000000000000000000086dd0000"], 0x98}, 0x1, 0x0, 0x0, 0x20000000}, 0x801)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x200, 0x100008b}, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x200, 0x100008b}, 0x0)
r5 = syz_io_uring_setup(0x45, &(0x7f0000000300)={0x0, 0xf20f, 0x40, 0x2, 0x1b}, &(0x7f0000000100), &(0x7f00000000c0), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_PBUF_RING(r5, 0x22, &(0x7f0000000380)={&(0x7f0000006000)={[{0x0, 0x0, 0x103}]}, 0x1, 0xfffc}, 0x1) (async)
io_uring_register$IORING_REGISTER_PBUF_RING(r5, 0x22, &(0x7f0000000380)={&(0x7f0000006000)={[{0x0, 0x0, 0x103}]}, 0x1, 0xfffc}, 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f00000003c0)="30fc013be2b3c0dd0b18242f2cdf9d624ef0b63612f6131db6e2c0f9d9a3f1cb1cc688cf9046868919b970073ea433e42188f7d0f2e401316d748bf135136b09d1f1cb355250", 0x46}], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0xa, 0x0, 0x106) (async)
r6 = socket$kcm(0xa, 0x0, 0x106)
sendmsg$kcm(r6, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20000011)
sendmsg$kcm(r6, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0xfffe, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x80, 0x0}, 0xe07e872420dfefca)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x2004095)
socket$inet_icmp(0x2, 0x2, 0x1) (async)
socket$inet_icmp(0x2, 0x2, 0x1)
socket$nl_rdma(0x10, 0x3, 0x14) (async)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x8040044}, 0x810)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000015c0)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08786eb807e0000000000000000000009fe70ba83a7a66e67a0bae5cfaccbbb81e28d7b568da", @ANYRESHEX, @ANYRESOCT], 0x18}, 0x1, 0x0, 0x0, 0x1000}, 0x0) (async)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000015c0)=ANY=[@ANYBLOB="18000000041401002dbd7000fedbdf250800010000000000ba30b28e994c1a08786eb807e0000000000000000000009fe70ba83a7a66e67a0bae5cfaccbbb81e28d7b568da", @ANYRESHEX, @ANYRESOCT], 0x18}, 0x1, 0x0, 0x0, 0x1000}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4848}, 0x0) (async)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4848}, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f0000000100)={0x1, 0x642, 0x0, 0x0})

kernel console output (not intermixed with test programs):

 T7633]  ? _kstrtoull+0x13c/0x1f0
[  186.681717][ T7633]  ? __pfx__kstrtoull+0x10/0x10
[  186.681730][ T7633]  ___sys_sendmsg+0x190/0x1e0
[  186.681746][ T7633]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.681761][ T7633]  ? __lock_acquire+0x4a5/0x2630
[  186.681786][ T7633]  __sys_sendmmsg+0x2ff/0x430
[  186.681804][ T7633]  ? __pfx___sys_sendmmsg+0x10/0x10
[  186.681828][ T7633]  ? __fget_files+0x215/0x3d0
[  186.681847][ T7633]  ? fput+0x79/0x100
[  186.681861][ T7633]  ? ksys_write+0x1ac/0x250
[  186.681875][ T7633]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  186.681888][ T7633]  ? lockdep_hardirqs_on+0x78/0x100
[  186.681902][ T7633]  __do_fast_syscall_32+0xe7/0x950
[  186.681916][ T7633]  ? lockdep_hardirqs_on+0x78/0x100
[  186.681932][ T7633]  do_fast_syscall_32+0x32/0x70
[  186.681946][ T7633]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  186.681961][ T7633] RIP: 0023:0xf701efcc
[  186.681970][ T7633] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  186.681980][ T7633] RSP: 002b:00000000f540d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  186.681990][ T7633] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080008040
[  186.681997][ T7633] RDX: 0000000000000002 RSI: 0000000000000084 RDI: 0000000000000000
[  186.682003][ T7633] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  186.682008][ T7633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  186.682014][ T7633] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  186.682027][ T7633]  </TASK>
[  187.855354][ T7610] vhci_hcd: connection reset by peer
[  187.865152][ T7249] vhci_hcd vhci_hcd.3: stop threads
[  187.871230][ T7249] vhci_hcd vhci_hcd.3: release socket
[  187.879493][ T7249] vhci_hcd vhci_hcd.3: disconnect device
[  187.907748][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  187.907765][   T40] audit: type=1326 audit(2000000103.999:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  187.931772][   T40] audit: type=1326 audit(2000000104.009:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  187.940928][   T40] audit: type=1326 audit(2000000104.009:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  187.950933][   T40] audit: type=1326 audit(2000000104.009:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  187.959758][   T40] audit: type=1326 audit(2000000104.009:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  187.969416][   T40] audit: type=1326 audit(2000000104.009:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  187.978776][   T40] audit: type=1326 audit(2000000104.009:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  187.989877][   T40] audit: type=1326 audit(2000000104.009:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  187.999104][   T40] audit: type=1326 audit(2000000104.009:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  188.008845][   T40] audit: type=1326 audit(2000000104.009:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7643 comm="syz.3.507" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ff00000
[  188.336509][ T5831] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  189.690546][ T7662] tipc: Started in network mode
[  189.698194][ T7662] tipc: Node identity 4a1908d14a63, cluster identity 4711
[  189.704782][ T7662] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  189.713930][ T7662] syzkaller0: entered promiscuous mode
[  189.719066][ T7662] syzkaller0: entered allmulticast mode
[  189.769188][ T7662] tipc: Resetting bearer <eth:syzkaller0>
[  189.783203][ T7661] tipc: Resetting bearer <eth:syzkaller0>
[  189.806274][ T7661] tipc: Disabling bearer <eth:syzkaller0>
[  192.613327][ T7710] netlink: 'syz.1.525': attribute type 1 has an invalid length.
[  192.621443][ T7710] netlink: 224 bytes leftover after parsing attributes in process `syz.1.525'.
[  196.800212][ T7755] new mount options do not match the existing superblock, will be ignored
[  199.059219][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  200.240145][ T7806] new mount options do not match the existing superblock, will be ignored
[  200.550591][ T7808] netlink: 'syz.1.558': attribute type 1 has an invalid length.
[  200.553559][ T7808] netlink: 224 bytes leftover after parsing attributes in process `syz.1.558'.
[  200.766743][ T7816] new mount options do not match the existing superblock, will be ignored
[  201.355975][ T7824] new mount options do not match the existing superblock, will be ignored
[  201.844738][ T7833] netlink: 72 bytes leftover after parsing attributes in process `syz.1.567'.
[  202.859195][ T7844] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  202.862010][ T7844] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  202.871434][ T7844] vhci_hcd vhci_hcd.0: Device attached
[  203.166621][ T5846] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  203.317007][ T5846] usb 5-1: Using ep0 maxpacket: 8
[  203.321459][ T5846] usb 5-1: config 0 has no interfaces?
[  203.323937][ T5846] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  203.328879][ T5846] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.334984][ T5846] usb 5-1: config 0 descriptor??
[  203.541955][ T7845] vhci_hcd: cannot find the pending unlink 4294934528
[  203.546532][ T7845] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 5
[  203.550456][  T225] vhci_hcd vhci_hcd.0: stop threads
[  203.557460][  T225] vhci_hcd vhci_hcd.0: release socket
[  203.565011][  T225] vhci_hcd vhci_hcd.0: disconnect device
[  204.104933][ T1339] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  204.173561][  T842] usb 5-1: USB disconnect, device number 9
[  204.993430][ T7860] netlink: 'syz.0.572': attribute type 1 has an invalid length.
[  204.999520][ T7860] netlink: 224 bytes leftover after parsing attributes in process `syz.0.572'.
[  205.234107][ T7864] bridge0: port 3(vlan2) entered blocking state
[  205.236483][ T7864] bridge0: port 3(vlan2) entered disabled state
[  205.239161][ T7864] vlan2: entered allmulticast mode
[  205.241463][ T7864] geneve0: entered allmulticast mode
[  205.244248][ T7864] vlan2: entered promiscuous mode
[  205.246735][ T7864] geneve0: entered promiscuous mode
[  205.399214][ T7867] fuse: Bad value for 'fd'
[  209.162407][ T7903] netlink: 80 bytes leftover after parsing attributes in process `syz.0.587'.
[  209.193909][ T7903] netlink: 4 bytes leftover after parsing attributes in process `syz.0.587'.
[  210.700687][ T7911] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  210.703882][ T7911] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  210.710251][ T7911] vhci_hcd vhci_hcd.0: Device attached
[  210.986695][   T10] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  210.995296][ T5818] usb 39-1: new low-speed USB device number 5 using vhci_hcd
[  211.156563][   T10] usb 6-1: Using ep0 maxpacket: 8
[  211.179497][   T10] usb 6-1: config 0 has no interfaces?
[  211.181930][   T10] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  211.206728][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.318164][   T10] usb 6-1: config 0 descriptor??
[  211.543405][ T7915] vhci_hcd: cannot find the pending unlink 4294934528
[  211.546157][ T7915] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 3
[  211.549005][ T7248] vhci_hcd vhci_hcd.1: stop threads
[  211.550934][ T7248] vhci_hcd vhci_hcd.1: release socket
[  211.553084][ T7248] vhci_hcd vhci_hcd.1: disconnect device
[  212.088261][   T10] usb 6-1: USB disconnect, device number 4
[  215.672667][ T7977] macsec0: entered promiscuous mode
[  215.674457][ T7977] bridge0: entered promiscuous mode
[  215.676571][ T7977] macsec0: entered allmulticast mode
[  215.678370][ T7977] bridge0: entered allmulticast mode
[  215.680856][ T7977] bridge0: port 4(macsec0) entered blocking state
[  215.683071][ T7977] bridge0: port 4(macsec0) entered disabled state
[  215.692011][ T7977] bridge0: left allmulticast mode
[  215.693751][ T7977] bridge0: left promiscuous mode
[  216.076513][ T5818] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  216.224166][ T7983] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  216.226457][ T7983] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  216.237077][ T7983] vhci_hcd vhci_hcd.0: Device attached
[  216.556965][   T10] usb 44-1: SetAddress Request (2) to port 0
[  216.561303][   T10] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  216.923333][ T7997] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  217.232091][ T7985] vhci_hcd: connection reset by peer
[  217.237007][   T13] vhci_hcd vhci_hcd.3: stop threads
[  217.243201][ T8005] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  217.245343][ T8005] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  217.247148][   T13] vhci_hcd vhci_hcd.3: release socket
[  217.249195][ T8005] vhci_hcd vhci_hcd.0: Device attached
[  217.250546][   T13] vhci_hcd vhci_hcd.3: disconnect device
[  217.255314][ T8006] vhci_hcd: cannot find the pending unlink 4294934528
[  217.258251][ T8006] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 3
[  217.261605][   T13] vhci_hcd vhci_hcd.1: stop threads
[  217.266786][   T13] vhci_hcd vhci_hcd.1: release socket
[  217.274815][   T13] vhci_hcd vhci_hcd.1: disconnect device
[  217.707476][ T8015] netlink: 'syz.0.621': attribute type 1 has an invalid length.
[  217.710174][ T8015] netlink: 224 bytes leftover after parsing attributes in process `syz.0.621'.
[  218.780704][ T8043] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  218.783284][ T8043] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  218.787804][ T8043] vhci_hcd vhci_hcd.0: Device attached
[  218.798192][ T8046] vhci_hcd: cannot find the pending unlink 4294934528
[  218.801292][ T8046] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 3
[  218.808466][ T7245] vhci_hcd vhci_hcd.1: stop threads
[  218.813333][ T7245] vhci_hcd vhci_hcd.1: release socket
[  218.822944][ T7245] vhci_hcd vhci_hcd.1: disconnect device
[  219.453570][ T8061] netlink: 'syz.1.636': attribute type 1 has an invalid length.
[  219.456301][ T8061] netlink: 224 bytes leftover after parsing attributes in process `syz.1.636'.
[  220.860995][ T8080] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  220.863353][ T8080] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  220.873417][ T8080] vhci_hcd vhci_hcd.0: Device attached
[  221.049200][ T8088] netlink: 4 bytes leftover after parsing attributes in process `syz.2.646'.
[  221.116476][ T5831] usb 37-1: new low-speed USB device number 9 using vhci_hcd
[  221.116528][ T5846] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  221.266415][ T5846] usb 5-1: Using ep0 maxpacket: 8
[  221.269640][ T5846] usb 5-1: config 0 has no interfaces?
[  221.271756][ T5846] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  221.274995][ T5846] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.280426][ T5846] usb 5-1: config 0 descriptor??
[  221.489359][ T8081] vhci_hcd: cannot find the pending unlink 4294934528
[  221.495966][ T8081] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 6
[  221.504844][   T13] vhci_hcd vhci_hcd.0: stop threads
[  221.509209][   T13] vhci_hcd vhci_hcd.0: release socket
[  221.511510][   T13] vhci_hcd vhci_hcd.0: disconnect device
[  221.606568][   T10] usb 44-1: device descriptor read/8, error -110
[  221.621857][  T842] usb 5-1: USB disconnect, device number 10
[  222.001626][   T10] usb usb44-port1: attempt power cycle
[  222.414099][   T40] kauditd_printk_skb: 22110 callbacks suppressed
[  222.414113][   T40] audit: type=1326 audit(2000000138.499:22146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.469218][   T40] audit: type=1326 audit(2000000138.559:22147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.506413][   T40] audit: type=1326 audit(2000000138.589:22148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.572646][   T10] usb usb44-port1: unable to enumerate USB device
[  222.605595][ T8115] netlink: 20 bytes leftover after parsing attributes in process `syz.1.657'.
[  222.623856][   T40] audit: type=1326 audit(2000000138.709:22149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.632770][   T40] audit: type=1326 audit(2000000138.719:22150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.641397][   T40] audit: type=1326 audit(2000000138.729:22151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.649399][   T40] audit: type=1326 audit(2000000138.739:22152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.658391][   T40] audit: type=1326 audit(2000000138.739:22153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.663099][ T8115] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  222.677086][   T40] audit: type=1326 audit(2000000138.749:22154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  222.684330][   T40] audit: type=1326 audit(2000000138.749:22155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.2.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65fcc code=0x7ffc0000
[  223.125784][ T8121] 9p: Bad value for 'rfdno'
[  223.137520][   T10] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  223.147835][ T8121] pim6reg: entered allmulticast mode
[  223.306078][   T10] usb 6-1: New USB device found, idVendor=0fe9, idProduct=db55, bcdDevice=69.fb
[  223.310415][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=201
[  223.314356][   T10] usb 6-1: Product: syz
[  223.316277][   T10] usb 6-1: Manufacturer: syz
[  223.319026][   T10] usb 6-1: SerialNumber: syz
[  223.329114][   T10] usb 6-1: config 0 descriptor??
[  223.339023][   T10] dvb-usb: found a 'DigitalNow DVB-T Dual USB' in warm state.
[  223.343200][   T10] dvb-usb: bulk message failed: -22 (2/0)
[  223.361859][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  223.366682][   T10] dvbdev: DVB: registering new adapter (DigitalNow DVB-T Dual USB)
[  223.370180][   T10] usb 6-1: media controller created
[  223.385027][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  223.545176][ T8115] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  223.550853][ T8115] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  223.555957][ T8115] dvb-usb: bulk message failed: -22 (4/0)
[  223.561020][ T8115] cxusb: i2c read failed
[  223.565083][   T10] cxusb: set interface failed
[  223.567230][   T10] dvb-usb: bulk message failed: -22 (1/0)
[  223.595723][   T10] DVB: Unable to find symbol mt352_attach()
[  223.598976][   T10] dvb-usb: bulk message failed: -22 (5/0)
[  223.602727][   T10] zl10353_read_register: readreg error (reg=127, ret==-121)
[  223.605961][   T10] dvb-usb: no frontend was attached by 'DigitalNow DVB-T Dual USB'
[  223.676451][   T10] rc_core: IR keymap rc-dvico-mce not found
[  223.679333][   T10] Registered IR keymap rc-empty
[  223.682913][   T10] rc rc0: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0
[  223.691912][   T10] input: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.1/usb6/6-1/rc/rc0/input9
[  223.698910][   T10] dvb-usb: schedule remote query interval to 100 msecs.
[  223.702473][   T10] dvb-usb: DigitalNow DVB-T Dual USB successfully initialized and connected.
[  223.710549][   T10] usb 6-1: USB disconnect, device number 5
[  223.786254][   T10] dvb-usb: DigitalNow DVB-T Dual USB successfully deinitialized and disconnected.
[  224.478507][ T8134] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  224.481182][ T8134] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  224.485302][ T8134] vhci_hcd vhci_hcd.0: Device attached
[  224.736691][ T5832] usb 43-1: new low-speed USB device number 6 using vhci_hcd
[  224.877735][  T842] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  225.056542][  T842] usb 6-1: Using ep0 maxpacket: 16
[  225.062172][  T842] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 11
[  225.066485][  T842] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  225.070147][  T842] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  225.074078][  T842] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  225.080295][  T842] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  225.084230][  T842] usb 6-1: config 1 interface 0 has no altsetting 0
[  225.086716][  T842] usb 6-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  225.090384][  T842] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.099810][  T842] ums-sddr09 6-1:1.0: USB Mass Storage device detected
[  225.462207][  T842] ums-sddr09 6-1:1.0: probe with driver ums-sddr09 failed with error -22
[  225.475408][  T842] usb 6-1: USB disconnect, device number 6
[  226.246866][ T5831] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  226.352666][ T8175] netlink: 4 bytes leftover after parsing attributes in process `syz.0.673'.
[  227.235623][ T8184] netlink: 'syz.0.676': attribute type 39 has an invalid length.
[  227.474571][ T8135] vhci_hcd: connection reset by peer
[  227.479592][ T7241] vhci_hcd vhci_hcd.3: stop threads
[  227.486561][ T7241] vhci_hcd vhci_hcd.3: release socket
[  227.494952][ T7241] vhci_hcd vhci_hcd.3: disconnect device
[  227.856801][ T8196] netlink: 4 bytes leftover after parsing attributes in process `syz.2.679'.
[  228.925127][ T8215] fuse: Unknown parameter 'fd0x0000000000000008'
[  228.963019][ T8215] openvswitch: netlink: IP tunnel dst address not specified
[  229.315535][ T8218] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  229.504331][ T8219] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  229.906812][ T8211] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  229.906830][ T8211] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  229.907031][ T8211] vhci_hcd vhci_hcd.0: Device attached
[  230.160613][ T8202] wg2 speed is unknown, defaulting to 1000
[  230.165651][ T8202] wg2 speed is unknown, defaulting to 1000
[  230.171813][ T8202] wg2 speed is unknown, defaulting to 1000
[  230.197389][   T57] usb 40-1: SetAddress Request (10) to port 0
[  230.200324][   T57] usb 40-1: new SuperSpeed USB device number 10 using vhci_hcd
[  230.435439][ T8202] infiniband syz2: set active
[  230.439085][ T5818] wg2 speed is unknown, defaulting to 1000
[  230.443775][ T8202] infiniband syz2: added wg2
[  230.465632][ T8202] smbdirect: ib_dev[syz2]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000
[  230.472950][ T8202] smbdirect: ib_dev[syz2]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32
[  230.487242][ T8202] smbdirect: ib_dev[syz2]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005
[  230.496673][ T5832] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  230.543152][ T8222] vhci_hcd: connection reset by peer
[  230.546138][ T7241] vhci_hcd vhci_hcd.1: stop threads
[  230.551458][ T7241] vhci_hcd vhci_hcd.1: release socket
[  230.557611][ T7241] vhci_hcd vhci_hcd.1: disconnect device
[  230.562842][ T8202] RDS/IB: syz2: added
[  230.564580][ T8202] smc: adding ib device syz2 with port count 1
[  230.573255][ T8202] smc:    ib device syz2 port 1 has no pnetid
[  230.581836][ T5818] wg2 speed is unknown, defaulting to 1000
[  230.597910][ T8202] wg2 speed is unknown, defaulting to 1000
[  230.863239][ T8202] wg2 speed is unknown, defaulting to 1000
[  231.115067][ T8242] 
ÿ: renamed from dummy0
[  231.138058][ T8202] wg2 speed is unknown, defaulting to 1000
[  231.355117][ T8202] wg2 speed is unknown, defaulting to 1000
[  231.373730][ T8252] syz.0.696 (8252): drop_caches: 2
[  231.709895][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.712667][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.715214][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.718194][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.720835][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.724172][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.727443][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.730186][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.732879][ T8263] netlink: 'syz.1.699': attribute type 3 has an invalid length.
[  231.796919][ T5744] Bluetooth: hci3: unexpected event for opcode 0x1009
[  232.053422][ T8272] input: syz0 as /devices/virtual/input/input10
[  232.981074][ T8298] dlm: Unknown command passed to DLM device : 3
[  232.981074][ T8298] 
[  233.045694][ T8300] random: crng reseeded on system resumption
[  233.596160][ T8307] FAULT_INJECTION: forcing a failure.
[  233.596160][ T8307] name failslab, interval 1, probability 0, space 0, times 0
[  233.601735][ T8307] CPU: 3 UID: 0 PID: 8307 Comm: syz.1.712 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  233.601764][ T8307] Tainted: [L]=SOFTLOCKUP
[  233.601770][ T8307] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  233.601780][ T8307] Call Trace:
[  233.601787][ T8307]  <TASK>
[  233.601795][ T8307]  dump_stack_lvl+0x100/0x190
[  233.601822][ T8307]  should_fail_ex.cold+0x5/0xa
[  233.601846][ T8307]  should_failslab+0xc2/0x120
[  233.601901][ T8307]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  233.601921][ T8307]  ? kstrdup_const+0x63/0x80
[  233.601945][ T8307]  kstrdup+0x51/0xe0
[  233.601965][ T8307]  kstrdup_const+0x63/0x80
[  233.601983][ T8307]  __kernfs_new_node+0x9b/0x9f0
[  233.602007][ T8307]  ? __pfx___kernfs_new_node+0x10/0x10
[  233.602040][ T8307]  ? find_held_lock+0x2b/0x80
[  233.602063][ T8307]  ? kernfs_root+0xee/0x2a0
[  233.602081][ T8307]  ? kernfs_root+0xee/0x2a0
[  233.602106][ T8307]  kernfs_new_node+0x11b/0x1a0
[  233.602132][ T8307]  kernfs_create_link+0xcc/0x240
[  233.602161][ T8307]  sysfs_do_create_link_sd+0x90/0x140
[  233.602183][ T8307]  sysfs_create_link+0x61/0xc0
[  233.602203][ T8307]  device_add+0x675/0x1950
[  233.602226][ T8307]  ? __pfx_device_add+0x10/0x10
[  233.602254][ T8307]  input_register_device+0x7d2/0xe10
[  233.602285][ T8307]  uinput_ioctl_handler.isra.0+0x8d8/0x1d20
[  233.602308][ T8307]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  233.602326][ T8307]  ? __pfx_uinput_ioctl_handler.isra.0+0x10/0x10
[  233.602355][ T8307]  ? find_held_lock+0x2b/0x80
[  233.602376][ T8307]  ? __fget_files+0x215/0x3d0
[  233.602406][ T8307]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  233.602435][ T8307]  ? __pfx_uinput_compat_ioctl+0x10/0x10
[  233.602457][ T8307]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  233.602479][ T8307]  __do_fast_syscall_32+0xe7/0x950
[  233.602505][ T8307]  ? lockdep_hardirqs_on+0x78/0x100
[  233.602529][ T8307]  do_fast_syscall_32+0x32/0x70
[  233.602553][ T8307]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  233.602576][ T8307] RIP: 0023:0xf703efcc
[  233.602592][ T8307] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  233.602607][ T8307] RSP: 002b:00000000f542d50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  233.602625][ T8307] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005501
[  233.602635][ T8307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  233.602646][ T8307] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  233.602655][ T8307] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  233.602666][ T8307] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  233.602690][ T8307]  </TASK>
[  234.258438][ T8328] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  234.358252][ T5831] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  234.516648][ T5831] usb 6-1: Using ep0 maxpacket: 8
[  234.523562][ T5831] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  234.532390][ T5831] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  234.540774][ T5831] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  234.550920][ T5831] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  234.565549][ T5831] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  234.570830][ T5831] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.786465][ T5831] usb 6-1: GET_CAPABILITIES returned 0
[  234.788316][ T5831] usbtmc 6-1:16.0: can't read capabilities
[  234.987776][ T5831] usb 6-1: USB disconnect, device number 7
[  235.132060][ T8342] netlink: 8 bytes leftover after parsing attributes in process `syz.0.724'.
[  235.213616][ T8344] wg2 speed is unknown, defaulting to 1000
[  235.298231][   T57] usb 40-1: device descriptor read/8, error -110
[  235.810506][   T57] usb usb40-port1: attempt power cycle
[  236.313215][ T8371] syzkaller0: entered promiscuous mode
[  236.315286][ T8371] syzkaller0: entered allmulticast mode
[  236.398743][   T57] usb usb40-port1: unable to enumerate USB device
[  236.410750][ T8373] input: syz0 as /devices/virtual/input/input12
[  236.940060][ T8413] netlink: 36 bytes leftover after parsing attributes in process `syz.1.744'.
[  237.780143][ T5832] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  237.930410][ T5832] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  237.933690][ T5832] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.936810][ T5832] usb 6-1: Product: syz
[  237.938274][ T5832] usb 6-1: Manufacturer: syz
[  237.939999][ T5832] usb 6-1: SerialNumber: syz
[  237.946739][ T5832] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  237.961578][ T5831] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  238.656450][ T5744] Bluetooth: hci0: command 0x0406 tx timeout
[  238.658777][ T2178] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  238.662544][ T2178] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  238.923554][   T24] usb 6-1: USB disconnect, device number 8
[  239.046439][ T5831] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  239.049165][ T5831] ath9k_htc: Failed to initialize the device
[  239.055386][   T24] usb 6-1: ath9k_htc: USB layer deinitialized
[  239.541979][ T8466] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  239.566115][ T8465] wg2 speed is unknown, defaulting to 1000
[  239.938277][ T8472] FAULT_INJECTION: forcing a failure.
[  239.938277][ T8472] name failslab, interval 1, probability 0, space 0, times 0
[  239.946100][ T8472] CPU: 2 UID: 0 PID: 8472 Comm: syz.1.755 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  239.946128][ T8472] Tainted: [L]=SOFTLOCKUP
[  239.946134][ T8472] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  239.946144][ T8472] Call Trace:
[  239.946150][ T8472]  <TASK>
[  239.946157][ T8472]  dump_stack_lvl+0x100/0x190
[  239.946182][ T8472]  should_fail_ex.cold+0x5/0xa
[  239.946206][ T8472]  should_failslab+0xc2/0x120
[  239.946227][ T8472]  __kmalloc_cache_noprof+0x7a/0x6f0
[  239.946252][ T8472]  ? sctp_association_new+0xbb/0x2990
[  239.946279][ T8472]  sctp_association_new+0xbb/0x2990
[  239.946301][ T8472]  ? sctp_v4_scope+0x183/0x1a0
[  239.946343][ T8472]  sctp_connect_new_asoc+0x1a8/0x770
[  239.946368][ T8472]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  239.946394][ T8472]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  239.946423][ T8472]  sctp_sendmsg+0x171a/0x22b0
[  239.946451][ T8472]  ? __pfx_sctp_sendmsg+0x10/0x10
[  239.946469][ T8472]  ? __lock_acquire+0x4a5/0x2630
[  239.946492][ T8472]  ? aa_sk_perm+0x309/0xaa0
[  239.946515][ T8472]  ? __pfx_aa_sk_perm+0x10/0x10
[  239.946541][ T8472]  ? __pfx_sctp_sendmsg+0x10/0x10
[  239.946564][ T8472]  inet_sendmsg+0x11c/0x140
[  239.946592][ T8472]  ____sys_sendmsg+0x98d/0xb70
[  239.946615][ T8472]  ? __pfx_inet_sendmsg+0x10/0x10
[  239.946643][ T8472]  ? __pfx_____sys_sendmsg+0x10/0x10
[  239.946672][ T8472]  ? _kstrtoull+0x13c/0x1f0
[  239.946692][ T8472]  ? __pfx__kstrtoull+0x10/0x10
[  239.946716][ T8472]  ___sys_sendmsg+0x190/0x1e0
[  239.946742][ T8472]  ? __pfx____sys_sendmsg+0x10/0x10
[  239.946766][ T8472]  ? __lock_acquire+0x4a5/0x2630
[  239.946809][ T8472]  __sys_sendmmsg+0x2ff/0x430
[  239.946832][ T8472]  ? __pfx___sys_sendmmsg+0x10/0x10
[  239.946860][ T8472]  ? __fget_files+0x215/0x3d0
[  239.946893][ T8472]  ? fput+0x79/0x100
[  239.946917][ T8472]  ? ksys_write+0x1ac/0x250
[  239.946941][ T8472]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  239.946968][ T8472]  ? lockdep_hardirqs_on+0x78/0x100
[  239.946991][ T8472]  __do_fast_syscall_32+0xe7/0x950
[  239.947013][ T8472]  ? lockdep_hardirqs_on+0x78/0x100
[  239.947037][ T8472]  do_fast_syscall_32+0x32/0x70
[  239.947061][ T8472]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  239.947083][ T8472] RIP: 0023:0xf703efcc
[  239.947097][ T8472] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  239.947113][ T8472] RSP: 002b:00000000f540c50c EFLAGS: 00000292 ORIG_RAX: 0000000000000159
[  239.947130][ T8472] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000b80
[  239.947141][ T8472] RDX: 0000000000000002 RSI: 0000000000048000 RDI: 0000000000000000
[  239.947151][ T8472] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  239.947160][ T8472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  239.947170][ T8472] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  239.947194][ T8472]  </TASK>
[  239.963604][ T8474] overlay: Unknown parameter 'euid>00000000000000000000'
[  240.726528][ T5744] Bluetooth: hci1: command 0x0406 tx timeout
[  240.726856][ T2178] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  240.739549][ T2178] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  240.904232][ T8490] netlink: 1232 bytes leftover after parsing attributes in process `syz.3.758'.
[  242.886503][ T5744] Bluetooth: hci2: command 0x0406 tx timeout
[  242.890131][ T2178] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  242.892524][ T2178] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  244.966767][ T5744] Bluetooth: hci3: command 0x0406 tx timeout
[  244.969317][ T2178] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  244.973994][ T2178] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  245.063418][ T8464] workqueue: Failed to create a rescuer kthread for wq "nfc3_nci_cmd_wq": -EINTR
[  245.152887][ T8500] syzkaller1: entered promiscuous mode
[  245.159527][ T8500] syzkaller1: entered allmulticast mode
[  245.265132][ T8504] loop5: detected capacity change from 0 to 2640
[  245.269235][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.276786][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.286745][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.289419][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.292079][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.294715][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.301951][ T8498] wg2 speed is unknown, defaulting to 1000
[  245.304470][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.309188][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.317017][ T8504] ldm_validate_partition_table(): Disk read failed.
[  245.320911][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.324513][ T8504] Buffer I/O error on dev loop5, logical block 0, async page read
[  245.328259][ T8504] Dev loop5: unable to read RDB block 0
[  245.331346][ T8504]  loop5: unable to read partition table
[  245.338033][ T8504] loop_reread_partitions: partition scan of loop5 (3„¾‚³˜) failed (rc=-5)
[  245.517428][ T5832] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  245.671132][ T5832] usb 5-1: config 0 has an invalid interface number: 50 but max is 0
[  245.674019][ T5832] usb 5-1: config 0 has no interface number 0
[  245.676113][ T5832] usb 5-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  245.681670][ T5832] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  245.684776][ T5832] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  245.687648][ T5832] usb 5-1: Product: syz
[  245.689111][ T5832] usb 5-1: Manufacturer: syz
[  245.690742][ T5832] usb 5-1: SerialNumber: syz
[  245.693855][ T5832] usb 5-1: config 0 descriptor??
[  245.701829][ T5832] yurex 5-1:0.50: USB YUREX device now attached to Yurex #0
[  246.475447][ T8531] netlink: 8 bytes leftover after parsing attributes in process `syz.2.770'.
[  246.479441][ T8531] netlink: 24 bytes leftover after parsing attributes in process `syz.2.770'.
[  247.258979][ T8536] syzkaller0: entered promiscuous mode
[  247.260877][ T8536] syzkaller0: entered allmulticast mode
[  247.781818][ T8540] netlink: 8 bytes leftover after parsing attributes in process `syz.2.775'.
[  247.940040][    C3] usb 5-1: yurex_control_callback - control failed: -2
[  247.963843][ T5832] usb 5-1: USB disconnect, device number 11
[  247.979030][ T5832] yurex 5-1:0.50: USB YUREX #0 now disconnected
[  248.548144][ T8544] IPv6: NLM_F_CREATE should be specified when creating new route
[  248.626803][ T8548] validate_nla: 41 callbacks suppressed
[  248.626820][ T8548] netlink: 'syz.0.780': attribute type 1 has an invalid length.
[  248.631438][ T8548] netlink: 224 bytes leftover after parsing attributes in process `syz.0.780'.
[  248.661732][ T8551] hsr0: entered promiscuous mode
[  248.669546][ T8551] netlink: 4 bytes leftover after parsing attributes in process `syz.1.779'.
[  248.804451][ T8551] QAT: Stopping all acceleration devices.
[  249.672805][ T8568] netlink: 'syz.2.784': attribute type 1 has an invalid length.
[  249.705320][ T8568] 8021q: adding VLAN 0 to HW filter on device bond1
[  249.777126][ T8568] netlink: 28 bytes leftover after parsing attributes in process `syz.2.784'.
[  252.417596][ T8603] netlink: 'syz.1.792': attribute type 1 has an invalid length.
[  252.797585][ T8601] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  252.799769][ T8601] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  252.828624][ T8601] vhci_hcd vhci_hcd.0: Device attached
[  252.831876][ T8603] 8021q: adding VLAN 0 to HW filter on device bond1
[  252.864601][ T8605] bond0: (slave syz_tun): Releasing backup interface
[  252.878654][ T8605] bond1: (slave syz_tun): Enslaving as a backup interface with an up link
[  252.973268][ T8611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.794'.
[  253.106450][   T57] usb 42-1: SetAddress Request (2) to port 0
[  253.108527][   T57] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  253.121922][ T8608] vhci_hcd: connection closed
[  253.122174][ T7245] vhci_hcd vhci_hcd.2: stop threads
[  253.125700][ T7245] vhci_hcd vhci_hcd.2: release socket
[  253.127613][ T7245] vhci_hcd vhci_hcd.2: disconnect device
[  253.311270][ T8614] netlink: 60 bytes leftover after parsing attributes in process `syz.3.795'.
[  253.314738][ T8614] comedi comedi3: pcl812: I/O port conflict (0x100,16)
[  253.330225][ T8617] netlink: 24 bytes leftover after parsing attributes in process `syz.0.796'.
[  253.396874][ T8623] wg2 speed is unknown, defaulting to 1000
[  253.714061][ T8638] syzkaller0: entered promiscuous mode
[  253.724030][ T8638] syzkaller0: entered allmulticast mode
[  253.902117][ T8646] exFAT-fs (nbd3): mounting with "discard" option, but the device does not support discard
[  253.907379][ T8646] exFAT-fs (nbd3): unable to read boot sector
[  253.910452][ T8646] exFAT-fs (nbd3): failed to read boot sector
[  253.912604][ T8646] exFAT-fs (nbd3): failed to recognize exfat type
[  254.077529][ T2178] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  254.104103][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  254.104115][   T40] audit: type=1400 audit(2000000170.189:22159): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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
[  254.236480][ T2178] usb 6-1: Using ep0 maxpacket: 16
[  254.269541][ T2178] usb 6-1: too many configurations: 123, using maximum allowed: 8
[  254.273152][ T2178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.278025][ T2178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.282343][ T2178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.286597][ T2178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.290628][ T2178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.303315][ T2178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.309868][ T2178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.314206][ T2178] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  254.319218][ T2178] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  254.322414][ T2178] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=45
[  254.338958][ T2178] usb 6-1: SerialNumber: syz
[  254.349443][ T2178] usb 6-1: config 0 descriptor??
[  254.360506][ T2178] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input13
[  254.361831][ T8667] syzkaller1: entered promiscuous mode
[  254.373015][ T8667] syzkaller1: entered allmulticast mode
[  254.435001][ T8669] netlink: 12 bytes leftover after parsing attributes in process `syz.0.813'.
[  254.584830][ T8644] input: syz0 as /devices/virtual/input/input14
[  254.638532][ T8644] netlink: 'syz.1.805': attribute type 1 has an invalid length.
[  254.701017][ T8644] 8021q: adding VLAN 0 to HW filter on device bond3
[  254.712263][ T8644] bond2: (slave bond3): making interface the new active one
[  254.725780][ T8644] bond2: (slave bond3): Enslaving as an active interface with an up link
[  254.754771][ T5134] bcm5974 6-1:0.0: could not read from device
[  254.770713][ T5134] bcm5974 6-1:0.0: could not read from device
[  254.778484][ T5134] bcm5974 6-1:0.0: could not read from device
[  254.783153][ T2178] usb 6-1: USB disconnect, device number 9
[  255.195470][ T8684] cgroup: Name too long
[  255.359897][ T8693] netlink: 4 bytes leftover after parsing attributes in process `syz.1.818'.
[  255.661050][ T8700] netlink: 'syz.1.819': attribute type 8 has an invalid length.
[  256.363262][ T8737] syzkaller0: entered promiscuous mode
[  256.365187][ T8737] syzkaller0: entered allmulticast mode
[  256.665335][ T8743] netlink: 4 bytes leftover after parsing attributes in process `syz.1.825'.
[  256.748371][ T8748] netlink: 72 bytes leftover after parsing attributes in process `syz.2.827'.
[  257.244574][ T8760] nvme_fabrics: missing parameter 'transport=%s'
[  257.247761][ T8760] nvme_fabrics: missing parameter 'nqn=%s'
[  258.166502][   T57] usb 42-1: device descriptor read/8, error -110
[  258.527188][ T8780] netlink: 'syz.0.834': attribute type 8 has an invalid length.
[  258.563762][   T57] usb usb42-port1: attempt power cycle
[  259.324558][   T57] usb usb42-port1: unable to enumerate USB device
[  259.886661][   T57] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[  260.069710][   T57] usb 5-1: unable to get BOS descriptor or descriptor too short
[  260.073482][   T57] usb 5-1: not running at top speed; connect to a high speed hub
[  260.079333][   T57] usb 5-1: config 1 interface 0 altsetting 2 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  260.084922][   T57] usb 5-1: config 1 interface 0 has no altsetting 0
[  260.093106][   T57] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  260.096997][   T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.097693][ T8802] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  260.100547][   T57] usb 5-1: Product: у
[  260.100568][   T57] usb 5-1: Manufacturer: 벚隿ᕚ힔�喱࿳䞵觷엫诸ⴧ冨倄䀗懟쓉젚㛮�穢뾬앾爔隮墕ⴿ쮷쟸ꯀ๪�ᛙ艒悌뺀Ҭꑘ㙧蹢ᄻ頳�寮쫭笧솷芤谱��稶忳숽淛苨ڽ똞ê蟭棭ꌉ�ﻴ�玨ډ⟛ꖬ㠇䆽솋藽�ⷰ
[  260.100593][   T57] usb 5-1: SerialNumber: �
[  260.106152][ T8796] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  260.123600][ T8802] syzkaller0: entered promiscuous mode
[  260.126072][ T8802] syzkaller0: entered allmulticast mode
[  260.145103][ T8802] tipc: Resetting bearer <eth:syzkaller0>
[  260.152672][ T8801] tipc: Resetting bearer <eth:syzkaller0>
[  260.164828][ T8801] tipc: Disabling bearer <eth:syzkaller0>
[  260.352198][   T57] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22
[  260.391204][   T57] usb 5-1: USB disconnect, device number 12
[  260.488600][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  260.792172][ T8811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.839'.
[  260.796816][ T8821] netlink: 12 bytes leftover after parsing attributes in process `syz.3.845'.
[  260.823284][ T8811] nbd: socks must be embedded in a SOCK_ITEM attr
[  262.071210][ T8842] could not allocate digest TFM handle md5
[  262.701556][ T8845] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  262.708787][ T8845] block device autoloading is deprecated and will be removed.
[  263.241911][ T8855] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  263.244101][ T8855] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  263.355427][ T8855] vhci_hcd vhci_hcd.0: Device attached
[  263.611426][ T8860] netlink: 'syz.2.853': attribute type 1 has an invalid length.
[  263.642885][ T8860] bond2: (slave gretap1): making interface the new active one
[  263.645819][ T8860] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  263.656460][ T6323] usb 38-1: SetAddress Request (2) to port 0
[  263.658680][ T6323] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[  263.798016][ T8856] vhci_hcd: connection reset by peer
[  263.803029][ T7249] vhci_hcd vhci_hcd.0: stop threads
[  263.806412][ T7249] vhci_hcd vhci_hcd.0: release socket
[  263.812231][ T7249] vhci_hcd vhci_hcd.0: disconnect device
[  263.821145][ T8870] bond1: (slave syz_tun): Removing an active aggregator
[  263.825781][ T8870] bond1: (slave syz_tun): Releasing backup interface
[  263.835396][ T8870] bridge0: port 2(bridge_slave_1) entered disabled state
[  263.838281][ T8870] bridge0: port 1(bridge_slave_0) entered disabled state
[  263.866561][ T8870] bridge_slave_0: left allmulticast mode
[  263.868600][ T8870] bridge_slave_0: left promiscuous mode
[  263.870663][ T8870] bridge0: port 1(bridge_slave_0) entered disabled state
[  263.878997][ T8870] bridge_slave_1: left allmulticast mode
[  263.881097][ T8870] bridge_slave_1: left promiscuous mode
[  263.883129][ T8870] bridge0: port 2(bridge_slave_1) entered disabled state
[  263.890130][ T8870] bond0: (slave bond_slave_0): Releasing backup interface
[  263.896139][ T8870] bond0: (slave bond_slave_1): Releasing backup interface
[  263.903506][ T8870] team0: Port device team_slave_0 removed
[  263.909317][ T8870] team0: Port device team_slave_1 removed
[  263.913087][ T8870] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.918907][ T8870] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.923402][ T8870] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.927514][ T8870] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.969911][ T8870] vlan2: left allmulticast mode
[  263.971714][ T8870] geneve0: left allmulticast mode
[  263.973638][ T8870] vlan2: left promiscuous mode
[  263.975334][ T8870] geneve0: left promiscuous mode
[  263.978566][ T8870] bridge0: port 3(vlan2) entered disabled state
[  263.989378][ T8870] bond2: (slave bond3): Releasing backup interface
[  263.994288][ T8443] wg2 speed is unknown, defaulting to 1000
[  263.994351][  T225] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  264.000441][  T225] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  264.002437][ T8443] syz2: Port: 1 Link DOWN
[  264.006670][  T225] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  264.010547][ T8443] wg2 speed is unknown, defaulting to 1000
[  264.011194][  T225] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  264.046656][ T5818] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  264.206421][ T5818] usb 7-1: Using ep0 maxpacket: 8
[  264.217027][ T5818] usb 7-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b
[  264.220733][ T5818] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  264.223548][ T5818] usb 7-1: Product: syz
[  264.225138][ T5818] usb 7-1: Manufacturer: syz
[  264.228647][ T5818] usb 7-1: SerialNumber: syz
[  264.243864][ T5818] usb 7-1: config 0 descriptor??
[  264.280177][ T5818] dvb-usb: found a 'DViCO FusionHDTV DVB-T USB (LGZ201)' in warm state.
[  264.282997][ T5818] dvb-usb: bulk message failed: -22 (2/0)
[  264.311373][ T5818] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  264.318700][ T5818] dvbdev: DVB: registering new adapter (DViCO FusionHDTV DVB-T USB (LGZ201))
[  264.321790][ T5818] usb 7-1: media controller created
[  264.375338][ T5818] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  264.482236][ T8868] dvb-usb: bulk message failed: -22 (3/0)
[  264.491933][ T5818] cxusb: set interface failed
[  264.497675][ T5818] dvb-usb: bulk message failed: -22 (1/0)
[  264.661865][ T5818] DVB: Unable to find symbol mt352_attach()
[  264.664791][ T5818] dvb-usb: no frontend was attached by 'DViCO FusionHDTV DVB-T USB (LGZ201)'
[  264.866887][ T5818] rc_core: IR keymap rc-dvico-portable not found
[  264.874570][ T5818] Registered IR keymap rc-empty
[  264.902326][ T5818] rc rc0: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.2/usb7/7-1/rc/rc0
[  264.931866][ T5818] input: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.2/usb7/7-1/rc/rc0/input15
[  264.969826][ T5818] dvb-usb: schedule remote query interval to 100 msecs.
[  264.976624][ T5818] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully initialized and connected.
[  265.013703][ T5818] usb 7-1: USB disconnect, device number 18
[  265.454630][ T8882] netlink: 14 bytes leftover after parsing attributes in process `syz.2.859'.
[  265.556653][ T5818] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully deinitialized and disconnected.
[  265.625715][ T8892] binder: 8890:8892 ioctl c018620c 80000280 returned -1
[  265.901433][ T8901] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size.
[  266.447639][ T8907] loop6: detected capacity change from 0 to 2640
[  266.461022][ T8907] buffer_io_error: 12 callbacks suppressed
[  266.461035][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.475284][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.481936][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.489324][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.496849][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.509135][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.567556][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.576951][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.584918][ T8907] ldm_validate_partition_table(): Disk read failed.
[  266.590233][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.599560][ T8907] Buffer I/O error on dev loop6, logical block 0, async page read
[  266.607404][ T8907] Dev loop6: unable to read RDB block 0
[  266.614046][ T8907]  loop6: unable to read partition table
[  266.626701][ T8907] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  267.309554][ T8927] fuse: fd is not a fuse device
[  267.564429][ T8937] fuse: Unknown parameter 'user_id00000000000000000000'
[  267.860865][ T8941] netlink: 'syz.3.875': attribute type 4 has an invalid length.
[  267.863553][ T8941] netlink: 17 bytes leftover after parsing attributes in process `syz.3.875'.
[  268.587597][ T8946] wg2 speed is unknown, defaulting to 1000
[  268.795733][ T6323] usb 38-1: device descriptor read/8, error -110
[  269.270036][ T6323] usb usb38-port1: attempt power cycle
[  271.877938][ T2178] libceph: connect (1)[c::]:6789 error -101
[  271.881380][ T2178] libceph: mon0 (1)[c::]:6789 connect error
[  271.931635][ T5832] libceph: connect (1)[c::]:6789 error -101
[  271.936389][ T5832] libceph: mon0 (1)[c::]:6789 connect error
[  272.136855][ T8443] libceph: connect (1)[c::]:6789 error -101
[  272.139950][ T8443] libceph: mon0 (1)[c::]:6789 connect error
[  272.196778][ T5832] libceph: connect (1)[c::]:6789 error -101
[  272.206125][ T5832] libceph: mon0 (1)[c::]:6789 connect error
[  272.423154][ T8986] syzkaller0: entered promiscuous mode
[  272.425895][ T8986] syzkaller0: entered allmulticast mode
[  272.436892][ T8986] tc action pedit offset 64 out of bounds
[  272.440043][ T8986] tc action pedit offset 64 out of bounds
[  272.442037][ T8986] tc action pedit offset 64 out of bounds
[  272.443925][ T8986] tc action pedit offset 64 out of bounds
[  272.445873][ T8986] tc action pedit offset 64 out of bounds
[  272.447909][ T8986] tc action pedit offset 64 out of bounds
[  272.449808][ T8986] tc action pedit offset 64 out of bounds
[  272.451743][ T8986] tc action pedit offset 64 out of bounds
[  272.453645][ T8986] tc action pedit offset 64 out of bounds
[  272.455554][ T8986] tc action pedit offset 64 out of bounds
[  272.457520][ T8986] 0: reclassify loop, rule prio 0, protocol 800
[  272.458363][ T8988] syzkaller0: entered promiscuous mode
[  272.461594][ T8988] syzkaller0: entered allmulticast mode
[  272.537379][ T6323] usb usb38-port1: unable to enumerate USB device
[  272.648009][ T8443] libceph: connect (1)[c::]:6789 error -101
[  272.663750][ T8443] libceph: mon0 (1)[c::]:6789 connect error
[  272.703243][ T8970] ceph: No mds server is up or the cluster is laggy
[  272.716635][ T5832] libceph: connect (1)[c::]:6789 error -101
[  272.718806][ T5832] libceph: mon0 (1)[c::]:6789 connect error
[  272.728058][ T8967] ceph: No mds server is up or the cluster is laggy
[  277.628616][ T9036] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  277.740265][ T9038] x_tables: duplicate underflow at hook 1
[  277.986839][ T9037] bridge0: port 4(erspan0) entered blocking state
[  278.007079][ T9037] bridge0: port 4(erspan0) entered disabled state
[  278.036274][ T9037] erspan0: entered allmulticast mode
[  278.147216][ T9037] erspan0: entered promiscuous mode
[  278.223108][ T9040] erspan0: left allmulticast mode
[  278.224858][ T9040] erspan0: left promiscuous mode
[  278.233002][ T9040] bridge0: port 4(erspan0) entered disabled state
[  278.835264][ T9052] syzkaller1: entered promiscuous mode
[  278.837264][ T9052] syzkaller1: entered allmulticast mode
[  279.058124][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  280.367920][ T9058] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0
[  280.418487][ T9059] wg2 speed is unknown, defaulting to 1000
[  280.720032][ T9070] netlink: 188 bytes leftover after parsing attributes in process `syz.0.908'.
[  280.808655][ T9071] netlink: 4 bytes leftover after parsing attributes in process `syz.2.909'.
[  280.812476][ T9070] wg2 speed is unknown, defaulting to 1000
[  280.873812][ T9071] netlink: 12 bytes leftover after parsing attributes in process `syz.2.909'.
[  283.548661][ T9093] netlink: 88 bytes leftover after parsing attributes in process `syz.0.914'.
[  284.488661][ T9103] netlink: 'syz.1.916': attribute type 4 has an invalid length.
[  284.491473][ T9103] netlink: 17 bytes leftover after parsing attributes in process `syz.1.916'.
[  284.826503][ T5818] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  284.996513][ T5818] usb 5-1: Using ep0 maxpacket: 32
[  285.003681][ T5818] usb 5-1: config index 0 descriptor too short (expected 105, got 27)
[  285.007219][ T5818] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  285.011545][ T5818] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  285.209973][ T9110] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  285.212179][ T9110] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  285.214896][ T9110] vhci_hcd vhci_hcd.0: Device attached
[  285.486440][ T5832] usb 39-1: new low-speed USB device number 6 using vhci_hcd
[  285.488893][ T5831] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  285.656494][ T5831] usb 6-1: Using ep0 maxpacket: 8
[  285.660362][ T5831] usb 6-1: config 0 has no interfaces?
[  285.662871][ T5831] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  285.667116][ T5831] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.673102][ T5831] usb 6-1: config 0 descriptor??
[  285.900595][ T9111] vhci_hcd: cannot find the pending unlink 4294934528
[  285.906659][ T9111] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 4
[  285.919540][ T7248] vhci_hcd vhci_hcd.1: stop threads
[  285.929001][ T7248] vhci_hcd vhci_hcd.1: release socket
[  285.939949][ T7248] vhci_hcd vhci_hcd.1: disconnect device
[  285.949466][ T9114] netlink: 'syz.3.919': attribute type 7 has an invalid length.
[  285.968550][ T7248] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  285.977049][ T7248] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  285.984172][ T7248] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  285.992905][ T7248] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  286.350963][ T5818] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  286.354070][ T5818] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  286.357093][ T5818] usb 5-1: Product: syz
[  286.358536][ T5818] usb 5-1: Manufacturer: syz
[  286.360085][ T5818] usb 5-1: SerialNumber: syz
[  286.362816][ T5818] usb 5-1: config 0 descriptor??
[  286.426413][   T57] usb 6-1: USB disconnect, device number 10
[  287.342527][ T9139] netlink: 16 bytes leftover after parsing attributes in process `syz.0.923'.
[  287.445408][ T9141] Invalid ELF header len 9
[  287.451611][ T9141] overlayfs: missing 'lowerdir'
[  287.566090][ T5818] usb 5-1: USB disconnect, device number 13
[  288.136653][ T9149] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  288.146516][ T9149] syzkaller0: entered promiscuous mode
[  288.148199][ T9149] syzkaller0: entered allmulticast mode
[  289.429501][  T842] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  289.576490][  T842] usb 5-1: Using ep0 maxpacket: 32
[  289.579695][  T842] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  289.583111][  T842] usb 5-1: config 0 has no interfaces?
[  289.585050][  T842] usb 5-1: New USB device found, idVendor=0545, idProduct=8080, bcdDevice= 3.01
[  289.588599][  T842] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.595706][  T842] usb 5-1: config 0 descriptor??
[  291.076503][ T5832] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  291.777664][   T10] usb 5-1: USB disconnect, device number 14
[  291.788853][ T9195] hsr0 speed is unknown, defaulting to 1000
[  291.791758][ T9195] hsr0 speed is unknown, defaulting to 1000
[  291.796993][ T9195] hsr0 speed is unknown, defaulting to 1000
[  291.804126][ T9195] smbdirect: ib_dev[syz1]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[  291.815137][ T9197] netlink: 'syz.1.939': attribute type 1 has an invalid length.
[  291.818777][ T9195] smbdirect: ib_dev[syz1]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[  291.828725][ T9195] smbdirect: ib_dev[syz1]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[  291.836944][ T9195] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  291.849164][ T9195] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  291.879222][ T9197] 8021q: adding VLAN 0 to HW filter on device bond5
[  291.883827][ T9197] bond4: (slave bond5): making interface the new active one
[  291.886981][ T9197] bond4: (slave bond5): Enslaving as an active interface with an up link
[  291.889831][ T9195] hsr0 speed is unknown, defaulting to 1000
[  291.894236][ T9195] hsr0 speed is unknown, defaulting to 1000
[  291.898496][ T9195] hsr0 speed is unknown, defaulting to 1000
[  291.903898][ T9195] hsr0 speed is unknown, defaulting to 1000
[  291.915956][ T9197] bond4: (slave gretap1): Enslaving as a backup interface with an up link
[  292.450171][ T9211] x_tables: duplicate underflow at hook 1
[  293.003529][ T9219] wg2 speed is unknown, defaulting to 1000
[  293.088717][ T9219] hsr0 speed is unknown, defaulting to 1000
[  293.380534][   T40] audit: type=1800 audit(2000000209.469:22160): pid=9213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.944" name="bus" dev="ramfs" ino=26665 res=0 errno=0
[  293.708587][ T8443] usb 7-1: new full-speed USB device number 19 using dummy_hcd
[  293.868124][ T8443] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  293.876675][ T8443] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  293.884184][ T8443] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  293.891789][ T8443] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.024394][ T9243] netlink: 'syz.3.952': attribute type 1 has an invalid length.
[  294.104568][ T8443] usb 7-1: usb_control_msg returned -32
[  294.107792][ T8443] usbtmc 7-1:16.0: can't read capabilities
[  294.109997][ T9233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  294.123140][ T9233] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  294.149025][ T9243] 8021q: adding VLAN 0 to HW filter on device bond2
[  294.192838][ T9245] bond2: (slave syz_tun): Enslaving as a backup interface with an up link
[  294.360755][ T8443] usb 7-1: USB disconnect, device number 19
[  294.819392][ T9250] netlink: 36 bytes leftover after parsing attributes in process `syz.1.954'.
[  294.974309][ T9254] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  295.062919][ T9257] netlink: 24 bytes leftover after parsing attributes in process `syz.2.957'.
[  295.610660][ T9261] x_tables: duplicate underflow at hook 1
[  296.108394][ T9261] syz.3.956 (9261) used greatest stack depth: 17096 bytes left
[  298.164412][ T9289] FAULT_INJECTION: forcing a failure.
[  298.164412][ T9289] name failslab, interval 1, probability 0, space 0, times 0
[  298.182059][ T9289] CPU: 2 UID: 0 PID: 9289 Comm: syz.3.966 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  298.182087][ T9289] Tainted: [L]=SOFTLOCKUP
[  298.182092][ T9289] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  298.182102][ T9289] Call Trace:
[  298.182109][ T9289]  <TASK>
[  298.182117][ T9289]  dump_stack_lvl+0x100/0x190
[  298.182145][ T9289]  should_fail_ex.cold+0x5/0xa
[  298.182188][ T9289]  ? tomoyo_encode2+0xfb/0x3c0
[  298.182211][ T9289]  should_failslab+0xc2/0x120
[  298.182229][ T9289]  __kmalloc_noprof+0xe0/0x850
[  298.182256][ T9289]  tomoyo_encode2+0xfb/0x3c0
[  298.182281][ T9289]  tomoyo_encode+0x29/0x50
[  298.182296][ T9289]  tomoyo_realpath_from_path+0x18c/0x690
[  298.182318][ T9289]  tomoyo_path_number_perm+0x23c/0x580
[  298.182331][ T9289]  ? tomoyo_path_number_perm+0x22e/0x580
[  298.182347][ T9289]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  298.182367][ T9289]  ? get_pid_task+0x106/0x250
[  298.182420][ T9289]  ? find_held_lock+0x2b/0x80
[  298.182444][ T9289]  ? __fget_files+0x215/0x3d0
[  298.182464][ T9289]  ? hook_file_ioctl_common+0x149/0x410
[  298.182483][ T9289]  ? __fget_files+0x215/0x3d0
[  298.182509][ T9289]  ? __fget_files+0x21f/0x3d0
[  298.182535][ T9289]  security_file_ioctl_compat+0xd3/0x230
[  298.182556][ T9289]  __ia32_compat_sys_ioctl+0xc2/0x360
[  298.182580][ T9289]  __do_fast_syscall_32+0xe7/0x950
[  298.182603][ T9289]  ? lockdep_hardirqs_on+0x78/0x100
[  298.182623][ T9289]  do_fast_syscall_32+0x32/0x70
[  298.182642][ T9289]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  298.182662][ T9289] RIP: 0023:0xf7f77fcc
[  298.182674][ T9289] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  298.182688][ T9289] RSP: 002b:00000000f543650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  298.182703][ T9289] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000891c
[  298.182712][ T9289] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  298.182720][ T9289] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  298.182728][ T9289] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  298.182736][ T9289] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  298.182760][ T9289]  </TASK>
[  298.184296][ T9289] ERROR: Out of memory at tomoyo_realpath_from_path.
[  298.669909][ T9295] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  299.044049][ T9301] Device name cannot be null; rc = [-22]
[  299.631001][ T9304] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  299.633279][ T9304] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  299.637800][ T9304] vhci_hcd vhci_hcd.0: Device attached
[  299.896428][ T6323] usb 41-1: new low-speed USB device number 8 using vhci_hcd
[  299.900794][   T57] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  300.046395][   T57] usb 7-1: Using ep0 maxpacket: 8
[  300.049474][   T57] usb 7-1: config 0 has no interfaces?
[  300.051309][   T57] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  300.054356][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.062649][   T57] usb 7-1: config 0 descriptor??
[  300.292152][ T9305] vhci_hcd: cannot find the pending unlink 4294934528
[  300.301045][ T9305] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 7
[  300.308669][ T7241] vhci_hcd vhci_hcd.2: stop threads
[  300.311130][ T7241] vhci_hcd vhci_hcd.2: release socket
[  300.313455][ T7241] vhci_hcd vhci_hcd.2: disconnect device
[  300.373991][ T9317] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  300.382259][ T8443] usb 7-1: USB disconnect, device number 20
[  300.508787][ T9317] 9p: Bad value for 'rfdno'
[  302.654503][ T9342] wg2 speed is unknown, defaulting to 1000
[  302.929096][ T9347] wg2 speed is unknown, defaulting to 1000
[  302.934331][ T9342] hsr0 speed is unknown, defaulting to 1000
[  303.066895][ T8443] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  303.142054][ T9347] hsr0 speed is unknown, defaulting to 1000
[  303.237024][ T8443] usb 5-1: Using ep0 maxpacket: 8
[  303.259838][ T8443] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  303.270285][ T8443] usb 5-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  303.298538][ T8443] usb 5-1: config 0 interface 0 has no altsetting 0
[  303.310806][ T8443] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  303.334110][ T8443] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.392793][ T8443] usb 5-1: config 0 descriptor??
[  303.537173][   T40] audit: type=1800 audit(2000000219.619:22161): pid=9363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.987" name="file1" dev="overlay" ino=1378 res=0 errno=0
[  304.352374][ T8443] usbhid 5-1:0.0: can't add hid device: -71
[  304.354444][ T8443] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  304.381174][ T8443] usb 5-1: USB disconnect, device number 15
[  305.039134][ T6323] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  305.694153][ T9388] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  305.720189][ T9388] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  307.120634][ T9408] netlink: 'syz.2.998': attribute type 4 has an invalid length.
[  307.541598][ T9418] input: syz0 as /devices/virtual/input/input18
[  308.838409][ T9422] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  309.012837][ T9436] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  309.025490][ T9436] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  309.029668][ T9436] xt_TPROXY: Can be used only with -p tcp or -p udp
[  309.041316][ T9436] wg2 speed is unknown, defaulting to 1000
[  309.113168][ T9436] hsr0 speed is unknown, defaulting to 1000
[  309.187788][ T9443] evm: overlay not supported
[  310.022195][ T9447] x_tables: duplicate underflow at hook 1
[  310.509240][ T9464] netlink: 'syz.0.1021': attribute type 1 has an invalid length.
[  310.512701][ T9464] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1021'.
[  311.190295][ T9459] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  311.556193][ T9485] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  311.767184][ T9489] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  311.770179][ T9489] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  311.786771][ T9489] vhci_hcd vhci_hcd.0: Device attached
[  312.096511][ T6323] usb 42-1: SetAddress Request (6) to port 0
[  312.100591][ T6323] usb 42-1: new SuperSpeed USB device number 6 using vhci_hcd
[  312.526632][ T9490] vhci_hcd: connection reset by peer
[  312.528989][   T69] vhci_hcd vhci_hcd.2: stop threads
[  312.539369][   T69] vhci_hcd vhci_hcd.2: release socket
[  312.549422][   T69] vhci_hcd vhci_hcd.2: disconnect device
[  312.971003][ T9503] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  312.992645][ T9505] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  313.096409][ T9502] x_tables: duplicate underflow at hook 1
[  313.704859][ T9516] netlink: 'syz.3.1033': attribute type 1 has an invalid length.
[  313.707855][ T9516] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1033'.
[  314.730564][ T9547] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  315.778557][ T9560] wg2 speed is unknown, defaulting to 1000
[  315.983705][ T9560] hsr0 speed is unknown, defaulting to 1000
[  316.026025][ T9562] wg2 speed is unknown, defaulting to 1000
[  316.196805][ T9562] hsr0 speed is unknown, defaulting to 1000
[  316.339586][ T9563] smbdirect: ib_dev[syz0]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[  316.346220][ T9563] smbdirect: ib_dev[syz0]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[  316.358865][ T9563] smbdirect: ib_dev[syz0]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[  316.608586][ T9563] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  316.822923][ T9575] fuse: Unknown parameter 'uid>00000000000000000000'
[  316.866410][ T5846] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  317.016597][ T5846] usb 5-1: Using ep0 maxpacket: 32
[  317.021369][ T5846] usb 5-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  317.025355][ T5846] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.031092][ T5846] usb 5-1: config 0 descriptor??
[  317.046977][ T5846] as10x_usb: device has been detected
[  317.050621][ T5846] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  317.072894][ T5846] usb 5-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  317.094075][ T5846] as10x_usb: error during firmware upload part1
[  317.096856][ T5846] Registered device nBox DVB-T Dongle
[  317.216497][ T6323] usb 42-1: device descriptor read/8, error -110
[  317.237983][ T5846] usb 5-1: USB disconnect, device number 16
[  317.263325][ T5846] Unregistered device nBox DVB-T Dongle
[  317.264924][ T5846] as10x_usb: device has been disconnected
[  317.413025][ T9585] netlink: 'syz.0.1049': attribute type 1 has an invalid length.
[  317.415711][ T9585] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1049'.
[  317.621014][ T6323] usb usb42-port1: attempt power cycle
[  317.712770][ T9593] kvm: pic: single mode not supported
[  317.717609][ T9593] kvm: pic: level sensitive irq not supported
[  317.720101][ T9593] kvm: pic: single mode not supported
[  317.722257][ T9593] kvm: pic: level sensitive irq not supported
[  318.016534][   T40] audit: type=1326 audit(2000000234.099:22162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9597 comm="syz.1.1053" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703efcc code=0x0
[  318.189419][ T6323] usb usb42-port1: unable to enumerate USB device
[  318.397416][ T9603] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  318.472900][ T9604] loop5: detected capacity change from 0 to 7
[  318.497335][ T9604]  loop5: [CUMANA/ADFS] p1 [ADFS] p1
[  318.499560][ T9604] loop5: partition table partially beyond EOD, truncated
[  318.509016][ T9604] loop5: p1 size 487441168 extends beyond EOD, truncated
[  318.521001][ T9605] binder: 9602:9605 ioctl c0285840 80000000 returned -22
[  318.793516][ T6131] udevd[6131]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  319.101614][ T9613] syzkaller0: entered promiscuous mode
[  319.103517][ T9613] syzkaller0: entered allmulticast mode
[  319.111999][ T9609] FAT-fs (nullb0): bogus number of reserved sectors
[  319.114972][ T9609] FAT-fs (nullb0): Can't find a valid FAT filesystem
[  319.270686][ T9619] 9pnet: p9_errstr2errno: server reported unknown error ÿÿÿ
[  319.373389][ T9625] program syz.1.1059 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  319.946423][ T5818] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  320.117304][ T5818] usb 6-1: Using ep0 maxpacket: 8
[  320.121479][ T5818] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  320.125368][ T5818] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  320.129591][ T5818] usb 6-1: config 0 interface 0 has no altsetting 0
[  320.133191][ T5818] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  320.137048][ T5818] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.141717][ T5818] usb 6-1: config 0 descriptor??
[  320.565556][ T5818] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  320.577877][ T5818] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  320.580557][ T5818] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  320.583332][ T5818] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  320.587622][ T5818] mcp2221 0003:04D8:00DD.0004: unknown main item tag 0x0
[  320.592755][ T5818] mcp2221 0003:04D8:00DD.0004: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0
[  321.124926][ T9632] input: syz1 as /devices/virtual/input/input19
[  321.185246][ T5746] udevd[5746]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  321.366456][ T5846] usb 5-1: new full-speed USB device number 17 using dummy_hcd
[  321.531494][ T5846] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  321.539213][ T5846] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  321.546708][ T5846] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  321.551044][ T5846] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.554802][ T5846] usb 5-1: Product: syz
[  321.557348][ T5846] usb 5-1: Manufacturer: syz
[  321.559549][ T5846] usb 5-1: SerialNumber: syz
[  321.566089][ T9645] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  321.847283][ T9647] netlink: 'syz.0.1064': attribute type 4 has an invalid length.
[  321.887732][ T9647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  321.929739][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  321.950582][ T9647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  321.960774][ T9647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  321.983177][ T9647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  322.774710][ T9650] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  322.859839][ T9651] loop5: detected capacity change from 0 to 7
[  322.873305][ T9651]  loop5: [CUMANA/ADFS] p1 [ADFS] p1
[  322.875157][ T9651] loop5: partition table partially beyond EOD, truncated
[  322.878708][ T9651] loop5: p1 size 487441168 extends beyond EOD, truncated
[  322.912527][ T9654] binder: 9649:9654 ioctl c0285840 80000000 returned -22
[  323.131890][ T5746] udevd[5746]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  323.335262][   T40] audit: type=1800 audit(2000000239.419:22163): pid=9658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1067" name="bus" dev="tmpfs" ino=1227 res=0 errno=0
[  323.423085][ T9668] i2c i2c-1: DVB: adapter 0 frontend 0 frequency 0 out of range (51000000..2150000000)
[  323.480661][ T9669] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  323.514136][  T842] usb 6-1: USB disconnect, device number 11
[  324.322101][ T5846] cdc_ncm 5-1:1.0: bind() failure
[  324.328230][ T5846] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  324.350355][ T5846] cdc_ncm 5-1:1.1: bind() failure
[  324.364225][ T5846] usb 5-1: USB disconnect, device number 17
[  324.718041][ T9689] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1072'.
[  324.956448][ T9692] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  325.067897][ T9692] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  325.210756][ T9692] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  325.336415][ T9692] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  325.690744][ T7248] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  325.698908][ T7248] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  325.712358][ T7248] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  325.730373][ T7248] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  326.087274][ T9712] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.102894][ T9714] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1076'.
[  326.333130][ T9712] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.353669][ T9716] syzkaller0: entered promiscuous mode
[  326.376864][ T9716] syzkaller0: entered allmulticast mode
[  326.393948][ T9719] binder: 9718:9719 ioctl c0306201 80000680 returned -14
[  326.462911][ T9712] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.556194][ T9712] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.674861][ T9721] netlink: 'syz.3.1084': attribute type 39 has an invalid length.
[  326.704050][ T7245] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  326.718402][ T7245] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  326.764847][  T225] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  326.886643][ T9724] bond0: entered promiscuous mode
[  326.888614][ T9724] bond_slave_0: entered promiscuous mode
[  326.891144][ T9724] bond_slave_1: entered promiscuous mode
[  326.899197][  T225] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  327.718763][ T9720] bond0: left promiscuous mode
[  327.721175][ T9720] bond_slave_0: left promiscuous mode
[  327.724057][ T9720] bond_slave_1: left promiscuous mode
[  328.086464][ T5818] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  329.176463][ T5818] usb 5-1: Using ep0 maxpacket: 8
[  329.180890][ T5818] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  329.184412][ T5818] usb 5-1: config 0 has no interface number 0
[  329.187206][ T5818] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  329.191917][ T5818] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  329.195714][ T5818] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  329.203876][ T5818] usb 5-1: config 0 descriptor??
[  329.213869][ T5818] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  329.716400][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  329.776558][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  329.988931][  T842] usb 5-1: USB disconnect, device number 18
[  330.722175][ T9757] input: syz1 as /devices/virtual/input/input21
[  332.269410][ T5818] IPVS: starting estimator thread 0...
[  332.376646][ T9771] IPVS: using max 44 ests per chain, 105600 per kthread
[  332.502263][ T9778] netlink: 'syz.0.1101': attribute type 1 has an invalid length.
[  332.510543][ T9778] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1101'.
[  332.713494][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.719076][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.727955][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.736760][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.740399][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.841622][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.844758][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.847696][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.850785][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.854014][ T6323] hid-generic 0002:0009:0003.0005: unknown main item tag 0x0
[  332.869592][ T6323] hid-generic 0002:0009:0003.0005: hidraw1: <UNKNOWN> HID v0.06 Device [syz0] on syz0
[  332.921938][ T9796] fido_id[9796]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  333.110527][ T9802] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  334.190332][ T9817] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1113'.
[  335.420244][ T9825] syz.2.1114 (9825): drop_caches: 2
[  337.007534][ T9847] could not allocate digest TFM handle md5
[  337.014245][ T9852] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1120'.
[  337.181869][ T9859] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1124'.
[  337.195417][ T9859] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  337.199720][ T9859] syzkaller0: entered promiscuous mode
[  337.201690][ T9859] syzkaller0: entered allmulticast mode
[  337.394444][ T9866] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1126'.
[  338.535265][ T9885] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1132'.
[  338.569784][ T9885] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1132'.
[  338.611305][ T9855] dlm: Unknown command passed to DLM device : 3
[  338.611305][ T9855] 
[  339.034619][ T9891] could not allocate digest TFM handle md5
[  339.201241][ T9896] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  341.227885][ T9918] 9pnet_fd: Insufficient options for proto=fd
[  341.538078][ T9925] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  341.584691][ T9935] syz_tun: entered allmulticast mode
[  341.597513][ T9935] pimreg: entered allmulticast mode
[  341.602319][ T9934] syz_tun: left allmulticast mode
[  341.604484][ T9934] pimreg: left allmulticast mode
[  343.172503][ T9953] x_tables: duplicate underflow at hook 1
[  345.377001][ T9979] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  345.379833][ T9979] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  345.390300][ T9979] vhci_hcd vhci_hcd.0: Device attached
[  345.636478][ T5831] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  345.639865][  T842] usb 39-1: new low-speed USB device number 7 using vhci_hcd
[  345.796875][ T5831] usb 6-1: Using ep0 maxpacket: 8
[  345.804009][ T5831] usb 6-1: config 0 has no interfaces?
[  345.806686][ T5831] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  345.811044][ T5831] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.929627][ T5831] usb 6-1: config 0 descriptor??
[  346.015558][ T9991] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  346.262990][ T9980] vhci_hcd: cannot find the pending unlink 4294934528
[  346.275058][ T9980] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 5
[  346.285686][ T7241] vhci_hcd vhci_hcd.1: stop threads
[  346.288300][ T7241] vhci_hcd vhci_hcd.1: release socket
[  346.291203][ T7241] vhci_hcd vhci_hcd.1: disconnect device
[  346.471669][   T10] usb 6-1: USB disconnect, device number 12
[  348.205966][T10014] bond0: entered promiscuous mode
[  348.214230][T10014] batadv0: entered promiscuous mode
[  348.218308][T10014] debugfs: 'hsr0' already exists in 'hsr'
[  348.220977][T10014] Cannot create hsr debugfs directory
[  348.223607][T10014] hsr0: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  348.231918][T10014] hsr0: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  348.238912][T10014] 8021q: adding VLAN 0 to HW filter on device hsr0
[  348.256893][T10014] netlink: 'syz.1.1168': attribute type 10 has an invalid length.
[  348.260544][T10014] syz_tun: entered promiscuous mode
[  348.270899][T10014] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  348.329518][T10017] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  348.331862][T10017] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  348.341983][T10017] vhci_hcd vhci_hcd.0: Device attached
[  348.576440][ T5846] usb 41-1: new low-speed USB device number 9 using vhci_hcd
[  348.880533][   T40] audit: type=1326 audit(2000000264.969:22164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.890337][   T40] audit: type=1326 audit(2000000264.969:22165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.899853][   T40] audit: type=1326 audit(2000000264.969:22166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.909639][   T40] audit: type=1326 audit(2000000264.969:22167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.919317][   T40] audit: type=1326 audit(2000000264.969:22168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.929049][   T40] audit: type=1326 audit(2000000264.969:22169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.938659][   T40] audit: type=1326 audit(2000000264.979:22170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.948301][   T40] audit: type=1326 audit(2000000264.979:22171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.957928][   T40] audit: type=1326 audit(2000000264.979:22172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf703efcc code=0x7ffc0000
[  348.967480][   T40] audit: type=1326 audit(2000000264.979:22173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10023 comm="syz.1.1171" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703efcc code=0x7ffc0000
[  349.302162][T10031] netlink: 'syz.0.1173': attribute type 1 has an invalid length.
[  349.304919][T10031] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1173'.
[  350.660479][T10048] netlink: 'syz.3.1179': attribute type 1 has an invalid length.
[  350.664042][T10048] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1179'.
[  350.727036][  T842] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  351.296532][T10018] vhci_hcd: connection reset by peer
[  351.305608][   T13] vhci_hcd vhci_hcd.2: stop threads
[  351.315713][   T13] vhci_hcd vhci_hcd.2: release socket
[  351.325486][   T13] vhci_hcd vhci_hcd.2: disconnect device
[  351.435596][T10059] netlink: 'syz.1.1183': attribute type 1 has an invalid length.
[  351.439353][T10059] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1183'.
[  351.917423][T10067] bridge5: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  352.608787][T10077] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  352.611028][T10077] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  352.613775][T10077] vhci_hcd vhci_hcd.0: Device attached
[  352.741716][T10083] serio: Serial port ptm0
[  352.875398][T10083] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1190'.
[  352.878605][   T57] usb 43-1: new low-speed USB device number 7 using vhci_hcd
[  353.676631][ T5846] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  354.929097][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  354.929117][   T40] audit: type=1326 audit(2000000271.019:22188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  354.939460][   T40] audit: type=1326 audit(2000000271.019:22189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  354.958684][   T40] audit: type=1326 audit(2000000271.029:22190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  354.967737][   T40] audit: type=1326 audit(2000000271.029:22191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  354.975957][   T40] audit: type=1326 audit(2000000271.029:22192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=36 compat=1 ip=0xf701efcc code=0x7ffc0000
[  354.990826][   T40] audit: type=1326 audit(2000000271.079:22193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  354.994572][T10115] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1200'.
[  354.998285][   T40] audit: type=1326 audit(2000000271.079:22194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf701efcc code=0x7ffc0000
[  355.009782][   T40] audit: type=1326 audit(2000000271.079:22195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf701efcc code=0x7ffc0000
[  355.017116][   T40] audit: type=1326 audit(2000000271.079:22196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  355.024829][   T40] audit: type=1326 audit(2000000271.079:22197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10114 comm="syz.0.1200" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701efcc code=0x7ffc0000
[  355.633106][T10078] vhci_hcd: connection reset by peer
[  355.637220][   T69] vhci_hcd vhci_hcd.3: stop threads
[  355.645796][   T69] vhci_hcd vhci_hcd.3: release socket
[  355.648441][   T69] vhci_hcd vhci_hcd.3: disconnect device
[  357.171696][T10158] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  357.174556][T10158] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  357.182683][T10158] vhci_hcd vhci_hcd.0: Device attached
[  357.196233][T10160] vhci_hcd: cannot find the pending unlink 4294934528
[  357.203067][T10160] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 5
[  357.213497][   T13] vhci_hcd vhci_hcd.1: stop threads
[  357.215091][T10149] bridge0: port 4(erspan0) entered blocking state
[  357.217772][   T13] vhci_hcd vhci_hcd.1: release socket
[  357.225254][   T13] vhci_hcd vhci_hcd.1: disconnect device
[  357.225440][T10149] bridge0: port 4(erspan0) entered disabled state
[  357.235317][T10149] erspan0: entered allmulticast mode
[  357.260785][T10149] erspan0: entered promiscuous mode
[  357.290232][T10149] bridge0: port 4(erspan0) entered blocking state
[  357.293261][T10149] bridge0: port 4(erspan0) entered forwarding state
[  358.000291][   T57] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  359.515638][T10178] could not allocate digest TFM handle md5
[  359.677479][T10183] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  359.691424][T10183] siw: device registration error -23
[  360.269327][T10197] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1225'.
[  360.330342][T10200] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1225'.
[  360.335259][T10200] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1225'.
[  360.444573][T10203] random: crng reseeded on system resumption
[  360.543618][T10205] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1227'.
[  360.560558][T10205] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1227'.
[  361.114273][T10215] could not allocate digest TFM handle md5
[  361.246536][  T842] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  361.408407][  T842] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  361.413324][  T842] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  361.417818][  T842] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  361.423399][  T842] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  361.427553][  T842] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.433554][  T842] usb 6-1: config 0 descriptor??
[  361.891549][  T842] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  363.077464][ T5753] usb 6-1: USB disconnect, device number 13
[  363.165352][T10238] syzkaller0: entered promiscuous mode
[  363.167855][T10238] syzkaller0: entered allmulticast mode
[  366.058087][T10265] could not allocate digest TFM handle md5
[  366.098025][T10258] openvswitch: netlink: Unexpected mask (mask=840, allowed=10048)
[  366.740889][T10279] 9p: Bad value for 'wfdno'
[  366.792698][T10278] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  366.833062][T10271] wg2 speed is unknown, defaulting to 1000
[  366.913478][T10271] hsr0 speed is unknown, defaulting to 1000
[  367.779244][T10291] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  368.166620][   T57] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  368.403030][   T57] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  368.407030][   T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.410410][   T57] usb 5-1: Product: syz
[  368.412565][   T57] usb 5-1: Manufacturer: syz
[  368.414563][   T57] usb 5-1: SerialNumber: syz
[  368.798455][T10288] nfs: Bad value for 'source'
[  368.838862][   T57] rtl8150 5-1:1.0: couldn't reset the device
[  368.841398][   T57] rtl8150 5-1:1.0: probe with driver rtl8150 failed with error -5
[  368.849950][   T57] usb 5-1: USB disconnect, device number 19
[  369.463613][T10307] could not allocate digest TFM handle md5
[  371.095704][T10329] bridge0: port 4(erspan0) entered blocking state
[  371.105532][T10329] bridge0: port 4(erspan0) entered disabled state
[  371.113939][T10329] erspan0: entered allmulticast mode
[  371.129764][T10329] erspan0: entered promiscuous mode
[  372.866191][T10343] input: syz1 as /devices/virtual/input/input22
[  373.571577][ T7247] Bluetooth: hci4: Frame reassembly failed (-84)
[  373.646986][T10352] x_tables: duplicate underflow at hook 1
[  374.490852][T10358] could not allocate digest TFM handle md5
[  375.377308][T10369] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1269'.
[  375.606458][   T62] Bluetooth: hci4: command 0x1003 tx timeout
[  375.609301][ T5744] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  375.715508][T10373] netlink: 'syz.3.1271': attribute type 5 has an invalid length.
[  376.053324][T10376] binder: 10374:10376 ioctl c0306201 80000640 returned -22
[  376.441059][   T40] kauditd_printk_skb: 373 callbacks suppressed
[  376.441075][   T40] audit: type=1326 audit(2000000292.529:22571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.445304][T10384] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1277'.
[  376.466900][   T40] audit: type=1326 audit(2000000292.529:22572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.486506][   T40] audit: type=1326 audit(2000000292.529:22573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.505352][   T40] audit: type=1326 audit(2000000292.529:22574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.521800][T10389] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  376.525615][   T40] audit: type=1326 audit(2000000292.529:22575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.535299][   T40] audit: type=1326 audit(2000000292.529:22576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.553811][   T40] audit: type=1326 audit(2000000292.529:22577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.574192][   T40] audit: type=1326 audit(2000000292.529:22578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.594503][   T40] audit: type=1326 audit(2000000292.529:22579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.614877][   T40] audit: type=1326 audit(2000000292.529:22580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10383 comm="syz.3.1277" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  376.958739][T10397] No buffer was provided with the request
[  380.660151][T10440] input: syz1 as /devices/virtual/input/input23
[  380.929256][T10445] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  380.931479][T10445] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  380.934656][T10445] vhci_hcd vhci_hcd.0: Device attached
[  381.206469][ T5753] usb 37-1: new low-speed USB device number 10 using vhci_hcd
[  381.423063][  T842] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  381.936548][  T842] usb 5-1: device descriptor read/64, error -71
[  382.196531][  T842] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  382.346495][  T842] usb 5-1: device descriptor read/64, error -71
[  382.451088][T10472] could not allocate digest TFM handle md5
[  382.467838][  T842] usb usb5-port1: attempt power cycle
[  382.673825][T10479] bridge5: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  382.836452][  T842] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  382.867205][  T842] usb 5-1: device descriptor read/8, error -71
[  383.136483][  T842] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  383.156968][  T842] usb 5-1: device descriptor read/8, error -71
[  383.266563][  T842] usb usb5-port1: unable to enumerate USB device
[  383.367317][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  383.915553][T10447] vhci_hcd: connection reset by peer
[  383.920279][ T7247] vhci_hcd vhci_hcd.0: stop threads
[  383.930258][ T7247] vhci_hcd vhci_hcd.0: release socket
[  383.937562][ T7247] vhci_hcd vhci_hcd.0: disconnect device
[  383.971144][T10489] x_tables: duplicate underflow at hook 1
[  384.035343][T10496] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.092576][T10496] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.143828][T10496] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.193781][T10496] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.270902][T10499] wg2 speed is unknown, defaulting to 1000
[  384.281597][   T69] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  384.291672][   T69] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  384.303588][   T69] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  384.311592][   T69] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  384.471263][T10499] hsr0 speed is unknown, defaulting to 1000
[  385.087327][T10510] could not allocate digest TFM handle md5
[  385.096503][  T842] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  385.205242][T10516] erspan0: left allmulticast mode
[  385.209754][T10516] erspan0: left promiscuous mode
[  385.224062][T10516] bridge0: port 4(erspan0) entered disabled state
[  385.246427][  T842] usb 6-1: device descriptor read/64, error -71
[  385.477486][T10519] bridge5: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  385.686459][  T842] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  386.046541][  T842] usb 6-1: device descriptor read/64, error -71
[  386.089140][T10526] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  386.091533][T10526] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  386.095970][T10526] vhci_hcd vhci_hcd.0: Device attached
[  386.156826][  T842] usb usb6-port1: attempt power cycle
[  386.327724][ T5846] usb 41-1: new low-speed USB device number 10 using vhci_hcd
[  386.415541][T10538] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1321'.
[  386.506423][  T842] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  386.536992][  T842] usb 6-1: device descriptor read/8, error -71
[  386.806441][  T842] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  386.836819][  T842] usb 6-1: device descriptor read/8, error -71
[  386.886482][ T5753] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  386.956585][  T842] usb usb6-port1: unable to enumerate USB device
[  387.492238][T10549] could not allocate digest TFM handle md5
[  387.879853][T10556] erspan0: left allmulticast mode
[  387.881683][T10556] erspan0: left promiscuous mode
[  387.885675][T10556] bridge0: port 4(erspan0) entered disabled state
[  388.724848][T10559] could not allocate digest TFM handle md5
[  388.969970][T10568] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1328'.
[  388.975210][T10568] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1328'.
[  388.990875][T10568] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1328'.
[  389.067151][T10573] comedi comedi1: adq12b: I/O base address or length out of range
[  389.232416][T10527] vhci_hcd: connection reset by peer
[  389.235929][ T7248] vhci_hcd vhci_hcd.2: stop threads
[  389.237777][ T7248] vhci_hcd vhci_hcd.2: release socket
[  389.242911][T10580] netlink: 'syz.1.1332': attribute type 1 has an invalid length.
[  389.245587][ T7248] vhci_hcd vhci_hcd.2: disconnect device
[  389.247809][T10580] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1332'.
[  389.288646][T10571] bridge6: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  389.875849][T10591] gfs2: not a GFS2 filesystem
[  390.130574][T10598] binder: 10597:10598 ioctl c0306201 80000040 returned -11
[  391.436517][ T5846] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  391.629636][T10618] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  391.632356][T10618] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  391.635515][T10618] vhci_hcd vhci_hcd.0: Device attached
[  391.886529][  T842] usb 39-1: new low-speed USB device number 8 using vhci_hcd
[  391.890096][ T5753] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  392.036507][ T5753] usb 6-1: device descriptor read/64, error -71
[  392.286487][ T5753] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  392.416599][ T5753] usb 6-1: device descriptor read/64, error -71
[  392.417300][T10625] set match dimension is over the limit!
[  392.526703][ T5753] usb usb6-port1: attempt power cycle
[  392.866483][ T5753] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  392.897288][ T5753] usb 6-1: device descriptor read/8, error -71
[  393.146719][ T5753] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  393.190851][ T5753] usb 6-1: device descriptor read/8, error -71
[  393.224096][T10631] netlink: 'syz.2.1344': attribute type 1 has an invalid length.
[  393.236449][T10631] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1344'.
[  393.306763][ T5753] usb usb6-port1: unable to enumerate USB device
[  394.718100][T10652] could not allocate digest TFM handle md5
[  394.805453][T10619] vhci_hcd: connection reset by peer
[  394.879725][   T13] vhci_hcd vhci_hcd.1: stop threads
[  394.882171][   T13] vhci_hcd vhci_hcd.1: release socket
[  394.886740][   T13] vhci_hcd vhci_hcd.1: disconnect device
[  395.227090][T10666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1353'.
[  395.259445][T10666] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.380344][T10666] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.426571][T10666] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.501118][T10666] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.556409][ T5753] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[  395.607396][T10673] netlink: 'syz.3.1355': attribute type 1 has an invalid length.
[  395.611056][T10673] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1355'.
[  395.637757][   T13] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  395.661959][   T13] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  395.679196][   T13] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  395.682303][   T13] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  395.724434][ T5753] usb 5-1: config 0 has no interfaces?
[  395.729446][ T5753] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  395.740507][ T5753] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  395.748642][ T5753] usb 5-1: Product: syz
[  395.752643][ T5753] usb 5-1: Manufacturer: syz
[  395.758555][ T5753] usb 5-1: SerialNumber: syz
[  395.772171][ T5753] usb 5-1: config 0 descriptor??
[  395.989307][   T10] usb 5-1: USB disconnect, device number 24
[  396.621095][T10685] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  396.623930][T10685] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  396.629751][T10685] vhci_hcd vhci_hcd.0: Device attached
[  396.866503][   T10] usb 43-1: new low-speed USB device number 8 using vhci_hcd
[  397.046543][  T842] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  398.746460][T10701] could not allocate digest TFM handle md5
[  399.630853][T10688] vhci_hcd: connection reset by peer
[  399.638891][ T7249] vhci_hcd vhci_hcd.3: stop threads
[  399.642262][ T7249] vhci_hcd vhci_hcd.3: release socket
[  399.645003][ T7249] vhci_hcd vhci_hcd.3: disconnect device
[  399.684535][T10712] netlink: 'syz.3.1364': attribute type 1 has an invalid length.
[  399.689434][T10712] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1364'.
[  401.996470][   T10] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  402.001388][T10736] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  402.004269][T10736] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  402.008537][T10736] vhci_hcd vhci_hcd.0: Device attached
[  402.246457][ T2178] usb 41-1: new low-speed USB device number 11 using vhci_hcd
[  402.573169][T10742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1374'.
[  403.146210][T10755] EXT4-fs (sr0): VFS: Can't find ext4 filesystem
[  403.346411][T10753] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  403.348650][T10753] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  403.351437][T10753] vhci_hcd vhci_hcd.0: Device attached
[  403.586858][T10763] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  403.681665][T10754] vhci_hcd: connection closed
[  403.682100][   T69] vhci_hcd vhci_hcd.3: stop threads
[  403.682600][ T6323] usb 44-1: SetAddress Request (6) to port 0
[  403.683893][   T69] vhci_hcd vhci_hcd.3: release socket
[  403.686195][ T6323] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  403.688558][   T69] vhci_hcd vhci_hcd.3: disconnect device
[  403.706484][ T6323] usb 44-1: enqueue for inactive port 0
[  404.117858][ T6323] usb usb44-port1: attempt power cycle
[  404.727500][ T6323] usb usb44-port1: unable to enumerate USB device
[  404.983139][T10737] vhci_hcd: connection reset by peer
[  404.996719][ T7245] vhci_hcd vhci_hcd.2: stop threads
[  405.009382][ T7245] vhci_hcd vhci_hcd.2: release socket
[  405.016943][ T7245] vhci_hcd vhci_hcd.2: disconnect device
[  405.212123][T10776] x_tables: duplicate underflow at hook 1
[  406.570762][T10793] could not allocate digest TFM handle md5
[  407.357740][ T2178] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  407.711577][T10807] x_tables: duplicate underflow at hook 1
[  408.373374][T10816] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  408.376329][T10816] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  408.387809][T10816] vhci_hcd vhci_hcd.0: Device attached
[  408.564365][T10821] could not allocate digest TFM handle md5
[  408.626665][ T6323] usb 39-1: new low-speed USB device number 9 using vhci_hcd
[  408.638001][   T57] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  409.047350][   T57] usb 6-1: Using ep0 maxpacket: 8
[  409.240951][   T57] usb 6-1: no configurations
[  409.243113][   T57] usb 6-1: can't read configurations, error -22
[  409.376466][   T57] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  409.527164][   T57] usb 6-1: Using ep0 maxpacket: 8
[  409.539941][   T57] usb 6-1: no configurations
[  409.547489][   T57] usb 6-1: can't read configurations, error -22
[  409.559428][T10833] could not allocate digest TFM handle md5
[  409.560416][   T57] usb usb6-port1: attempt power cycle
[  409.836461][  T842] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  409.987924][  T842] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  409.992309][  T842] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  409.995995][  T842] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  410.001038][  T842] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  410.004561][  T842] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  410.009664][  T842] usb 5-1: config 0 descriptor??
[  410.046646][   T57] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  410.107794][   T57] usb 6-1: Using ep0 maxpacket: 8
[  410.111085][   T57] usb 6-1: no configurations
[  410.113323][   T57] usb 6-1: can't read configurations, error -22
[  410.256521][   T57] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  410.278495][   T57] usb 6-1: Using ep0 maxpacket: 8
[  410.281822][   T57] usb 6-1: no configurations
[  410.285838][   T57] usb 6-1: can't read configurations, error -22
[  410.290642][   T57] usb usb6-port1: unable to enumerate USB device
[  410.455555][  T842] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  410.553490][T10848] could not allocate digest TFM handle md5
[  411.388637][T10817] vhci_hcd: connection reset by peer
[  411.393650][ T7249] vhci_hcd vhci_hcd.1: stop threads
[  411.396809][ T7249] vhci_hcd vhci_hcd.1: release socket
[  411.400292][ T7249] vhci_hcd vhci_hcd.1: disconnect device
[  411.411989][T10856] capability: warning: `syz.2.1399' uses 32-bit capabilities (legacy support in use)
[  411.553733][T10860] bridge7: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  411.843246][T10867] bridge6: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  412.728524][T10877] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  412.776734][   T40] kauditd_printk_skb: 21 callbacks suppressed
[  412.776751][   T40] audit: type=1326 audit(2000000328.869:22602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.789468][   T40] audit: type=1326 audit(2000000328.879:22603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.796709][   T40] audit: type=1326 audit(2000000328.889:22604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.804848][   T40] audit: type=1326 audit(2000000328.889:22605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.870774][   T40] audit: type=1326 audit(2000000328.929:22606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.888304][   T40] audit: type=1326 audit(2000000328.979:22607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.897984][   T40] audit: type=1326 audit(2000000328.989:22608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.907632][   T40] audit: type=1326 audit(2000000328.999:22609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.937489][   T40] audit: type=1326 audit(2000000329.029:22610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  412.939257][T10880] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1404'.
[  412.949706][T10887] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  412.951990][T10887] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  412.955121][T10887] vhci_hcd vhci_hcd.0: Device attached
[  412.963925][   T40] audit: type=1326 audit(2000000329.029:22611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10873 comm="syz.3.1404" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77fcc code=0x7ffc0000
[  413.074517][T10880] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1404'.
[  413.110195][T10891] x_tables: duplicate underflow at hook 1
[  413.196495][ T8443] usb 37-1: new low-speed USB device number 11 using vhci_hcd
[  413.357040][ T5846] usb 5-1: reset high-speed USB device number 25 using dummy_hcd
[  413.365490][ T5846] usb 5-1: device reset changed ep0 maxpacket size!
[  413.371135][ T2178] usb 5-1: USB disconnect, device number 25
[  413.526560][ T2178] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  413.686514][ T2178] usb 5-1: Using ep0 maxpacket: 8
[  413.692586][ T2178] usb 5-1: no configurations
[  413.694197][ T2178] usb 5-1: can't read configurations, error -22
[  413.706122][T10908] xt_CT: You must specify a L4 protocol and not use inversions on it
[  413.837333][ T2178] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  413.936532][ T6323] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  414.006439][ T2178] usb 5-1: Using ep0 maxpacket: 8
[  414.009512][ T2178] usb 5-1: no configurations
[  414.011683][ T2178] usb 5-1: can't read configurations, error -22
[  414.014774][ T2178] usb usb5-port1: attempt power cycle
[  414.367119][ T2178] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  414.386935][ T2178] usb 5-1: Using ep0 maxpacket: 8
[  414.389760][ T2178] usb 5-1: no configurations
[  414.391993][ T2178] usb 5-1: can't read configurations, error -22
[  414.527850][ T2178] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  414.548265][ T2178] usb 5-1: Using ep0 maxpacket: 8
[  414.551195][ T2178] usb 5-1: no configurations
[  414.553219][ T2178] usb 5-1: can't read configurations, error -22
[  414.556709][ T2178] usb usb5-port1: unable to enumerate USB device
[  415.928047][T10889] vhci_hcd: connection reset by peer
[  415.947850][ T7247] vhci_hcd vhci_hcd.0: stop threads
[  415.959384][ T7247] vhci_hcd vhci_hcd.0: release socket
[  415.967719][ T7247] vhci_hcd vhci_hcd.0: disconnect device
[  416.710168][T10949] could not allocate digest TFM handle md5
[  417.351371][T10966] bridge5: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  418.033460][T10968] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  418.036396][T10968] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  418.063236][T10968] vhci_hcd vhci_hcd.0: Device attached
[  418.230144][T10975] bridge6: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  418.316532][ T8443] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  418.556434][ T2178] usb 43-1: new low-speed USB device number 9 using vhci_hcd
[  419.440019][T10992] syz.0.1438 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  419.916972][T10999] netlink: 'syz.0.1439': attribute type 1 has an invalid length.
[  419.920613][T10999] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1439'.
[  420.843853][T10969] vhci_hcd: connection reset by peer
[  420.846689][   T69] vhci_hcd vhci_hcd.3: stop threads
[  420.849019][   T69] vhci_hcd vhci_hcd.3: release socket
[  420.851063][   T69] vhci_hcd vhci_hcd.3: disconnect device
[  421.218326][T11022] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1447'.
[  422.395339][T11031] could not allocate digest TFM handle md5
[  422.501010][T11037] netlink: 'syz.1.1450': attribute type 1 has an invalid length.
[  422.503724][T11037] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1450'.
[  422.509077][T11038] netlink: 'syz.2.1449': attribute type 1 has an invalid length.
[  422.512912][T11038] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1449'.
[  424.149390][ T2178] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  424.833201][T11075] bridge7: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  427.049800][T11087] netlink: 'syz.2.1464': attribute type 1 has an invalid length.
[  427.052507][T11087] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1464'.
[  428.423249][T11097] x_tables: duplicate underflow at hook 1
[  429.047412][T11109] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1470'.
[  429.052905][T11109] tc_dump_action: action bad kind
[  432.435353][T11134] x_tables: duplicate underflow at hook 1
[  432.564099][T11138] wg2 speed is unknown, defaulting to 1000
[  432.662716][T11138] hsr0 speed is unknown, defaulting to 1000
[  432.997176][T11143] could not allocate digest TFM handle md5
[  433.443154][T11150] bridge8: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  433.800358][T11156] could not allocate digest TFM handle md5
[  434.461665][T11161] qnx6: unable to set blocksize
[  434.529797][T11167] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1486'.
[  434.533231][T11167] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1486'.
[  434.537040][T11167] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1486'.
[  435.108213][T11181] x_tables: duplicate underflow at hook 1
[  437.760733][T11205] could not allocate digest TFM handle md5
[  437.914027][T11216] netlink: 'syz.0.1497': attribute type 8 has an invalid length.
[  438.337191][T11218] x_tables: duplicate underflow at hook 1
[  438.770651][T11223] could not allocate digest TFM handle md5
[  440.266133][T11242] wg2 speed is unknown, defaulting to 1000
[  440.790141][T11242] hsr0 speed is unknown, defaulting to 1000
[  441.106981][T11250] could not allocate digest TFM handle md5
[  442.486932][T11265] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1510'.
[  442.584231][T11269] 9p: Could not find request transport: fdø¤f`no=0xffffffffffffffff
[  443.921884][T11292] could not allocate digest TFM handle md5
[  444.818659][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  445.290592][T11303] bridge6: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  446.283057][T11316] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  446.363387][T11322] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  447.829012][T11339] bridge9: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  447.975368][T11349] 9p: Bad value for 'rfdno'
[  449.710783][T11367] syzkaller0: entered promiscuous mode
[  449.713331][T11367] syzkaller0: entered allmulticast mode
[  450.235261][T11372] dlm: Unknown command passed to DLM device : 3
[  450.235261][T11372] 
[  450.261641][T11374] FAULT_INJECTION: forcing a failure.
[  450.261641][T11374] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  450.266794][T11374] CPU: 2 UID: 0 PID: 11374 Comm: syz.2.1541 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  450.266821][T11374] Tainted: [L]=SOFTLOCKUP
[  450.266827][T11374] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  450.266836][T11374] Call Trace:
[  450.266843][T11374]  <TASK>
[  450.266849][T11374]  dump_stack_lvl+0x100/0x190
[  450.266943][T11374]  should_fail_ex.cold+0x5/0xa
[  450.266993][T11374]  strncpy_from_user+0x3b/0x2d0
[  450.267066][T11374]  do_getname+0x78/0x390
[  450.267117][T11374]  do_sys_openat2+0xc5/0x1e0
[  450.267148][T11374]  ? __pfx_do_sys_openat2+0x10/0x10
[  450.267170][T11374]  ? __fget_files+0x215/0x3d0
[  450.267193][T11374]  ? __fget_files+0x21f/0x3d0
[  450.267213][T11374]  __ia32_compat_sys_open+0xfe/0x1c0
[  450.267237][T11374]  ? __pfx___ia32_compat_sys_open+0x10/0x10
[  450.267261][T11374]  ? fput+0x79/0x100
[  450.267282][T11374]  ? ksys_write+0x1ac/0x250
[  450.267301][T11374]  ? rcu_is_watching+0x12/0xc0
[  450.267364][T11374]  __do_fast_syscall_32+0xe7/0x950
[  450.267503][T11374]  ? lockdep_hardirqs_on+0x78/0x100
[  450.267525][T11374]  do_fast_syscall_32+0x32/0x70
[  450.267546][T11374]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  450.267567][T11374] RIP: 0023:0xf7f65fcc
[  450.267580][T11374] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  450.267596][T11374] RSP: 002b:00000000f542650c EFLAGS: 00000292 ORIG_RAX: 0000000000000005
[  450.267612][T11374] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 0000000000101a00
[  450.267622][T11374] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  450.267631][T11374] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  450.267640][T11374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  450.267649][T11374] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  450.267670][T11374]  </TASK>
[  450.294887][T11375] random: crng reseeded on system resumption
[  450.522139][T11388] fuse: Unknown parameter 'rootmo$e'
[  450.522703][T11389] fuse: Unknown parameter 'rootmo$e'
[  450.583416][T11388] siw: device registration error -23
[  450.878775][T11390] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#1] SMP KASAN NOPTI
[  450.883975][T11390] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f]
[  450.887754][T11390] CPU: 2 UID: 0 PID: 11390 Comm: syz.2.1545 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  450.892387][T11390] Tainted: [L]=SOFTLOCKUP
[  450.894237][T11390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  450.898599][T11390] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[  450.901289][T11390] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 33 48 b8 00 00 00 00 00 fc ff df 4c 8b 63 20 49 8d 7c 24 68 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 1a 49 8b 44 24 68 89 ee 48 89 df 5b 5d 41 5c ff e0
[  450.909968][T11390] RSP: 0000:ffffc90007a4f170 EFLAGS: 00010202
[  450.912539][T11390] RAX: dffffc0000000000 RBX: ffff8880129d1e40 RCX: 0000000000000000
[  450.915920][T11390] RDX: 000000000000000d RSI: ffffffff8952a532 RDI: 0000000000000068
[  450.919713][T11390] RBP: 0000000000000002 R08: 0000000000000000 R09: fffffbfff21af8ea
[  450.923442][T11390] R10: ffffffff90d7c757 R11: ffffffff81d4b9f2 R12: 0000000000000000
[  450.926750][T11390] R13: ffff888045de8000 R14: 0000000000000002 R15: 0000000000000018
[  450.929841][T11390] FS:  0000000000000000(0000) GS:ffff88809737d000(0063) knlGS:00000000f53e4b40
[  450.933394][T11390] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  450.936146][T11390] CR2: 00000000f71d77d0 CR3: 0000000056c9e000 CR4: 0000000000352ef0
[  450.939304][T11390] Call Trace:
[  450.940802][T11390]  <TASK>
[  450.942040][T11390]  ? __pfx_rxe_ns_pernet_set_sk4+0x10/0x10
[  450.944493][T11390]  udp_tunnel_sock_release+0x68/0x80
[  450.946793][T11390]  rxe_sock_put+0xae/0x130
[  450.948807][T11390]  ? __pfx_rxe_dellink+0x10/0x10
[  450.951037][T11390]  rxe_net_del+0x83/0x120
[  450.953029][T11390]  rxe_dellink+0x15/0x20
[  450.955072][T11390]  nldev_dellink+0x289/0x3c0
[  450.957062][T11390]  ? __pfx_nldev_dellink+0x10/0x10
[  450.959173][T11390]  ? rcu_is_watching+0x12/0xc0
[  450.961109][T11390]  ? apparmor_capable+0x1d7/0x4d0
[  450.963228][T11390]  ? bpf_lsm_capable+0x9/0x10
[  450.965390][T11390]  ? security_capable+0x80/0x260
[  450.967548][T11390]  ? ns_capable+0xd2/0xf0
[  450.969539][T11390]  ? __pfx_nldev_dellink+0x10/0x10
[  450.971785][T11390]  rdma_nl_rcv_msg+0x392/0x6f0
[  450.974039][T11390]  ? __pfx_rdma_nl_rcv_msg+0x10/0x10
[  450.976393][T11390]  ? __lock_acquire+0x4a5/0x2630
[  450.978465][T11390]  rdma_nl_rcv_skb.constprop.0.isra.0+0x2cb/0x410
[  450.981150][T11390]  ? __pfx_rdma_nl_rcv_skb.constprop.0.isra.0+0x10/0x10
[  450.984137][T11390]  ? netlink_deliver_tap+0x1ae/0xcc0
[  450.986167][T11390]  netlink_unicast+0x585/0x850
[  450.988005][T11390]  ? __pfx_netlink_unicast+0x10/0x10
[  450.990171][T11390]  netlink_sendmsg+0x8b0/0xda0
[  450.992231][T11390]  ? __pfx_netlink_sendmsg+0x10/0x10
[  450.994451][T11390]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  450.996950][T11390]  ____sys_sendmsg+0x9e1/0xb70
[  450.999045][T11390]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.001234][T11390]  ? __pfx_____sys_sendmsg+0x10/0x10
[  451.003328][T11390]  ? __pfx___futex_wait+0x10/0x10
[  451.005426][T11390]  ? __pfx_futex_wake_mark+0x10/0x10
[  451.007863][T11390]  ___sys_sendmsg+0x190/0x1e0
[  451.009935][T11390]  ? __pfx____sys_sendmsg+0x10/0x10
[  451.012211][T11390]  ? find_held_lock+0x2b/0x80
[  451.014228][T11390]  __sys_sendmsg+0x170/0x220
[  451.016140][T11390]  ? __pfx___sys_sendmsg+0x10/0x10
[  451.018200][T11390]  ? rcu_is_watching+0x12/0xc0
[  451.020212][T11390]  __do_fast_syscall_32+0xe7/0x950
[  451.022459][T11390]  do_fast_syscall_32+0x32/0x70
[  451.024676][T11390]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  451.027586][T11390] RIP: 0023:0xf7f65fcc
[  451.029283][T11390] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8
[  451.036995][T11390] RSP: 002b:00000000f53e450c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  451.041173][T11390] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00000000800002c0
[  451.045023][T11390] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  451.048432][T11390] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  451.051538][T11390] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  451.054708][T11390] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  451.057900][T11390]  </TASK>
[  451.059252][T11390] Modules linked in:
[  451.061678][T11390] ---[ end trace 0000000000000000 ]---
[  451.065395][T11388] smc: removing ib device syz2
[  451.068057][T11390] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[  451.070941][T11390] Code: fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 33 48 b8 00 00 00 00 00 fc ff df 4c 8b 63 20 49 8d 7c 24 68 48 89 fa 48 c1 ea 03 <80> 3c 02 00 75 1a 49 8b 44 24 68 89 ee 48 89 df 5b 5d 41 5c ff e0
[  451.091887][T11388] smbdirect: ib_dev[syz2] removed
[  451.100434][T11375] batman_adv: batadv0: Adding interface: macsec0
[  451.102237][T11390] RSP: 0000:ffffc90007a4f170 EFLAGS: 00010202
[  451.103723][T11375] batman_adv: batadv0: The MTU of interface macsec0 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  451.103739][T11390] 
[  451.103762][T11375] batman_adv: batadv0: Interface activated: macsec0
[  451.106576][T11390] RAX: dffffc0000000000 RBX: ffff8880129d1e40 RCX: 0000000000000000
[  451.124717][T11390] RDX: 000000000000000d RSI: ffffffff8952a532 RDI: 0000000000000068
[  451.128379][T11390] RBP: 0000000000000002 R08: 0000000000000000 R09: fffffbfff21af8ea
[  451.131789][T11390] R10: ffffffff90d7c757 R11: ffffffff81d4b9f2 R12: 0000000000000000
[  451.140101][T11390] R13: ffff888045de8000 R14: 0000000000000002 R15: 0000000000000018
[  451.143223][T11390] FS:  0000000000000000(0000) GS:ffff88809737d000(0063) knlGS:00000000f53e4b40
[  451.148247][T11390] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  451.151345][T11390] CR2: 00000000f74052f0 CR3: 0000000056c9e000 CR4: 0000000000352ef0
[  451.155190][T11390] Kernel panic - not syncing: Fatal exception
[  451.159185][T11390] Kernel Offset: disabled
[  451.161165][T11390] Rebooting in 86400 seconds..