last executing test programs:

4m59.528452846s ago: executing program 0 (id=11988):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, 0x0, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r0, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}, 0xfffffffc}}, 0x10)
bind$tipc(r1, 0x0, 0x0)

4m59.215165272s ago: executing program 0 (id=11991):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000440)={'#! ', './file1/../file0', [{0x20, '\xe2\x00\x00\x00\x00\x98\xfc~\xef\x00\x00\x00\xdb\xae~X\xb1\xb2\x89(\x1f\xd7\x06n\xad\xfa\xa2\xd1@R\x97\xa4\x00mp\xd9r\x85;pzx\xd7\xa8\xe7\xef:\x8c,\xd6\"c\x1c$\x85\xf0\x89\xfb\x9b\x8e\x15Kd\xe4\xcc`\xa3.b\x17\x04Y\xeaYk\xd7\xe3cf\x1fnU\x11\x91v\xde3H\xed[\x89\xb6\xbfc'}], 0xa, "000278414808f90249a8974898280f3c430a34b2de9a57967d49c269449fc906eef97ae17618a3eb9a5df5a02a484a4fff00000000000000000000baca280647784b0d09cc77e6000000441a69f2c53e292fe01d5e4ac62ebda3c67fa384c66b1e4df6c98b7bb988d6c4eeb229e8dbc772a8d19f87373ef179fce7eb6c1f6184a61789180d45f40c1372f09b84427b367b50c6c1741b4a231f5c97efdd30625d85"}, 0x114)
writev(r1, &(0x7f0000000700)=[{&(0x7f0000000300)="aefdf79d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76632cb010852f426072a", 0x2a}, {&(0x7f00000003c0)="4673c875ca4d9cb6f1d39f1148c805c9a48b6bfad79db2f8ffac454102a0b64722d3", 0x22}], 0x2)
write$UHID_INPUT(r1, &(0x7f00000007c0)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "9001001c551265406c7f306003d8a0f4bd0000000300", [0x10, 0x4]}})

4m58.914136851s ago: executing program 0 (id=11995):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000740)=0xffffffffffffffff)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000002680)={0x1, 0x0, [{0xb000, 0x35, &(0x7f0000000040)=""/53}]})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000340)={0x0, 0x1, 0x0, 0x0, 0x0})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000002c0)=0x1)

4m58.601303409s ago: executing program 0 (id=11998):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x8b7848, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0)
mount$bpf(0x0, &(0x7f0000000ac0)='./file0/../file0\x00', 0x0, 0x44000, 0x0)

4m58.034816824s ago: executing program 0 (id=12002):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000001007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000085000000a000000095"], &(0x7f0000001000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x6, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x4800)

4m55.008792866s ago: executing program 0 (id=12023):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e1d, 0x9, @local, 0x2}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x4b, &(0x7f0000000180)=0xfffffff7, 0x4)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c)

4m54.218918678s ago: executing program 32 (id=12023):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e1d, 0x9, @local, 0x2}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x4b, &(0x7f0000000180)=0xfffffff7, 0x4)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c)

3m34.378774174s ago: executing program 3 (id=12609):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003d00000095"], &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0xf, 0x4, 0x8, 0xb}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r0, r1, 0x7, 0x0, @val=@tcx={@void, @value=r0}}, 0x1c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000180)={0x0, <r3=>0x0}, 0x0)
r4 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=r3, 0x4)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={r4, r2, 0x3e, r2}, 0x5)

3m34.072479073s ago: executing program 3 (id=12614):
r0 = socket(0x2, 0x3, 0x11)
syz_emit_ethernet(0xe, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000001"], 0x0)
writev(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000000)="c886b4d3e0", 0x5}], 0x1)
syz_emit_ethernet(0x138, &(0x7f0000000000)=ANY=[@ANYBLOB="ff02"], 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
connect$unix(r0, &(0x7f0000000000), 0x10)
write(r0, &(0x7f0000000040)="55fdb050ab5b45d498800a61e87d2c7d43d937d1fe1992f871f120faaaf19dfd65118ba2b91afc99b80dc008d8890450b0d47ee3c49ee701f238beeb638dfa089b2e0763d43ceed09e2eea8303021e48a0e722619b9ba94b709d2d27571345239ca73815167971edcbdb20667e360e957bf872267add0f7eb527e4d67bdd5388b2123e7b0374e3bfcb93c111d59549a2bf", 0x91)

3m33.728841236s ago: executing program 3 (id=12618):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4)
syz_emit_ethernet(0xfdef, &(0x7f0000000380)=ANY=[], 0x0)

3m33.236151735s ago: executing program 3 (id=12623):
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x800, 0x0)

3m32.950178625s ago: executing program 3 (id=12627):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x3, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000000b000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, 0x0}], 0x1, 0x51, 0x0, 0x0)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)

3m29.82478361s ago: executing program 3 (id=12653):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
write(r1, &(0x7f0000000700)="0e", 0x1)
write(r1, &(0x7f00000002c0)="04", 0x1)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x4}, 0x8)

3m29.295864051s ago: executing program 33 (id=12653):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
write(r1, &(0x7f0000000700)="0e", 0x1)
write(r1, &(0x7f00000002c0)="04", 0x1)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x4}, 0x8)

20.24848597s ago: executing program 5 (id=13901):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000800}, 0x8010)
socketpair$unix(0x1, 0x2, 0x0, 0x0)

17.815362769s ago: executing program 5 (id=13907):
r0 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r0, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)={0x14, 0x35, 0x301, 0x70bd26, 0x25dfdbfe, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x1882}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x800)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000480)='hpfs\x00', 0x10008, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)={0x14, 0x6, 0x1, 0x301, 0x0, 0x0, {0xa, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

14.361864666s ago: executing program 5 (id=13927):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/stat\x00')
fchdir(r1)
exit(0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000280)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r5, 0x4b67, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x7, 0x2}]})
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000240)='hugetlbfs\x00', 0x2200890, 0x0)
syz_emit_vhci(&(0x7f0000000080)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_rsp={{0x7, 0x6, 0x4}, {0x2}}}}, 0x11)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0, 0x5c}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4010}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=@newlink={0x28, 0x10, 0x605, 0xffff7ffc, 0x83, {0x0, 0x0, 0x0, 0x0, 0x1001}, [@IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0xf}]}, 0x28}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0)

14.295431411s ago: executing program 1 (id=13928):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(r0, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
getsockopt$nfc_llcp(r1, 0x118, 0x0, 0x0, 0x0)
socket$caif_seqpacket(0x25, 0x5, 0x3)
r2 = syz_open_dev$video4linux(0x0, 0x7f67, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r2, 0xc0585605, &(0x7f00000003c0)={0x0, 0x0, {0x0, 0x0, 0x201e, 0x0, 0x9, 0xc}})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r5, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, 0x0, 0x0)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000540)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000240)=""/17, 0x11, 0x6, 0x4, 0x9, 0x4, 0xc08}}, 0x120)
mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x0)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000001000000280001801400040000000000000000000000ffffac1414aa060001000a0080"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)

12.845547542s ago: executing program 1 (id=13936):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r0, 0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x109001, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000002c0)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000340)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @private, @empty}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x6558}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0x8, 0x88be, 0x8000000}, {0x8, 0x22eb, 0x0, {{}, 0x2, {0x200}}}}}}}}, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1000)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r4 = io_uring_setup(0x1b78, &(0x7f0000000040)={0x0, 0xccdb, 0xc000, 0x0, 0x20002fb})
io_uring_enter(r4, 0x2219, 0x7721, 0x16, 0x0, 0x0)
shmat(0x0, &(0x7f0000ff1000/0x3000)=nil, 0x400c)

11.338887221s ago: executing program 6 (id=13942):
r0 = socket$nl_route(0x10, 0x3, 0x0)
fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, 0x0, &(0x7f00000002c0)='./file0\x00', r0)
socket$inet6(0xa, 0x2, 0x0)
close(0x3)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r1, &(0x7f0000000100)={&(0x7f0000000000)={0xa, 0x4e20, 0x1776, @local, 0xfffffffe}, 0x1c, 0x0}, 0x440e0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000100)={'tunl0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x20, 0x8, 0x2c2, 0x7, {{0xa, 0x4, 0x3, 0x5, 0x28, 0x65, 0x0, 0xd, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x30}, @dev={0xac, 0x14, 0x14, 0x30}, {[@end, @lsrr={0x83, 0xf, 0x7b, [@rand_addr=0x64010101, @private=0xa010102, @private=0xa010100]}, @rr={0x7, 0x3, 0xbb}]}}}}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000140)="580000001400ad", 0x7}], 0x1)
socket$netlink(0x10, 0x3, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x3d6d9000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfff}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x1, &(0x7f0000000000)=[{0x6, 0x7, 0x0, 0x7fff8000}]})
close_range(r6, 0xffffffffffffffff, 0x0)

9.895290807s ago: executing program 6 (id=13948):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYBLOB="00e2"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="940000000001050500000000000000000a0000003c0002802c00018014000300ff01000000000000000000000000000114000400ff0200000000000000000000000000010c00028005000100000000003c0001800c00028005000100000000002c00018014000300ff02000000040000000000000000000114000400000000f7000000000000ffffac1e00010800074000000001"], 0x94}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r4 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r4, 0x105, 0x5000003a, r3, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x42, 0x0)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x5c, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @mcast2}}}]}, @CTA_NAT_DST={0x18, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}]}]}, 0x5c}}, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)

9.83929598s ago: executing program 1 (id=13951):
pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
r1 = dup(r0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f00000000c0)={0x14c}, 0x137)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, r1, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xfe, 0x7fff0006}]})
r8 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0xa2003, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r8, 0xc0184800, &(0x7f0000000100)={0x20004, <r9=>r7, 0x2})
r10 = syz_open_dev$dri(&(0x7f0000000280), 0x1ff, 0x140)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r10, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r9})
close_range(r6, 0xffffffffffffffff, 0x0)
ustat(0x1, 0x0)
ioctl$OCFS2_IOC_GROUP_ADD64(r2, 0x40186f03, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, 0x0)

7.586337933s ago: executing program 1 (id=13954):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x22000044}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)=ANY=[], 0x50}}, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x0, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x4, 0x4, 0x16, 0x8, 0x5, 0x401, 0xfffffff5, 0x405, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x1, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x2, 0x9, 0x95, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x4e, 0x9, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x2, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x97f7, 0x3, 0xd, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x6, 0x10000, 0xfffffffd, 0x5, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d82, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0xc, 0xffffffff, 0x3, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x1, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000440)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f8035", 0xe}], 0x1, 0x0, 0x0, 0x11000000}, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x4e2080, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r3, 0xc008ae05, &(0x7f0000000400)={0x1, 0x0, [{0x7, 0x7, 0x1, 0x100, 0x8f, 0x2, 0x7}]})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x6, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x304})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(0xffffffffffffffff, 0xc008ae05, &(0x7f0000000280)={0x3, 0x0, [{0xb, 0x5, 0x1, 0x400, 0x1, 0x2, 0x3}, {0xc0000001, 0xcb7, 0x3, 0x73, 0x3}, {0x40000000, 0xd, 0x6, 0x3, 0x2, 0x3}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = dup(r5)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

7.396510052s ago: executing program 6 (id=13956):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
fcntl$setlease(r1, 0x400, 0x2)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800002, 0xe)
setreuid(0xee00, 0x0)
keyctl$session_to_parent(0x12)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x48)
openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x1})
socket(0x10, 0x3, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB], 0x18}, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x200008c0)

5.835268031s ago: executing program 6 (id=13960):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
io_getevents(0x0, 0x407, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x40)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a0)
mount$overlay(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r4 = creat(&(0x7f0000000580)='./file1\x00', 0x0)
r5 = fanotify_init(0xf00, 0x1)
fanotify_mark(r5, 0x105, 0x40009975, r4, 0x0)

5.373267322s ago: executing program 5 (id=13965):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0xfffffffffffffffd}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000000c0), 0x12)
mount$overlay(0x0, 0x0, 0x0, 0x1000, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './file0'}}]})
keyctl$chown(0x4, 0x0, 0xee01, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
r7 = syz_open_procfs(0x0, &(0x7f0000000040)='stack\x00')
readv(r7, &(0x7f0000001440)=[{0x0}, {0x0, 0x61}], 0x2)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_i', @ANYRESDEC=0x0, @ANYRESDEC=0x0])

3.017177324s ago: executing program 2 (id=13973):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
r0 = dup(0xffffffffffffffff)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, r0, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = eventfd2(0x0, 0x80800)
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000000)={0xb6, 0x0, 0x0, r7})
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ustat(0x1, 0x0)
ioctl$OCFS2_IOC_GROUP_ADD64(r1, 0x40186f03, 0x0)

2.952342519s ago: executing program 6 (id=13974):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, 0x0, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$netlink(0x10, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x40085)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
open(&(0x7f0000000780)='./bus\x00', 0x145c3f, 0x0)
io_setup(0x5ff, &(0x7f0000000400)=<r3=>0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYBLOB], 0x30}, 0x1, 0x0, 0x0, 0x20044090}, 0x4000000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
io_submit(r3, 0x2, &(0x7f0000000640)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x8, 0x5a, 0xffffffffffffffff, &(0x7f00000007c0)="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", 0x136, 0x10000, 0x0, 0x2, r1}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x5, 0x8, r6, &(0x7f0000000580)="bca9685f5976be906650bed1bb0537f22f2851291373c7bfe5b4c72dde32b0a7346b2fdd2036b1a757d245b60ba98f7687be0863295d869dae24f243a758945b63aacecb55770e6d4bc7419461b4be0e9caa55f0f9425f695ce765c4bf51e89982fefdbef243aaa2dd250d515a2c7e0eff0832ac11c0", 0x76, 0xffffffffffff5ea0, 0x0, 0x3}])
write(r7, &(0x7f0000000080)="09000300010001", 0x7)
setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e21, @local}}}, 0x84)
unshare(0x22020400)
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0xfe, 0x0, 0x0)

2.924870028s ago: executing program 4 (id=13975):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$cgroup_pid(r4, 0x0, 0x0)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41, 0x0, 0x4000000}}, 0x10)
r6 = socket$tipc(0x1e, 0x5, 0x0)
close(r6)

2.815117402s ago: executing program 2 (id=13976):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

2.676254337s ago: executing program 5 (id=13977):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x3, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10001}, 0x94)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
dup2(r1, r0)
io_setup(0x43, &(0x7f0000000140))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$cgroup_devices(r3, 0x0, 0x9)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r3, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f00000001c0)=0x8000000)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000100)={0xf, 0x20000, 0x2, 0xcbc, 0x1, 0x8})
ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, &(0x7f00000008c0)={0xff7ff801, 0x20006, 0x1000, 0x4, 0x6, "fc1c92866385316d4970d64a82ffa658031299"})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1200"], 0x48)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
read$eventfd(r4, &(0x7f0000000080), 0x51)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)

2.636790923s ago: executing program 1 (id=13978):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000100), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc082}, 0x24004080)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
fcntl$getflags(0xffffffffffffffff, 0x40a)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(0x0, 0x0)
io_getevents(0x0, 0x407, 0x0, &(0x7f00000003c0), 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x40)
write$FUSE_NOTIFY_DELETE(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], 0x34)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000480)=@nat={'nat\x00', 0x1b, 0x5, 0x4c0, 0x1e0, 0x2d0, 0xffffffff, 0x2d0, 0x0, 0x3f0, 0x3f0, 0xffffffff, 0x3f0, 0x3f0, 0x5, &(0x7f0000000180), {[{{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "291e6ad488f0aee18cbc2a0123797d1f5a42745e913c7ac8146f153290a4"}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@icmp6={{0x28}, {0x12, "7c80"}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}, {{@ipv6={@local, @dev={0xfe, 0x80, '\x00', 0x33}, [0xffffffff, 0xff000000, 0x0, 0xff], [0x0, 0x0, 0x0, 0xff], 'vlan1\x00', 'team_slave_0\x00', {0xff}, {0xff}, 0x6, 0x3, 0x1, 0x40}, 0x0, 0xa8, 0xf0}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0x4, @ipv4=@local, @ipv6=@empty, @port=0x4e23, @gre_key=0x8}}}, {{@uncond, 0x0, 0xd8, 0x120, 0x0, {}, [@common=@srh={{0x30}, {0x88, 0x7, 0x94, 0x8, 0xfffc, 0x2602, 0x200}}]}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x4, @ipv6=@local, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}, @gre_key=0x8, @port=0x4e20}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a0)
mount$overlay(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0205649, &(0x7f00000000c0)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000009f40)={0xf00001, 0xffffbfff, '\x00', @p_u32=0x0}})
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x113042, 0xa4)
fanotify_init(0xf00, 0x1)

2.565011583s ago: executing program 4 (id=13979):
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_S_SELECTION(r1, 0xc040565f, &(0x7f0000000580)={0x2, 0x0, 0x2, {0xc0020002, 0xe7ffffff, 0x5, 0x54ef}})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r5, &(0x7f0000000640)="bb", 0x1, 0x200000c0, &(0x7f00000001c0)={0xa, 0x2, 0x40, @loopback, 0x400008}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000000)='highspeed', 0x9)
shutdown(r5, 0x1)
ioctl$VHOST_VDPA_GET_STATUS(r4, 0x8001af71, &(0x7f00000003c0))
write$tcp_congestion(r0, &(0x7f0000000100)='reno\x00', 0x5)
r6 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
r7 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
r8 = fcntl$dupfd(r6, 0x406, r6)
ioctl$USBDEVFS_SUBMITURB(r8, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x2, 0x3, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
readv(r7, &(0x7f0000000400)=[{&(0x7f00000002c0)=""/71, 0x47}, {&(0x7f0000000340)=""/76, 0x4c}, {0x0}], 0x3)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r8, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x40, 0x1411, 0x100, 0x70bd28, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_STAT_MODE={0x8, 0x4a, 0x2}, @RDMA_NLDEV_ATTR_STAT_RES={0x8, 0x4b, 0x28}, @RDMA_NLDEV_ATTR_RES_MRN={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8, 0x4b, 0x13}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8, 0x4a, 0x2}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x800)
r9 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0)
write$tcp_congestion(r0, &(0x7f0000000000)='highspeed\x00', 0xa)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000340)={@cgroup=r10, r9, 0x12, 0x0, 0x0, @void, @value=0x0}, 0x20)
keyctl$restrict_keyring(0x4, 0xfffffffffffffffc, 0x0, 0x0)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r11, 0x6, 0x18, 0x0, &(0x7f0000000700))

2.544835764s ago: executing program 2 (id=13980):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8005, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='task\x00')
lseek(r0, 0xffffffffffffffff, 0x2)
ioctl$CEC_TRANSMIT(r0, 0xc0386105, &(0x7f0000000040)={0x10, 0xffff, 0x9, 0x80, 0x274d, 0x10, "f4b231060ad325df0ad09bca38cbca00", 0x7, 0xd, 0x0, 0x6, 0x4, 0x80, 0x8})
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_sctp(0xa, 0x5, 0x84)
io_uring_setup(0x7085, &(0x7f0000000140)={0x0, 0xd0a9, 0x400, 0x3, 0x20387})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x8001, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000100)={0x0, 0x0, @ioapic={0x10000, 0x1be, 0x85, 0xfffffbc5, 0x0, [{0x6c, 0x4, 0x5, '\x00', 0x12}, {0x7, 0x8, 0x73, '\x00', 0x3}, {0x0, 0x41, 0x5, '\x00', 0x5}, {0xc, 0x3, 0x8, '\x00', 0x9}, {0x8, 0x52, 0x4, '\x00', 0x49}, {0xf3, 0xf, 0x2, '\x00', 0x7}, {0x6, 0xf4, 0x1, '\x00', 0x8}, {0xa, 0x47, 0xf, '\x00', 0x45}, {0x7, 0xd, 0xfe, '\x00', 0xff}, {0x6, 0x3, 0x5, '\x00', 0x6}, {0x4, 0x11, 0xff}, {0x56, 0x4, 0x1}, {0x3, 0xcf, 0x10, '\x00', 0x5}, {0x5, 0x4f, 0x2, '\x00', 0x2}, {0x4, 0x5, 0x1, '\x00', 0x9}, {0x0, 0x2, 0x4, '\x00', 0x7f}, {0x1, 0xb, 0xd5, '\x00', 0x99}, {0xd, 0x3, 0x2, '\x00', 0xff}, {0xa, 0x9e, 0xc0, '\x00', 0x2}, {0x2, 0x7f, 0xd}, {0x7, 0x21, 0x23, '\x00', 0x1}, {0x5, 0x0, 0xff, '\x00', 0xf}, {0x3, 0x1, 0x4, '\x00', 0xe6}, {0x3, 0x4, 0xa, '\x00', 0x54}]}})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000f00)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x94, &(0x7f0000000180)=""/148, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r3, 0x0, 0x83, 0x0, &(0x7f0000000e40)="04d31fcd275bfc58188e699fa7c9aa904991771e83b702f3717cf38ed0e92e83ae490758991fa1174a75fa8c45db732026d3de611ffbd09b683e2f08812d695dd9b87f08711c02bb5d2cbac05022bee8aee5339fb6eba21e534e43b9960f470bf9c075368c6a7ee0b6ef641feb6967490ae07547819adcf47330679551ae2bd7009b31", 0x0, 0x947, 0x0, 0x1b, 0x4b, &(0x7f0000000000), &(0x7f0000000e00)="2fda8e7aa8d9cecae13bcbb35230d1cf1f1b23e33fcbd1aa1bea454b04650cecef80daa9a0a349a8e46d661af6e7ee8cdb5e97e738fe54"}, 0x50)

2.415626506s ago: executing program 4 (id=13981):
syz_usb_control_io$lan78xx(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$lan78xx(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_usb_connect(0x3, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000094ae94405f0520c4336a000000010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x84, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x1, 0x2d, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = fsopen(0x0, 0x1)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(0xffffffffffffffff, 0x0, 0x8044)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000010c0)={0x0, 0x0, 0x0, 0x1, 0x1000000, 0x0, 0x24004821}, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r2, 0x0, 0xc)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x2, &(0x7f0000000200)=0x1, 0x4)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r4, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x8812}, 0x4000)
r5 = openat$ocfs2_control(0xffffff9c, &(0x7f0000000640), 0x80, 0x0)
dup2(r5, 0xffffffffffffffff)
r6 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_N2(r6, 0x103, 0x3, 0x0, 0x0)
prlimit64(0x0, 0xf, &(0x7f0000000140)={0x8, 0x200089}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x2, 0x0, 0x2, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000001a40)=""/102392, 0x18ff8)
socket$inet_smc(0x2b, 0x1, 0x0)

2.011794481s ago: executing program 2 (id=13982):
socket(0x10, 0x3, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
read(r0, &(0x7f0000000880)=""/4096, 0x1000)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$USBDEVFS_RESET(0xffffffffffffffff, 0x5514)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x0, 0x0})
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x100000001, 0xfffffe0000000001, 0xfa11, 0x65aa}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5}, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)

841.472898ms ago: executing program 1 (id=13983):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

745.417765ms ago: executing program 4 (id=13984):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0x0)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000140)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private0, @private0, 0x40, 0x0, 0x0, 0xfffffffe}})
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="280100002f00010000000000fcdbdf250801f2800c00180008ac0f000010000014000100fc00000000000000000000000000000008004400", @ANYRES32=0x0, @ANYBLOB="d90062802400328008004100b20000000800ca00ac1e000108003d00fcffffff0400c58004008a800800a18004000f80c073bf8f025953f538087c2947af34d793a12e66cd988ba2df542272ddf8f3b0634ff9883b7914bc9c92aafa8bb7b0c0552ff62f4a9716d08229fbc0558c09235f84d6771d08666d8b337ac75c741e4e77f4a9bc443c6a07af22469f8689554aa0e81e897ed6146a5b6cb1adf5cecbe76fb07a1c2610d17b8d3c80cfe639ce824597e338c1bb6a7d118257e8e8ac7e1f1c03054e4ec9bce7dfd5f3620229ab929fb9ebb5658776ab26000000100002800c0001"], 0x128}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r6 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r6, 0x40045532, &(0x7f0000000040))
r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x400000000c0a01, 0x0)
r8 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x10000000, 0x4, &(0x7f0000006680))
userfaultfd(0x801)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xf, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x5, 0xac, &(0x7f0000000540)=""/172, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, r3}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x7, 0xa, &(0x7f0000000b00)=ANY=[@ANYBLOB="180800000000000000000000000000008510000006000000180000", @ANYRES32, @ANYBLOB="00000000000000002c000000000000001867000000009500020012000000e3a73c6c79d2df1dc075a1aa56cf00b80e0dae0753b1417c8056f1005ec9d76dc430f32e4b7fc2e86261de584396eedaead4f6235f4650c9079503482c5504c1632abea6b266072780c7a080bfc5daf4eb"], &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_READN_FRAMES(r8, 0x80184153, &(0x7f00000009c0)={0x0, &(0x7f0000000980)})
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000040)={0x802, 0xae, 0x3, 0x1}, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="200000005200010003000000000000000a0000000c00b8a18814eecb0a5792eb67d0db585e7463abc8ecbe6da26095152cf5a01dd6521f260e58dcf91776f3372c78c434574c9ac326e3b6937bb7709cc5d192c4540a5bd915060c64744f792893dea8d74ecd4b0ea953eee254548251997655f797f42007be245f8eb5b6980e23821825727e21e9c3be47f38aa5939e7dab8894e11856ec4261558cd946eeb7fa95474c46a834e3216025e435e853420f2b24ae1e317d", @ANYRESDEC=r3], 0x20}}, 0x0)

529.074562ms ago: executing program 6 (id=13985):
set_mempolicy(0x3, &(0x7f0000000140)=0x3, 0x5)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x1000000)
r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x3, @meta={0x50314b52, 0x4765ea7f, 0x20547e, 0x8fae4, 0x6f171d38}})
r1 = socket(0x10, 0x3, 0x9)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000780)='rxrpc\x00', 0x0, &(0x7f0000000900)="0000000000000040ff6943b80000000800000028f2000000008607000000ebb0", 0x20, r3)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r2)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x28, r4, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_ENABLED={0x5, 0x29, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4048014)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000000), 0x0, &(0x7f0000000180)="f584772a2314fff395db5526c445a319fb80689ac89175b1a7e4ca276ed500feb87e98a23e1df0f5d22be01fe762fc62c87e06231ea47f3abc02a041ae0d956de8ddc8536656793c79075915fb1739e7c599a18b2dc7ee86811b3ceeb5132d2da193662f9a754720eaaf20f32857be3b1186f67f8ae5450772368bb1a8fc5dc328de6b3807cf49f0d9efbd96e2fe699cf258", 0x92, 0xfffffffffffffffb)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@ipv6_newrule={0x38, 0x20, 0x2d2c6d60ea1da725, 0x70bd29, 0x25dfdbfd, {0xa, 0x0, 0x0, 0xcd, 0xfe, 0x0, 0x0, 0x1, 0x10002}, [@FIB_RULE_POLICY=@FRA_PRIORITY={0x8, 0x6, 0x7ffe}, @FIB_RULE_POLICY=@FRA_IIFNAME={0x14, 0x3, 'veth1_vlan\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008005}, 0x44)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000340), r2)
sendmsg$NL80211_CMD_SET_CQM(r1, &(0x7f0000000540)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000500)={&(0x7f00000003c0)={0x104, r6, 0x400, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_CQM={0x4c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x28, 0x1, [0x1, 0x9, 0xffffffbb, 0x8, 0x9, 0x0, 0x1f62c5df, 0x3, 0x4]}, @NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0x8]}, @NL80211_ATTR_CQM_RSSI_THOLD={0x10, 0x1, [0x2, 0x3, 0x4]}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x5bb0}]}, @NL80211_ATTR_CQM={0x34, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x28, 0x1, [0x59, 0x3, 0x5, 0xfc0a, 0x3, 0x7ff, 0x7, 0x86cf, 0x4]}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x1}]}, @NL80211_ATTR_CQM={0x24, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x9}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x10001}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0xffffffff}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0xfff}]}, @NL80211_ATTR_CQM={0x44, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x8000}, @NL80211_ATTR_CQM_RSSI_THOLD={0x18, 0x1, [0x87ff, 0x7, 0x4, 0x5, 0x2718]}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x7fff}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x100}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0xaca}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x27f}]}]}, 0x104}}, 0x810)
add_key(&(0x7f0000000240)='dns_resolver\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb)
close(r5)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x183822, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x4c, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x2)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)={0x5c, 0x9, 0x6, 0x801, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0xe1f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x88}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e1f}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x7, 0xff, &(0x7f0000006680))
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

528.48264ms ago: executing program 2 (id=13986):
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
bind$packet(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f00000008c0)={0x84, @rand_addr=0x64010102, 0x4e22, 0x1, 'none\x00', 0x0, 0x10002, 0x6f}, 0x2c)
setsockopt$IP_VS_SO_SET_DEL(r3, 0x0, 0x483, &(0x7f0000001280)={0x20000000000084, @private=0xa010102, 0x4e24, 0x200000001, 'wrr\x00', 0x9, 0x821}, 0x2c)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet6(0xa, 0x4, 0x904)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000180)={@private2, 0x800, 0x0, 0x2, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000080)={@remote, 0x800, 0x0, 0x2, 0xb, 0x6109, 0xc2}, 0x20)
sendmsg$nl_generic(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="142000ff8086ba653878d6450000001f00000000"], 0x14}, 0x1, 0x0, 0x0, 0x1882}, 0x4041000)
socket$nl_generic(0x10, 0x3, 0x10)
futex(&(0x7f0000000000)=0x1, 0x8, 0x82, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000080))
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, 0x0, 0x800)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000480)='hpfs\x00', 0x10008, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, 0x0, 0x0)

480.847183ms ago: executing program 5 (id=13987):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
setsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0x6b, &(0x7f0000000000)="3f7c81502bebe5018d55e4f95d0ec01cba59825584872e5a06804aac25f327b403b197cdd4ace9d8af559ff6ab0ea82a9e02dba334a859aa29cc1418e765ac440be77e766fa4aeb4ca4f4f200280738ec7c125d48a01663cc6d2f116975b5a4b76fe780f29c1c25796ea80bc2422f9aeb4028406a30a50f6f73e0d7930d48ca1a7abcdfdb296ae9f5727fe8ebba6a52998b796025b738a1c7051d8", 0x9b)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000200)={'lo\x00'})
r1 = epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000200)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r1, &(0x7f0000000000)={0xa0000001})
r5 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$SIOCX25GSUBSCRIP(r5, 0x89e0, 0x0)
recvfrom$unix(r5, &(0x7f0000000440)=""/4096, 0x1000, 0x2, &(0x7f0000001440)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
epoll_pwait(r4, &(0x7f0000000400)=[{}], 0x1, 0x80, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r6, 0x0, &(0x7f0000000000), 0x2}, 0x20)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

476.557796ms ago: executing program 4 (id=13988):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_INITSTATE(r2, 0x113, 0x4, &(0x7f0000000640)=0x1, 0x4)
sendmsg$TIPC_NL_MON_GET(r1, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x4000}, 0xc, 0x0}, 0x20000000)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, 0x0, 0x10, &(0x7f0000000000)={0xb1e1})
ptrace$cont(0xf7aef61bbe72383, 0x0, 0x276, 0x401)
r3 = socket$kcm(0x23, 0x5, 0x0)
listen(r3, 0x800)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000200)="5c00000014006b05c84e21000ab16d6e230675f811000000440002005817d30461bc24eeb556a7ef595105ea1698fa51f60a64c9f408000000e786a6d0bdbdc3d44bd70011b6c0504bb9189d9193e9bd00"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x240040c4)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r5, &(0x7f0000000040)={0x23, 0x0, 0x58}, 0x10)
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
write$tun(r6, 0x0, 0x3db)
accept4(r3, 0x0, 0x0, 0x80000)
waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x8, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x320, 0x140, 0x5c, 0x160, 0x140, 0x3e0, 0x250, 0x228, 0x25a, 0x250, 0x228, 0x4, 0x0, {[{{@ipv6={@remote, @dev, [], [], 'veth0_to_batadv\x00', 'pim6reg\x00', {0xff}, {}, 0x3a}, 0x5002, 0xf8, 0x140, 0x52020000, {0x0, 0x6802000000000000}, [@common=@icmp6={{0x28}, {0x12, "d176", 0x1}}, @common=@unspec=@state={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x1}}}, {{@ipv6={@local, @empty, [0xffffffff], [], 'veth1_to_hsr\x00', 'dummy0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x10, 0x0, 0x0, 0x0, 'snmp\x00', 'syz0\x00', {0x2}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x380)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000a00)={<r7=>0xffffffffffffffff})
r8 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/unix\x00')
bind$unix(r7, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
pread64(r8, &(0x7f0000000240)=""/164, 0x131, 0x131)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, r7, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x1, 0x1, 0x0, 0x3}}, 0x26)
sendmmsg(r0, &(0x7f0000004380), 0x34000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r9 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, &(0x7f0000000080))

443.791812ms ago: executing program 2 (id=13989):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, 0x0)
write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="e2", 0x2250)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8947, &(0x7f00000000c0)={'vlan1\x00', @multicast})
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xfffff000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

0s ago: executing program 4 (id=13990):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

own main item tag 0x0
[  945.284750][    T9] asus 0003:0B05:1ABE.0015: unknown main item tag 0x0
[  945.284776][    T9] asus 0003:0B05:1ABE.0015: unknown main item tag 0x0
[  945.284803][    T9] asus 0003:0B05:1ABE.0015: unknown main item tag 0x0
[  945.284829][    T9] asus 0003:0B05:1ABE.0015: unknown main item tag 0x0
[  945.284856][    T9] asus 0003:0B05:1ABE.0015: unknown main item tag 0x0
[  945.284893][    T9] asus 0003:0B05:1ABE.0015: unknown main item tag 0x0
[  945.284918][    T9] asus 0003:0B05:1ABE.0015: unknown main item tag 0x0
[  945.289862][    T9] asus 0003:0B05:1ABE.0015: ignoring exceeding usage max
[  945.377943][    T9] asus 0003:0B05:1ABE.0015: reserved main item tag 0xe
[  945.377996][    T9] asus 0003:0B05:1ABE.0015: ignoring exceeding usage max
[  945.381168][    T9] asus 0003:0B05:1ABE.0015: unknown global tag 0xd
[  945.381193][    T9] asus 0003:0B05:1ABE.0015: item 0 4 1 13 parsing failed
[  945.382677][    T9] asus 0003:0B05:1ABE.0015: Asus hid parse failed: -22
[  945.382799][    T9] asus 0003:0B05:1ABE.0015: probe with driver asus failed with error -22
[  945.466434][    T9] usb 4-1: USB disconnect, device number 100
[  946.598911][T25361] netlink: 'syz.3.9274': attribute type 14 has an invalid length.
[  946.598954][T25361] netlink: 20 bytes leftover after parsing attributes in process `syz.3.9274'.
[  946.979459][    T9] IPVS: starting estimator thread 0...
[  947.101391][T25373] IPVS: using max 9 ests per chain, 21600 per kthread
[  947.129065][ T5803] usb 4-1: new high-speed USB device number 101 using dummy_hcd
[  947.289416][ T5803] usb 4-1: Using ep0 maxpacket: 32
[  947.317219][ T5803] usb 4-1: config 0 interface 0 has no altsetting 0
[  947.317265][ T5803] usb 4-1: New USB device found, idVendor=05ac, idProduct=0324, bcdDevice= 0.00
[  947.317290][ T5803] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  947.366656][ T5803] usb 4-1: config 0 descriptor??
[  947.824834][T25394] binder: 25392:25394 ioctl c0306201 200000000640 returned -22
[  947.874233][ T5803] magicmouse 0003:05AC:0324.0016: item fetching failed at offset 10/13
[  947.876916][ T5803] magicmouse 0003:05AC:0324.0016: magicmouse hid parse failed
[  947.877041][ T5803] magicmouse 0003:05AC:0324.0016: probe with driver magicmouse failed with error -22
[  948.111198][ T5970] usb 4-1: USB disconnect, device number 101
[  949.277760][ T5803] usb 2-1: new high-speed USB device number 84 using dummy_hcd
[  949.442839][ T5803] usb 2-1: config 0 has an invalid interface number: 64 but max is 0
[  949.442872][ T5803] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  949.442894][ T5803] usb 2-1: config 0 has no interface number 0
[  949.448305][ T5803] usb 2-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  949.448338][ T5803] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  949.448358][ T5803] usb 2-1: Product: syz
[  949.448375][ T5803] usb 2-1: Manufacturer: syz
[  949.448391][ T5803] usb 2-1: SerialNumber: syz
[  949.529246][ T5803] usb 2-1: config 0 descriptor??
[  949.823630][ T5803] uvcvideo 2-1:0.64: Found UVC 0.00 device syz (046d:0823)
[  949.823672][ T5803] uvcvideo 2-1:0.64: No valid video chain found.
[  949.855492][ T5803] usb 2-1: USB disconnect, device number 84
[  950.218884][    T9] usb 5-1: new high-speed USB device number 89 using dummy_hcd
[  950.386721][    T9] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  950.406392][    T9] usb 5-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  950.406428][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  950.406450][    T9] usb 5-1: Product: syz
[  950.406468][    T9] usb 5-1: Manufacturer: syz
[  950.406485][    T9] usb 5-1: SerialNumber: syz
[  950.461185][T25450] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  950.461334][T25450] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  950.532426][T25469] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.9323'.
[  950.706632][    T9] usb 5-1: USB disconnect, device number 89
[  951.771186][T25488] input: syz1 as /devices/virtual/input/input34
[  953.383015][    T9] usb 2-1: new high-speed USB device number 85 using dummy_hcd
[  953.543319][    T9] usb 2-1: Using ep0 maxpacket: 32
[  953.545922][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  953.545959][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  953.546003][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  953.546031][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  953.637130][    T9] usb 2-1: config 0 descriptor??
[  953.677438][    T9] hub 2-1:0.0: USB hub found
[  953.909378][    T9] hub 2-1:0.0: 1 port detected
[  954.618458][    T9] usb 2-1: USB disconnect, device number 85
[  956.462753][T25610] syz.0.9390 (25610): drop_caches: 4
[  957.474548][T25636] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9403'.
[  958.031842][T25656] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  958.627542][T25670] netlink: 60 bytes leftover after parsing attributes in process `syz.1.9418'.
[  958.629728][T25670] netlink: 60 bytes leftover after parsing attributes in process `syz.1.9418'.
[  958.650151][T25670] netlink: 60 bytes leftover after parsing attributes in process `syz.1.9418'.
[  960.048246][T25703] ALSA: seq fatal error: cannot create timer (-22)
[  960.448628][T25718] program syz.4.9440 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  960.467315][T25710] input: syz0 as /devices/virtual/input/input35
[  967.347825][T25881] faux_driver vgem: [drm] Unknown color mode 135165; guessing buffer size.
[  968.552256][T25908] overlayfs: missing 'workdir'
[  969.443171][T25927] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9535'.
[  969.443214][T25927] netlink: 'syz.0.9535': attribute type 7 has an invalid length.
[  969.443230][T25927] netlink: 'syz.0.9535': attribute type 8 has an invalid length.
[  969.443262][T25927] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9535'.
[  970.680657][T25965] bridge: RTM_NEWNEIGH with invalid ether address
[  970.850086][T25967] netlink: 'syz.4.9551': attribute type 29 has an invalid length.
[  970.940221][T25967] netlink: 'syz.4.9551': attribute type 29 has an invalid length.
[  970.940598][T25971] netlink: 'syz.4.9551': attribute type 29 has an invalid length.
[  971.049264][T25975] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  971.911564][T25993] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  972.466227][T25997] input: syz1 as /devices/virtual/input/input36
[  973.419188][T26026] ./file0: Can't lookup blockdev
[  975.241745][T26059] program syz.0.9591 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  975.897540][ T5829] usb 2-1: new high-speed USB device number 86 using dummy_hcd
[  976.068387][ T5829] usb 2-1: Using ep0 maxpacket: 16
[  976.089282][ T5829] usb 2-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[  976.089320][ T5829] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  976.089343][ T5829] usb 2-1: Product: syz
[  976.089359][ T5829] usb 2-1: Manufacturer: syz
[  976.089375][ T5829] usb 2-1: SerialNumber: syz
[  976.418268][ T5829] usb 2-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[  976.532795][ T5829] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  976.533385][ T5829] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[  976.533460][ T5829] usb 2-1: media controller created
[  976.726315][ T5829] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  977.371823][ T5829] zl10353_read_register: readreg error (reg=127, ret==-71)
[  977.843956][ T5829] dvb_usb_gl861 2-1:157.0: probe with driver dvb_usb_gl861 failed with error -5
[  977.877855][ T5829] usb 2-1: USB disconnect, device number 86
[  977.917374][ T6170] udevd[6170]: setting owner of /dev/bus/usb/002/086 to uid=0, gid=0 failed: No such file or directory
[  978.313546][ T5829] usb 2-1: new high-speed USB device number 87 using dummy_hcd
[  978.495250][ T5829] usb 2-1: Using ep0 maxpacket: 32
[  978.505085][ T5829] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  978.505118][ T5829] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  978.505142][ T5829] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  978.505168][ T5829] usb 2-1: config 1 has no interface number 0
[  978.505229][ T5829] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  978.505259][ T5829] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  978.505307][ T5829] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  978.505333][ T5829] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  978.639802][ T5829] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  978.902055][ T5829] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now attached
[  979.599471][ T3139] usb 2-1: USB disconnect, device number 87
[  979.624814][ T3139] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  981.162128][T26161] netlink: 36 bytes leftover after parsing attributes in process `syz.3.9636'.
[  982.091773][   T36] audit: type=1326 audit(1777374783.735:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26183 comm="syz.1.9647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[  982.092404][   T36] audit: type=1326 audit(1777374783.735:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26183 comm="syz.1.9647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[  982.092613][   T36] audit: type=1326 audit(1777374783.735:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26183 comm="syz.1.9647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[  982.097106][   T36] audit: type=1326 audit(1777374783.735:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26183 comm="syz.1.9647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=433 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[  982.097176][   T36] audit: type=1326 audit(1777374783.735:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26183 comm="syz.1.9647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[  982.099238][   T36] audit: type=1326 audit(1777374783.735:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26183 comm="syz.1.9647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[  982.101934][   T36] audit: type=1326 audit(1777374783.745:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26183 comm="syz.1.9647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[  982.102375][   T36] audit: type=1326 audit(1777374783.745:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26183 comm="syz.1.9647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[  983.092839][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[  983.092920][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[  983.245517][T14019] tipc: Subscription rejected, illegal request
[  983.488810][T26209] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9658'.
[  983.493035][T26209] netlink: 60 bytes leftover after parsing attributes in process `syz.1.9658'.
[  983.493083][T26209] netlink: 16 bytes leftover after parsing attributes in process `syz.1.9658'.
[  984.069086][ T5970] usb 2-1: new high-speed USB device number 88 using dummy_hcd
[  984.229249][ T5970] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  984.229289][ T5970] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9865, setting to 1024
[  984.229337][ T5970] usb 2-1: New USB device found, idVendor=1c4f, idProduct=0059, bcdDevice= 0.00
[  984.229363][ T5970] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  984.239890][ T5970] usb 2-1: config 0 descriptor??
[  984.241084][T26217] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  984.762103][ T5970] hid_parser_main: 239 callbacks suppressed
[  984.762133][ T5970] sigmamicro 0003:1C4F:0059.0017: unknown main item tag 0x0
[  984.762164][ T5970] sigmamicro 0003:1C4F:0059.0017: unknown main item tag 0x0
[  984.762190][ T5970] sigmamicro 0003:1C4F:0059.0017: unknown main item tag 0x0
[  984.762217][ T5970] sigmamicro 0003:1C4F:0059.0017: unknown main item tag 0x0
[  984.762242][ T5970] sigmamicro 0003:1C4F:0059.0017: unknown main item tag 0x0
[  984.762268][ T5970] sigmamicro 0003:1C4F:0059.0017: unknown main item tag 0x0
[  984.762302][ T5970] sigmamicro 0003:1C4F:0059.0017: collection stack underflow
[  984.762325][ T5970] sigmamicro 0003:1C4F:0059.0017: item 0 2 0 12 parsing failed
[  984.767754][ T5970] sigmamicro 0003:1C4F:0059.0017: probe with driver sigmamicro failed with error -22
[  984.918326][T26235] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9669'.
[  984.933461][ T3139] usb 2-1: USB disconnect, device number 88
[  985.839193][T26259] netlink: 20 bytes leftover after parsing attributes in process `syz.3.9679'.
[  987.017297][T26262] virt_wifi0 speed is unknown, defaulting to 1000
[  987.611457][T26298] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9697'.
[  988.073246][   T36] audit: type=1326 audit(1777374789.329:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.073413][   T36] audit: type=1326 audit(1777374789.329:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.080500][   T36] audit: type=1326 audit(1777374789.339:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.080636][   T36] audit: type=1326 audit(1777374789.339:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.082690][   T36] audit: type=1326 audit(1777374789.339:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.083094][   T36] audit: type=1326 audit(1777374789.339:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.132003][   T36] audit: type=1326 audit(1777374789.348:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.132056][   T36] audit: type=1326 audit(1777374789.376:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.132100][   T36] audit: type=1326 audit(1777374789.376:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26308 comm="syz.3.9702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe594bfc819 code=0x7ffc0000
[  988.740580][T26320] sg_write: data in/out 262109/64 bytes for SCSI command 0x69-- guessing data in;
[  988.740580][T26320]    program syz.3.9707 not setting count and/or reply_len properly
[  989.931721][ T5834] block nbd0: Receive control failed (result -32)
[  990.222843][T26348] cgroup: Unknown subsys name 'cpuset'
[  990.924255][T26367] netlink: 212340 bytes leftover after parsing attributes in process `syz.3.9731'.
[  990.924374][T26367] openvswitch: netlink: Message has 16 unknown bytes.
[  992.251955][T26403] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9746'.
[  993.395911][   T36] audit: type=1326 audit(1777374794.305:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=26431 comm="syz.4.9760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[  993.839915][T26445] program syz.1.9765 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  995.300907][T24307] usb 5-1: new high-speed USB device number 90 using dummy_hcd
[  995.472124][T24307] usb 5-1: Using ep0 maxpacket: 16
[  995.475207][T24307] usb 5-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[  995.475243][T24307] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  995.518352][T24307] usb 5-1: config 0 descriptor??
[  995.545295][T24307] gspca_main: sonixj-2.14.0 probing 0471:0327
[  996.403360][T24307] gspca_sonixj: reg_r err -71
[  996.403544][T24307] sonixj 5-1:0.0: probe with driver sonixj failed with error -71
[  996.419821][T24307] usb 5-1: USB disconnect, device number 90
[  997.756453][T26545] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9812'.
[  998.864331][T26573] C: renamed from team_slave_0
[  998.972118][T26573] netlink: 'syz.4.9826': attribute type 4 has an invalid length.
[  998.972144][T26573] netlink: 116 bytes leftover after parsing attributes in process `syz.4.9826'.
[  998.972162][T26573] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[ 1000.691955][T26618] fuse: Bad value for 'fd'
[ 1000.919233][T13504] Bluetooth: hci0: adv larger than maximum supported
[ 1000.919260][T13504] Bluetooth: hci0: Malformed LE Event: 0x0d
[ 1001.202292][T13504] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1001.581287][T26648] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9861'.
[ 1002.196307][T24307] usb 4-1: new full-speed USB device number 102 using dummy_hcd
[ 1002.378502][T24307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[ 1002.378544][T24307] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1002.378593][T24307] usb 4-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[ 1002.378619][T24307] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1002.414975][T24307] usb 4-1: config 0 descriptor??
[ 1002.416055][T26658] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1002.889793][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.889836][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.889864][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.889891][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.889917][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.889944][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.889980][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.890006][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.890033][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1002.890058][T24307] lenovo 0003:17EF:6047.0018: unknown main item tag 0x0
[ 1003.249156][T24307] lenovo 0003:17EF:6047.0018: hidraw0: USB HID v0.05 Device [HID 17ef:6047] on usb-dummy_hcd.3-1/input0
[ 1003.280034][T24307] usb 4-1: USB disconnect, device number 102
[ 1003.997615][T26701] fido_id[26701]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[ 1004.931625][T26733] netlink: 'syz.3.9898': attribute type 1 has an invalid length.
[ 1004.931650][T26733] netlink: 'syz.3.9898': attribute type 2 has an invalid length.
[ 1005.810087][T24307] usb 2-1: new high-speed USB device number 89 using dummy_hcd
[ 1005.990025][T24307] usb 2-1: Using ep0 maxpacket: 32
[ 1006.004459][T24307] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[ 1006.004491][T24307] usb 2-1: config 0 has no interface number 0
[ 1006.017517][T24307] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1006.017551][T24307] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1006.017572][T24307] usb 2-1: Product: syz
[ 1006.017586][T24307] usb 2-1: Manufacturer: syz
[ 1006.017601][T24307] usb 2-1: SerialNumber: syz
[ 1006.055845][T24307] usb 2-1: config 0 descriptor??
[ 1006.096939][T24307] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1006.389876][T24307] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1006.509995][    C1] quatech-serial ttyUSB0: qt2_process_read_urb - unsupported command 101
[ 1006.536889][T24307] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1006.827283][    C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1006.828727][    T9] usb 2-1: USB disconnect, device number 89
[ 1006.891080][    T9] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1006.922405][    T9] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1006.926057][    T9] quatech2 2-1:0.51: device disconnected
[ 1008.791578][T26847] netlink: 7 bytes leftover after parsing attributes in process `syz.1.9947'.
[ 1010.702186][T26897] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9970'.
[ 1011.181270][T26909] misc userio: Can't change port type on an already running userio instance
[ 1011.928382][T26927] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9983'.
[ 1013.998851][T26968] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10002'.
[ 1014.097602][T26971] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1014.145469][T26971] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1014.619107][ T5970] usb 4-1: new high-speed USB device number 103 using dummy_hcd
[ 1014.779443][ T5970] usb 4-1: Using ep0 maxpacket: 16
[ 1014.786745][ T5970] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1014.786812][ T5970] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1014.786844][ T5970] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1014.786868][ T5970] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1014.786894][ T5970] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1014.788517][ T5970] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1014.788547][ T5970] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1014.788569][ T5970] usb 4-1: Manufacturer: syz
[ 1014.895162][ T5970] usb 4-1: config 0 descriptor??
[ 1015.206811][ T5836] usb 5-1: new full-speed USB device number 91 using dummy_hcd
[ 1015.335027][ T5970] rc_core: IR keymap rc-hauppauge not found
[ 1015.335051][ T5970] Registered IR keymap rc-empty
[ 1015.335215][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.364981][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.375289][ T5836] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[ 1015.375331][ T5836] usb 5-1: config 0 has no interface number 0
[ 1015.375384][ T5836] usb 5-1: config 0 interface 1 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1015.375414][ T5836] usb 5-1: config 0 interface 1 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1015.375439][ T5836] usb 5-1: config 0 interface 1 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1015.375469][ T5836] usb 5-1: config 0 interface 1 has no altsetting 0
[ 1015.375507][ T5836] usb 5-1: New USB device found, idVendor=145f, idProduct=0212, bcdDevice= 0.00
[ 1015.375534][ T5836] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1015.456270][ T5970] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[ 1015.461559][ T5970] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input38
[ 1015.494880][ T5836] usb 5-1: config 0 descriptor??
[ 1015.539929][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.561112][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.581831][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.602385][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.623841][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.647126][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.666683][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.688217][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.709689][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.730821][ T5970] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[ 1015.764972][ T5970] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[ 1015.765004][ T5970] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1015.822055][ T5970] usb 4-1: USB disconnect, device number 103
[ 1016.230883][ T5836] uclogic 0003:145F:0212.0019: pen parameters not found
[ 1016.230914][ T5836] uclogic 0003:145F:0212.0019: interface is invalid, ignoring
[ 1016.342052][ T5836] usb 5-1: USB disconnect, device number 91
[ 1017.030592][ T5836] usb 4-1: new high-speed USB device number 104 using dummy_hcd
[ 1017.184908][ T5836] usb 4-1: Using ep0 maxpacket: 16
[ 1017.187526][ T5836] usb 4-1: config index 0 descriptor too short (expected 51443, got 18)
[ 1017.190676][ T5836] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1017.190710][ T5836] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1017.190734][ T5836] usb 4-1: Product: syz
[ 1017.190751][ T5836] usb 4-1: Manufacturer: syz
[ 1017.190768][ T5836] usb 4-1: SerialNumber: syz
[ 1017.257019][ T5836] r8152-cfgselector 4-1: Unknown version 0x0000
[ 1017.257050][ T5836] r8152-cfgselector 4-1: config 0 descriptor??
[ 1017.550794][T27048] input: syz0 as /devices/virtual/input/input39
[ 1017.707867][ T5836] r8152-cfgselector 4-1: USB disconnect, device number 104
[ 1018.414204][ T5836] usb 2-1: new full-speed USB device number 90 using dummy_hcd
[ 1018.578914][ T5836] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1018.581900][ T5836] usb 2-1: not running at top speed; connect to a high speed hub
[ 1018.609595][ T5836] usb 2-1: config 255 has an invalid interface number: 183 but max is 1
[ 1018.609630][ T5836] usb 2-1: config 255 has an invalid interface number: 164 but max is 1
[ 1018.609653][ T5836] usb 2-1: config 255 has no interface number 0
[ 1018.609671][ T5836] usb 2-1: config 255 has no interface number 1
[ 1018.609739][ T5836] usb 2-1: config 255 interface 183 altsetting 0 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[ 1018.609772][ T5836] usb 2-1: config 255 interface 183 altsetting 0 has a duplicate endpoint with address 0x1, skipping
[ 1018.609798][ T5836] usb 2-1: config 255 interface 183 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1018.609821][ T5836] usb 2-1: config 255 interface 183 altsetting 0 has a duplicate endpoint with address 0x9, skipping
[ 1018.609864][ T5836] usb 2-1: config 255 interface 164 altsetting 9 has a duplicate endpoint with address 0x1, skipping
[ 1018.609890][ T5836] usb 2-1: config 255 interface 164 has no altsetting 0
[ 1018.713440][ T5836] usb 2-1: New USB device found, idVendor=0c45, idProduct=60fe, bcdDevice=7f.89
[ 1018.713477][ T5836] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1018.713499][ T5836] usb 2-1: Product: syz
[ 1018.713516][ T5836] usb 2-1: Manufacturer: syz
[ 1018.713533][ T5836] usb 2-1: SerialNumber: syz
[ 1018.758237][T27069] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1019.145439][ T5836] usb 2-1: USB disconnect, device number 90
[ 1020.767652][T27132] x_tables: ip6_tables: RATEEST.0 target: invalid size 32 (kernel) != (user) 40
[ 1021.963208][T24307] usb 2-1: new high-speed USB device number 91 using dummy_hcd
[ 1022.125018][T24307] usb 2-1: Using ep0 maxpacket: 16
[ 1022.130628][T24307] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 1022.130668][T24307] usb 2-1: config 0 has no interface number 0
[ 1022.159571][T24307] usb 2-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[ 1022.159608][T24307] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1022.159630][T24307] usb 2-1: Product: syz
[ 1022.159657][T24307] usb 2-1: Manufacturer: syz
[ 1022.159673][T24307] usb 2-1: SerialNumber: syz
[ 1022.209969][T24307] usb 2-1: config 0 descriptor??
[ 1022.249009][T24307] gspca_main: spca1528-2.14.0 probing 04fc:1528
[ 1022.999126][T27186] vivid-008: disconnect
[ 1022.999914][T27185] vivid-008: reconnect
[ 1023.099264][T24307] gspca_spca1528: reg_w err -71
[ 1023.117962][T24307] spca1528 2-1:0.1: probe with driver spca1528 failed with error -71
[ 1023.136120][T24307] usb 2-1: USB disconnect, device number 91
[ 1024.108889][T27213] netlink: 'syz.3.10115': attribute type 32 has an invalid length.
[ 1024.108919][T27213] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10115'.
[ 1024.462105][T27213] bond2: option coupled_control: invalid value (46)
[ 1024.513397][T27213] bond2 (unregistering): Released all slaves
[ 1025.452193][   T36] kauditd_printk_skb: 7 callbacks suppressed
[ 1025.452231][   T36] audit: type=1804 audit(1777374824.220:505): pid=27243 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.0.10129" name="/newroot/1926/file0" dev="tmpfs" ino=9716 res=1 errno=0
[ 1025.452285][   T36] audit: type=1326 audit(1777374824.238:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27244 comm="syz.1.10131" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x0
[ 1025.527808][   T36] audit: type=1326 audit(1777374824.369:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27247 comm="syz.4.10132" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x0
[ 1027.276799][    T9] usb 4-1: new high-speed USB device number 105 using dummy_hcd
[ 1027.439522][    T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1027.439557][    T9] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1027.439585][    T9] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1027.499000][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[ 1027.499037][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 1027.499061][    T9] usb 4-1: Product: syz
[ 1027.499077][    T9] usb 4-1: Manufacturer: syz
[ 1027.499093][    T9] usb 4-1: SerialNumber: syz
[ 1027.817549][    T9] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 105 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 1028.032578][    T9] usb 4-1: USB disconnect, device number 105
[ 1028.191598][T27304] netlink: 'syz.4.10157': attribute type 10 has an invalid length.
[ 1028.194887][    T9] usblp0: removed
[ 1028.487243][T27304] team0 (unregistering): Port device C removed
[ 1028.536464][T27304] team0 (unregistering): Port device team_slave_1 removed
[ 1030.902609][T24307] usb 2-1: new high-speed USB device number 92 using dummy_hcd
[ 1031.074082][T24307] usb 2-1: Using ep0 maxpacket: 16
[ 1031.087783][T24307] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1031.087845][T24307] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1031.087876][T24307] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1031.087898][T24307] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1031.087923][T24307] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1031.092034][T24307] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1031.092069][T24307] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1031.092092][T24307] usb 2-1: Manufacturer: syz
[ 1031.202870][T24307] usb 2-1: config 0 descriptor??
[ 1031.432335][T27389] tap0: tun_chr_ioctl cmd 2147767506
[ 1031.745084][T24307] rc_core: IR keymap rc-hauppauge not found
[ 1031.745110][T24307] Registered IR keymap rc-empty
[ 1031.745276][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1031.766615][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1031.790908][T24307] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[ 1031.812580][T24307] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input40
[ 1031.886447][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1031.907488][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1031.928374][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1031.948343][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1031.969685][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1031.991295][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1032.012406][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1032.033799][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1032.052960][T27408] bpf: Bad value for 'gid'
[ 1032.055232][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1032.076839][T24307] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1032.115302][T24307] mceusb 2-1:0.0: Registered  with mce emulator interface version 1
[ 1032.115875][T24307] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1032.296729][    T9] usb 2-1: USB disconnect, device number 92
[ 1035.094608][T27478] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10235'.
[ 1035.101122][T27478] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10235'.
[ 1035.155565][T24307] usb 5-1: new high-speed USB device number 92 using dummy_hcd
[ 1035.336913][T24307] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[ 1035.337071][T24307] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1035.337095][T24307] usb 5-1: Product: syz
[ 1035.337111][T24307] usb 5-1: Manufacturer: syz
[ 1035.337128][T24307] usb 5-1: SerialNumber: syz
[ 1035.790460][T24307] rtl8150 5-1:1.0: couldn't reset the device
[ 1035.790870][T24307] rtl8150 5-1:1.0: probe with driver rtl8150 failed with error -5
[ 1035.850334][T24307] usb 5-1: USB disconnect, device number 92
[ 1035.924328][T27496] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10243'.
[ 1036.262693][T27501] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10246'.
[ 1036.267617][T27501] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10246'.
[ 1036.735930][T27513] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10252'.
[ 1037.393953][T27529] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.10260'.
[ 1038.857958][T27570] program syz.4.10278 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1039.169831][T27576] program syz.0.10282 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1039.557030][   T36] audit: type=1800 audit(1777374837.381:508): pid=27581 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.10285" name=6D656D66643A1033717D329ACEAF03DF795BD9FF5238F41C0869E45ED5FDA90DAC374194A0 dev="tmpfs" ino=1055 res=0 errno=0
[ 1040.129367][T27594] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10291'.
[ 1040.129403][T27594] bond0: option miimon: invalid value (18446744071951403948)
[ 1040.129425][T27594] bond0: option miimon: allowed values 0 - 2147483647
[ 1040.440384][   T36] audit: type=1326 audit(1777374838.307:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1040.440447][   T36] audit: type=1326 audit(1777374838.307:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1040.471830][   T36] audit: type=1326 audit(1777374838.335:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1040.471892][   T36] audit: type=1326 audit(1777374838.344:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1040.471933][   T36] audit: type=1326 audit(1777374838.344:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1040.471974][   T36] audit: type=1326 audit(1777374838.344:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1040.472242][   T36] audit: type=1326 audit(1777374838.344:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1040.484209][   T36] audit: type=1326 audit(1777374838.344:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1040.484276][   T36] audit: type=1326 audit(1777374838.353:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=27600 comm="syz.4.10293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f59d714c819 code=0x7ffc0000
[ 1042.027936][T27636] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10311'.
[ 1042.027966][T27636] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10311'.
[ 1042.027992][T27636] netlink: 'syz.0.10311': attribute type 19 has an invalid length.
[ 1042.028008][T27636] netlink: 'syz.0.10311': attribute type 20 has an invalid length.
[ 1044.582912][T27691] program syz.3.10332 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1045.040881][T27699] macvtap1: entered promiscuous mode
[ 1045.040908][T27699] team0: entered promiscuous mode
[ 1045.040923][T27699] team_slave_0: entered promiscuous mode
[ 1045.046595][T27699] team_slave_1: entered promiscuous mode
[ 1045.047816][T27699] 8021q: adding VLAN 0 to HW filter on device macvtap1
[ 1048.629272][T27801] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1048.762857][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 1048.762933][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 1048.807316][T24307] usb 4-1: new full-speed USB device number 106 using dummy_hcd
[ 1048.984138][T24307] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1048.985708][T24307] usb 4-1: not running at top speed; connect to a high speed hub
[ 1048.988437][T24307] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1048.988464][T24307] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1049.032400][T24307] usb 4-1: string descriptor 0 read error: -22
[ 1049.032571][T24307] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1049.032598][T24307] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1049.094985][T24307] usb 4-1: 0:2 : does not exist
[ 1049.229670][T27811] netlink: 36 bytes leftover after parsing attributes in process `syz.1.10388'.
[ 1049.910704][ T5836] usb 2-1: new high-speed USB device number 93 using dummy_hcd
[ 1050.021011][T24307] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[ 1050.036186][T24307] usb 4-1: Warning! Unlikely big volume step count (=3552), linear volume or wrong cval->res?
[ 1050.036217][T24307] usb 4-1: [5] FU [Mic Capture Volume] ch = 1, val = 5648/9200/1
[ 1050.070186][ T5836] usb 2-1: Using ep0 maxpacket: 32
[ 1050.076389][ T5836] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[ 1050.076422][ T5836] usb 2-1: config 0 has no interface number 0
[ 1050.088689][ T5836] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1050.088722][ T5836] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1050.088742][ T5836] usb 2-1: Product: syz
[ 1050.088756][ T5836] usb 2-1: Manufacturer: syz
[ 1050.088772][ T5836] usb 2-1: SerialNumber: syz
[ 1050.128052][ T5836] usb 2-1: config 0 descriptor??
[ 1050.159063][ T5836] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1050.161097][T24307] usb 4-1: 5:0: cannot get min/max values for control 3 (id 5)
[ 1050.192884][T24307] usb 4-1: 5:0: failed to get current value for ch 1 (-22)
[ 1050.436232][T24307] usb 4-1: 5:0: cannot get min/max values for control 3 (id 5)
[ 1050.600703][ T5836] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1050.640793][T24307] usb 4-1: USB disconnect, device number 106
[ 1050.669357][ T5836] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1050.790823][    C0] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1050.822990][ T5836] usb 2-1: USB disconnect, device number 93
[ 1051.037588][ T5836] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1051.125646][ T5836] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1051.133874][ T5836] quatech2 2-1:0.51: device disconnected
[ 1052.601946][ T5834] Bluetooth: hci3: unexpected event for opcode 0x1003
[ 1056.884706][ T5834] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1056.884965][ T5834] Bluetooth: hci3: Injecting HCI hardware error event
[ 1056.896802][T13504] Bluetooth: hci3: hardware error 0x00
[ 1057.448917][T27985] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1057.996629][T27995] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10469'.
[ 1058.643902][T28011] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10480'.
[ 1058.730392][T28014] netlink: 'syz.0.10481': attribute type 5 has an invalid length.
[ 1059.108932][T13504] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1060.642311][    T9] usb 5-1: new high-speed USB device number 93 using dummy_hcd
[ 1060.811886][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1060.811921][    T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[ 1060.811950][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid maxpacket 65535, setting to 1024
[ 1060.811978][    T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1024
[ 1060.821609][    T9] usb 5-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[ 1060.821641][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1060.821661][    T9] usb 5-1: Product: syz
[ 1060.821677][    T9] usb 5-1: Manufacturer: syz
[ 1060.821692][    T9] usb 5-1: SerialNumber: syz
[ 1060.849714][    T9] usb 5-1: config 0 descriptor??
[ 1060.851256][T28053] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1060.861808][    T9] ums-isd200 5-1:0.0: USB Mass Storage device detected
[ 1061.174610][    T9] scsi host1: usb-storage 5-1:0.0
[ 1061.231643][    T9] usb 5-1: USB disconnect, device number 93
[ 1061.520082][T28068] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1064.278767][T28123] netlink: 'syz.4.10530': attribute type 11 has an invalid length.
[ 1068.799281][T24307] usb 5-1: new high-speed USB device number 94 using dummy_hcd
[ 1068.959097][T24307] usb 5-1: Using ep0 maxpacket: 16
[ 1068.966078][T24307] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9865, setting to 1024
[ 1068.966136][T24307] usb 5-1: New USB device found, idVendor=046d, idProduct=c52b, bcdDevice= 0.00
[ 1068.966163][T24307] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1069.017039][T24307] usb 5-1: config 0 descriptor??
[ 1069.019024][T28220] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1069.510842][T24307] hid_parser_main: 27 callbacks suppressed
[ 1069.510873][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.510906][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.510934][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.510961][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.510988][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.511015][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.511042][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x4
[ 1069.511072][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.511096][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.511122][T24307] logitech-djreceiver 0003:046D:C52B.001A: unknown main item tag 0x0
[ 1069.788131][ T5836] usb 5-1: USB disconnect, device number 94
[ 1071.236429][    T9] usb 5-1: new high-speed USB device number 95 using dummy_hcd
[ 1071.396565][    T9] usb 5-1: Using ep0 maxpacket: 16
[ 1071.401756][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1071.401867][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1071.401894][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1071.401942][    T9] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1071.401970][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1071.433788][    T9] usb 5-1: config 0 descriptor??
[ 1072.012055][T28273] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1072.026412][T28273] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1072.099949][    T9] microsoft 0003:045E:07DA.001B: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[ 1072.099991][    T9] microsoft 0003:045E:07DA.001B: no inputs found
[ 1072.100006][    T9] microsoft 0003:045E:07DA.001B: could not initialize ff, continuing anyway
[ 1072.290981][   T31] usb 5-1: USB disconnect, device number 95
[ 1072.571043][T28307] netlink: 'syz.0.10612': attribute type 83 has an invalid length.
[ 1072.625366][T28302] fido_id[28302]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[ 1072.722853][T28311] netlink: 'syz.3.10614': attribute type 32 has an invalid length.
[ 1072.722877][T28311] netlink: 24 bytes leftover after parsing attributes in process `syz.3.10614'.
[ 1072.722903][T28311] bond0: option coupled_control: mode dependency failed, not supported in mode balance-rr(0)
[ 1074.159584][   T36] kauditd_printk_skb: 9 callbacks suppressed
[ 1074.159609][   T36] audit: type=1326 audit(1777374869.848:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28342 comm="syz.1.10630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1074.163500][   T36] audit: type=1326 audit(1777374869.858:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28342 comm="syz.1.10630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1074.167353][   T36] audit: type=1326 audit(1777374869.858:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28342 comm="syz.1.10630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1074.174604][   T36] audit: type=1326 audit(1777374869.867:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28342 comm="syz.1.10630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1074.185160][   T36] audit: type=1326 audit(1777374869.876:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28342 comm="syz.1.10630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1074.185216][   T36] audit: type=1326 audit(1777374869.876:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28342 comm="syz.1.10630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1074.185258][   T36] audit: type=1326 audit(1777374869.876:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28342 comm="syz.1.10630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1074.246025][T28345] batman_adv: batadv0: Adding interface: dummy0
[ 1074.246043][T28345] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1074.246076][T28345] batman_adv: batadv0: Interface activated: dummy0
[ 1074.925060][T28364] mac80211_hwsim hwsim11 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 1075.020856][T24307] usb 4-1: new high-speed USB device number 107 using dummy_hcd
[ 1075.194651][T24307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1075.194693][T24307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1075.194737][T24307] usb 4-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.80
[ 1075.194764][T24307] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1075.248091][T24307] usb 4-1: config 0 descriptor??
[ 1075.356992][T28372] program syz.4.10641 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1075.748495][T24307] hid_parser_main: 453 callbacks suppressed
[ 1075.748523][T24307] cp2112 0003:10C4:EA90.001C: unknown main item tag 0x0
[ 1075.748554][T24307] cp2112 0003:10C4:EA90.001C: unknown main item tag 0x0
[ 1075.748581][T24307] cp2112 0003:10C4:EA90.001C: unknown main item tag 0x0
[ 1075.748607][T24307] cp2112 0003:10C4:EA90.001C: unknown main item tag 0x0
[ 1075.748631][T24307] cp2112 0003:10C4:EA90.001C: unknown main item tag 0x0
[ 1075.748684][T24307] cp2112 0003:10C4:EA90.001C: unknown main item tag 0x0
[ 1075.748711][T24307] cp2112 0003:10C4:EA90.001C: unknown main item tag 0x0
[ 1075.834830][T24307] cp2112 0003:10C4:EA90.001C: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.3-1/input0
[ 1076.081225][T24307] cp2112 0003:10C4:EA90.001C: Part Number: 0x00 Device Version: 0x00
[ 1076.298813][T24307] cp2112 0003:10C4:EA90.001C: error requesting SMBus config
[ 1076.331504][T24307] cp2112 0003:10C4:EA90.001C: probe with driver cp2112 failed with error -71
[ 1076.364103][T24307] usb 4-1: USB disconnect, device number 107
[ 1076.480581][T28382] fido_id[28382]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[ 1077.494601][T14016] wlan1: Trigger new scan to find an IBSS to join
[ 1079.457779][T28467] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1080.246438][T28494] input: syz0 as /devices/virtual/input/input42
[ 1080.526509][T28500] program syz.1.10699 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1081.488728][    T9] usb 2-1: new high-speed USB device number 94 using dummy_hcd
[ 1081.667463][    T9] usb 2-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[ 1081.667500][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1081.667523][    T9] usb 2-1: Product: syz
[ 1081.667540][    T9] usb 2-1: Manufacturer: syz
[ 1081.667555][    T9] usb 2-1: SerialNumber: syz
[ 1081.711582][    T9] usb 2-1: config 0 descriptor??
[ 1081.758614][ T5970] usb 5-1: new high-speed USB device number 96 using dummy_hcd
[ 1081.916151][ T5970] usb 5-1: Using ep0 maxpacket: 32
[ 1081.919849][ T5970] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1081.919886][ T5970] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1081.919991][ T5970] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1081.920018][ T5970] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1082.011595][ T5970] usb 5-1: config 0 descriptor??
[ 1082.101941][ T5970] hub 5-1:0.0: USB hub found
[ 1082.290781][    T9] usb 2-1: f81604_write: reg: 105 data: 0 failed: -EPROTO
[ 1082.290815][    T9] f81604 2-1:0.0: Setting termination of CH#0 failed: -EPROTO
[ 1082.290928][    T9] f81604 2-1:0.0: probe with driver f81604 failed with error -71
[ 1082.339532][ T5970] hub 5-1:0.0: 2 ports detected
[ 1082.444562][    T9] usb 2-1: USB disconnect, device number 94
[ 1082.571177][ T5970] hub 5-1:0.0: hub_hub_status failed (err = -71)
[ 1082.571210][ T5970] hub 5-1:0.0: config failed, can't get hub status (err -71)
[ 1082.597521][ T5970] usbhid 5-1:0.0: can't add hid device: -71
[ 1082.597657][ T5970] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1082.724831][ T5970] usb 5-1: USB disconnect, device number 96
[ 1082.878702][T14004] wlan1: Trigger new scan to find an IBSS to join
[ 1083.160355][T28548] trusted_key: encrypted_key: keyword 'upw' not recognized
[ 1083.878332][T14014] wlan1: Creating new IBSS network, BSSID b6:5f:94:e8:ca:73
[ 1084.093258][T28571] vxcan0: tx drop: invalid sa for name 0x0000000000000001
[ 1084.140654][T28574] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 7 bytes
[ 1086.544441][T28621] misc userio: Begin command sent, but we're already running
[ 1087.659819][T28650] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10764'.
[ 1088.024798][T28653] input: syz0 as /devices/virtual/input/input43
[ 1088.347923][T28662] program syz.3.10771 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1088.955638][T28681] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1089.094565][T28688] netlink: 'syz.3.10782': attribute type 1 has an invalid length.
[ 1089.094591][T28688] netlink: 24 bytes leftover after parsing attributes in process `syz.3.10782'.
[ 1092.375278][T28762] erspan0: entered promiscuous mode
[ 1094.317408][T24307] usb 2-1: new high-speed USB device number 95 using dummy_hcd
[ 1094.477736][T24307] usb 2-1: Using ep0 maxpacket: 8
[ 1094.482989][T24307] usb 2-1: config 0 has an invalid interface number: 186 but max is 0
[ 1094.483020][T24307] usb 2-1: config 0 has no interface number 0
[ 1094.483069][T24307] usb 2-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1094.483096][T24307] usb 2-1: config 0 interface 186 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1094.483122][T24307] usb 2-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[ 1094.483149][T24307] usb 2-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[ 1094.483176][T24307] usb 2-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[ 1094.552482][T24307] usb 2-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[ 1094.552518][T24307] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1094.552539][T24307] usb 2-1: Product: syz
[ 1094.552555][T24307] usb 2-1: Manufacturer: syz
[ 1094.552570][T24307] usb 2-1: SerialNumber: syz
[ 1094.625862][T24307] usb 2-1: config 0 descriptor??
[ 1094.917879][T24307] iowarrior 2-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0
[ 1095.120799][T28831] netlink: 14 bytes leftover after parsing attributes in process `syz.4.10847'.
[ 1095.141276][T24308] usb 2-1: USB disconnect, device number 95
[ 1095.480958][T28831] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1095.625070][T28831] bond0 (unregistering): Released all slaves
[ 1096.052379][T28827] smbdirect: ib_dev[syz1]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[ 1096.052425][T28827] smbdirect: ib_dev[syz1]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[ 1096.052472][T28827] smbdirect: ib_dev[syz1]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[ 1096.373897][T28827] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1096.645922][   T36] audit: type=1326 audit(1777374890.886:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1096.645983][   T36] audit: type=1326 audit(1777374890.886:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1096.699281][   T36] audit: type=1326 audit(1777374890.942:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1096.699423][   T36] audit: type=1326 audit(1777374890.942:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1096.751560][   T36] audit: type=1326 audit(1777374890.988:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1096.751624][   T36] audit: type=1326 audit(1777374890.988:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1096.753597][   T36] audit: type=1326 audit(1777374890.988:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1096.756612][   T36] audit: type=1326 audit(1777374890.998:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc67b3fd04e code=0x7ffc0000
[ 1096.756665][   T36] audit: type=1326 audit(1777374890.998:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc67b43c4ab code=0x7ffc0000
[ 1096.756709][   T36] audit: type=1326 audit(1777374890.998:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=28858 comm="syz.1.10861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc67b43c4ab code=0x7ffc0000
[ 1097.029138][    T9] usb 2-1: new high-speed USB device number 96 using dummy_hcd
[ 1097.236278][    T9] usb 2-1: Using ep0 maxpacket: 16
[ 1097.244448][    T9] usb 2-1: config 0 has no interfaces?
[ 1097.311585][    T9] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1097.311622][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1097.311644][    T9] usb 2-1: Product: syz
[ 1097.311660][    T9] usb 2-1: Manufacturer: syz
[ 1097.311676][    T9] usb 2-1: SerialNumber: syz
[ 1097.367668][    T9] usb 2-1: config 0 descriptor??
[ 1097.622678][T24307] usb 2-1: USB disconnect, device number 96
[ 1097.783328][T28868] vlan1: entered allmulticast mode
[ 1097.783349][T28868] bond0: entered allmulticast mode
[ 1097.783362][T28868] ��: entered allmulticast mode
[ 1097.783378][T28868] bond_slave_1: entered allmulticast mode
[ 1099.047118][T14019] smbdirect: ib_dev[syz1] removed
[ 1103.181432][T28939] netlink: 48 bytes leftover after parsing attributes in process `syz.0.10899'.
[ 1104.097148][T28966] sch_tbf: burst 0 is lower than device lo mtu (81) !
[ 1106.418655][T29029] netlink: 236 bytes leftover after parsing attributes in process `syz.1.10940'.
[ 1109.267961][T29094] 
@���: renamed from bond_slave_0 (while UP)
[ 1110.289157][ T5836] usb 4-1: new high-speed USB device number 108 using dummy_hcd
[ 1110.452575][ T5836] usb 4-1: Using ep0 maxpacket: 32
[ 1110.572210][ T5836] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1110.573375][ T5836] usb 4-1: unable to read config index 0 descriptor/start: -71
[ 1110.573417][ T5836] usb 4-1: can't read configurations, error -71
[ 1110.828789][   T36] kauditd_printk_skb: 28 callbacks suppressed
[ 1110.828811][   T36] audit: type=1326 audit(1777374904.159:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29128 comm="syz.4.10987" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f59d714c819 code=0x0
[ 1112.443883][T29168] netlink: 'syz.1.11003': attribute type 6 has an invalid length.
[ 1113.212687][T29185] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11010'.
[ 1113.273424][T29189] netlink: 'syz.0.11012': attribute type 39 has an invalid length.
[ 1114.476829][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 1114.476912][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.012769][T14014] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1116.447955][   T36] audit: type=1800 audit(1777374908.480:573): pid=29197 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.11016" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[ 1116.516065][T29197] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -4
[ 1116.516117][T29197] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -4
[ 1116.516138][T29197] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1117.367342][T29274] netlink: 'syz.0.11048': attribute type 2 has an invalid length.
[ 1117.367370][T29274] netlink: 'syz.0.11048': attribute type 2 has an invalid length.
[ 1117.678420][T29197] syz.1.11016 (29197) used greatest stack depth: 18296 bytes left
[ 1119.476477][T29317] netlink: set zone limit has 4 unknown bytes
[ 1126.958876][T29511] netlink: 20 bytes leftover after parsing attributes in process `syz.3.11153'.
[ 1128.736208][T29550] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1130.030009][   T36] audit: type=1326 audit(1777374922.109:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13a87c819 code=0x7ffc0000
[ 1130.031704][   T36] audit: type=1326 audit(1777374922.119:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13a87c819 code=0x7ffc0000
[ 1130.033144][   T36] audit: type=1326 audit(1777374922.119:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fa13a87c819 code=0x7ffc0000
[ 1130.033514][   T36] audit: type=1326 audit(1777374922.119:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13a87c819 code=0x7ffc0000
[ 1130.033803][   T36] audit: type=1326 audit(1777374922.119:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13a87c819 code=0x7ffc0000
[ 1130.036263][   T36] audit: type=1326 audit(1777374922.119:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fa13a87c819 code=0x7ffc0000
[ 1130.036591][   T36] audit: type=1326 audit(1777374922.128:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13a87c819 code=0x7ffc0000
[ 1130.037279][   T36] audit: type=1326 audit(1777374922.128:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13a87c819 code=0x7ffc0000
[ 1130.037630][   T36] audit: type=1326 audit(1777374922.128:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa13a83d04e code=0x7ffc0000
[ 1130.038517][   T36] audit: type=1326 audit(1777374922.128:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=29579 comm="syz.0.11184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa13a87c4ab code=0x7ffc0000
[ 1130.227057][ T5836] usb 4-1: new high-speed USB device number 110 using dummy_hcd
[ 1130.398368][ T5836] usb 4-1: Using ep0 maxpacket: 32
[ 1130.401857][ T5836] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1130.401896][ T5836] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1130.401939][ T5836] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1130.401966][ T5836] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1130.446274][ T5836] usb 4-1: config 0 descriptor??
[ 1130.466706][ T5836] hub 4-1:0.0: USB hub found
[ 1130.717444][ T5836] hub 4-1:0.0: 1 port detected
[ 1131.182910][ T5836] usb 4-1: USB disconnect, device number 110
[ 1134.572294][T29663] dvmrp1: left allmulticast mode
[ 1135.249190][ T5836] usb 2-1: new high-speed USB device number 97 using dummy_hcd
[ 1135.428730][ T5836] usb 2-1: Using ep0 maxpacket: 16
[ 1135.445096][ T5836] usb 2-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[ 1135.445132][ T5836] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1135.445153][ T5836] usb 2-1: Product: syz
[ 1135.445170][ T5836] usb 2-1: Manufacturer: syz
[ 1135.445186][ T5836] usb 2-1: SerialNumber: syz
[ 1135.482961][ T5836] usb 2-1: config 0 descriptor??
[ 1136.003086][ T5836] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[ 1136.126200][ T5836] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1136.128932][ T5836] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[ 1136.128992][ T5836] usb 2-1: media controller created
[ 1136.475973][ T5836] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1136.685008][T29703] netlink: 40 bytes leftover after parsing attributes in process `syz.3.11241'.
[ 1137.074092][ T5836] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[ 1137.074125][ T5836] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[ 1137.333012][   T31] usb 2-1: USB disconnect, device number 97
[ 1137.505142][   T31] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[ 1137.903538][    T9] usb 4-1: new high-speed USB device number 111 using dummy_hcd
[ 1138.068052][    T9] usb 4-1: config 0 has no interfaces?
[ 1138.080739][    T9] usb 4-1: New USB device found, idVendor=0000, idProduct=0000, bcdDevice= 0.9a
[ 1138.080775][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1138.080797][    T9] usb 4-1: Product: syz
[ 1138.080812][    T9] usb 4-1: Manufacturer: syz
[ 1138.080828][    T9] usb 4-1: SerialNumber: syz
[ 1138.106728][    T9] usb 4-1: config 0 descriptor??
[ 1138.345470][   T31] usb 4-1: USB disconnect, device number 111
[ 1139.310171][T29769] sit0: entered promiscuous mode
[ 1139.310367][T29769] netlink: 'syz.4.11269': attribute type 1 has an invalid length.
[ 1139.310387][T29769] netlink: 9 bytes leftover after parsing attributes in process `syz.4.11269'.
[ 1139.462958][T24308] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[ 1139.578618][T24308] hid-generic 0000:0000:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1142.279081][T29830] netlink: 'syz.0.11292': attribute type 3 has an invalid length.
[ 1146.345318][T29928] syzkaller1: entered promiscuous mode
[ 1146.345348][T29928] syzkaller1: entered allmulticast mode
[ 1146.608198][T24308] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[ 1146.754113][T24308] hid-generic 0000:0000:0000.001E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1147.607046][T29924] hid-generic 0000:0000:0000.001E: pid 29924 passed too short report
[ 1149.293209][T14012] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1149.889636][T29985] netlink: 212368 bytes leftover after parsing attributes in process `syz.4.11357'.
[ 1150.597993][T30001] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1151.569476][T30027] netlink: 'syz.3.11376': attribute type 1 has an invalid length.
[ 1151.889874][T30035] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11379'.
[ 1153.587462][T30066] loop8: detected capacity change from 0 to 4
[ 1154.282673][T30066] Dev loop8: unable to read RDB block 4
[ 1154.282739][T30066]  loop8: unable to read partition table
[ 1154.283025][T30066] loop8: partition table beyond EOD, truncated
[ 1154.283067][T30066] loop_reread_partitions: partition scan of loop8 (�被x������ ) failed (rc=-5)
[ 1157.152418][T30118] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11415'.
[ 1159.358659][T30145] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[ 1159.361352][T30145] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1159.361599][T30145] overlayfs: failed to get uuid (2069/file1, err=-13); falling back to uuid=null.
[ 1160.331835][T24307] usb 4-1: new high-speed USB device number 112 using dummy_hcd
[ 1160.507405][T24307] usb 4-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1160.527944][T24307] usb 4-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1160.527999][T24307] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1160.528023][T24307] usb 4-1: Product: syz
[ 1160.528040][T24307] usb 4-1: Manufacturer: syz
[ 1160.528058][T24307] usb 4-1: SerialNumber: syz
[ 1160.603269][T24307] usb 4-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[ 1161.255079][T24307] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1161.255656][T24307] dvbdev: DVB: registering new adapter (774 Friio White ISDB-T USB2.0)
[ 1161.255714][T24307] usb 4-1: media controller created
[ 1161.358753][T24307] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1162.500584][    T9] usb 4-1: USB disconnect, device number 112
[ 1164.465274][T30242] loop5: detected capacity change from 0 to 7
[ 1164.574586][T30242] Dev loop5: unable to read RDB block 7
[ 1164.574650][T30242]  loop5: AHDI p1
[ 1164.574696][T30242] loop5: partition table partially beyond EOD, truncated
[ 1170.671104][T30375] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1173.585992][T30453] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11565'.
[ 1173.586030][T30453] netlink: 20 bytes leftover after parsing attributes in process `syz.4.11565'.
[ 1174.139421][T30465] nvme_fabrics: unknown parameter or missing value 'syz0' in ctrl creation request
[ 1176.267896][T30522] loop2: detected capacity change from 0 to 4
[ 1176.485524][T30522] Dev loop2: unable to read RDB block 4
[ 1176.485581][T30522]  loop2: unable to read partition table
[ 1176.485851][T30522] loop2: partition table beyond EOD, truncated
[ 1176.485871][T30522] loop_reread_partitions: partition scan of loop2 (�被x����� ) failed (rc=-5)
[ 1176.991432][T30536] batadv_slave_1: entered promiscuous mode
[ 1177.000932][T30534] batadv_slave_1: left promiscuous mode
[ 1177.799394][T30554] team0: Port device vlan4 added
[ 1178.920511][T30581] bond5: Unable to set up delay as MII monitoring is disabled
[ 1179.049500][T30581] bond5 (unregistering): Released all slaves
[ 1180.163922][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 1180.164002][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 1181.413805][T24307] usb 4-1: new high-speed USB device number 113 using dummy_hcd
[ 1181.578677][T24307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1181.578717][T24307] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1181.578759][T24307] usb 4-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[ 1181.578785][T24307] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1181.737785][T24307] usb 4-1: config 0 descriptor??
[ 1181.857205][T30635] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11647'.
[ 1181.857240][T30635] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11647'.
[ 1182.358127][T24307] playstation 0003:054C:0DF2.001F: unknown main item tag 0x0
[ 1182.358169][T24307] playstation 0003:054C:0DF2.001F: unknown main item tag 0x0
[ 1182.358196][T24307] playstation 0003:054C:0DF2.001F: unknown main item tag 0x0
[ 1182.358223][T24307] playstation 0003:054C:0DF2.001F: unknown main item tag 0x0
[ 1182.358250][T24307] playstation 0003:054C:0DF2.001F: unknown main item tag 0x0
[ 1182.448264][T30641] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1182.462515][T29776] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1182.518638][T24307] playstation 0003:054C:0DF2.001F: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.3-1/input0
[ 1182.813092][T24307] playstation 0003:054C:0DF2.001F: Failed to retrieve feature with reportID 32: -71
[ 1182.813126][T24307] playstation 0003:054C:0DF2.001F: Failed to retrieve DualSense firmware info: -71
[ 1182.813187][T24307] playstation 0003:054C:0DF2.001F: Failed to get firmware info from DualSense
[ 1182.813204][T24307] playstation 0003:054C:0DF2.001F: Failed to create dualsense.
[ 1183.001019][T24307] playstation 0003:054C:0DF2.001F: probe with driver playstation failed with error -71
[ 1183.042919][T24307] usb 4-1: USB disconnect, device number 113
[ 1185.336836][T30690] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11673'.
[ 1186.040323][T30706] netlink: 28 bytes leftover after parsing attributes in process `syz.4.11680'.
[ 1187.983028][T30740] netlink: 176 bytes leftover after parsing attributes in process `syz.4.11695'.
[ 1190.404421][   T31] usb 4-1: new full-speed USB device number 114 using dummy_hcd
[ 1190.582848][   T31] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1190.582887][   T31] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1190.582936][   T31] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1190.582962][   T31] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1190.871315][   T31] usb 4-1: usb_control_msg returned -32
[ 1190.871375][   T31] usbtmc 4-1:16.0: can't read capabilities
[ 1191.185271][T24307] usb 2-1: new high-speed USB device number 98 using dummy_hcd
[ 1191.325143][T30792] usb 4-1: usbtmc_ioctl_clear_in_halt returned -32
[ 1191.361280][ T5970] usb 4-1: USB disconnect, device number 114
[ 1191.367403][T24307] usb 2-1: Using ep0 maxpacket: 16
[ 1191.379015][T24307] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1191.379053][T24307] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1191.379100][T24307] usb 2-1: New USB device found, idVendor=0566, idProduct=3004, bcdDevice= 0.00
[ 1191.379127][T24307] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1191.418842][T24307] usb 2-1: config 0 descriptor??
[ 1191.892989][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893029][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893056][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893083][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893110][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893137][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893174][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893202][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893228][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.893255][T24307] monterey 0003:0566:3004.0020: unknown main item tag 0x0
[ 1191.987348][T24307] monterey 0003:0566:3004.0020: hidraw0: USB HID v0.0b Device [HID 0566:3004] on usb-dummy_hcd.1-1/input0
[ 1192.134601][T24307] usb 2-1: USB disconnect, device number 98
[ 1192.754211][T30831] fido_id[30831]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[ 1193.768521][T30853] netlink: 'syz.1.11744': attribute type 10 has an invalid length.
[ 1193.768547][T30853] netlink: 55 bytes leftover after parsing attributes in process `syz.1.11744'.
[ 1194.105324][T30853] batman_adv: batadv0: Interface deactivated: virt_wifi0
[ 1194.969573][T30853] batman_adv: batadv0: Removing interface: virt_wifi0
[ 1195.003306][T30872] Invalid argument reading file caps for ./file0
[ 1195.536897][T14012] smbdirect: ib_dev[syz2] removed
[ 1195.892021][ T5970] virt_wifi0 speed is unknown, defaulting to 1000
[ 1195.916374][ T5970] infiniband syz2: ib_query_port failed (-19)
[ 1195.987124][T30890] netlink: 'syz.4.11760': attribute type 62 has an invalid length.
[ 1196.454658][   T36] kauditd_printk_skb: 3 callbacks suppressed
[ 1196.454680][   T36] audit: type=1326 audit(1777374984.248:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=30893 comm="syz.4.11762" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f59d714c819 code=0x0
[ 1196.808447][T30910] CUSE: unknown device info "fffffffff,wfdno"
[ 1196.808470][T30910] CUSE: unknown device info "/dev/cuse"
[ 1196.808480][T30910] CUSE: DEVNAME unspecified
[ 1207.141846][T31132] input: syz0 as /devices/virtual/input/input44
[ 1207.274212][T24307] usb 5-1: new high-speed USB device number 97 using dummy_hcd
[ 1207.382594][T31141] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1207.458629][T24307] usb 5-1: Using ep0 maxpacket: 16
[ 1207.484862][T24307] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 1207.484902][T24307] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1207.487298][T24307] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1207.487330][T24307] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1207.487343][T24307] usb 5-1: Product: syz
[ 1207.487352][T24307] usb 5-1: Manufacturer: syz
[ 1207.487361][T24307] usb 5-1: SerialNumber: syz
[ 1207.563427][T24307] usb 5-1: config 0 descriptor??
[ 1207.629717][T24307] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1207.629755][T24307] em28xx 5-1:0.0: Audio interface 0 found (Vendor Class)
[ 1208.288200][T24307] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[ 1208.304269][T24307] em28xx 5-1:0.0: Config register raw data: 0x41
[ 1208.326081][T31157] netlink: 20 bytes leftover after parsing attributes in process `syz.0.11882'.
[ 1208.661176][ T5836] usb 5-1: USB disconnect, device number 97
[ 1208.724667][ T5836] em28xx 5-1:0.0: Disconnecting em28xx
[ 1209.067698][ T5836] em28xx 5-1:0.0: Freeing device
[ 1209.217553][T13504] Bluetooth: hci4: Dropping invalid advertising data
[ 1209.217595][T13504] Bluetooth: hci4: Malformed LE Event: 0x02
[ 1211.811623][T31233] netlink: 'syz.3.11915': attribute type 6 has an invalid length.
[ 1212.242608][T31239] overlayfs: fs on './cgroup' does not support file handles, falling back to index=off,nfs_export=off.
[ 1213.466060][T31276] trusted_key: syz.4.11933 sent an empty control message without MSG_MORE.
[ 1214.766684][T31306] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1215.633153][T14014] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1219.502525][T31415] input: syz1 as /devices/virtual/input/input45
[ 1220.876618][T24307] usb 4-1: new full-speed USB device number 115 using dummy_hcd
[ 1221.064504][T24307] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[ 1221.064539][T24307] usb 4-1: config 0 has no interface number 0
[ 1221.064591][T24307] usb 4-1: config 0 interface 41 has no altsetting 0
[ 1221.099677][T24307] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[ 1221.099711][T24307] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1221.099732][T24307] usb 4-1: Product: syz
[ 1221.099748][T24307] usb 4-1: Manufacturer: syz
[ 1221.099764][T24307] usb 4-1: SerialNumber: syz
[ 1221.176539][T24307] usb 4-1: config 0 descriptor??
[ 1222.140499][T24307] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffe0
[ 1222.362815][T24307] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): Failed to send software reset:ffffffb9
[ 1222.362849][T24307] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): Failed to power down PHY : -71
[ 1222.363146][T24307] CoreChips 4-1:0.41: probe with driver CoreChips failed with error -71
[ 1222.469034][T24307] usb 4-1: USB disconnect, device number 115
[ 1225.178665][ T5834] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1225.316909][ T5834] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1225.320767][ T5834] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1225.338955][ T5834] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1225.367628][ T5834] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1227.672282][T13504] Bluetooth: hci4: command tx timeout
[ 1227.881332][T14014] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1229.848413][T14014] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1229.900962][T13504] Bluetooth: hci4: command tx timeout
[ 1231.141333][ T5970] usb 2-1: new high-speed USB device number 99 using dummy_hcd
[ 1231.312038][ T5970] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1231.312071][ T5970] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1231.315668][ T5970] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1231.315701][ T5970] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1231.315725][ T5970] usb 2-1: SerialNumber: syz
[ 1231.777428][ T5970] usb 2-1: 0:2 : does not exist
[ 1231.920952][ T5970] usb 2-1: USB disconnect, device number 99
[ 1232.103595][ T6170] udevd[6170]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1232.121067][T13504] Bluetooth: hci4: command tx timeout
[ 1232.611830][T14014] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1233.940215][   T36] audit: type=1326 audit(1777375275.317:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31685 comm="syz.1.12103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1233.940676][   T36] audit: type=1326 audit(1777375275.317:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31685 comm="syz.1.12103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1233.940946][   T36] audit: type=1326 audit(1777375275.317:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31685 comm="syz.1.12103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc67b43c819 code=0x7ffc0000
[ 1234.353807][T13504] Bluetooth: hci4: command tx timeout
[ 1234.720541][T14014] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1237.238367][T31501] chnl_net:caif_netlink_parms(): no params data found
[ 1237.918751][T31748] binder: 31746:31748 ioctl c018620c 200000000000 returned -22
[ 1239.508957][T31781] ������: renamed from vlan0 (while UP)
[ 1240.094561][T31501] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1240.094702][T31501] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1240.095127][T31501] bridge_slave_0: entered allmulticast mode
[ 1240.181769][T31501] bridge_slave_0: entered promiscuous mode
[ 1240.242064][T31501] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1240.246193][T31501] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1240.246446][T31501] bridge_slave_1: entered allmulticast mode
[ 1240.259868][T31501] bridge_slave_1: entered promiscuous mode
[ 1240.942354][T31501] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1240.992913][T31501] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1241.960821][T14014] bridge0: port 4(batadv0) entered disabled state
[ 1242.601047][T14014] bond0: left allmulticast mode
[ 1242.601076][T14014] bond_slave_0: left allmulticast mode
[ 1242.601216][T14014] bond_slave_1: left allmulticast mode
[ 1242.601421][T14014] bond0: left promiscuous mode
[ 1242.601435][T14014] bond_slave_0: left promiscuous mode
[ 1242.603357][T14014] bond_slave_1: left promiscuous mode
[ 1242.659508][T14014] bridge0: port 3(bond0) entered disabled state
[ 1242.907911][T14014] bridge_slave_0: left allmulticast mode
[ 1242.907944][T14014] bridge_slave_0: left promiscuous mode
[ 1242.973429][T14014] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1243.739550][T31872] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12179'.
[ 1245.820489][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 1245.820606][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 1248.918928][T14019] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1251.555766][T14014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1251.643337][T14014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1251.691166][T14014] bond0 (unregistering): Released all slaves
[ 1251.719114][T14014] bond1 (unregistering): Released all slaves
[ 1251.751035][T14014] bond2 (unregistering): Released all slaves
[ 1251.812057][T14014] bond3 (unregistering): Released all slaves
[ 1252.034746][T14014] bond4 (unregistering): Released all slaves
[ 1253.571694][T32002] netlink: 428 bytes leftover after parsing attributes in process `syz.4.12242'.
[ 1253.651396][T31872] vxlan1: entered promiscuous mode
[ 1254.160352][T31624] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1254.160474][T32002] netlink: 24 bytes leftover after parsing attributes in process `syz.4.12242'.
[ 1254.357581][T31624] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1254.402111][T31501] team0: Port device team_slave_0 added
[ 1254.455924][   T96] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1254.459659][T31501] team0: Port device team_slave_1 added
[ 1254.465734][   T96] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1254.842330][T31501] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1254.842350][T31501] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1254.853969][T31501] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1254.887910][T31501] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1254.887927][T31501] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1254.887954][T31501] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1256.058806][T31501] hsr_slave_0: entered promiscuous mode
[ 1256.084825][T31501] hsr_slave_1: entered promiscuous mode
[ 1256.103849][T31501] debugfs: 'hsr0' already exists in 'hsr'
[ 1256.103881][T31501] Cannot create hsr debugfs directory
[ 1259.647571][T24307] usb 5-1: new full-speed USB device number 98 using dummy_hcd
[ 1259.760796][T32128] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1259.820883][T24307] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1259.820920][T24307] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1259.820966][T24307] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1259.820993][T24307] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1260.233724][T24307] usb 5-1: usb_control_msg returned -32
[ 1260.233782][T24307] usbtmc 5-1:16.0: can't read capabilities
[ 1260.839863][ T5479] 8021q: adding VLAN 0 to HW filter on device eth1
[ 1262.665604][ T5836] usb 5-1: USB disconnect, device number 98
[ 1263.259107][T32186] netlink: 12 bytes leftover after parsing attributes in process `syz.1.12314'.
[ 1263.621109][T32184] batadv_slave_0: entered promiscuous mode
[ 1263.633357][T32186] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1264.537981][T32186] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1268.576762][ T5479] 8021q: adding VLAN 0 to HW filter on device eth2
[ 1273.678990][T31501] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1273.944406][T31501] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1274.230112][T31501] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1274.460377][T31501] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1274.772274][ T5479] 8021q: adding VLAN 0 to HW filter on device eth3
[ 1275.984176][T31501] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1276.165261][T31501] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1276.364921][T32457] netlink: 'syz.1.12414': attribute type 2 has an invalid length.
[ 1276.477708][T31501] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1276.926618][T31501] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1277.742250][T14014] hsr_slave_0: left promiscuous mode
[ 1277.801719][T14014] hsr_slave_1: left promiscuous mode
[ 1277.822099][T14014] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1277.860251][T14014] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1277.860409][T14014] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1277.905967][T14014] batman_adv: batadv0: Interface deactivated: dummy0
[ 1277.905999][T14014] batman_adv: batadv0: Removing interface: dummy0
[ 1278.688348][T14014] team_slave_0: left promiscuous mode
[ 1278.688406][T14014] team_slave_1: left promiscuous mode
[ 1278.688985][T14014] batadv_slave_1: left promiscuous mode
[ 1278.862256][T14014] veth1_macvtap: left promiscuous mode
[ 1279.051004][T14014] veth0_macvtap: left promiscuous mode
[ 1279.183464][T14014] veth1_vlan: left promiscuous mode
[ 1279.279711][T14014] veth0_vlan: left promiscuous mode
[ 1280.457195][   T36] audit: type=1326 audit(1777375318.831:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32542 comm="syz.1.12448" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc67b43c819 code=0x0
[ 1281.796727][T14014] team0 (unregistering): Port device vlan4 removed
[ 1282.190805][T29776] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1284.437530][T32606] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12479'.
[ 1284.472688][ T5970] usb 5-1: new high-speed USB device number 99 using dummy_hcd
[ 1284.671877][ T5970] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1284.671914][ T5970] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1284.671936][ T5970] usb 5-1: Product: syz
[ 1284.671953][ T5970] usb 5-1: Manufacturer: syz
[ 1284.671969][ T5970] usb 5-1: SerialNumber: syz
[ 1284.734308][ T5970] usb 5-1: config 0 descriptor??
[ 1284.885198][T14014] team0 (unregistering): Port device team_slave_1 removed
[ 1285.105022][T14014] team0 (unregistering): Port device team_slave_0 removed
[ 1286.052805][ T5970] usb 5-1: Firmware version (0.0) predates our first public release.
[ 1286.052838][ T5970] usb 5-1: Please update to version 0.2 or newer
[ 1287.057131][T32642] Bluetooth: hci0: service_discovery: expected 4 bytes, got 7 bytes
[ 1288.083134][ T5970] usb 5-1: USB disconnect, device number 99
[ 1289.596029][   T31] usb 2-1: new high-speed USB device number 100 using dummy_hcd
[ 1291.235242][ T5834] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1291.365267][ T5834] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1291.454222][ T5834] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1291.487661][ T5834] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1291.489694][ T5834] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1292.896793][   T31] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1292.897909][   T31] usb 2-1: unable to read config index 0 descriptor/start: -71
[ 1292.897947][   T31] usb 2-1: can't read configurations, error -71
[ 1294.039476][T13504] Bluetooth: hci5: command tx timeout
[ 1294.157103][ T5829] usb 5-1: new full-speed USB device number 100 using dummy_hcd
[ 1294.370512][ T5829] usb 5-1: config 0 has no interfaces?
[ 1294.370555][ T5829] usb 5-1: New USB device found, idVendor=0fef, idProduct=72c4, bcdDevice= 0.00
[ 1294.370594][ T5829] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1294.392134][ T5829] usb 5-1: config 0 descriptor??
[ 1295.230602][T32688] usb 5-1: USB disconnect, device number 100
[ 1295.591844][ T5479] 8021q: adding VLAN 0 to HW filter on device eth4
[ 1296.056678][    T9] usb 4-1: new high-speed USB device number 116 using dummy_hcd
[ 1296.213083][    T9] usb 4-1: Using ep0 maxpacket: 32
[ 1296.216125][    T9] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[ 1296.216161][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1296.246920][T14014] IPVS: stop unused estimator thread 0...
[ 1296.262979][T13504] Bluetooth: hci5: command tx timeout
[ 1296.266122][    T9] usb 4-1: config 0 descriptor??
[ 1296.289654][    T9] gspca_main: sunplus-2.14.0 probing 041e:400b
[ 1297.804760][    T9] gspca_sunplus: reg_w_riv err -71
[ 1297.804888][    T9] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[ 1297.884980][    T9] usb 4-1: USB disconnect, device number 116
[ 1298.471710][T32682] chnl_net:caif_netlink_parms(): no params data found
[ 1298.487920][T13504] Bluetooth: hci5: command tx timeout
[ 1300.730225][T13504] Bluetooth: hci5: command tx timeout
[ 1304.864428][T32682] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1304.864560][T32682] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1304.864839][T32682] bridge_slave_0: entered allmulticast mode
[ 1304.908773][T32682] bridge_slave_0: entered promiscuous mode
[ 1306.299271][T32682] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1306.299411][T32682] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1306.299665][T32682] bridge_slave_1: entered allmulticast mode
[ 1306.326613][T32682] bridge_slave_1: entered promiscuous mode
[ 1306.766240][T21652] syz_tun (unregistering): left allmulticast mode
[ 1306.766272][T21652] syz_tun (unregistering): left promiscuous mode
[ 1306.766389][T21652] bridge0: port 4(syz_tun) entered disabled state
[ 1308.214976][   T31] usb 2-1: new high-speed USB device number 102 using dummy_hcd
[ 1308.272983][T32682] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1308.310735][T32682] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1308.396716][   T31] usb 2-1: Using ep0 maxpacket: 16
[ 1308.399193][   T31] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 1308.399228][   T31] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1308.403206][   T31] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1308.403241][   T31] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1308.403262][   T31] usb 2-1: Product: syz
[ 1308.403278][   T31] usb 2-1: Manufacturer: syz
[ 1308.403295][   T31] usb 2-1: SerialNumber: syz
[ 1308.404463][T32682] team0: Port device team_slave_0 added
[ 1308.479758][T32682] team0: Port device team_slave_1 added
[ 1308.535861][   T31] usb 2-1: config 0 descriptor??
[ 1308.575335][   T31] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1308.575375][   T31] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[ 1308.879866][T32682] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1308.880045][T32682] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1308.880074][T32682] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1308.896448][T32682] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1308.896467][T32682] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1308.896819][T32682] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1309.231817][   T31] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[ 1309.234086][   T31] em28xx 2-1:0.0: Config register raw data: 0x2f
[ 1309.234114][   T31] em28xx 2-1:0.0: I2S Audio (1 sample rate(s))
[ 1309.234131][   T31] em28xx 2-1:0.0: No AC97 audio processor
[ 1309.941386][   T31] usb 2-1: USB disconnect, device number 102
[ 1310.297136][T32682] hsr_slave_0: entered promiscuous mode
[ 1310.301595][T32682] hsr_slave_1: entered promiscuous mode
[ 1310.837285][ T5834] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1310.920241][ T5834] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1310.961474][ T5834] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1310.997066][ T5834] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1311.000937][ T5834] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1311.562991][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 1311.563202][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 1312.807915][T14014] bridge_slave_1: left allmulticast mode
[ 1312.807948][T14014] bridge_slave_1: left promiscuous mode
[ 1312.808220][T14014] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1312.908509][T14014] bridge_slave_0: left allmulticast mode
[ 1312.908540][T14014] bridge_slave_0: left promiscuous mode
[ 1312.988868][T14014] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1313.551815][ T5834] Bluetooth: hci3: command tx timeout
[ 1314.257669][T14014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1314.493686][T14014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1314.589384][T14014] bond0 (unregistering): Released all slaves
[ 1315.764486][ T5834] Bluetooth: hci3: command tx timeout
[ 1316.360241][T14014] hsr_slave_0: left promiscuous mode
[ 1316.396511][T14014] hsr_slave_1: left promiscuous mode
[ 1316.401570][T14014] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1316.449688][T14014] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1317.992629][ T5834] Bluetooth: hci3: command tx timeout
[ 1319.571507][T14014] team0 (unregistering): Port device team_slave_1 removed
[ 1319.772927][T14014] team0 (unregistering): Port device team_slave_0 removed
[ 1320.210648][ T5834] Bluetooth: hci3: command tx timeout
[ 1326.354388][ T5479] 8021q: adding VLAN 0 to HW filter on device eth5
[ 1327.285411][  T576] chnl_net:caif_netlink_parms(): no params data found
[ 1331.087264][ T1007] overlayfs: fs on './cgroup' does not support file handles, falling back to index=off,nfs_export=off.
[ 1333.167127][  T576] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1333.167323][  T576] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1333.167714][  T576] bridge_slave_0: entered allmulticast mode
[ 1333.207183][  T576] bridge_slave_0: entered promiscuous mode
[ 1333.259326][  T576] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1333.259450][  T576] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1333.259690][  T576] bridge_slave_1: entered allmulticast mode
[ 1333.279013][  T576] bridge_slave_1: entered promiscuous mode
[ 1333.834117][  T576] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1333.849205][  T576] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1335.267526][  T576] team0: Port device team_slave_0 added
[ 1335.354466][  T576] team0: Port device team_slave_1 added
[ 1336.782625][  T576] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1336.782648][  T576] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1336.782676][  T576] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1336.787830][  T576] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1336.787848][  T576] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1336.787875][  T576] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1339.340386][  T576] hsr_slave_0: entered promiscuous mode
[ 1339.356732][  T576] hsr_slave_1: entered promiscuous mode
[ 1339.357869][  T576] debugfs: 'hsr0' already exists in 'hsr'
[ 1339.357899][  T576] Cannot create hsr debugfs directory
[ 1340.701357][ T1224] bridge0: port 3(team0) entered disabled state
[ 1340.724697][ T1224] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1340.735002][ T1224] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1342.148397][ T1224] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1345.874662][T31642] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1345.874706][T31642] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1346.316511][T31642] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1346.316552][T31642] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1346.423242][T31642] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1346.423283][T31642] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1346.423332][T31642] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1346.423360][T31642] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1347.286668][T32682] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1347.585379][T32682] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1347.713645][T32682] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1347.864255][T32682] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1349.448091][T32682] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1349.541390][T32682] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1349.690050][T32682] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1349.802499][ T5824] ath6kl: Failed to submit usb control message: -71
[ 1349.802559][ T5824] ath6kl: unable to send the bmi data to the device: -71
[ 1349.802575][ T5824] ath6kl: Unable to send get target info: -71
[ 1349.852808][ T5824] ath6kl: Failed to init ath6kl core: -71
[ 1349.854532][ T5824] ath6kl_usb 3-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1349.904355][T32682] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1349.924876][ T5824] usb 3-1: USB disconnect, device number 5
[ 1351.739260][T14014] bridge0: port 3(dummy0) entered disabled state
[ 1351.895086][T14014] bridge_slave_1: left allmulticast mode
[ 1351.895120][T14014] bridge_slave_1: left promiscuous mode
[ 1351.895430][T14014] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1352.014541][T14014] �x9�: left allmulticast mode
[ 1352.014574][T14014] �x9�: left promiscuous mode
[ 1352.014836][T14014] bridge0: port 1(
1�x9�) entered disabled state
[ 1352.169539][T14014] dvmrp1: left allmulticast mode
[ 1353.538136][T13504] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1353.661898][T13504] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1353.665400][T13504] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1353.668949][T13504] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1353.669787][T13504] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1354.755054][T14014] smc: removing net device bridge0 with user defined pnetid SYZ1
[ 1355.747132][T14014] bond0 (unregistering): (slave 
4
5��): Releasing backup interface
[ 1355.806967][T14014] ��: left allmulticast mode
[ 1355.842665][T14014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1355.901149][T14014] bond_slave_1: left allmulticast mode
[ 1355.901726][T14014] bond0 (unregistering): Released all slaves
[ 1355.952172][T14014] bond1 (unregistering): Released all slaves
[ 1355.970880][T13504] Bluetooth: hci4: command tx timeout
[ 1357.848673][T14014] l2: left promiscuous mode
[ 1358.182934][T13504] Bluetooth: hci4: command tx timeout
[ 1360.102162][ T5479] 8021q: adding VLAN 0 to HW filter on device eth7
[ 1360.418450][T13504] Bluetooth: hci4: command tx timeout
[ 1360.456957][T14014] tipc: Left network mode
[ 1362.560735][T14014] rxrpc: Call ffff88803b7b5780 still in use (1,Complete,1409,0)!
[ 1362.634833][T13504] Bluetooth: hci4: command tx timeout
[ 1363.233876][  T576] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1363.247468][ T1747] trusted_key: encrypted_key: master key parameter '�(�o�����f�)NIS��K�(���p{q'�3����j��Q����' is invalid
[ 1363.408164][  T576] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1363.483734][  T576] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1363.678187][  T576] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1363.864220][  T576] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1364.300799][  T576] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1364.323236][  T576] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1364.470264][  T576] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1365.110046][ T5479] 8021q: adding VLAN 0 to HW filter on device eth8
[ 1365.504755][ T1527] chnl_net:caif_netlink_parms(): no params data found
[ 1367.301266][ T1527] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1367.301499][ T1527] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1367.304541][ T1527] bridge_slave_0: entered allmulticast mode
[ 1367.312126][ T1527] bridge_slave_0: entered promiscuous mode
[ 1367.333883][ T1527] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1367.339209][ T1527] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1367.339490][ T1527] bridge_slave_1: entered allmulticast mode
[ 1367.348519][ T1527] bridge_slave_1: entered promiscuous mode
[ 1367.778520][ T1527] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1367.853355][  T576] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1367.872314][ T1527] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1368.251230][ T1527] team0: Port device team_slave_0 added
[ 1368.260897][ T1527] team0: Port device team_slave_1 added
[ 1369.582870][  T576] 8021q: adding VLAN 0 to HW filter on device team0
[ 1369.587753][ T1527] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1369.587772][ T1527] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1369.587802][ T1527] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1369.604294][ T1527] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1369.604312][ T1527] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1369.604340][ T1527] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1369.713001][T31624] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1369.713091][T31624] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1370.241439][T14016] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1370.255399][T14016] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1370.342703][ T1527] hsr_slave_0: entered promiscuous mode
[ 1370.363845][ T1527] hsr_slave_1: entered promiscuous mode
[ 1370.372169][ T1527] debugfs: 'hsr0' already exists in 'hsr'
[ 1370.372207][ T1527] Cannot create hsr debugfs directory
[ 1374.448514][ T5834] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1374.525247][ T5834] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1374.541667][ T5834] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1374.547042][ T5834] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1374.590770][ T5834] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1377.401092][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 1377.412205][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 1377.583819][T13504] Bluetooth: hci5: command tx timeout
[ 1378.151823][ T2093] binder_alloc: 2087: binder_alloc_buf, no vma
[ 1379.735610][T13504] Bluetooth: hci5: command tx timeout
[ 1379.794341][ T2122] could not allocate digest TFM handle md5
[ 1380.276812][ T5479] 8021q: adding VLAN 0 to HW filter on device eth5
[ 1380.384549][ T2154] netlink: 20 bytes leftover after parsing attributes in process `syz.1.13282'.
[ 1380.490291][ T2158] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13282'.
[ 1381.223683][ T2179] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1381.958816][T13504] Bluetooth: hci5: command tx timeout
[ 1382.544018][ T2017] chnl_net:caif_netlink_parms(): no params data found
[ 1384.182491][T13504] Bluetooth: hci5: command tx timeout
[ 1385.258592][ T5479] 8021q: adding VLAN 0 to HW filter on device eth6
[ 1385.333550][ T2017] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1385.335384][ T2017] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1385.335659][ T2017] bridge_slave_0: entered allmulticast mode
[ 1385.365511][ T2017] bridge_slave_0: entered promiscuous mode
[ 1385.736748][ T2017] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1385.736906][ T2017] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1385.737172][ T2017] bridge_slave_1: entered allmulticast mode
[ 1385.781802][ T2017] bridge_slave_1: entered promiscuous mode
[ 1386.281861][ T2017] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1386.320163][ T2017] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1386.593966][ T2017] team0: Port device team_slave_0 added
[ 1386.676280][ T2017] team0: Port device team_slave_1 added
[ 1386.778710][ T1527] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1386.880563][ T1527] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1387.015828][ T1527] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1387.289775][ T1527] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1387.305985][ T2017] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1387.306005][ T2017] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1387.306035][ T2017] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1387.309563][ T1527] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1387.398516][ T1527] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1387.404103][ T2017] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1387.404121][ T2017] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1387.404149][ T2017] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1387.473196][ T1527] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1387.621111][ T1527] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1388.158023][ T2017] hsr_slave_0: entered promiscuous mode
[ 1388.161481][ T2017] hsr_slave_1: entered promiscuous mode
[ 1388.183594][ T2017] debugfs: 'hsr0' already exists in 'hsr'
[ 1388.183628][ T2017] Cannot create hsr debugfs directory
[ 1390.133571][ T1527] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1390.292730][ T1527] 8021q: adding VLAN 0 to HW filter on device team0
[ 1393.507386][T14019] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1393.507557][T14019] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1393.684844][T31624] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1393.685001][T31624] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1395.889059][ T2500] netlink: 100 bytes leftover after parsing attributes in process `syz.1.13404'.
[ 1395.889092][ T2500] netlink: 100 bytes leftover after parsing attributes in process `syz.1.13404'.
[ 1401.230532][ T1527] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1403.343495][ T1527] veth0_vlan: entered promiscuous mode
[ 1403.444115][ T1527] veth1_vlan: entered promiscuous mode
[ 1404.812182][ T1527] veth0_macvtap: entered promiscuous mode
[ 1405.013112][ T1527] veth1_macvtap: entered promiscuous mode
[ 1406.068693][ T1527] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1406.192834][ T1527] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1406.255971][ T2017] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1406.288186][ T2017] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1406.313939][ T2017] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1406.395003][ T2017] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1406.405609][T22537] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1406.411411][ T2017] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1406.816752][ T2017] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1406.818784][T22537] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1406.823911][T22537] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1406.880659][T22537] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1406.888763][ T2017] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1406.941556][ T2017] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1407.077281][T20235] usb 2-1: new full-speed USB device number 103 using dummy_hcd
[ 1407.249250][T20235] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1407.249316][T20235] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1407.249349][T20235] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 65535, setting to 64
[ 1407.249380][T20235] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[ 1407.258940][T20235] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1407.258976][T20235] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1407.258999][T20235] usb 2-1: Manufacturer: syz
[ 1407.336719][T20235] usb 2-1: config 0 descriptor??
[ 1407.765844][T20235] rc_core: IR keymap rc-hauppauge not found
[ 1407.765870][T20235] Registered IR keymap rc-empty
[ 1407.768064][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1407.790908][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1407.817229][T20235] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[ 1407.873891][T20235] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input46
[ 1408.238539][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.258132][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.279731][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.318542][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.339573][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.354293][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.383451][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.397036][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.437232][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.450433][T20235] mceusb 2-1:0.0: Error: mce write urb status = -71
[ 1408.499708][T20235] mceusb 2-1:0.0: Registered 424242424242 with mce emulator interface version 1
[ 1408.499739][T20235] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1408.667138][T24308] usb 2-1: USB disconnect, device number 103
[ 1409.314171][T31630] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1409.314197][T31630] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1409.834142][T22537] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1409.834168][T22537] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1409.967603][ T2017] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1410.152568][ T2017] 8021q: adding VLAN 0 to HW filter on device team0
[ 1410.219645][T31624] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1410.219939][T31624] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1410.352243][T31624] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1410.352388][T31624] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1412.983617][ T2017] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1413.983691][ T2958] netlink: 104 bytes leftover after parsing attributes in process `syz.5.13542'.
[ 1416.397547][ T2017] veth0_vlan: entered promiscuous mode
[ 1416.488103][ T2017] veth1_vlan: entered promiscuous mode
[ 1416.563200][ T2017] veth0_macvtap: entered promiscuous mode
[ 1416.583238][ T2017] veth1_macvtap: entered promiscuous mode
[ 1416.610353][ T2017] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1416.616575][ T2017] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1416.773724][T31642] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1416.775310][T31642] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1416.775588][T31642] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1416.775861][T31642] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1424.790441][   T96] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1424.790467][   T96] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1425.192244][T31642] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1425.192285][T31642] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1425.445830][ T3100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13595'.
[ 1425.520528][ T3100] macvtap1: entered promiscuous mode
[ 1425.520681][ T3100] bridge0: entered promiscuous mode
[ 1425.520924][ T3100] macvtap1: entered allmulticast mode
[ 1425.520941][ T3100] bridge0: entered allmulticast mode
[ 1435.521043][T24307] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[ 1435.796609][T24307] usb 7-1: Using ep0 maxpacket: 8
[ 1435.802293][T24307] usb 7-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[ 1435.802330][T24307] usb 7-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[ 1435.802353][T24307] usb 7-1: Product: syz
[ 1435.802370][T24307] usb 7-1: Manufacturer: syz
[ 1435.802387][T24307] usb 7-1: SerialNumber: syz
[ 1435.953044][T24307] usb 7-1: config 0 descriptor??
[ 1436.970085][T24307] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[ 1438.065118][T24307] gspca_zc3xx: reg_r err -110
[ 1438.065221][T24307] gspca_zc3xx 7-1:0.0: probe with driver gspca_zc3xx failed with error -110
[ 1438.608130][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1438.808926][ T3252] overlayfs: overlapping lowerdir path
[ 1439.501286][    T9] usb 7-1: USB disconnect, device number 2
[ 1443.843909][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 1443.844001][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 1459.732775][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1459.764853][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1459.786240][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1459.850375][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1459.861064][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1459.871762][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1459.882449][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1459.893151][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1459.903832][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1469.921651][ T6109] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[ 1475.516145][ T3640] ptrace attach of "./syz-executor exec"[5814] was attempted by "./syz-executor exec"[3640]
[ 1476.773922][T24307] usb 2-1: new high-speed USB device number 104 using dummy_hcd
[ 1476.934664][T24307] usb 2-1: Using ep0 maxpacket: 32
[ 1476.950437][T24307] usb 2-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f
[ 1476.950472][T24307] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1476.950496][T24307] usb 2-1: Product: syz
[ 1476.950532][T24307] usb 2-1: Manufacturer: syz
[ 1476.950548][T24307] usb 2-1: SerialNumber: syz
[ 1477.001667][T24307] usb 2-1: config 0 descriptor??
[ 1477.020538][T24307] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state.
[ 1477.022380][T24307] dvb-usb: bulk message failed: -22 (4/0)
[ 1477.022402][T24307] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1477.022549][T24307] dvb-usb: bulk message failed: -22 (5/0)
[ 1477.022568][T24307] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1477.041604][ T3667] netlink: 'syz.6.13802': attribute type 4 has an invalid length.
[ 1477.087893][T24307] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1477.090339][T24307] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0)
[ 1477.090406][T24307] usb 2-1: media controller created
[ 1477.106758][ T3669] netlink: 'syz.6.13802': attribute type 4 has an invalid length.
[ 1477.156362][T24307] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1477.207784][T24307] usb 2-1: selecting invalid altsetting 3
[ 1477.207807][T24307] ttusb2: set interface to alts=3 failed
[ 1477.502618][T24307] DVB: Unable to find symbol tda10086_attach()
[ 1477.502638][T24307] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0'
[ 1477.529325][T24307] dvb-usb: bulk message failed: -22 (4/0)
[ 1477.529351][T24307] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1477.529496][T24307] dvb-usb: bulk message failed: -22 (5/0)
[ 1477.529513][T24307] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0)
[ 1477.529589][T24307] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected.
[ 1477.846775][ T3685] dvb-usb: bulk message failed: -22 (7/0)
[ 1477.846802][ T3685] ttusb2: there might have been an error during control message transfer. (rlen = 3, was 0)
[ 1477.846945][ T3685] ttusb2: i2c transfer failed.
[ 1478.652514][    T9] kernel read not supported for file /cpu/0/msr (pid: 9 comm: kworker/0:0)
[ 1480.372510][    T9] usb 2-1: USB disconnect, device number 104
[ 1480.487970][    T9] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected.
[ 1489.829732][T31510] Bluetooth: hci4: command 0x0406 tx timeout
[ 1489.857663][T20235] hid_parser_main: 26 callbacks suppressed
[ 1489.857693][T20235] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[ 1490.374549][T20235] hid-generic 0000:0000:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1490.761135][ T3846] fido_id[3846]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1500.926429][ T3943] hpfs: Bad magic ... probably not HPFS
[ 1501.473746][ T3953] overlayfs: overlapping lowerdir path
[ 1504.310764][ T3997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13928'.
[ 1504.310797][ T3997] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13928'.
[ 1508.543063][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 1508.543144][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 1513.697539][ T4099] evm: overlay not supported
[ 1518.799495][   T37] INFO: task kworker/u8:4:14014 blocked for more than 143 seconds.
[ 1518.799602][   T37]       Tainted: G             L      syzkaller #0
[ 1518.799777][   T37] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1518.799818][   T37] task:kworker/u8:4    state:D stack:22296 pid:14014 tgid:14014 ppid:2      task_flags:0x4208060 flags:0x00080000
[ 1518.799919][   T37] Workqueue: netns cleanup_net
[ 1518.800108][   T37] Call Trace:
[ 1518.800145][   T37]  <TASK>
[ 1518.800188][   T37]  __schedule+0x1681/0x54c0
[ 1518.800405][   T37]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1518.800505][   T37]  ? rt_spin_lock+0x1e0/0x400
[ 1518.800600][   T37]  ? __pfx___schedule+0x10/0x10
[ 1518.800704][   T37]  ? schedule+0x90/0x360
[ 1518.800752][   T37]  schedule+0x164/0x360
[ 1518.800964][   T37]  rxrpc_destroy_all_calls+0x44e/0x570
[ 1518.801156][   T37]  ? __pfx_rxrpc_destroy_all_calls+0x10/0x10
[ 1518.801228][   T37]  ? __pfx_var_wake_function+0x10/0x10
[ 1518.801285][   T37]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1518.801342][   T37]  ? __timer_delete_sync+0x53e/0x610
[ 1518.801432][   T37]  rxrpc_exit_net+0x6f/0xc0
[ 1518.801562][   T37]  ops_undo_list+0x49f/0x940
[ 1518.801657][   T37]  ? rt_spin_unlock+0x180/0x200
[ 1518.801732][   T37]  ? __pfx_ops_undo_list+0x10/0x10
[ 1518.801803][   T37]  ? rt_spin_unlock+0x14f/0x200
[ 1518.801910][   T37]  ? idr_destroy+0x21b/0x2a0
[ 1518.802111][   T37]  ? rt_spin_unlock+0x160/0x200
[ 1518.802179][   T37]  cleanup_net+0x56e/0x800
[ 1518.802272][   T37]  ? __pfx_cleanup_net+0x10/0x10
[ 1518.802370][   T37]  ? process_scheduled_works+0xa70/0x1860
[ 1518.802496][   T37]  ? process_scheduled_works+0xa70/0x1860
[ 1518.802588][   T37]  process_scheduled_works+0xb5d/0x1860
[ 1518.803252][   T37]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1518.803355][   T37]  ? assign_work+0x3d5/0x5e0
[ 1518.803397][   T37]  worker_thread+0xa53/0xfc0
[ 1518.803648][   T37]  kthread+0x388/0x470
[ 1518.803796][   T37]  ? __pfx_worker_thread+0x10/0x10
[ 1518.803845][   T37]  ? __pfx_kthread+0x10/0x10
[ 1518.803903][   T37]  ret_from_fork+0x514/0xb70
[ 1518.804015][   T37]  ? __pfx_ret_from_fork+0x10/0x10
[ 1518.804067][   T37]  ? __switch_to+0xc79/0x1410
[ 1518.804188][   T37]  ? __pfx_kthread+0x10/0x10
[ 1518.804419][   T37]  ret_from_fork_asm+0x1a/0x30
[ 1518.804607][   T37]  </TASK>
[ 1518.805089][   T37] 
[ 1518.805089][   T37] Showing all locks held in the system:
[ 1518.805156][   T37] 1 lock held by khungtaskd/37:
[ 1518.805212][   T37]  #0: ffffffff8dfc80c0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1518.805643][   T37] 6 locks held by kworker/u8:14/2365:
[ 1518.805795][   T37] 2 locks held by kworker/1:2/3139:
[ 1518.805869][   T37] 1 lock held by udevd/5184:
[ 1518.805912][   T37] 2 locks held by getty/5568:
[ 1518.805953][   T37]  #0: ffff8880329f40a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1518.806243][   T37]  #1: ffffc90003cbe2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x462/0x13a0
[ 1518.806334][   T37] 5 locks held by syz-executor/5815:
[ 1518.806378][   T37] 2 locks held by syz-executor/5816:
[ 1518.806526][   T37] 5 locks held by kworker/u8:2/14006:
[ 1518.806699][   T37] 3 locks held by kworker/u8:4/14014:
[ 1518.806741][   T37]  #0: ffff88801b2a8938 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0xa35/0x1860
[ 1518.806972][   T37]  #1: ffffc9000686fc40 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0xa70/0x1860
[ 1518.807201][   T37]  #2: ffffffff8f35d120 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf4/0x800
[ 1518.807378][   T37] 5 locks held by kworker/u8:8/14019:
[ 1518.807393][   T37] 2 locks held by kworker/1:1/24307:
[ 1518.807439][   T37] 4 locks held by kworker/u8:20/31642:
[ 1518.807547][   T37] 2 locks held by syz.1.13983/4152:
[ 1518.807590][   T37] 3 locks held by syz.1.13983/4157:
[ 1518.807678][   T37] 4 locks held by syz.6.13985/4154:
[ 1518.807811][   T37] 5 locks held by syz.5.13987/4165:
[ 1518.807854][   T37] 
[ 1518.807890][   T37] =============================================
[ 1518.807890][   T37] 
[ 1518.807927][   T37] NMI backtrace for cpu 1
[ 1518.807947][   T37] CPU: 1 UID: 0 PID: 37 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1518.807978][   T37] Tainted: [L]=SOFTLOCKUP
[ 1518.807986][   T37] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1518.807999][   T37] Call Trace:
[ 1518.808008][   T37]  <TASK>
[ 1518.808017][   T37]  dump_stack_lvl+0xe8/0x150
[ 1518.808056][   T37]  nmi_cpu_backtrace+0x274/0x2d0
[ 1518.808090][   T37]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1518.808130][   T37]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1518.808166][   T37]  sys_info+0x135/0x170
[ 1518.808240][   T37]  watchdog+0xfd3/0x1030
[ 1518.808272][   T37]  ? watchdog+0x1c9/0x1030
[ 1518.808301][   T37]  kthread+0x388/0x470
[ 1518.808329][   T37]  ? __pfx_watchdog+0x10/0x10
[ 1518.808348][   T37]  ? __pfx_kthread+0x10/0x10
[ 1518.808375][   T37]  ret_from_fork+0x514/0xb70
[ 1518.808400][   T37]  ? __pfx_ret_from_fork+0x10/0x10
[ 1518.808423][   T37]  ? __switch_to+0xc79/0x1410
[ 1518.808456][   T37]  ? __pfx_kthread+0x10/0x10
[ 1518.808484][   T37]  ret_from_fork_asm+0x1a/0x30
[ 1518.808552][   T37]  </TASK>
[ 1518.808563][   T37] Sending NMI from CPU 1 to CPUs 0:
[ 1518.808595][    C0] NMI backtrace for cpu 0
[ 1518.808615][    C0] CPU: 0 UID: 0 PID: 4165 Comm: syz.5.13987 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1518.808641][    C0] Tainted: [L]=SOFTLOCKUP
[ 1518.808647][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1518.808659][    C0] RIP: 0010:trace_irq_enable+0x0/0x140
[ 1518.808683][    C0] Code: 00 00 65 c7 05 ed a5 a6 10 00 00 00 00 c3 cc cc cc cc cc 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <41> 57 41 56 41 54 53 66 90 65 8b 05 d4 8c a5 10 83 f8 08 73 37 89
[ 1518.808699][    C0] RSP: 0018:ffffc900066bf578 EFLAGS: 00000002
[ 1518.808716][    C0] RAX: 0000000000000001 RBX: 0000000000000246 RCX: 0000000000000000
[ 1518.808728][    C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff8b305c20
[ 1518.808739][    C0] RBP: ffffc900066bf6a0 R08: ffff888037a7a243 R09: 1ffff11006f4f448
[ 1518.808752][    C0] R10: dffffc0000000000 R11: ffffed1006f4f449 R12: dffffc0000000000
[ 1518.808765][    C0] R13: 1ffff92000cd7ebc R14: ffff888037a7a240 R15: ffff888037a7a240
[ 1518.808779][    C0] FS:  00007f01896fd6c0(0000) GS:ffff8881260fb000(0000) knlGS:0000000000000000
[ 1518.808795][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1518.808807][    C0] CR2: 00002000001e2030 CR3: 000000007187c000 CR4: 00000000003526f0
[ 1518.808826][    C0] Call Trace:
[ 1518.808833][    C0]  <TASK>
[ 1518.808839][    C0]  trace_hardirqs_on+0x18/0x40
[ 1518.808858][    C0]  _raw_spin_unlock_irqrestore+0x30/0x80
[ 1518.808882][    C0]  rt_mutex_slowunlock+0x4a7/0x8b0
[ 1518.808910][    C0]  ? reacquire_held_locks+0x104/0x190
[ 1518.808970][    C0]  ? rt_spin_lock+0x1e0/0x400
[ 1518.808998][    C0]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1518.809025][    C0]  ? rt_spin_unlock+0x14f/0x200
[ 1518.809053][    C0]  ? rt_spin_unlock+0x160/0x200
[ 1518.809080][    C0]  __skb_try_recv_datagram+0xa9/0x1b0
[ 1518.809102][    C0]  __unix_dgram_recvmsg+0x2e3/0xd60
[ 1518.809218][    C0]  ? __pfx___unix_dgram_recvmsg+0x10/0x10
[ 1518.809238][    C0]  ? irqentry_exit+0x218/0x730
[ 1518.809257][    C0]  ? trace_irq_disable+0x3b/0x140
[ 1518.809277][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[ 1518.809299][    C0]  ? unix_dgram_recvmsg+0xae/0xd0
[ 1518.809321][    C0]  ? __pfx_unix_dgram_recvmsg+0x10/0x10
[ 1518.809344][    C0]  sock_recvmsg_nosec+0x10c/0x140
[ 1518.809398][    C0]  ____sys_recvmsg+0x3ef/0x4b0
[ 1518.809440][    C0]  ? __pfx_____sys_recvmsg+0x10/0x10
[ 1518.809464][    C0]  ? import_iovec+0x73/0xa0
[ 1518.809529][    C0]  ___sys_recvmsg+0x215/0x590
[ 1518.809549][    C0]  ? __pfx____sys_recvmsg+0x10/0x10
[ 1518.809568][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1518.809588][    C0]  ? irqentry_exit+0x218/0x730
[ 1518.809620][    C0]  do_recvmmsg+0x33a/0x800
[ 1518.809641][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[ 1518.809665][    C0]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[ 1518.809691][    C0]  ? rt_spin_lock+0x1e0/0x400
[ 1518.809716][    C0]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1518.809744][    C0]  __x64_sys_recvmmsg+0x198/0x250
[ 1518.809764][    C0]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[ 1518.809786][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1518.809805][    C0]  do_syscall_64+0x15f/0xf80
[ 1518.809823][    C0]  ? trace_irq_disable+0x3b/0x140
[ 1518.809839][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1518.809859][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1518.809876][    C0] RIP: 0033:0x7f018b4cc819
[ 1518.809892][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1518.809906][    C0] RSP: 002b:00007f01896fd028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1518.809924][    C0] RAX: ffffffffffffffda RBX: 00007f018b746090 RCX: 00007f018b4cc819
[ 1518.809936][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000004
[ 1518.809948][    C0] RBP: 00007f018b562c91 R08: 0000000000000000 R09: 0000000000000000
[ 1518.809960][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1518.809971][    C0] R13: 00007f018b746128 R14: 00007f018b746090 R15: 00007ffef9895fa8
[ 1518.809991][    C0]  </TASK>
[ 1518.810982][   T37] Kernel panic - not syncing: hung_task: blocked tasks
[ 1518.811003][   T37] CPU: 1 UID: 0 PID: 37 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1518.811036][   T37] Tainted: [L]=SOFTLOCKUP
[ 1518.811044][   T37] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 1518.811057][   T37] Call Trace:
[ 1518.811066][   T37]  <TASK>
[ 1518.811075][   T37]  vpanic+0x56c/0xa60
[ 1518.811101][   T37]  ? __pfx___schedule+0x10/0x10
[ 1518.811127][   T37]  ? __pfx_vpanic+0x10/0x10
[ 1518.811161][   T37]  panic+0xc5/0xd0
[ 1518.811183][   T37]  ? __pfx_panic+0x10/0x10
[ 1518.811208][   T37]  ? preempt_schedule_thunk+0x16/0x30
[ 1518.811245][   T37]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[ 1518.811283][   T37]  watchdog+0x102c/0x1030
[ 1518.811314][   T37]  ? watchdog+0x1c9/0x1030
[ 1518.811344][   T37]  kthread+0x388/0x470
[ 1518.811371][   T37]  ? __pfx_watchdog+0x10/0x10
[ 1518.811391][   T37]  ? __pfx_kthread+0x10/0x10
[ 1518.811420][   T37]  ret_from_fork+0x514/0xb70
[ 1518.811446][   T37]  ? __pfx_ret_from_fork+0x10/0x10
[ 1518.811469][   T37]  ? __switch_to+0xc79/0x1410
[ 1518.811503][   T37]  ? __pfx_kthread+0x10/0x10
[ 1518.811532][   T37]  ret_from_fork_asm+0x1a/0x30
[ 1518.811575][   T37]  </TASK>
[ 1518.811849][   T37] Kernel Offset: disabled