last executing test programs:

12m22.098801963s ago: executing program 3 (id=7):
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x37, 0x7fffffff}]})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000000000000014d564b0000000001"])
close_range(r0, 0xffffffffffffffff, 0x0)

12m21.563025918s ago: executing program 3 (id=9):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$VHOST_NET_SET_BACKEND(r0, 0xaf02, 0x0)

12m21.106882465s ago: executing program 3 (id=10):
r0 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r1, &(0x7f000000bb40)="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", 0x2000, &(0x7f00000001c0)={&(0x7f0000000000)={0x50, 0x0, 0x203, {0x7, 0x29, 0x20001, 0x0, 0xdcf, 0x7, 0xb, 0x800, 0x0, 0x0, 0x10, 0x9b}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)={0x78, 0x0, 0x7, {0xb, 0x0, 0x0, {0x9, 0x1, 0x7, 0x90000005, 0x40000000000003, 0x2, 0x9ec, 0x35741061, 0x10000, 0xa593e9c1ca988eda, 0xfffffff9, 0x0, 0x0, 0x3d, 0xe}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
execveat$binfmt(0xffffffffffffff9c, r0, 0x0, 0x0, 0x0)
syz_fuse_handle_req(r1, &(0x7f0000007b40)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x20, 0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
read$FUSE(r1, &(0x7f000000db40)={0x2020, 0x0, <r2=>0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_LK(r1, &(0x7f00000002c0)={0x28, 0x0, r2, {{0x30000000, 0x7, 0x1, r3}}}, 0x28)

12m20.637613778s ago: executing program 3 (id=11):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x27, &(0x7f0000000180)={@multicast1, @loopback}, 0xc)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

12m19.918049935s ago: executing program 3 (id=14):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x7ffe}, 0x90)

12m19.582413898s ago: executing program 3 (id=16):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket(0x2, 0xa, 0x300)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000100)={0x0, &(0x7f00000001c0)}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='tlb_flush\x00'}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000300), 0x8)
bpf$ITER_CREATE(0xb, 0x0, 0x0)
syz_clone(0xc0001480, 0x0, 0x0, 0x0, 0x0, 0x0)

12m4.43722673s ago: executing program 32 (id=16):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket(0x2, 0xa, 0x300)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000100)={0x0, &(0x7f00000001c0)}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='tlb_flush\x00'}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000300), 0x8)
bpf$ITER_CREATE(0xb, 0x0, 0x0)
syz_clone(0xc0001480, 0x0, 0x0, 0x0, 0x0, 0x0)

11m53.116897386s ago: executing program 0 (id=144):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace', 0x0, 0x0)
r0 = syz_open_procfs(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x40, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}})

11m52.899978015s ago: executing program 0 (id=146):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="640000001000ffff27bd7000fedbdf2500000000", @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x64}, 0x1, 0x0, 0x0, 0x28001}, 0x8000002)

11m41.127617783s ago: executing program 0 (id=154):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xf, &(0x7f00000006c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0xfffffffffffffd2e, &(0x7f0000000000)='e', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4}, 0x48)

11m40.35385275s ago: executing program 0 (id=162):
sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444", 0x9b, 0x1, 0x0, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[], 0x2d, 0xfffffffffffffff9)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)

11m40.233979862s ago: executing program 0 (id=164):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2b}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

11m39.999070795s ago: executing program 0 (id=166):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000200)={'syzkaller0\x00', @random="e5db029ea53c"})
write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000300008c71ef28ff4b"], 0xffdd)

11m38.850609789s ago: executing program 4 (id=171):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00'}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl1\x00', 0x0})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f0000000240)={'\x00', 0x4, 0x9, 0xbd, 0x0, 0xffff, 0x2, 0x2, '\x00', 0x654})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

11m38.50986591s ago: executing program 4 (id=172):
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040), 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0xfffffffffffffd2e, &(0x7f0000000000)='e', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4}, 0x48)

11m38.112760545s ago: executing program 4 (id=173):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x28, 0x0, 0x40, 0xfffff02c}]}, 0x10)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x4002004c4, 0x1004, 0x45c5, 0xc595, 0x7, 0x2, 0xffffffffffffffff, 0x0, 0x80000004000000, 0xc], 0x80a0000, 0x2010d3})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

11m37.921001066s ago: executing program 4 (id=174):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000380)={r4, r1, 0x25, 0x0, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x3e, &(0x7f0000000bc0)=ANY=[], 0x0)

11m37.832543996s ago: executing program 4 (id=175):
r0 = syz_open_procfs(0x0, &(0x7f0000000380)='totmaps\x00')
write$P9_RLERRORu(r0, &(0x7f0000000040)={0xd, 0x7, 0x2, {{}, 0x8}}, 0xd)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
wait4(0x0, 0x0, 0x1000000, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x0)
r3 = openat$cgroup_subtree(r2, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)
write$cgroup_subtree(r3, &(0x7f00000001c0)={[{0x2b, 'cpu'}]}, 0x5)

11m37.525343646s ago: executing program 4 (id=176):
r0 = socket$inet6(0xa, 0x1, 0x84)
r1 = syz_open_dev$MSR(&(0x7f0000000400), 0x0, 0x0)
readv(r1, &(0x7f0000000140)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
sendto$inet6(r0, &(0x7f0000000000)="cc34", 0x2, 0x0, 0x0, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x6d, &(0x7f00000006c0)=""/4097, &(0x7f0000000040)=0x1001)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x42, 0x10)
r3 = eventfd(0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x5, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x87}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r5)
getsockname$packet(r5, 0x0, 0x0)
syz_clone(0x40800080, &(0x7f0000001700)="59492a190d4f9f223093ac3f2e4bb8fe8640d72c83d615593b7fde880f6b4aa41b580a61ccace875c835a8689fd3676035d9c432473fe762adcf78cd0b8754145848cff2e1f86f7ffd064c4cba44fc3faefa37ad15385cde388797769cf90d1749cc6f2293712df6df297292254ea710c42b064752303064bb71177e1d324105508dd27d105718d676e121aebab75b323132842eeaf316c422fa011d2594287dcd47f744b70212103dfd593c2acece528375bdfba1714d545fbb64e1696580eb49c90dac", 0xc4, &(0x7f0000000240), &(0x7f0000000340), &(0x7f0000000380)="78145777dca070514127609f8425aaa02f7b3cc11f6652767f36fbc27f4a7b7d20da18ada6ec8ef395068d2dca76e2c504199cc1237d4091c1e7c043e9dfc58c1d4020ddb2fdefd925789a673b3e9858cd5e8bfdbf6dcd2ea95496313c5c39068016a2c2e8843523d4e3674330ada232a9df0744718d")
r6 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0xc0686611, &(0x7f0000000100)={0x2, 0x0, 0x17, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="300000001a0000082cbd7000fbdbdf250a002082fe"], 0x30}}, 0x40848c0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="340000001000010400000000fedbdf2500000000", @ANYBLOB="1b2e0100bf95593bf7cbc2dbce037e47"], 0x34}}, 0x20004000)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r2, 0x7, &(0x7f0000000040)=r3, 0x1)
quotactl_fd$Q_SYNC(r2, 0xffffffff80000101, 0x0, 0x0)

11m24.76522079s ago: executing program 33 (id=166):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close(r2)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000200)={'syzkaller0\x00', @random="e5db029ea53c"})
write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000300008c71ef28ff4b"], 0xffdd)

11m21.771064059s ago: executing program 34 (id=176):
r0 = socket$inet6(0xa, 0x1, 0x84)
r1 = syz_open_dev$MSR(&(0x7f0000000400), 0x0, 0x0)
readv(r1, &(0x7f0000000140)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
sendto$inet6(r0, &(0x7f0000000000)="cc34", 0x2, 0x0, 0x0, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x6d, &(0x7f00000006c0)=""/4097, &(0x7f0000000040)=0x1001)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x42, 0x10)
r3 = eventfd(0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x5, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x87}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r5 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r5)
getsockname$packet(r5, 0x0, 0x0)
syz_clone(0x40800080, &(0x7f0000001700)="59492a190d4f9f223093ac3f2e4bb8fe8640d72c83d615593b7fde880f6b4aa41b580a61ccace875c835a8689fd3676035d9c432473fe762adcf78cd0b8754145848cff2e1f86f7ffd064c4cba44fc3faefa37ad15385cde388797769cf90d1749cc6f2293712df6df297292254ea710c42b064752303064bb71177e1d324105508dd27d105718d676e121aebab75b323132842eeaf316c422fa011d2594287dcd47f744b70212103dfd593c2acece528375bdfba1714d545fbb64e1696580eb49c90dac", 0xc4, &(0x7f0000000240), &(0x7f0000000340), &(0x7f0000000380)="78145777dca070514127609f8425aaa02f7b3cc11f6652767f36fbc27f4a7b7d20da18ada6ec8ef395068d2dca76e2c504199cc1237d4091c1e7c043e9dfc58c1d4020ddb2fdefd925789a673b3e9858cd5e8bfdbf6dcd2ea95496313c5c39068016a2c2e8843523d4e3674330ada232a9df0744718d")
r6 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0xc0686611, &(0x7f0000000100)={0x2, 0x0, 0x17, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="300000001a0000082cbd7000fbdbdf250a002082fe"], 0x30}}, 0x40848c0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="340000001000010400000000fedbdf2500000000", @ANYBLOB="1b2e0100bf95593bf7cbc2dbce037e47"], 0x34}}, 0x20004000)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r2, 0x7, &(0x7f0000000040)=r3, 0x1)
quotactl_fd$Q_SYNC(r2, 0xffffffff80000101, 0x0, 0x0)

10m14.576861443s ago: executing program 7 (id=388):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

10m14.276792432s ago: executing program 7 (id=392):
r0 = openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$VHOST_NET_SET_BACKEND(r0, 0xaf02, 0x0)

10m13.972772025s ago: executing program 7 (id=395):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040), 0x0)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
r2 = dup(r0)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000280)={0x0, 0x4, 0x20}, 0xc)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='bond_slave_1\x00', 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x106, 0xa}}, 0x20)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x8000, 0xbffc, 0xe652, 0x2, 0x4, 0x8, 0xff}, 0x9c)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000a40)={0x0, @in6={{0xa, 0x4e24, 0x5, @loopback, 0x1}}, 0x4, 0x1, 0xf06, 0x0, 0xac, 0x7d, 0x5}, 0x9c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e5d, 0xfffffff2, @empty, 0x1}}, 0x1000000, 0x31, 0xffff1897, 0x4, 0x16, 0x0, 0x78}, 0x9c)

10m13.772612452s ago: executing program 7 (id=399):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000140)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0x3, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

10m13.428685703s ago: executing program 7 (id=402):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

10m13.200681494s ago: executing program 7 (id=404):
socket(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601060000000000000000000000000900020073797a310000000005000100070000001c0007800c00018008000140ffffffff0c000280080001407f"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)

9m58.138655714s ago: executing program 35 (id=404):
socket(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601060000000000000000000000000900020073797a310000000005000100070000001c0007800c00018008000140ffffffff0c000280080001407f"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)

7m4.726281569s ago: executing program 8 (id=1157):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004840}, 0x14)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x1000}, 0x38)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

7m1.328394686s ago: executing program 8 (id=1165):
r0 = socket(0x840000000002, 0x3, 0xff)
getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x2, @empty}, 0x10)
request_key(&(0x7f00000002c0)='id_legacy\x00', &(0x7f0000000340)={'syz', 0x0}, &(0x7f00000004c0)='\'(+{!^/*\x00', 0x0)
flistxattr(r0, &(0x7f0000000200)=""/95, 0x5f)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x4e22, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

6m56.072850733s ago: executing program 8 (id=1183):
syz_usb_connect(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010002d08b8108ac051582588f0000000109022d0001000000000904"], 0x0)

6m53.167004018s ago: executing program 8 (id=1190):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x8, &(0x7f0000001740)="7e836b0b", 0x4)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r4, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

6m49.955805259s ago: executing program 8 (id=1208):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2b}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x7, 0x0, &(0x7f0000000200)="63eced8e46dc3f", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

6m49.392958669s ago: executing program 8 (id=1209):
socket(0x10, 0x803, 0x0)
openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = timerfd_create(0x9, 0x0)
timerfd_settime(r3, 0x1, &(0x7f0000007000)={{0x77359400}, {0x0, 0x989680}}, 0x0)
readv(r3, &(0x7f0000000000)=[{&(0x7f00000001c0)=""/183, 0xb7}], 0x1)

6m34.157241984s ago: executing program 36 (id=1209):
socket(0x10, 0x803, 0x0)
openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = timerfd_create(0x9, 0x0)
timerfd_settime(r3, 0x1, &(0x7f0000007000)={{0x77359400}, {0x0, 0x989680}}, 0x0)
readv(r3, &(0x7f0000000000)=[{&(0x7f00000001c0)=""/183, 0xb7}], 0x1)

6m14.312868509s ago: executing program 2 (id=1300):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
r3 = syz_open_dev$vim2m(&(0x7f0000000080), 0x2, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000040)={0x80000004, 0x1, 0x4})
close_range(r2, 0xffffffffffffffff, 0x0)

6m13.155443011s ago: executing program 2 (id=1302):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r4}, 0x18)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$bt_BT_SNDMTU(0xffffffffffffffff, 0x112, 0xc, &(0x7f0000000400)=0x3, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
mknod(&(0x7f0000000080)='./bus\x00', 0x8000, 0x7)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./bus\x00', &(0x7f0000000280)='gfs2\x00', 0x400080, &(0x7f00000001c0)='discard')

6m11.915052539s ago: executing program 2 (id=1303):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r1}, 0x18)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={@map=0x1, r0, 0x2e, 0x0, 0xffffffffffffffff, @void, @value=0x0}, 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)=ANY=[], 0x20)

6m10.468337777s ago: executing program 2 (id=1307):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000002c40)={&(0x7f0000003180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01080000e0030000000e02000000090001007300803000000000080002400000000214000000110001"], 0x50}}, 0x0)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x14, 0xa, 0xa, 0x201, 0x0, 0x0, {0x2}}, 0x14}}, 0x4000000)

6m7.973128988s ago: executing program 2 (id=1309):
socket$inet(0x2, 0x2, 0x1)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f0000000480)={0x18}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000000600)={0x50, 0x0, 0x0, {0x7, 0x29, 0x5, 0x0, 0x4, 0x2672, 0x1, 0x0, 0x0, 0x0, 0x80, 0x1fd}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
io_setup(0x1fe, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x0, 0x0)

6m4.484947938s ago: executing program 2 (id=1320):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x101042, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
dup(r2)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x0, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, 0x0, 0x0)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r4, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

5m49.152850193s ago: executing program 37 (id=1320):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x101042, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
dup(r2)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x0, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, 0x0, 0x0)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r4, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)='\f', 0x1}], 0x1, 0x0, 0x0, 0x2000000}}], 0xfdef, 0x0)

11.064669871s ago: executing program 5 (id=2027):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x200000a, 0x5d031, 0xffffffffffffffff, 0x0)
ioctl$IOMMU_TEST_OP_DESTROY_ACCESS_PAGES(0xffffffffffffffff, 0x3ba0, &(0x7f00000004c0)={0x48})
r2 = userfaultfd(0x801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000})
rmdir(0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, 0x0)

10.140339039s ago: executing program 6 (id=2028):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
recvmmsg(r0, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000040)=""/47, 0x2f}], 0x2}, 0x2}], 0x1, 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000000)='3', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000004c0)="b458b09a7bc6afad62c3f97125bc54bad5b9f64492fb3237f80678f40515a15a9bc7f8f9c9244e7fe0c328f6457f6d457effb6e3", 0x34}], 0x1}}], 0x2, 0x20e8086)
sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0)

9.03031661s ago: executing program 6 (id=2030):
socket$packet(0x11, 0x3, 0x300)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff3000/0x3000)=nil, &(0x7f0000ff6000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r2 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x2, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0xffff}}}, 0x24}}, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='8', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)

8.868750217s ago: executing program 5 (id=2032):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000080), 0x2, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000040)={0x80000004, 0x1, 0x4})
close_range(r3, 0xffffffffffffffff, 0x0)

7.905064837s ago: executing program 5 (id=2034):
creat(&(0x7f0000000080)='./file0\x00', 0xac)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15)
r0 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r0, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x2}}, 0x18)
write$FUSE_INIT(r0, &(0x7f0000000280)={0x50, 0x0, 0x0, {0x7, 0x21, 0xffffffff, 0x0, 0x8e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x6}}, 0x50)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
io_uring_setup(0x3454, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = gettid()
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000200))
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prlimit64(r2, 0xe, &(0x7f00000003c0)={0x6, 0x9}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x0, &(0x7f0000000380)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_uid}], [], 0x6b}})

6.945978368s ago: executing program 1 (id=2036):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x59}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

6.621206117s ago: executing program 1 (id=2037):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
creat(0x0, 0xd931d3864d39dc16)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000083c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x60)
syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ptrace$pokeuser(0x6, r5, 0x2, 0x1)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2a)
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x18, &(0x7f0000000100)=0x807d3, 0x4)
r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r7, 0x8924, &(0x7f0000001300)={'nr0\x00'})
r8 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0, 0x13f, 0xa}}, 0xfe2f)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r8, 0xc0884113, &(0x7f00000005c0)={0x1, 0xfffffffc, 0x0, 0x10001, 0xffffffffffffffff, 0xfffffffffffff748, 0x5, 0x9, 0x0, 0x2c, 0x1, 0x1})
ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000200)={{0x2, 0x0, @empty}, {0x0, @dev}, 0x0, {0x2, 0x0, @rand_addr=0x64010101}, 'lo\x00'})

4.672886533s ago: executing program 5 (id=2038):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
recvmmsg(r0, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000040)=""/47, 0x2f}], 0x2}, 0x2}], 0x1, 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000000)='3', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000004c0)="b458b09a7bc6afad62c3f97125bc54bad5b9f64492fb3237f80678f40515a15a9bc7f8f9c9244e7fe0c328f6457f6d457effb6e3", 0x34}], 0x1}}], 0x2, 0x20e8086)
sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0)

4.421992263s ago: executing program 1 (id=2039):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)

3.098473094s ago: executing program 1 (id=2040):
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x1, 0x3ffd)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(0xffffffffffffffff, 0x40045304, &(0x7f0000000540)={{}, 'port0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r2, 0x1, 0x70bd25, 0x25dfdbfc, {{}, {}, {0xc, 0x14, 'syz0\x00'}}}, 0x28}, 0x1, 0x0, 0x0, 0x1080}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$UHID_CREATE2(r3, 0x0, 0x118)

2.97664198s ago: executing program 5 (id=2041):
gettid()
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r5 = dup(r4)
sendmsg$inet(r5, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000140)="be38", 0xffdf}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}, @ip_retopts={{0x1c, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x73}, @noop]}}}], 0x40}, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)

2.054827393s ago: executing program 1 (id=2042):
gettid()
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x40001e0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f00000003c0)=ANY=[@ANYBLOB="0100000000000000d004000000000000e1424a5500000000d31d598aa3f8457895b1437857a205a334c2b4a3b588fa81c7d4094c49f47cec0000"])
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$ax25(0x3, 0x5, 0xc4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000140)="be38", 0xffdf}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}, @ip_retopts={{0x1c, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x73}, @noop]}}}], 0x40}, 0x0)

1.913520242s ago: executing program 6 (id=2043):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond0\x00'})
socket$inet6_sctp(0xa, 0x5, 0x84)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r1, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
r6 = openat$misdntimer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
readv(r6, 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="fa", 0xfffffdef)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
splice(r9, 0x0, r7, 0x0, 0x2, 0x0)
fcntl$setstatus(r7, 0x4, 0x2000)
write$binfmt_elf64(r8, &(0x7f0000000000)=ANY=[], 0x18c6)

1.388488269s ago: executing program 5 (id=2044):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
syz_open_dev$ndb(0x0, 0x0, 0x240)
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'bridge0\x00'})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000240)={0xc})
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000034000900000000000040b90002000000"], 0x14}, 0x1, 0x0, 0x0, 0x4841}, 0x4000010)

746.194659ms ago: executing program 6 (id=2045):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, 0x0, 0x1817c1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f076bbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x45)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000006c0)=ANY=[@ANYBLOB="0001000016000100002900973617a9e498c100691844290000000000fe790000000000000093e91e4d000000000000ab00010000000000000000000000000001", @ANYRES32=0x0, @ANYRES32], 0x100}, 0x1, 0x0, 0x0, 0x40011}, 0x0)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240), 0x80040, 0x0)
ioctl$RFKILL_IOCTL_NOINPUT(r1, 0x5218)

211.950026ms ago: executing program 6 (id=2046):
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x3, 0x7)
socket$pptp(0x18, 0x1, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)=r5}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r1, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f00000005c0)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1}, @echo_reply={0x0, 0x0, 0x0, 0x65, 0x4}}}}}, 0x0)

194.796944ms ago: executing program 1 (id=2047):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x800000000000001, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019640)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x15, 0xe, &(0x7f0000003540)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)

0s ago: executing program 6 (id=2048):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x20001, 0x0)

kernel console output (not intermixed with test programs):

  392.364651][ T5929] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[  393.504734][ T5856] Bluetooth: hci5: command 0x0405 tx timeout
[  395.907991][ T9455] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1084'.
[  399.154761][ T9454] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  399.160273][ T9454] block device autoloading is deprecated and will be removed.
[  399.464592][ T5929] usb 9-1: device descriptor read/64, error -110
[  399.777574][ T5929] usb 9-1: new full-speed USB device number 3 using dummy_hcd
[  399.934706][ T5929] usb 9-1: device descriptor read/64, error -32
[  400.044995][ T5929] usb usb9-port1: attempt power cycle
[  400.163607][ T9465] 9pnet_fd: Insufficient options for proto=fd
[  401.004835][ T5929] usb 9-1: new full-speed USB device number 4 using dummy_hcd
[  401.025017][ T5929] usb 9-1: device descriptor read/8, error -32
[  401.304614][ T5929] usb 9-1: new full-speed USB device number 5 using dummy_hcd
[  401.335880][ T5929] usb 9-1: device descriptor read/8, error -32
[  401.340959][ T9422] raw-gadget.0 gadget.8: failed to queue suspend event
[  401.350064][ T9422] raw-gadget.0 gadget.8: failed to queue disconnect event
[  401.445066][ T5929] usb usb9-port1: unable to enumerate USB device
[  401.610391][ T9480] fuse: Unknown parameter 'use00000000000000000000'
[  404.735459][ T9525] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1107'.
[  404.765261][ T9528] binder: 9524:9528 ioctl c0046209 0 returned -22
[  404.836618][ T9531] 9pnet_fd: Insufficient options for proto=fd
[  405.274616][ T5929] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  405.768684][ T5928] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  406.080822][ T5928] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  406.080847][ T5928] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  406.087686][ T5928] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  406.087703][ T5928] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  406.087716][ T5928] usb 9-1: SerialNumber: syz
[  407.499714][ T9540] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1113'.
[  410.524268][ T9571] binder: 9569:9571 ioctl c0046209 0 returned -22
[  410.621152][ T5929] usb 2-1: unable to read config index 0 descriptor/start: -32
[  410.621170][ T5929] usb 2-1: chopping to 0 config(s)
[  410.621184][ T5929] usb 2-1: can't read configurations, error -32
[  410.744929][ T5929] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  410.874610][ T5929] usb 2-1: device descriptor read/64, error -32
[  410.987173][ T5929] usb usb2-port1: attempt power cycle
[  411.836944][ T9583] No source specified
[  412.622335][ T5928] usb 9-1: skipping empty audio interface (v1)
[  412.830620][ T5928] snd-usb-audio 9-1:1.0: probe with driver snd-usb-audio failed with error -22
[  414.103478][ T9457] udevd[9457]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  414.267389][ T9597] 9pnet_fd: Insufficient options for proto=fd
[  414.536385][ T9605] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1139'.
[  414.902673][ T5929] usb 9-1: USB disconnect, device number 6
[  415.449052][ T9615] binder: 9613:9615 ioctl c0046209 0 returned -22
[  419.870514][ T9645] netlink: 76 bytes leftover after parsing attributes in process `syz.6.1150'.
[  420.518353][ T9658] No source specified
[  422.595009][ T9672] fuse: Unknown parameter 'user_id00000000000000000000'
[  426.413117][ T9707] fuse: Unknown parameter 'user_id00000000000000000000'
[  429.075410][ T9729] syz_tun: entered allmulticast mode
[  429.077103][ T9729] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1180'.
[  429.077592][ T9729] unsupported nlmsg_type 40
[  429.807472][ T5850] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  430.204509][ T5850] usb 9-1: Using ep0 maxpacket: 8
[  430.207192][ T5850] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  430.207247][ T5850] usb 9-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  430.207268][ T5850] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.299141][ T5850] usb 9-1: config 0 descriptor??
[  430.572892][ T5850] usb 9-1: USB disconnect, device number 7
[  430.641429][ T9742] fuse: Unknown parameter 'user_id00000000000000000000'
[  432.918910][ T9777] fuse: Bad value for 'fd'
[  433.706875][ T1765] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  433.864649][ T1765] usb 2-1: Using ep0 maxpacket: 32
[  433.867119][ T1765] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  433.911488][ T1765] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  433.911515][ T1765] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  433.911532][ T1765] usb 2-1: Product: syz
[  433.911544][ T1765] usb 2-1: Manufacturer: syz
[  433.911555][ T1765] usb 2-1: SerialNumber: syz
[  433.987212][ T1765] usb 2-1: config 0 descriptor??
[  434.008980][ T9788] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  435.014588][ T5856] Bluetooth: hci5: command 0x0405 tx timeout
[  436.136485][ T5850] usb 2-1: USB disconnect, device number 8
[  436.531512][ T9816] fuse: Bad value for 'fd'
[  437.239973][ T9823] binder: 9819:9823 ioctl c0046209 0 returned -22
[  438.201641][ T5158] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  438.214291][ T5158] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  438.717367][ T9842] No source specified
[  439.198958][ T9852] fuse: Bad value for 'fd'
[  440.236293][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  440.236398][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  440.748522][ T9866] binder: 9863:9866 ioctl c0046209 0 returned -22
[  443.682861][ T9890] gfs2: not a GFS2 filesystem
[  444.000598][   T37] kauditd_printk_skb: 5 callbacks suppressed
[  444.000644][   T37] audit: type=1326 audit(1757098490.262:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9886 comm="syz.2.1232" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb18af7ebe9 code=0x0
[  444.939103][ T9903] fuse: Unknown parameter '0x0000000000000003'
[  445.366180][ T5850] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  445.614583][ T5850] usb 7-1: Using ep0 maxpacket: 32
[  445.940639][ T5850] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  445.940655][ T5850] usb 7-1: config 0 has no interface number 0
[  445.943941][ T5850] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  445.943957][ T5850] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.943967][ T5850] usb 7-1: Product: syz
[  445.943973][ T5850] usb 7-1: Manufacturer: syz
[  445.943980][ T5850] usb 7-1: SerialNumber: syz
[  445.950128][ T5850] usb 7-1: config 0 descriptor??
[  445.967735][ T5850] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  445.967760][ T5850] usb 7-1: selecting invalid altsetting 1
[  445.967771][ T5850] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  446.135547][ T5850] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  446.136895][ T5850] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  446.136988][ T5850] usb 7-1: media controller created
[  446.221260][ T5850] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  446.341791][ T5850] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  446.341831][ T5850] zl10353_read_register: readreg error (reg=127, ret==-71)
[  446.368778][ T5850] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  446.611385][ T5850] usb 7-1: USB disconnect, device number 4
[  448.929483][ T9950] No source specified
[  449.036789][ T9954] fuse: Unknown parameter '0x0000000000000003'
[  450.703082][ T5158] Bluetooth: hci4: unexpected subevent 0x0c length: 1 < 5
[  452.272214][    C1] vkms_vblank_simulate: vblank timer overrun
[  452.795054][ T9997] fuse: Unknown parameter '0x0000000000000003'
[  453.377713][T10004] No source specified
[  453.956234][T10008] ieee802154 phy0 wpan0: encryption failed: -22
[  454.136244][ T5856] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  454.154749][ T5856] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  454.163300][ T5856] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  454.189354][ T5856] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  454.200415][ T5856] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  456.294684][ T5158] Bluetooth: hci0: command tx timeout
[  457.942235][T10050] fuse: Unknown parameter '0xffffffffffffffff'
[  458.066327][ T4791] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.427026][ T5158] Bluetooth: hci0: command tx timeout
[  458.539089][T10061] No source specified
[  459.354624][ T1765] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  459.550976][ T1765] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30
[  459.551022][ T1765] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  459.551041][ T1765] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196
[  459.551080][ T1765] usb 6-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[  459.551100][ T1765] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.557717][ T1765] usb 6-1: config 0 descriptor??
[  460.235636][ T4791] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.454612][ T5158] Bluetooth: hci0: command tx timeout
[  461.174803][ T4791] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.534851][ T5158] Bluetooth: hci0: command tx timeout
[  462.588887][ T4791] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.793488][T10129] fuse: Unknown parameter '0xffffffffffffffff'
[  463.832578][T10017] chnl_net:caif_netlink_parms(): no params data found
[  465.105517][ T1765] usbhid 6-1:0.0: can't add hid device: -32
[  465.105597][ T1765] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[  465.870952][T10154] mmap: syz.2.1286 (10154) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  466.351679][    C1] vkms_vblank_simulate: vblank timer overrun
[  467.034476][    C1] vkms_vblank_simulate: vblank timer overrun
[  467.109133][    C1] vkms_vblank_simulate: vblank timer overrun
[  467.245485][   T44] usb 6-1: USB disconnect, device number 3
[  467.628241][T10017] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.628386][T10017] bridge0: port 1(bridge_slave_0) entered disabled state
[  467.628633][T10017] bridge_slave_0: entered allmulticast mode
[  467.631474][T10017] bridge_slave_0: entered promiscuous mode
[  467.694926][T10017] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.695066][T10017] bridge0: port 2(bridge_slave_1) entered disabled state
[  467.695308][T10017] bridge_slave_1: entered allmulticast mode
[  467.698002][T10017] bridge_slave_1: entered promiscuous mode
[  467.981549][T10165] cgroup: fork rejected by pids controller in /syz2
[  467.985563][    C1] vkms_vblank_simulate: vblank timer overrun
[  468.162450][ T4791] bridge_slave_1: left allmulticast mode
[  468.162481][ T4791] bridge_slave_1: left promiscuous mode
[  468.162699][ T4791] bridge0: port 2(bridge_slave_1) entered disabled state
[  469.092672][ T4791] bridge_slave_0: left allmulticast mode
[  469.092706][ T4791] bridge_slave_0: left promiscuous mode
[  469.093027][ T4791] bridge0: port 1(bridge_slave_0) entered disabled state
[  469.340514][T10210] fuse: Unknown parameter '0x0000000000000003'
[  469.485050][T10214] comedi comedi3: dt2814: I/O port conflict (0xcf7,2)
[  471.317264][    C1] vkms_vblank_simulate: vblank timer overrun
[  472.004095][    C1] vkms_vblank_simulate: vblank timer overrun
[  472.611556][T10246] gfs2: not a GFS2 filesystem
[  474.245531][ T4791] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  474.315575][ T4791] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  474.338163][ T4791] bond0 (unregistering): Released all slaves
[  474.750913][T10017] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  474.971483][T10257] block nbd5: Attempted send on invalid socket
[  474.971713][T10257] I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  474.979956][T10257] block nbd5: Attempted send on invalid socket
[  474.979984][T10257] I/O error, dev nbd5, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  477.206703][T10017] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  477.776873][T10017] team0: Port device team_slave_0 added
[  478.092763][T10017] team0: Port device team_slave_1 added
[  479.697989][T10285] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1314'.
[  479.698070][T10285] netlink: 'syz.1.1314': attribute type 6 has an invalid length.
[  480.136809][T10017] batman_adv: batadv0: Adding interface: batadv_slave_0
[  480.136826][T10017] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  480.136850][T10017] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  480.464026][ T4791] hsr_slave_0: left promiscuous mode
[  480.494666][ T4791] hsr_slave_1: left promiscuous mode
[  480.495437][ T4791] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  480.495464][ T4791] batman_adv: batadv0: Removing interface: batadv_slave_0
[  480.572419][ T4791] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  480.572446][ T4791] batman_adv: batadv0: Removing interface: batadv_slave_1
[  480.832894][ T4791] veth1_macvtap: left promiscuous mode
[  480.833029][ T4791] veth0_macvtap: left promiscuous mode
[  480.835124][ T4791] veth1_vlan: left promiscuous mode
[  480.835372][ T4791] veth0_vlan: left promiscuous mode
[  487.525524][T10320] binder: 10315:10320 ioctl c0046209 0 returned -22
[  489.331568][T10332] netlink: 'syz.5.1331': attribute type 2 has an invalid length.
[  492.294870][T10348] gfs2: not a GFS2 filesystem
[  492.966260][ T4791] team0 (unregistering): Port device team_slave_1 removed
[  493.455454][ T4791] team0 (unregistering): Port device team_slave_0 removed
[  493.581044][T10354] netlink: 'syz.5.1338': attribute type 10 has an invalid length.
[  493.581068][T10354] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1338'.
[  494.474626][ T1765] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  494.662117][ T1765] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  494.662149][ T1765] usb 6-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  494.662161][ T1765] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  494.728789][ T1765] usb 6-1: config 0 descriptor??
[  496.789435][ T5856] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  496.837898][ T5856] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  496.851925][ T5856] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  496.899143][ T5856] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  496.900111][ T5856] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  497.821341][T10017] batman_adv: batadv0: Adding interface: batadv_slave_1
[  497.821358][T10017] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  497.821384][T10017] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  497.823911][T10344] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1334'.
[  498.061892][T10354] team0: entered promiscuous mode
[  498.061908][T10354] team_slave_0: entered promiscuous mode
[  498.062315][T10354] team_slave_1: entered promiscuous mode
[  498.062646][T10354] team0: entered allmulticast mode
[  498.062655][T10354] team_slave_0: entered allmulticast mode
[  498.062665][T10354] team_slave_1: entered allmulticast mode
[  498.102251][T10354] bridge0: port 3(team0) entered blocking state
[  498.102542][T10354] bridge0: port 3(team0) entered disabled state
[  498.177875][T10354] bridge0: port 3(team0) entered blocking state
[  498.177975][T10354] bridge0: port 3(team0) entered forwarding state
[  498.605847][ T1765] usbhid 6-1:0.0: can't add hid device: -71
[  498.605971][ T1765] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  498.645828][ T1765] usb 6-1: USB disconnect, device number 4
[  498.934597][ T5856] Bluetooth: hci5: command tx timeout
[  501.014687][ T5856] Bluetooth: hci5: command tx timeout
[  501.658725][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  501.658771][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  502.532089][T10017] hsr_slave_0: entered promiscuous mode
[  502.533389][T10017] hsr_slave_1: entered promiscuous mode
[  502.534230][T10017] debugfs: 'hsr0' already exists in 'hsr'
[  502.534253][T10017] Cannot create hsr debugfs directory
[  502.548957][T10387] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1346'.
[  502.626466][T10387] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1346'.
[  502.740465][ T5856] Bluetooth: hci4: unexpected event for opcode 0x200c
[  503.095356][ T5856] Bluetooth: hci5: command tx timeout
[  505.174842][ T5856] Bluetooth: hci5: command tx timeout
[  505.316109][T10424] program syz.1.1354 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  506.801632][ T4791] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  508.855239][   T44] IPVS: starting estimator thread 0...
[  508.896598][ T4791] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  508.957763][T10452] IPVS: using max 8 ests per chain, 19200 per kthread
[  510.632752][ T4791] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  510.668756][T10465] netlink: 'syz.6.1365': attribute type 29 has an invalid length.
[  510.679245][T10467] netlink: 'syz.6.1365': attribute type 29 has an invalid length.
[  510.732499][T10469] netlink: 'syz.6.1365': attribute type 29 has an invalid length.
[  510.733209][T10358] chnl_net:caif_netlink_parms(): no params data found
[  511.142012][ T4791] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  512.721347][ T5158] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  512.738663][ T5158] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  512.749684][ T5158] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  512.763661][ T5158] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  512.766792][ T5158] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  513.039270][T10358] bridge0: port 1(bridge_slave_0) entered blocking state
[  513.040454][T10358] bridge0: port 1(bridge_slave_0) entered disabled state
[  513.040728][T10358] bridge_slave_0: entered allmulticast mode
[  513.043458][T10358] bridge_slave_0: entered promiscuous mode
[  513.225971][T10358] bridge0: port 2(bridge_slave_1) entered blocking state
[  513.226098][T10358] bridge0: port 2(bridge_slave_1) entered disabled state
[  513.226306][T10358] bridge_slave_1: entered allmulticast mode
[  513.261185][T10498] kvm: kvm [10497]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x3900000080
[  513.266411][T10498] kvm: kvm [10497]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x3800000000
[  513.266559][T10498] kvm: kvm [10497]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  513.271755][T10498] kvm: kvm [10497]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x3800000000
[  513.302796][T10358] bridge_slave_1: entered promiscuous mode
[  513.729438][T10506] netlink: 'syz.1.1375': attribute type 29 has an invalid length.
[  514.089487][T10507] netlink: 'syz.1.1375': attribute type 29 has an invalid length.
[  514.097810][T10358] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  514.246524][T10508] netlink: 'syz.1.1375': attribute type 29 has an invalid length.
[  514.275824][T10358] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  514.492914][ T4791] bridge_slave_1: left allmulticast mode
[  514.492937][ T4791] bridge_slave_1: left promiscuous mode
[  514.496072][ T4791] bridge0: port 2(bridge_slave_1) entered disabled state
[  514.868692][ T5856] Bluetooth: hci3: command tx timeout
[  515.519206][ T4791] bridge_slave_0: left allmulticast mode
[  515.519238][ T4791] bridge_slave_0: left promiscuous mode
[  515.519521][ T4791] bridge0: port 1(bridge_slave_0) entered disabled state
[  515.833615][T10543] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  515.841261][T10543] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  516.934544][ T5856] Bluetooth: hci3: command tx timeout
[  518.125453][ T4791] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  518.187151][ T4791] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  518.214746][ T4791] bond0 (unregistering): Released all slaves
[  518.390111][T10552] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1386'.
[  518.476641][T10358] team0: Port device team_slave_0 added
[  518.522128][T10358] team0: Port device team_slave_1 added
[  519.025285][ T5856] Bluetooth: hci3: command tx timeout
[  519.065845][T10561] loop4: detected capacity change from 0 to 7
[  519.079881][T10561] Dev loop4: unable to read RDB block 7
[  519.079924][T10561]  loop4: unable to read partition table
[  519.080098][T10561] loop4: partition table beyond EOD, truncated
[  519.080111][T10561] loop_reread_partitions: partition scan of loop4 (�被x������ ) failed (rc=-5)
[  519.283878][T10563] netlink: 'syz.1.1389': attribute type 29 has an invalid length.
[  519.299175][T10358] batman_adv: batadv0: Adding interface: batadv_slave_0
[  519.299192][T10358] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  519.299218][T10358] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  519.324766][T10563] netlink: 'syz.1.1389': attribute type 29 has an invalid length.
[  519.360092][T10358] batman_adv: batadv0: Adding interface: batadv_slave_1
[  519.360108][T10358] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  519.360134][T10358] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  519.371014][T10563] netlink: 'syz.1.1389': attribute type 29 has an invalid length.
[  519.819234][T10570] gfs2: not a GFS2 filesystem
[  521.094499][ T5856] Bluetooth: hci3: command tx timeout
[  521.379274][T10358] hsr_slave_0: entered promiscuous mode
[  521.380042][T10358] hsr_slave_1: entered promiscuous mode
[  521.380546][T10358] debugfs: 'hsr0' already exists in 'hsr'
[  521.380561][T10358] Cannot create hsr debugfs directory
[  521.383618][T10590] netlink: 'syz.5.1398': attribute type 29 has an invalid length.
[  521.405578][T10591] netlink: 'syz.5.1398': attribute type 29 has an invalid length.
[  521.414850][T10590] netlink: 'syz.5.1398': attribute type 29 has an invalid length.
[  522.745457][T10606] gfs2: not a GFS2 filesystem
[  523.788801][ T4791] hsr_slave_0: left promiscuous mode
[  523.862505][ T4791] hsr_slave_1: left promiscuous mode
[  523.863476][ T4791] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  523.863504][ T4791] batman_adv: batadv0: Removing interface: batadv_slave_0
[  523.943862][ T4791] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  523.943893][ T4791] batman_adv: batadv0: Removing interface: batadv_slave_1
[  524.074571][ T4791] veth1_macvtap: left promiscuous mode
[  524.074728][ T4791] veth0_macvtap: left promiscuous mode
[  524.075388][ T4791] veth1_vlan: left promiscuous mode
[  524.075604][ T4791] veth0_vlan: left promiscuous mode
[  525.069538][   T31] IPVS: starting estimator thread 0...
[  525.174531][T10630] IPVS: using max 8 ests per chain, 19200 per kthread
[  528.271939][T10642] gfs2: not a GFS2 filesystem
[  529.975445][ T4791] team0 (unregistering): Port device team_slave_1 removed
[  530.292822][ T4791] team0 (unregistering): Port device team_slave_0 removed
[  532.450872][T10659] No source specified
[  533.446384][T10661] netlink: 324 bytes leftover after parsing attributes in process `syz.6.1420'.
[  533.908584][ T1765] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  534.013576][T10618] netlink: 'syz.5.1409': attribute type 29 has an invalid length.
[  534.124727][ T1765] usb 7-1: Using ep0 maxpacket: 32
[  534.126794][ T1765] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  534.129281][ T1765] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  534.129307][ T1765] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  534.129324][ T1765] usb 7-1: Product: syz
[  534.129336][ T1765] usb 7-1: Manufacturer: syz
[  534.129348][ T1765] usb 7-1: SerialNumber: syz
[  534.160155][ T1765] usb 7-1: config 0 descriptor??
[  534.195320][T10667] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  534.521500][T10494] chnl_net:caif_netlink_parms(): no params data found
[  535.176152][   T31] usb 7-1: USB disconnect, device number 5
[  535.624828][T10692] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  536.144704][   T31] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  536.485055][   T31] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  536.485083][   T31] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  536.485105][   T31] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  536.494225][   T31] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  536.494254][   T31] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  536.494272][   T31] usb 6-1: Product: syz
[  536.494285][   T31] usb 6-1: Manufacturer: syz
[  536.494297][   T31] usb 6-1: SerialNumber: syz
[  536.836647][   T31] hub 6-1:1.0: bad descriptor, ignoring hub
[  536.836671][   T31] hub 6-1:1.0: probe with driver hub failed with error -5
[  538.229608][T10703] syz.6.1428 (10703): drop_caches: 2
[  539.105480][T10713] netlink: 324 bytes leftover after parsing attributes in process `syz.1.1430'.
[  539.533725][T10494] bridge0: port 1(bridge_slave_0) entered blocking state
[  539.537268][T10494] bridge0: port 1(bridge_slave_0) entered disabled state
[  539.537522][T10494] bridge_slave_0: entered allmulticast mode
[  539.540242][T10494] bridge_slave_0: entered promiscuous mode
[  540.249948][T10494] bridge0: port 2(bridge_slave_1) entered blocking state
[  540.254282][T10494] bridge0: port 2(bridge_slave_1) entered disabled state
[  540.255241][T10494] bridge_slave_1: entered allmulticast mode
[  540.257960][T10494] bridge_slave_1: entered promiscuous mode
[  540.360353][T10718] netlink: 'syz.1.1432': attribute type 29 has an invalid length.
[  540.609760][T10719] netlink: 'syz.1.1432': attribute type 29 has an invalid length.
[  540.670718][   T31] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  540.796325][   T31] usb 6-1: USB disconnect, device number 5
[  540.813166][   T31] usblp0: removed
[  541.297258][T10720] netlink: 'syz.1.1432': attribute type 29 has an invalid length.
[  541.329032][T10494] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  541.436066][T10494] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  541.768933][T10734] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1437'.
[  541.961689][ T1765] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  542.129186][ T1765] usb 7-1: Using ep0 maxpacket: 32
[  542.139981][ T1765] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  542.142218][ T1765] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  542.142234][ T1765] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  542.142243][ T1765] usb 7-1: Product: syz
[  542.142250][ T1765] usb 7-1: Manufacturer: syz
[  542.142257][ T1765] usb 7-1: SerialNumber: syz
[  542.162073][ T1765] usb 7-1: config 0 descriptor??
[  542.165208][T10732] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  542.446147][T10494] team0: Port device team_slave_0 added
[  542.530610][T10494] team0: Port device team_slave_1 added
[  543.575567][ T1765] usb 7-1: USB disconnect, device number 6
[  543.584238][T10494] batman_adv: batadv0: Adding interface: batadv_slave_0
[  543.584254][T10494] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  543.584278][T10494] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  544.058554][T10494] batman_adv: batadv0: Adding interface: batadv_slave_1
[  544.058569][T10494] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  544.058594][T10494] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  544.086867][T10742] netlink: 324 bytes leftover after parsing attributes in process `syz.5.1439'.
[  544.333431][T10750] binder: 10743:10750 ioctl c0306201 0 returned -14
[  545.244163][T10758] netlink: 'syz.5.1444': attribute type 10 has an invalid length.
[  545.244184][T10758] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1444'.
[  545.408007][T10756] netlink: 'syz.6.1445': attribute type 29 has an invalid length.
[  545.917948][T10494] hsr_slave_0: entered promiscuous mode
[  545.923215][T10494] hsr_slave_1: entered promiscuous mode
[  545.936587][T10494] debugfs: 'hsr0' already exists in 'hsr'
[  545.936615][T10494] Cannot create hsr debugfs directory
[  545.939346][T10358] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  545.994688][T10759] netlink: 'syz.6.1445': attribute type 29 has an invalid length.
[  546.028644][T10358] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  546.078813][ T1765] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  546.417323][ T1765] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  546.417374][ T1765] usb 6-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  546.417395][ T1765] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  546.427759][ T1765] usb 6-1: config 0 descriptor??
[  547.357738][ T1765] usbhid 6-1:0.0: can't add hid device: -71
[  547.357862][ T1765] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  547.368251][ T1765] usb 6-1: USB disconnect, device number 6
[  547.461661][T10358] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  547.712146][T10358] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  548.204562][ T1765] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  548.354649][ T1765] usb 6-1: Using ep0 maxpacket: 32
[  548.356699][ T1765] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  548.359652][ T1765] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  548.359678][ T1765] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  548.359696][ T1765] usb 6-1: Product: syz
[  548.359709][ T1765] usb 6-1: Manufacturer: syz
[  548.359721][ T1765] usb 6-1: SerialNumber: syz
[  548.367113][ T1765] usb 6-1: config 0 descriptor??
[  548.368297][T10784] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  548.830575][T10798] netlink: 324 bytes leftover after parsing attributes in process `syz.1.1451'.
[  549.441912][ T4791] bridge_slave_1: left allmulticast mode
[  549.441945][ T4791] bridge_slave_1: left promiscuous mode
[  549.442216][ T4791] bridge0: port 2(bridge_slave_1) entered disabled state
[  549.503326][ T5850] usb 6-1: USB disconnect, device number 7
[  549.515399][ T4791] bridge_slave_0: left allmulticast mode
[  549.515432][ T4791] bridge_slave_0: left promiscuous mode
[  549.515712][ T4791] bridge0: port 1(bridge_slave_0) entered disabled state
[  549.985363][ T4791] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  550.101897][ T4791] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  550.207528][ T4791] bond0 (unregistering): Released all slaves
[  550.390998][T10806] netlink: 'syz.1.1454': attribute type 29 has an invalid length.
[  550.682973][ T5856] Bluetooth: hci2: hcon ffff888033758000 sent 1 < count 65528
[  550.901107][T10819] syz_tun: entered allmulticast mode
[  551.170944][ T4791] hsr_slave_0: left promiscuous mode
[  551.204932][ T4791] hsr_slave_1: left promiscuous mode
[  551.205820][ T4791] batman_adv: batadv0: Removing interface: batadv_slave_0
[  551.246918][ T4791] batman_adv: batadv0: Removing interface: batadv_slave_1
[  551.272475][T10826] netlink: 324 bytes leftover after parsing attributes in process `syz.5.1460'.
[  552.796055][ T4791] team0 (unregistering): Port device team_slave_1 removed
[  552.904863][ T5850] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  552.935426][ T4791] team0 (unregistering): Port device team_slave_0 removed
[  553.060688][ T5850] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  553.060719][ T5850] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  553.060740][ T5850] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  553.113798][ T5850] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  553.113826][ T5850] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  553.113843][ T5850] usb 7-1: Product: syz
[  553.113855][ T5850] usb 7-1: Manufacturer: syz
[  553.113864][ T5850] usb 7-1: SerialNumber: syz
[  553.398884][ T5850] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 7 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  553.691425][ T5850] usb 7-1: USB disconnect, device number 7
[  553.716492][ T5850] usblp0: removed
[  554.699982][T10851] netlink: 324 bytes leftover after parsing attributes in process `syz.1.1469'.
[  555.118649][T10841] netlink: 'syz.5.1465': attribute type 29 has an invalid length.
[  556.763373][T10876] netlink: 76 bytes leftover after parsing attributes in process `syz.6.1476'.
[  557.958592][T10494] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  558.027244][ T5158] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  558.039568][ T5158] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  558.042153][ T5158] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  558.063794][ T5158] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  558.070120][ T5158] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  558.238848][T10494] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  558.265922][T10870] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1477'.
[  558.390761][T10494] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  558.691728][T10893] netlink: 324 bytes leftover after parsing attributes in process `syz.5.1479'.
[  558.992314][T10494] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  559.057571][T10896] netlink: 'syz.5.1480': attribute type 29 has an invalid length.
[  559.064585][T10898] netlink: 'syz.5.1480': attribute type 29 has an invalid length.
[  559.065379][T10900] netlink: 'syz.5.1480': attribute type 29 has an invalid length.
[  560.135069][ T5856] Bluetooth: hci0: command tx timeout
[  560.761368][T10929] netlink: 324 bytes leftover after parsing attributes in process `syz.5.1488'.
[  561.729896][T10940] netlink: 'syz.1.1491': attribute type 29 has an invalid length.
[  561.735657][T10942] netlink: 'syz.1.1491': attribute type 29 has an invalid length.
[  561.736099][T10945] netlink: 'syz.1.1491': attribute type 29 has an invalid length.
[  562.214735][ T5856] Bluetooth: hci0: command tx timeout
[  562.947678][T10882] chnl_net:caif_netlink_parms(): no params data found
[  563.001813][T10970] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1497'.
[  563.059238][T10494] 8021q: adding VLAN 0 to HW filter on device bond0
[  563.112622][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  563.112700][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  563.364688][ T1168] bridge_slave_1: left allmulticast mode
[  563.364730][ T1168] bridge_slave_1: left promiscuous mode
[  563.364996][ T1168] bridge0: port 2(bridge_slave_1) entered disabled state
[  563.446639][ T1168] bridge_slave_0: left allmulticast mode
[  563.446661][ T1168] bridge_slave_0: left promiscuous mode
[  563.446841][ T1168] bridge0: port 1(bridge_slave_0) entered disabled state
[  563.491838][T10985] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1503'.
[  563.994417][ T1765] usb 2-1: new low-speed USB device number 9 using dummy_hcd
[  564.201275][ T1765] usb 2-1: No LPM exit latency info found, disabling LPM.
[  564.215478][ T1765] usb 2-1: string descriptor 0 read error: -22
[  564.215651][ T1765] usb 2-1: New USB device found, idVendor=1415, idProduct=0003, bcdDevice=65.5d
[  564.215672][ T1765] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  564.303446][ T1765] usb 2-1: config 0 descriptor??
[  564.311064][ T5856] Bluetooth: hci0: command tx timeout
[  564.601640][ T1765] dvb-usb: found a 'Sony PlayTV' in cold state, will try to load a firmware
[  564.759079][ T1765] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  564.759121][ T1765] dib0700: firmware download failed at 7 with -22
[  564.788650][ T1765] usb 2-1: USB disconnect, device number 9
[  565.435544][ T1168] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  565.575166][ T1168] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  565.638775][ T1168] bond0 (unregistering): Released all slaves
[  565.754827][T10968] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1497'.
[  565.787685][T10982] netlink: 'syz.5.1502': attribute type 29 has an invalid length.
[  566.384956][ T5856] Bluetooth: hci0: command tx timeout
[  566.569281][ T1168] hsr_slave_0: left promiscuous mode
[  566.624921][ T1168] hsr_slave_1: left promiscuous mode
[  566.628234][ T1168] batman_adv: batadv0: Removing interface: batadv_slave_0
[  566.670553][ T1168] batman_adv: batadv0: Removing interface: batadv_slave_1
[  567.328204][T11016] gfs2: not a GFS2 filesystem
[  567.368603][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.494223][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.932420][    C1] vkms_vblank_simulate: vblank timer overrun
[  568.116300][   T37] audit: type=1326 audit(1757098613.812:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11013 comm="syz.1.1512" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  568.124089][    C1] vkms_vblank_simulate: vblank timer overrun
[  569.536776][    C1] vkms_vblank_simulate: vblank timer overrun
[  569.943379][    C1] vkms_vblank_simulate: vblank timer overrun
[  570.175414][    C1] vkms_vblank_simulate: vblank timer overrun
[  570.409112][ T1168] team0 (unregistering): Port device team_slave_1 removed
[  570.509723][    C1] vkms_vblank_simulate: vblank timer overrun
[  570.628049][T11035] netlink: 240 bytes leftover after parsing attributes in process `syz.6.1518'.
[  570.947325][T11037] netlink: 'syz.6.1518': attribute type 10 has an invalid length.
[  571.067877][ T1168] team0 (unregistering): Port device team_slave_0 removed
[  571.292511][    C1] vkms_vblank_simulate: vblank timer overrun
[  572.544283][ T5158] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  572.559973][ T5158] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  572.568771][ T5158] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  572.570133][ T5158] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  572.571539][ T5158] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  572.742471][T11023] netlink: 'syz.1.1515': attribute type 29 has an invalid length.
[  572.872718][T11037] team0: Port device dummy0 added
[  572.913444][T10882] bridge0: port 1(bridge_slave_0) entered blocking state
[  572.924658][T10882] bridge0: port 1(bridge_slave_0) entered disabled state
[  572.932825][T10882] bridge_slave_0: entered allmulticast mode
[  572.986046][T10882] bridge_slave_0: entered promiscuous mode
[  572.998013][T10882] bridge0: port 2(bridge_slave_1) entered blocking state
[  572.998147][T10882] bridge0: port 2(bridge_slave_1) entered disabled state
[  572.998343][T10882] bridge_slave_1: entered allmulticast mode
[  573.019846][T10882] bridge_slave_1: entered promiscuous mode
[  573.177108][    C1] vkms_vblank_simulate: vblank timer overrun
[  574.696332][ T5158] Bluetooth: hci5: command tx timeout
[  575.266582][T11065] netlink: 'syz.5.1524': attribute type 11 has an invalid length.
[  575.267586][T11065] netlink: 'syz.5.1524': attribute type 10 has an invalid length.
[  575.267657][T11065] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1524'.
[  575.900776][   T37] audit: type=1326 audit(1757098621.962:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11061 comm="syz.1.1526" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  576.774514][ T5158] Bluetooth: hci5: command tx timeout
[  576.827324][T10882] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  576.893558][T10882] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  577.217017][T11075] netlink: 'syz.5.1528': attribute type 29 has an invalid length.
[  577.395306][T11078] netlink: 'syz.5.1528': attribute type 29 has an invalid length.
[  577.398425][T10882] team0: Port device team_slave_0 added
[  577.460903][T11081] netlink: 'syz.5.1528': attribute type 29 has an invalid length.
[  577.484106][T10882] team0: Port device team_slave_1 added
[  578.334536][T10882] batman_adv: batadv0: Adding interface: batadv_slave_0
[  578.334553][T10882] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  578.334578][T10882] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  578.854505][ T5158] Bluetooth: hci5: command tx timeout
[  579.157542][T10882] batman_adv: batadv0: Adding interface: batadv_slave_1
[  579.157560][T10882] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  579.157586][T10882] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  579.654817][T10882] hsr_slave_0: entered promiscuous mode
[  579.661884][T10882] hsr_slave_1: entered promiscuous mode
[  579.662930][T10882] debugfs: 'hsr0' already exists in 'hsr'
[  579.662954][T10882] Cannot create hsr debugfs directory
[  580.237434][   T37] audit: type=1326 audit(1757098626.692:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11113 comm="syz.1.1535" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  581.126743][ T5158] Bluetooth: hci5: command tx timeout
[  583.359878][T11135] netlink: 'syz.5.1541': attribute type 29 has an invalid length.
[  584.127036][T11138] netlink: 'syz.5.1541': attribute type 29 has an invalid length.
[  584.224470][T11141] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  584.224585][T11141] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  584.467596][T11141] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  584.488176][T11141] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  584.713979][T11160] fuse: Bad value for 'fd'
[  584.748846][T11141] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  584.751809][T11141] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  584.859787][T11141] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  584.859894][T11141] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  585.107697][T11141] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  585.202557][T11141] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  585.202660][T11141] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  585.220854][T11039] chnl_net:caif_netlink_parms(): no params data found
[  585.345800][T11141] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  585.864592][ T5850] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  586.174549][ T5850] usb 2-1: Using ep0 maxpacket: 32
[  586.667710][ T5850] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  586.667726][ T5850] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  586.678212][ T5850] usb 2-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  586.678230][ T5850] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  586.678240][ T5850] usb 2-1: Product: syz
[  586.678247][ T5850] usb 2-1: Manufacturer: syz
[  586.678254][ T5850] usb 2-1: SerialNumber: syz
[  586.744953][ T5158] Bluetooth: hci2: command 0x0406 tx timeout
[  586.746597][ T5158] Bluetooth: hci4: command 0x0406 tx timeout
[  586.750114][ T5850] usb 2-1: config 0 descriptor??
[  586.776591][ T5158] Bluetooth: hci1: command 0x0406 tx timeout
[  586.937771][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout
[  587.032166][ T5829] usb 2-1: USB disconnect, device number 10
[  587.382065][ T5856] Bluetooth: hci5: command 0x0c1a tx timeout
[  587.622864][T11178] gfs2: not a GFS2 filesystem
[  587.768597][   T37] audit: type=1326 audit(1757098634.112:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11175 comm="syz.6.1547" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  588.785274][ T5856] Bluetooth: hci4: command 0x0406 tx timeout
[  588.785308][ T5158] Bluetooth: hci2: command 0x0406 tx timeout
[  588.854707][ T5158] Bluetooth: hci1: command 0x0406 tx timeout
[  589.014527][ T5158] Bluetooth: hci0: command 0x0c1a tx timeout
[  589.414469][ T5158] Bluetooth: hci5: command 0x0c1a tx timeout
[  591.204429][ T5158] Bluetooth: hci0: command 0x0c1a tx timeout
[  591.847214][ T5158] Bluetooth: hci5: command 0x0c1a tx timeout
[  591.890109][T11221] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1554'.
[  592.039072][T11228] input: syz0 as /devices/virtual/input/input10
[  592.590646][T11039] bridge0: port 1(bridge_slave_0) entered blocking state
[  592.590790][T11039] bridge0: port 1(bridge_slave_0) entered disabled state
[  592.591028][T11039] bridge_slave_0: entered allmulticast mode
[  592.613044][T11039] bridge_slave_0: entered promiscuous mode
[  592.717473][T11039] bridge0: port 2(bridge_slave_1) entered blocking state
[  592.717628][T11039] bridge0: port 2(bridge_slave_1) entered disabled state
[  592.717825][T11039] bridge_slave_1: entered allmulticast mode
[  592.756137][T11039] bridge_slave_1: entered promiscuous mode
[  592.824942][ T1229] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  592.977195][ T1229] usb 2-1: config 0 has an invalid interface number: 117 but max is 0
[  592.977223][ T1229] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  592.977240][ T1229] usb 2-1: config 0 has no interface number 0
[  592.977289][ T1229] usb 2-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  592.977310][ T1229] usb 2-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  592.980740][ T1229] usb 2-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[  592.980767][ T1229] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  592.980792][ T1229] usb 2-1: Product: syz
[  592.980805][ T1229] usb 2-1: Manufacturer: syz
[  592.980817][ T1229] usb 2-1: SerialNumber: syz
[  593.098936][ T1229] usb 2-1: config 0 descriptor??
[  593.230600][T11244] gfs2: not a GFS2 filesystem
[  593.281441][   T37] audit: type=1326 audit(1757098639.722:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.1557" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4f0c4bebe9 code=0x0
[  594.471448][ T5829] usb 2-1: USB disconnect, device number 11
[  594.515097][T11039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  594.589573][T11256] netlink: 'syz.6.1561': attribute type 10 has an invalid length.
[  594.589594][T11256] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1561'.
[  594.633932][T11039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  594.634204][T11256] team0: entered promiscuous mode
[  594.634219][T11256] team_slave_0: entered promiscuous mode
[  594.652994][T11256] team_slave_1: entered promiscuous mode
[  594.653191][T11256] dummy0: entered promiscuous mode
[  594.653421][T11256] team0: entered allmulticast mode
[  594.653434][T11256] team_slave_0: entered allmulticast mode
[  594.653453][T11256] team_slave_1: entered allmulticast mode
[  594.653473][T11256] dummy0: entered allmulticast mode
[  594.661443][T11256] bridge0: port 3(team0) entered blocking state
[  594.667465][T11256] bridge0: port 3(team0) entered disabled state
[  594.699305][T11256] bridge0: port 3(team0) entered blocking state
[  594.699469][T11256] bridge0: port 3(team0) entered forwarding state
[  595.024473][ T1229] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  595.033041][ T1168] bridge_slave_1: left allmulticast mode
[  595.033074][ T1168] bridge_slave_1: left promiscuous mode
[  595.033354][ T1168] bridge0: port 2(bridge_slave_1) entered disabled state
[  595.306356][ T1168] bridge_slave_0: left allmulticast mode
[  595.306388][ T1168] bridge_slave_0: left promiscuous mode
[  595.306685][ T1168] bridge0: port 1(bridge_slave_0) entered disabled state
[  595.335962][ T1229] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  595.336010][ T1229] usb 7-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  595.336029][ T1229] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  596.127904][ T1229] usb 7-1: config 0 descriptor??
[  596.387153][ T1229] usbhid 7-1:0.0: can't add hid device: -71
[  596.389181][ T1229] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  596.427573][ T1229] usb 7-1: USB disconnect, device number 8
[  597.400505][T11277] No source specified
[  599.316620][ T1168] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  599.435397][ T1168] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  599.528907][ T1168] bond0 (unregistering): Released all slaves
[  599.854682][T11271] netlink: 'syz.1.1564': attribute type 29 has an invalid length.
[  599.884027][T11039] team0: Port device team_slave_0 added
[  599.918781][T11039] team0: Port device team_slave_1 added
[  600.666328][T11039] batman_adv: batadv0: Adding interface: batadv_slave_0
[  600.666345][T11039] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  600.666368][T11039] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  602.443222][ T1168] hsr_slave_0: left promiscuous mode
[  603.197708][T11326] netlink: 324 bytes leftover after parsing attributes in process `syz.5.1573'.
[  603.292878][ T1168] hsr_slave_1: left promiscuous mode
[  603.293808][ T1168] batman_adv: batadv0: Removing interface: batadv_slave_0
[  603.362329][ T1168] batman_adv: batadv0: Removing interface: batadv_slave_1
[  605.279400][   T37] audit: type=1326 audit(1757098651.732:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11358 comm="syz.5.1580" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4f0c4bebe9 code=0x0
[  605.548231][ T1168] team0 (unregistering): Port device team_slave_1 removed
[  605.688653][ T1168] team0 (unregistering): Port device team_slave_0 removed
[  606.811386][T11039] batman_adv: batadv0: Adding interface: batadv_slave_1
[  606.811399][T11039] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  606.811414][T11039] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  606.812242][T11340] netlink: 'syz.1.1579': attribute type 29 has an invalid length.
[  608.509277][T11039] hsr_slave_0: entered promiscuous mode
[  608.510564][T11039] hsr_slave_1: entered promiscuous mode
[  608.522632][T11039] debugfs: 'hsr0' already exists in 'hsr'
[  608.522658][T11039] Cannot create hsr debugfs directory
[  608.606517][T10882] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  609.033273][T10882] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  609.252722][T10882] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  609.548958][    C0] vkms_vblank_simulate: vblank timer overrun
[  609.570279][T10882] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  610.548964][    C0] vkms_vblank_simulate: vblank timer overrun
[  610.608070][    C0] vkms_vblank_simulate: vblank timer overrun
[  611.237251][    C0] vkms_vblank_simulate: vblank timer overrun
[  611.672677][    C0] vkms_vblank_simulate: vblank timer overrun
[  613.174533][ T5928] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  613.329861][ T5928] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  613.329909][ T5928] usb 7-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  613.329929][ T5928] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  613.382060][ T5928] usb 7-1: config 0 descriptor??
[  613.822255][ T5928] usbhid 7-1:0.0: can't add hid device: -71
[  613.822377][ T5928] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  613.997423][ T5928] usb 7-1: USB disconnect, device number 9
[  614.171085][T10882] 8021q: adding VLAN 0 to HW filter on device bond0
[  614.394367][T10882] 8021q: adding VLAN 0 to HW filter on device team0
[  614.443470][  T150] bridge0: port 1(bridge_slave_0) entered blocking state
[  614.444523][  T150] bridge0: port 1(bridge_slave_0) entered forwarding state
[  614.532209][ T8164] bridge0: port 2(bridge_slave_1) entered blocking state
[  614.534540][ T8164] bridge0: port 2(bridge_slave_1) entered forwarding state
[  620.823383][T11039] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  620.961579][T11039] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  621.111706][T11039] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  621.286499][T11039] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  621.582808][ T5856] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  621.620734][ T5856] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  621.623338][ T5856] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  621.624646][ T5856] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  621.626011][ T5856] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  623.741444][ T5158] Bluetooth: hci0: command tx timeout
[  624.669368][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  625.824718][ T5158] Bluetooth: hci0: command tx timeout
[  625.969787][T11582] netlink: ct family unspecified
[  625.970000][T11582] openvswitch: netlink: Actions may not be safe on all matching packets
[  626.921488][T11587] Invalid source name
[  627.571306][T11602] netlink: 'syz.5.1617': attribute type 29 has an invalid length.
[  627.588559][T11602] netlink: 'syz.5.1617': attribute type 29 has an invalid length.
[  627.814703][ T1765] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  627.849194][T11602] netlink: 'syz.5.1617': attribute type 29 has an invalid length.
[  627.894741][ T5158] Bluetooth: hci0: command tx timeout
[  627.965942][ T1765] usb 7-1: Using ep0 maxpacket: 32
[  627.980423][ T1765] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  627.980450][ T1765] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  627.980468][ T1765] usb 7-1: Product: syz
[  627.980481][ T1765] usb 7-1: Manufacturer: syz
[  627.980493][ T1765] usb 7-1: SerialNumber: syz
[  628.026275][ T1765] usb 7-1: config 0 descriptor??
[  628.251304][ T1765] usb 7-1: USB disconnect, device number 10
[  629.974475][ T5158] Bluetooth: hci0: command tx timeout
[  630.604435][ T1765] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  630.762636][ T1765] usb 7-1: config 0 has no interfaces?
[  630.793492][ T1765] usb 7-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  630.793521][ T1765] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  630.793539][ T1765] usb 7-1: Product: syz
[  630.793551][ T1765] usb 7-1: Manufacturer: syz
[  630.793563][ T1765] usb 7-1: SerialNumber: syz
[  630.856478][ T1765] usb 7-1: config 0 descriptor??
[  632.246500][T11039] 8021q: adding VLAN 0 to HW filter on device bond0
[  632.642627][T11501] chnl_net:caif_netlink_parms(): no params data found
[  632.754477][   T31] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  632.824467][ T1765] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  632.980929][ T5856] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  632.982927][   T31] usb 6-1: Using ep0 maxpacket: 32
[  632.991402][ T5856] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  632.993583][ T5856] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  633.008169][ T5856] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  633.010319][ T5856] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  633.014049][   T31] usb 6-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  633.014073][   T31] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  633.014091][   T31] usb 6-1: Product: syz
[  633.014103][   T31] usb 6-1: Manufacturer: syz
[  633.014115][   T31] usb 6-1: SerialNumber: syz
[  633.034390][ T1765] usb 2-1: Using ep0 maxpacket: 32
[  633.034394][   T31] usb 6-1: config 0 descriptor??
[  633.085279][ T1765] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  633.085304][ T1765] usb 2-1: config 0 has no interface number 0
[  633.088391][ T1765] usb 2-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  633.088417][ T1765] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  633.088434][ T1765] usb 2-1: Product: syz
[  633.088446][ T1765] usb 2-1: Manufacturer: syz
[  633.088458][ T1765] usb 2-1: SerialNumber: syz
[  633.312938][   T31] usb 6-1: USB disconnect, device number 8
[  633.378810][T11477] usb 7-1: USB disconnect, device number 11
[  633.424992][ T1765] usb 2-1: config 0 descriptor??
[  633.470632][ T1765] usb 2-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  633.470659][ T1765] usb 2-1: selecting invalid altsetting 1
[  633.470674][ T1765] usb 2-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  633.535367][ T1765] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  633.535822][ T1765] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  633.535874][ T1765] usb 2-1: media controller created
[  633.604150][ T1765] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  633.635782][T11669] usb 2-1: dvb_usb_ce6230: I2C read not implemented
[  633.691365][ T1765] usb 2-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  633.691420][ T1765] zl10353_read_register: readreg error (reg=127, ret==-71)
[  633.693852][ T1765] usb 2-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  633.794079][ T1765] usb 2-1: USB disconnect, device number 12
[  634.784244][T11694] block nbd1: Attempted send on invalid socket
[  634.784375][T11694] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  634.786083][T11694] block nbd1: Attempted send on invalid socket
[  634.786151][T11694] I/O error, dev nbd1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  635.284177][ T5856] Bluetooth: hci3: command tx timeout
[  637.552531][ T5856] Bluetooth: hci3: command tx timeout
[  637.684544][ T1168] bridge_slave_1: left allmulticast mode
[  637.684578][ T1168] bridge_slave_1: left promiscuous mode
[  637.684846][ T1168] bridge0: port 2(bridge_slave_1) entered disabled state
[  637.800272][ T1168] bridge_slave_0: left allmulticast mode
[  637.800306][ T1168] bridge_slave_0: left promiscuous mode
[  637.800594][ T1168] bridge0: port 1(bridge_slave_0) entered disabled state
[  638.313195][   T31] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  638.524562][   T31] usb 2-1: Using ep0 maxpacket: 32
[  639.053426][   T31] usb 2-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  639.053456][   T31] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  639.053475][   T31] usb 2-1: Product: syz
[  639.053488][   T31] usb 2-1: Manufacturer: syz
[  639.053500][   T31] usb 2-1: SerialNumber: syz
[  639.116231][   T31] usb 2-1: config 0 descriptor??
[  639.337427][ T1765] usb 2-1: USB disconnect, device number 13
[  639.454126][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.461935][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.469980][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.479658][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.519366][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.526306][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.535603][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.550728][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.567103][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.574979][T11715] kvm: kvm [11714]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x80
[  639.654491][ T5856] Bluetooth: hci3: command tx timeout
[  640.104341][T11719] use of bytesused == 0 is deprecated and will be removed in the future,
[  640.104357][T11719] use the actual size instead.
[  641.760868][ T5856] Bluetooth: hci3: command tx timeout
[  642.174542][T11732] No source specified
[  643.085442][ T1168] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  643.129125][ T1168] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  643.273447][ T1168] bond0 (unregistering): Released all slaves
[  643.384856][T11501] bridge0: port 1(bridge_slave_0) entered blocking state
[  643.384994][T11501] bridge0: port 1(bridge_slave_0) entered disabled state
[  643.385229][T11501] bridge_slave_0: entered allmulticast mode
[  643.388095][T11501] bridge_slave_0: entered promiscuous mode
[  643.421131][   T37] audit: type=1326 audit(1757098689.852:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11735 comm="syz.5.1653" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4f0c4bebe9 code=0x0
[  643.536599][T11501] bridge0: port 2(bridge_slave_1) entered blocking state
[  643.536748][T11501] bridge0: port 2(bridge_slave_1) entered disabled state
[  643.536987][T11501] bridge_slave_1: entered allmulticast mode
[  643.542633][T11501] bridge_slave_1: entered promiscuous mode
[  644.405599][ T1765] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  644.614566][ T1765] usb 7-1: Using ep0 maxpacket: 32
[  644.617508][ T1765] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  644.617533][ T1765] usb 7-1: config 0 has no interface number 0
[  644.620887][ T1765] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  644.620913][ T1765] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  644.620931][ T1765] usb 7-1: Product: syz
[  644.620943][ T1765] usb 7-1: Manufacturer: syz
[  644.620956][ T1765] usb 7-1: SerialNumber: syz
[  644.702026][ T1765] usb 7-1: config 0 descriptor??
[  644.724962][T11748] netlink: ct family unspecified
[  644.724993][T11748] openvswitch: netlink: Actions may not be safe on all matching packets
[  644.823542][ T1765] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  644.823568][ T1765] usb 7-1: selecting invalid altsetting 1
[  644.823582][ T1765] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  644.850391][ T1765] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  644.850800][ T1765] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  644.850849][ T1765] usb 7-1: media controller created
[  644.913174][ T1765] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  644.984911][ T1765] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  644.984966][ T1765] zl10353_read_register: readreg error (reg=127, ret==-71)
[  644.985419][ T1765] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  645.068052][ T1765] usb 7-1: USB disconnect, device number 12
[  645.558329][T11501] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  646.844304][T11752] comedi comedi3: reset error (fatal)
[  647.082720][T11764] No source specified
[  647.974506][ T1168] hsr_slave_0: left promiscuous mode
[  648.018882][ T1168] hsr_slave_1: left promiscuous mode
[  648.019833][ T1168] batman_adv: batadv0: Removing interface: batadv_slave_0
[  648.173999][ T1168] batman_adv: batadv0: Removing interface: batadv_slave_1
[  648.359213][   T37] audit: type=1326 audit(1757098694.812:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11771 comm="syz.1.1664" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  649.594466][ T1765] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  649.744602][ T1765] usb 7-1: Using ep0 maxpacket: 32
[  649.746551][ T1765] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  649.746575][ T1765] usb 7-1: config 0 has no interface number 0
[  649.749810][ T1765] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  649.749837][ T1765] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  649.749855][ T1765] usb 7-1: Product: syz
[  649.749867][ T1765] usb 7-1: Manufacturer: syz
[  649.749879][ T1765] usb 7-1: SerialNumber: syz
[  649.762761][ T1765] usb 7-1: config 0 descriptor??
[  649.777849][ T1765] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  649.777875][ T1765] usb 7-1: selecting invalid altsetting 1
[  649.777889][ T1765] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  649.797014][ T1765] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  649.797388][ T1765] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  649.797439][ T1765] usb 7-1: media controller created
[  649.855889][ T1765] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  649.971884][ T1765] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  649.971938][ T1765] zl10353_read_register: readreg error (reg=127, ret==-71)
[  649.972383][ T1765] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  650.353053][ T1765] usb 7-1: USB disconnect, device number 13
[  651.216496][ T1168] team0 (unregistering): Port device team_slave_1 removed
[  651.552915][ T1168] team0 (unregistering): Port device team_slave_0 removed
[  651.985623][T11800] No source specified
[  653.354447][   T37] audit: type=1326 audit(1757098699.662:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11804 comm="syz.6.1674" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  654.250277][T11811] netlink: 120 bytes leftover after parsing attributes in process `syz.6.1675'.
[  655.344458][T11477] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  655.504377][T11477] usb 7-1: Using ep0 maxpacket: 32
[  655.507948][T11477] usb 7-1: config 0 has an invalid interface number: 67 but max is 0
[  655.507972][T11477] usb 7-1: config 0 has no interface number 0
[  655.510667][T11477] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  655.510683][T11477] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  655.510692][T11477] usb 7-1: Product: syz
[  655.510700][T11477] usb 7-1: Manufacturer: syz
[  655.510707][T11477] usb 7-1: SerialNumber: syz
[  655.528198][T11477] usb 7-1: config 0 descriptor??
[  655.539415][T11477] smsc95xx v2.0.0
[  656.004682][T11477] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  656.004721][T11477] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  656.210717][T11477] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[  656.211033][T11477] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -61
[  656.419250][T11477] usb 7-1: USB disconnect, device number 14
[  656.922272][T11501] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  657.541497][T11833] No source specified
[  658.370041][T11501] team0: Port device team_slave_0 added
[  658.427227][   T37] audit: type=1326 audit(1757098704.882:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11834 comm="syz.6.1683" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  658.822278][ T1765] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  658.906899][T11501] team0: Port device team_slave_1 added
[  658.974433][ T1765] usb 2-1: Using ep0 maxpacket: 32
[  658.977232][ T1765] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  658.977256][ T1765] usb 2-1: config 0 has no interface number 0
[  658.980407][ T1765] usb 2-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  658.980433][ T1765] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  658.980451][ T1765] usb 2-1: Product: syz
[  658.980463][ T1765] usb 2-1: Manufacturer: syz
[  658.980476][ T1765] usb 2-1: SerialNumber: syz
[  658.994704][ T1765] usb 2-1: config 0 descriptor??
[  659.003500][ T1765] usb 2-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  659.003525][ T1765] usb 2-1: selecting invalid altsetting 1
[  659.003539][ T1765] usb 2-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  659.030618][ T1765] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  659.031053][ T1765] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  659.031109][ T1765] usb 2-1: media controller created
[  659.121863][ T1765] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  659.402477][ T1765] usb 2-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  659.402522][ T1765] zl10353_read_register: readreg error (reg=127, ret==-71)
[  659.403086][ T1765] usb 2-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  659.453018][T11501] batman_adv: batadv0: Adding interface: batadv_slave_0
[  659.453033][T11501] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  659.453057][T11501] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  659.564771][T11501] batman_adv: batadv0: Adding interface: batadv_slave_1
[  659.564787][T11501] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  659.564814][T11501] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  660.116635][ T1765] usb 2-1: USB disconnect, device number 14
[  660.766628][   T37] audit: type=1326 audit(1757098707.212:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11855 comm="syz.1.1688" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  662.061166][T11501] hsr_slave_0: entered promiscuous mode
[  662.094988][T11501] hsr_slave_1: entered promiscuous mode
[  662.100986][T11501] debugfs: 'hsr0' already exists in 'hsr'
[  662.101015][T11501] Cannot create hsr debugfs directory
[  664.875617][   T37] audit: type=1326 audit(1757098711.332:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11889 comm="syz.5.1694" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4f0c4bebe9 code=0x0
[  665.505629][T11901] netlink: 'syz.6.1695': attribute type 10 has an invalid length.
[  665.505651][T11901] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1695'.
[  665.874903][ T5929] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  666.149613][ T5929] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  666.149659][ T5929] usb 7-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  666.149678][ T5929] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  666.207130][ T5929] usb 7-1: config 0 descriptor??
[  666.396393][T11670] chnl_net:caif_netlink_parms(): no params data found
[  666.423556][ T5929] usbhid 7-1:0.0: can't add hid device: -71
[  666.423633][ T5929] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  666.457298][ T5929] usb 7-1: USB disconnect, device number 15
[  666.776064][T11910] kAFS: unable to lookup cell 'sy�0'
[  666.782673][T11910] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  668.201689][   T37] audit: type=1326 audit(1757098714.652:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11925 comm="syz.1.1704" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  669.962679][   T37] audit: type=1326 audit(1757098716.412:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11955 comm="syz.5.1715" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4f0c4bebe9 code=0x0
[  670.020348][T11670] bridge0: port 1(bridge_slave_0) entered blocking state
[  670.020572][T11670] bridge0: port 1(bridge_slave_0) entered disabled state
[  670.020815][T11670] bridge_slave_0: entered allmulticast mode
[  670.067909][T11670] bridge_slave_0: entered promiscuous mode
[  670.150761][T11670] bridge0: port 2(bridge_slave_1) entered blocking state
[  670.150916][T11670] bridge0: port 2(bridge_slave_1) entered disabled state
[  670.151166][T11670] bridge_slave_1: entered allmulticast mode
[  670.167362][T11670] bridge_slave_1: entered promiscuous mode
[  670.805938][T11670] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  671.235658][T11974] kAFS: unable to lookup cell 'sy�0'
[  671.239722][T11974] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  671.472519][T11670] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  672.373350][T11670] team0: Port device team_slave_0 added
[  672.447685][T11670] team0: Port device team_slave_1 added
[  672.892164][ T1168] bridge_slave_1: left allmulticast mode
[  672.892197][ T1168] bridge_slave_1: left promiscuous mode
[  672.892524][ T1168] bridge0: port 2(bridge_slave_1) entered disabled state
[  673.027731][ T1168] bridge_slave_0: left allmulticast mode
[  673.027765][ T1168] bridge_slave_0: left promiscuous mode
[  673.028074][ T1168] bridge0: port 1(bridge_slave_0) entered disabled state
[  673.362054][   T37] audit: type=1326 audit(1757098719.812:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11992 comm="syz.6.1727" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  674.796002][   T31] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  674.984423][   T31] usb 2-1: Using ep0 maxpacket: 8
[  674.989843][   T31] usb 2-1: unable to get BOS descriptor or descriptor too short
[  674.991488][   T31] usb 2-1: config 8 has no interfaces?
[  674.992295][   T31] usb 2-1: language id specifier not provided by device, defaulting to English
[  675.045064][   T31] usb 2-1: New USB device found, idVendor=357d, idProduct=7788, bcdDevice=24.d8
[  675.045091][   T31] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  675.045109][   T31] usb 2-1: Product: syz
[  675.045121][   T31] usb 2-1: Manufacturer: ഫ႑酒￢儙舸᳖ឋ錱෨轖꛾懚䙓㎉釮⅟杶咟쓾䁀ృ月ᨘꭥ箔蟴㕘ᗣ씚妹獸쯼릖灰㬋組苁မ쾥云鹈氜ᒫ獵쀛硂黾望춰퐉쌀佴㐭䙗򾣿
[  675.045143][   T31] usb 2-1: SerialNumber: syz
[  675.410109][T12011] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  675.410754][T12011] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  675.727615][ T1168] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  675.875445][ T1168] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  675.879705][T12021] netlink: 'syz.6.1737': attribute type 10 has an invalid length.
[  675.879726][T12021] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1737'.
[  675.992984][ T1168] bond0 (unregistering): Released all slaves
[  676.254582][ T5929] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  676.452537][ T5929] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  676.452586][ T5929] usb 7-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  676.452606][ T5929] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  676.457968][ T5929] usb 7-1: config 0 descriptor??
[  677.198205][T11670] batman_adv: batadv0: Adding interface: batadv_slave_0
[  677.198221][T11670] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  677.198246][T11670] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  677.239652][ T5929] usbhid 7-1:0.0: can't add hid device: -71
[  677.239781][ T5929] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  677.257557][ T5929] usb 7-1: USB disconnect, device number 16
[  677.310491][T11670] batman_adv: batadv0: Adding interface: batadv_slave_1
[  677.310506][T11670] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  677.310531][T11670] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  677.314894][   T31] usb 2-1: USB disconnect, device number 15
[  677.635477][ T1168] hsr_slave_0: left promiscuous mode
[  677.679604][ T1168] hsr_slave_1: left promiscuous mode
[  677.680231][ T1168] batman_adv: batadv0: Removing interface: batadv_slave_0
[  677.710151][ T1168] batman_adv: batadv0: Removing interface: batadv_slave_1
[  678.503688][    C0] vkms_vblank_simulate: vblank timer overrun
[  678.964178][    C0] vkms_vblank_simulate: vblank timer overrun
[  679.313216][    C0] vkms_vblank_simulate: vblank timer overrun
[  679.617364][    C0] vkms_vblank_simulate: vblank timer overrun
[  680.076300][ T1168] team0 (unregistering): Port device team_slave_1 removed
[  680.196742][ T1168] team0 (unregistering): Port device team_slave_0 removed
[  680.237245][    C0] vkms_vblank_simulate: vblank timer overrun
[  680.755121][    C0] vkms_vblank_simulate: vblank timer overrun
[  680.772029][ T5158] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  680.795785][ T5158] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  680.798234][ T5158] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  680.800176][ T5158] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  680.801587][ T5158] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  680.839702][    C0] vkms_vblank_simulate: vblank timer overrun
[  681.602992][    C0] vkms_vblank_simulate: vblank timer overrun
[  682.064012][T11670] hsr_slave_0: entered promiscuous mode
[  682.068182][T11670] hsr_slave_1: entered promiscuous mode
[  682.069042][T11670] debugfs: 'hsr0' already exists in 'hsr'
[  682.069065][T11670] Cannot create hsr debugfs directory
[  682.569159][    C0] vkms_vblank_simulate: vblank timer overrun
[  682.611349][T12074] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(10)
[  682.665193][T12074] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  682.686363][T12077] vhci_hcd: connection closed
[  682.738025][T12074] vhci_hcd vhci_hcd.0: Device attached
[  682.751498][   T43] vhci_hcd: stop threads
[  682.757390][   T43] vhci_hcd: release socket
[  682.757481][   T43] vhci_hcd: disconnect device
[  682.785721][T12080] netlink: 'syz.5.1748': attribute type 10 has an invalid length.
[  682.785743][T12080] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1748'.
[  682.889372][    C0] vkms_vblank_simulate: vblank timer overrun
[  683.058854][ T5158] Bluetooth: hci5: command tx timeout
[  683.824439][ T5829] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  684.089243][ T5829] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  684.089272][ T5829] usb 6-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  684.089284][ T5829] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  684.092426][ T5829] usb 6-1: config 0 descriptor??
[  684.962106][ T5829] usbhid 6-1:0.0: can't add hid device: -71
[  684.962240][ T5829] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  684.974787][ T5829] usb 6-1: USB disconnect, device number 9
[  685.094656][ T5158] Bluetooth: hci5: command tx timeout
[  685.986130][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  687.606204][ T5158] Bluetooth: hci5: command tx timeout
[  688.284414][T12116] netlink: 120 bytes leftover after parsing attributes in process `syz.6.1759'.
[  689.113899][T12120] netlink: 'syz.6.1760': attribute type 10 has an invalid length.
[  689.113921][T12120] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1760'.
[  690.144397][ T5158] Bluetooth: hci5: command tx timeout
[  690.434503][T11477] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  690.587750][T11477] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  690.587799][T11477] usb 7-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  690.587820][T11477] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  690.864508][T11477] usb 7-1: config 0 descriptor??
[  691.199437][T11477] usbhid 7-1:0.0: can't add hid device: -71
[  691.199561][T11477] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  691.227564][T11477] usb 7-1: USB disconnect, device number 17
[  693.151398][T12153] netlink: 120 bytes leftover after parsing attributes in process `syz.1.1768'.
[  695.002319][ T5856] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  695.029985][ T5856] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  695.050607][ T5856] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  695.053138][T12056] chnl_net:caif_netlink_parms(): no params data found
[  695.053886][ T5856] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  695.065153][ T5856] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  695.624354][T12174] atomic_op ffff88805a850a18 conn xmit_atomic 0000000000000000
[  697.160633][ T5158] Bluetooth: hci0: command tx timeout
[  697.296251][T12185] netlink: 'syz.5.1776': attribute type 10 has an invalid length.
[  697.296273][T12185] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1776'.
[  697.716944][ T1765] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  698.108775][ T1765] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  698.108822][ T1765] usb 6-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  698.108842][ T1765] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  698.146193][ T1765] usb 6-1: config 0 descriptor??
[  698.212983][T12196] netlink: 120 bytes leftover after parsing attributes in process `syz.1.1778'.
[  698.798551][ T1765] usbhid 6-1:0.0: can't add hid device: -71
[  698.798673][ T1765] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  698.818562][ T1765] usb 6-1: USB disconnect, device number 10
[  699.174493][ T5158] Bluetooth: hci0: command tx timeout
[  699.253957][T12056] bridge0: port 1(bridge_slave_0) entered blocking state
[  699.254114][T12056] bridge0: port 1(bridge_slave_0) entered disabled state
[  699.255004][T12056] bridge_slave_0: entered allmulticast mode
[  699.272854][T12056] bridge_slave_0: entered promiscuous mode
[  699.443412][T12056] bridge0: port 2(bridge_slave_1) entered blocking state
[  699.443522][T12056] bridge0: port 2(bridge_slave_1) entered disabled state
[  699.443702][T12056] bridge_slave_1: entered allmulticast mode
[  699.505007][T12056] bridge_slave_1: entered promiscuous mode
[  700.241193][T12056] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  700.420777][ T1014] bridge_slave_1: left allmulticast mode
[  700.420810][ T1014] bridge_slave_1: left promiscuous mode
[  700.421113][ T1014] bridge0: port 2(bridge_slave_1) entered disabled state
[  700.517346][ T1014] bridge_slave_0: left allmulticast mode
[  700.517369][ T1014] bridge_slave_0: left promiscuous mode
[  700.517748][ T1014] bridge0: port 1(bridge_slave_0) entered disabled state
[  701.257725][ T5158] Bluetooth: hci0: command tx timeout
[  701.847467][ T1014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  702.269991][ T1014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  702.373229][T12233] netlink: 120 bytes leftover after parsing attributes in process `syz.1.1789'.
[  703.028330][ T1014] bond0 (unregistering): Released all slaves
[  703.218645][T12056] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  703.296030][T12238] netlink: 'syz.6.1792': attribute type 10 has an invalid length.
[  703.296052][T12238] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1792'.
[  703.337104][ T5158] Bluetooth: hci0: command tx timeout
[  704.664820][   T31] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  704.903556][   T31] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  704.903605][   T31] usb 7-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  704.903626][   T31] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  704.911717][   T31] usb 7-1: config 0 descriptor??
[  705.155974][T12056] team0: Port device team_slave_0 added
[  705.293956][   T31] usbhid 7-1:0.0: can't add hid device: -71
[  705.294081][   T31] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  705.305215][   T31] usb 7-1: USB disconnect, device number 18
[  705.394517][ T1014] hsr_slave_0: left promiscuous mode
[  705.421361][ T1014] hsr_slave_1: left promiscuous mode
[  705.422343][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_0
[  705.465419][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_1
[  707.905946][ T1014] team0 (unregistering): Port device team_slave_1 removed
[  708.106237][ T1014] team0 (unregistering): Port device team_slave_0 removed
[  709.134131][T12056] team0: Port device team_slave_1 added
[  709.233014][T12262] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1797'.
[  709.731421][T12282] netlink: 120 bytes leftover after parsing attributes in process `syz.6.1802'.
[  710.639678][T12056] batman_adv: batadv0: Adding interface: batadv_slave_0
[  710.639696][T12056] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  710.639721][T12056] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  710.888516][T12290] gfs2: not a GFS2 filesystem
[  710.891749][   T37] audit: type=1326 audit(1757098757.342:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12288 comm="syz.6.1807" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  711.062657][T12293] 9pnet_fd: Insufficient options for proto=fd
[  711.494771][T12056] batman_adv: batadv0: Adding interface: batadv_slave_1
[  711.494789][T12056] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  711.494821][T12056] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  712.288487][T12056] hsr_slave_0: entered promiscuous mode
[  712.290097][T12056] hsr_slave_1: entered promiscuous mode
[  712.291199][T12056] debugfs: 'hsr0' already exists in 'hsr'
[  712.291223][T12056] Cannot create hsr debugfs directory
[  712.356468][T12165] chnl_net:caif_netlink_parms(): no params data found
[  712.784475][ T5158] Bluetooth: hci1: Malformed Event: 0x02
[  712.872100][T12309] netlink: ct family unspecified
[  712.872133][T12309] openvswitch: netlink: Actions may not be safe on all matching packets
[  717.999285][ T1014] bridge_slave_1: left allmulticast mode
[  717.999318][ T1014] bridge_slave_1: left promiscuous mode
[  717.999611][ T1014] bridge0: port 2(bridge_slave_1) entered disabled state
[  718.116536][ T1014] bridge_slave_0: left allmulticast mode
[  718.116558][ T1014] bridge_slave_0: left promiscuous mode
[  718.116733][ T1014] bridge0: port 1(bridge_slave_0) entered disabled state
[  718.866365][ T1014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  719.084430][    C0] vkms_vblank_simulate: vblank timer overrun
[  719.274550][    C0] vkms_vblank_simulate: vblank timer overrun
[  719.372397][ T1014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  719.860735][    C0] vkms_vblank_simulate: vblank timer overrun
[  720.108734][ T1014] bond0 (unregistering): Released all slaves
[  720.306046][T12165] bridge0: port 1(bridge_slave_0) entered blocking state
[  720.306124][T12165] bridge0: port 1(bridge_slave_0) entered disabled state
[  720.306294][T12165] bridge_slave_0: entered allmulticast mode
[  720.313664][T12165] bridge_slave_0: entered promiscuous mode
[  720.775757][    C0] vkms_vblank_simulate: vblank timer overrun
[  721.029932][    C0] vkms_vblank_simulate: vblank timer overrun
[  721.097841][    C0] vkms_vblank_simulate: vblank timer overrun
[  721.139066][    C0] vkms_vblank_simulate: vblank timer overrun
[  721.452971][    C0] vkms_vblank_simulate: vblank timer overrun
[  721.496185][    C0] vkms_vblank_simulate: vblank timer overrun
[  721.969589][T12165] bridge0: port 2(bridge_slave_1) entered blocking state
[  721.969741][T12165] bridge0: port 2(bridge_slave_1) entered disabled state
[  721.969947][T12165] bridge_slave_1: entered allmulticast mode
[  722.018589][T12165] bridge_slave_1: entered promiscuous mode
[  722.263532][    C0] vkms_vblank_simulate: vblank timer overrun
[  722.397627][    C0] vkms_vblank_simulate: vblank timer overrun
[  723.800064][ T1014] hsr_slave_0: left promiscuous mode
[  723.835187][ T1014] hsr_slave_1: left promiscuous mode
[  723.844727][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_0
[  723.903065][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_1
[  727.985323][ T1014] team0 (unregistering): Port device team_slave_1 removed
[  728.125077][ T1014] team0 (unregistering): Port device team_slave_0 removed
[  730.419396][T12165] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  730.450802][T12165] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  732.368273][T12165] team0: Port device team_slave_0 added
[  732.392922][T12165] team0: Port device team_slave_1 added
[  733.123081][T12165] batman_adv: batadv0: Adding interface: batadv_slave_0
[  733.123097][T12165] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  733.123122][T12165] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  733.143341][T12165] batman_adv: batadv0: Adding interface: batadv_slave_1
[  733.143359][T12165] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  733.143385][T12165] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  736.888458][T12165] hsr_slave_0: entered promiscuous mode
[  736.916425][T12165] hsr_slave_1: entered promiscuous mode
[  736.917576][T12165] debugfs: 'hsr0' already exists in 'hsr'
[  736.917592][T12165] Cannot create hsr debugfs directory
[  739.568655][T12492] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1854'.
[  740.419603][T12056] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  741.870190][T12165] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  742.003760][T12165] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  742.119024][T12165] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  742.336540][T12165] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  742.941764][ T5856] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  742.954822][T12519] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  742.966331][T12519] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  742.967574][T12519] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  742.968594][T12519] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  744.323332][T12532] 9pnet_fd: Insufficient options for proto=fd
[  744.502466][    C0] vkms_vblank_simulate: vblank timer overrun
[  744.641354][    C0] vkms_vblank_simulate: vblank timer overrun
[  744.993478][    C0] vkms_vblank_simulate: vblank timer overrun
[  745.056376][    C0] vkms_vblank_simulate: vblank timer overrun
[  745.102389][T12519] Bluetooth: hci3: command tx timeout
[  745.599275][T12547] gfs2: not a GFS2 filesystem
[  745.790637][    C0] vkms_vblank_simulate: vblank timer overrun
[  745.793731][   T37] audit: type=1326 audit(1757098792.092:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12541 comm="syz.6.1866" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  745.969988][    C0] vkms_vblank_simulate: vblank timer overrun
[  746.318918][    C0] vkms_vblank_simulate: vblank timer overrun
[  747.202891][T12519] Bluetooth: hci3: command tx timeout
[  747.688410][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  748.242783][T12561] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1868'.
[  748.987317][T12165] 8021q: adding VLAN 0 to HW filter on device bond0
[  749.774373][ T5158] Bluetooth: hci3: command tx timeout
[  750.925947][ T5158] Bluetooth: hci1: unexpected event for opcode 0x0c7b
[  751.411979][T12517] chnl_net:caif_netlink_parms(): no params data found
[  751.613013][T12579] 9pnet_fd: Insufficient options for proto=fd
[  751.814488][ T5158] Bluetooth: hci3: command tx timeout
[  752.625063][T12588] netlink: 120 bytes leftover after parsing attributes in process `syz.6.1877'.
[  753.457979][T12165] 8021q: adding VLAN 0 to HW filter on device team0
[  754.936721][ T5158] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  754.936818][ T5158] Bluetooth: hci1: Injecting HCI hardware error event
[  754.938759][ T5158] Bluetooth: hci1: hardware error 0x00
[  755.856846][ T5856] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  755.863585][ T5856] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  755.864389][T12517] bridge0: port 1(bridge_slave_0) entered blocking state
[  755.864543][T12517] bridge0: port 1(bridge_slave_0) entered disabled state
[  755.864809][T12517] bridge_slave_0: entered allmulticast mode
[  755.900806][ T5856] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  755.915310][T12517] bridge_slave_0: entered promiscuous mode
[  755.915383][ T5856] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  755.916252][ T5856] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  755.969827][T12517] bridge0: port 2(bridge_slave_1) entered blocking state
[  755.969943][T12517] bridge0: port 2(bridge_slave_1) entered disabled state
[  755.970173][T12517] bridge_slave_1: entered allmulticast mode
[  756.022071][T12517] bridge_slave_1: entered promiscuous mode
[  757.314389][ T5158] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  757.429513][T12615] random: crng reseeded on system resumption
[  757.974506][ T5158] Bluetooth: hci5: command tx timeout
[  758.820258][T12616] delete_channel: no stack
[  759.035243][T12621] 9pnet_fd: Insufficient options for proto=fd
[  759.526762][T12517] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  759.565468][T12517] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  759.624473][T11477] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  759.790397][T11477] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  759.790424][T11477] usb 2-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3
[  759.790443][T11477] usb 2-1: Product: syz
[  759.790455][T11477] usb 2-1: Manufacturer: syz
[  759.790468][T11477] usb 2-1: SerialNumber: syz
[  759.830090][T11477] usb 2-1: config 0 descriptor??
[  759.851858][T11477] ch341 2-1:0.0: ch341-uart converter detected
[  760.028773][T12640] program syz.5.1891 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  760.068576][ T5158] Bluetooth: hci5: command tx timeout
[  760.167568][   T37] audit: type=1326 audit(1757098806.612:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12637 comm="syz.6.1890" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  760.536767][T12517] team0: Port device team_slave_0 added
[  760.668271][T11477] usb 2-1: failed to send control message: -71
[  760.668329][T11477] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  760.685346][T12517] team0: Port device team_slave_1 added
[  760.704838][T11477] usb 2-1: USB disconnect, device number 16
[  760.708034][T11477] ch341 2-1:0.0: device disconnected
[  761.050695][T12517] batman_adv: batadv0: Adding interface: batadv_slave_0
[  761.050711][T12517] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  761.050736][T12517] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  761.362472][T12517] batman_adv: batadv0: Adding interface: batadv_slave_1
[  761.362488][T12517] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  761.362513][T12517] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  762.105205][   T43] bridge_slave_1: left allmulticast mode
[  762.105229][   T43] bridge_slave_1: left promiscuous mode
[  762.105415][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  762.134511][ T5158] Bluetooth: hci5: command tx timeout
[  762.248140][   T43] bridge_slave_0: left allmulticast mode
[  762.248379][   T43] bridge_slave_0: left promiscuous mode
[  762.248660][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  763.356761][   T43] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  763.667496][   T43] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  763.795043][T11477] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  764.404541][ T5856] Bluetooth: hci5: command tx timeout
[  764.627741][   T43] bond0 (unregistering): Released all slaves
[  764.734713][T11477] usb 2-1: Using ep0 maxpacket: 32
[  764.740744][T11477] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  764.763797][T11477] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  764.763814][T11477] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  764.763825][T11477] usb 2-1: Product: syz
[  764.763832][T11477] usb 2-1: Manufacturer: syz
[  764.763838][T11477] usb 2-1: SerialNumber: syz
[  764.800353][T11477] usb 2-1: config 0 descriptor??
[  764.838038][T12676] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  764.876054][T12682] netlink: 'syz.5.1902': attribute type 29 has an invalid length.
[  764.884105][T12517] hsr_slave_0: entered promiscuous mode
[  764.903173][T12517] hsr_slave_1: entered promiscuous mode
[  764.903981][T12517] debugfs: 'hsr0' already exists in 'hsr'
[  764.904004][T12517] Cannot create hsr debugfs directory
[  764.908228][T12683] netlink: 'syz.5.1902': attribute type 29 has an invalid length.
[  764.915836][T12684] netlink: 'syz.5.1902': attribute type 29 has an invalid length.
[  765.262203][ T5929] usb 2-1: USB disconnect, device number 17
[  765.325133][   T31] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  765.472001][   T43] hsr_slave_0: left promiscuous mode
[  765.479951][   T31] usb 7-1: Using ep0 maxpacket: 16
[  765.483854][   T31] usb 7-1: New USB device found, idVendor=09c0, idProduct=0201, bcdDevice= a.a4
[  765.483870][   T31] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  765.483880][   T31] usb 7-1: Product: syz
[  765.483887][   T31] usb 7-1: Manufacturer: syz
[  765.483894][   T31] usb 7-1: SerialNumber: syz
[  765.521298][T11477] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  765.539149][   T43] hsr_slave_1: left promiscuous mode
[  765.540103][   T43] batman_adv: batadv0: Removing interface: batadv_slave_0
[  765.540730][   T31] usb 7-1: config 0 descriptor??
[  765.567065][   T31] dvb-usb: found a 'Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver' in warm state.
[  765.595955][   T43] batman_adv: batadv0: Removing interface: batadv_slave_1
[  765.684357][T11477] usb 6-1: Using ep0 maxpacket: 16
[  765.689660][T11477] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  765.689735][T11477] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  765.689748][T11477] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  765.760941][T11477] usb 6-1: config 0 descriptor??
[  765.783280][   T31] gp8psk: usb in 128 operation failed.
[  765.793373][   T31] gp8psk: usb in 137 operation failed.
[  765.793403][   T31] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  765.809440][   T31] dvbdev: DVB: registering new adapter (Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver)
[  765.809481][   T31] usb 7-1: media controller created
[  765.963355][   T31] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  766.062044][   T31] gp8psk_fe: Frontend revision 1 attached
[  766.076914][   T31] usb 7-1: DVB: registering adapter 1 frontend 0 (Genpix DVB-S)...
[  766.107235][   T31] dvbdev: dvb_create_media_entity: media entity 'Genpix DVB-S' registered.
[  766.229906][T11477] mcp2221 0003:04D8:00DD.0002: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.5-1/input0
[  766.395261][   T31] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receiver successfully initialized and connected.
[  766.395279][   T31] gp8psk: found Genpix USB device pID = 201 (hex)
[  766.539718][T11477] usb 6-1: USB disconnect, device number 11
[  766.614726][   T31] usb 7-1: USB disconnect, device number 19
[  766.918962][   T31] dvb-usb: Genpix 8PSK-to-USB2 Rev.1 DVB-S receive successfully deinitialized and disconnected.
[  769.499043][   T43] team0 (unregistering): Port device team_slave_1 removed
[  769.675598][   T43] team0 (unregistering): Port device team_slave_0 removed
[  770.359356][T12719] netlink: 'syz.6.1913': attribute type 29 has an invalid length.
[  770.359990][T12720] netlink: 'syz.6.1913': attribute type 29 has an invalid length.
[  770.363450][T12721] netlink: 'syz.6.1913': attribute type 29 has an invalid length.
[  770.844438][T12728] netlink: 120 bytes leftover after parsing attributes in process `syz.5.1914'.
[  775.852579][T12754] netlink: 'syz.6.1923': attribute type 29 has an invalid length.
[  775.901349][T12606] chnl_net:caif_netlink_parms(): no params data found
[  775.936118][T12757] netlink: 'syz.6.1923': attribute type 29 has an invalid length.
[  775.946733][T12754] netlink: 'syz.6.1923': attribute type 29 has an invalid length.
[  776.418908][T12764] bridge0: port 4(syz_tun) entered blocking state
[  776.443110][T12764] bridge0: port 4(syz_tun) entered disabled state
[  776.545079][T12764] syz_tun: entered allmulticast mode
[  777.014882][T12764] syz_tun: entered promiscuous mode
[  777.024013][T12764] bridge0: port 4(syz_tun) entered blocking state
[  777.026660][T12764] bridge0: port 4(syz_tun) entered forwarding state
[  777.484285][T12775] netlink: 120 bytes leftover after parsing attributes in process `syz.6.1927'.
[  779.904924][ T5829] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  779.925047][ T5929] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  780.017077][T12606] bridge0: port 1(bridge_slave_0) entered blocking state
[  780.017259][T12606] bridge0: port 1(bridge_slave_0) entered disabled state
[  780.017503][T12606] bridge_slave_0: entered allmulticast mode
[  780.021049][T12606] bridge_slave_0: entered promiscuous mode
[  780.055639][T12606] bridge0: port 2(bridge_slave_1) entered blocking state
[  780.062146][T12606] bridge0: port 2(bridge_slave_1) entered disabled state
[  780.062391][T12606] bridge_slave_1: entered allmulticast mode
[  780.090572][ T5829] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  780.090591][ T5829] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  780.090613][ T5829] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  780.090624][ T5829] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  780.132707][ T5929] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  780.146057][ T5929] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  780.146078][ T5929] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  780.146088][ T5929] usb 2-1: Product: syz
[  780.146095][ T5929] usb 2-1: Manufacturer: syz
[  780.146101][ T5929] usb 2-1: SerialNumber: syz
[  780.198070][T12606] bridge_slave_1: entered promiscuous mode
[  780.216146][ T5829] usb 6-1: config 0 descriptor??
[  780.258884][ T5929] usb 2-1: config 0 descriptor??
[  780.720024][ T5929] snd-usb-audio 2-1:0.0: probe with driver snd-usb-audio failed with error -22
[  780.775721][ T5929] usb 2-1: USB disconnect, device number 18
[  780.915099][ T5829] pyra 0003:1E7D:2CF6.0003: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.5-1/input0
[  780.923171][T12626] udevd[12626]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  781.866055][T12810] 9pnet_fd: Insufficient options for proto=fd
[  782.041700][T12606] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  782.118512][T12606] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  782.209725][ T5829] pyra 0003:1E7D:2CF6.0003: couldn't init struct pyra_device
[  782.209777][ T5829] pyra 0003:1E7D:2CF6.0003: couldn't install mouse
[  782.249458][ T5829] pyra 0003:1E7D:2CF6.0003: probe with driver pyra failed with error -71
[  782.284946][ T5829] usb 6-1: USB disconnect, device number 12
[  783.587303][T12832] random: crng reseeded on system resumption
[  783.920348][T12606] team0: Port device team_slave_0 added
[  784.073806][T12606] team0: Port device team_slave_1 added
[  784.511554][T12839] gfs2: not a GFS2 filesystem
[  784.519148][   T37] audit: type=1326 audit(1757098830.972:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12836 comm="syz.6.1944" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  785.529056][T12606] batman_adv: batadv0: Adding interface: batadv_slave_0
[  785.529073][T12606] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  785.529097][T12606] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  788.178680][T12606] batman_adv: batadv0: Adding interface: batadv_slave_1
[  788.178696][T12606] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  788.178722][T12606] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  788.307577][T12855] 9pnet_fd: Insufficient options for proto=fd
[  788.352745][T12517] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  789.644388][T12517] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  790.001876][T12517] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  790.039211][T12871] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1951'.
[  790.130299][T12873] random: crng reseeded on system resumption
[  790.267675][T12871] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1951'.
[  790.268371][T12517] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  790.400618][T12606] hsr_slave_0: entered promiscuous mode
[  790.403056][T12606] hsr_slave_1: entered promiscuous mode
[  790.403864][T12606] debugfs: 'hsr0' already exists in 'hsr'
[  790.403886][T12606] Cannot create hsr debugfs directory
[  790.431083][T12479] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  790.519389][T12479] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  790.555976][T12479] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  791.970626][   T37] audit: type=1326 audit(1757098838.392:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12890 comm="syz.1.1954" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  792.788221][T12479] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  795.130050][T12910] gfs2: not a GFS2 filesystem
[  795.133648][   T37] audit: type=1326 audit(1757098841.582:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12907 comm="syz.5.1958" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4f0c4bebe9 code=0x0
[  795.996903][T12916] 9pnet_fd: Insufficient options for proto=fd
[  795.997888][ T1014] bridge_slave_1: left allmulticast mode
[  795.997918][ T1014] bridge_slave_1: left promiscuous mode
[  795.998188][ T1014] bridge0: port 2(bridge_slave_1) entered disabled state
[  796.085463][ T1014] bridge_slave_0: left allmulticast mode
[  796.085485][ T1014] bridge_slave_0: left promiscuous mode
[  796.085796][ T1014] bridge0: port 1(bridge_slave_0) entered disabled state
[  798.485387][T12939] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1965'.
[  798.964405][T11477] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  799.134890][T11477] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  799.140774][T11477] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  799.140801][T11477] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  799.140819][T11477] usb 2-1: Product: syz
[  799.140832][T11477] usb 2-1: Manufacturer: syz
[  799.140844][T11477] usb 2-1: SerialNumber: syz
[  799.464107][T11477] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 19 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  799.730667][    C1] usblp0: nonzero write bulk status received: -71
[  799.738214][ T5829] usb 2-1: USB disconnect, device number 19
[  799.744054][ T5829] usblp0: removed
[  800.477215][T12950] gfs2: not a GFS2 filesystem
[  800.482329][   T37] audit: type=1326 audit(1757098846.932:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12947 comm="syz.6.1968" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  802.275604][ T1014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  803.466138][ T1014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  803.695971][ T1014] bond0 (unregistering): Released all slaves
[  803.986481][ T5158] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  803.993747][ T5158] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  804.005000][ T5158] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  804.005986][ T5158] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  804.006601][ T5158] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  804.868531][T12985] netlink: 120 bytes leftover after parsing attributes in process `syz.5.1975'.
[  805.878351][T12991] netlink: 'syz.6.1977': attribute type 10 has an invalid length.
[  805.878373][T12991] netlink: 40 bytes leftover after parsing attributes in process `syz.6.1977'.
[  806.054719][ T5856] Bluetooth: hci0: command tx timeout
[  807.094619][ T5929] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  807.094895][    C0] raw-gadget.0 gadget.6: ignoring, device is not running
[  807.227477][ T5929] usb 7-1: device descriptor read/64, error -32
[  807.675140][ T5929] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  807.691643][ T1014] hsr_slave_0: left promiscuous mode
[  807.754585][ T1014] hsr_slave_1: left promiscuous mode
[  807.755710][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_0
[  807.877439][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_1
[  807.912770][ T5929] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  807.912821][ T5929] usb 7-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  807.912842][ T5929] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  808.058030][ T5929] usb 7-1: config 0 descriptor??
[  808.134509][ T5856] Bluetooth: hci0: command tx timeout
[  808.860768][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  809.179073][ T5929] usbhid 7-1:0.0: can't add hid device: -71
[  809.179159][ T5929] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  809.184812][ T5929] usb 7-1: USB disconnect, device number 21
[  810.156925][ T1014] team0 (unregistering): Port device team_slave_1 removed
[  810.214339][ T5856] Bluetooth: hci0: command tx timeout
[  810.500770][ T1014] team0 (unregistering): Port device team_slave_0 removed
[  812.295004][ T5856] Bluetooth: hci0: command tx timeout
[  812.424543][   T37] audit: type=1804 audit(1757098858.862:81): pid=13026 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.1986" name="/newroot/502/file0" dev="tmpfs" ino=2611 res=1 errno=0
[  815.916879][T13046] netlink: ct family unspecified
[  815.916912][T13046] openvswitch: netlink: Actions may not be safe on all matching packets
[  816.906475][ T5158] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  816.929108][ T5158] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  816.930538][ T5158] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  816.966190][ T5158] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  816.970920][ T5158] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  818.264401][   T37] audit: type=1326 audit(1757098864.092:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13065 comm="syz.1.1993" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  818.716266][T12971] chnl_net:caif_netlink_parms(): no params data found
[  819.111844][ T5856] Bluetooth: hci3: command tx timeout
[  821.182115][ T5856] Bluetooth: hci3: command tx timeout
[  822.066243][T12971] bridge0: port 1(bridge_slave_0) entered blocking state
[  822.084453][T12971] bridge0: port 1(bridge_slave_0) entered disabled state
[  822.178030][T12971] bridge_slave_0: entered allmulticast mode
[  822.180805][T12971] bridge_slave_0: entered promiscuous mode
[  822.277988][T12971] bridge0: port 2(bridge_slave_1) entered blocking state
[  822.278131][T12971] bridge0: port 2(bridge_slave_1) entered disabled state
[  822.278333][T12971] bridge_slave_1: entered allmulticast mode
[  822.281046][T12971] bridge_slave_1: entered promiscuous mode
[  822.827313][T13116] random: crng reseeded on system resumption
[  823.257113][ T5856] Bluetooth: hci3: command tx timeout
[  823.767923][   T37] audit: type=1326 audit(1757098870.212:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13122 comm="syz.5.2002" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4f0c4bebe9 code=0x0
[  824.744948][T13137] netlink: 'syz.5.2006': attribute type 10 has an invalid length.
[  824.744970][T13137] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2006'.
[  825.334392][ T5856] Bluetooth: hci3: command tx timeout
[  825.428312][T12971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  825.564390][ T5929] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  825.564671][    C0] raw-gadget.0 gadget.5: ignoring, device is not running
[  825.697366][ T5929] usb 6-1: device descriptor read/64, error -32
[  825.945986][ T5929] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  826.185328][ T5929] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  826.185379][ T5929] usb 6-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  826.185399][ T5929] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  826.223717][ T5929] usb 6-1: config 0 descriptor??
[  826.788544][T12971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  827.086070][ T5929] usbhid 6-1:0.0: can't add hid device: -71
[  827.086147][ T5929] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  827.093485][ T5929] usb 6-1: USB disconnect, device number 14
[  827.773933][T12971] team0: Port device team_slave_0 added
[  827.807819][T12971] team0: Port device team_slave_1 added
[  828.504678][T13177] random: crng reseeded on system resumption
[  828.702372][   T37] audit: type=1326 audit(1757098875.052:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13175 comm="syz.1.2014" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  829.640874][T13187] gfs2: not a GFS2 filesystem
[  829.651178][   T37] audit: type=1326 audit(1757098876.092:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13186 comm="syz.6.2016" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f993a5cebe9 code=0x0
[  829.656220][T13182] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  831.025535][T12971] batman_adv: batadv0: Adding interface: batadv_slave_0
[  831.025551][T12971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  831.025576][T12971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  831.062908][T12971] batman_adv: batadv0: Adding interface: batadv_slave_1
[  831.062923][T12971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  831.062949][T12971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  831.958954][T13204] netlink: 'syz.6.2020': attribute type 10 has an invalid length.
[  831.958970][T13204] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2020'.
[  832.981259][T11477] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  833.153329][T12971] hsr_slave_0: entered promiscuous mode
[  833.161513][T11477] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  833.161564][T11477] usb 7-1: New USB device found, idVendor=046d, idProduct=c626, bcdDevice= 0.00
[  833.161585][T11477] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  833.213449][T11477] usb 7-1: config 0 descriptor??
[  833.380087][T12971] hsr_slave_1: entered promiscuous mode
[  833.381786][T13215] 9pnet_fd: Insufficient options for proto=fd
[  833.383378][T12971] debugfs: 'hsr0' already exists in 'hsr'
[  833.383395][T12971] Cannot create hsr debugfs directory
[  833.395669][T13060] chnl_net:caif_netlink_parms(): no params data found
[  833.613883][T11477] usbhid 7-1:0.0: can't add hid device: -71
[  833.614009][T11477] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  833.763066][T11477] usb 7-1: USB disconnect, device number 22
[  834.457112][T13230] netlink: 120 bytes leftover after parsing attributes in process `syz.1.2026'.
[  835.354935][T13235] gfs2: not a GFS2 filesystem
[  835.359113][   T37] audit: type=1326 audit(1757098881.812:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13234 comm="syz.1.2029" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  836.841023][T13060] bridge0: port 1(bridge_slave_0) entered blocking state
[  836.841303][T13060] bridge0: port 1(bridge_slave_0) entered disabled state
[  836.841538][T13060] bridge_slave_0: entered allmulticast mode
[  836.850477][T13060] bridge_slave_0: entered promiscuous mode
[  836.971135][T13060] bridge0: port 2(bridge_slave_1) entered blocking state
[  836.971216][T13060] bridge0: port 2(bridge_slave_1) entered disabled state
[  836.971398][T13060] bridge_slave_1: entered allmulticast mode
[  836.973099][T13060] bridge_slave_1: entered promiscuous mode
[  836.974599][ T1014] bridge_slave_1: left allmulticast mode
[  836.974627][ T1014] bridge_slave_1: left promiscuous mode
[  836.974854][ T1014] bridge0: port 2(bridge_slave_1) entered disabled state
[  837.066171][ T1014] bridge_slave_0: left allmulticast mode
[  837.066204][ T1014] bridge_slave_0: left promiscuous mode
[  837.066465][ T1014] bridge0: port 1(bridge_slave_0) entered disabled state
[  837.196395][ T1014] bridge_slave_1: left allmulticast mode
[  837.196437][ T1014] bridge_slave_1: left promiscuous mode
[  837.196706][ T1014] bridge0: port 2(bridge_slave_1) entered disabled state
[  837.336154][ T1014] bridge_slave_0: left allmulticast mode
[  837.336189][ T1014] bridge_slave_0: left promiscuous mode
[  837.336451][ T1014] bridge0: port 1(bridge_slave_0) entered disabled state
[  837.609247][T13261] 9pnet_fd: Insufficient options for proto=fd
[  838.199604][T13263] No source specified
[  839.905061][ T1014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  839.985853][ T1014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  840.167286][ T1014] bond0 (unregistering): Released all slaves
[  840.555038][ T1014] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  840.616570][ T1014] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  840.686790][ T1014] bond0 (unregistering): Released all slaves
[  841.425034][   T37] audit: type=1326 audit(1757098887.872:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13275 comm="syz.1.2039" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd23dccebe9 code=0x0
[  843.360578][T13060] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  843.967117][ T1014] hsr_slave_0: left promiscuous mode
[  844.014448][ T1014] hsr_slave_1: left promiscuous mode
[  844.015368][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_0
[  844.055661][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_1
[  844.399510][ T1014] hsr_slave_0: left promiscuous mode
[  844.473681][ T1014] hsr_slave_1: left promiscuous mode
[  844.481691][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_0
[  844.532434][ T1014] batman_adv: batadv0: Removing interface: batadv_slave_1
[  845.452530][T13307] ------------[ cut here ]------------
[  845.452557][T13307] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0xfffffffefffff630, 0xffffffff00000000] s64=[0xfffffffefffff630, 0xffffffff00000000] u32=[0x30, 0x8000050] s32=[0x30, 0x0] var_off=(0xfffffffe00000030, 0x10fffffc0)(1)
[  845.452954][T13307] WARNING: CPU: 0 PID: 13307 at kernel/bpf/verifier.c:2728 reg_bounds_sanity_check+0x6e6/0xc20
[  845.453010][T13307] Modules linked in:
[  845.453048][T13307] CPU: 0 UID: 0 PID: 13307 Comm: syz.1.2047 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  845.453081][T13307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  845.453093][T13307] RIP: 0010:reg_bounds_sanity_check+0x6e6/0xc20
[  845.453133][T13307] Code: 24 20 4c 8b 44 24 60 4c 8b 4c 24 58 41 ff 75 00 53 41 57 55 ff 74 24 38 ff 74 24 70 ff 74 24 40 e8 9f 5a ab ff 48 83 c4 38 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4d 89 f7 4c 8b 74 24 08
[  845.453154][T13307] RSP: 0018:ffffc900057aef08 EFLAGS: 00010282
[  845.453180][T13307] RAX: e4a38aeeaeca9000 RBX: fffffffe00000030 RCX: 0000000000080000
[  845.453194][T13307] RDX: ffffc9000eded000 RSI: 000000000002d8e3 RDI: 000000000002d8e4
[  845.453207][T13307] RBP: 0000000000000030 R08: 0000000000000000 R09: 0000000000000000
[  845.453233][T13307] R10: dffffc0000000000 R11: ffffed1017104863 R12: ffff888034d61168
[  845.453247][T13307] R13: ffff888034d61188 R14: ffff888034d611a0 R15: 0000000000000000
[  845.453275][T13307] FS:  00007fd23bf0d6c0(0000) GS:ffff8881268c1000(0000) knlGS:0000000000000000
[  845.453306][T13307] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  845.453336][T13307] CR2: 00007fd23bf0cf98 CR3: 00000000515ae000 CR4: 00000000003526f0
[  845.453369][T13307] Call Trace:
[  845.453377][T13307]  <TASK>
[  845.453473][T13307]  reg_set_min_max+0x264/0x300
[  845.453519][T13307]  check_cond_jmp_op+0x1625/0x2910
[  845.453565][T13307]  ? reg_bounds_sanity_check+0x80d/0xc20
[  845.453613][T13307]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  845.453656][T13307]  ? __check_reg_arg+0x21f/0x490
[  845.453693][T13307]  ? do_check+0x2796/0xe520
[  845.453730][T13307]  do_check+0x6751/0xe520
[  845.453920][T13307]  ? __pfx_do_check+0x10/0x10
[  845.453959][T13307]  ? do_check_common+0x1268/0x24f0
[  845.453998][T13307]  do_check_common+0x1949/0x24f0
[  845.454065][T13307]  bpf_check+0x17473/0x1d2e0
[  845.454104][T13307]  ? sched_clock+0x3f/0x60
[  845.454216][T13307]  ? rcu_is_watching+0x15/0xb0
[  845.454245][T13307]  ? __schedule+0x1709/0x4c20
[  845.454286][T13307]  ? __pfx___schedule+0x10/0x10
[  845.454324][T13307]  ? __pfx_bpf_check+0x10/0x10
[  845.454340][T13307]  ? trace_irq_disable+0x37/0x110
[  845.454358][T13307]  ? preempt_schedule_irq+0xde/0x150
[  845.454378][T13307]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  845.454402][T13307]  ? irqentry_exit+0x74/0x90
[  845.454420][T13307]  ? lockdep_hardirqs_on+0x9c/0x150
[  845.454447][T13307]  ? __pfx_read_tsc+0x10/0x10
[  845.454468][T13307]  ? __asan_memset+0x22/0x50
[  845.454486][T13307]  ? bpf_obj_name_cpy+0x194/0x1e0
[  845.454510][T13307]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[  845.454531][T13307]  ? security_bpf_prog_load+0x7f/0x310
[  845.454557][T13307]  bpf_prog_load+0x1318/0x1930
[  845.454597][T13307]  ? __pfx_bpf_prog_load+0x10/0x10
[  845.454619][T13307]  ? irqentry_exit+0x74/0x90
[  845.454655][T13307]  ? __sys_bpf+0x260/0x870
[  845.454675][T13307]  ? __sanitizer_cov_trace_switch+0xb9/0x150
[  845.454700][T13307]  ? security_bpf+0x7e/0x300
[  845.454724][T13307]  __sys_bpf+0x528/0x870
[  845.454747][T13307]  ? __pfx___sys_bpf+0x10/0x10
[  845.454782][T13307]  ? irqentry_exit+0x74/0x90
[  845.454815][T13307]  __x64_sys_bpf+0x7c/0x90
[  845.454834][T13307]  do_syscall_64+0xfa/0x3b0
[  845.454858][T13307]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.454874][T13307]  ? asm_sysvec_call_function_single+0x1a/0x20
[  845.454892][T13307]  ? clear_bhb_loop+0x60/0xb0
[  845.454913][T13307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.454930][T13307] RIP: 0033:0x7fd23dccebe9
[  845.454947][T13307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  845.454962][T13307] RSP: 002b:00007fd23bf0d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  845.454981][T13307] RAX: ffffffffffffffda RBX: 00007fd23df06090 RCX: 00007fd23dccebe9
[  845.454995][T13307] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  845.455007][T13307] RBP: 00007fd23dd51e19 R08: 0000000000000000 R09: 0000000000000000
[  845.455019][T13307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  845.455030][T13307] R13: 00007fd23df06128 R14: 00007fd23df06090 R15: 00007ffc503752e8
[  845.455061][T13307]  </TASK>
[  845.455080][T13307] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  845.455095][T13307] CPU: 0 UID: 0 PID: 13307 Comm: syz.1.2047 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  845.455116][T13307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  845.455127][T13307] Call Trace:
[  845.455134][T13307]  <TASK>
[  845.455142][T13307]  dump_stack_lvl+0x99/0x250
[  845.455167][T13307]  ? __asan_memcpy+0x40/0x70
[  845.455187][T13307]  ? __pfx_dump_stack_lvl+0x10/0x10
[  845.455211][T13307]  ? __pfx__printk+0x10/0x10
[  845.455243][T13307]  vpanic+0x281/0x750
[  845.455266][T13307]  ? __pfx__printk+0x10/0x10
[  845.455284][T13307]  ? __pfx_vpanic+0x10/0x10
[  845.455307][T13307]  ? is_bpf_text_address+0x26/0x2b0
[  845.455340][T13307]  panic+0xb9/0xc0
[  845.455362][T13307]  ? __pfx_panic+0x10/0x10
[  845.455399][T13307]  __warn+0x31b/0x4b0
[  845.455420][T13307]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  845.455444][T13307]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  845.455465][T13307]  report_bug+0x2be/0x4f0
[  845.455486][T13307]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  845.455508][T13307]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  845.455531][T13307]  ? reg_bounds_sanity_check+0x6e8/0xc20
[  845.455555][T13307]  handle_bug+0x84/0x160
[  845.455571][T13307]  exc_invalid_op+0x1a/0x50
[  845.455605][T13307]  asm_exc_invalid_op+0x1a/0x20
[  845.455622][T13307] RIP: 0010:reg_bounds_sanity_check+0x6e6/0xc20
[  845.455648][T13307] Code: 24 20 4c 8b 44 24 60 4c 8b 4c 24 58 41 ff 75 00 53 41 57 55 ff 74 24 38 ff 74 24 70 ff 74 24 40 e8 9f 5a ab ff 48 83 c4 38 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4d 89 f7 4c 8b 74 24 08
[  845.455663][T13307] RSP: 0018:ffffc900057aef08 EFLAGS: 00010282
[  845.455679][T13307] RAX: e4a38aeeaeca9000 RBX: fffffffe00000030 RCX: 0000000000080000
[  845.455693][T13307] RDX: ffffc9000eded000 RSI: 000000000002d8e3 RDI: 000000000002d8e4
[  845.455705][T13307] RBP: 0000000000000030 R08: 0000000000000000 R09: 0000000000000000
[  845.455716][T13307] R10: dffffc0000000000 R11: ffffed1017104863 R12: ffff888034d61168
[  845.455730][T13307] R13: ffff888034d61188 R14: ffff888034d611a0 R15: 0000000000000000
[  845.455783][T13307]  reg_set_min_max+0x264/0x300
[  845.455812][T13307]  check_cond_jmp_op+0x1625/0x2910
[  845.455841][T13307]  ? reg_bounds_sanity_check+0x80d/0xc20
[  845.455870][T13307]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  845.455899][T13307]  ? __check_reg_arg+0x21f/0x490
[  845.455922][T13307]  ? do_check+0x2796/0xe520
[  845.455944][T13307]  do_check+0x6751/0xe520
[  845.456030][T13307]  ? __pfx_do_check+0x10/0x10
[  845.456053][T13307]  ? do_check_common+0x1268/0x24f0
[  845.456079][T13307]  do_check_common+0x1949/0x24f0
[  845.456116][T13307]  bpf_check+0x17473/0x1d2e0
[  845.456141][T13307]  ? sched_clock+0x3f/0x60
[  845.456180][T13307]  ? rcu_is_watching+0x15/0xb0
[  845.456208][T13307]  ? __schedule+0x1709/0x4c20
[  845.456252][T13307]  ? __pfx___schedule+0x10/0x10
[  845.456290][T13307]  ? __pfx_bpf_check+0x10/0x10
[  845.456305][T13307]  ? trace_irq_disable+0x37/0x110
[  845.456326][T13307]  ? preempt_schedule_irq+0xde/0x150
[  845.456346][T13307]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  845.456374][T13307]  ? irqentry_exit+0x74/0x90
[  845.456395][T13307]  ? lockdep_hardirqs_on+0x9c/0x150
[  845.456423][T13307]  ? __pfx_read_tsc+0x10/0x10
[  845.456446][T13307]  ? __asan_memset+0x22/0x50
[  845.456464][T13307]  ? bpf_obj_name_cpy+0x194/0x1e0
[  845.456487][T13307]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[  845.456507][T13307]  ? security_bpf_prog_load+0x7f/0x310
[  845.456532][T13307]  bpf_prog_load+0x1318/0x1930
[  845.456565][T13307]  ? __pfx_bpf_prog_load+0x10/0x10
[  845.456591][T13307]  ? irqentry_exit+0x74/0x90
[  845.456625][T13307]  ? __sys_bpf+0x260/0x870
[  845.456646][T13307]  ? __sanitizer_cov_trace_switch+0xb9/0x150
[  845.456669][T13307]  ? security_bpf+0x7e/0x300
[  845.456692][T13307]  __sys_bpf+0x528/0x870
[  845.456715][T13307]  ? __pfx___sys_bpf+0x10/0x10
[  845.456750][T13307]  ? irqentry_exit+0x74/0x90
[  845.456782][T13307]  __x64_sys_bpf+0x7c/0x90
[  845.456800][T13307]  do_syscall_64+0xfa/0x3b0
[  845.456824][T13307]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.456839][T13307]  ? asm_sysvec_call_function_single+0x1a/0x20
[  845.456857][T13307]  ? clear_bhb_loop+0x60/0xb0
[  845.456876][T13307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.456893][T13307] RIP: 0033:0x7fd23dccebe9
[  845.456908][T13307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  845.456923][T13307] RSP: 002b:00007fd23bf0d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  845.456941][T13307] RAX: ffffffffffffffda RBX: 00007fd23df06090 RCX: 00007fd23dccebe9
[  845.456955][T13307] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  845.456966][T13307] RBP: 00007fd23dd51e19 R08: 0000000000000000 R09: 0000000000000000
[  845.456978][T13307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  845.456989][T13307] R13: 00007fd23df06128 R14: 00007fd23df06090 R15: 00007ffc503752e8
[  845.457018][T13307]  </TASK>
[  845.457320][T13307] Kernel Offset: disabled