last executing test programs:

5m24.878205138s ago: executing program 1 (id=2487):
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/mm/ksm/run\x00', 0x2, 0x0)
sendfile(r0, r0, 0x0, 0x15)

5m24.614438415s ago: executing program 1 (id=2492):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000003640))

5m24.389677347s ago: executing program 1 (id=2495):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000001c0)={0x64, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x76ea}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x1}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x64}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)

5m24.105291147s ago: executing program 1 (id=2499):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f0000003640)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=[@sndinfo={0x20, 0x84, 0x2, {0xc84e, 0x20b, 0x6a3c, 0x2}}, @prinfo={0x18, 0x84, 0x5, {0x20, 0x5}}], 0x38, 0x4c004}], 0x1, 0x10)

5m23.740613153s ago: executing program 1 (id=2503):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})

5m23.582643409s ago: executing program 1 (id=2506):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f00000001c0)=[{0x20, 0x60, 0x53, 0xfffff000}, {0x6, 0x4, 0x8, 0x4}]}, 0x10)

5m8.358546456s ago: executing program 32 (id=2506):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f00000001c0)=[{0x20, 0x60, 0x53, 0xfffff000}, {0x6, 0x4, 0x8, 0x4}]}, 0x10)

3m16.866303807s ago: executing program 0 (id=3815):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x4, 0xffffffff, 0xfffffff8, 0xfffffffc}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000780)=@ipv4_newroute={0x2c, 0x1a, 0x1, 0x6, 0x25dfdbff, {0x2, 0x20, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, [@RTA_SRC={0x8, 0x2, @broadcast}, @RTA_DST={0x8, 0x1, @broadcast}]}, 0x2c}}, 0x48010)

3m16.663917329s ago: executing program 0 (id=3820):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
unshare(0x22020400)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000200)={r0, 0x0, 0x0, 0x4}, 0x20)

3m16.2757005s ago: executing program 0 (id=3824):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @log={{0x8}, @void}}, {0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x2}, @NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0x15}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0)

3m16.036527215s ago: executing program 0 (id=3826):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000005d80), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000005f40)={0x0, 0x0, &(0x7f0000005f00)={&(0x7f0000005dc0)={0x1c, r1, 0xb33, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8)

3m15.92767249s ago: executing program 0 (id=3827):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x10)
mkdir(&(0x7f00000000c0)='./control\x00', 0x0)

3m15.670508985s ago: executing program 0 (id=3828):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f00000003c0)=0x6, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @broadcast}}], 0x1c)

3m0.58087131s ago: executing program 33 (id=3828):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f00000003c0)=0x6, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @broadcast}}], 0x1c)

26.13654401s ago: executing program 4 (id=5665):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f0000000dc0)=[{{0x0, 0x0, 0x0}, 0x8101}, {{0x0, 0x0, 0x0}, 0x10000}, {{0x0, 0x0, 0x0}, 0xfffffffd}, {{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001100)=""/210, 0xd2}, {&(0x7f0000000340)=""/257, 0x101}, {&(0x7f0000001b40)=""/4109, 0x100d}, {&(0x7f0000000a40)=""/231, 0xe7}], 0x4}, 0x4}], 0x4, 0x22, 0x0)

25.952347905s ago: executing program 4 (id=5669):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

25.527929318s ago: executing program 2 (id=5674):
sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000380)={0x64, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @val={0xc}}}, [@NL80211_ATTR_CQM={0x44, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_RATE={0x8}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x135}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x10, 0x1, [0x0, 0x0, 0x0]}, @NL80211_ATTR_CQM_TXE_INTVL={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0x7220]}, @NL80211_ATTR_CQM_TXE_INTVL={0x8}]}]}, 0x64}}, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="140100001f000504000000000000000005"], 0x114}], 0x1}, 0x0)

25.274904842s ago: executing program 2 (id=5677):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x70bd2d, 0x0, {{@in=@multicast1=0xe0000002, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x80, 0x0, 0x32}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffffb}, {0x0, 0x5, 0x0, 0x400000}}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x10}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, 0x0, 0x6e6bb5}}, 0xb8}}, 0x0)

24.922369136s ago: executing program 2 (id=5680):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000a40)={0xf4, r1, 0xe701ac47a3d23ecd, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0xce, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x02\x00\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93U6\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4\x8fK=E0\xe8R\x83'}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @empty}]}, 0xf4}}, 0x0)

24.913398391s ago: executing program 4 (id=5682):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
close(0x3)

24.730416548s ago: executing program 4 (id=5684):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={0x1c, r1, 0x705, 0x8400000, 0x4, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x4}]}, 0x1c}}, 0x0)

24.702694079s ago: executing program 2 (id=5685):
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, &(0x7f00000003c0), 0x40000000, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)

24.634339355s ago: executing program 3 (id=5687):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x1c, 0x18, &(0x7f0000000080)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000300)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x3}, 0x94)

24.47536767s ago: executing program 4 (id=5688):
r0 = memfd_create(&(0x7f0000001000)='\xfd\x0fm3#/\x00n\xaa\xaa\xe4\x01U\x8b\xc2\f\x03\x19\x9c\x8e\xcb\x90\x00\x00\xaegQ\x0e\x94\\y\x0fU2@\'\x8a\x80\x00$\x12\xfc\xe4.)\x9b\xf2@\xf0\xe0\xdb\x1f\xe6\xb4gc\x13\xda\xf9\xcd7el\xb7\xe6\b\x00\x00\x00\x00\xef\xff\x00vob/~\xc2\x00\b\x00\x00\x00\x00\x00\x00 \xff\xf1\xdem\x9c;%\xb5\"\xe4\xf1x2\x8a\x19p\x04\\\xaa-\x93\xd1\xc4 )\xbfK\xf7E\xf3\x05\xa0\xd0\xe6%\x97\x15\xf0\xab\x86\x90k\x10\xcer\x14\xe0a\xaf\xab\xfe\xd9V\x19\xa5d\x16\x8e]:3\xff\t\xe6\xf7\xb3\xbf\xa3\b[?\xb5\x14t\xd3\x8e\xc0\xe8\xefd\x88\xddz\xa25)\x17\xef\xfb4\xff\xdb\t\x8e\xeb\x1d\\\xf9\x14\xc7\v\xa8\x89\xdb A\xbaBAj\xfe\x18\xc3-+\xd6\xb0K\xee\x1b+\xc7lA\x84\xa6\xfe\x8bU<&\x1a\xe7m\x86\xb7\xa1A\xf9\x02S;C\x99\a.$K\x833\x82\x7f\x1b\'nj\x06\b\xb7\xe8] \x87A[y\xdc\x14\f\xcet\x00\x1f\x0f\xef\xca\xcfz\x7f\an0\xebB\xb8}&\xdd\xc9\xa7\x1dp\t\x9a\xceb \x81\xaaq{H\x88\xdf\xf8\x80\\\x1c8\xfe\xc4\xe3\xb0\x90\xcb\x8b1r\x94\x9f\x00\xce\xc8\xc3\x84\xa0\xc9\b\x00uKs\xba\xbbC6\xd6\x13\xb5\xe086EzD\x18\xd5\x16\x88E\xc6\xf0A9\xf1u\xb3\x85\x02\x12\\Sp\xf4\x9a\xe8\x96^\xe6\xa8K\x12\b}\xff\xcb{\xc6\xf6\xb4\x8b\xb6\xa8Y\xf2\x91\xeeR\v#\xb5)\xb0\x99\x9b-p\xe3\x17\x04\xb0\xdc\x0fk\x11\xe1\x9a\a\x16\xb7\x9b\x88\xfa\x1e`\x84$\xfc\xd7\xf5^X\xd8[}\x032\xd0\x84\xdby\x94Vp\xa5\xcd(\xab\xb6\x95sR\xab\xfc\x8c\'\x9c\x16Q\xad\xbc\xb04%\xb7\xe5\x141<\xd9\xad\x9f\x12@!\xfaI\x88\xab\xef\x86\xe9\a>\xdd7\xb7\x8e\x9c0-o\xc9\xec_|\x02\xc8Ru\x95\xa8#U\xd6J\x87\xf6X\xb6{\x11$\x00\xc8\x14\xcb\xd1nK\xd8\xb9\x0e\x9bA\xed\xbcs\x1fS\r\x12O\x83\x15\xcb(\xdb\xb1S\x1f%\x04\x9a\xa0l\xa3}\xe7r<Y\xa1\xdeP\b\xf1kM\x02\x00\x00\x00\x8aeh;F[\xe2\x1c<L\xaa\x87A\xcdN#\xfb\xb0\xf2\x1e\x0e#J\xd0hB<\xc0\x82A0)p\xe7&J\x82\x83\x83\xd14\x01\xcf\x1b\xa9\x1d\x1ef\x0f\x86(1\xd6l\xd2\x8f\xb0\xad\t\x15\xdb|\x87\xf1\xc4\xb8\xb2\x9a\xd2A\x80\xbf\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xd6\x80\x00\x00\x00\x00\x00\x00\x00\x88&}\xd1\x00\x00\x00\xe6\xaf\t\x9f\x96\rN\xc9\x90\xbe\xed\x1ad\x14\xe7\x84\t\'\x8b\x00\xdd\xc9\x0f\x14v\xb6\x04\xf2U\xb4\xf6\xbe\xddT\xcb\x00\x00\x00\x00\x00\x00\xe9\x00\x00\x00\x00\x00\x00o:}\xa7jmH\xedn\x11\xfe\xe2\x0fT\x00\x94\xbc\xc6\x7f\x93eE1xp\xa3\xdc\xd7K9J<\xeb\xd2!\xf4\x19\xbd#\xb8\x83\x858\n\xf8\x12Z\x1a\x12\xfa\xcc\x04\r\xf3\xf4;\v\x15b^\xea\xa2\x04 \xe8\x99\xb3\x97\x9e\r\xb0\x05\xbb(f\xd0\x85\xc5\x15\xae#\x12Q\xacF\xfb\xc8\xbd\xcc#\v\x00\x00\x00\x00\x00\x00\x8f\x9b\x00\x03\xc8}\x11\xbc\x01\x8fi\xf5\x7f\xaf\x11\xfb\x16\x95\xdfc\xc9\x8a/&\x81w\x06]ao\\\x88\xf7\xce\xbd\xb0\xa6J~\x8d\xf1\xe9\x1c\xcfo\xb3\xdc\x04Y\x8e\r\xf5\xa0\xeft\x06G0\xe3D\xd6\xa3L\xedN\x0e\xdc@7\xd8^\xae\xea\x92\xbe\x9c\xf9~c\xc1|\xca\x8d\x93R\xe5\xceU\xa5\x0f\xbf\xd8l\x96`\x05\x00e\x8aR{\x17Y\x15m>\xe26 \x19k&.\x7f\x1d~\xdaI\xd4\x99\a+\xdf]\xbc\xa6\xc3\x0f\x99W\x9c-t\v\xc7J\xfd\x91\x853\xd1j;\x19W\x96V\x8az+\xf9\x82#\xfaC\xa3YN:\xe8\xda\xbc\xb2h\x8f\xe0\xc6d\x96\xccy\xb3\xc2\x98\x1c\xca\xde\"\xaeW\x89\x83\xc2sB\xe7\b\x9b9~}\xc2\xb3\x1d\xcc?\xd1\x89\xef\xca\x00\x00\x00\x00\x00\x00\x00\x00\x00J[\xc4\x04\xc1\xa6\x10\xc2\x9d\x11\t|\xc0\t\xd9(\x80\xe6s\xaa\x88\x8a\xd6\xa2\x01\x10W]Z\x8d\xf7\xd1P\xf9d\x01|\xa3\x03hSq\x95\x8f\xe1J\xd3#/fcCz\xff\x80\xe2M\xa3-r\xf6\x1a\xd74\xdc\xe1\xe4\xc3\x9dU t}\x02\xb7>j0S\xf4\x98\x05\xb9\x15}\xfa\"\xdc\xc2r\xf9\a\xadnD\xb6\x06\xd3\'\x10\x9f|\x17\xd6\x89O\f\x98@\x85\xa5m\x9d\\&\x17o\x11Z=l\xfb\x93\x8exZ\x00'/1136, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x8010002})
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x2000003, 0x97052, r0, 0x0)

24.386256113s ago: executing program 3 (id=5690):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/sockstat\x00')
ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f00000000c0)={r1, 0x0, 0xfffffffffffff000, 0x2000})

24.250808767s ago: executing program 2 (id=5691):
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x50007a2)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x450101, 0x0)

24.130169409s ago: executing program 3 (id=5692):
io_setup(0x9, &(0x7f0000000240)=<r0=>0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x8040, 0x0)
io_submit(r0, 0x1, &(0x7f0000004500)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x1, r1, 0x0}])

23.89439426s ago: executing program 2 (id=5695):
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x0, @local}}, 0x1e)
connect$pptp(r0, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)

22.708544666s ago: executing program 5 (id=5699):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fdinfo/3\x00')
pread64(r0, &(0x7f0000000300)=""/246, 0xf6, 0x0)

22.65847898s ago: executing program 4 (id=5700):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newqdisc={0x14c, 0x24, 0x3fe3aa0262d8c783, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x11c, 0x2, [@TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_PARMS={0x14, 0x1, {0xffffffff, 0x401, 0xffff, 0x2, 0xc, 0xe, 0x4}}]}}]}, 0x14c}}, 0x0)

22.554857317s ago: executing program 5 (id=5701):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
getdents64(r0, &(0x7f0000000180)=""/193, 0xc1)

22.430849082s ago: executing program 5 (id=5702):
setreuid(0x0, 0xee00)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000001c0)={@loopback, 0x800, 0x2, 0x0, 0xf, 0x40, 0x2}, 0x20)

22.343352663s ago: executing program 5 (id=5703):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x5813}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="240000001e008d2a"], 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x4c044)

22.241678194s ago: executing program 5 (id=5704):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x5, &(0x7f0000000600)=@framed={{}, [@map_val={0x18, 0xa, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x2}]}, &(0x7f0000000300)='GPL\x00', 0x8, 0xff7, &(0x7f0000001e00)=""/4087}, 0x94)

21.987480333s ago: executing program 5 (id=5705):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a09040000000000000000020000000900020073797a32000000000900010073797a300000000070000000080a01010000000000000000020000000900010073797a30000000000900020073797a32000000002c00058008000140000000000800024000000000080001400000000608000140000000f9080001400000005c080009"], 0xc4}}, 0x0)

19.339612351s ago: executing program 6 (id=5708):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x66)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x2002, 0x4)

19.160924712s ago: executing program 6 (id=5709):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r0, &(0x7f00000004c0)={{0x6, @rose, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)
syz_genetlink_get_family_id$team(&(0x7f0000000040), r0)

18.992121816s ago: executing program 6 (id=5710):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4)
sendmsg$netlink(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)={0x1c, 0x22, 0x601, 0x0, 0x0, "", [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @generic="b7"]}, 0x1c}], 0x1}, 0x0)

18.843901663s ago: executing program 6 (id=5711):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001300)={0xc, {"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", 0x1000}}, 0x435)

18.627158404s ago: executing program 6 (id=5712):
r0 = syz_usb_connect$sierra_net(0x0, 0x3f, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x1199, 0x68a3, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x80, 0xfa, {{0x9, 0x4, 0x7, 0x0, 0x3, 0xff, 0x0, 0x0, 0x0, "", {{0x9, 0x5, 0x43978451d8f6fedb, 0x2, 0x40, 0x2, 0x1b, 0xfe}, {0x9, 0x5, 0x7, 0x2, 0x200, 0xc, 0x77, 0x3}, {0x9, 0x5, 0x81, 0x3, 0x20, 0x0, 0xfd, 0x32}}}}}}]}}, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, &(0x7f0000000100)={0x14, &(0x7f0000000000)={0x20, 0x21, 0x8, {0x8, 0x11, "e4ff14eca81f"}}, 0x0}, 0x0)

16.804263458s ago: executing program 3 (id=5713):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000300)={'das16m1\x00', [0x4f27, 0xa9, 0x10002, 0x10000, 0x5, 0xcc7, 0x8, 0x26, 0xa, 0x101, 0x2, 0x1, 0xbf, 0x18000, 0x6, 0x101, 0x80000, 0x1a449, 0xffffffff, 0x1000007f, 0x89, 0xcaa3, 0x2, 0x73, 0x6, 0xfffffff9, 0xfffffffa, 0x8, 0x4088, 0x80, 0x4]})

16.686391974s ago: executing program 3 (id=5714):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000800), r0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000840)={0x3c, r1, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x11, 0x2, @ipv4={'\x00', '\xff\xff', @multicast1}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private0}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000801}, 0x448c0)

16.640831552s ago: executing program 3 (id=5715):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x18, 0x13, r0, 0x0)
syz_clone(0x80021000, 0x0, 0x0, 0x0, 0x0, 0x0)

15.483946246s ago: executing program 6 (id=5716):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x3, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x30, 0x0, 0x0, 0xfffff00e}]}, 0x10)

8.484344133s ago: executing program 34 (id=5695):
r0 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x0, @local}}, 0x1e)
connect$pptp(r0, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)

6.663469724s ago: executing program 35 (id=5700):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newqdisc={0x14c, 0x24, 0x3fe3aa0262d8c783, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x11c, 0x2, [@TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_PARMS={0x14, 0x1, {0xffffffff, 0x401, 0xffff, 0x2, 0xc, 0xe, 0x4}}]}}]}, 0x14c}}, 0x0)

6.524679072s ago: executing program 36 (id=5705):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a09040000000000000000020000000900020073797a32000000000900010073797a300000000070000000080a01010000000000000000020000000900010073797a30000000000900020073797a32000000002c00058008000140000000000800024000000000080001400000000608000140000000f9080001400000005c080009"], 0xc4}}, 0x0)

1.453858358s ago: executing program 37 (id=5715):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x18, 0x13, r0, 0x0)
syz_clone(0x80021000, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 38 (id=5716):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x3, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x30, 0x0, 0x0, 0xfffff00e}]}, 0x10)

kernel console output (not intermixed with test programs):

367969][T14691] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  452.368021][T14691] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  452.368087][T14691] comedi comedi3: 8255: I/O port conflict (0x400,4)
[  452.368193][T14691] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  452.510537][T14696] tmpfs: Bad value for 'mpol'
[  452.816528][T14704] Bluetooth: MGMT ver 1.23
[  454.144543][ T6038] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  454.294403][ T6038] usb 4-1: Using ep0 maxpacket: 8
[  454.301418][ T6038] usb 4-1: unable to get BOS descriptor or descriptor too short
[  454.316896][ T6038] usb 4-1: config 4 has an invalid interface number: 30 but max is 0
[  454.316924][ T6038] usb 4-1: config 4 has no interface number 0
[  454.316961][ T6038] usb 4-1: config 4 interface 30 has no altsetting 0
[  454.350277][ T6038] usb 4-1: string descriptor 0 read error: -22
[  454.350455][ T6038] usb 4-1: New USB device found, idVendor=9022, idProduct=d484, bcdDevice=ff.88
[  454.350479][ T6038] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  454.437371][ T6038] dvb-usb: found a 'TeVii S482 (tuner 2)' in warm state.
[  454.437426][ T6038] dw2102: su3000_power_ctrl: 1, initialized 0
[  454.438038][ T6038] dvb-usb: bulk message failed: -22 (2/0)
[  454.517050][ T6038] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  454.543097][ T6038] dvbdev: DVB: registering new adapter (TeVii S482 (tuner 2))
[  454.543169][ T6038] usb 4-1: media controller created
[  454.543852][ T6038] dvb-usb: bulk message failed: -22 (6/0)
[  454.543871][ T6038] dw2102: i2c transfer failed.
[  454.543892][ T6038] dvb-usb: bulk message failed: -22 (6/0)
[  454.543907][ T6038] dw2102: i2c transfer failed.
[  454.543925][ T6038] dvb-usb: bulk message failed: -22 (6/0)
[  454.543939][ T6038] dw2102: i2c transfer failed.
[  454.543956][ T6038] dvb-usb: bulk message failed: -22 (6/0)
[  454.543970][ T6038] dw2102: i2c transfer failed.
[  454.543987][ T6038] dvb-usb: bulk message failed: -22 (6/0)
[  454.544001][ T6038] dw2102: i2c transfer failed.
[  454.544019][ T6038] dvb-usb: bulk message failed: -22 (6/0)
[  454.544032][ T6038] dw2102: i2c transfer failed.
[  454.544043][ T6038] dvb-usb: MAC address: 02:02:02:02:02:02
[  454.683835][T14734] dw2102: i2c wr: len=66 is too big!
[  454.683835][T14734] 
[  454.713420][ T6038] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  454.793941][ T6038] dvb-usb: bulk message failed: -22 (3/0)
[  454.793966][ T6038] dw2102: command 0x0e transfer failed.
[  454.793977][ T6038] dvb-usb: bulk message failed: -22 (3/0)
[  454.793991][ T6038] dw2102: command 0x0e transfer failed.
[  454.883142][   T59] Bluetooth: hci2: Opcode 0x0401 failed: -110
[  454.886539][   T59] Bluetooth: hci2: command 0x0406 tx timeout
[  455.110782][ T6038] dvb-usb: bulk message failed: -22 (3/0)
[  455.110808][ T6038] dw2102: command 0x0e transfer failed.
[  455.110816][ T6038] dvb-usb: bulk message failed: -22 (3/0)
[  455.110831][ T6038] dw2102: command 0x0e transfer failed.
[  455.110841][ T6038] dvb-usb: bulk message failed: -22 (1/0)
[  455.110855][ T6038] dw2102: command 0x51 transfer failed.
[  455.110865][ T6038] dvb-usb: bulk message failed: -22 (5/0)
[  455.110879][ T6038] dw2102: i2c probe for address 0x68 failed.
[  455.110891][ T6038] dvb-usb: bulk message failed: -22 (5/0)
[  455.110905][ T6038] dw2102: i2c probe for address 0x69 failed.
[  455.110917][ T6038] dvb-usb: bulk message failed: -22 (5/0)
[  455.110931][ T6038] dw2102: i2c probe for address 0x6a failed.
[  455.110942][ T6038] dw2102: probing for demodulator failed. Is the external power switched on?
[  455.110953][ T6038] dvb-usb: no frontend was attached by 'TeVii S482 (tuner 2)'
[  455.352971][ T6038] rc_core: IR keymap rc-tt-1500 not found
[  455.352996][ T6038] Registered IR keymap rc-empty
[  455.355937][ T6038] rc rc0: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0
[  455.359306][ T6038] input: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0/input20
[  455.380661][T14754] delete_channel: no stack
[  455.401181][ T6038] dvb-usb: schedule remote query interval to 250 msecs.
[  455.401207][ T6038] dw2102: su3000_power_ctrl: 0, initialized 1
[  455.401221][ T6038] dvb-usb: TeVii S482 (tuner 2) successfully initialized and connected.
[  455.430636][ T6038] usb 4-1: USB disconnect, device number 26
[  455.669773][   T59] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  455.688645][   T59] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  455.702716][   T59] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  455.713059][   T59] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  455.719208][   T59] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  456.063330][ T6038] dvb-usb: TeVii S482 (tuner 2) successfully deinitialized and disconnected.
[  456.707808][T14782] syz.3.3960 (14782) used greatest stack depth: 16696 bytes left
[  456.932550][T14793] mmap: syz.4.3965 (14793) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  457.298539][T14759] wg1 speed is unknown, defaulting to 1000
[  457.489381][ T5919] IPVS: starting estimator thread 0...
[  457.522560][ T5904] usb 5-1: new full-speed USB device number 19 using dummy_hcd
[  457.573093][T14814] IPVS: using max 6 ests per chain, 14400 per kthread
[  457.669356][  T139] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  457.690986][ T5904] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  457.691022][ T5904] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 2031, setting to 64
[  457.691076][ T5904] usb 5-1: New USB device found, idVendor=17ef, idProduct=60fe, bcdDevice= 0.00
[  457.691098][ T5904] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  457.765183][ T5904] usb 5-1: config 0 descriptor??
[  457.767112][T14806] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  457.842489][ T5850] Bluetooth: hci1: command tx timeout
[  458.237015][ T5904] lenovo 0003:17EF:60FE.0006: unknown main item tag 0x0
[  458.282221][T14828] Bluetooth: MGMT ver 1.23
[  458.292504][ T5904] lenovo 0003:17EF:60FE.0006: hidraw0: USB HID v0.00 Device [HID 17ef:60fe] on usb-dummy_hcd.4-1/input0
[  458.458422][ T1231] usb 5-1: USB disconnect, device number 19
[  458.535922][  T139] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.589949][T14831] fido_id[14831]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  459.151221][  T139] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.758386][  T139] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.762566][ T5919] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  459.812588][ T1231] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  459.934588][ T5850] Bluetooth: hci1: command tx timeout
[  459.940966][ T5919] usb 4-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c
[  459.940996][ T5919] usb 4-1: New USB device strings: Mfr=24, Product=2, SerialNumber=3
[  459.941016][ T5919] usb 4-1: Product: syz
[  459.941030][ T5919] usb 4-1: Manufacturer: syz
[  459.941044][ T5919] usb 4-1: SerialNumber: syz
[  459.964103][ T1231] usb 5-1: Using ep0 maxpacket: 32
[  459.974322][ T1231] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  459.974352][ T1231] usb 5-1: config 0 has no interface number 0
[  459.975987][ T5919] usb 4-1: config 0 descriptor??
[  460.013161][ T1231] usb 5-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  460.013194][ T1231] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  460.013217][ T1231] usb 5-1: Product: syz
[  460.013231][ T1231] usb 5-1: Manufacturer: syz
[  460.013245][ T1231] usb 5-1: SerialNumber: syz
[  460.057634][ T1231] usb 5-1: config 0 descriptor??
[  460.085944][ T1231] usb 5-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  460.085972][ T1231] usb 5-1: selecting invalid altsetting 1
[  460.085986][ T1231] usb 5-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  460.122883][ T1231] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  460.123352][ T1231] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  460.123411][ T1231] usb 5-1: media controller created
[  460.204161][ T1231] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  460.612376][ T5919] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  460.612662][ T5919] asix 4-1:0.0: probe with driver asix failed with error -71
[  460.678439][ T5919] usb 4-1: USB disconnect, device number 27
[  461.284651][ T1231] usb 5-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[  461.284737][ T1231] zl10353_read_register: readreg error (reg=127, ret==-110)
[  461.627769][ T1231] usb 5-1: USB disconnect, device number 20
[  461.733956][T14759] chnl_net:caif_netlink_parms(): no params data found
[  462.002438][ T5850] Bluetooth: hci1: command tx timeout
[  462.425478][  T139] bridge_slave_1: left allmulticast mode
[  462.425516][  T139] bridge_slave_1: left promiscuous mode
[  462.425804][  T139] bridge0: port 2(bridge_slave_1) entered disabled state
[  462.539821][   T45] libceph: connect (1)[c::]:6789 error -101
[  462.541569][   T45] libceph: mon0 (1)[c::]:6789 connect error
[  462.560563][   T45] libceph: connect (1)[c::]:6789 error -101
[  462.560815][   T45] libceph: mon0 (1)[c::]:6789 connect error
[  462.567964][  T139] bridge_slave_0: left allmulticast mode
[  462.567998][  T139] bridge_slave_0: left promiscuous mode
[  462.568287][  T139] bridge0: port 1(bridge_slave_0) entered disabled state
[  462.814265][   T45] libceph: connect (1)[c::]:6789 error -101
[  462.814514][   T45] libceph: mon0 (1)[c::]:6789 connect error
[  463.106122][T14903] ceph: No mds server is up or the cluster is laggy
[  463.325795][   T45] libceph: connect (1)[c::]:6789 error -101
[  463.326036][   T45] libceph: mon0 (1)[c::]:6789 connect error
[  463.842913][ T1231] usb 5-1: new full-speed USB device number 21 using dummy_hcd
[  463.999043][ T1231] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  463.999081][ T1231] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  463.999122][ T1231] usb 5-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  463.999146][ T1231] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  464.008237][ T1231] usb 5-1: config 0 descriptor??
[  464.083053][ T5850] Bluetooth: hci1: command tx timeout
[  464.548993][ T1231] isku 0003:1E7D:319C.0007: unknown main item tag 0x0
[  464.549031][ T1231] isku 0003:1E7D:319C.0007: unknown main item tag 0x0
[  464.594211][ T1231] isku 0003:1E7D:319C.0007: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.4-1/input0
[  464.751520][ T1231] isku 0003:1E7D:319C.0007: couldn't init struct isku_device
[  464.751582][ T1231] isku 0003:1E7D:319C.0007: couldn't install keyboard
[  464.799156][ T1231] isku 0003:1E7D:319C.0007: probe with driver isku failed with error -71
[  464.829286][ T1231] usb 5-1: USB disconnect, device number 21
[  465.463899][  T139] dvmrp0 (unregistering): left allmulticast mode
[  465.573545][  T139] team0: Port device geneve1 removed
[  465.821574][T14956] program syz.4.4034 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  467.071899][  T139] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[  467.166224][  T139] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[  467.223373][  T139] .` (unregistering): (slave batadv0): Releasing backup interface
[  467.270611][  T139] .` (unregistering): Released all slaves
[  467.339695][  T139] bond1 (unregistering): Released all slaves
[  468.122785][  T139] bond0 (unregistering): Released all slaves
[  468.200210][T14937] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  469.064237][T14990] tmpfs: Cannot change global quota limit on remount
[  469.236583][T14759] bridge0: port 1(bridge_slave_0) entered blocking state
[  469.236732][T14759] bridge0: port 1(bridge_slave_0) entered disabled state
[  469.236980][T14759] bridge_slave_0: entered allmulticast mode
[  469.252650][T14759] bridge_slave_0: entered promiscuous mode
[  469.262250][T14759] bridge0: port 2(bridge_slave_1) entered blocking state
[  469.264021][T14759] bridge0: port 2(bridge_slave_1) entered disabled state
[  469.264282][T14759] bridge_slave_1: entered allmulticast mode
[  469.274938][T14759] bridge_slave_1: entered promiscuous mode
[  469.522622][ T5919] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  469.676239][ T5919] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  469.676276][ T5919] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  469.676318][ T5919] usb 5-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  469.676341][ T5919] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  469.725203][ T5919] usb 5-1: config 0 descriptor??
[  469.983174][T14759] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  470.246020][ T5919] samsung 0003:0419:0600.0008: item fetching failed at offset 5/7
[  470.246970][ T5919] samsung 0003:0419:0600.0008: parse failed
[  470.247046][ T5919] samsung 0003:0419:0600.0008: probe with driver samsung failed with error -22
[  470.466468][ T5919] usb 5-1: USB disconnect, device number 22
[  470.644719][T14759] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  470.762583][    T9] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  470.912512][    T9] usb 6-1: Using ep0 maxpacket: 32
[  470.916261][T10120] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  470.916887][    T9] usb 6-1: config 0 has an invalid interface number: 51 but max is 0
[  470.916910][    T9] usb 6-1: config 0 has no interface number 0
[  470.922105][    T9] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  470.922135][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  470.922156][    T9] usb 6-1: Product: syz
[  470.922171][    T9] usb 6-1: Manufacturer: syz
[  470.922185][    T9] usb 6-1: SerialNumber: syz
[  471.023063][    T9] usb 6-1: config 0 descriptor??
[  471.042115][    T9] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  471.072486][T10120] usb 3-1: Using ep0 maxpacket: 16
[  471.075284][T10120] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  471.075316][T10120] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  471.075357][T10120] usb 3-1: New USB device found, idVendor=0458, idProduct=5014, bcdDevice= 0.00
[  471.075380][T10120] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.089546][T10120] usb 3-1: config 0 descriptor??
[  471.547992][T10120] kye 0003:0458:5014.0009: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  471.549503][T10120] kye 0003:0458:5014.0009: item fetching failed at offset 5/7
[  471.550450][T10120] kye 0003:0458:5014.0009: parse failed
[  471.550526][T10120] kye 0003:0458:5014.0009: probe with driver kye failed with error -22
[  471.685416][    T9] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  471.733548][    T9] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  471.745352][ T5904] usb 3-1: USB disconnect, device number 31
[  471.762849][T14759] team0: Port device team_slave_0 added
[  471.767752][T15027] tipc: Invalid UDP bearer configuration
[  471.767817][T15027] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  471.833418][    C0] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71
[  471.863699][T14759] team0: Port device team_slave_1 added
[  471.972921][    T9] usb 6-1: USB disconnect, device number 11
[  472.061533][    T9] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  472.104372][    T9] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  472.105514][    T9] quatech2 6-1:0.51: device disconnected
[  472.363026][T15035] mkiss: ax0: crc mode is auto.
[  472.927001][T14759] batman_adv: batadv0: Adding interface: batadv_slave_0
[  472.927020][T14759] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  472.927050][T14759] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  472.934967][T14759] batman_adv: batadv0: Adding interface: batadv_slave_1
[  472.934989][T14759] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  472.935018][T14759] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  473.364770][  T139] hsr_slave_0: left promiscuous mode
[  473.404008][  T139] hsr_slave_1: left promiscuous mode
[  473.410864][  T139] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  473.410899][  T139] batman_adv: batadv0: Removing interface: batadv_slave_0
[  473.466728][  T139] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  473.466765][  T139] batman_adv: batadv0: Removing interface: batadv_slave_1
[  473.720479][  T139] veth1_macvtap: left promiscuous mode
[  473.720625][  T139] veth0_macvtap: left promiscuous mode
[  473.720966][  T139] veth1_vlan: left promiscuous mode
[  473.723238][  T139] veth0_vlan: left promiscuous mode
[  475.191191][    C1] vkms_vblank_simulate: vblank timer overrun
[  475.332500][ T5904] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  475.484274][ T5904] usb 5-1: Using ep0 maxpacket: 32
[  475.487021][ T5904] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  475.487046][ T5904] usb 5-1: config 0 has no interface number 0
[  475.487098][ T5904] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  475.487126][ T5904] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  475.487166][ T5904] usb 5-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  475.487190][ T5904] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.495894][ T5904] usb 5-1: config 0 descriptor??
[  476.135788][ T5904] uclogic 0003:28BD:0094.000A: failed retrieving string descriptor #100: -71
[  476.135862][ T5904] uclogic 0003:28BD:0094.000A: failed retrieving pen parameters: -71
[  476.135879][ T5904] uclogic 0003:28BD:0094.000A: pen probing failed: -71
[  476.135896][ T5904] uclogic 0003:28BD:0094.000A: failed probing parameters: -71
[  476.136019][ T5904] uclogic 0003:28BD:0094.000A: probe with driver uclogic failed with error -71
[  476.155457][ T5904] usb 5-1: USB disconnect, device number 23
[  476.224537][    C1] vkms_vblank_simulate: vblank timer overrun
[  476.768947][T15099] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  476.866641][   T37] audit: type=1326 audit(1756718112.587:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15100 comm="syz.4.4101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  476.876808][   T37] audit: type=1326 audit(1756718112.597:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15100 comm="syz.4.4101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  476.877110][   T37] audit: type=1326 audit(1756718112.607:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15100 comm="syz.4.4101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  476.877354][   T37] audit: type=1326 audit(1756718112.607:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15100 comm="syz.4.4101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  476.877617][   T37] audit: type=1326 audit(1756718112.607:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15100 comm="syz.4.4101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  476.878203][   T37] audit: type=1326 audit(1756718112.607:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15100 comm="syz.4.4101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  476.881899][   T37] audit: type=1326 audit(1756718112.607:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15100 comm="syz.4.4101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  476.881948][   T37] audit: type=1326 audit(1756718112.607:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15100 comm="syz.4.4101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  476.957673][    C1] vkms_vblank_simulate: vblank timer overrun
[  477.076242][    C1] vkms_vblank_simulate: vblank timer overrun
[  477.242470][    C1] vkms_vblank_simulate: vblank timer overrun
[  477.341523][    C1] vkms_vblank_simulate: vblank timer overrun
[  477.923673][  T139] team0 (unregistering): Port device team_slave_1 removed
[  478.174569][  T139] team0 (unregistering): Port device team_slave_0 removed
[  480.763219][T15061] net_ratelimit: 11 callbacks suppressed
[  480.763242][T15061] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[  480.826331][T15097] syz_tun: entered promiscuous mode
[  480.826565][T15097] vlan2: entered promiscuous mode
[  481.272519][ T6038] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  481.435493][ T6038] usb 6-1: Using ep0 maxpacket: 16
[  481.438118][ T6038] usb 6-1: config index 0 descriptor too short (expected 65, got 36)
[  481.438184][ T6038] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  481.438213][ T6038] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  481.438261][ T6038] usb 6-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  481.438284][ T6038] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.500256][ T6038] usb 6-1: config 0 descriptor??
[  481.522066][ T6038] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input22
[  481.542488][ T1231] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  481.701673][ T1231] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  481.701709][ T1231] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  481.701729][ T1231] usb 3-1: Product: syz
[  481.701744][ T1231] usb 3-1: Manufacturer: syz
[  481.701767][ T1231] usb 3-1: SerialNumber: syz
[  481.843593][ T1231] usb 3-1: config 0 descriptor??
[  481.870508][T14759] hsr_slave_0: entered promiscuous mode
[  481.872047][T14759] hsr_slave_1: entered promiscuous mode
[  481.899266][T14759] debugfs: 'hsr0' already exists in 'hsr'
[  481.899299][T14759] Cannot create hsr debugfs directory
[  481.991443][ T5919] usb 6-1: USB disconnect, device number 12
[  482.049720][ T5193] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -19
[  482.333082][ T1231] usb 3-1: USB disconnect, device number 32
[  482.378845][T15130] openvswitch: netlink: IPv4 frag type 255 is out of range max 2
[  482.607602][T15114] udevd[15114]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  483.292555][ T5919] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  483.455225][ T5919] usb 3-1: Using ep0 maxpacket: 16
[  483.457686][ T5919] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  483.457749][ T5919] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  483.457785][ T5919] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  483.457808][ T5919] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  483.457831][ T5919] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  483.459450][ T5919] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  483.459477][ T5919] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  483.459497][ T5919] usb 3-1: Manufacturer: syz
[  483.475888][ T5919] usb 3-1: config 0 descriptor??
[  483.632830][T15151] smc: net device bond0 applied user defined pnetid SYZ0
[  484.032449][ T5919] rc_core: IR keymap rc-hauppauge not found
[  484.032471][ T5919] Registered IR keymap rc-empty
[  484.033162][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.055628][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.075022][ T5919] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  484.079060][ T5919] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input23
[  484.112630][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.137072][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.156935][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.179182][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.197751][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.212827][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.232644][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.252707][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.283818][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.302868][ T5919] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  484.425548][ T5919] mceusb 3-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  484.425575][ T5919] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  484.476458][ T5919] usb 3-1: USB disconnect, device number 33
[  484.747457][T15174] bond0: entered promiscuous mode
[  484.747481][T15174] bond_slave_0: entered promiscuous mode
[  484.747779][T15174] bond_slave_1: entered promiscuous mode
[  484.748063][T15174] bond0: entered allmulticast mode
[  484.748077][T15174] bond_slave_0: entered allmulticast mode
[  484.748100][T15174] bond_slave_1: entered allmulticast mode
[  484.757377][T15174] 8021q: adding VLAN 0 to HW filter on device bond0
[  484.908386][T14759] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  484.951937][T14759] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  485.113656][T14759] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  485.159542][T15180] netlink: 76 bytes leftover after parsing attributes in process `syz.5.4129'.
[  485.241402][T14759] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  485.953514][T14759] 8021q: adding VLAN 0 to HW filter on device bond0
[  486.045919][T14759] 8021q: adding VLAN 0 to HW filter on device team0
[  486.140509][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[  486.140685][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[  486.201658][T15212] mkiss: ax0: crc mode is auto.
[  486.413224][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  486.413400][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  487.480079][   T37] audit: type=1326 audit(1756718123.207:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15247 comm="syz.2.4151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  487.481086][   T37] audit: type=1326 audit(1756718123.207:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15247 comm="syz.2.4151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  487.537912][   T37] audit: type=1326 audit(1756718123.267:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15247 comm="syz.2.4151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  487.537973][   T37] audit: type=1326 audit(1756718123.267:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15247 comm="syz.2.4151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  487.538022][   T37] audit: type=1326 audit(1756718123.267:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15247 comm="syz.2.4151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  487.538598][   T37] audit: type=1326 audit(1756718123.267:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15247 comm="syz.2.4151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  487.538648][   T37] audit: type=1326 audit(1756718123.267:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15247 comm="syz.2.4151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  487.538695][   T37] audit: type=1326 audit(1756718123.267:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15247 comm="syz.2.4151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  487.556981][   T37] audit: type=1326 audit(1756718123.287:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15250 comm="syz.3.4152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  487.557035][   T37] audit: type=1326 audit(1756718123.287:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15250 comm="syz.3.4152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  487.763392][T15254] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4153'.
[  488.057715][T14759] 8021q: adding VLAN 0 to HW filter on device batadv0
[  488.228310][T15266] sp0: Synchronizing with TNC
[  489.652531][    T9] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  489.805097][    T9] usb 5-1: Using ep0 maxpacket: 8
[  489.810793][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  489.810843][    T9] usb 5-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00
[  489.810870][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.826984][T15312] netlink: 'syz.5.4172': attribute type 1 has an invalid length.
[  489.827024][T15312] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  489.914609][T14759] veth0_vlan: entered promiscuous mode
[  489.953697][T14759] veth1_vlan: entered promiscuous mode
[  489.999041][    T9] usb 5-1: config 0 descriptor??
[  490.068527][T15318] ALSA: seq fatal error: cannot create timer (-22)
[  490.151550][T14759] veth0_macvtap: entered promiscuous mode
[  490.195785][T14759] veth1_macvtap: entered promiscuous mode
[  490.318686][T14759] batman_adv: batadv0: Interface activated: batadv_slave_0
[  490.397550][T14759] batman_adv: batadv0: Interface activated: batadv_slave_1
[  490.469591][  T139] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  490.470318][  T139] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  490.510646][  T139] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  490.519376][    T9] arvo 0003:1E7D:30D4.000B: unknown main item tag 0x0
[  490.519409][    T9] arvo 0003:1E7D:30D4.000B: unknown main item tag 0x0
[  490.519432][    T9] arvo 0003:1E7D:30D4.000B: unknown main item tag 0x0
[  490.519454][    T9] arvo 0003:1E7D:30D4.000B: unknown main item tag 0x0
[  490.519477][    T9] arvo 0003:1E7D:30D4.000B: unknown main item tag 0x0
[  490.582544][  T139] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  490.639899][    T9] arvo 0003:1E7D:30D4.000B: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.4-1/input0
[  490.791639][    T9] usb 5-1: USB disconnect, device number 24
[  491.049373][T15329] fido_id[15329]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  491.060760][T15332] CIFS mount error: No usable UNC path provided in device string!
[  491.060760][T15332] 
[  491.060783][T15332] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  491.396795][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.396818][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  491.687593][ T3519] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  491.687617][ T3519] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  492.302583][ T5919] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  492.412563][   T45] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  492.457028][ T5919] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  492.457085][ T5919] usb 4-1: New USB device found, idVendor=1038, idProduct=12c2, bcdDevice= 0.00
[  492.457110][ T5919] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.510858][ T5919] usb 4-1: config 0 descriptor??
[  492.582570][   T45] usb 6-1: Using ep0 maxpacket: 16
[  492.587263][   T45] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  492.587367][   T45] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  492.587408][   T45] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  492.587432][   T45] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.655818][   T45] usb 6-1: config 0 descriptor??
[  493.090171][ T5919] steelseries 0003:1038:12C2.000C: unknown main item tag 0x0
[  493.090787][ T5919] steelseries 0003:1038:12C2.000C: unknown main item tag 0x0
[  493.090817][ T5919] steelseries 0003:1038:12C2.000C: unknown main item tag 0x0
[  493.090842][ T5919] steelseries 0003:1038:12C2.000C: unknown main item tag 0x0
[  493.132509][ T5919] steelseries 0003:1038:12C2.000C: unknown main item tag 0x0
[  493.151619][   T45] konepure 0003:1E7D:2DB4.000D: item fetching failed at offset 0/4
[  493.160671][   T45] konepure 0003:1E7D:2DB4.000D: parse failed
[  493.160756][   T45] konepure 0003:1E7D:2DB4.000D: probe with driver konepure failed with error -22
[  493.260085][ T1231] usb 4-1: USB disconnect, device number 28
[  493.348183][ T5932] usb 6-1: USB disconnect, device number 13
[  493.555479][T15385] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4198'.
[  493.555506][T15385] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4198'.
[  493.555531][T15385] netlink: 'syz.4.4198': attribute type 14 has an invalid length.
[  493.555544][T15385] netlink: 'syz.4.4198': attribute type 13 has an invalid length.
[  494.532586][   T10] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  494.714909][   T10] usb 5-1: Using ep0 maxpacket: 32
[  494.717656][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  494.717687][   T10] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  494.717728][   T10] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  494.717751][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  494.724666][   T10] usb 5-1: config 0 descriptor??
[  495.199219][   T10] kone 0003:1E7D:2CED.000E: bogus close delimiter
[  495.199245][   T10] kone 0003:1E7D:2CED.000E: item 0 0 2 10 parsing failed
[  495.200140][   T10] kone 0003:1E7D:2CED.000E: parse failed
[  495.200218][   T10] kone 0003:1E7D:2CED.000E: probe with driver kone failed with error -22
[  495.394074][T10121] usb 5-1: USB disconnect, device number 25
[  496.792515][ T1231] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  496.797294][T15457] use of bytesused == 0 is deprecated and will be removed in the future,
[  496.797310][T15457] use the actual size instead.
[  497.075790][T15462] ALSA: mixer_oss: invalid OSS volume 'öœ"g„L–Ê'
[  497.160210][ T1231] usb 4-1: unable to get BOS descriptor or descriptor too short
[  497.161520][ T1231] usb 4-1: unable to read config index 0 descriptor/start: -71
[  497.161560][ T1231] usb 4-1: can't read configurations, error -71
[  498.505384][T15500] netlink: 52 bytes leftover after parsing attributes in process `syz.5.4245'.
[  498.892455][T15509] netlink: 'syz.2.4249': attribute type 2 has an invalid length.
[  499.170131][T15515] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4252'.
[  499.397701][T15521] team0: Device gtp0 is of different type
[  499.692029][T15530] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4260'.
[  500.093263][    T9] kernel write not supported for file /media1 (pid: 9 comm: kworker/0:0)
[  500.704163][T15563] netlink: 'syz.5.4275': attribute type 5 has an invalid length.
[  501.437477][T15585] macsec1: entered promiscuous mode
[  501.441048][T15585] macsec1: entered allmulticast mode
[  501.692590][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  501.692694][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  502.462650][    T9] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  502.612506][    T9] usb 6-1: Using ep0 maxpacket: 32
[  502.615624][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  502.615658][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  502.615708][    T9] usb 6-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00
[  502.615730][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  502.639992][    T9] usb 6-1: config 0 descriptor??
[  502.985051][ T5919] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  503.083754][    T9] hid (null): unknown global tag 0xe
[  503.107507][    T9] aquacomputer_d5next 0003:0C70:F0B6.000F: unknown global tag 0xe
[  503.107535][    T9] aquacomputer_d5next 0003:0C70:F0B6.000F: item 0 1 1 14 parsing failed
[  503.108533][    T9] aquacomputer_d5next 0003:0C70:F0B6.000F: probe with driver aquacomputer_d5next failed with error -22
[  503.161121][ T5919] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  503.161153][ T5919] usb 3-1: config 0 interface 0 has no altsetting 0
[  503.161190][ T5919] usb 3-1: New USB device found, idVendor=056a, idProduct=0333, bcdDevice= 0.00
[  503.161213][ T5919] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  503.226446][ T5919] usb 3-1: config 0 descriptor??
[  503.304182][T10121] usb 6-1: USB disconnect, device number 14
[  503.737467][ T5919] wacom 0003:056A:0333.0010: hidraw0: USB HID v0.00 Device [HID 056a:0333] on usb-dummy_hcd.2-1/input0
[  503.912285][T10121] usb 3-1: USB disconnect, device number 34
[  504.040691][   T37] kauditd_printk_skb: 11 callbacks suppressed
[  504.040712][   T37] audit: type=1326 audit(1756718139.767:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15639 comm="syz.4.4308" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3fa5d0ebe9 code=0x0
[  504.150690][T15638] fido_id[15638]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  505.460171][T15678] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4324'.
[  506.107704][T15698] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4331'.
[  506.534341][T15714] netlink: 'syz.2.4338': attribute type 2 has an invalid length.
[  506.540487][T15714] netlink: 'syz.2.4338': attribute type 2 has an invalid length.
[  507.423480][T15738] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4349'.
[  507.423672][T15738] openvswitch: netlink: nsh attribute has 5260 unknown bytes.
[  507.423717][T15738] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  507.932565][   T10] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  508.110838][   T10] usb 6-1: config 0 has an invalid interface number: 46 but max is 0
[  508.110883][   T10] usb 6-1: config 0 has no interface number 0
[  508.110919][   T10] usb 6-1: config 0 interface 46 has no altsetting 0
[  508.110964][   T10] usb 6-1: New USB device found, idVendor=0781, idProduct=0100, bcdDevice= 1.00
[  508.110987][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.126824][   T10] usb 6-1: config 0 descriptor??
[  508.147363][   T10] usb-storage 6-1:0.46: USB Mass Storage device detected
[  508.170305][   T10] usb-storage 6-1:0.46: Quirks match for vid 0781 pid 0100: 1
[  508.406606][   T10] usb 6-1: USB disconnect, device number 15
[  508.680887][T15763] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4356'.
[  508.695061][    T9] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  508.842505][    T9] usb 4-1: Using ep0 maxpacket: 16
[  508.845728][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  508.845763][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  508.845797][    T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  508.845843][    T9] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  508.845865][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  508.861926][    T9] usb 4-1: config 0 descriptor??
[  509.343367][    T9] hid_parser_main: 2 callbacks suppressed
[  509.343393][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343422][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343446][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343471][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343497][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343523][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343547][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343572][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343597][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.343622][    T9] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  509.364497][    T9] microsoft 0003:045E:07DA.0011: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  509.364530][    T9] microsoft 0003:045E:07DA.0011: no inputs found
[  509.364542][    T9] microsoft 0003:045E:07DA.0011: could not initialize ff, continuing anyway
[  509.489511][T15778] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4361'.
[  509.525459][ T1231] usb 4-1: USB disconnect, device number 31
[  509.894588][T15781] fido_id[15781]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  510.514853][T15798] netlink: 136 bytes leftover after parsing attributes in process `syz.5.4367'.
[  510.514882][T15798] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  511.742690][T15833] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4381'.
[  511.806358][T15837] netlink: 1 bytes leftover after parsing attributes in process `syz.5.4382'.
[  512.042503][ T5919] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  512.197582][ T5919] usb 3-1: Using ep0 maxpacket: 16
[  512.201726][ T5919] usb 3-1: unable to get BOS descriptor or descriptor too short
[  512.229377][ T5919] usb 3-1: config 9 has an invalid interface number: 48 but max is 0
[  512.229408][ T5919] usb 3-1: config 9 has no interface number 0
[  512.229444][ T5919] usb 3-1: config 9 interface 48 has no altsetting 0
[  512.256281][ T5919] usb 3-1: New USB device found, idVendor=0ac8, idProduct=c301, bcdDevice=f3.7b
[  512.256314][ T5919] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.256335][ T5919] usb 3-1: Product: syz
[  512.256350][ T5919] usb 3-1: Manufacturer: syz
[  512.256364][ T5919] usb 3-1: SerialNumber: syz
[  512.610926][ T5919] gspca_main: vc032x-2.14.0 probing 0ac8:c301
[  513.007020][ T5919] gspca_vc032x: reg_w err -71
[  513.007041][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007052][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007062][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007071][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007081][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007090][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007099][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007108][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007117][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007126][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007135][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007144][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007153][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007162][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007170][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007180][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007188][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007198][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007206][ T5919] gspca_vc032x: I2c Bus Busy Wait 00
[  513.007216][ T5919] gspca_vc032x: Unknown sensor...
[  513.007313][ T5919] vc032x 3-1:9.48: probe with driver vc032x failed with error -22
[  513.010912][ T5919] usb 3-1: USB disconnect, device number 35
[  514.771427][T15914] netlink: 'syz.4.4412': attribute type 3 has an invalid length.
[  516.658169][T15970] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096
[  517.842547][    T9] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  518.016273][    T9] usb 6-1: Using ep0 maxpacket: 32
[  518.019011][    T9] usb 6-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  518.019043][    T9] usb 6-1: config 0 interface 0 has no altsetting 0
[  518.019080][    T9] usb 6-1: New USB device found, idVendor=045e, idProduct=009d, bcdDevice= 0.00
[  518.019104][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  518.050095][    T9] usb 6-1: config 0 descriptor??
[  518.500206][    T9] hid_parser_main: 5 callbacks suppressed
[  518.500234][    T9] microsoft 0003:045E:009D.0012: unknown main item tag 0x0
[  518.500266][    T9] microsoft 0003:045E:009D.0012: unknown main item tag 0x0
[  518.500293][    T9] microsoft 0003:045E:009D.0012: unknown main item tag 0x0
[  518.500317][    T9] microsoft 0003:045E:009D.0012: unknown main item tag 0x0
[  518.500340][    T9] microsoft 0003:045E:009D.0012: unknown main item tag 0x0
[  518.543517][    T9] microsoft 0003:045E:009D.0012: hidraw0: USB HID v0.02 Device [HID 045e:009d] on usb-dummy_hcd.5-1/input0
[  518.543550][    T9] microsoft 0003:045E:009D.0012: no inputs found
[  518.543562][    T9] microsoft 0003:045E:009D.0012: could not initialize ff, continuing anyway
[  518.684068][ T5919] usb 6-1: USB disconnect, device number 16
[  518.914834][   T45] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  519.054311][T16034] fido_id[16034]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  519.073434][   T45] usb 4-1: config 0 interface 0 altsetting 13 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  519.073477][   T45] usb 4-1: config 0 interface 0 altsetting 13 endpoint 0x81 has invalid wMaxPacketSize 0
[  519.073500][   T45] usb 4-1: config 0 interface 0 altsetting 13 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  519.073528][   T45] usb 4-1: config 0 interface 0 has no altsetting 0
[  519.073566][   T45] usb 4-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  519.073600][   T45] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  519.165244][   T45] usb 4-1: config 0 descriptor??
[  519.196411][    T9] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  519.382577][    T9] usb 3-1: Using ep0 maxpacket: 16
[  519.387287][    T9] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[  519.387315][    T9] usb 3-1: config 0 has no interface number 0
[  519.387394][    T9] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  519.387422][    T9] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  519.389840][    T9] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  519.389877][    T9] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  519.389897][    T9] usb 3-1: Product: syz
[  519.389911][    T9] usb 3-1: SerialNumber: syz
[  519.426984][    T9] usb 3-1: config 0 descriptor??
[  519.466939][    T9] cm109 3-1:0.8: invalid payload size 0, expected 4
[  519.470762][    T9] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input29
[  519.640492][   T45] uclogic 0003:28BD:0042.0013: interface is invalid, ignoring
[  519.715824][    C0] cm109_urb_ctl_callback: 303 callbacks suppressed
[  519.715863][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.716302][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.716555][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.716806][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.717200][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.717533][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.717782][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.718033][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.718335][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.720932][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  519.720958][    C0] cm109 3-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  519.727906][    T9] usb 3-1: USB disconnect, device number 36
[  519.825214][   T45] usb 4-1: USB disconnect, device number 32
[  519.877888][    T9] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  520.584661][T16072] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4479'.
[  521.243964][T16093] IPv6: NLM_F_CREATE should be specified when creating new route
[  521.244301][T16093] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  521.244314][T16093] IPv6: NLM_F_CREATE should be set when creating new route
[  521.244384][T16093] IPv6: NLM_F_CREATE should be set when creating new route
[  521.244423][T16093] IPv6: NLM_F_CREATE should be set when creating new route
[  521.254397][T16093] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  521.254578][T16093] Zero length message leads to an empty skb
[  521.667825][T16103] netlink: 72 bytes leftover after parsing attributes in process `syz.3.4494'.
[  522.258012][T16122] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4502'.
[  522.584609][T16133] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  522.633407][T16129] vimc link validate: Scaler:src:16x16 (0x33424752, 0, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  522.953298][   T45] kernel write not supported for file /sg0 (pid: 45 comm: kworker/1:1)
[  522.960223][    T9] kernel write not supported for file /vcs (pid: 9 comm: kworker/0:0)
[  523.507383][T16159] 8021q: adding VLAN 0 to HW filter on device team0
[  523.783137][T16168] xt_time: invalid argument - start or stop time greater than 23:59:59
[  523.964708][T16176] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4527'.
[  524.474494][T16189] netlink: 'syz.3.4532': attribute type 29 has an invalid length.
[  525.599965][T16215] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave
[  525.599991][T16215] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1)
[  526.297772][T16231] tipc: Started in network mode
[  526.297808][T16231] tipc: Node identity 00000000000000000000ffffac1414bb, cluster identity 4711
[  526.297878][T16231] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  526.454948][   T45] kernel write not supported for file /sg0 (pid: 45 comm: kworker/1:1)
[  526.769538][T16244] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  527.289136][T16260] IPVS: Unknown mcast interface: pimreg1
[  527.571230][T16268] x_tables: ip_tables: limit.0 match: invalid size 40 (kernel) != (user) 48
[  527.599929][T16270] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  527.814848][    T9] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  527.852559][ T5932] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  527.962526][    T9] usb 5-1: Using ep0 maxpacket: 16
[  527.965321][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  527.965356][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  527.965380][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  527.965427][    T9] usb 5-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00
[  527.965452][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.996437][    T9] usb 5-1: config 0 descriptor??
[  528.007835][ T5932] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  528.007865][ T5932] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  528.024667][ T5932] usb 4-1: config 0 descriptor??
[  528.092021][ T5932] cp210x 4-1:0.0: cp210x converter detected
[  528.654263][    T9] hid-multitouch 0003:0457:07DA.0014: hidraw0: USB HID v0.00 Device [HID 0457:07da] on usb-dummy_hcd.4-1/input0
[  528.664322][ T5932] cp210x 4-1:0.0: failed to get vendor val 0x3711 size 2: -71
[  528.664352][ T5932] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  528.685522][ T5919] usb 5-1: USB disconnect, device number 26
[  528.766685][ T5932] usb 4-1: cp210x converter now attached to ttyUSB0
[  528.871779][ T5932] usb 4-1: USB disconnect, device number 33
[  528.906512][ T5932] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  528.911612][ T5932] cp210x 4-1:0.0: device disconnected
[  528.993756][T16293] fido_id[16293]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  530.669129][T16328] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4597'.
[  530.669161][T16328] netlink: 'syz.5.4597': attribute type 6 has an invalid length.
[  530.669175][T16328] netlink: 'syz.5.4597': attribute type 5 has an invalid length.
[  530.669188][T16328] netlink: 'syz.5.4597': attribute type 4 has an invalid length.
[  530.769964][T16331] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  532.321365][T16369] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  532.340274][T16363] vlan2: entered allmulticast mode
[  532.340297][T16363] bond0: entered allmulticast mode
[  532.340312][T16363] bond_slave_0: entered allmulticast mode
[  532.340335][T16363] bond_slave_1: entered allmulticast mode
[  532.392253][ T5208] udevd[5208]: worker [15123] terminated by signal 33 (Unknown signal 33)
[  533.043306][ T5904] usb 3-1: new low-speed USB device number 37 using dummy_hcd
[  533.197109][ T5904] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  533.197146][ T5904] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  533.197187][ T5904] usb 3-1: New USB device found, idVendor=258a, idProduct=0036, bcdDevice= 0.00
[  533.197210][ T5904] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  533.265339][ T5904] usb 3-1: config 0 descriptor??
[  533.737283][ T5904] glorious 0003:258A:0036.0015: unknown main item tag 0x1
[  533.751122][ T5904] glorious 0003:258A:0036.0015: hidraw0: USB HID v0.00 Device [Glorious Model O] on usb-dummy_hcd.2-1/input0
[  533.943222][ T5904] usb 3-1: USB disconnect, device number 37
[  534.231823][T16424] usb usb8: usbfs: process 16424 (syz.5.4642) did not claim interface 0 before use
[  534.704868][T16442] netlink: 209592 bytes leftover after parsing attributes in process `syz.2.4648'.
[  534.789911][T16443] pimreg3: entered allmulticast mode
[  535.484836][T16471] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4664'.
[  536.068529][ T5904] IPVS: starting estimator thread 0...
[  536.069008][T16499] IPVS: sh: UDP 0.0.0.0:0 - no destination available
[  536.152557][T16501] IPVS: using max 6 ests per chain, 14400 per kthread
[  537.021616][   T37] audit: type=1326 audit(1756718172.747:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16533 comm="syz.4.4694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  537.021675][   T37] audit: type=1326 audit(1756718172.747:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16533 comm="syz.4.4694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  537.055952][   T37] audit: type=1326 audit(1756718172.787:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16533 comm="syz.4.4694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  537.056008][   T37] audit: type=1326 audit(1756718172.787:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16533 comm="syz.4.4694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  537.056050][   T37] audit: type=1326 audit(1756718172.787:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16533 comm="syz.4.4694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  537.056528][T16535] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  537.059300][   T37] audit: type=1326 audit(1756718172.787:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16533 comm="syz.4.4694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  537.060302][   T37] audit: type=1326 audit(1756718172.787:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16533 comm="syz.4.4694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fa5d0ebe9 code=0x7ffc0000
[  537.098167][T16540] sd 0:0:1:0: device reset
[  537.293186][T16544] netlink: 'syz.5.4699': attribute type 16 has an invalid length.
[  537.454544][   T37] audit: type=1804 audit(1756718173.167:257): pid=16547 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.4.4698" name="/newroot/984/cgroup.controllers" dev="tmpfs" ino=4967 res=1 errno=0
[  537.454617][   T37] audit: type=1800 audit(1756718173.177:258): pid=16547 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.4698" name="cgroup.controllers" dev="tmpfs" ino=4967 res=0 errno=0
[  538.077397][T16569] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4709'.
[  538.508883][T16593] IPVS: ip_vs_add_dest(): server weight less than zero
[  538.532776][   T10] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  538.692577][   T10] usb 3-1: Using ep0 maxpacket: 32
[  538.696102][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  538.696136][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  538.696176][   T10] usb 3-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  538.696200][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  538.716306][   T10] usb 3-1: config 0 descriptor??
[  539.167576][   T10] ft260 0003:0403:6030.0016: unbalanced collection at end of report description
[  539.169817][   T10] ft260 0003:0403:6030.0016: failed to parse HID
[  539.169941][   T10] ft260 0003:0403:6030.0016: probe with driver ft260 failed with error -22
[  539.353366][ T5904] usb 3-1: USB disconnect, device number 38
[  540.902736][   T10] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  541.066679][   T10] usb 3-1: Using ep0 maxpacket: 32
[  541.069625][   T10] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  541.069694][   T10] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  541.069720][   T10] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  541.069743][   T10] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  541.069771][   T10] usb 3-1: config 0 interface 0 has no altsetting 0
[  541.069808][   T10] usb 3-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  541.069832][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  541.088040][   T10] usb 3-1: config 0 descriptor??
[  541.570223][   T10] hid-thrustmaster 0003:044F:B65D.0017: global environment stack underflow
[  541.570251][   T10] hid-thrustmaster 0003:044F:B65D.0017: item 0 4 1 11 parsing failed
[  541.571167][   T10] hid-thrustmaster 0003:044F:B65D.0017: parse failed with error -22
[  541.571252][   T10] hid-thrustmaster 0003:044F:B65D.0017: probe with driver hid-thrustmaster failed with error -22
[  541.756055][   T10] usb 3-1: USB disconnect, device number 39
[  542.022438][ T5904] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  542.192448][ T5904] usb 5-1: Using ep0 maxpacket: 32
[  542.200261][ T5904] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  542.200299][ T5904] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  542.200346][ T5904] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice= 0.00
[  542.200370][ T5904] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  542.255375][ T5904] usb 5-1: config 0 descriptor??
[  542.699019][ T5904] shield 0003:0955:7214.0018: item fetching failed at offset 0/1
[  542.699953][ T5904] shield 0003:0955:7214.0018: Parse failed
[  542.700024][ T5904] shield 0003:0955:7214.0018: probe with driver shield failed with error -22
[  542.907247][ T5904] usb 5-1: USB disconnect, device number 27
[  543.062843][   T10] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  543.212858][   T10] usb 3-1: Using ep0 maxpacket: 8
[  543.221555][   T10] usb 3-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[  543.221586][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  543.221607][   T10] usb 3-1: Product: syz
[  543.221619][   T10] usb 3-1: Manufacturer: syz
[  543.221627][   T10] usb 3-1: SerialNumber: syz
[  543.236429][   T10] usb 3-1: config 0 descriptor??
[  543.274695][   T10] radio-usb-si4713 3-1:0.0: Si4713 development board discovered: (10C4:8244)
[  543.907277][   T10] radio-usb-si4713 3-1:0.0: probe with driver radio-usb-si4713 failed with error -71
[  543.908035][   T10] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  543.914802][   T10] usb 3-1: USB disconnect, device number 40
[  545.215406][T16767] netlink: 'syz.3.4799': attribute type 18 has an invalid length.
[  545.308106][  T151] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  545.308160][  T151] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  545.308198][  T151] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  545.308236][  T151] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  545.488558][T16771] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4802'.
[  545.892689][T16785] vimc link validate: Scaler:src:16x16 (0x33424752, 0, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  546.392427][   T45] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  546.544999][   T45] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  546.545029][   T45] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  546.547997][   T45] usb 4-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice=e5.83
[  546.548029][   T45] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  546.548049][   T45] usb 4-1: Product: syz
[  546.548063][   T45] usb 4-1: Manufacturer: syz
[  546.548078][   T45] usb 4-1: SerialNumber: syz
[  546.578514][   T45] usb 4-1: config 0 descriptor??
[  546.853342][   T45] usb 4-1: USB disconnect, device number 34
[  546.901784][T16825] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4828'.
[  547.372655][    T9] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  547.535257][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  547.535291][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  547.535337][    T9] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  547.535361][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  547.541596][    T9] usb 6-1: config 0 descriptor??
[  548.050870][    T9] koneplus 0003:1E7D:2D51.0019: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.5-1/input0
[  548.245145][ T5904] usb 6-1: USB disconnect, device number 17
[  548.862876][   T37] audit: type=1400 audit(1756718184.587:259): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="*" object="_" requested=w pid=16880 comm="syz.6.4852" src=1 dest=20000 netif=wpan0
[  549.821751][T16909] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4863'.
[  549.922681][ T5904] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  549.985481][T16913] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4865'.
[  550.090592][ T5904] usb 3-1: Using ep0 maxpacket: 8
[  550.098437][ T5904] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  550.098502][ T5904] usb 3-1: New USB device found, idVendor=044f, idProduct=b654, bcdDevice= 0.00
[  550.098528][ T5904] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  550.146591][ T5904] usb 3-1: config 0 descriptor??
[  550.598136][ T5904] thrustmaster 0003:044F:B654.001A: item fetching failed at offset 0/2
[  550.599111][ T5904] thrustmaster 0003:044F:B654.001A: parse failed
[  550.599190][ T5904] thrustmaster 0003:044F:B654.001A: probe with driver thrustmaster failed with error -22
[  550.786784][ T5919] usb 3-1: USB disconnect, device number 41
[  551.067387][T16941] usb usb8: usbfs: process 16941 (syz.5.4879) did not claim interface 0 before use
[  551.232656][ T5904] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  551.298730][T16947] netlink: 68 bytes leftover after parsing attributes in process `syz.6.4882'.
[  551.298766][T16947] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4882'.
[  551.385370][ T5904] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  551.385399][ T5904] usb 4-1: config 0 has no interface number 0
[  551.385454][ T5904] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  551.385480][ T5904] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  551.385531][ T5904] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  551.385555][ T5904] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  551.396659][ T5904] usb 4-1: config 0 descriptor??
[  551.468034][T16951] sctp: [Deprecated]: syz.6.4884 (pid 16951) Use of int in maxseg socket option.
[  551.468034][T16951] Use struct sctp_assoc_value instead
[  551.912465][ T5904] uclogic 0003:256C:006D.001B: hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.3-1/input1
[  552.103327][ T5932] usb 4-1: USB disconnect, device number 35
[  552.872617][T16989] tipc: Enabling <eth:lo> not permitted
[  552.872677][T16989] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  553.584123][T17017] No memory to map
[  554.043402][T17031] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  554.043467][T17031] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  554.043572][T17031] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  554.043723][T17031] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  554.043789][T17031] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  554.043863][T17031] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  554.044017][T17031] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  554.284845][T17038] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4925'.
[  554.285507][T17038] netlink: 48 bytes leftover after parsing attributes in process `syz.4.4925'.
[  554.978966][   T45] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  555.145707][   T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  555.145744][   T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  555.145767][   T45] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  555.145813][   T45] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  555.145838][   T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  555.151968][   T45] usb 5-1: config 0 descriptor??
[  555.252702][    T9] usb 3-1: new full-speed USB device number 42 using dummy_hcd
[  555.405433][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  555.405495][    T9] usb 3-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  555.405519][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  555.444338][    T9] usb 3-1: config 0 descriptor??
[  555.693010][   T45] plantronics 0003:047F:FFFF.001C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  555.797637][   T45] usb 5-1: USB disconnect, device number 28
[  555.854229][T17082] [U] 
[  555.904316][    T9] nintendo 0003:057E:200E.001D: unbalanced delimiter at end of report description
[  555.905378][    T9] nintendo 0003:057E:200E.001D: HID parse failed
[  555.931951][    T9] nintendo 0003:057E:200E.001D: probe - fail = -22
[  555.932099][    T9] nintendo 0003:057E:200E.001D: probe with driver nintendo failed with error -22
[  556.132603][   T45] usb 3-1: USB disconnect, device number 42
[  557.242499][    T9] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  557.408140][    T9] usb 6-1: Using ep0 maxpacket: 32
[  557.417280][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  557.420930][    T9] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=a6.13
[  557.420958][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  557.420978][    T9] usb 6-1: Product: syz
[  557.420993][    T9] usb 6-1: Manufacturer: syz
[  557.421007][    T9] usb 6-1: SerialNumber: syz
[  557.428961][    T9] usb 6-1: config 0 descriptor??
[  557.437009][    T9] pvrusb2: Hardware description: Terratec Grabster AV400
[  557.437028][    T9] pvrusb2: **********
[  557.437034][    T9] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  557.437047][    T9] pvrusb2: Important functionality might not be entirely working.
[  557.437057][    T9] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  557.437068][    T9] pvrusb2: **********
[  557.582450][T10121] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  557.663619][ T2365] pvrusb2: Invalid write control endpoint
[  557.740711][T10121] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  557.740743][T10121] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  557.740785][T10121] usb 5-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00
[  557.740809][T10121] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  557.768575][T10121] usb 5-1: config 0 descriptor??
[  557.860901][ T5932] usb 6-1: USB disconnect, device number 18
[  558.180152][ T2365] pvrusb2: Invalid write control endpoint
[  558.180242][ T2365] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  558.180253][ T2365] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  558.180262][ T2365] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  558.180272][ T2365] pvrusb2: Device being rendered inoperable
[  558.186077][ T2365] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  558.186142][ T2365] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  558.220152][T10121] cypress 0003:04B4:DE61.001E: item fetching failed at offset 5/7
[  558.221045][T10121] cypress 0003:04B4:DE61.001E: parse failed
[  558.221114][T10121] cypress 0003:04B4:DE61.001E: probe with driver cypress failed with error -22
[  558.222674][ T2365] pvrusb2: Attached sub-driver cx25840
[  558.222688][ T2365] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  558.222698][ T2365] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  558.251132][T17136] netlink: 'syz.6.4971': attribute type 2 has an invalid length.
[  558.307658][T17136] k›*·]‘: entered promiscuous mode
[  558.438400][   T45] usb 5-1: USB disconnect, device number 29
[  558.486973][T17140] netlink: 'syz.5.4973': attribute type 11 has an invalid length.
[  558.602664][T17144] netlink: 'syz.6.4974': attribute type 30 has an invalid length.
[  558.855692][T10121] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[  559.016004][T10121] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  559.016063][T10121] usb 3-1: New USB device found, idVendor=28bd, idProduct=0933, bcdDevice= 0.00
[  559.016088][T10121] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  559.038888][T10121] usb 3-1: config 0 descriptor??
[  559.499226][T10121] input: HID 28bd:0933 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:28BD:0933.001F/input/input31
[  559.581297][T17169] x_tables: ip_tables: udp match: only valid for protocol 17
[  559.711630][T10121] uclogic 0003:28BD:0933.001F: input,hidraw0: USB HID v0.00 Mouse [HID 28bd:0933] on usb-dummy_hcd.2-1/input0
[  559.732791][T10121] usb 3-1: USB disconnect, device number 43
[  559.754617][T17175] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4989'.
[  560.142518][   T37] audit: type=1326 audit(1756718195.867:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17182 comm="syz.6.4993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49484febe9 code=0x7ffc0000
[  560.142581][   T37] audit: type=1326 audit(1756718195.867:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17182 comm="syz.6.4993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49484febe9 code=0x7ffc0000
[  560.182461][   T37] audit: type=1326 audit(1756718195.907:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17182 comm="syz.6.4993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f49484febe9 code=0x7ffc0000
[  560.182522][   T37] audit: type=1326 audit(1756718195.907:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17182 comm="syz.6.4993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49484febe9 code=0x7ffc0000
[  560.182575][   T37] audit: type=1326 audit(1756718195.907:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17182 comm="syz.6.4993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f49484febe9 code=0x7ffc0000
[  560.182617][   T37] audit: type=1326 audit(1756718195.907:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17182 comm="syz.6.4993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49484febe9 code=0x7ffc0000
[  561.253922][T17217] lo speed is unknown, defaulting to 1000
[  561.254062][T17217] lo speed is unknown, defaulting to 1000
[  561.265740][T17217] lo speed is unknown, defaulting to 1000
[  561.391503][T17217] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  561.514831][T17217] lo speed is unknown, defaulting to 1000
[  561.521712][T17217] lo speed is unknown, defaulting to 1000
[  561.551394][T17217] lo speed is unknown, defaulting to 1000
[  561.555542][T17217] lo speed is unknown, defaulting to 1000
[  561.558479][T17217] lo speed is unknown, defaulting to 1000
[  561.602588][T10121] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[  561.756848][T10121] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  561.756902][T10121] usb 3-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[  561.756927][T10121] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  561.774433][T10121] usb 3-1: config 0 descriptor??
[  562.025265][T17244] netlink: 32 bytes leftover after parsing attributes in process `syz.3.5020'.
[  562.265926][T10121] logitech-djreceiver 0003:046D:C71F.0020: hidraw0: USB HID v0.00 Device [HID 046d:c71f] on usb-dummy_hcd.2-1/input0
[  562.434701][    T9] usb 3-1: USB disconnect, device number 44
[  563.133709][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  563.133807][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  563.972198][T17310] netlink: 'syz.3.5055': attribute type 13 has an invalid length.
[  564.516808][T17310] bridge0: port 2(bridge_slave_1) entered disabled state
[  564.517289][T17310] bridge0: port 1(bridge_slave_0) entered disabled state
[  564.672539][T10121] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  564.832077][T10121] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  564.832112][T10121] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  564.832133][T10121] usb 6-1: Product: syz
[  564.832147][T10121] usb 6-1: Manufacturer: syz
[  564.832162][T10121] usb 6-1: SerialNumber: syz
[  564.849387][T10121] usb 6-1: config 0 descriptor??
[  565.086744][   T10] usb 6-1: USB disconnect, device number 19
[  565.544842][T17310] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  565.574642][T17310] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  566.038864][T17310] veth1_macvtap: left allmulticast mode
[  567.056680][ T5932] lo speed is unknown, defaulting to 1000
[  567.056724][ T5932] syz2: Port: 1 Link DOWN
[  567.059408][T10121] wg1 speed is unknown, defaulting to 1000
[  567.059437][T10121] syz0: Port: 1 Link DOWN
[  567.059517][   T43] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  567.059547][   T43] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  567.129079][   T43] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  567.129118][   T43] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  567.133824][   T43] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  567.133860][   T43] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  567.133903][   T43] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  567.133929][   T43] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  567.172480][ T1231] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  567.230225][T17346] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  567.343537][ T1231] usb 5-1: Using ep0 maxpacket: 16
[  567.347824][ T1231] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  567.347858][ T1231] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  567.347881][ T1231] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  567.347928][ T1231] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  567.347951][ T1231] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.416925][ T1231] usb 5-1: config 0 descriptor??
[  567.645329][T17392] siw: device registration error -23
[  567.881346][ T1231] microsoft 0003:045E:07DA.0021: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  567.881383][ T1231] microsoft 0003:045E:07DA.0021: no inputs found
[  567.881397][ T1231] microsoft 0003:045E:07DA.0021: could not initialize ff, continuing anyway
[  567.884953][T17397] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5097'.
[  567.885188][T17397] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5097'.
[  568.100207][ T1231] usb 5-1: USB disconnect, device number 30
[  568.352677][   T45] usb 6-1: new full-speed USB device number 20 using dummy_hcd
[  568.509728][   T45] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  568.509767][   T45] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  568.509814][   T45] usb 6-1: New USB device found, idVendor=046d, idProduct=ca04, bcdDevice= 0.00
[  568.509837][   T45] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  568.514329][   T45] usb 6-1: config 0 descriptor??
[  568.516019][T17406] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  568.949560][   T45] logitech 0003:046D:CA04.0022: unknown main item tag 0x6
[  568.980145][   T45] logitech 0003:046D:CA04.0022: hidraw0: USB HID vff.fa Device [HID 046d:ca04] on usb-dummy_hcd.5-1/input0
[  568.980185][   T45] logitech 0003:046D:CA04.0022: no inputs found
[  569.034528][T17424] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5108'.
[  569.167792][T17426] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5109'.
[  569.179434][   T45] usb 6-1: USB disconnect, device number 20
[  569.204808][T17430] netlink: 'syz.4.5111': attribute type 1 has an invalid length.
[  569.204834][T17430] netlink: 'syz.4.5111': attribute type 2 has an invalid length.
[  569.204848][T17430] netlink: 1172 bytes leftover after parsing attributes in process `syz.4.5111'.
[  569.571799][T17443] block nbd2: NBD_DISCONNECT
[  570.072509][ T5932] usb 4-1: new low-speed USB device number 36 using dummy_hcd
[  570.226432][ T5932] usb 4-1: config 64 has an invalid descriptor of length 0, skipping remainder of the config
[  570.226499][ T5932] usb 4-1: New USB device found, idVendor=2201, idProduct=012c, bcdDevice=3f.e0
[  570.226523][ T5932] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.297987][ T5932] usb 4-1: probing VID:PID(2201:012C)   
[  570.301122][ T5932] usb 4-1: Could not find two sets of bulk-in/out endpoint pairs
[  570.301234][ T5932] vub300 4-1:64.0: probe with driver vub300 failed with error -22
[  570.319333][T17468] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5130'.
[  570.520751][T10121] usb 4-1: USB disconnect, device number 36
[  570.863778][T17483] netlink: 'syz.4.5137': attribute type 4 has an invalid length.
[  570.863804][T17483] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.5137'.
[  570.895644][T17485] tipc: Started in network mode
[  570.895676][T17485] tipc: Node identity aaaaaaaaaa3, cluster identity 4711
[  570.896917][T17485] tipc: Enabled bearer <eth:ipvlan0>, priority 10
[  571.721382][T17516] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5152'.
[  571.942436][ T1231] usb 6-1: new full-speed USB device number 21 using dummy_hcd
[  572.015231][T10121] tipc: Node number set to 10136234
[  572.110079][ T1231] usb 6-1: config 0 interface 0 has no altsetting 0
[  572.110128][ T1231] usb 6-1: New USB device found, idVendor=20d6, idProduct=cb17, bcdDevice= 0.00
[  572.110151][ T1231] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  572.145644][ T1231] usb 6-1: config 0 descriptor??
[  572.347076][T17534] netlink: 36 bytes leftover after parsing attributes in process `syz.6.5159'.
[  572.614325][ T1231] input: THQ uDraw Game Tablet for PS3 Joypad as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:20D6:CB17.0023/input/input33
[  572.699482][ T1231] input: THQ uDraw Game Tablet for PS3 Touchpad as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:20D6:CB17.0023/input/input34
[  572.733906][ T1231] input: THQ uDraw Game Tablet for PS3 Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:20D6:CB17.0023/input/input35
[  572.767922][ T1231] input: THQ uDraw Game Tablet for PS3 Accelerometer as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:20D6:CB17.0023/input/input36
[  572.832865][ T1231] hid-udraw 0003:20D6:CB17.0023: hidraw0: USB HID v8.80 Device [HID 20d6:cb17] on usb-dummy_hcd.5-1/input0
[  572.854825][ T1231] usb 6-1: USB disconnect, device number 21
[  573.218949][T17558] [U] ùÿ
[  573.922888][T17580] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5183'.
[  573.922916][T17580] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5183'.
[  574.276231][T17589] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  574.276298][T17589] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  574.276402][T17589] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[  574.276559][T17589] comedi comedi3: 8255: I/O port conflict (0x5c95239c,4)
[  574.276614][T17589] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  574.276677][T17589] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  574.276732][T17589] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  574.276834][T17589] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  574.276888][T17589] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  574.276942][T17589] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  574.277050][T17589] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  574.277103][T17589] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  574.277158][T17589] comedi comedi3: 8255: I/O port conflict (0x10,4)
[  574.277261][T17589] comedi comedi3: 8255: I/O port conflict (0xffffffff8000008b,4)
[  574.277318][T17589] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4)
[  574.277373][T17589] comedi comedi3: 8255: I/O port conflict (0xb,4)
[  574.277424][T17589] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4)
[  574.277476][T17589] comedi comedi3: 8255: I/O port conflict (0xffffffffffffeadb,4)
[  574.278274][T17588] rtc_cmos 00:00: Alarms can be up to one day in the future
[  574.833518][T17604] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  575.822860][ T1231] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[  575.972756][ T1231] usb 3-1: Using ep0 maxpacket: 8
[  575.975318][ T1231] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  575.975352][ T1231] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  575.975401][ T1231] usb 3-1: New USB device found, idVendor=0458, idProduct=0153, bcdDevice= 0.00
[  575.975425][ T1231] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  576.031887][ T1231] usb 3-1: config 0 descriptor??
[  576.270861][ T1231] usbhid 3-1:0.0: can't add hid device: -71
[  576.271002][ T1231] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  576.325779][ T1231] usb 3-1: USB disconnect, device number 45
[  576.521497][T17656] syz_tun: entered allmulticast mode
[  576.557100][T17656] pimreg: entered allmulticast mode
[  576.792570][   T45] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[  576.952714][   T45] usb 3-1: Using ep0 maxpacket: 8
[  576.956466][   T45] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEF, changing to 0x8F
[  576.956499][   T45] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8F has invalid maxpacket 256
[  576.956526][   T45] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  576.956552][   T45] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  576.958642][   T45] usb 3-1: New USB device found, idVendor=0af0, idProduct=6751, bcdDevice=75.8b
[  576.958669][   T45] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  576.958689][   T45] usb 3-1: SerialNumber: syz
[  576.981126][   T45] usb 3-1: config 0 descriptor??
[  576.987982][   T45] hso 3-1:0.0: Can't find BULK OUT endpoint
[  577.111485][T17676] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  577.214994][   T45] usb 3-1: USB disconnect, device number 46
[  577.342440][ T1231] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  577.495102][ T1231] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  577.495135][ T1231] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  577.496754][ T1231] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  577.496783][ T1231] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  577.496804][ T1231] usb 5-1: SerialNumber: syz
[  577.529245][T17694] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5238'.
[  577.543341][T17694] gretap0: entered promiscuous mode
[  577.554090][T17694] gretap0: left promiscuous mode
[  577.803736][ T1231] usb 5-1: 0:2 : does not exist
[  577.831773][ T1231] usb 5-1: USB disconnect, device number 31
[  578.514807][T17717] netlink: 47 bytes leftover after parsing attributes in process `syz.5.5251'.
[  578.652515][T17724] netlink: 56 bytes leftover after parsing attributes in process `syz.3.5253'.
[  579.224371][T10121] hid (null): invalid report_size -1358781365
[  579.265827][T10121] hid-generic 0001:0009:0001.0024: unknown main item tag 0x3
[  579.265910][T10121] hid-generic 0001:0009:0001.0024: unknown main item tag 0x6
[  579.265936][T10121] hid-generic 0001:0009:0001.0024: invalid report_size -1358781365
[  579.265953][T10121] hid-generic 0001:0009:0001.0024: item 0 4 1 7 parsing failed
[  579.266905][T10121] hid-generic 0001:0009:0001.0024: probe with driver hid-generic failed with error -22
[  579.909586][T17771] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5272'.
[  579.909615][T17771] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5272'.
[  579.909639][T17771] netlink: 'syz.5.5272': attribute type 11 has an invalid length.
[  579.909654][T17771] netlink: 'syz.5.5272': attribute type 13 has an invalid length.
[  580.530627][T10121] IPVS: starting estimator thread 0...
[  580.637915][T17792] IPVS: using max 6 ests per chain, 14400 per kthread
[  581.687270][T17835] netlink: 'syz.4.5303': attribute type 1 has an invalid length.
[  581.687298][T17835] netlink: 208 bytes leftover after parsing attributes in process `syz.4.5303'.
[  581.687316][T17835] netlink: 'syz.4.5303': attribute type 1 has an invalid length.
[  581.687329][T17835] netlink: 'syz.4.5303': attribute type 2 has an invalid length.
[  582.206289][T17854] ptrace attach of "./syz-executor exec"[11889] was attempted by "\x09   
                   Àÿ      Àÿ      Ðÿ      0              ðÿ      °ÿ      Àÿ                 ÿÿÿÿ"[17854]
[  582.430614][T17863] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5315'.
[  582.650586][T17867] netlink: 'syz.4.5317': attribute type 10 has an invalid length.
[  583.505861][T10121] kernel write not supported for file /input/event0 (pid: 10121 comm: kworker/1:8)
[  585.286444][T17944] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5351'.
[  585.286473][T17944] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5351'.
[  585.286523][T17944] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5351'.
[  585.508250][T17949] netlink: 'syz.5.5354': attribute type 5 has an invalid length.
[  585.508272][T17949] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5354'.
[  585.562493][    T9] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  585.627789][   T37] audit: type=1326 audit(1756718221.357:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17951 comm="syz.3.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  585.631731][   T37] audit: type=1326 audit(1756718221.357:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17951 comm="syz.3.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  585.632070][   T37] audit: type=1326 audit(1756718221.357:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17951 comm="syz.3.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  585.636548][   T37] audit: type=1326 audit(1756718221.367:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17951 comm="syz.3.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  585.636599][   T37] audit: type=1326 audit(1756718221.367:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17951 comm="syz.3.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  585.638146][   T37] audit: type=1326 audit(1756718221.367:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17951 comm="syz.3.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  585.638194][   T37] audit: type=1326 audit(1756718221.367:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17951 comm="syz.3.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  585.638258][   T37] audit: type=1326 audit(1756718221.367:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17951 comm="syz.3.5355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  585.712455][    T9] usb 5-1: Using ep0 maxpacket: 8
[  585.715745][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[  585.717354][    T9] usb 5-1: config 128 has an invalid interface number: 153 but max is 0
[  585.717376][    T9] usb 5-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  585.717394][    T9] usb 5-1: config 128 has no interface number 0
[  585.717440][    T9] usb 5-1: config 128 interface 153 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  585.717464][    T9] usb 5-1: config 128 interface 153 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  585.717484][    T9] usb 5-1: config 128 interface 153 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  585.717509][    T9] usb 5-1: config 128 interface 153 has no altsetting 0
[  585.725090][    T9] usb 5-1: New USB device found, idVendor=06cd, idProduct=011c, bcdDevice=14.a4
[  585.725117][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  585.725135][    T9] usb 5-1: Product: syz
[  585.725147][    T9] usb 5-1: Manufacturer: syz
[  585.725159][    T9] usb 5-1: SerialNumber: syz
[  586.002714][ T5932] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[  586.006292][    T9] keyspan 5-1:128.153: Keyspan 1 port adapter converter detected
[  586.006594][    T9] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 84
[  586.009871][    T9] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 82
[  586.009977][    T9] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 1
[  586.010072][    T9] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 2
[  586.010169][    T9] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 83
[  586.010263][    T9] keyspan 5-1:128.153: found no endpoint descriptor for endpoint 3
[  586.023177][    T9] usb 5-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  586.032779][    T9] usb 5-1: USB disconnect, device number 32
[  586.054268][    T9] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  586.054844][    T9] keyspan 5-1:128.153: device disconnected
[  586.154187][ T5932] usb 3-1: Using ep0 maxpacket: 8
[  586.157603][ T5932] usb 3-1: config 0 has an invalid interface number: 143 but max is 0
[  586.157631][ T5932] usb 3-1: config 0 has no interface number 0
[  586.157784][ T5932] usb 3-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b
[  586.157809][ T5932] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  586.178197][ T5932] usb 3-1: config 0 descriptor??
[  586.295230][ T5932] viperboard 3-1:0.143: version 0.00 found at bus 003 address 047
[  586.365060][ T5932] viperboard-i2c viperboard-i2c.2.auto: error -EIO: failure setting i2c_bus_freq to 100
[  586.365093][ T5932] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[  586.420331][T10121] usb 3-1: USB disconnect, device number 47
[  587.302656][T17996] netlink: 'syz.4.5376': attribute type 1 has an invalid length.
[  587.562773][T10121] usb 4-1: new full-speed USB device number 37 using dummy_hcd
[  587.695320][T18014] netlink: 'syz.6.5385': attribute type 10 has an invalid length.
[  587.725971][T10121] usb 4-1: config 0 has an invalid interface number: 128 but max is 0
[  587.726001][T10121] usb 4-1: config 0 has no interface number 0
[  587.729573][T10121] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  587.729712][T10121] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  587.729733][T10121] usb 4-1: Product: syz
[  587.729747][T10121] usb 4-1: Manufacturer: syz
[  587.729761][T10121] usb 4-1: SerialNumber: syz
[  587.802085][T10121] usb 4-1: config 0 descriptor??
[  587.896031][T18014] team0: Port device syz_tun added
[  587.922833][ T5904] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[  588.072405][ T5904] usb 6-1: Using ep0 maxpacket: 8
[  588.079227][ T5904] usb 6-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  588.079331][ T5904] usb 6-1: config 0 interface 0 has no altsetting 0
[  588.079371][ T5904] usb 6-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  588.079396][ T5904] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  588.143023][ T5904] usb 6-1: config 0 descriptor??
[  588.423083][T10121] usb 4-1: Firmware version (0.0) predates our first public release.
[  588.423112][T10121] usb 4-1: Please update to version 0.2 or newer
[  588.502535][    T9] usb 5-1: new full-speed USB device number 33 using dummy_hcd
[  588.609275][ T5904] uclogic 0003:5543:0042.0025: unbalanced delimiter at end of report description
[  588.610231][ T5904] uclogic 0003:5543:0042.0025: parse failed
[  588.610350][ T5904] uclogic 0003:5543:0042.0025: probe with driver uclogic failed with error -22
[  588.663210][    T9] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  588.663239][    T9] usb 5-1: config 0 has no interface number 0
[  588.663299][    T9] usb 5-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  588.663323][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  588.739134][    T9] usb 5-1: config 0 descriptor??
[  588.760520][T10121] usb 4-1: USB disconnect, device number 37
[  588.771358][    T9] usb 5-1: selecting invalid altsetting 1
[  588.774607][    T9] dvb_ttusb_budget: ttusb_init_controller: error
[  588.774625][    T9] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  588.817862][ T5932] usb 6-1: USB disconnect, device number 22
[  589.020608][    T9] DVB: Unable to find symbol cx22700_attach()
[  589.264949][    T9] DVB: Unable to find symbol tda10046_attach()
[  589.264967][    T9] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  589.270589][    T9] usb 5-1: USB disconnect, device number 33
[  591.647867][T18131] random: crng reseeded on system resumption
[  592.059359][   T37] audit: type=1326 audit(1756718227.787:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18145 comm="syz.5.5443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f759bb0ebe9 code=0x7ffc0000
[  592.063314][   T37] audit: type=1326 audit(1756718227.787:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18145 comm="syz.5.5443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f759bb0ebe9 code=0x7ffc0000
[  592.117785][   T37] audit: type=1326 audit(1756718227.847:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18145 comm="syz.5.5443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f759bb0ebe9 code=0x7ffc0000
[  592.117852][   T37] audit: type=1326 audit(1756718227.847:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18145 comm="syz.5.5443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f759bb0ebe9 code=0x7ffc0000
[  592.122482][   T37] audit: type=1326 audit(1756718227.847:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18145 comm="syz.5.5443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f759bb0ebe9 code=0x7ffc0000
[  592.129704][   T37] audit: type=1326 audit(1756718227.857:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18145 comm="syz.5.5443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=433 compat=0 ip=0x7f759bb0ebe9 code=0x7ffc0000
[  592.129756][   T37] audit: type=1326 audit(1756718227.857:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18145 comm="syz.5.5443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f759bb0ebe9 code=0x7ffc0000
[  592.129797][   T37] audit: type=1326 audit(1756718227.857:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18145 comm="syz.5.5443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f759bb0ebe9 code=0x7ffc0000
[  592.254676][T18152] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5445'.
[  593.042569][T10121] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[  593.192454][T10121] usb 3-1: Using ep0 maxpacket: 16
[  593.212979][T10121] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 11
[  593.213051][T10121] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  593.213074][T10121] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  593.213099][T10121] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  593.213121][T10121] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  593.213143][T10121] usb 3-1: config 1 interface 0 has no altsetting 0
[  593.213181][T10121] usb 3-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  593.213205][T10121] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  593.298290][T10121] ums-sddr09 3-1:1.0: USB Mass Storage device detected
[  593.462851][    T9] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  593.585499][T10121] ums-sddr09 3-1:1.0: probe with driver ums-sddr09 failed with error -22
[  593.607293][T10121] usb 3-1: USB disconnect, device number 48
[  593.635042][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  593.635075][    T9] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  593.635100][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  593.635122][    T9] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  593.635165][    T9] usb 6-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  593.635195][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  593.737757][    T9] usb 6-1: config 0 descriptor??
[  593.887584][T18196] netlink: 'syz.3.5465': attribute type 4 has an invalid length.
[  593.970651][    T9] hdpvr 6-1:0.0: firmware version 0x51 dated 
[  593.970676][    T9] hdpvr 6-1:0.0: untested firmware, the driver might not work.
[  594.488826][    T9] hdpvr 6-1:0.0: Could not setup controls
[  594.489755][    T9] hdpvr 6-1:0.0: registering videodev failed
[  594.508771][    T9] hdpvr 6-1:0.0: probe with driver hdpvr failed with error -71
[  594.553099][    T9] usb 6-1: USB disconnect, device number 23
[  595.471457][   T45] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[  595.531567][   T45] hid-generic 0000:0000:0000.0026: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  596.158916][T18266] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20003
[  597.047585][T18294] netlink: 'syz.2.5511': attribute type 1 has an invalid length.
[  597.320510][T18302] dvmrp0: entered allmulticast mode
[  597.331721][T18301] dvmrp0: left allmulticast mode
[  597.975372][   T37] audit: type=1326 audit(1756718233.697:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18325 comm="syz.2.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  597.976492][   T37] audit: type=1326 audit(1756718233.707:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18325 comm="syz.2.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  598.017996][   T37] audit: type=1326 audit(1756718233.747:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18325 comm="syz.2.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  598.018052][   T37] audit: type=1326 audit(1756718233.747:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18325 comm="syz.2.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  598.018092][   T37] audit: type=1326 audit(1756718233.747:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18325 comm="syz.2.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  598.018134][   T37] audit: type=1326 audit(1756718233.747:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18325 comm="syz.2.5527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdb403febe9 code=0x7ffc0000
[  600.170605][T18391] netlink: 56 bytes leftover after parsing attributes in process `syz.4.5557'.
[  600.397175][T18395] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5558'.
[  602.585520][   T37] audit: type=1326 audit(1756718238.317:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18442 comm="syz.4.5581" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3fa5d0ebe9 code=0x0
[  603.123168][T18456] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  603.123234][T18456] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  603.131622][T18456] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  603.131793][T18456] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  603.131852][T18456] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  603.131908][T18456] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  603.132064][T18456] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  603.132119][T18456] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  603.132174][T18456] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  603.132229][T18456] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  603.161384][T18453] sp0: Synchronizing with TNC
[  603.184440][T18456] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  603.184499][T18456] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  603.583716][T18469] smb3: Bad value for 'source'
[  603.736098][T18468] bridge: RTM_NEWNEIGH with unconfigured vlan 3 on bridge0
[  604.401827][T18496] binder: 18494:18496 ioctl 400c620e 200000000000 returned -22
[  606.600352][T18577] netlink: 209836 bytes leftover after parsing attributes in process `syz.5.5641'.
[  607.012444][T10121] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  607.162749][T10121] usb 5-1: Using ep0 maxpacket: 16
[  607.165602][T10121] usb 5-1: config 0 has an invalid interface number: 255 but max is 0
[  607.165631][T10121] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  607.165650][T10121] usb 5-1: config 0 has no interface number 0
[  607.165690][T10121] usb 5-1: config 0 interface 255 has no altsetting 0
[  607.214395][T10121] usb 5-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28
[  607.214427][T10121] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  607.214450][T10121] usb 5-1: Product: syz
[  607.214464][T10121] usb 5-1: Manufacturer: syz
[  607.214478][T10121] usb 5-1: SerialNumber: syz
[  607.229535][T10121] usb 5-1: config 0 descriptor??
[  607.429489][T18603] netlink: 'syz.2.5654': attribute type 1 has an invalid length.
[  607.429516][T18603] netlink: 220 bytes leftover after parsing attributes in process `syz.2.5654'.
[  607.429534][T18603] netlink: 'syz.2.5654': attribute type 1 has an invalid length.
[  607.476304][T10121] usb 5-1: USB disconnect, device number 34
[  607.597933][T18605] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5655'.
[  607.597959][T18605] tipc: Invalid UDP bearer configuration
[  607.598011][T18605] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  607.684894][   T37] audit: type=1326 audit(1756718243.417:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18610 comm="syz.3.5658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  607.688918][   T37] audit: type=1326 audit(1756718243.417:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18610 comm="syz.3.5658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  607.689915][   T37] audit: type=1326 audit(1756718243.417:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18610 comm="syz.3.5658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  607.691568][   T37] audit: type=1326 audit(1756718243.417:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18610 comm="syz.3.5658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  607.691874][   T37] audit: type=1326 audit(1756718243.417:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18610 comm="syz.3.5658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  607.804788][   T37] audit: type=1326 audit(1756718243.537:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18610 comm="syz.3.5658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  607.903001][   T37] audit: type=1326 audit(1756718243.637:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18610 comm="syz.3.5658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  607.903209][   T37] audit: type=1326 audit(1756718243.637:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18610 comm="syz.3.5658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcde2c3ebe9 code=0x7ffc0000
[  608.313044][T18629] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5668'.
[  608.875688][T18645] netlink: 240 bytes leftover after parsing attributes in process `syz.2.5674'.
[  608.875717][T18645] NCSI netlink: No device for ifindex 29216
[  609.166596][T18651] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5677'.
[  611.437315][T18699] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3)
[  611.437347][T18699] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  611.468005][T18699] vhci_hcd vhci_hcd.0: Device attached
[  611.732745][ T5904] usb 45-1: new low-speed USB device number 2 using vhci_hcd
[  611.957928][T18712] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5703'.
[  612.311607][T18717] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5705'.
[  614.520794][T18700] vhci_hcd: connection reset by peer
[  614.533310][ T3575] vhci_hcd: stop threads
[  614.533333][ T3575] vhci_hcd: release socket
[  614.535341][ T3575] vhci_hcd: disconnect device
[  616.926238][ T5904] vhci_hcd: vhci_device speed not set
[  624.604383][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  624.604472][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  626.750807][   T59] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  626.779290][   T59] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  626.781014][   T59] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  626.820103][   T59] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  626.821146][   T59] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  628.883087][ T5850] Bluetooth: hci4: command tx timeout
[  628.892291][    C0] sched: DL replenish lagged too much
[  629.041641][   T59] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  629.071280][   T59] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  629.081402][   T59] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  629.100710][   T59] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  629.101721][   T59] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  629.275818][ T5850] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  629.306447][ T5850] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  629.309218][ T5850] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  629.310796][ T5850] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  629.336585][ T5850] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  630.962838][ T5850] Bluetooth: hci4: command tx timeout
[  631.212784][ T5850] Bluetooth: hci6: command tx timeout
[  631.445154][ T5850] Bluetooth: hci7: command tx timeout
[  633.052862][ T5850] Bluetooth: hci4: command tx timeout
[  633.282510][ T5850] Bluetooth: hci6: command tx timeout
[  633.522642][ T5850] Bluetooth: hci7: command tx timeout
[  633.830436][ T5850] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  633.857513][ T5850] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  633.859478][ T5850] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  633.860876][ T5850] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  633.861804][ T5850] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  635.122845][   T59] Bluetooth: hci4: command tx timeout
[  635.346272][ T5850] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  635.366006][ T5850] Bluetooth: hci6: command tx timeout
[  635.368000][ T5850] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  635.369612][ T5850] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  635.370938][ T5850] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  635.399873][ T5850] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  635.602798][ T5848] Bluetooth: hci7: command tx timeout
[  635.930310][ T5848] Bluetooth: hci8: command tx timeout
[  637.442699][   T59] Bluetooth: hci6: command tx timeout
[  637.442785][ T5848] Bluetooth: hci9: command tx timeout
[  637.693197][ T5848] Bluetooth: hci7: command tx timeout
[  638.004507][ T5848] Bluetooth: hci8: command tx timeout
[  639.522663][ T5848] Bluetooth: hci9: command tx timeout
[  640.082847][ T5848] Bluetooth: hci8: command tx timeout
[  641.613175][ T5848] Bluetooth: hci9: command tx timeout
[  642.170894][ T5848] Bluetooth: hci8: command tx timeout
[  643.185431][T18746] wg1 speed is unknown, defaulting to 1000
[  643.190794][T18746] lo speed is unknown, defaulting to 1000
[  643.282837][T18752] wg1 speed is unknown, defaulting to 1000
[  643.380942][T18752] lo speed is unknown, defaulting to 1000
[  643.413246][T18755] wg1 speed is unknown, defaulting to 1000
[  643.483689][T18758] wg1 speed is unknown, defaulting to 1000
[  643.484720][T18755] lo speed is unknown, defaulting to 1000
[  643.557330][T18750] wg1 speed is unknown, defaulting to 1000
[  643.558945][T18758] lo speed is unknown, defaulting to 1000
[  643.674943][T18750] lo speed is unknown, defaulting to 1000
[  643.682710][ T5848] Bluetooth: hci9: command tx timeout
[  646.716119][T18752] chnl_net:caif_netlink_parms(): no params data found
[  646.861440][T18746] chnl_net:caif_netlink_parms(): no params data found
[  664.682843][T18758] chnl_net:caif_netlink_parms(): no params data found
[  686.537042][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  686.537134][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  687.285772][   T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  687.310960][   T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  687.321341][   T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  687.330632][   T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  687.331570][   T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  689.377349][   T59] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  689.398672][   T59] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  689.400260][   T59] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  689.424345][   T59] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  689.446749][   T59] Bluetooth: hci0: command tx timeout
[  689.447994][   T59] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  689.716210][ T5850] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  689.740317][ T5850] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  689.750211][ T5850] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  689.768596][ T5850] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  689.769567][ T5850] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  691.522621][ T5850] Bluetooth: hci0: command tx timeout
[  693.602493][ T5850] Bluetooth: hci0: command tx timeout
[  694.344084][T18803] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  694.372726][T18803] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  694.389922][T18803] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  694.391476][T18803] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  694.409983][T18803] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  695.294345][T18799] Bluetooth: hci2: command tx timeout
[  695.469819][ T5850] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  695.491380][ T5850] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  695.506247][ T5850] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  695.508587][ T5850] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  695.509892][ T5850] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  695.682969][ T5848] Bluetooth: hci0: command tx timeout
[  697.362831][ T5848] Bluetooth: hci3: command tx timeout
[  697.363608][ T5848] Bluetooth: hci5: command tx timeout
[  697.363883][ T5848] Bluetooth: hci2: command tx timeout
[  697.602828][ T5848] Bluetooth: hci10: command tx timeout
[  699.447769][ T5848] Bluetooth: hci2: command tx timeout
[  699.447811][ T5848] Bluetooth: hci5: command tx timeout
[  699.447835][ T5848] Bluetooth: hci3: command tx timeout
[  699.682498][ T5848] Bluetooth: hci10: command tx timeout
[  701.524515][ T5850] Bluetooth: hci3: command tx timeout
[  701.524560][ T5850] Bluetooth: hci2: command tx timeout
[  701.527985][ T5848] Bluetooth: hci5: command tx timeout
[  701.762479][ T5848] Bluetooth: hci10: command tx timeout
[  703.602773][ T5848] Bluetooth: hci5: command tx timeout
[  703.602813][ T5848] Bluetooth: hci3: command tx timeout
[  703.842946][T18803] Bluetooth: hci10: command tx timeout
[  727.003098][T18706] syz_tun (unregistering): left allmulticast mode
[  747.461731][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  747.461849][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  747.587405][ T5850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  747.612764][ T5850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  747.618640][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  747.646843][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  747.647813][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  749.522725][ T5850] Bluetooth: hci4: command 0x0406 tx timeout
[  749.695177][ T5850] Bluetooth: hci1: command tx timeout
[  749.930419][T18803] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  749.965212][T18803] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  749.967090][T18803] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  749.968642][T18803] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  749.970251][T18803] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  750.129867][T18799] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  750.155539][T18799] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  750.157215][T18799] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  750.158652][T18799] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  750.159613][T18799] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  751.765605][T18799] Bluetooth: hci1: command tx timeout
[  753.842642][T18832] Bluetooth: hci1: command tx timeout
[  754.490892][T18837] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  754.514830][T18837] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  754.516674][T18837] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  754.518127][T18837] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  754.519072][T18837] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  754.648993][T18837] Bluetooth: hci6: command 0x0406 tx timeout
[  754.649040][T18837] Bluetooth: hci7: command 0x0406 tx timeout
[  755.922515][T18835] Bluetooth: hci1: command tx timeout
[  756.070362][T18837] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  756.095982][T18837] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  756.097713][T18837] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  756.099094][T18837] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  756.100004][T18837] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  759.784422][T18842] Bluetooth: hci8: command 0x0406 tx timeout
[  759.784468][T18842] Bluetooth: hci9: command 0x0406 tx timeout
[  793.205096][T18832] Bluetooth: hci13: command tx timeout
[  793.284855][T18835] Bluetooth: hci14: command tx timeout
[  795.202451][T18837] Bluetooth: hci12: command tx timeout
[  795.203233][T18837] Bluetooth: hci11: command tx timeout
[  795.282436][T18837] Bluetooth: hci13: command tx timeout
[  795.362689][T18837] Bluetooth: hci14: command tx timeout
[  797.291679][T18837] Bluetooth: hci11: command tx timeout
[  797.291723][T18837] Bluetooth: hci12: command tx timeout
[  797.364255][T18837] Bluetooth: hci13: command tx timeout
[  797.442691][T18837] Bluetooth: hci14: command tx timeout
[  799.362779][T18835] Bluetooth: hci12: command tx timeout
[  799.363949][T18837] Bluetooth: hci11: command tx timeout
[  799.442583][T18837] Bluetooth: hci13: command tx timeout
[  799.522521][T18837] Bluetooth: hci14: command tx timeout
[  801.442815][T18837] Bluetooth: hci11: command tx timeout
[  801.442854][T18837] Bluetooth: hci12: command tx timeout
[  808.170508][T18835] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  808.198403][T18835] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  808.200286][T18835] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  808.204030][T18835] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  808.214952][T18835] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  809.215839][ T1322] ieee802154 phy0 wpan0: encryption failed: -22
[  809.215933][ T1322] ieee802154 phy1 wpan1: encryption failed: -22
[  810.334324][T18835] Bluetooth: hci15: command tx timeout
[  810.475480][T18837] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  810.510779][T18837] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  810.527113][T18837] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  810.528339][T18837] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  810.529279][T18837] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  810.746563][T18837] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  810.782595][T18837] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  810.788060][T18837] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  810.790390][T18837] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  810.791334][T18837] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  810.969192][T18835] Bluetooth: hci0: command 0x0406 tx timeout
[  812.402762][T18837] Bluetooth: hci15: command tx timeout
[  812.643072][T18837] Bluetooth: hci16: command tx timeout
[  814.201160][T18835] Bluetooth: hci17: command tx timeout
[  814.471510][T18837] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  814.485015][T18832] Bluetooth: hci15: command tx timeout
[  814.503038][T18837] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  814.505912][T18837] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  814.507319][T18837] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  814.508242][T18837] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  814.722838][T18835] Bluetooth: hci16: command tx timeout
[  815.551736][T18837] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[  815.582035][T18837] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[  815.597055][T18837] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[  815.598508][T18837] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[  815.599439][T18837] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[  816.242600][T18837] Bluetooth: hci17: command tx timeout
[  816.562435][T18835] Bluetooth: hci15: command tx timeout
[  816.562522][T18837] Bluetooth: hci18: command tx timeout
[  816.803003][T18837] Bluetooth: hci16: command tx timeout
[  817.682565][T18831] Bluetooth: hci19: command tx timeout
[  818.322762][T18831] Bluetooth: hci17: command tx timeout
[  818.642395][T18831] Bluetooth: hci18: command tx timeout
[  818.883833][T18831] Bluetooth: hci16: command tx timeout
[  819.762914][T18837] Bluetooth: hci19: command tx timeout
[  820.403047][T18837] Bluetooth: hci17: command tx timeout
[  820.722435][T18837] Bluetooth: hci18: command tx timeout
[  821.043479][   T38] INFO: task kworker/u8:13:3608 blocked for more than 143 seconds.
[  821.043506][   T38]       Not tainted syzkaller #0
[  821.043518][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  821.043528][   T38] task:kworker/u8:13   state:D stack:20264 pid:3608  tgid:3608  ppid:2      task_flags:0x4208060 flags:0x00004000
[  821.043591][   T38] Workqueue: events_unbound linkwatch_event
[  821.043628][   T38] Call Trace:
[  821.043635][   T38]  <TASK>
[  821.043651][   T38]  __schedule+0x16f3/0x4c20
[  821.043712][   T38]  ? __pfx___schedule+0x10/0x10
[  821.043762][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  821.043794][   T38]  rt_mutex_schedule+0x77/0xf0
[  821.043816][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  821.043838][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[  821.043882][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  821.043918][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  821.043942][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  821.043977][   T38]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  821.044014][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  821.044047][   T38]  ? linkwatch_event+0xe/0x60
[  821.044075][   T38]  mutex_lock_nested+0x16a/0x1d0
[  821.044097][   T38]  ? linkwatch_event+0xe/0x60
[  821.044124][   T38]  ? process_scheduled_works+0x9ef/0x17b0
[  821.044153][   T38]  linkwatch_event+0xe/0x60
[  821.044182][   T38]  process_scheduled_works+0xade/0x17b0
[  821.044244][   T38]  ? __pfx_process_scheduled_works+0x10/0x10
[  821.044292][   T38]  worker_thread+0x8a0/0xda0
[  821.044352][   T38]  kthread+0x711/0x8a0
[  821.044388][   T38]  ? __pfx_worker_thread+0x10/0x10
[  821.044414][   T38]  ? __pfx_kthread+0x10/0x10
[  821.044451][   T38]  ? __pfx_kthread+0x10/0x10
[  821.044484][   T38]  ret_from_fork+0x3f9/0x770
[  821.044515][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  821.044551][   T38]  ? __switch_to_asm+0x39/0x70
[  821.044570][   T38]  ? __switch_to_asm+0x33/0x70
[  821.044588][   T38]  ? __pfx_kthread+0x10/0x10
[  821.044620][   T38]  ret_from_fork_asm+0x1a/0x30
[  821.044660][   T38]  </TASK>
[  821.044710][   T38] INFO: task syz.2.5695:18690 blocked for more than 143 seconds.
[  821.044725][   T38]       Not tainted syzkaller #0
[  821.044736][   T38]       Blocked by coredump.
[  821.044742][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  821.044752][   T38] task:syz.2.5695      state:D stack:25128 pid:18690 tgid:18690 ppid:5845   task_flags:0x40044c flags:0x00004006
[  821.044814][   T38] Call Trace:
[  821.044820][   T38]  <TASK>
[  821.044834][   T38]  __schedule+0x16f3/0x4c20
[  821.044868][   T38]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  821.044904][   T38]  ? arch_stack_walk+0xfc/0x150
[  821.044952][   T38]  ? __pfx___schedule+0x10/0x10
[  821.045001][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  821.045031][   T38]  rt_mutex_schedule+0x77/0xf0
[  821.045051][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  821.045074][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  821.045118][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  821.045144][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  821.045168][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  821.045211][   T38]  ? __pfx___fsnotify_parent+0x10/0x10
[  821.045248][   T38]  ? tun_chr_close+0x41/0x1c0
[  821.045280][   T38]  mutex_lock_nested+0x16a/0x1d0
[  821.045305][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[  821.045333][   T38]  tun_chr_close+0x41/0x1c0
[  821.045362][   T38]  __fput+0x45b/0xa80
[  821.045399][   T38]  task_work_run+0x1d4/0x260
[  821.045424][   T38]  ? __pfx_task_work_run+0x10/0x10
[  821.045448][   T38]  ? do_exit+0x6b0/0x2300
[  821.045466][   T38]  ? kmem_cache_free+0x195/0x510
[  821.045501][   T38]  do_exit+0x6b5/0x2300
[  821.045520][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  821.045555][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.045587][   T38]  ? __pfx_do_exit+0x10/0x10
[  821.045604][   T38]  ? rt_mutex_slowunlock+0x493/0x8a0
[  821.045630][   T38]  ? rt_spin_lock+0x1bb/0x2c0
[  821.045664][   T38]  do_group_exit+0x21c/0x2d0
[  821.045691][   T38]  get_signal+0x125e/0x1310
[  821.045745][   T38]  arch_do_signal_or_restart+0x9a/0x750
[  821.045771][   T38]  ? task_work_run+0x1d4/0x260
[  821.045790][   T38]  ? blkcg_maybe_throttle_current+0x1a8/0xbc0
[  821.045811][   T38]  ? kmem_cache_free+0x402/0x510
[  821.045840][   T38]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  821.045893][   T38]  ? exit_to_user_mode_loop+0x40/0x110
[  821.045926][   T38]  exit_to_user_mode_loop+0x75/0x110
[  821.045955][   T38]  do_syscall_64+0x2bd/0x3b0
[  821.045982][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.046009][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.046031][   T38]  ? clear_bhb_loop+0x60/0xb0
[  821.046057][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.046078][   T38] RIP: 0033:0x7fdb403febe9
[  821.046096][   T38] RSP: 002b:00007ffe3e852128 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  821.046118][   T38] RAX: 0000000000000000 RBX: 00000000000950ad RCX: 00007fdb403febe9
[  821.046134][   T38] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  821.046147][   T38] RBP: 00007fdb40637da0 R08: 0000000000000001 R09: 000000033e85241f
[  821.046161][   T38] R10: 0000001b30a20000 R11: 0000000000000246 R12: 00007fdb40635fac
[  821.046176][   T38] R13: 00007fdb40635fa0 R14: ffffffffffffffff R15: 00007ffe3e852240
[  821.046213][   T38]  </TASK>
[  821.046223][   T38] INFO: task syz.5.5705:18717 blocked for more than 143 seconds.
[  821.046237][   T38]       Not tainted syzkaller #0
[  821.046247][   T38]       Blocked by coredump.
[  821.046254][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  821.046263][   T38] task:syz.5.5705      state:D stack:24352 pid:18717 tgid:18716 ppid:11889  task_flags:0x40054c flags:0x00004002
[  821.046323][   T38] Call Trace:
[  821.046329][   T38]  <TASK>
[  821.046343][   T38]  __schedule+0x16f3/0x4c20
[  821.046376][   T38]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  821.046399][   T38]  ? arch_stack_walk+0xfc/0x150
[  821.046447][   T38]  ? __pfx___schedule+0x10/0x10
[  821.046496][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  821.046528][   T38]  rt_mutex_schedule+0x77/0xf0
[  821.046548][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  821.046570][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  821.046613][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  821.046638][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  821.046638][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  821.046661][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  821.046704][   T38]  ? __pfx___fsnotify_parent+0x10/0x10
[  821.046741][   T38]  ? tun_chr_close+0x41/0x1c0
[  821.046765][   T38]  mutex_lock_nested+0x16a/0x1d0
[  821.046790][   T38]  ? __pfx_tun_chr_close+0x10/0x10
[  821.046818][   T38]  tun_chr_close+0x41/0x1c0
[  821.046847][   T38]  __fput+0x45b/0xa80
[  821.046882][   T38]  task_work_run+0x1d4/0x260
[  821.046915][   T38]  ? __pfx_task_work_run+0x10/0x10
[  821.046937][   T38]  ? do_exit+0x6b0/0x2300
[  821.046955][   T38]  ? kmem_cache_free+0x195/0x510
[  821.046990][   T38]  do_exit+0x6b5/0x2300
[  821.047009][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  821.047043][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.047075][   T38]  ? __pfx_do_exit+0x10/0x10
[  821.047092][   T38]  ? rt_mutex_slowunlock+0x493/0x8a0
[  821.047118][   T38]  ? rt_spin_lock+0x1bb/0x2c0
[  821.047164][   T38]  do_group_exit+0x21c/0x2d0
[  821.047193][   T38]  get_signal+0x125e/0x1310
[  821.047245][   T38]  arch_do_signal_or_restart+0x9a/0x750
[  821.047272][   T38]  ? __x64_sys_sendmsg+0x236/0x260
[  821.047306][   T38]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  821.047351][   T38]  ? exit_to_user_mode_loop+0x40/0x110
[  821.047383][   T38]  exit_to_user_mode_loop+0x75/0x110
[  821.047411][   T38]  do_syscall_64+0x2bd/0x3b0
[  821.047438][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.047465][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.047486][   T38]  ? clear_bhb_loop+0x60/0xb0
[  821.047512][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.047532][   T38] RIP: 0033:0x7f759bb0ebe9
[  821.047550][   T38] RSP: 002b:00007f7599d6e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  821.047570][   T38] RAX: 00000000000000c4 RBX: 00007f759bd45fa0 RCX: 00007f759bb0ebe9
[  821.047585][   T38] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  821.047599][   T38] RBP: 00007f759bb91e19 R08: 0000000000000000 R09: 0000000000000000
[  821.047613][   T38] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  821.047626][   T38] R13: 00007f759bd46038 R14: 00007f759bd45fa0 R15: 00007ffd53018db8
[  821.047661][   T38]  </TASK>
[  821.047672][   T38] INFO: task syz-executor:18746 blocked for more than 143 seconds.
[  821.047687][   T38]       Not tainted syzkaller #0
[  821.047697][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  821.047706][   T38] task:syz-executor    state:D stack:22632 pid:18746 tgid:18746 ppid:1      task_flags:0x400140 flags:0x00004004
[  821.047764][   T38] Call Trace:
[  821.047771][   T38]  <TASK>
[  821.047785][   T38]  __schedule+0x16f3/0x4c20
[  821.047834][   T38]  ? __kernel_text_address+0xd/0x40
[  821.047860][   T38]  ? __pfx___schedule+0x10/0x10
[  821.047917][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  821.047950][   T38]  rt_mutex_schedule+0x77/0xf0
[  821.047969][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  821.047992][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  821.048036][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  821.048061][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  821.048086][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  821.048106][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.048146][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.048173][   T38]  ? safesetid_security_capable+0xa9/0x1a0
[  821.048201][   T38]  ? bpf_lsm_capable+0x9/0x20
[  821.048226][   T38]  ? security_capable+0x7e/0x2e0
[  821.048260][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.048283][   T38]  mutex_lock_nested+0x16a/0x1d0
[  821.048311][   T38]  rtnl_newlink+0x8db/0x1c70
[  821.048346][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.048376][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.048412][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.048520][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.048579][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.048605][   T38]  rtnetlink_rcv_msg+0x7cc/0xb70
[  821.048629][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.048657][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  821.048681][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.048728][   T38]  netlink_rcv_skb+0x205/0x470
[  821.048752][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.048780][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.048808][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  821.048849][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[  821.048893][   T38]  netlink_unicast+0x843/0xa10
[  821.048928][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[  821.048955][   T38]  ? netlink_sendmsg+0x642/0xb30
[  821.048978][   T38]  ? skb_put+0x11b/0x210
[  821.049011][   T38]  netlink_sendmsg+0x805/0xb30
[  821.049050][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.049087][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  821.049107][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.049135][   T38]  __sock_sendmsg+0x219/0x270
[  821.049164][   T38]  __sys_sendto+0x3c7/0x520
[  821.049195][   T38]  ? __pfx___sys_sendto+0x10/0x10
[  821.049239][   T38]  ? blkcg_maybe_throttle_current+0x1a8/0xbc0
[  821.049282][   T38]  ? rcu_is_watching+0x15/0xb0
[  821.049320][   T38]  __x64_sys_sendto+0xde/0x100
[  821.049352][   T38]  do_syscall_64+0xfa/0x3b0
[  821.049379][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.049405][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.049426][   T38]  ? clear_bhb_loop+0x60/0xb0
[  821.049452][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.049472][   T38] RIP: 0033:0x7eff5bcf0a7c
[  821.049489][   T38] RSP: 002b:00007fff18336480 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  821.049510][   T38] RAX: ffffffffffffffda RBX: 00007eff5ca54620 RCX: 00007eff5bcf0a7c
[  821.049526][   T38] RDX: 000000000000002c RSI: 00007eff5ca54670 RDI: 0000000000000003
[  821.049549][   T38] RBP: 0000000000000000 R08: 00007fff183364d4 R09: 000000000000000c
[  821.049562][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  821.049575][   T38] R13: 0000000000000000 R14: 00007eff5ca54670 R15: 0000000000000000
[  821.049609][   T38]  </TASK>
[  821.049617][   T38] INFO: task syz-executor:18750 blocked for more than 143 seconds.
[  821.049632][   T38]       Not tainted syzkaller #0
[  821.049640][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  821.049650][   T38] task:syz-executor    state:D stack:22312 pid:18750 tgid:18750 ppid:1      task_flags:0x400140 flags:0x00004004
[  821.049706][   T38] Call Trace:
[  821.049713][   T38]  <TASK>
[  821.049726][   T38]  __schedule+0x16f3/0x4c20
[  821.049776][   T38]  ? __kernel_text_address+0xd/0x40
[  821.049803][   T38]  ? __pfx___schedule+0x10/0x10
[  821.049851][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  821.049882][   T38]  rt_mutex_schedule+0x77/0xf0
[  821.049911][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  821.049934][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[  821.049978][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  821.050003][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  821.050027][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  821.050063][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.050095][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  821.050125][   T38]  ? bpf_lsm_capable+0x9/0x20
[  821.050150][   T38]  ? security_capable+0x7e/0x2e0
[  821.050184][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.050206][   T38]  mutex_lock_nested+0x16a/0x1d0
[  821.050227][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.050257][   T38]  rtnl_newlink+0x8db/0x1c70
[  821.050280][   T38]  ? unwind_get_return_address+0x4d/0x90
[  821.050326][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.050354][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.050397][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.050440][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.050492][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  821.050528][   T38]  ? is_bpf_text_address+0x292/0x2b0
[  821.050555][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  821.050594][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.050652][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.050677][   T38]  rtnetlink_rcv_msg+0x7cc/0xb70
[  821.050702][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.050731][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  821.050756][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.050802][   T38]  netlink_rcv_skb+0x205/0x470
[  821.050826][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.050854][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.050881][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  821.050931][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[  821.050967][   T38]  netlink_unicast+0x843/0xa10
[  821.051002][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[  821.051028][   T38]  ? netlink_sendmsg+0x642/0xb30
[  821.051052][   T38]  ? skb_put+0x11b/0x210
[  821.051084][   T38]  netlink_sendmsg+0x805/0xb30
[  821.051122][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.051159][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  821.051179][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.051207][   T38]  __sock_sendmsg+0x219/0x270
[  821.051234][   T38]  __sys_sendto+0x3c7/0x520
[  821.051266][   T38]  ? __pfx___sys_sendto+0x10/0x10
[  821.051326][   T38]  ? exc_page_fault+0x76/0xf0
[  821.051358][   T38]  ? do_user_addr_fault+0xc8a/0x1390
[  821.051389][   T38]  __x64_sys_sendto+0xde/0x100
[  821.051422][   T38]  do_syscall_64+0xfa/0x3b0
[  821.051456][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.051483][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.051503][   T38]  ? clear_bhb_loop+0x60/0xb0
[  821.051529][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.051550][   T38] RIP: 0033:0x7f5532f40a7c
[  821.051567][   T38] RSP: 002b:00007ffc95d08a00 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  821.051587][   T38] RAX: ffffffffffffffda RBX: 00007f5533ca4620 RCX: 00007f5532f40a7c
[  821.051603][   T38] RDX: 000000000000003c RSI: 00007f5533ca4670 RDI: 0000000000000003
[  821.051616][   T38] RBP: 0000000000000000 R08: 00007ffc95d08a54 R09: 000000000000000c
[  821.051629][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  821.051641][   T38] R13: 0000000000000000 R14: 00007f5533ca4670 R15: 0000000000000000
[  821.051677][   T38]  </TASK>
[  821.051685][   T38] INFO: task syz-executor:18752 blocked for more than 143 seconds.
[  821.051699][   T38]       Not tainted syzkaller #0
[  821.051709][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  821.051718][   T38] task:syz-executor    state:D stack:22632 pid:18752 tgid:18752 ppid:1      task_flags:0x400140 flags:0x00004004
[  821.051775][   T38] Call Trace:
[  821.051781][   T38]  <TASK>
[  821.051795][   T38]  __schedule+0x16f3/0x4c20
[  821.051845][   T38]  ? __kernel_text_address+0xd/0x40
[  821.051871][   T38]  ? __pfx___schedule+0x10/0x10
[  821.051928][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  821.051959][   T38]  rt_mutex_schedule+0x77/0xf0
[  821.051980][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  821.052002][   T38]  ? task_blocks_on_rt_mutex+0xf12/0x1380
[  821.052045][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  821.052071][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  821.052095][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  821.052115][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.208783][T18837] Bluetooth: hci3: command 0x0406 tx timeout
[  821.209112][T18837] Bluetooth: hci10: command 0x0406 tx timeout
[  821.209227][T18837] Bluetooth: hci2: command 0x0406 tx timeout
[  821.209335][T18837] Bluetooth: hci5: command 0x0406 tx timeout
[  821.442368][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.442412][   T38]  ? safesetid_security_capable+0xa9/0x1a0
[  821.442443][   T38]  ? bpf_lsm_capable+0x9/0x20
[  821.442469][   T38]  ? security_capable+0x7e/0x2e0
[  821.442503][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.442525][   T38]  mutex_lock_nested+0x16a/0x1d0
[  821.442557][   T38]  rtnl_newlink+0x8db/0x1c70
[  821.442593][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.442624][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.442669][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.442704][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.442746][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.442799][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  821.442834][   T38]  ? is_bpf_text_address+0x292/0x2b0
[  821.442862][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  821.442900][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.442958][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.442983][   T38]  rtnetlink_rcv_msg+0x7cc/0xb70
[  821.443008][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.443038][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  821.443062][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.443110][   T38]  netlink_rcv_skb+0x205/0x470
[  821.443134][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.443158][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.443186][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  821.443225][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[  821.443261][   T38]  netlink_unicast+0x843/0xa10
[  821.443296][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[  821.443323][   T38]  ? netlink_sendmsg+0x642/0xb30
[  821.443346][   T38]  ? skb_put+0x11b/0x210
[  821.443379][   T38]  netlink_sendmsg+0x805/0xb30
[  821.443418][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.443455][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  821.443477][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.443504][   T38]  __sock_sendmsg+0x219/0x270
[  821.443533][   T38]  __sys_sendto+0x3c7/0x520
[  821.443565][   T38]  ? __pfx___sys_sendto+0x10/0x10
[  821.443609][   T38]  ? blkcg_maybe_throttle_current+0x1a8/0xbc0
[  821.443660][   T38]  ? rcu_is_watching+0x15/0xb0
[  821.443698][   T38]  __x64_sys_sendto+0xde/0x100
[  821.443731][   T38]  do_syscall_64+0xfa/0x3b0
[  821.443759][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.443786][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.443808][   T38]  ? clear_bhb_loop+0x60/0xb0
[  821.443834][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.443855][   T38] RIP: 0033:0x7fd2d9e00a7c
[  821.443875][   T38] RSP: 002b:00007ffc1f2e08f0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  821.443898][   T38] RAX: ffffffffffffffda RBX: 00007fd2dab64620 RCX: 00007fd2d9e00a7c
[  821.443915][   T38] RDX: 000000000000003c RSI: 00007fd2dab64670 RDI: 0000000000000003
[  821.443930][   T38] RBP: 0000000000000000 R08: 00007ffc1f2e0944 R09: 000000000000000c
[  821.443944][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  821.443957][   T38] R13: 0000000000000000 R14: 00007fd2dab64670 R15: 0000000000000000
[  821.443992][   T38]  </TASK>
[  821.444007][   T38] INFO: task syz-executor:18755 blocked for more than 143 seconds.
[  821.444023][   T38]       Not tainted syzkaller #0
[  821.444034][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  821.444044][   T38] task:syz-executor    state:D stack:22632 pid:18755 tgid:18755 ppid:1      task_flags:0x400140 flags:0x00004004
[  821.444107][   T38] Call Trace:
[  821.444115][   T38]  <TASK>
[  821.444129][   T38]  __schedule+0x16f3/0x4c20
[  821.444180][   T38]  ? __kernel_text_address+0xd/0x40
[  821.444207][   T38]  ? __pfx___schedule+0x10/0x10
[  821.444255][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  821.444287][   T38]  rt_mutex_schedule+0x77/0xf0
[  821.444308][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  821.444331][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[  821.444375][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  821.444402][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  821.444426][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  821.444461][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.444492][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  821.444522][   T38]  ? bpf_lsm_capable+0x9/0x20
[  821.444547][   T38]  ? security_capable+0x7e/0x2e0
[  821.444581][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.444603][   T38]  mutex_lock_nested+0x16a/0x1d0
[  821.444624][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.444662][   T38]  rtnl_newlink+0x8db/0x1c70
[  821.444684][   T38]  ? unwind_get_return_address+0x4d/0x90
[  821.444730][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.444759][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.444801][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.444843][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.444894][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  821.444927][   T38]  ? is_bpf_text_address+0x292/0x2b0
[  821.444954][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  821.444993][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.445051][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.445076][   T38]  rtnetlink_rcv_msg+0x7cc/0xb70
[  821.445100][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.445129][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  821.445154][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.445202][   T38]  netlink_rcv_skb+0x205/0x470
[  821.445224][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.445252][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.445286][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  821.445327][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[  821.445363][   T38]  netlink_unicast+0x843/0xa10
[  821.445397][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[  821.445424][   T38]  ? netlink_sendmsg+0x642/0xb30
[  821.445448][   T38]  ? skb_put+0x11b/0x210
[  821.445480][   T38]  netlink_sendmsg+0x805/0xb30
[  821.445518][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.445556][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  821.445576][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.445604][   T38]  __sock_sendmsg+0x219/0x270
[  821.445642][   T38]  __sys_sendto+0x3c7/0x520
[  821.445672][   T38]  ? __pfx___sys_sendto+0x10/0x10
[  821.445732][   T38]  ? exc_page_fault+0x76/0xf0
[  821.445764][   T38]  ? do_user_addr_fault+0xc8a/0x1390
[  821.445795][   T38]  __x64_sys_sendto+0xde/0x100
[  821.445828][   T38]  do_syscall_64+0xfa/0x3b0
[  821.445855][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.445881][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.445901][   T38]  ? clear_bhb_loop+0x60/0xb0
[  821.445927][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.445948][   T38] RIP: 0033:0x7f856f330a7c
[  821.445965][   T38] RSP: 002b:00007ffd6e2ec630 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  821.445986][   T38] RAX: ffffffffffffffda RBX: 00007f8570094620 RCX: 00007f856f330a7c
[  821.446002][   T38] RDX: 000000000000003c RSI: 00007f8570094670 RDI: 0000000000000003
[  821.446015][   T38] RBP: 0000000000000000 R08: 00007ffd6e2ec684 R09: 000000000000000c
[  821.446029][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  821.446042][   T38] R13: 0000000000000000 R14: 00007f8570094670 R15: 0000000000000000
[  821.446076][   T38]  </TASK>
[  821.446084][   T38] INFO: task syz-executor:18758 blocked for more than 143 seconds.
[  821.446099][   T38]       Not tainted syzkaller #0
[  821.446109][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  821.446119][   T38] task:syz-executor    state:D stack:22632 pid:18758 tgid:18758 ppid:1      task_flags:0x400140 flags:0x00004004
[  821.446176][   T38] Call Trace:
[  821.446182][   T38]  <TASK>
[  821.446196][   T38]  __schedule+0x16f3/0x4c20
[  821.446245][   T38]  ? __kernel_text_address+0xd/0x40
[  821.446272][   T38]  ? __pfx___schedule+0x10/0x10
[  821.446321][   T38]  ? _raw_spin_unlock_irq+0x23/0x50
[  821.446352][   T38]  rt_mutex_schedule+0x77/0xf0
[  821.446372][   T38]  rt_mutex_slowlock_block+0x5ba/0x6d0
[  821.446395][   T38]  ? task_blocks_on_rt_mutex+0x78c/0x1380
[  821.446439][   T38]  rt_mutex_slowlock+0x2b1/0x6e0
[  821.446464][   T38]  ? rt_mutex_slowlock+0x1c9/0x6e0
[  821.446488][   T38]  ? __pfx_rt_mutex_slowlock+0x10/0x10
[  821.446522][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.446552][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  821.446581][   T38]  ? bpf_lsm_capable+0x9/0x20
[  821.446605][   T38]  ? security_capable+0x7e/0x2e0
[  821.446647][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.446670][   T38]  mutex_lock_nested+0x16a/0x1d0
[  821.446690][   T38]  ? rtnl_newlink+0x8db/0x1c70
[  821.446720][   T38]  rtnl_newlink+0x8db/0x1c70
[  821.446755][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.446784][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.446820][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.446856][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.446903][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.446956][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  821.446990][   T38]  ? is_bpf_text_address+0x292/0x2b0
[  821.447017][   T38]  ? is_bpf_text_address+0x26/0x2b0
[  821.447056][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.447114][   T38]  ? __pfx_rtnl_newlink+0x10/0x10
[  821.447139][   T38]  rtnetlink_rcv_msg+0x7cc/0xb70
[  821.447164][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.447193][   T38]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  821.447218][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.447264][   T38]  netlink_rcv_skb+0x205/0x470
[  821.447287][   T38]  ? __lock_acquire+0xab9/0xd20
[  821.447315][   T38]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  821.447342][   T38]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  821.447383][   T38]  ? netlink_deliver_tap+0x2e/0x1b0
[  821.447419][   T38]  netlink_unicast+0x843/0xa10
[  821.447453][   T38]  ? __pfx_netlink_unicast+0x10/0x10
[  821.447479][   T38]  ? netlink_sendmsg+0x642/0xb30
[  821.447503][   T38]  ? skb_put+0x11b/0x210
[  821.447535][   T38]  netlink_sendmsg+0x805/0xb30
[  821.447573][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.447610][   T38]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  821.447638][   T38]  ? __pfx_netlink_sendmsg+0x10/0x10
[  821.447666][   T38]  __sock_sendmsg+0x219/0x270
[  821.447693][   T38]  __sys_sendto+0x3c7/0x520
[  821.447724][   T38]  ? __pfx___sys_sendto+0x10/0x10
[  821.447769][   T38]  ? blkcg_maybe_throttle_current+0x1a8/0xbc0
[  821.447812][   T38]  ? rcu_is_watching+0x15/0xb0
[  821.447849][   T38]  __x64_sys_sendto+0xde/0x100
[  821.447881][   T38]  do_syscall_64+0xfa/0x3b0
[  821.447906][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.447932][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.447953][   T38]  ? clear_bhb_loop+0x60/0xb0
[  821.447979][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  821.448000][   T38] RIP: 0033:0x7f132e0c0a7c
[  821.448017][   T38] RSP: 002b:00007ffc54242bf0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  821.448038][   T38] RAX: ffffffffffffffda RBX: 00007f132ee24620 RCX: 00007f132e0c0a7c
[  821.448053][   T38] RDX: 000000000000003c RSI: 00007f132ee24670 RDI: 0000000000000003
[  821.448067][   T38] RBP: 0000000000000000 R08: 00007ffc54242c44 R09: 000000000000000c
[  821.448080][   T38] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  821.448093][   T38] R13: 0000000000000000 R14: 00007f132ee24670 R15: 0000000000000000
[  821.448128][   T38]  </TASK>
[  821.448154][   T38] 
[  821.448154][   T38] Showing all locks held in the system:
[  821.448165][   T38] 5 locks held by kworker/u8:1/13:
[  821.448179][   T38] 4 locks held by pr/legacy/17:
[  821.448190][   T38] 6 locks held by rcuc/0/20:
[  821.448204][   T38] 1 lock held by khungtaskd/38:
[  821.448215][   T38]  #0: ffffffff8d9a8bc0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  821.448267][   T38] 3 locks held by kworker/u8:2/43:
[  821.448279][   T38]  #0: ffff88814d70a138 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  821.448332][   T38]  #1: ffffc90000b47bc0 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  821.448386][   T38]  #2: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[  821.448459][   T38] 2 locks held by kworker/u8:10/3519:
[  821.448472][   T38] 3 locks held by kworker/u8:13/3608:
[  821.448484][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  821.448536][   T38]  #1: ffffc9000d877bc0 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  821.448588][   T38]  #2: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[  821.448656][   T38] 2 locks held by getty/5603:
[  821.448667][   T38]  #0: ffff88823bf5e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  821.448723][   T38]  #1: ffffc90003e7e2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1410
[  821.448774][   T38] 1 lock held by sshd-session/5825:
[  821.448785][   T38]  #0: ffff88803c2638d8 (&pipe->rd_wait){+.+.}-{3:3}, at: remove_wait_queue+0x23/0x110
[  821.448839][   T38] 2 locks held by syz-executor/5826:
[  821.448862][   T38] 1 lock held by syz.2.5695/18690:
[  821.448874][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[  821.448926][   T38] 1 lock held by syz.4.5700/18706:
[  821.448938][   T38]  #0: ffffffff8d9ae570 (rcu_state.barrier_mutex){+.+.}-{4:4}, at: rcu_barrier+0x4c/0x570
[  821.448985][   T38] 1 lock held by syz.5.5705/18717:
[  821.448996][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[  821.449049][   T38] 1 lock held by syz.3.5715/18738:
[  821.449060][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[  821.449112][   T38] 1 lock held by syz.6.5716/18740:
[  821.449123][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x41/0x1c0
[  821.449175][   T38] 2 locks held by kworker/0:4/18742:
[  821.449187][   T38] 2 locks held by syz-executor/18746:
[  821.449199][   T38]  #0: ffffffff8e43ac60 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[  821.449256][   T38]  #1: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[  821.449307][   T38] 2 locks held by syz-executor/18750:
[  821.449319][   T38]  #0: ffffffff8f1d6f40 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[  821.449375][   T38]  #1: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[  821.449425][   T38] 2 locks held by syz-executor/18752:
[  821.449436][   T38]  #0: ffffffff8f1d63e8 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[  821.449493][   T38]  #1: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[  821.449543][   T38] 2 locks held by syz-executor/18755:
[  821.449554][   T38]  #0: ffffffff8f1d6f40 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[  821.449612][   T38]  #1: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[  821.449670][   T38] 2 locks held by syz-executor/18758:
[  821.449682][   T38]  #0: ffffffff8f1f2cc0 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[  821.449739][   T38]  #1: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[  821.449792][   T38] 3 locks held by kworker/1:4/18788:
[  821.449803][   T38]  #0: ffff888019898538 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  821.449855][   T38]  #1: ffffc9000ccc7bc0 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  821.449907][   T38]  #2: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20
[  821.449966][   T38] 1 lock held by syz-executor/18792:
[  821.449978][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.450035][   T38] 1 lock held by syz-executor/18796:
[  821.450046][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.450104][   T38] 1 lock held by syz-executor/18798:
[  821.450116][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.450172][   T38] 5 locks held by kworker/u9:1/18799:
[  821.450184][   T38]  #0: ffff88805d742138 ((wq_completion)hci10){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  821.450236][   T38]  #1: ffffc90003e87bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  821.450288][   T38]  #2: ffff88805de60e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  821.450347][   T38]  #3: ffff88805de600a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[  821.450400][   T38]  #4: ffffffff8ee39c78 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  821.450453][   T38] 1 lock held by syz-executor/18802:
[  821.450464][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.450521][   T38] 5 locks held by kworker/u9:2/18803:
[  821.450532][   T38]  #0: ffff88802350a938 ((wq_completion)hci3#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  821.450590][   T38]  #1: ffffc90003e47bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  821.450652][   T38]  #2: ffff88803b9b8e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  821.450710][   T38]  #3: ffff88803b9b80a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[  821.450763][   T38]  #4: ffffffff8ee39c78 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  821.450816][   T38] 1 lock held by syz-executor/18806:
[  821.450827][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.450884][   T38] 1 lock held by syz-executor/18823:
[  821.450895][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.450952][   T38] 1 lock held by syz-executor/18827:
[  821.450963][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.451020][   T38] 1 lock held by syz-executor/18829:
[  821.451031][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.451088][   T38] 5 locks held by kworker/u9:6/18832:
[  821.451100][   T38]  #0: ffff88802350f938 ((wq_completion)hci2#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  821.451156][   T38]  #1: ffffc90003c17bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  821.451208][   T38]  #2: ffff888027770e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  821.451265][   T38]  #3: ffff8880277700a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[  821.451316][   T38]  #4: ffffffff8ee39c78 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  821.451367][   T38] 1 lock held by syz-executor/18834:
[  821.451378][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.451434][   T38] 6 locks held by kworker/u9:7/18835:
[  821.451446][   T38]  #0: ffff888039c0b938 ((wq_completion)hci5#3){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  821.451502][   T38]  #1: ffffc90003be7bc0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  821.451552][   T38]  #2: ffff8880243c0e80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1d4/0x3a0
[  821.451610][   T38]  #3: ffff8880243c00a8 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x242/0xe30
[  821.451669][   T38]  #4: ffffffff8ee39c78 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x165/0x310
[  821.451721][   T38]  #5: ffff88805bde1358 (&conn->lock#2){+.+.}-{4:4}, at: l2cap_conn_del+0x70/0x680
[  821.451781][   T38] 1 lock held by syz-executor/18839:
[  821.451792][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.451852][   T38] 1 lock held by syz-executor/18857:
[  821.451863][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.451919][   T38] 1 lock held by syz-executor/18861:
[  821.451931][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.451988][   T38] 1 lock held by syz-executor/18863:
[  821.451999][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.452058][   T38] 1 lock held by syz-executor/18866:
[  821.452070][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.452127][   T38] 1 lock held by syz-executor/18869:
[  821.452139][   T38]  #0: ffffffff8ecd22f8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x3b0/0x18b0
[  821.822290][   T38] 
[  821.822296][   T38] =============================================
[  821.822296][   T38] 
[  821.822306][   T38] NMI backtrace for cpu 0
[  821.822320][   T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  821.822342][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  821.822354][   T38] Call Trace:
[  821.822363][   T38]  <TASK>
[  821.822371][   T38]  dump_stack_lvl+0x189/0x250
[  821.822405][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[  821.822434][   T38]  ? __pfx__printk+0x10/0x10
[  821.822469][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[  821.822495][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  821.822520][   T38]  ? __pfx__printk+0x10/0x10
[  821.822554][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  821.822582][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  821.822606][   T38]  watchdog+0xf93/0xfe0
[  821.822637][   T38]  ? watchdog+0x1de/0xfe0
[  821.822667][   T38]  kthread+0x711/0x8a0
[  821.822696][   T38]  ? __pfx_watchdog+0x10/0x10
[  821.822716][   T38]  ? __pfx_kthread+0x10/0x10
[  821.822746][   T38]  ? __pfx_kthread+0x10/0x10
[  821.822771][   T38]  ret_from_fork+0x3f9/0x770
[  821.822796][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  821.822824][   T38]  ? __switch_to_asm+0x39/0x70
[  821.822840][   T38]  ? __switch_to_asm+0x33/0x70
[  821.822855][   T38]  ? __pfx_kthread+0x10/0x10
[  821.822880][   T38]  ret_from_fork_asm+0x1a/0x30
[  821.822912][   T38]  </TASK>
[  821.822919][   T38] Sending NMI from CPU 0 to CPUs 1:
[  821.822946][    C1] NMI backtrace for cpu 1
[  821.822961][    C1] CPU: 1 UID: 0 PID: 17 Comm: pr/legacy Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  821.822980][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  821.822989][    C1] RIP: 0010:io_serial_in+0x77/0xc0
[  821.823009][    C1] Code: e8 de ae 7f fc 44 89 f9 d3 e3 49 83 ee 80 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 9f e5 de fc 41 03 1e 89 da ec <0f> b6 c0 5b 41 5c 41 5e 41 5f c3 cc cc cc cc cc 44 89 f9 80 e1 07
[  821.823023][    C1] RSP: 0018:ffffc90000167890 EFLAGS: 00000202
[  821.823038][    C1] RAX: 1ffffffff3275000 RBX: 00000000000003fd RCX: 0000000000000000
[  821.823051][    C1] RDX: 00000000000003fd RSI: 0000000000000000 RDI: 0000000000000000
[  821.823061][    C1] RBP: ffffffff993a8850 R08: 0000000000000000 R09: 0000000000000000
[  821.823071][    C1] R10: dffffc0000000000 R11: ffffffff853eafa0 R12: dffffc0000000000
[  821.823083][    C1] R13: 0000000000000000 R14: ffffffff993a85c0 R15: 0000000000000000
[  821.823094][    C1] FS:  0000000000000000(0000) GS:ffff8881269c2000(0000) knlGS:0000000000000000
[  821.823108][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  821.823120][    C1] CR2: 00007f3f66717d60 CR3: 000000000d7a6000 CR4: 00000000003526f0
[  821.823137][    C1] Call Trace:
[  821.823143][    C1]  <TASK>
[  821.823151][    C1]  wait_for_lsr+0x1aa/0x2f0
[  821.823173][    C1]  serial8250_console_write+0x11bd/0x1b40
[  821.823204][    C1]  ? __pfx_serial8250_console_write+0x10/0x10
[  821.823227][    C1]  ? console_flush_all+0x13a/0xcd0
[  821.823248][    C1]  ? console_flush_all+0x476/0xcd0
[  821.823266][    C1]  console_flush_all+0x695/0xcd0
[  821.823285][    C1]  ? console_flush_all+0x13a/0xcd0
[  821.823304][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  821.823321][    C1]  ? __lock_acquire+0xab9/0xd20
[  821.823346][    C1]  __console_flush_and_unlock+0xa4/0x240
[  821.823364][    C1]  ? __pfx___console_flush_and_unlock+0x10/0x10
[  821.823386][    C1]  legacy_kthread_func+0x13b/0x1a0
[  821.823406][    C1]  ? __pfx_legacy_kthread_func+0x10/0x10
[  821.823425][    C1]  ? __pfx_autoremove_wake_function+0x10/0x10
[  821.823444][    C1]  ? __kthread_parkme+0x7b/0x200
[  821.823463][    C1]  ? __kthread_parkme+0x1a1/0x200
[  821.823486][    C1]  kthread+0x711/0x8a0
[  821.823508][    C1]  ? __pfx_legacy_kthread_func+0x10/0x10
[  821.823527][    C1]  ? __pfx_kthread+0x10/0x10
[  821.823551][    C1]  ? __pfx_kthread+0x10/0x10
[  821.823572][    C1]  ret_from_fork+0x3f9/0x770
[  821.823592][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  821.823614][    C1]  ? __switch_to_asm+0x39/0x70
[  821.823628][    C1]  ? __switch_to_asm+0x33/0x70
[  821.823642][    C1]  ? __pfx_kthread+0x10/0x10
[  821.823663][    C1]  ret_from_fork_asm+0x1a/0x30
[  821.823685][    C1]  </TASK>
[  821.823941][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[  821.823955][   T38] CPU: 0 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  821.823975][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  821.823985][   T38] Call Trace:
[  821.823992][   T38]  <TASK>
[  821.824000][   T38]  dump_stack_lvl+0x99/0x250
[  821.824025][   T38]  ? __asan_memcpy+0x40/0x70
[  821.824044][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[  821.824069][   T38]  ? __pfx__printk+0x10/0x10
[  821.824100][   T38]  vpanic+0x281/0x750
[  821.824128][   T38]  ? __pfx_vpanic+0x10/0x10
[  821.824150][   T38]  ? __x2apic_send_IPI_mask+0x1e4/0x260
[  821.824168][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[  821.824202][   T38]  panic+0xb9/0xc0
[  821.824226][   T38]  ? __pfx_panic+0x10/0x10
[  821.824254][   T38]  ? irq_work_queue+0xc3/0x140
[  821.824281][   T38]  ? nmi_trigger_cpumask_backtrace+0x234/0x300
[  821.824303][   T38]  watchdog+0xfd2/0xfe0
[  821.824329][   T38]  ? watchdog+0x1de/0xfe0
[  821.824356][   T38]  kthread+0x711/0x8a0
[  821.824384][   T38]  ? __pfx_watchdog+0x10/0x10
[  821.824405][   T38]  ? __pfx_kthread+0x10/0x10
[  821.824435][   T38]  ? __pfx_kthread+0x10/0x10
[  821.824461][   T38]  ret_from_fork+0x3f9/0x770
[  821.824485][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[  821.824513][   T38]  ? __switch_to_asm+0x39/0x70
[  821.824528][   T38]  ? __switch_to_asm+0x33/0x70
[  821.824550][   T38]  ? __pfx_kthread+0x10/0x10
[  821.824577][   T38]  ret_from_fork_asm+0x1a/0x30
[  821.824608][   T38]  </TASK>
[  821.824917][   T38] Kernel Offset: disabled