last executing test programs:

30m17.171396327s ago: executing program 32 (id=17):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000001400), 0x101)
socket$can_j1939(0x1d, 0x2, 0x7)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
socket(0x1e, 0x4, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_io_uring_setup(0x186, 0x0, 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1=0xe0004001}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

29m49.261947717s ago: executing program 33 (id=78):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = syz_io_uring_setup(0xb, &(0x7f00000002c0)={0x0, 0x200002f, 0x10000, 0x1, 0x100020b}, &(0x7f0000000100)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r4, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xe)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0xc000000, &(0x7f0000000000)=[{0x0}], 0x1, 0x12})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r5 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8)
r6 = io_uring_setup(0x6fab, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r6, 0x18, &(0x7f0000000280)={0x0, r5, 0x719be08bcc1338f, {0x8000, 0x3}, 0x9d}, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT, 0x2)
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000140)='vfat\x00', 0x8000, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)

23m58.942361266s ago: executing program 34 (id=853):
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$radio(0x0, 0x2, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
fsopen(0x0, 0x0)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0xbdc, 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a48000000060a0b040000000000000000020000001c00048018000180080001006f7366000c00028008040900010073797a30000000000900020073797a3200000000140000001100010000000000000000000000000a"], 0x70}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x80003, 0x6)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b26, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="28000000350001002bbd7004fedbdb250400000008000400020000000c0005"], 0x28}, 0x1, 0x0, 0x0, 0x20040050}, 0x24000080)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
r4 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$user(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)="649e450530116439530d35befd961fc644aa318d7cf91c79b99f2e8664f267431c3981e35995db6586417297121a3ded2c00451bc4551c17c776c45cea952de7fafc82750cc2c5e2b6134b3dd8b3eb61ad62e1e8e52e2caab83c8e2b", 0x5c, r4)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$tun(0xffffffffffffffff, 0x0, 0x32)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000240), &(0x7f0000000280)=0x4)

20m41.106608931s ago: executing program 3 (id=1296):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x3}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
futex(&(0x7f0000000180), 0x100, 0x0, &(0x7f0000000380)={0x0, 0x989680}, &(0x7f0000000400), 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0xd, 0x4, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0xf}, 0x94)

20m39.81986943s ago: executing program 3 (id=1300):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x600, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x7fffffffffffffff)

20m38.664864506s ago: executing program 3 (id=1301):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ipv6_route\x00')
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
preadv(r0, 0x0, 0x0, 0xffffffbf, 0x0)

20m35.567873355s ago: executing program 3 (id=1306):
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f00000000c0)='system.posix_acl_default\x00', 0x0, 0x0, 0x3)
process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x9, 0x0)

20m34.77421205s ago: executing program 3 (id=1311):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x600, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x7fffffffffffffff)

20m32.584179492s ago: executing program 3 (id=1316):
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r6, 0x2000)
ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})

20m17.106406657s ago: executing program 35 (id=1316):
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r6, 0x2000)
ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})

20m12.860633501s ago: executing program 5 (id=1355):
r0 = syz_open_procfs(0x0, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000040), 0x4, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r1, 0x80047c05, &(0x7f0000000080)=<r2=>0xffffffffffffffff)
r3 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r3, 0xc0205648, &(0x7f0000000000)={0xf010000, 0x0, 0x0, r2, 0x0, 0x0})
close_range(r0, 0xffffffffffffffff, 0x0)

20m12.651907911s ago: executing program 5 (id=1357):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ipv6_route\x00')
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
preadv(r0, &(0x7f0000000380), 0x0, 0xffffffbf, 0x0)

20m9.023908769s ago: executing program 5 (id=1361):
syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
syz_io_uring_setup(0x4b3a, &(0x7f0000000180)={0x0, 0x1c75, 0x20000, 0x8200, 0x335}, 0x0, &(0x7f00000000c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x38)
syz_clone3(&(0x7f0000000300)={0xd0280f80, 0x0, 0x0, 0x0, {0x100003c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r1, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmmsg(r3, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r2, r1, 0x0, 0x578410eb)
fsopen(&(0x7f0000000040)='ceph\x00', 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f0000000280), 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="06"], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r4, 0x84, 0x23, &(0x7f0000000040)={0x0, 0x6}, 0x8)

20m0.55812347s ago: executing program 5 (id=1375):
r0 = socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xa, 0x4, &(0x7f0000006680))
syz_open_procfs(0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000000a80)={{0x0, 0x5, 0x0, 0x7, 0xfe54, 0x0, 0x200, 0x7f, 0x3, 0x9, 0x9, 0x9, 0x7, 0xa4, 0x8}})
close_range(r0, 0xffffffffffffffff, 0x0)

19m58.822694714s ago: executing program 5 (id=1377):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
syz_open_dev$vbi(&(0x7f00000000c0), 0x1, 0x2)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@ipv4={'\x00', '\xff\xff', @loopback}, 0x20801, 0x0, 0x3, 0x5, 0xfffe, 0x2003}, 0x20)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
syz_usb_connect$uac1(0x3, 0xa4, &(0x7f0000000040)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r0, @ANYBLOB="05"], 0x0)

19m55.52622782s ago: executing program 5 (id=1384):
syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
syz_io_uring_setup(0x4b3a, &(0x7f0000000180)={0x0, 0x1c75, 0x20000, 0x8200, 0x335}, 0x0, &(0x7f00000000c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x38)
syz_clone3(&(0x7f0000000300)={0xd0280f80, 0x0, 0x0, 0x0, {0x100003c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r1, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmmsg(r3, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r2, r1, 0x0, 0x578410eb)
fsopen(&(0x7f0000000040)='ceph\x00', 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f0000000280), 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="06"], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r4, 0x84, 0x23, &(0x7f0000000040)={0x0, 0x6}, 0x8)

19m39.19348073s ago: executing program 36 (id=1384):
syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
syz_io_uring_setup(0x4b3a, &(0x7f0000000180)={0x0, 0x1c75, 0x20000, 0x8200, 0x335}, 0x0, &(0x7f00000000c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x38)
syz_clone3(&(0x7f0000000300)={0xd0280f80, 0x0, 0x0, 0x0, {0x100003c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r1, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
recvmmsg(r3, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r2, r1, 0x0, 0x578410eb)
fsopen(&(0x7f0000000040)='ceph\x00', 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f0000000280), 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="06"], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r4, 0x84, 0x23, &(0x7f0000000040)={0x0, 0x6}, 0x8)

18m48.212604794s ago: executing program 2 (id=1487):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000540)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="c892b6bc436a0000000000000000", 0xe)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmsg$can_raw(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000002880)=""/4112, 0x1010}], 0x1}, 0x10000)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000061c0)=@deltfilter={0x840, 0x2d, 0x100, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x3, 0x4}, {0xb, 0x3}, {0x4, 0x9}}, [@filter_kind_options=@f_flow={{0x9}, {0x810, 0x2, [@TCA_FLOW_POLICE={0x80c, 0xa, 0x0, 0x1, [@TCA_POLICE_RATE={0x404, 0x2, [0x7ff, 0x7, 0x1ff, 0x24, 0x7f800000, 0xdd0, 0x8001, 0x9, 0x4, 0x8, 0x3, 0x5, 0x6, 0x7f, 0x81, 0x40000000, 0x6, 0x3, 0x9, 0x3, 0x5, 0xebe, 0x4, 0x2, 0x7fff, 0x3, 0x3, 0x0, 0xb, 0x80, 0x9, 0x4, 0x8, 0x1ff, 0x4f, 0x4, 0x7, 0x9, 0xe025, 0xc, 0x2, 0x8a6, 0x5, 0x8, 0x80, 0x8, 0x25e, 0x8, 0x1, 0x1, 0x55ea429a, 0x5, 0x0, 0x8, 0x7, 0x7, 0x80000000, 0x1ff, 0xfffffff3, 0x8, 0x4, 0x9, 0x1, 0x3, 0x4, 0x7fff, 0xee, 0x5d93, 0x4963, 0x2, 0x7, 0x0, 0x8, 0x4, 0x5, 0x1, 0xfffffff9, 0x7, 0x56, 0x1000, 0x0, 0x0, 0xffff0001, 0x6, 0x2, 0x206, 0xa, 0x5, 0x75fba843, 0xfffffffb, 0xb, 0x6, 0x734, 0x7ff, 0xba3, 0x6, 0x2, 0x80000001, 0xf6, 0x1, 0x4, 0x5, 0x47c82681, 0x7fffffff, 0x40, 0x8001, 0x2, 0x7f, 0x6f, 0x3f896bdc, 0x7, 0x3, 0x1, 0x1, 0x0, 0x0, 0x3, 0x9, 0xd, 0x1, 0x804, 0x99, 0x5, 0x8, 0x401, 0x1, 0x2, 0x6, 0x7, 0x6, 0xfffffffa, 0x3, 0xff, 0xff, 0x3, 0x8, 0x9, 0x1, 0x7, 0x8, 0x0, 0x5, 0x1, 0x22, 0x10ab, 0xfffffff8, 0xb, 0x8, 0x2, 0x3, 0x100, 0x7ba, 0xcdf, 0xfffff296, 0x3, 0x9, 0x9, 0xff, 0x8, 0x10, 0x8, 0x0, 0x6, 0x6, 0x200, 0x7, 0x6, 0x3, 0x9, 0x4, 0x401, 0x0, 0x0, 0x4, 0x0, 0x80000000, 0x400, 0x80000000, 0x6, 0x9, 0x2, 0x2, 0xe, 0x7, 0x7f, 0x800, 0x7fffffff, 0x2, 0x5, 0x7ff, 0x7f, 0x6, 0xffff, 0x9, 0x2, 0xa, 0x0, 0xb, 0x1, 0x7, 0x4, 0x3, 0x3, 0x6, 0xabb, 0x401, 0xf7b1, 0x3, 0x1, 0x8, 0x75, 0x6, 0x2, 0x1, 0x6, 0x7, 0x8, 0x4, 0x7, 0x8, 0x8, 0xfffffff7, 0x81, 0xe4, 0x2, 0xde, 0xf, 0x7ff, 0x488, 0x3, 0x0, 0x3, 0x5, 0x41, 0xfff, 0x8, 0xa237, 0xff, 0xc3b, 0x7, 0x4, 0x0, 0x4, 0x0, 0xb0, 0x9, 0x6, 0x0, 0xfffffffc, 0x10, 0x64, 0x5, 0x6, 0x8000, 0x8, 0x1]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1a16, 0x5, 0x8, 0x3, 0x8, 0x7b, 0x7df, 0x6, 0x8, 0x5, 0x800, 0xfff, 0x9318, 0x3, 0x167, 0xfffffffd, 0x5, 0xe6e, 0x0, 0x4, 0x6, 0x9, 0x3, 0x8, 0x9, 0x80000001, 0x8, 0x9, 0x8, 0x6214, 0x200, 0x14, 0x4, 0x168ac436, 0xc00000, 0x7, 0x0, 0x7f, 0x3, 0x4, 0xffff, 0xf, 0x6, 0x7fff, 0xfffffff8, 0x9, 0x9, 0x579a, 0x401, 0x6, 0x1, 0x8, 0x8, 0x9, 0x56b1, 0xd9, 0x80000000, 0xcf, 0x2e, 0x4, 0x24c, 0xffff, 0x5, 0x6, 0xb7a, 0x9, 0x721, 0x5, 0x2, 0x0, 0x6, 0xff, 0xa, 0x10, 0x280, 0x0, 0xfffffffe, 0x1a00000, 0xe, 0x6, 0x200, 0xfffffaf0, 0x3, 0x44a, 0x1, 0x3, 0x4, 0x6, 0x2, 0x8, 0xb81, 0x8000, 0x3, 0x4, 0x10, 0x1, 0x0, 0xde6, 0x2, 0x6, 0x10, 0x50e, 0x5, 0x1000, 0x8, 0x9, 0x1b1, 0x2, 0x4, 0x7, 0x1, 0x8, 0xfe0, 0x7, 0x7, 0x8, 0x1, 0x3, 0xfffffff7, 0x2, 0x7fffffff, 0x80, 0x1, 0xdf6c, 0x5, 0x3, 0x7, 0x4, 0x1ff, 0xfff, 0xfffffffe, 0x7, 0x2f5, 0x0, 0x5, 0x2, 0x7, 0x8, 0xd8c, 0x0, 0x5, 0x4, 0xf6b, 0x50b, 0x2, 0x2, 0x0, 0x3, 0x401, 0x8, 0x68f, 0x3, 0x9, 0x1, 0x5, 0x6, 0xf, 0xc, 0x0, 0x5, 0x4, 0xfffff355, 0x81, 0x6, 0x2, 0xfff, 0x4, 0x9, 0x3, 0xfffffffa, 0x40, 0xa0, 0x3, 0x9, 0x26, 0x8d4, 0x9, 0x2, 0x89, 0x8001, 0x2, 0xec9, 0x5, 0x2000000, 0x8, 0x0, 0x2, 0x5, 0x3, 0x9, 0x9bfb, 0x6, 0x5, 0xb, 0x0, 0xffffffff, 0x3, 0x800, 0x6, 0x2d7a, 0x4, 0x9, 0x5, 0xfffff000, 0x9, 0x6, 0x1, 0x100, 0x2, 0x1, 0x40, 0xb71, 0x8000, 0xfffffffd, 0x5, 0x7fffffff, 0x679b6d7, 0x5, 0x6, 0x1, 0xfffffffd, 0x8, 0xff, 0x14838efb, 0x9, 0x9, 0x7f, 0xc6ea, 0x6, 0x4, 0x5, 0x5, 0x2, 0x1, 0x7, 0x55, 0x8, 0x8, 0x5, 0x7, 0x84, 0x3, 0x0, 0x10000, 0xfffff65a, 0x0, 0x4, 0x9, 0x2, 0x2, 0x62b5, 0x3ff, 0x2, 0x5, 0x1, 0x4]}]}]}}]}, 0x840}, 0x1, 0x0, 0x0, 0xd816451b076636a9}, 0x1)

18m48.160937991s ago: executing program 2 (id=1489):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x4, &(0x7f0000000200)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x5c}]}, &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
syz_kvm_setup_syzos_vm$x86(r5, &(0x7f0000bff000/0x400000)=nil)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@private2, 0x0, 0x2, 0x0, 0x2, 0x4101}, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r7 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$SO_TIMESTAMPING(r7, 0x1, 0x25, &(0x7f0000000000)=0x6d93, 0x4)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000280)=@generic={&(0x7f0000000240)='./file0\x00', 0x0, 0x10}, 0x18)
sendmsg$sock(r7, &(0x7f0000000780)={&(0x7f0000000300)=@in6={0xa, 0x4e25, 0x68, @ipv4={'\x00', '\xff\xff', @empty}, 0x2}, 0x80, 0x0, 0x0, &(0x7f0000000040)=[@mark={{0x14, 0x1, 0x51, 0xfffefffd}}], 0x18}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="540000004800010928bd700018dcdf250a000100", @ANYRES32, @ANYBLOB="0000000014000100fe80000000000000000000000000001f14000100fe8000000000000000000000000000bb080002"], 0x54}}, 0x0)
ioctl$FS_IOC_GETFSLABEL(r6, 0x400452c8, &(0x7f0000000100))
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@newlink={0x40, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @loopback}, @IFLA_GRE_LINK={0x8}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x28081}, 0x8000002)

18m46.250433303s ago: executing program 2 (id=1491):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2001, 0x0)
clock_adjtime(0xffffffd3, &(0x7f0000000440)={0xfffffffffffffffa, 0x0, 0x8c1f, 0x0, 0x0, 0x0, 0x400, 0x7, 0x0, 0x37dc12502000000, 0x4000000000000000, 0x0, 0x8, 0x2, 0x0, 0xffffffffffff2ea6, 0xfffffffffffffffc, 0x1, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000000000000})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
r4 = syz_open_dev$cec(0x0, 0x0, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
ftruncate(r5, 0x2007ffb)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x1, 0xb, &(0x7f0000001580)=ANY=[@ANYBLOB="18000000010000000000000008000000180500002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000020b7030000010000"], &(0x7f0000000000)='syzkaller\x00', 0xe, 0xff5, &(0x7f00000003c0)=""/4085}, 0x94)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x8801}, 0x10)
ioctl$CEC_TRANSMIT(r4, 0xc0386105, &(0x7f0000000100)={0x9, 0x0, 0x9, 0xffffffff, 0x0, 0x4, "0ff8000000000000c5c6ff0717c3a86d", 0x4, 0x2, 0x5, 0xff, 0x0, 0x1, 0xff})
r7 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r7, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0x2300, 0x0)
ioctl$PPPIOCATTCHAN(r8, 0x40047438, &(0x7f0000000040)=0x1)
ioctl$PPPIOCGFLAGS1(r8, 0x8004745a, 0x0)

18m44.482665409s ago: executing program 2 (id=1493):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
prlimit64(0x0, 0x4, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000010000))
r4 = syz_open_procfs(0x0, &(0x7f0000000480)='net/fib_triestat\x00')
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, &(0x7f0000000240), 0x0, 0x20000845, 0x0, 0x0)
pread64(r4, &(0x7f000004b680)=""/102363, 0x18fdb, 0x2)

18m42.620977959s ago: executing program 2 (id=1498):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x10}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0xe, &(0x7f0000001000)=ANY=[@ANYBLOB="b7020000f7ffffffbfa70000000000003702000020febfff7a0af0fff8ff00f869a4f0ff00000000b70600001218d1fe2d640500000000001404000000ffffffdc04000040000000b704000010000020620700fe00000000850000002f000000b70000000a00000095"], &(0x7f0000000280)='GPL\x00'}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x8}, 0x3b)

18m41.532917649s ago: executing program 2 (id=1501):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001e00431b000000000000000007000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32], 0x28}}, 0x0)

18m26.004001691s ago: executing program 37 (id=1501):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001e00431b000000000000000007000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32], 0x28}}, 0x0)

16m53.129674182s ago: executing program 7 (id=1638):
syz_usb_connect(0x4, 0x24, &(0x7f0000000000)=ANY=[@ANYRESHEX=0x0], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)=ANY=[@ANYBLOB="1c00ffe4", @ANYBLOB], 0x1c}}, 0x64000)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_uring_setup(0x2e4a, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = landlock_create_ruleset(&(0x7f0000000040)={0x1000, 0x3, 0x1}, 0x18, 0x0)
landlock_restrict_self(r2, 0x0)

16m52.385280711s ago: executing program 7 (id=1639):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@mcast1, 0x0, 0x0, 0x1, 0x3, 0x2, 0x3c}, 0x20)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty, 0x400}, 0x1c, 0x0}}, {{&(0x7f0000000000)={0xa, 0x4e24, 0x6, @rand_addr=' \x01\x00', 0x5}, 0x1c, 0x0, 0x0, &(0x7f0000000580)=ANY=[], 0x30}}], 0x2, 0x0)

16m51.980214611s ago: executing program 7 (id=1640):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000040)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty, 0x400}, 0x1c, 0x0}}, {{&(0x7f0000000000)={0xa, 0x4e24, 0x6, @rand_addr=' \x01\x00', 0x5}, 0x1c, 0x0, 0x0, &(0x7f0000000580)=ANY=[], 0x30}}], 0x2, 0x0)

16m51.906424991s ago: executing program 7 (id=1641):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETISPACE(r0, 0xc0045003, &(0x7f0000001100))

16m51.798173615s ago: executing program 7 (id=1642):
socket$nl_generic(0x10, 0x3, 0x10)
gettid()
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940))
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, 0x0, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000500)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e21, 0x9, @mcast2, 0x2}}}, 0x30)
openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x40000000100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r2 = syz_open_dev$MSR(&(0x7f0000000140), 0x0, 0x0)
read$msr(r2, &(0x7f000001b700)=""/102392, 0x18ff8)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
socket$inet_tcp(0x2, 0x1, 0x0)
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4)
setsockopt$inet_tcp_int(r4, 0x6, 0x14, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @remote}, 0x10)
sendto$inet(r4, &(0x7f0000000200)="e1", 0xfea8, 0x0, 0x0, 0x0)
splice(r4, 0x0, r3, 0x0, 0xfea8, 0xa)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)

16m48.988808851s ago: executing program 7 (id=1644):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100280000000000000002000000200001800d0001007564703a73797a"], 0x34}}, 0x0)
syz_genetlink_get_family_id$batadv(0x0, r1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r3, &(0x7f0000000000)="0a000000010001", 0x7)
connect$tipc(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$inet_icmp(0x2, 0x2, 0x1)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_emit_ethernet(0x36, 0x0, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x5, 0x0, 0x0, 0xa, 0x0, 0x94eb7bd00144ed03, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}}, 0xb8}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0), 0xc)
setsockopt$IP_VS_SO_SET_ZERO(r4, 0x0, 0x48f, &(0x7f0000000040)={0x0, @rand_addr, 0x0, 0x0, 'wrr\x00'}, 0x2c)
getuid()
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x2004c010}, 0x800)
unshare(0x44000000)
syz_emit_ethernet(0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x7a, 0x0, &(0x7f0000000040)=0xc00)
close(r3)
socket$kcm(0x29, 0x7, 0x0)

16m33.763138404s ago: executing program 38 (id=1644):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100280000000000000002000000200001800d0001007564703a73797a"], 0x34}}, 0x0)
syz_genetlink_get_family_id$batadv(0x0, r1)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r3, &(0x7f0000000000)="0a000000010001", 0x7)
connect$tipc(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$inet_icmp(0x2, 0x2, 0x1)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_emit_ethernet(0x36, 0x0, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x5, 0x0, 0x0, 0xa, 0x0, 0x94eb7bd00144ed03, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}}, 0xb8}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0), 0xc)
setsockopt$IP_VS_SO_SET_ZERO(r4, 0x0, 0x48f, &(0x7f0000000040)={0x0, @rand_addr, 0x0, 0x0, 'wrr\x00'}, 0x2c)
getuid()
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x2004c010}, 0x800)
unshare(0x44000000)
syz_emit_ethernet(0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x7a, 0x0, &(0x7f0000000040)=0xc00)
close(r3)
socket$kcm(0x29, 0x7, 0x0)

6m16.557850987s ago: executing program 9 (id=2255):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x80045300, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x50, 0x10, 0x401, 0x1000000, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x1c42}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x1}]}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x50}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000001c0), 0x3)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x8)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
mount$fuseblk(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0), 0x10, &(0x7f0000000200)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x2000}})
syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
readv(r4, &(0x7f0000000e40), 0x0)

6m13.446862635s ago: executing program 9 (id=2257):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$IOCTL_VMCI_VERSION2(0xffffffffffffffff, 0x7a7, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000020c0), 0x0, 0x0)
epoll_create1(0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
gettid()
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000140)={0x0, 0x7530}, 0x10)
connect$llc(r0, &(0x7f0000000000)={0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, @remote}, 0x10)
syz_open_dev$sndmidi(0x0, 0x2, 0x80080)
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, &(0x7f0000000180)={'pcl812\x00', [0x8001, 0x4, 0x1, 0x0, 0x0, 0xcc7, 0x8, 0x7, 0x1, 0xff, 0x2, 0x1, 0x8, 0x2, 0x6, 0x9, 0x1, 0x9, 0x43, 0x40000003, 0x89, 0x9, 0xf27, 0x6, 0x800b, 0x8, 0x5, 0x6, 0x8, 0x10000, 0xfffffff4]})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r2=>0x0})
sendmsg$xdp(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, 0x2, r2, 0x18}, 0x10, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x4004000}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800006, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x0)

6m8.1342364s ago: executing program 9 (id=2265):
syz_extract_tcp_res(0x0, 0xd7, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_emit_ethernet(0x52, &(0x7f0000000840)=ANY=[], 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x62001, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events.local\x00', 0x275a, 0x0)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff004)

6m6.762784748s ago: executing program 9 (id=2267):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x11, 0x13, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000f7f7ffff0000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000002000000850000000e000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000008500000010000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000005c0)='sys_enter\x00', r0, 0x0, 0x2}, 0x18)
unshare(0x20000400)

6m6.224934043s ago: executing program 9 (id=2269):
socket$netlink(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(0xffffffffffffffff, 0x6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0), 0x0}, 0x20)
setresuid(0x0, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000000a00)={0x0, 0x9, 0x0, [0x0, 0x4, 0x100000000, 0x9, 0x81], [0xfff, 0xffffffffffffffff, 0x8, 0x4, 0x4, 0x28, 0x0, 0x0, 0x6, 0x12aa00000000000, 0xd, 0x8, 0xffffffffffffd8fe, 0x81, 0x6, 0x1ff, 0x6f3, 0x7, 0x9, 0xb, 0x503f879a, 0x40, 0x400, 0x7, 0x894b, 0x8, 0xbd, 0x1, 0x0, 0x8, 0x9, 0x9, 0x4f, 0x1, 0x2, 0x5, 0x9, 0xfffffffffffffffe, 0xf, 0x7, 0x8, 0xe, 0x101, 0x7, 0x80, 0x101, 0xffffffffffffffff, 0x0, 0x40000000000004, 0x8000, 0x9, 0x3, 0x65, 0x5d2, 0x9, 0x6, 0x3, 0x6, 0x1, 0x5, 0x38e, 0x993, 0x800, 0x48, 0x1ff, 0x21, 0xfffffffffffff801, 0x46b7, 0x9, 0x4, 0x1, 0x3, 0x10000, 0x10000006, 0x8, 0x5, 0xbc, 0x45, 0xff, 0xfffffffffffffffb, 0x8, 0x1000, 0x4, 0x0, 0x73e1, 0x9, 0x101, 0x5, 0x974, 0x1, 0x8, 0x82e, 0x677, 0x2f75ac38, 0x9, 0x4, 0xa, 0xe, 0x7, 0x7, 0xfffffffffffffff9, 0x3ff, 0x4, 0x40000, 0x8001, 0xb8b, 0x3, 0x9b, 0x1b, 0xc0, 0x80, 0x6, 0x8000000080000000, 0xff, 0x8, 0x80, 0xfffffffffffff801, 0xff, 0xffffffff00000001, 0x3, 0xa4c]})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x20000, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000400)='map_files\x00')
getdents64(r5, &(0x7f0000000080)=""/147, 0x93)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000440)=@raw=[@cb_func={0x18, 0x6, 0x4, 0x0, 0x8}, @tail_call, @generic={0x5, 0x8, 0x0, 0xcf1, 0x8}, @cb_func={0x18, 0x1, 0x4, 0x0, 0x8}, @func={0x85, 0x0, 0x1, 0x0, 0x7}], &(0x7f0000000300)='GPL\x00', 0x3, 0x33, &(0x7f0000000380)=""/51, 0x41100, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000400)={0x1, 0x7, 0x2, 0x404}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000000700), &(0x7f0000000040)=[{0x4, 0x3, 0xb, 0xb}, {0x0, 0x4, 0x1, 0x9}], 0x10, 0x1}, 0x94)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000001200)={0x0, 0xffffff1e, 0xffffffff, 0x4, 0x16, "001bf10002000000a0c2000100000000002000"})
socket$nl_netfilter(0x10, 0x3, 0xc)

6m4.046330675s ago: executing program 9 (id=2270):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x80045300, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x50, 0x10, 0x401, 0x1000000, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x1c42}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x1}]}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x50}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000001c0), 0x3)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x8)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
mount$fuseblk(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0), 0x10, &(0x7f0000000200)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x2000}})
syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
readv(r4, &(0x7f0000000e40), 0x0)

5m48.840928166s ago: executing program 39 (id=2270):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x80045300, 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x50, 0x10, 0x401, 0x1000000, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x1c42}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x1}]}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x50}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000001c0), 0x3)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x8)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
mount$fuseblk(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0), 0x10, &(0x7f0000000200)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x2000}})
syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
readv(r4, &(0x7f0000000e40), 0x0)

1m43.134277543s ago: executing program 6 (id=2676):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195}, 0x94)

1m42.304473483s ago: executing program 6 (id=2677):
socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
msgget(0x1, 0x601)

1m40.572700741s ago: executing program 6 (id=2682):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DIRECTION={0x5, 0x3, 0x1}, @NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x9}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x78}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0xf)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000018c0)=ANY=[@ANYBLOB="0a000000d2cf00003d36000002"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000180), 0x3, r1}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000380)={r1, &(0x7f0000001940), &(0x7f00000002c0)=""/187}, 0x20)
r2 = socket$inet6(0xa, 0x3, 0x8000000003c)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x11, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010100, @broadcast}, {{0x4e24, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}, 0x0)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x3, 0x3, @dev={0xfe, 0x80, '\x00', 0xd}, 0x9}, 0x1c)
sendmsg(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000002c0)="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", 0x27e}, {&(0x7f0000000980)="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", 0x4a2}], 0x2, 0x0, 0x0, 0x2c}, 0x40440c4)

1m39.822312326s ago: executing program 6 (id=2686):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000100), 0x40202, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0xa, 0x3, 0xff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r4, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20)
sendmmsg$inet6(r3, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)="5e546507da932c3e8c628a600b17cbe584d2f93ce23f60e91af3fbcf0e16db6e759d420151c6c575", 0x77}], 0x1}}], 0x1, 0x4046040)

1m36.036897763s ago: executing program 6 (id=2693):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x349c41, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000280)=[{&(0x7f00000005c0)="580000001400192340834b80040d8c560a06ffffff7f000000010000000058000b480400945f64009400050038925a01000000800000008004000000ff0109000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1)

1m27.573235004s ago: executing program 6 (id=2710):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000020c0)={0xaa, 0xbd})
r0 = shmget$private(0x0, 0x800000, 0x54003f00, &(0x7f0000800000/0x800000)=nil)
shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xbbdccba4532b703b)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})

1m11.322600256s ago: executing program 8 (id=2756):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f00000002c0), 0x0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

1m11.127770608s ago: executing program 8 (id=2758):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000001640)={0x18, 0x2a, 0x503, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @pid=0xffffffffffffffff}]}, 0x18}], 0x1}, 0x0)

1m10.458020969s ago: executing program 8 (id=2760):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f00000008c0))
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)

1m7.460835059s ago: executing program 8 (id=2764):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r5 = syz_io_uring_setup(0xa0, &(0x7f0000000100)={0x0, 0x200089bd, 0x80, 0x1, 0x385}, &(0x7f0000000240)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000300)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x40, 0x2007, @fd=r4, 0xc000000, &(0x7f00000000c0)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1, 0x1e})
io_uring_enter(r5, 0x32dc, 0x0, 0xe, 0x0, 0x0)

1m6.478755183s ago: executing program 8 (id=2766):
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000000))
openat$mice(0xffffffffffffff9c, 0x0, 0x101)
openat$mice(0xffffffffffffff9c, 0x0, 0x40)
gettid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x2}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f0000000340), 0x0, 0x0)
read$msr(r0, &(0x7f0000048040)=""/102392, 0x18ff8)
futex(0x0, 0xd, 0x1, &(0x7f0000000880)={0x77359400}, 0x0, 0x2)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r1 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
r2 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x80, 0x0)
write$proc_mixer(r1, 0x0, 0x9f)
ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, &(0x7f0000000080)=0x7fff)
dup3(r2, r1, 0x0)

1m5.776689681s ago: executing program 8 (id=2768):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'hsr0\x00', <r0=>0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000000)="dbe104b35716e67da422221d32860d4b13014bf9cabfec7430777c646ebc9300e0590be6a84abaccb05e82ee330d123771e0cc0c9368b55648d963864232b7", 0x3f, 0x20000814, &(0x7f0000000100)={0x11, 0x7, r0, 0x1, 0x5, 0x6, @local}, 0x14)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r0, {0xc, 0xd}, {0xfff3, 0x8}}}, 0x24}}, 0x20040000)

50.11510537s ago: executing program 40 (id=2768):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'hsr0\x00', <r0=>0x0})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000000)="dbe104b35716e67da422221d32860d4b13014bf9cabfec7430777c646ebc9300e0590be6a84abaccb05e82ee330d123771e0cc0c9368b55648d963864232b7", 0x3f, 0x20000814, &(0x7f0000000100)={0x11, 0x7, r0, 0x1, 0x5, 0x6, @local}, 0x14)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r0, {0xc, 0xd}, {0xfff3, 0x8}}}, 0x24}}, 0x20040000)

10.213916339s ago: executing program 4 (id=2876):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x800000, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
sched_setscheduler(0x0, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x2)
socket$l2tp6(0xa, 0x2, 0x73)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)

9.495553782s ago: executing program 4 (id=2879):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000440)={0x20, 0xa, 0x1, 'q'}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)={0x40, 0x9, 0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)={0x40, 0x1e, 0x1, 0x81}, 0x0})

6.761438964s ago: executing program 0 (id=2885):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0)

6.64992684s ago: executing program 1 (id=2886):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x20000023896)

6.646002854s ago: executing program 0 (id=2887):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x10000007}, [@call={0x85, 0x0, 0x0, 0x7a}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002280)={r0, 0x0, 0xe, 0x0, &(0x7f00000008c0)="e02742e8680d85ff9782762f86dd", 0x0, 0x57af, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

5.484643761s ago: executing program 1 (id=2888):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x4, 0x6, 0xb}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40080}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'})
sendmsg$nl_route(r0, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x82602, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x20000014})
close_range(r2, 0xffffffffffffffff, 0x0)
chdir(0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
r3 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000002c0)="ae", 0x1, 0xfffffffffffffffd)
keyctl$read(0xb, r3, &(0x7f0000000240)=""/112, 0x349b7f55)

5.403695632s ago: executing program 0 (id=2889):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000013"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000780)=ANY=[@ANYRES32=r2, @ANYRES32=r1, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r2}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000000000002}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$inet6(0xa, 0x1, 0x0)
r7 = dup2(r6, r6)
r8 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r8, &(0x7f0000000200)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x38, 0x2c, 0x601, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r9, {0xfff3}, {}, {0xc, 0xd}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0xd, 0xf}}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x48800}, 0x24000840)
ioctl$sock_inet6_SIOCDELRT(r7, 0x890c, &(0x7f0000000640)={@remote, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}, 0xffffffff, 0x40, 0x93, 0x100, 0x2, 0xbb002f, r9})
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080), 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x6, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x4}, [@map_val={0x18, 0x0, 0x2, 0x0, r10, 0x0, 0x0, 0x0, 0x4}, @ldst={0x3, 0x0, 0x6, 0x0, 0x0, 0x0, 0x110}]}, &(0x7f0000000180)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x1b, r10, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x69}, 0x94)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000001780)=""/4057, 0xfd9}], 0x1, 0x0, 0x0, 0x406}, 0x40020000)
close(0x3)

3.825672437s ago: executing program 0 (id=2890):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002e000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000140)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000680)="5f3a2f830ad298b15b9dbcfbf6f1", 0x0, 0x440, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x400)
sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x1402200bc2)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f000001b700)=""/102392, 0x18ff8)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x13bac2, 0x0)
setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="d800000019008111e0020f060d8107040a60090000020000000455a1bc00090008000699e3ffffff140005000800000006000567b8b7b940020000090c0016060000000000000074d67f6f9400f7d1d9bbe94fa27100a00774cf93adbb50877c98eba68ff29aa2f7617f01896034277ce06bbace8017cb39b62ee5a7cef4090000001fb791643a5e83d42365f003724a237ee4b11602b2a15007000000000000dfe1d9c322fe040000005025acca262f3d40fad95667e006dcdf634c1f215ce3bb9ad809d50b694138c9f1ac76efb42a9ecbee5de6ccd442", 0xd8}], 0x1}, 0x0)

3.710097316s ago: executing program 4 (id=2891):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
socket$isdn_base(0x22, 0x3, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000000)={0x6, 0x1, 0x1, 0x0, 0x3})
ioctl$vim2m_VIDIOC_STREAMOFF(r5, 0x40045612, &(0x7f0000000040)=0x1)

2.980246481s ago: executing program 1 (id=2892):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x1}, 0x6)
ioctl$sock_bt_hci(r0, 0x800448d7, 0x0)

1.830244599s ago: executing program 1 (id=2893):
write$FUSE_OPEN(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fcntl$setlease(r0, 0x400, 0x1)

1.612705377s ago: executing program 4 (id=2894):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0a00000004000000dd000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1802007ffd2f20b1dd156c00000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x94)

1.552310746s ago: executing program 4 (id=2895):
syz_usb_connect(0x2, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="120100003b7431087d077a621000010203010902240001000000000904"], 0x0)

1.46891853s ago: executing program 0 (id=2896):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
fcntl$lock(r1, 0x410, &(0x7f00000000c0)={0x1, 0x1, 0x1, 0xfffe})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0xa9525000)
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)=ANY=[@ANYBLOB="880000"], 0x88}, 0x1, 0x0, 0x0, 0x8004}, 0x20000040)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
close_range(r0, 0xffffffffffffffff, 0x0)

1.417367961s ago: executing program 1 (id=2897):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x4, &(0x7f0000000a40)=ANY=[@ANYBLOB="1801000000050000000000000000ea0485000000d000000095"], &(0x7f0000000a00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmsg(r4, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r5, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

648.39597ms ago: executing program 0 (id=2898):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f00000000c0)=ANY=[])
socketpair$unix(0x1, 0x3, 0x0, 0x0)

66.297628ms ago: executing program 4 (id=2899):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0)
syz_io_uring_setup(0xa0, 0x0, 0x0, &(0x7f0000000280))
timer_create(0x9, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
ioctl$TIOCL_SETVESABLANK(r3, 0x560e, &(0x7f0000000140))
ioctl$TIOCL_BLANKSCREEN(r4, 0x541c, &(0x7f0000000040))
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
ptrace$cont(0x18, 0x0, 0x4, 0x401)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r5, 0x2)
syz_emit_ethernet(0x5a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x24, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0xc2, 0x0, 0x0, 0x1, {[@mptcp=@synack={0x1e, 0x10, 0xe, 0x2, 0x6, 0x0, 0x4}]}}}}}}}}, 0x0)

0s ago: executing program 1 (id=2900):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)
writev(r1, &(0x7f0000000400), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x82d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
syz_open_dev$vcsu(&(0x7f0000000040), 0x6, 0x9c0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_io_uring_setup(0x328, 0x0, 0x0, 0x0)
io_uring_setup(0x669, &(0x7f0000000140)={0x0, 0x0, 0x400})
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockopt$sock_int(r3, 0x1, 0x12, 0x0, &(0x7f0000000240))
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r4, 0x4020aed2, &(0x7f0000000040)={0x4000, 0x1c000})

kernel console output (not intermixed with test programs):

t allmulticast mode
[ 1374.931264][  T148] bridge_slave_1: left promiscuous mode
[ 1374.931655][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1374.999487][  T148] bridge_slave_0: left allmulticast mode
[ 1374.999515][  T148] bridge_slave_0: left promiscuous mode
[ 1374.999749][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1375.084009][  T148] bridge_slave_1: left allmulticast mode
[ 1375.084033][  T148] bridge_slave_1: left promiscuous mode
[ 1375.084193][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1375.141170][  T148] bridge_slave_0: left allmulticast mode
[ 1375.141192][  T148] bridge_slave_0: left promiscuous mode
[ 1375.141361][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1375.676053][T11849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1375.700104][T11849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1375.750800][T11849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1375.753812][T11849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1375.755737][T11849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1376.682230][ T9333] Bluetooth: hci0: command tx timeout
[ 1376.738870][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1376.820686][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1376.893745][  T148] bond0 (unregistering): Released all slaves
[ 1377.139126][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1377.229011][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1377.300392][  T148] bond0 (unregistering): Released all slaves
[ 1377.508947][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1377.589930][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1377.650818][  T148] bond0 (unregistering): Released all slaves
[ 1378.758182][T11849] Bluetooth: hci1: command tx timeout
[ 1378.758620][T11849] Bluetooth: hci0: command tx timeout
[ 1378.888126][ T5802] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[ 1378.888890][  T148] hsr_slave_0: left promiscuous mode
[ 1378.911393][  T148] hsr_slave_1: left promiscuous mode
[ 1378.912184][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1378.942123][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1379.028743][ T5802] usb 7-1: device descriptor read/64, error -71
[ 1379.108258][  T148] hsr_slave_0: left promiscuous mode
[ 1379.128104][  T148] hsr_slave_1: left promiscuous mode
[ 1379.128894][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1379.169561][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1379.288137][ T5802] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[ 1379.309864][  T148] hsr_slave_0: left promiscuous mode
[ 1379.328280][  T148] hsr_slave_1: left promiscuous mode
[ 1379.329092][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1379.368562][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1379.428383][ T5802] usb 7-1: device descriptor read/64, error -71
[ 1379.549009][ T5802] usb usb7-port1: attempt power cycle
[ 1379.928427][ T5802] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[ 1379.949861][ T5802] usb 7-1: device descriptor read/8, error -71
[ 1380.148620][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1380.248318][ T5802] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[ 1380.269011][ T5802] usb 7-1: device descriptor read/8, error -71
[ 1380.299763][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1380.389768][ T5802] usb usb7-port1: unable to enumerate USB device
[ 1380.838324][ T9333] Bluetooth: hci0: command tx timeout
[ 1380.838369][ T9333] Bluetooth: hci1: command tx timeout
[ 1381.529977][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1381.678711][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1382.918597][ T9333] Bluetooth: hci1: command tx timeout
[ 1382.918701][T11849] Bluetooth: hci0: command tx timeout
[ 1383.879109][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1384.089825][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1384.998052][T11849] Bluetooth: hci1: command tx timeout
[ 1387.045487][T13531] chnl_net:caif_netlink_parms(): no params data found
[ 1387.383915][T13540] chnl_net:caif_netlink_parms(): no params data found
[ 1387.892302][T13531] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1387.892684][T13531] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1387.892955][T13531] bridge_slave_0: entered allmulticast mode
[ 1387.898654][T13531] bridge_slave_0: entered promiscuous mode
[ 1387.943490][T13531] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1387.943635][T13531] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1387.943861][T13531] bridge_slave_1: entered allmulticast mode
[ 1387.996076][ T9333] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1388.012904][T13531] bridge_slave_1: entered promiscuous mode
[ 1388.015943][ T9333] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1388.019408][ T9333] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1388.026415][ T9333] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1388.033140][ T9333] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1388.580467][  T830] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[ 1388.604377][T13531] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1388.622481][T13531] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1388.623314][T13540] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1388.623775][T13540] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1388.623983][T13540] bridge_slave_0: entered allmulticast mode
[ 1388.626874][T13540] bridge_slave_0: entered promiscuous mode
[ 1388.728111][  T830] usb 7-1: Using ep0 maxpacket: 32
[ 1388.730626][  T830] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1388.730658][  T830] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1388.730696][  T830] usb 7-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[ 1388.730718][  T830] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1388.736457][  T830] usb 7-1: config 0 descriptor??
[ 1388.818766][T13540] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1388.818988][T13540] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1388.819433][T13540] bridge_slave_1: entered allmulticast mode
[ 1388.827054][T13540] bridge_slave_1: entered promiscuous mode
[ 1389.195877][  T830] ft260 0003:0403:6030.0018: unknown main item tag 0x7
[ 1389.251019][T13531] team0: Port device team_slave_0 added
[ 1389.394292][  T830] ft260 0003:0403:6030.0018: chip code: 6424 8183
[ 1389.395334][T13531] team0: Port device team_slave_1 added
[ 1389.438716][T13540] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1389.595330][  T830] ft260 0003:0403:6030.0018: failed to retrieve system status
[ 1389.595805][  T830] ft260 0003:0403:6030.0018: probe with driver ft260 failed with error -71
[ 1389.602242][  T830] usb 7-1: USB disconnect, device number 32
[ 1389.751927][T13540] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1389.905258][T13531] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1389.905272][T13531] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1389.905287][T13531] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1390.017042][T13531] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1390.017057][T13531] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1390.017072][T13531] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1390.064691][T13540] team0: Port device team_slave_0 added
[ 1390.121770][T13540] team0: Port device team_slave_1 added
[ 1390.136630][ T9333] Bluetooth: hci2: command tx timeout
[ 1390.448376][T12592] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[ 1390.506260][T13540] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1390.506280][T13540] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1390.506307][T13540] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1390.578308][T12592] usb 7-1: device descriptor read/64, error -71
[ 1390.667119][T13540] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1390.667134][T13540] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1390.667158][T13540] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1390.772299][T13531] hsr_slave_0: entered promiscuous mode
[ 1390.773863][T13531] hsr_slave_1: entered promiscuous mode
[ 1390.833360][T12592] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[ 1390.978630][T12592] usb 7-1: device descriptor read/64, error -71
[ 1391.099733][T12592] usb usb7-port1: attempt power cycle
[ 1391.448660][T12592] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[ 1391.469026][T12592] usb 7-1: device descriptor read/8, error -71
[ 1391.718305][T12592] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[ 1391.739052][T12592] usb 7-1: device descriptor read/8, error -71
[ 1391.811871][T13540] hsr_slave_0: entered promiscuous mode
[ 1391.813114][T13540] hsr_slave_1: entered promiscuous mode
[ 1391.813867][T13540] debugfs: 'hsr0' already exists in 'hsr'
[ 1391.813885][T13540] Cannot create hsr debugfs directory
[ 1391.848855][T12592] usb usb7-port1: unable to enumerate USB device
[ 1392.058922][T13391] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1392.198188][ T9333] Bluetooth: hci2: command tx timeout
[ 1392.200022][T13391] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1392.448729][T13391] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1392.579075][T13391] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1392.987462][T13577] chnl_net:caif_netlink_parms(): no params data found
[ 1394.277952][ T9333] Bluetooth: hci2: command tx timeout
[ 1394.331472][T13577] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1394.331756][T13577] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1394.331953][T13577] bridge_slave_0: entered allmulticast mode
[ 1394.333755][T13577] bridge_slave_0: entered promiscuous mode
[ 1394.372068][T13577] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1394.372200][T13577] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1394.372485][T13577] bridge_slave_1: entered allmulticast mode
[ 1394.401689][T13577] bridge_slave_1: entered promiscuous mode
[ 1394.994761][T13577] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1395.045235][T13577] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1395.279403][  T148] bridge_slave_1: left allmulticast mode
[ 1395.279438][  T148] bridge_slave_1: left promiscuous mode
[ 1395.279759][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1395.339639][  T148] bridge_slave_0: left allmulticast mode
[ 1395.339672][  T148] bridge_slave_0: left promiscuous mode
[ 1395.340033][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1395.403276][  T148] bridge_slave_1: left allmulticast mode
[ 1395.403309][  T148] bridge_slave_1: left promiscuous mode
[ 1395.403591][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1395.460324][  T148] bridge_slave_0: left allmulticast mode
[ 1395.460357][  T148] bridge_slave_0: left promiscuous mode
[ 1395.460654][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1396.089310][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1396.188737][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1396.254655][  T148] bond0 (unregistering): Released all slaves
[ 1396.358509][ T9333] Bluetooth: hci2: command tx timeout
[ 1396.748881][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1396.829039][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1396.893801][  T148] bond0 (unregistering): Released all slaves
[ 1397.321609][T13577] team0: Port device team_slave_0 added
[ 1397.476667][  T148] hsr_slave_0: left promiscuous mode
[ 1397.518064][  T148] hsr_slave_1: left promiscuous mode
[ 1397.519105][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1397.568820][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1397.738715][  T148] hsr_slave_0: left promiscuous mode
[ 1397.880922][T13609] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2062'.
[ 1397.881084][  T148] hsr_slave_1: left promiscuous mode
[ 1397.882145][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1397.918939][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1397.936672][T13611] netlink: 'syz.6.2062': attribute type 3 has an invalid length.
[ 1398.008182][T13609] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2062'.
[ 1398.084485][T11849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1398.124828][T11849] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1398.126655][T11849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1398.130823][T11849] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1398.132057][T11849] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1398.348376][T13609] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2062'.
[ 1399.109163][T13618] futex_wake_op: syz.6.2063 tries to shift op by -1; fix this program
[ 1400.201197][T11849] Bluetooth: hci3: command tx timeout
[ 1400.372429][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1400.604759][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1402.278143][T11849] Bluetooth: hci3: command tx timeout
[ 1403.119216][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1403.350351][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1404.093719][T13639] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2069'.
[ 1404.574912][T11849] Bluetooth: hci3: command tx timeout
[ 1404.643419][T13639] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2069'.
[ 1404.766034][T13577] team0: Port device team_slave_1 added
[ 1405.753144][T13577] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1405.753165][T13577] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1405.753204][T13577] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1405.755977][T13577] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1405.755993][T13577] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1405.756022][T13577] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1405.828715][T13649] futex_wake_op: syz.6.2071 tries to shift op by -1; fix this program
[ 1406.599252][ T9333] Bluetooth: hci3: command tx timeout
[ 1406.817575][T13577] hsr_slave_0: entered promiscuous mode
[ 1406.826459][T13577] hsr_slave_1: entered promiscuous mode
[ 1406.837746][T13577] debugfs: 'hsr0' already exists in 'hsr'
[ 1406.848554][T13577] Cannot create hsr debugfs directory
[ 1410.065127][T13531] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1410.109670][T13531] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1410.237012][T13531] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1410.451413][T13531] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1411.153848][T13612] chnl_net:caif_netlink_parms(): no params data found
[ 1411.420689][T13540] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1411.536189][T13540] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1412.570409][T13540] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1413.441375][T13540] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1413.698202][T12592] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[ 1413.834533][T13612] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1413.837116][T13612] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1413.837388][T13612] bridge_slave_0: entered allmulticast mode
[ 1413.843060][T13612] bridge_slave_0: entered promiscuous mode
[ 1413.849784][T12592] usb 7-1: Using ep0 maxpacket: 16
[ 1413.874191][T12592] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1413.877629][T12592] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1413.877658][T12592] usb 7-1: config 1 has no interface number 1
[ 1413.877709][T12592] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1413.915865][T12592] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1413.915895][T12592] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1413.915913][T12592] usb 7-1: Product: syz
[ 1413.915926][T12592] usb 7-1: Manufacturer: syz
[ 1413.915948][T12592] usb 7-1: SerialNumber: syz
[ 1414.104955][T13612] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1414.106093][T13612] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1414.106360][T13612] bridge_slave_1: entered allmulticast mode
[ 1414.130590][T13612] bridge_slave_1: entered promiscuous mode
[ 1414.185302][T12592] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1414.210895][T12592] usb 7-1: USB disconnect, device number 37
[ 1414.425344][T13612] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1414.476417][T13612] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1414.833780][T13612] team0: Port device team_slave_0 added
[ 1414.855702][ T9333] Bluetooth: hci5: unexpected event for opcode 0x0c6d
[ 1414.934076][T13612] team0: Port device team_slave_1 added
[ 1415.223108][  T148] bridge_slave_1: left allmulticast mode
[ 1415.223140][  T148] bridge_slave_1: left promiscuous mode
[ 1415.223416][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1415.514375][  T148] bridge_slave_0: left allmulticast mode
[ 1415.514407][  T148] bridge_slave_0: left promiscuous mode
[ 1415.514694][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1415.633027][  T148] bridge_slave_1: left allmulticast mode
[ 1415.633059][  T148] bridge_slave_1: left promiscuous mode
[ 1415.633353][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1415.725325][  T148] bridge_slave_0: left allmulticast mode
[ 1415.725366][  T148] bridge_slave_0: left promiscuous mode
[ 1415.725741][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1416.948970][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1417.419238][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1417.562979][  T148] bond0 (unregistering): Released all slaves
[ 1417.799230][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1417.884632][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1417.940455][  T148] bond0 (unregistering): Released all slaves
[ 1418.490017][T13612] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1418.490038][T13612] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1418.490068][T13612] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1418.560324][T13612] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1418.560344][T13612] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1418.560372][T13612] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1419.219781][  T148] hsr_slave_0: left promiscuous mode
[ 1419.261665][  T148] hsr_slave_1: left promiscuous mode
[ 1419.262800][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1419.282739][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1419.448032][  T148] hsr_slave_0: left promiscuous mode
[ 1419.488288][  T148] hsr_slave_1: left promiscuous mode
[ 1419.489095][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1419.511172][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1419.803317][ T9333] Bluetooth: hci5: unexpected event for opcode 0x0c6d
[ 1421.091060][T13723] comedi comedi3: pcl726: I/O port conflict (0xb,16)
[ 1422.068807][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1422.278671][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1423.266287][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.459068][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1423.589047][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1424.293502][T13612] hsr_slave_0: entered promiscuous mode
[ 1424.295120][T13612] hsr_slave_1: entered promiscuous mode
[ 1424.296215][T13612] debugfs: 'hsr0' already exists in 'hsr'
[ 1424.296241][T13612] Cannot create hsr debugfs directory
[ 1424.520994][T13577] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1424.993304][T13531] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1425.160216][T13577] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1425.249129][T13577] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1425.338286][T13577] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1425.740079][T13531] 8021q: adding VLAN 0 to HW filter on device team0
[ 1425.825859][ T9456] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1425.826082][ T9456] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1425.852686][T13540] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1425.871780][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1425.871867][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1427.031167][T13540] 8021q: adding VLAN 0 to HW filter on device team0
[ 1427.157418][ T9456] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1427.170629][ T9456] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1427.306277][T12149] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1427.306609][T12149] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1427.442219][T13577] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1427.606419][T13577] 8021q: adding VLAN 0 to HW filter on device team0
[ 1427.728913][ T9457] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1427.737099][ T9457] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1427.801662][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1427.801829][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1428.503128][T13531] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1428.985608][T13612] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1429.046038][T13612] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1429.108354][T13612] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1429.169024][T13612] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1429.210041][T13540] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1429.481265][T13577] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1429.659137][T13531] veth0_vlan: entered promiscuous mode
[ 1429.732072][T13531] veth1_vlan: entered promiscuous mode
[ 1429.831946][T13577] veth0_vlan: entered promiscuous mode
[ 1429.879710][T13612] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1429.907092][T13577] veth1_vlan: entered promiscuous mode
[ 1429.996996][T13531] veth0_macvtap: entered promiscuous mode
[ 1430.017315][T13612] 8021q: adding VLAN 0 to HW filter on device team0
[ 1430.049360][T13531] veth1_macvtap: entered promiscuous mode
[ 1430.072193][ T8995] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1430.072426][ T8995] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1430.107431][ T8995] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1430.115035][ T8995] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1430.199397][T13531] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1430.207116][T13577] veth0_macvtap: entered promiscuous mode
[ 1430.267455][T13531] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1430.276027][T13577] veth1_macvtap: entered promiscuous mode
[ 1430.298658][T13540] veth0_vlan: entered promiscuous mode
[ 1430.332654][ T9457] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1430.347216][ T9457] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1430.365045][T12152] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1430.381418][T12152] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1430.384969][T13540] veth1_vlan: entered promiscuous mode
[ 1431.413768][T13577] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1431.465111][T13788] overlayfs: failed to resolve './file1': -2
[ 1431.546996][T13577] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1431.772269][T12149] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.845970][T12149] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.861603][T12149] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.862165][T12149] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1432.076722][T13540] veth0_macvtap: entered promiscuous mode
[ 1432.110314][  T148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1432.110335][  T148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1432.176414][T13540] veth1_macvtap: entered promiscuous mode
[ 1432.652695][T13540] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1432.717072][   T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1432.717094][   T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1432.738701][T13540] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1432.861135][  T148] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1432.880911][  T148] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1432.890499][   T43] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1432.890527][   T43] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1432.913626][  T148] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1432.952245][  T148] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1433.024029][T13612] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1433.267492][ T9457] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1433.267514][ T9457] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1434.150442][ T9457] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1434.150459][ T9457] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1434.995604][ T4181] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1434.995627][ T4181] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1435.423067][T13816] genirq: Flags mismatch irq 4. 00202000 (pcl812) vs. 00202080 (ttyS0)
[ 1436.663610][T13612] veth0_vlan: entered promiscuous mode
[ 1436.816221][T13612] veth1_vlan: entered promiscuous mode
[ 1437.592657][T13612] veth0_macvtap: entered promiscuous mode
[ 1437.642972][T13612] veth1_macvtap: entered promiscuous mode
[ 1437.714608][T13612] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1437.748277][T13612] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1437.784868][ T3496] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1437.786279][ T3496] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1437.811733][ T3496] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1437.814002][ T3496] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1437.979066][T11849] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1438.045348][T11849] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1438.047034][T11849] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1438.072399][T11849] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1438.076370][T11849] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1438.841782][ T5802] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1438.987961][ T5802] usb 10-1: Using ep0 maxpacket: 16
[ 1438.990656][ T5802] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1438.990673][ T5802] usb 10-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1438.990695][ T5802] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1438.990709][ T5802] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1438.994053][ T5802] usb 10-1: config 0 descriptor??
[ 1440.003381][ T1466] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1440.202888][T11849] Bluetooth: hci4: command tx timeout
[ 1440.756082][ T1466] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1440.832012][  T148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1440.832036][  T148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1441.236669][ T1466] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1441.650426][ T9481] usb 10-1: USB disconnect, device number 2
[ 1441.809212][T13839] input: syz1 as /devices/virtual/input/input42
[ 1441.910661][ T1466] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1442.022522][ T4181] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1442.022545][ T4181] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1442.428810][T13847] gre1: entered promiscuous mode
[ 1443.119173][T11849] Bluetooth: hci4: command tx timeout
[ 1443.464508][T13853] genirq: Flags mismatch irq 4. 00202000 (pcl812) vs. 00202080 (ttyS0)
[ 1444.826414][T13866] overlayfs: failed to resolve './file1': -2
[ 1444.840877][T13829] chnl_net:caif_netlink_parms(): no params data found
[ 1445.158110][T11849] Bluetooth: hci4: command tx timeout
[ 1445.337641][T13873] faux_driver vgem: [drm] Unknown color mode 181; guessing buffer size.
[ 1447.249767][T11849] Bluetooth: hci4: command tx timeout
[ 1450.045505][T13901] genirq: Flags mismatch irq 4. 00202000 (pcl812) vs. 00202080 (ttyS0)
[ 1450.879786][T13902] netlink: 'syz.1.2121': attribute type 3 has an invalid length.
[ 1450.938717][ T1466] bridge_slave_1: left allmulticast mode
[ 1450.938748][ T1466] bridge_slave_1: left promiscuous mode
[ 1450.939026][ T1466] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1451.030579][ T1466] bridge_slave_0: left allmulticast mode
[ 1451.030612][ T1466] bridge_slave_0: left promiscuous mode
[ 1451.031133][ T1466] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1458.816980][T13955] genirq: Flags mismatch irq 4. 00202000 (pcl812) vs. 00202080 (ttyS0)
[ 1461.011310][T13959] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2134'.
[ 1465.151822][ T1466] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1465.359186][ T1466] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1465.481540][ T1466] bond0 (unregistering): Released all slaves
[ 1465.620237][T13829] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1465.620415][T13829] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1465.620686][T13829] bridge_slave_0: entered allmulticast mode
[ 1465.623696][T13829] bridge_slave_0: entered promiscuous mode
[ 1465.865547][T13829] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1465.867622][T13829] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1465.869717][T13829] bridge_slave_1: entered allmulticast mode
[ 1466.049535][T13829] bridge_slave_1: entered promiscuous mode
[ 1468.849255][T13979] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2140'.
[ 1470.893451][T13829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1471.072971][T13829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1476.024142][ T1466] hsr_slave_0: left promiscuous mode
[ 1476.068352][ T1466] hsr_slave_1: left promiscuous mode
[ 1476.071208][ T1466] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1476.071238][ T1466] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1476.121416][ T1466] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1476.121447][ T1466] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1477.045151][ T1466] veth1_macvtap: left promiscuous mode
[ 1477.045282][ T1466] veth0_macvtap: left promiscuous mode
[ 1477.046231][ T1466] veth1_vlan: left promiscuous mode
[ 1477.046346][ T1466] veth0_vlan: left promiscuous mode
[ 1484.078374][ T9013] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1484.427926][ T9013] usb 9-1: device not accepting address 2, error -71
[ 1484.723582][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1494.096139][T12681] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[ 1494.367847][T12681] usb 2-1: Using ep0 maxpacket: 16
[ 1494.408308][T12681] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1494.408367][T12681] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1494.408413][T12681] usb 2-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1494.408438][T12681] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1494.415179][T12681] usb 2-1: config 0 descriptor??
[ 1494.470854][T12681] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1496.668837][ T1466] team0 (unregistering): Port device team_slave_1 removed
[ 1497.017604][ T9333] Bluetooth: hci0: command 0x0406 tx timeout
[ 1497.061121][T12681] usb 2-1: USB disconnect, device number 2
[ 1498.228559][ T1466] team0 (unregistering): Port device team_slave_0 removed
[ 1501.809226][ T9333] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1501.824785][ T9333] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1501.831502][ T9333] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1502.138445][ T9333] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1502.235982][ T9333] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1505.268068][ T9333] Bluetooth: hci1: command tx timeout
[ 1506.402325][T12826] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[ 1506.678912][T12826] usb 7-1: Using ep0 maxpacket: 16
[ 1507.292864][T12826] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1507.292919][T12826] usb 7-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1507.292942][T12826] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1507.321398][ T9333] Bluetooth: hci1: command tx timeout
[ 1507.383008][T12826] usb 7-1: config 0 descriptor??
[ 1507.476406][T12826] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[ 1507.997069][T13829] team0: Port device team_slave_0 added
[ 1508.002045][T14128] wg1: entered promiscuous mode
[ 1508.002071][T14128] wg1: entered allmulticast mode
[ 1509.987018][ T9333] Bluetooth: hci1: command tx timeout
[ 1510.140889][ T5997] usb 7-1: USB disconnect, device number 38
[ 1512.149205][ T9333] Bluetooth: hci1: command tx timeout
[ 1512.409123][ T9333] Bluetooth: hci2: command 0x0406 tx timeout
[ 1515.763825][T14120] chnl_net:caif_netlink_parms(): no params data found
[ 1516.082047][ T1466] bridge_slave_1: left allmulticast mode
[ 1516.082081][ T1466] bridge_slave_1: left promiscuous mode
[ 1516.083948][ T1466] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1516.222309][ T1466] bridge_slave_0: left allmulticast mode
[ 1516.222342][ T1466] bridge_slave_0: left promiscuous mode
[ 1516.227254][ T1466] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1517.448636][ T1466] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1518.580950][ T1466] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1518.705308][ T1466] bond0 (unregistering): Released all slaves
[ 1519.900685][ T5802] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[ 1520.128119][ T5802] usb 2-1: Using ep0 maxpacket: 16
[ 1520.130611][ T5802] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1520.130662][ T5802] usb 2-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1520.130685][ T5802] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1520.144998][ T5802] usb 2-1: config 0 descriptor??
[ 1520.218371][ T5802] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1520.995253][ T1466] team0 (unregistering): Port device team_slave_0 removed
[ 1522.271849][ T5802] usb 2-1: USB disconnect, device number 3
[ 1523.476055][T11849] Bluetooth: hci3: command 0x0406 tx timeout
[ 1523.905892][T14218] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2205'.
[ 1523.963342][T14221] netlink: 'syz.1.2205': attribute type 3 has an invalid length.
[ 1526.097269][T14218] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2205'.
[ 1530.087066][T14120] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1530.088903][T14120] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1530.089176][T14120] bridge_slave_0: entered allmulticast mode
[ 1530.092710][T14120] bridge_slave_0: entered promiscuous mode
[ 1530.231450][T14120] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1530.231766][T14120] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1530.232026][T14120] bridge_slave_1: entered allmulticast mode
[ 1530.236363][T14120] bridge_slave_1: entered promiscuous mode
[ 1530.427900][T13088] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[ 1530.587989][T13088] usb 2-1: Using ep0 maxpacket: 16
[ 1530.590500][T13088] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[ 1530.590549][T13088] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1530.590573][T13088] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1530.596747][T13088] usb 2-1: config 0 descriptor??
[ 1530.675054][T13088] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1531.487712][T14255] binder: 14254:14255 ioctl c018620b 0 returned -14
[ 1531.610906][T14120] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1531.719863][T14120] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1531.752328][T14256] netlink: 6716 bytes leftover after parsing attributes in process `syz.8.2217'.
[ 1533.019814][T14120] team0: Port device team_slave_0 added
[ 1533.240302][T14120] team0: Port device team_slave_1 added
[ 1533.807191][ T5941] usb 2-1: USB disconnect, device number 4
[ 1534.487228][T14120] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1534.487521][T14120] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1534.487552][T14120] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1534.627869][T14120] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1534.627888][T14120] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1534.627914][T14120] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1535.435819][   T37] audit: type=1326 audit(1768265817.499:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.445695][   T37] audit: type=1326 audit(1768265817.529:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.506428][   T37] audit: type=1326 audit(1768265817.559:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.506482][   T37] audit: type=1326 audit(1768265817.579:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.506530][   T37] audit: type=1326 audit(1768265817.599:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.506574][   T37] audit: type=1326 audit(1768265817.599:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.506618][   T37] audit: type=1326 audit(1768265817.599:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.506718][   T37] audit: type=1326 audit(1768265817.599:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.506765][   T37] audit: type=1326 audit(1768265817.599:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1535.506810][   T37] audit: type=1326 audit(1768265817.599:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14268 comm="syz.9.2215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b273cf749 code=0x7ffc0000
[ 1540.642116][T14120] hsr_slave_0: entered promiscuous mode
[ 1540.643657][T14120] hsr_slave_1: entered promiscuous mode
[ 1540.644709][T14120] debugfs: 'hsr0' already exists in 'hsr'
[ 1540.644736][T14120] Cannot create hsr debugfs directory
[ 1541.748275][ T5941] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[ 1541.842078][T14302] 9pnet_fd: p9_fd_create_tcp (14302): problem connecting socket to 127.0.0.1
[ 1541.897915][ T5941] usb 10-1: Using ep0 maxpacket: 16
[ 1541.900872][ T5941] usb 10-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[ 1541.900922][ T5941] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1541.900948][ T5941] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1541.909908][ T5941] usb 10-1: config 0 descriptor??
[ 1541.916307][ T5941] usbhid 10-1:0.0: couldn't find an input interrupt endpoint
[ 1542.348118][ T5941] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[ 1542.498025][ T5941] usb 2-1: Using ep0 maxpacket: 16
[ 1542.508371][ T5941] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1542.508416][ T5941] usb 2-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1542.508436][ T5941] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1542.592149][ T5941] usb 2-1: config 0 descriptor??
[ 1542.611093][ T5941] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1545.453774][ T5941] usb 2-1: USB disconnect, device number 5
[ 1545.495537][  T830] usb 10-1: USB disconnect, device number 3
[ 1548.917491][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1553.896110][T14120] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1554.042116][T14120] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1554.633888][T14120] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1555.055622][T14120] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1564.123330][T13186] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1564.164940][T13186] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1564.166896][T13186] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1566.791808][T11849] Bluetooth: hci1: command 0x1009 tx timeout
[ 1566.818473][ T9333] Bluetooth: hci1: Opcode 0x1009 failed: -110
[ 1566.990747][ T9333] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1568.948084][T14380] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1570.648565][T12149] bridge_slave_1: left allmulticast mode
[ 1570.648588][T12149] bridge_slave_1: left promiscuous mode
[ 1570.648785][T12149] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1570.807526][T12149] bridge_slave_0: left allmulticast mode
[ 1570.807557][T12149] bridge_slave_0: left promiscuous mode
[ 1570.810860][T12149] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1573.868120][T14413] genirq: Flags mismatch irq 4. 00202000 (pcl812) vs. 00202080 (ttyS0)
[ 1576.037491][T13186] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1576.068469][T13186] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1576.098473][T13186] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1576.301748][T13186] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1576.305927][T13186] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1578.366569][T14450] input: syz1 as /devices/virtual/input/input43
[ 1578.367903][T13186] Bluetooth: hci1: command tx timeout
[ 1580.439186][T13186] Bluetooth: hci1: command tx timeout
[ 1580.588961][T12149] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1580.669296][T12149] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1580.711174][T12149] bond0 (unregistering): Released all slaves
[ 1580.744130][T14457] gre1: entered promiscuous mode
[ 1581.986957][T12149] hsr_slave_0: left promiscuous mode
[ 1582.058276][T12149] hsr_slave_1: left promiscuous mode
[ 1582.059406][T12149] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1582.128935][T12149] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1582.716422][T13186] Bluetooth: hci1: command tx timeout
[ 1584.273253][ T5941] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[ 1584.757929][T13186] Bluetooth: hci1: command tx timeout
[ 1585.187931][ T5941] usb 7-1: Using ep0 maxpacket: 16
[ 1585.195042][ T5941] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1585.195077][ T5941] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1585.195115][ T5941] usb 7-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1585.195139][ T5941] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1585.962482][ T5941] usb 7-1: config 0 descriptor??
[ 1589.225339][ T5941] usbhid 7-1:0.0: can't add hid device: -71
[ 1589.225472][ T5941] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 1589.326250][ T5941] usb 7-1: USB disconnect, device number 39
[ 1593.431783][T12149] team0 (unregistering): Port device team_slave_1 removed
[ 1593.578812][T12149] team0 (unregistering): Port device team_slave_0 removed
[ 1596.725695][ T9333] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1596.746994][ T9333] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1596.749527][ T9333] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1596.751375][ T9333] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1596.752565][ T9333] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1597.632220][T14431] chnl_net:caif_netlink_parms(): no params data found
[ 1598.840510][ T9333] Bluetooth: hci4: command tx timeout
[ 1598.971961][T14525] chnl_net:caif_netlink_parms(): no params data found
[ 1601.364689][ T9333] Bluetooth: hci4: command tx timeout
[ 1601.391856][T14547] comedi comedi3: pcl726: I/O port conflict (0xb,16)
[ 1601.504701][T14545] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/nullb0": -EINTR
[ 1601.974183][ T3520] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1602.081041][T14431] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1602.081576][T14431] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1602.081877][T14431] bridge_slave_0: entered allmulticast mode
[ 1602.085211][T14431] bridge_slave_0: entered promiscuous mode
[ 1602.138833][T14431] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1602.138998][T14431] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1602.139208][T14431] bridge_slave_1: entered allmulticast mode
[ 1602.143874][T14431] bridge_slave_1: entered promiscuous mode
[ 1602.508045][ T6049] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1602.657835][ T6049] usb 9-1: Using ep0 maxpacket: 16
[ 1602.660988][ T6049] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1602.661022][ T6049] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1602.661047][ T6049] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1602.661092][ T6049] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1602.661115][ T6049] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1602.735279][ T6049] usb 9-1: config 0 descriptor??
[ 1602.787218][ T3520] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1602.909810][T14431] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1602.949627][T14431] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1603.157765][    C0] raw-gadget.0 gadget.8: ignoring, device is not running
[ 1603.159157][    C0] raw-gadget.0 gadget.8: ignoring, device is not running
[ 1603.159924][    C0] raw-gadget.0 gadget.8: ignoring, device is not running
[ 1603.161143][ T6049] usbhid 9-1:0.0: can't add hid device: -32
[ 1603.161280][ T6049] usbhid 9-1:0.0: probe with driver usbhid failed with error -32
[ 1603.211834][ T6049] usb 9-1: USB disconnect, device number 4
[ 1603.251016][ T3520] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1603.397969][ T9333] Bluetooth: hci4: command tx timeout
[ 1606.283517][T13186] Bluetooth: hci4: command tx timeout
[ 1608.067366][ T3520] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1608.188988][T14525] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1608.189387][T14525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1608.189646][T14525] bridge_slave_0: entered allmulticast mode
[ 1608.192647][T14525] bridge_slave_0: entered promiscuous mode
[ 1608.794238][T14431] team0: Port device team_slave_0 added
[ 1609.021463][T14525] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1609.021618][T14525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1609.021804][T14525] bridge_slave_1: entered allmulticast mode
[ 1609.023470][T14525] bridge_slave_1: entered promiscuous mode
[ 1609.049689][T14431] team0: Port device team_slave_1 added
[ 1612.163019][T14525] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1612.166604][T14431] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1612.166620][T14431] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1612.166648][T14431] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1612.247078][T14525] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1612.261554][T14431] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1612.261571][T14431] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1612.261600][T14431] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1612.687630][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1616.143497][T14525] team0: Port device team_slave_0 added
[ 1616.225130][T14525] team0: Port device team_slave_1 added
[ 1616.919717][T14431] hsr_slave_0: entered promiscuous mode
[ 1616.922592][T14431] hsr_slave_1: entered promiscuous mode
[ 1616.924804][T14431] debugfs: 'hsr0' already exists in 'hsr'
[ 1616.924831][T14431] Cannot create hsr debugfs directory
[ 1617.037649][T14525] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1617.037666][T14525] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1617.071782][T14525] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1617.299605][T14525] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1617.299625][T14525] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1617.299662][T14525] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1620.678196][ T3520] bridge_slave_1: left allmulticast mode
[ 1620.678228][ T3520] bridge_slave_1: left promiscuous mode
[ 1620.678522][ T3520] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1620.866274][ T3520] bridge_slave_0: left allmulticast mode
[ 1620.866386][ T3520] bridge_slave_0: left promiscuous mode
[ 1620.867166][ T3520] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1627.820855][T14653] futex_wake_op: syz.6.2317 tries to shift op by -1; fix this program
[ 1633.708765][ T3520] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1633.770130][ T3520] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1633.790675][ T3520] bond0 (unregistering): Released all slaves
[ 1634.085191][T14525] hsr_slave_0: entered promiscuous mode
[ 1634.087368][T14525] hsr_slave_1: entered promiscuous mode
[ 1634.093711][T14525] debugfs: 'hsr0' already exists in 'hsr'
[ 1634.093737][T14525] Cannot create hsr debugfs directory
[ 1635.520126][ T5997] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[ 1635.534470][T13186] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1635.563949][T13186] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1635.566846][T13186] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1635.701721][T13186] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1635.710414][ T5997] usb 9-1: Using ep0 maxpacket: 16
[ 1635.714616][ T5997] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1635.714649][ T5997] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1635.714673][ T5997] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1635.714718][ T5997] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1635.714742][ T5997] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1635.718591][ T5997] usb 9-1: config 0 descriptor??
[ 1635.725695][T13186] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1636.230996][T14695] Invalid source name
[ 1637.274008][ T5997] usbhid 9-1:0.0: can't add hid device: -71
[ 1637.274156][ T5997] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[ 1637.277056][ T5997] usb 9-1: USB disconnect, device number 5
[ 1637.418533][T14699] input: syz1 as /devices/virtual/input/input44
[ 1637.798082][ T9333] Bluetooth: hci0: command tx timeout
[ 1640.432719][ T9333] Bluetooth: hci0: command tx timeout
[ 1640.522903][   T49] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[ 1640.765898][ T3520] hsr_slave_0: left promiscuous mode
[ 1640.817814][   T49] usb 2-1: Using ep0 maxpacket: 16
[ 1640.820369][   T49] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1640.820402][   T49] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1640.820443][   T49] usb 2-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1640.820470][   T49] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1640.826441][   T49] usb 2-1: config 0 descriptor??
[ 1641.054590][ T3520] hsr_slave_1: left promiscuous mode
[ 1641.056542][ T3520] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1641.056569][ T3520] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1641.138459][ T3520] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1641.138490][ T3520] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1641.670720][   T49] usbhid 2-1:0.0: can't add hid device: -71
[ 1641.670809][   T49] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1641.726087][   T49] usb 2-1: USB disconnect, device number 6
[ 1641.765930][ T3520] veth1_macvtap: left promiscuous mode
[ 1641.766064][ T3520] veth0_macvtap: left promiscuous mode
[ 1641.766362][ T3520] veth1_vlan: left promiscuous mode
[ 1641.766561][ T3520] veth0_vlan: left promiscuous mode
[ 1642.440312][ T9333] Bluetooth: hci0: command tx timeout
[ 1643.241025][T14735] No source specified
[ 1644.519128][ T9333] Bluetooth: hci0: command tx timeout
[ 1645.177959][ T5997] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1645.327919][ T5997] usb 9-1: Using ep0 maxpacket: 16
[ 1645.330695][ T5997] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1645.330728][ T5997] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1645.330752][ T5997] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1645.330797][ T5997] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1645.330819][ T5997] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1645.334362][ T5997] usb 9-1: config 0 descriptor??
[ 1645.935843][ T5997] usbhid 9-1:0.0: can't add hid device: -71
[ 1645.936996][ T5997] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[ 1646.015478][ T5997] usb 9-1: USB disconnect, device number 6
[ 1648.070659][T14753] input: syz1 as /devices/virtual/input/input45
[ 1651.147229][T14771] No source specified
[ 1652.107985][T13962] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[ 1652.267891][T13962] usb 7-1: Using ep0 maxpacket: 16
[ 1652.311282][T13962] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1652.311318][T13962] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1652.311360][T13962] usb 7-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1652.311488][T13962] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1652.318005][T13962] usb 7-1: config 0 descriptor??
[ 1652.962561][T13962] usbhid 7-1:0.0: can't add hid device: -71
[ 1652.975923][T13962] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 1653.110178][T13962] usb 7-1: USB disconnect, device number 40
[ 1657.370984][T14692] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1657.387309][T14692] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1657.593217][T14814] No source specified
[ 1658.316479][T14692] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1658.332606][T14692] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1658.337397][T14692] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1660.528262][ T9333] Bluetooth: hci1: command tx timeout
[ 1660.549287][ T3520] team0 (unregistering): Port device team_slave_1 removed
[ 1661.000039][ T3520] team0 (unregistering): Port device team_slave_0 removed
[ 1662.624443][ T9333] Bluetooth: hci1: command tx timeout
[ 1664.728449][ T9333] Bluetooth: hci1: command tx timeout
[ 1664.907249][T14851] input: syz1 as /devices/virtual/input/input46
[ 1666.650283][T14870] netlink: 60 bytes leftover after parsing attributes in process `syz.8.2375'.
[ 1666.759500][ T9333] Bluetooth: hci1: command tx timeout
[ 1672.741792][T14908] futex_wake_op: syz.6.2389 tries to shift op by -1; fix this program
[ 1674.186119][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1679.149379][T14689] chnl_net:caif_netlink_parms(): no params data found
[ 1679.372560][ T3520] bridge_slave_1: left allmulticast mode
[ 1679.372584][ T3520] bridge_slave_1: left promiscuous mode
[ 1679.372773][ T3520] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1679.440163][ T3520] bridge_slave_0: left allmulticast mode
[ 1679.440196][ T3520] bridge_slave_0: left promiscuous mode
[ 1679.440601][ T3520] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1679.593131][ T3520] bridge_slave_1: left allmulticast mode
[ 1679.593154][ T3520] bridge_slave_1: left promiscuous mode
[ 1679.593329][ T3520] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1679.721539][ T3520] bridge_slave_0: left allmulticast mode
[ 1679.721573][ T3520] bridge_slave_0: left promiscuous mode
[ 1679.723484][ T3520] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1681.597870][T14502] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[ 1681.618627][ T3520] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1681.721185][ T3520] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1681.758467][T14502] usb 9-1: Using ep0 maxpacket: 16
[ 1681.763007][T14502] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1681.763038][T14502] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1681.763058][T14502] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1681.763098][T14502] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1681.763119][T14502] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1681.777009][T14502] usb 9-1: config 0 descriptor??
[ 1681.797474][ T3520] bond0 (unregistering): Released all slaves
[ 1682.472865][    C0] raw-gadget.0 gadget.8: ignoring, device is not running
[ 1682.475584][T14502] usbhid 9-1:0.0: can't add hid device: -71
[ 1682.475711][T14502] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[ 1682.486924][T14502] usb 9-1: USB disconnect, device number 7
[ 1682.508092][ T3520] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1682.598825][ T3520] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1682.670662][ T3520] bond0 (unregistering): Released all slaves
[ 1683.049071][T14809] chnl_net:caif_netlink_parms(): no params data found
[ 1686.883446][T14689] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1686.884683][T14689] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1686.884924][T14689] bridge_slave_0: entered allmulticast mode
[ 1686.889689][T14689] bridge_slave_0: entered promiscuous mode
[ 1686.957862][T14689] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1686.958236][T14689] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1686.958454][T14689] bridge_slave_1: entered allmulticast mode
[ 1686.960276][T14689] bridge_slave_1: entered promiscuous mode
[ 1687.288242][ T3520] hsr_slave_0: left promiscuous mode
[ 1688.245483][ T3520] hsr_slave_1: left promiscuous mode
[ 1688.256595][ T3520] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1688.305634][ T3520] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1688.591566][ T3520] hsr_slave_0: left promiscuous mode
[ 1688.628510][ T3520] hsr_slave_1: left promiscuous mode
[ 1688.631009][ T3520] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1688.679792][ T3520] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1691.059086][ T3520] team0 (unregistering): Port device team_slave_1 removed
[ 1691.297915][T13911] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[ 1691.399537][ T3520] team0 (unregistering): Port device team_slave_0 removed
[ 1691.478224][T13911] usb 2-1: Using ep0 maxpacket: 16
[ 1691.555257][T13911] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1691.555308][T13911] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1691.555334][T13911] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1691.555476][T13911] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1691.555502][T13911] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1691.563311][T13911] usb 2-1: config 0 descriptor??
[ 1692.202084][T13911] usbhid 2-1:0.0: can't add hid device: -71
[ 1692.202186][T13911] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1692.205533][T13911] usb 2-1: USB disconnect, device number 7
[ 1695.048592][ T3520] team0 (unregistering): Port device team_slave_1 removed
[ 1695.241044][ T3520] team0 (unregistering): Port device team_slave_0 removed
[ 1696.721531][T14692] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1696.780151][T14692] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1696.782554][T14692] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1696.786548][T14692] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1696.809004][T14692] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1698.074811][T14809] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1698.074892][T14809] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1698.075048][T14809] bridge_slave_0: entered allmulticast mode
[ 1698.087550][T14809] bridge_slave_0: entered promiscuous mode
[ 1698.146241][T14809] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1698.148997][T14809] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1698.149252][T14809] bridge_slave_1: entered allmulticast mode
[ 1698.160448][T14809] bridge_slave_1: entered promiscuous mode
[ 1698.846953][ T9333] Bluetooth: hci4: command tx timeout
[ 1699.044751][T14809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1699.262970][T14809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1700.851826][T15067] netlink: 14 bytes leftover after parsing attributes in process `syz.1.2432'.
[ 1700.923032][ T9333] Bluetooth: hci4: command tx timeout
[ 1701.926690][T14809] team0: Port device team_slave_0 added
[ 1702.063480][T15066] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[ 1702.228564][T15079] comedi comedi3: pcl726: I/O port conflict (0xb,16)
[ 1702.998684][ T9333] Bluetooth: hci4: command tx timeout
[ 1705.078428][ T9333] Bluetooth: hci4: command tx timeout
[ 1706.138457][T15067] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1706.221488][T15067] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1706.289694][T15067] bond0 (unregistering): Released all slaves
[ 1706.447052][T14809] team0: Port device team_slave_1 added
[ 1707.055052][T14809] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1707.055075][T14809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1707.055105][T14809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1707.082930][T14809] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1707.082949][T14809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1707.083409][T14809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1708.880204][T14809] hsr_slave_0: entered promiscuous mode
[ 1708.882655][T14809] hsr_slave_1: entered promiscuous mode
[ 1709.113558][ T3520] bridge_slave_1: left allmulticast mode
[ 1709.113581][ T3520] bridge_slave_1: left promiscuous mode
[ 1709.113804][ T3520] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1709.180860][ T3520] bridge_slave_0: left allmulticast mode
[ 1709.180884][ T3520] bridge_slave_0: left promiscuous mode
[ 1709.181071][ T3520] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1709.496332][ T3520] bond0 (unregistering): Released all slaves
[ 1711.479099][T15030] chnl_net:caif_netlink_parms(): no params data found
[ 1713.896919][T15030] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1713.897116][T15030] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1713.897268][T15030] bridge_slave_0: entered allmulticast mode
[ 1713.900788][T15030] bridge_slave_0: entered promiscuous mode
[ 1713.982706][T15030] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1713.984084][T15030] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1713.984266][T15030] bridge_slave_1: entered allmulticast mode
[ 1713.997915][T15030] bridge_slave_1: entered promiscuous mode
[ 1714.549587][T15030] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1714.555795][T15030] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1715.333863][T15030] team0: Port device team_slave_0 added
[ 1715.460571][   T49] usb 7-1: new full-speed USB device number 41 using dummy_hcd
[ 1715.708029][   T49] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1715.728959][T15030] team0: Port device team_slave_1 added
[ 1715.857882][   T49] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ac.7e
[ 1715.857925][   T49] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1715.857952][   T49] usb 7-1: Product: syz
[ 1715.857966][   T49] usb 7-1: Manufacturer: syz
[ 1715.857979][   T49] usb 7-1: SerialNumber: syz
[ 1715.912177][   T49] usb 7-1: config 0 descriptor??
[ 1715.916059][   T49] hub 7-1:0.0: bad descriptor, ignoring hub
[ 1715.916103][   T49] hub 7-1:0.0: probe with driver hub failed with error -5
[ 1715.944581][   T49] input: syz syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input47
[ 1716.301803][T15167] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1716.302307][T15167] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1716.649397][   T49] usb 7-1: USB disconnect, device number 41
[ 1718.664014][T15030] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1718.664035][T15030] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1718.664063][T15030] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1718.723949][T15030] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1718.723970][T15030] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1718.724000][T15030] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1719.077151][T15181] Invalid source name
[ 1719.943978][T15030] hsr_slave_0: entered promiscuous mode
[ 1719.946199][T15030] hsr_slave_1: entered promiscuous mode
[ 1719.947512][T15030] debugfs: 'hsr0' already exists in 'hsr'
[ 1719.947539][T15030] Cannot create hsr debugfs directory
[ 1720.334141][T14692] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1720.371421][T14692] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1720.373252][T14692] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1720.376048][T14692] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1720.377582][T14692] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1722.532511][T14692] Bluetooth: hci0: command tx timeout
[ 1723.060675][  T148] bridge_slave_1: left allmulticast mode
[ 1723.060709][  T148] bridge_slave_1: left promiscuous mode
[ 1723.061040][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1723.121012][  T148] bridge_slave_0: left allmulticast mode
[ 1723.121036][  T148] bridge_slave_0: left promiscuous mode
[ 1723.121221][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1725.828773][T14692] Bluetooth: hci0: command tx timeout
[ 1726.336884][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1726.419096][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1726.468728][  T148] bond0 (unregistering): Released all slaves
[ 1727.878987][T14692] Bluetooth: hci0: command tx timeout
[ 1728.062154][  T148] hsr_slave_0: left promiscuous mode
[ 1728.080102][  T148] hsr_slave_1: left promiscuous mode
[ 1728.081413][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1728.111496][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1729.995614][T14692] Bluetooth: hci0: command tx timeout
[ 1731.003767][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1731.260368][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1732.707835][ T6049] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[ 1732.877842][ T6049] usb 9-1: Using ep0 maxpacket: 8
[ 1732.880274][ T6049] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1732.880307][ T6049] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1732.880445][ T6049] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1732.880470][ T6049] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1732.942612][ T6049] usb 9-1: config 0 descriptor??
[ 1733.243127][ T6049] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[ 1735.468506][T15186] chnl_net:caif_netlink_parms(): no params data found
[ 1735.566891][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1736.059653][ T6049] usb 9-1: USB disconnect, device number 8
[ 1737.907991][T15186] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1737.908198][T15186] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1737.908449][T15186] bridge_slave_0: entered allmulticast mode
[ 1737.911164][T15186] bridge_slave_0: entered promiscuous mode
[ 1738.983962][T15186] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1738.984111][T15186] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1738.984374][T15186] bridge_slave_1: entered allmulticast mode
[ 1739.019731][T15186] bridge_slave_1: entered promiscuous mode
[ 1740.536263][T15186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1741.485873][T15186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1741.632915][T15285] vivid-002: disconnect
[ 1741.636494][T15285] vivid-002: reconnect
[ 1741.794805][T15030] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1741.863415][T15186] team0: Port device team_slave_0 added
[ 1741.863744][T15030] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1741.932717][T15186] team0: Port device team_slave_1 added
[ 1741.940828][T15030] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1742.450193][T15030] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1744.520287][T15186] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1744.520308][T15186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1744.520337][T15186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1749.846832][T15186] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1749.846852][T15186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1749.846880][T15186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1750.180869][T15186] hsr_slave_0: entered promiscuous mode
[ 1750.186178][T15186] hsr_slave_1: entered promiscuous mode
[ 1750.555854][T15324] comedi comedi3: driver 'ni_daq_700' does not support attach using comedi_config
[ 1753.346102][T15030] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1754.130272][T15030] 8021q: adding VLAN 0 to HW filter on device team0
[ 1754.166810][ T8994] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1754.166993][ T8994] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1754.306933][ T8994] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1754.307301][ T8994] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1754.339534][T15186] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1754.387230][T15186] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1754.428564][T15186] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1754.491607][T15186] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1755.198546][T15186] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1755.268121][T15186] 8021q: adding VLAN 0 to HW filter on device team0
[ 1755.323065][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1755.323714][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1755.395541][T14601] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1755.396616][T14601] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1756.626949][T15186] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1757.050985][T15186] veth0_vlan: entered promiscuous mode
[ 1757.073418][T15186] veth1_vlan: entered promiscuous mode
[ 1757.276756][T15186] veth0_macvtap: entered promiscuous mode
[ 1757.301645][T15186] veth1_macvtap: entered promiscuous mode
[ 1757.697787][   T49] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[ 1757.928313][   T49] usb 7-1: Using ep0 maxpacket: 16
[ 1757.939764][   T49] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1757.939798][   T49] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1757.939820][   T49] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1757.939863][   T49] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1757.939884][   T49] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1757.944937][   T49] usb 7-1: config 0 descriptor??
[ 1758.359919][T15186] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1758.485993][T15186] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1758.558688][ T8995] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1758.558743][ T8995] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1758.558782][ T8995] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1758.558820][ T8995] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1759.253387][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253428][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253454][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253479][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253503][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253529][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253555][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253579][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253605][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.253630][   T49] microsoft 0003:045E:07DA.0019: unknown main item tag 0x0
[ 1759.340403][   T49] microsoft 0003:045E:07DA.0019: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[ 1759.340439][   T49] microsoft 0003:045E:07DA.0019: no inputs found
[ 1759.340452][   T49] microsoft 0003:045E:07DA.0019: could not initialize ff, continuing anyway
[ 1759.452716][   T49] usb 7-1: USB disconnect, device number 42
[ 1759.506659][ T9333] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1759.544797][ T9333] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1759.548686][ T9333] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1759.600061][ T9333] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1759.607049][ T9333] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1762.566669][T14692] Bluetooth: hci1: command tx timeout
[ 1763.826860][   T43] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1763.826882][   T43] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1764.598306][ T9333] Bluetooth: hci1: command tx timeout
[ 1765.003569][ T9457] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1765.003586][ T9457] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1766.830227][ T9333] Bluetooth: hci1: command tx timeout
[ 1766.932298][T12592] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1767.344895][T12592] usb 9-1: Using ep0 maxpacket: 16
[ 1768.829665][T12592] usb 9-1: unable to read config index 0 descriptor/all
[ 1768.829718][T12592] usb 9-1: can't read configurations, error -71
[ 1768.839276][ T9333] Bluetooth: hci1: command tx timeout
[ 1769.190865][   T37] kauditd_printk_skb: 68 callbacks suppressed
[ 1769.190886][   T37] audit: type=1326 audit(1768266051.259:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191013][   T37] audit: type=1326 audit(1768266051.259:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191059][   T37] audit: type=1326 audit(1768266051.269:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191102][   T37] audit: type=1326 audit(1768266051.269:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191436][   T37] audit: type=1326 audit(1768266051.279:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191568][   T37] audit: type=1326 audit(1768266051.279:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191650][   T37] audit: type=1326 audit(1768266051.279:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191747][   T37] audit: type=1326 audit(1768266051.279:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191791][   T37] audit: type=1326 audit(1768266051.279:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1769.191833][   T37] audit: type=1326 audit(1768266051.279:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15438 comm="syz.1.2527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7ba46f749 code=0x7ffc0000
[ 1773.156221][T15472] Invalid source name
[ 1777.046872][ T8994] bridge_slave_1: left allmulticast mode
[ 1777.046904][ T8994] bridge_slave_1: left promiscuous mode
[ 1777.047154][ T8994] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1777.141539][ T8994] bridge_slave_0: left allmulticast mode
[ 1777.141571][ T8994] bridge_slave_0: left promiscuous mode
[ 1777.141870][ T8994] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1789.459476][ T8994] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1789.551448][ T8994] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1789.590589][ T8994] bond0 (unregistering): Released all slaves
[ 1789.651013][T15388] chnl_net:caif_netlink_parms(): no params data found
[ 1789.791683][   T37] kauditd_printk_skb: 83 callbacks suppressed
[ 1789.791705][   T37] audit: type=1326 audit(1768266071.879:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799231][   T37] audit: type=1326 audit(1768266071.889:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799291][   T37] audit: type=1326 audit(1768266071.889:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799421][   T37] audit: type=1326 audit(1768266071.889:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799463][   T37] audit: type=1326 audit(1768266071.889:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799502][   T37] audit: type=1326 audit(1768266071.889:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799543][   T37] audit: type=1326 audit(1768266071.889:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799582][   T37] audit: type=1326 audit(1768266071.889:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799621][   T37] audit: type=1326 audit(1768266071.889:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1789.799660][   T37] audit: type=1326 audit(1768266071.889:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15567 comm="syz.0.2566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1790.275484][ T8994] hsr_slave_0: left promiscuous mode
[ 1790.290474][ T8994] hsr_slave_1: left promiscuous mode
[ 1790.291730][ T8994] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1790.379455][ T8994] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1792.316008][T13980] libceph: connect (1)[c::]:6789 error -101
[ 1792.316246][T13980] libceph: mon0 (1)[c::]:6789 connect error
[ 1792.342093][T13980] libceph: connect (1)[c::]:6789 error -101
[ 1792.343655][T13980] libceph: mon0 (1)[c::]:6789 connect error
[ 1792.368257][T15589] ceph: No mds server is up or the cluster is laggy
[ 1793.269991][T15587] ALSA: mixer_oss: invalid OSS volume ''
[ 1796.784976][   T37] kauditd_printk_skb: 38 callbacks suppressed
[ 1796.822658][   T37] audit: type=1326 audit(1768266078.619:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.822798][   T37] audit: type=1326 audit(1768266078.799:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.822846][   T37] audit: type=1326 audit(1768266078.799:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.823146][   T37] audit: type=1326 audit(1768266078.799:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.823201][   T37] audit: type=1326 audit(1768266078.799:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.823418][   T37] audit: type=1326 audit(1768266078.799:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.823633][   T37] audit: type=1326 audit(1768266078.799:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.823679][   T37] audit: type=1326 audit(1768266078.799:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.823722][   T37] audit: type=1326 audit(1768266078.799:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1796.823764][   T37] audit: type=1326 audit(1768266078.799:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15608 comm="syz.0.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1797.036755][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1799.362573][ T8994] team0 (unregistering): Port device team_slave_1 removed
[ 1799.378958][T15631] program syz.8.2584 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1799.984301][T15639] comedi comedi3: pcl726: I/O port conflict (0xb,16)
[ 1800.437972][T15636] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/nullb0": -EINTR
[ 1800.702579][ T8994] team0 (unregistering): Port device team_slave_0 removed
[ 1807.921131][T15388] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1807.928253][T15388] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1807.928518][T15388] bridge_slave_0: entered allmulticast mode
[ 1807.930151][T15388] bridge_slave_0: entered promiscuous mode
[ 1807.977231][T15388] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1807.977543][T15388] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1807.993713][T15388] bridge_slave_1: entered allmulticast mode
[ 1807.996925][T15388] bridge_slave_1: entered promiscuous mode
[ 1810.341077][T15388] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1810.372588][T15388] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1810.407866][T13980] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[ 1810.552510][   T37] kauditd_printk_skb: 83 callbacks suppressed
[ 1810.552525][   T37] audit: type=1326 audit(1768266092.649:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.553432][   T37] audit: type=1326 audit(1768266092.649:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.553465][   T37] audit: type=1326 audit(1768266092.649:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.553491][   T37] audit: type=1326 audit(1768266092.649:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.553517][   T37] audit: type=1326 audit(1768266092.649:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.554285][   T37] audit: type=1326 audit(1768266092.649:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.554383][   T37] audit: type=1326 audit(1768266092.649:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.554413][   T37] audit: type=1326 audit(1768266092.649:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.554437][   T37] audit: type=1326 audit(1768266092.649:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.554461][   T37] audit: type=1326 audit(1768266092.649:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15705 comm="syz.6.2606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1810.837047][T13980] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1810.837072][T13980] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1810.879003][T13980] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1810.879034][T13980] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1810.879054][T13980] usb 2-1: Product: syz
[ 1810.879071][T13980] usb 2-1: Manufacturer: syz
[ 1810.879086][T13980] usb 2-1: SerialNumber: syz
[ 1810.936210][T13980] usb 2-1: config 0 descriptor??
[ 1811.603036][T15714] No control pipe specified
[ 1812.656000][T13980] usb 2-1: USB disconnect, device number 8
[ 1813.430174][T15388] team0: Port device team_slave_0 added
[ 1813.535450][T15388] team0: Port device team_slave_1 added
[ 1815.300164][T15388] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1815.300184][T15388] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1815.300214][T15388] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1815.304086][T15388] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1815.304103][T15388] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1815.304132][T15388] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1815.560898][   T37] kauditd_printk_skb: 121 callbacks suppressed
[ 1815.560917][   T37] audit: type=1326 audit(1768266097.659:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15742 comm="syz.6.2618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7efeb440f749 code=0x7ffc0000
[ 1815.981921][T15745] overlayfs: cannot append lower layer
[ 1816.628017][T15388] hsr_slave_0: entered promiscuous mode
[ 1816.656129][T15388] hsr_slave_1: entered promiscuous mode
[ 1816.680155][T15388] debugfs: 'hsr0' already exists in 'hsr'
[ 1816.680196][T15388] Cannot create hsr debugfs directory
[ 1817.261706][T15760] netlink: 'syz.6.2625': attribute type 3 has an invalid length.
[ 1817.261731][T15760] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2625'.
[ 1818.598445][   T43] bridge_slave_1: left allmulticast mode
[ 1818.598479][   T43] bridge_slave_1: left promiscuous mode
[ 1818.598666][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1818.658948][   T43] bridge_slave_0: left allmulticast mode
[ 1818.658972][   T43] bridge_slave_0: left promiscuous mode
[ 1818.659167][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1818.968666][   T43] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1820.278557][   T43] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1820.820494][   T37] audit: type=1326 audit(1768266102.919:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.822993][T14692] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1820.842753][T14692] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1820.844561][T14692] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1820.853300][T14692] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1820.855086][T14692] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1820.886685][   T43] bond0 (unregistering): Released all slaves
[ 1820.913504][   T37] audit: type=1326 audit(1768266102.919:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.913563][   T37] audit: type=1326 audit(1768266102.939:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.914582][   T37] audit: type=1326 audit(1768266103.009:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.914635][   T37] audit: type=1326 audit(1768266103.009:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.915416][   T37] audit: type=1326 audit(1768266103.009:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.915468][   T37] audit: type=1326 audit(1768266103.009:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.915513][   T37] audit: type=1326 audit(1768266103.009:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.915558][   T37] audit: type=1326 audit(1768266103.009:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1820.915603][   T37] audit: type=1326 audit(1768266103.009:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15773 comm="syz.0.2631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e2a3f749 code=0x7ffc0000
[ 1821.726640][   T43] hsr_slave_0: left promiscuous mode
[ 1822.699293][   T43] hsr_slave_1: left promiscuous mode
[ 1822.701368][   T43] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1822.792126][   T43] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1823.025976][T14692] Bluetooth: hci1: command tx timeout
[ 1823.856906][T15813] genirq: Flags mismatch irq 4. 00202000 (pcl812) vs. 00202080 (ttyS0)
[ 1824.072570][   T43] team0 (unregistering): Port device team_slave_1 removed
[ 1824.248594][   T43] team0 (unregistering): Port device team_slave_0 removed
[ 1824.921554][T15826] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1825.080917][T14692] Bluetooth: hci1: command tx timeout
[ 1827.237959][T14692] Bluetooth: hci1: command tx timeout
[ 1827.700704][T15835] ptrace attach of "./syz-executor exec"[15186] was attempted by "./syz-executor exec"[15835]
[ 1829.737752][T14692] Bluetooth: hci1: command tx timeout
[ 1829.805207][T15785] chnl_net:caif_netlink_parms(): no params data found
[ 1830.807188][T15862] genirq: Flags mismatch irq 4. 00202000 (pcl812) vs. 00202080 (ttyS0)
[ 1833.731097][T15785] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1833.735650][T15785] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1833.735906][T15785] bridge_slave_0: entered allmulticast mode
[ 1833.810548][T15785] bridge_slave_0: entered promiscuous mode
[ 1834.916970][T15785] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1834.917099][T15785] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1834.917434][T15785] bridge_slave_1: entered allmulticast mode
[ 1835.304307][T15835] syz.0.2649 (15835) used greatest stack depth: 18544 bytes left
[ 1835.309223][T15785] bridge_slave_1: entered promiscuous mode
[ 1836.204877][T15785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1836.233824][T15785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1837.179380][T15785] team0: Port device team_slave_0 added
[ 1837.181860][T15785] team0: Port device team_slave_1 added
[ 1837.571183][T15785] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1837.571196][T15785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1837.571212][T15785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1837.626614][T15785] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1837.626635][T15785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1837.626673][T15785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1838.386219][T15785] hsr_slave_0: entered promiscuous mode
[ 1838.399985][T15785] hsr_slave_1: entered promiscuous mode
[ 1838.405677][T15785] debugfs: 'hsr0' already exists in 'hsr'
[ 1838.405707][T15785] Cannot create hsr debugfs directory
[ 1844.150437][ T6049] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[ 1844.310529][ T6049] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1844.310560][ T6049] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1844.310580][ T6049] usb 9-1: Product: syz
[ 1844.310593][ T6049] usb 9-1: Manufacturer: syz
[ 1844.310606][ T6049] usb 9-1: SerialNumber: syz
[ 1844.390103][ T6049] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1845.214184][T14692] Bluetooth: hci0: command 0x0406 tx timeout
[ 1845.530036][T15785] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1845.546288][T14502] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1846.924041][T15785] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1847.020925][ T5997] usb 9-1: USB disconnect, device number 11
[ 1847.049561][T15785] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1847.106624][T14502] usb 9-1: ath9k_htc: Unable to allocate URBs
[ 1847.109617][ T5997] usb 9-1: ath9k_htc: USB layer deinitialized
[ 1847.155989][T15785] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1847.663842][T15785] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1847.756312][T15785] 8021q: adding VLAN 0 to HW filter on device team0
[ 1847.819094][ T1466] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1847.819262][ T1466] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1847.902843][ T1466] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1847.903045][ T1466] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1850.902862][T15785] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1853.013141][T15785] veth0_vlan: entered promiscuous mode
[ 1853.058484][T15785] veth1_vlan: entered promiscuous mode
[ 1853.305695][T15785] veth0_macvtap: entered promiscuous mode
[ 1853.346208][T15785] veth1_macvtap: entered promiscuous mode
[ 1853.444130][T15785] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1853.580647][T16038] No control pipe specified
[ 1854.319100][T15785] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1854.597500][   T43] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1854.597556][   T43] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1854.644410][   T43] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1854.668750][   T43] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1856.781520][T13916] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1856.781545][T13916] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1856.977825][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1856.977848][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1858.280251][T16072] No control pipe specified
[ 1859.113766][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1859.523817][T14692] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1859.546196][T14692] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1859.575507][T14692] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1859.602679][T14692] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1859.603618][T14692] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1861.718724][ T9333] Bluetooth: hci4: command tx timeout
[ 1862.119301][  T148] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1862.816591][T16110] program syz.1.2726 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1863.204085][  T148] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1863.797967][ T9333] Bluetooth: hci4: command tx timeout
[ 1864.933748][  T148] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1865.968827][ T9333] Bluetooth: hci4: command tx timeout
[ 1866.056326][  T148] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1866.718780][  T148] bridge_slave_1: left allmulticast mode
[ 1866.718805][  T148] bridge_slave_1: left promiscuous mode
[ 1866.718990][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1866.760252][T16142] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2736'.
[ 1866.870591][  T148] bridge_slave_0: left allmulticast mode
[ 1866.870615][  T148] bridge_slave_0: left promiscuous mode
[ 1866.870801][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1868.070591][ T9333] Bluetooth: hci4: command tx timeout
[ 1873.669347][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1873.749691][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1873.770448][  T148] bond0 (unregistering): Released all slaves
[ 1873.902001][T16077] chnl_net:caif_netlink_parms(): no params data found
[ 1876.343579][T16077] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1876.343807][T16077] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1876.344072][T16077] bridge_slave_0: entered allmulticast mode
[ 1876.346287][T16077] bridge_slave_0: entered promiscuous mode
[ 1876.425423][T16077] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1876.425642][T16077] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1876.425898][T16077] bridge_slave_1: entered allmulticast mode
[ 1876.494235][T16077] bridge_slave_1: entered promiscuous mode
[ 1876.821365][  T148] hsr_slave_0: left promiscuous mode
[ 1877.020238][  T148] hsr_slave_1: left promiscuous mode
[ 1877.020974][  T148] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1877.020993][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1877.075645][  T148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1877.075667][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1877.898402][  T148] veth1_macvtap: left promiscuous mode
[ 1877.898894][  T148] veth0_macvtap: left promiscuous mode
[ 1877.903682][  T148] veth1_vlan: left promiscuous mode
[ 1877.903808][  T148] veth0_vlan: left promiscuous mode
[ 1878.249239][T16235] ALSA: mixer_oss: invalid OSS volume ''
[ 1878.846962][T16242] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2768'.
[ 1886.740213][  T148] team0 (unregistering): Port device team_slave_1 removed
[ 1887.213557][  T148] team0 (unregistering): Port device team_slave_0 removed
[ 1894.689841][T14692] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1894.761891][T14692] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1894.764380][T14692] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1894.767146][T14692] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1894.768858][T14692] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1896.190523][T16077] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1896.195171][T16077] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1896.850695][ T9333] Bluetooth: hci5: command tx timeout
[ 1898.976061][ T9333] Bluetooth: hci5: command tx timeout
[ 1899.170657][T16077] team0: Port device team_slave_0 added
[ 1899.242650][T16077] team0: Port device team_slave_1 added
[ 1899.643438][T16077] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1899.643458][T16077] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1899.643484][T16077] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1899.722005][T16077] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1899.722020][T16077] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1899.722035][T16077] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1899.787919][T14676] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[ 1900.032305][T14676] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1900.032324][T14676] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1900.032358][T14676] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[ 1900.032371][T14676] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1900.035429][T14676] usb 5-1: config 0 descriptor??
[ 1900.105422][T14676] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[ 1900.105480][T14676] dvb-usb: bulk message failed: -22 (3/0)
[ 1900.383915][T14676] dvb-usb: will use the device's hardware PID filter (table count: 16).
[ 1900.605611][T14676] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[ 1900.684092][T14676] usb 5-1: media controller created
[ 1900.733597][T14676] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1900.763722][T14676] dvb-usb: bulk message failed: -22 (6/0)
[ 1900.763779][T14676] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[ 1900.782796][T14676] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input48
[ 1900.799383][T14676] dvb-usb: schedule remote query interval to 150 msecs.
[ 1900.799407][T14676] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[ 1901.002544][ T9333] Bluetooth: hci5: command tx timeout
[ 1901.129396][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1901.129421][T14676] dvb-usb: error while querying for an remote control event.
[ 1901.297882][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1901.297921][T14676] dvb-usb: error while querying for an remote control event.
[ 1901.588431][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1901.588466][T14676] dvb-usb: error while querying for an remote control event.
[ 1902.446507][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1902.446544][T14676] dvb-usb: error while querying for an remote control event.
[ 1902.597892][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1902.597915][T14676] dvb-usb: error while querying for an remote control event.
[ 1902.757741][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1902.757783][T14676] dvb-usb: error while querying for an remote control event.
[ 1902.927873][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1902.927909][T14676] dvb-usb: error while querying for an remote control event.
[ 1903.157746][ T9333] Bluetooth: hci5: command tx timeout
[ 1903.245817][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1903.245853][T14676] dvb-usb: error while querying for an remote control event.
[ 1903.431652][T14676] dvb-usb: bulk message failed: -22 (1/0)
[ 1903.431869][T14676] dvb-usb: error while querying for an remote control event.
[ 1903.587764][  T830] dvb-usb: bulk message failed: -22 (1/0)
[ 1903.587815][  T830] dvb-usb: error while querying for an remote control event.
[ 1903.716282][T12592] usb 5-1: USB disconnect, device number 5
[ 1903.781627][  T148] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1903.856429][T12592] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[ 1903.894000][T16077] hsr_slave_0: entered promiscuous mode
[ 1903.898021][T16077] hsr_slave_1: entered promiscuous mode
[ 1903.904490][T16077] debugfs: 'hsr0' already exists in 'hsr'
[ 1903.904516][T16077] Cannot create hsr debugfs directory
[ 1904.231429][  T148] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1907.976614][  T148] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1908.197122][T16426] binder: 16425:16426 ioctl c018620b 0 returned -14
[ 1910.166361][T16441] overlay: Unknown parameter ':'
[ 1910.167231][  T148] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1910.261936][T16334] chnl_net:caif_netlink_parms(): no params data found
[ 1912.576504][T16465] binder: 16462:16465 ioctl c018620b 0 returned -14
[ 1913.389589][T16334] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1913.393473][T16334] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1913.393638][T16334] bridge_slave_0: entered allmulticast mode
[ 1913.421081][T16334] bridge_slave_0: entered promiscuous mode
[ 1913.528779][T16334] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1913.528930][T16334] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1913.529202][T16334] bridge_slave_1: entered allmulticast mode
[ 1913.559148][T16334] bridge_slave_1: entered promiscuous mode
[ 1913.621411][T16475] overlay: Unknown parameter ':'
[ 1915.867674][T16334] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1915.902823][T16334] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1918.431098][T14692] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1918.520261][T14692] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1918.545587][T14692] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1918.565728][T14692] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1918.581901][T14692] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1918.869537][  T148] bridge_slave_1: left allmulticast mode
[ 1918.869572][  T148] bridge_slave_1: left promiscuous mode
[ 1918.869860][  T148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1918.958028][  T148] bridge_slave_0: left allmulticast mode
[ 1918.958060][  T148] bridge_slave_0: left promiscuous mode
[ 1918.958350][  T148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1919.104651][T16499] binder: 16498:16499 ioctl c018620b 0 returned -14
[ 1919.885949][ T1321] ieee802154 phy1 wpan1: encryption failed: -22
[ 1920.142774][T16506] overlay: Unknown parameter ':'
[ 1920.783430][T16511] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1920.839115][T14692] Bluetooth: hci3: command tx timeout
[ 1922.918148][T14692] Bluetooth: hci3: command tx timeout
[ 1924.998470][T14692] Bluetooth: hci3: command tx timeout
[ 1927.577935][T14692] Bluetooth: hci3: command tx timeout
[ 1928.118529][  T148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1928.206278][  T148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1928.240305][  T148] bond0 (unregistering): Released all slaves
[ 1928.464019][T16334] team0: Port device team_slave_0 added
[ 1928.832216][T16334] team0: Port device team_slave_1 added
[ 1931.470563][T16334] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1931.470582][T16334] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1931.470612][T16334] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1931.590822][T16571] binder: 16570:16571 ioctl c018620b 0 returned -14
[ 1932.970961][T16334] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1932.970981][T16334] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1932.971011][T16334] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1933.238091][ T5802] usb 2-1: new full-speed USB device number 9 using dummy_hcd
[ 1933.438618][  T148] hsr_slave_0: left promiscuous mode
[ 1933.559078][ T5802] usb 2-1: not running at top speed; connect to a high speed hub
[ 1933.587060][ T5802] usb 2-1: config 1 interface 0 altsetting 7 endpoint 0x3 has invalid maxpacket 479, setting to 64
[ 1933.587130][ T5802] usb 2-1: config 1 interface 0 altsetting 7 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1933.587194][ T5802] usb 2-1: config 1 interface 0 has no altsetting 0
[ 1933.690112][ T5802] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1933.690234][ T5802] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1933.690291][ T5802] usb 2-1: Product: syz
[ 1933.690417][ T5802] usb 2-1: Manufacturer: syz
[ 1933.690434][ T5802] usb 2-1: SerialNumber: syz
[ 1933.855904][T16584] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1933.948725][  T148] hsr_slave_1: left promiscuous mode
[ 1934.057998][  T148] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1934.058021][  T148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1934.117454][  T148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1934.117485][  T148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1934.158712][ T5802] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -71
[ 1934.186093][ T5802] usb 2-1: USB disconnect, device number 9
[ 1934.271758][  T148] veth1_macvtap: left promiscuous mode
[ 1934.271830][  T148] veth0_macvtap: left promiscuous mode
[ 1934.272030][  T148] veth1_vlan: left promiscuous mode
[ 1934.272140][  T148] veth0_vlan: left promiscuous mode
[ 1934.353414][T16600] binder: 16599:16600 ioctl c018620b 0 returned -14
[ 1935.546895][T14502] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[ 1937.551064][T14502] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1937.551133][T14502] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1937.551159][T14502] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1937.556963][T14502] usb 5-1: config 0 descriptor??
[ 1937.623163][T14502] pwc: Askey VC010 type 2 USB webcam detected.
[ 1938.116989][T14502] pwc: recv_control_msg error -32 req 02 val 2b00
[ 1938.873041][T14502] pwc: recv_control_msg error -32 req 02 val 2700
[ 1938.967354][T14502] pwc: recv_control_msg error -32 req 02 val 2c00
[ 1938.984996][T14502] pwc: recv_control_msg error -32 req 04 val 1000
[ 1938.986224][T14502] pwc: recv_control_msg error -32 req 04 val 1300
[ 1938.987141][T14502] pwc: recv_control_msg error -32 req 04 val 1400
[ 1939.009107][T14502] pwc: recv_control_msg error -32 req 02 val 2000
[ 1939.211928][T14502] pwc: recv_control_msg error -71 req 04 val 1500
[ 1939.212496][T14502] pwc: recv_control_msg error -71 req 02 val 2500
[ 1939.213199][T14502] pwc: recv_control_msg error -71 req 02 val 2400
[ 1939.213726][T14502] pwc: recv_control_msg error -71 req 02 val 2600
[ 1939.214249][T14502] pwc: recv_control_msg error -71 req 02 val 2900
[ 1939.214847][T14502] pwc: recv_control_msg error -71 req 02 val 2800
[ 1939.259704][T14502] pwc: recv_control_msg error -71 req 04 val 1100
[ 1939.260260][T14502] pwc: recv_control_msg error -71 req 04 val 1200
[ 1939.264535][T14502] pwc: Registered as video103.
[ 1939.288918][T14502] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input49
[ 1939.296007][T14502] usb 5-1: USB disconnect, device number 6
[ 1943.357725][T14676] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[ 1943.644212][T14676] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1943.649825][T14676] usb 5-1: New USB device found, idVendor=077d, idProduct=627a, bcdDevice= 0.10
[ 1943.649857][T14676] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1943.649877][T14676] usb 5-1: Product: syz
[ 1943.649890][T14676] usb 5-1: Manufacturer: syz
[ 1943.649902][T14676] usb 5-1: SerialNumber: syz
[ 1943.657789][T14676] usb 5-1: config 0 descriptor??
[ 1943.935533][T14502] usb 5-1: USB disconnect, device number 7
[ 1944.330440][ T5997] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[ 1944.537708][ T5997] usb 1-1: Using ep0 maxpacket: 8
[ 1944.540228][ T5997] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[ 1944.540256][ T5997] usb 1-1: config 179 has no interface number 0
[ 1944.540308][ T5997] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1944.540336][ T5997] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1944.540365][ T5997] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1944.540401][ T5997] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1944.540428][ T5997] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1944.540474][ T5997] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1944.540498][ T5997] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1944.549844][T16670] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1945.938664][    C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1945.938670][T14502] usb 1-1: USB disconnect, device number 21
[ 1945.938813][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1945.943208][    C1] ==================================================================
[ 1945.943225][    C1] BUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0x40/0x60
[ 1945.943421][    C1] Read of size 1 at addr ffff88805d57b070 by task ktimers/1/29
[ 1945.943437][    C1] 
[ 1945.943453][    C1] CPU: 1 UID: 0 PID: 29 Comm: ktimers/1 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1945.943482][    C1] Tainted: [L]=SOFTLOCKUP
[ 1945.943490][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1945.943503][    C1] Call Trace:
[ 1945.943512][    C1]  <TASK>
[ 1945.943522][    C1]  dump_stack_lvl+0xe8/0x150
[ 1945.943608][    C1]  print_report+0xca/0x240
[ 1945.943646][    C1]  ? _raw_spin_lock_irqsave+0x40/0x60
[ 1945.943665][    C1]  kasan_report+0x118/0x150
[ 1945.943733][    C1]  ? irqentry_exit+0x5e8/0x670
[ 1945.943779][    C1]  ? _raw_spin_lock_irqsave+0x40/0x60
[ 1945.943804][    C1]  ? rt_spin_lock+0x14a/0x3e0
[ 1945.943849][    C1]  __kasan_check_byte+0x2a/0x40
[ 1945.943879][    C1]  lock_acquire+0x84/0x340
[ 1945.943943][    C1]  _raw_spin_lock_irqsave+0x40/0x60
[ 1945.943963][    C1]  ? rt_spin_lock+0x14a/0x3e0
[ 1945.943989][    C1]  rt_spin_lock+0x14a/0x3e0
[ 1945.944018][    C1]  ? __pfx_rt_spin_lock+0x10/0x10
[ 1945.944046][    C1]  ? rt_spin_unlock+0x161/0x200
[ 1945.944075][    C1]  __wake_up_common_lock+0x2f/0x1e0
[ 1945.944104][    C1]  __usb_hcd_giveback_urb+0x41a/0x5e0
[ 1945.944222][    C1]  dummy_timer+0x8a0/0x46f0
[ 1945.944285][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[ 1945.944313][    C1]  ? try_to_take_rt_mutex+0x840/0xb00
[ 1945.944346][    C1]  ? do_raw_spin_lock+0x121/0x290
[ 1945.944374][    C1]  ? __pfx_dummy_timer+0x10/0x10
[ 1945.944393][    C1]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1945.944415][    C1]  ? __pfx_dummy_timer+0x10/0x10
[ 1945.944431][    C1]  __hrtimer_run_queues+0x542/0xd00
[ 1945.944481][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1945.944499][    C1]  ? read_tsc+0x9/0x20
[ 1945.944537][    C1]  hrtimer_run_softirq+0x1a3/0x2e0
[ 1945.944562][    C1]  handle_softirqs+0x1df/0x650
[ 1945.944611][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[ 1945.944644][    C1]  run_ktimerd+0x69/0x100
[ 1945.944669][    C1]  smpboot_thread_fn+0x542/0xa60
[ 1945.944695][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[ 1945.944724][    C1]  kthread+0x711/0x8a0
[ 1945.944754][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[ 1945.944780][    C1]  ? __pfx_kthread+0x10/0x10
[ 1945.944804][    C1]  ? rt_spin_unlock+0x150/0x200
[ 1945.944828][    C1]  ? rt_spin_unlock+0x161/0x200
[ 1945.944851][    C1]  ? __pfx_kthread+0x10/0x10
[ 1945.944879][    C1]  ret_from_fork+0x510/0xa50
[ 1945.944901][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 1945.944922][    C1]  ? __switch_to+0xc9e/0x1480
[ 1945.944954][    C1]  ? __pfx_kthread+0x10/0x10
[ 1945.944982][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1945.945019][    C1]  </TASK>
[ 1945.945027][    C1] 
[ 1945.945032][    C1] Allocated by task 5997:
[ 1945.945043][    C1]  kasan_save_track+0x3e/0x80
[ 1945.945068][    C1]  __kasan_kmalloc+0x93/0xb0
[ 1945.945094][    C1]  __kmalloc_cache_noprof+0x1fb/0x6d0
[ 1945.945136][    C1]  xpad_probe+0x428/0x1fd0
[ 1945.945218][    C1]  usb_probe_interface+0x668/0xc90
[ 1945.945244][    C1]  really_probe+0x26d/0xad0
[ 1945.945347][    C1]  __driver_probe_device+0x18c/0x320
[ 1945.945368][    C1]  driver_probe_device+0x4f/0x240
[ 1945.945391][    C1]  __device_attach_driver+0x279/0x430
[ 1945.945414][    C1]  bus_for_each_drv+0x254/0x2e0
[ 1945.945461][    C1]  __device_attach+0x2bb/0x430
[ 1945.945481][    C1]  device_initial_probe+0xa1/0xd0
[ 1945.945502][    C1]  bus_probe_device+0x12d/0x220
[ 1945.945529][    C1]  device_add+0x7b6/0xb80
[ 1945.945548][    C1]  usb_set_configuration+0x1a87/0x2110
[ 1945.945573][    C1]  usb_generic_driver_probe+0x8d/0x150
[ 1945.945642][    C1]  usb_probe_device+0x1c4/0x3c0
[ 1945.945668][    C1]  really_probe+0x26d/0xad0
[ 1945.945690][    C1]  __driver_probe_device+0x18c/0x320
[ 1945.945710][    C1]  driver_probe_device+0x4f/0x240
[ 1945.945731][    C1]  __device_attach_driver+0x279/0x430
[ 1945.945752][    C1]  bus_for_each_drv+0x254/0x2e0
[ 1945.945776][    C1]  __device_attach+0x2bb/0x430
[ 1945.945797][    C1]  device_initial_probe+0xa1/0xd0
[ 1945.945818][    C1]  bus_probe_device+0x12d/0x220
[ 1945.945845][    C1]  device_add+0x7b6/0xb80
[ 1945.945864][    C1]  usb_new_device+0xa29/0x1710
[ 1945.945884][    C1]  hub_event+0x29de/0x4f30
[ 1945.945907][    C1]  process_scheduled_works+0xad1/0x1770
[ 1945.945928][    C1]  worker_thread+0x8a0/0xda0
[ 1945.945948][    C1]  kthread+0x711/0x8a0
[ 1945.945973][    C1]  ret_from_fork+0x510/0xa50
[ 1945.945991][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1945.946018][    C1] 
[ 1945.946024][    C1] Freed by task 14502:
[ 1945.946033][    C1]  kasan_save_track+0x3e/0x80
[ 1945.946059][    C1]  kasan_save_free_info+0x46/0x50
[ 1945.946080][    C1]  __kasan_slab_free+0x5c/0x80
[ 1945.946106][    C1]  kfree+0x1bd/0x900
[ 1945.946129][    C1]  xpad_disconnect+0x350/0x480
[ 1945.946155][    C1]  usb_unbind_interface+0x26e/0x910
[ 1945.946177][    C1]  device_release_driver_internal+0x4d9/0x800
[ 1945.946200][    C1]  bus_remove_device+0x355/0x450
[ 1945.946225][    C1]  device_del+0x515/0x8e0
[ 1945.946243][    C1]  usb_disable_device+0x3d4/0x8e0
[ 1945.946263][    C1]  usb_disconnect+0x315/0x970
[ 1945.946283][    C1]  hub_event+0x1cd9/0x4f30
[ 1945.946307][    C1]  process_scheduled_works+0xad1/0x1770
[ 1945.946326][    C1]  worker_thread+0x8a0/0xda0
[ 1945.946347][    C1]  kthread+0x711/0x8a0
[ 1945.946369][    C1]  ret_from_fork+0x510/0xa50
[ 1945.946388][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1945.946415][    C1] 
[ 1945.946420][    C1] The buggy address belongs to the object at ffff88805d57b000
[ 1945.946420][    C1]  which belongs to the cache kmalloc-1k of size 1024
[ 1945.946439][    C1] The buggy address is located 112 bytes inside of
[ 1945.946439][    C1]  freed 1024-byte region [ffff88805d57b000, ffff88805d57b400)
[ 1945.946461][    C1] 
[ 1945.946466][    C1] The buggy address belongs to the physical page:
[ 1945.946477][    C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5d578
[ 1945.946498][    C1] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1945.946516][    C1] anon flags: 0x80000000000040(head|node=0|zone=1)
[ 1945.946535][    C1] page_type: f5(slab)
[ 1945.946554][    C1] raw: 0080000000000040 ffff88813ff26dc0 0000000000000000 dead000000000001
[ 1945.946572][    C1] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 1945.946591][    C1] head: 0080000000000040 ffff88813ff26dc0 0000000000000000 dead000000000001
[ 1945.946617][    C1] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 1945.946635][    C1] head: 0080000000000003 ffffea0001755e01 00000000ffffffff 00000000ffffffff
[ 1945.946668][    C1] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000008
[ 1945.946678][    C1] page dumped because: kasan: bad access detected
[ 1945.946688][    C1] page_owner tracks the page as allocated
[ 1945.946696][    C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 9457, tgid 9457 (kworker/u8:32), ts 1448163540086, free_ts 1448089063891
[ 1945.946732][    C1]  post_alloc_hook+0x234/0x290
[ 1945.946759][    C1]  get_page_from_freelist+0x28c0/0x2960
[ 1945.946779][    C1]  __alloc_frozen_pages_noprof+0x181/0x370
[ 1945.946798][    C1]  alloc_pages_mpol+0xd1/0x380
[ 1945.946825][    C1]  allocate_slab+0x86/0x3b0
[ 1945.946847][    C1]  ___slab_alloc+0xb10/0x13e0
[ 1945.946867][    C1]  __slab_alloc+0xc6/0x1f0
[ 1945.946885][    C1]  __kmalloc_noprof+0x15f/0x7e0
[ 1945.946923][    C1]  ieee802_11_parse_elems_full+0x152/0x2ab0
[ 1945.947002][    C1]  ieee80211_inform_bss+0x147/0x1130
[ 1945.947055][    C1]  cfg80211_inform_single_bss_data+0xd39/0x1ab0
[ 1945.947114][    C1]  cfg80211_inform_bss_data+0x203/0x3b40
[ 1945.947136][    C1]  cfg80211_inform_bss_frame_data+0x3c7/0x710
[ 1945.947159][    C1]  ieee80211_bss_info_update+0x749/0x9e0
[ 1945.947181][    C1]  ieee80211_ibss_rx_queued_mgmt+0xa5d/0x2af0
[ 1945.947228][    C1]  ieee80211_iface_work+0x85f/0x12d0
[ 1945.947271][    C1] page last free pid 13829 tgid 13829 stack trace:
[ 1945.947306][    C1]  __free_frozen_pages+0xfe1/0x1170
[ 1945.947334][    C1]  __put_partials+0x149/0x170
[ 1945.947353][    C1]  __slab_free+0x2af/0x330
[ 1945.947375][    C1]  qlist_free_all+0x97/0x100
[ 1945.947401][    C1]  kasan_quarantine_reduce+0x148/0x160
[ 1945.947427][    C1]  __kasan_slab_alloc+0x22/0x80
[ 1945.947454][    C1]  __kmalloc_cache_noprof+0x18d/0x6d0
[ 1945.947482][    C1]  dropmon_net_event+0x221/0x2b0
[ 1945.947579][    C1]  notifier_call_chain+0x19d/0x3a0
[ 1945.947608][    C1]  register_netdevice+0x15d2/0x1a80
[ 1945.947694][    C1]  veth_newlink+0x5d4/0xa60
[ 1945.947762][    C1]  rtnl_newlink_create+0x310/0xb00
[ 1945.947828][    C1]  rtnl_newlink+0x16e7/0x1c90
[ 1945.947859][    C1]  rtnetlink_rcv_msg+0x7cf/0xb70
[ 1945.947881][    C1]  netlink_rcv_skb+0x208/0x470
[ 1945.947934][    C1]  netlink_unicast+0x846/0xa10
[ 1945.947953][    C1] 
[ 1945.947957][    C1] Memory state around the buggy address:
[ 1945.947968][    C1]  ffff88805d57af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1945.947982][    C1]  ffff88805d57af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1945.947995][    C1] >ffff88805d57b000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1945.948006][    C1]                                                              ^
[ 1945.948018][    C1]  ffff88805d57b080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1945.948032][    C1]  ffff88805d57b100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1945.948041][    C1] ==================================================================
[ 1945.948052][    C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1945.948071][    C1] CPU: 1 UID: 0 PID: 29 Comm: ktimers/1 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[ 1945.948101][    C1] Tainted: [L]=SOFTLOCKUP
[ 1945.948109][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1945.948123][    C1] Call Trace:
[ 1945.948132][    C1]  <TASK>
[ 1945.948141][    C1]  vpanic+0x1e0/0x670
[ 1945.948173][    C1]  panic+0xb9/0xc0
[ 1945.948201][    C1]  ? __pfx_panic+0x10/0x10
[ 1945.948231][    C1]  ? _raw_spin_lock_irqsave+0x40/0x60
[ 1945.948256][    C1]  ? _raw_spin_lock_irqsave+0x40/0x60
[ 1945.948279][    C1]  ? _raw_spin_lock_irqsave+0x40/0x60
[ 1945.948301][    C1]  check_panic_on_warn+0x89/0xb0
[ 1945.948331][    C1]  ? _raw_spin_lock_irqsave+0x40/0x60
[ 1945.948351][    C1]  end_report+0x6f/0x140
[ 1945.948380][    C1]  kasan_report+0x129/0x150
[ 1945.948409][    C1]  ? irqentry_exit+0x5e8/0x670
[ 1945.948432][    C1]  ? _raw_spin_lock_irqsave+0x40/0x60
[ 1945.948458][    C1]  ? rt_spin_lock+0x14a/0x3e0
[ 1945.948486][    C1]  __kasan_check_byte+0x2a/0x40
[ 1945.948515][    C1]  lock_acquire+0x84/0x340
[ 1945.948550][    C1]  _raw_spin_lock_irqsave+0x40/0x60
[ 1945.948571][    C1]  ? rt_spin_lock+0x14a/0x3e0
[ 1945.948611][    C1]  rt_spin_lock+0x14a/0x3e0
[ 1945.948641][    C1]  ? __pfx_rt_spin_lock+0x10/0x10
[ 1945.948671][    C1]  ? rt_spin_unlock+0x161/0x200
[ 1945.948700][    C1]  __wake_up_common_lock+0x2f/0x1e0
[ 1945.948730][    C1]  __usb_hcd_giveback_urb+0x41a/0x5e0
[ 1945.948762][    C1]  dummy_timer+0x8a0/0x46f0
[ 1945.948783][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[ 1945.948816][    C1]  ? try_to_take_rt_mutex+0x840/0xb00
[ 1945.948847][    C1]  ? do_raw_spin_lock+0x121/0x290
[ 1945.948880][    C1]  ? __pfx_dummy_timer+0x10/0x10
[ 1945.948902][    C1]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1945.948926][    C1]  ? __pfx_dummy_timer+0x10/0x10
[ 1945.948947][    C1]  __hrtimer_run_queues+0x542/0xd00
[ 1945.948978][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1945.949000][    C1]  ? read_tsc+0x9/0x20
[ 1945.949022][    C1]  hrtimer_run_softirq+0x1a3/0x2e0
[ 1945.949048][    C1]  handle_softirqs+0x1df/0x650
[ 1945.949076][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[ 1945.949101][    C1]  run_ktimerd+0x69/0x100
[ 1945.949128][    C1]  smpboot_thread_fn+0x542/0xa60
[ 1945.949154][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[ 1945.949183][    C1]  kthread+0x711/0x8a0
[ 1945.949212][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[ 1945.949238][    C1]  ? __pfx_kthread+0x10/0x10
[ 1945.949264][    C1]  ? rt_spin_unlock+0x150/0x200
[ 1945.949293][    C1]  ? rt_spin_unlock+0x161/0x200
[ 1945.949320][    C1]  ? __pfx_kthread+0x10/0x10
[ 1945.949348][    C1]  ret_from_fork+0x510/0xa50
[ 1945.949369][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 1945.949390][    C1]  ? __switch_to+0xc9e/0x1480
[ 1945.949423][    C1]  ? __pfx_kthread+0x10/0x10
[ 1945.949452][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1945.949492][    C1]  </TASK>
[ 1945.950034][    C1] Kernel Offset: disabled