last executing test programs:

2m12.172211819s ago: executing program 4 (id=701):
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r1, 0x3000)
write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f00000002c0)={0x1, 0x5}, 0x2)

2m12.062590024s ago: executing program 4 (id=704):
syz_emit_ethernet(0x2a, &(0x7f00000002c0)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaa0008004500001c006400000002907800000000e00000021200907800000010cb932afb23bfa7faab41f59db51553bc046bf620b8a2be7917da7c74212241c24de51c6c4aae7ebbe2223ad6bb72d0f650bf1c422443cdec22fbba193aeb4efe0f62c15b72a9bcc9d86d514323105c30aa1684d9728b0f3a6c75105c67648be634db24"], 0x0)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x8000, 0x0)
r1 = dup(r0)
ioctl$PTP_EXTTS_REQUEST2(r1, 0xc0603d06, &(0x7f0000000300))

2m11.881415096s ago: executing program 4 (id=709):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x3}, 0x80, &(0x7f00000002c0)=[{0x0}, {&(0x7f0000003bc0)="1c393502dda1a67d93b1", 0xa}], 0x2}, 0x9cdc2384056b48b8)

2m11.745970095s ago: executing program 4 (id=714):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101)

2m10.702894206s ago: executing program 4 (id=736):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000200)=0x10)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

2m10.613359107s ago: executing program 4 (id=739):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x9a1241, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4048aecb, &(0x7f0000001440)={{0x1, 0x0, 0x80, {0xffffffffffffffff, 0xdddd0000}}, "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", "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"})

1m55.332363367s ago: executing program 32 (id=739):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x9a1241, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4048aecb, &(0x7f0000001440)={{0x1, 0x0, 0x80, {0xffffffffffffffff, 0xdddd0000}}, "cb31455c9ea4288a70a2a6bb8068fd95dd041cf5b177a3bffe992dfbbdf959487337b92336ce1de32e7695c411c0bf9f852d2d71192f33001fd51f5b396a55cb98699a09d21648c4cb30d9d7e3e397c7a3c041c76c72385a46c48c5302848c3696facce956952c2a85822ddf20434ccee5806294ed563ff3a972cddf6ef16ddace933d8a5adea40cd3ad40c9873c29368838e815ff59723519154856b2d5cd9cd79a97dc2fa08dada1175817886e5f9e7aa3dca783a44c667a4806826570ec6acb57d65efc313a384e11fb633dee17ee600145f2cb3103384606140021be766fcb7fa029f0513bbb466177ca1068192550bbf4e6f5694aec747a16e27688a988fa595bca1761b8e88a7dbcaeaf9758b1faf880dd6f1b6eb4c7beb0582b4007f1a67db1352407adbe1456bfe98e94fd825b9419d74f63cdeb6c6976de1890d773f0c8088d2bd48a838cf5b87f5ddf926352960fb978874b0f175acfa55ddfe84de3fc9f75b58bf7a35f33d3c43ed5e3224e92751fa1b43f94f64b681163ef1360a3f3bb7403afc67a188b2104b45c5814aaa9e218552498bf85f4b221d9acc32a331f5f8c109cc9f335ff4e418ab30b54b91fc8211fcbaf64716afdc4b6d0417e04d5723e4675d282b36bef3a3a19e855029e7a9e8b86a6df19332b63e9d8a0f22d96ac230c67657a4e7f7afab91dc0ce751b68980e5a4f6d9d6d9b98802ba9d8576640eea61b8c308a1745df61560e56108bececa3016d93246fdc8b768634e8319b1ffde103c07378f8f4927baba05e992a4b5af0958a7e495e7ce53f7917451d15a963ca14f5cdc4563775688b6533a4b97e0f84b0a33c30077b20805c1f42cc7815efada97ad59ac486bc9e0ee386b49cb97b47fbf8f919f06c75a49636795054b5ebee3e91602c90d7f4db49220affe56d56b96e4f662b2bf36dae482ffc7ba21cbc55e21b73309d6b7aa5509defcb77c236e43b579c61eae5c8d8f8fa71ad876b96069f2e4352c8aaf16e299d21edf5434c0cd9b25cdc9210fb0de759b1dd3fc7fe4c7118bbde72a5617dff21f7a5036448fba7fe41aaee0c289cd076d757e47b0713b236f6f141ba0112c9312b3ec853aabafdf1eb2cbb517d2d7352725f557214d27d9a340af0128fc960a4ea64c933b0d8dd226b6e024471aaac8a7074b2a8695ab990fabba5bf315d246fbfe4260f1fffe54814e33b6235c5b4095437298858909bcbd40a8a286d1bedb06b7b1775bce0a5bca19b0a5c2fa8dbf7b155ae0a43c5086422e5bacb94047e150451f5996420b0d4a697f59decb49900b2b9c13aade536933e14d672c21a35cb68572c3de02f8edd941bff4b8674b91f7aebf35f056a8d388f67f8ef7cfaf6b28fe745831ef41def1839791647016932c70685752851327f1837d2f1e9d8f93443eefed2317119c8152ca451a5d3aeb253fb484283f52e5db9f61f059ad3c217a860ee0571d254483501b00699208c7fa5571cf58b9715c954115bc2db0af28361938bb95ced7370c8cbb6141ef62fdbf369dfc4eccd98ab9886d79a52cbf91a27dd0f4b29940492e860fb94654dea54fad6290570760e3b59a0cf28053732472dc313b7fedfc583fc702a880971dc61286370aaf167810455cce7654dc4325a41d9d1944abcdc4d81378f1e96a8f94cd95b886a01f086e379601504219d57d531ba34e1ba0905785fb629c61f6b940a652cdee9dbef12b7fcde087b92816db3386a5769049ba00788e31de4ddbb8b56de1fbe3a5e671728effda7cfd0b650cf5df2faf22670812efbbb548e47cbf36c64e05a7877820f08948ceedb35e12a4a143ee0101a7bf0a00a4062b50c39020669700adf739a6f75352a45fd1373d3e85c3867170373f0c7a794d8590f4c22ae62d438ec365b0f6a15cb2ffe0fc6f57185e1760761bd4370027c01dfad0502f00b6898115df3c530d0b0b4a64e623fd580b528a733e4c881cf5843a975a97f92a7833527887c79fa8eec82b9526a15c6c5f2972083ce8aec735810580ffa4ea2cef4823aee044dd70927f7c07bba18b930006aa86ae7399ac6b4c24bc9d6a6ab0c5b428d7255d4d983eadf97e10c1b00867da29ac981acb453073a37236e7ae808e7759b2e0cffc3ec43afb1e95cd090a7d4b9225a0e3cbebfe49b93846ab603891e2da7d85a04bf42d12d16a97c965bc4911d3ba7a9ca505794d8744fef00a436089de67aa8b480070230dfb002eb91edaff428d4908a87afae418dff7ca59aefe1ad8f6935f309fe7985c2310881659c60a66a5e50242497ba1cd5d2bd79496ccd23f9fd901afc6622829cb3701caa50f96e09e3b23bfa31819caab43e49ae1d922a1a1eb3682de026323d9215fcec42c54401a1af81450830a4b784ed1c7922734bf3632409147680dd3fabcef296353705bb5c0e650e12905a05db1e7923923a96ddc783fc1ed46e2010416c37d9d149ad73e808bd6e4464f62893024a8501803b6c88fc55c8bbc1da7cbf580b5a81fb7c61455ae399aaec303fba12e0f2b51ed5e8bd31db40e8bdbd00e7b1ddd364766c974d813d86fc88a27bf82bba60c62e5f0f6af6bda3390f8e72a2811baf3d6325e70d9a3b59cab1abe95290ecb87985567e1243504c038de9d4d100ea64eec45208cd8d2474e646f7d81eed6d59b8b0859552b6fc088d874cde3e75ee30243dc9d88ed5b577851a5bd9e2a453287025777fcac19ac33e1c94b4ad272f1055b16b842a6bd6168fb45f1f74ed2467020df5431068a5f2cbeaa6ac1841308c7c9f752aa06927f91fdf18ef9d9e942367e5ecac0abf4d3b8fc7b80238c04799bde63168becc67c5531e843336fb16ab618d37f95a91937b824bf896b044146bc3a5e264a8f23ddd00729cd9aa56d9a9a24b7ab96ae021b193d8874d43ff4b723d86b7564e550378599c3e0c7a2b3d447ad76eb4cd699733d970a5ab218429a1af81df9c8013d6d16a6bcb019f6ace4461cdaa785d20ea027cfa53d521bb91ad2c04aaa6c0f268b14924803977633280c7b7beb14c88fae542b7a13e96253259e7296e37276da88891c14664340e84ae732edbd71e67047e476735b220ca231de31a380ece372db63dec3cb3ef5ac97ec41148febd2acb15cde1ee5e990ea0aaa95c2df39e2111dd1185d14a194e22d34fda8f54e99d3a73e5a231682c726d40816e048c1d059bf3bb9ee2b5f895365d95aa28f6adbf6e16469926b4d8ee7f04c7dbafaa444df5b88596c17874f0efe35e5ada1a69634f4b430f852d33b032f823c5deb54f47a7a4adb1adf56d5440b7a917580004c13e0b36c8e0a203a2be3f8fffd9efef3af19389a12c67859d4381ac0a02da18e25931b41216b731de25e1245482c84d45de1cddbce2109322a3428bff692012573fe9efd02109dbf35c5d3a287dec105cf3f1a2e5f0b1cc08c7b4759766d25d0f7b42c3ea8bf8101e61159a2ba7602e9c7947cf936ac39bf59b24084709fd61d704bbdba7d282aac778b7ec1dcaf984527c8112d56e75ab774d1598d9816abc77b0e693880bffffffffffffff7fb5cb6967fb0ea8e14efce120947092c3b601002f07cad22e971418092481fcad36ecf0cfd6bc3864115b8507c13554584f1f6fee5ee07eb6a091638d8e7781c1c006166e0f987f9f4de535e9f3df1db8c9328e9a19a73c76059ab4edfe9eda7f16cc6b869229bafb179d194e20ccc6af1d8183b673de8138ddab9a0907278f6eaacc55bf59a450ebc10e0b88c82d9f0deca86ff771f46509250fde94e0c94256b77616d099862ddc9b341838d634a9dc4b55a88fcc6248901135f6aa76365433e7e534e0e5ae8eec2a63df62c3e244a40481189ff54122698c7e2da2c829b2eec9efc9894ee05be04ae6dd48406eaace17827e38bf38b414059aded0343e0711a8d864ff41a8d9ed40fb2aa1a3f4014f691cd0e8af62445a021820ff03afa8a192ee255862f306851df1de96ce36cafb6a60b7069db7aa96fd1ffb2fb01e6247f770304dffe4b1c8d0eeb336dd6806d6ab5d418953b1cae7cbbf53766b61e4aad5cfce8255b78af26f9bd11283a9c7d12cd63b82cd2b506fd4061d1e16fc7c713d80763c3b0aa0faadcd9b7d676101aad80e1ca00369297e1f714003ab8d0b545c335014a522a25a767950963ef821425b79b521076166d0df3ef358c7d60d99cc85463c186e8faf16af79785680382e4cc93f6594f8c4461e0988c08717640df24a5f357db22432fcae21702dc792d201212fb3791e0164bb3d433a8268ec96df73766fdba42965e00e619246cba5d96eb853a7c22c34d2fe5e5d3f3ccf9c627d069517b743cd07f6f7b444074bb9a50269f2e03309c58930e56a9583eb00c37fbcdd391972261f41756c10c8899fcd036e2017e088ef9e6ec31f795d55b3bba214c53c98fc9318e4ade0e7e6fd259aa277fed54c27e5210787a5f6937f56fdbe1da5113f059061ca590ddf536a55cb91ac6ed41cb9c0418b115b29f5e823c1b0ee7c2b3982087763545b34e2c945d587ebce69bbe299a7f52b674f351977370fc700474bc15d7e6ef98c14258ecf401a4f3bba1a9aa76c5ab0b8819fe6efe3fba1899909e5e48554299150ee272451b56142d12ae2bb4942db430239701d494917f2c939a6fb9d98d4751a6f2c4537ec870342d223343a9bd7b8d8c99aff8cbfa298395551185f35dec120228073a1e496a58b59d9ac5986249a7c6db9398395cbf341c08ee910700e2daa042dba1846fef59c72ce872bba2046a14fcf9a47a5686d62bfba76309a9865c26e5fa41dd872fc749fdc57953105ace4978f9eb788c8d061c853ad0313e51e732c5d7bc05e752443c8e99b8e81c688befdb5b14c3cc2f96eb8ce8290303e483992fcbece1ff278d0dc036ad437b6cbc695c7741ba4556e242146d40843c73deaf8fceba40e4a4acd739b3031848b17a210a1ff0dc1908b77c4bb94543af52e1fe2a090c8f217428d02336303f7952c3ddefa7c81850676e7f4cc3d32c3937281fa5ab279c3fe39f92ba077dadb8c2c3df17cc511bd33c41cb161d24aea154f0f5902c94b56fe072d321a983668bd9f4838878e66ec44cb233d7d0ca908a794c844ff8b3ba4c57f6c5fc2f3a54db448b013f0c4998bbc6ed0409b3368391cb28c75f4a909fff90f308ff38c758ff7d8a2920bc221236d89b3b769e44e8ce649b32f5135a0217ba9036a8edddee97d7ba15f2c21fb7d3cae3eb6ef09dd03eed650489c83b5ba5dd9daf7a86cf0544fb8a58e46b860e3e42e10cd6f1c4f81179eb2c3ba611793a32abb4c0768db90e8bdd1694efaa9c2b45c89d203fdfb8b926b6a0d666d91b93065a83184fc2065961f2308056241b66f427c0f0aabc75852c90f0624cf036d537032ca8d73325d2ae2a79a7292c240c34584bb881fe5d468a051cbc0bde061f9eddfb758cd2dfba296eef549e5c4ede097111216a0ec60f90e8d6f5dd843c82e15f505f8c74e854ba9cd386249d552978eb8135a5f8c79c3ceb8dd580800000000000000d6cf3ff2f47c276c8169ab98336582a852c1535018fb2306aca6b8c9f9e38d64c66a722762b76c69d4ca6c14bd6992549e4eec17287fce194467f972d9200c3d1ac4fd4a8f2620e2e4281d28c099946ed90789ba122705326390d3e058ceed24044e542efb36416272eadf6304f30efa0b7bc1ae5be92fe50e591ee6f725726e917ec113506920beb2aa53b39f1d76b31500", "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"})

3.292891401s ago: executing program 1 (id=2542):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = syz_io_uring_setup(0x10c, &(0x7f00000000c0)={0x0, 0x6d89, 0x400, 0x40000, 0x105}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000240)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x2001, 0x1, {0x3}})
io_uring_enter(r1, 0x8aa, 0x0, 0x0, 0x0, 0x0)

3.017253446s ago: executing program 1 (id=2544):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@map=r1, r2, 0x4, 0x0, 0x0, @void, @value}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

2.833828492s ago: executing program 1 (id=2549):
syz_open_dev$media(&(0x7f0000000380), 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x2})
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000200)={0x6000200f})

2.645688981s ago: executing program 1 (id=2551):
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000280)={0xffffffffffffffff, 0x0, 0x2})

2.641959016s ago: executing program 2 (id=2552):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r3, 0x0, r1, 0x0, 0xf3a, 0x0)
ioctl$sock_inet_tcp_SIOCINQ(r0, 0x5760, 0x0)
write$binfmt_elf64(r2, &(0x7f0000003380)=ANY=[], 0x18c6)

2.482674148s ago: executing program 1 (id=2553):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, &(0x7f0000000000)=0x1)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001a80)={0x4, 0x0, &(0x7f0000001900)=[@enter_looper], 0x1, 0x0, &(0x7f0000000040)="a1"})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)

2.417469443s ago: executing program 2 (id=2554):
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000400)=@filter={'filter\x00', 0x2, 0x4, 0x3a8, 0xffffffff, 0x1c0, 0xd0, 0x0, 0xfeffffff, 0xffffffff, 0x2d8, 0x2d8, 0x2d8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev, @mcast1, [0x0, 0x0, 0x0, 0xff], [], 'macsec0\x00', 'bond_slave_0\x00', {0xff}, {0xff}, 0x6, 0x0, 0x1, 0x48}, 0x2f2, 0xa8, 0xd0}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x7, 0x50cc}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, [], [], 'sit0\x00', 'dvmrp0\x00'}, 0x0, 0xa8, 0xf0}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1, 'syz0\x00', {0x42b5}}}}, {{@ipv6={@private2, @mcast1, [0x0, 0xffffffff, 0xffffffff, 0xffffff00], [0x0, 0xffffffff, 0xffffff00], 'macvlan1\x00', 'veth0_to_batadv\x00', {0xff}, {0xff}, 0x6c, 0x6, 0x6}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@ipv6header={{0x28}, {0x0, 0x80, 0x1}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x7, 'syz1\x00', {0x1}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x408)

2.071128297s ago: executing program 1 (id=2557):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000200)=ANY=[@ANYBLOB="1201410130f56920ac05190272f00102030109021b000100001000090455070103490200090582030004"], 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6f, &(0x7f0000000080)=ANY=[@ANYBLOB="1201400102000040257d113f6e000102030109025d00020100d0000904000001020d000006240600011805244005000d240f017f000000010000001606c21afb"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000580)={0x84, &(0x7f0000000340)=ANY=[@ANYBLOB='\x00N\b'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x40, &(0x7f0000000080)=ANY=[])
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

1.512160616s ago: executing program 2 (id=2564):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000001ac0), 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x5, 0x5, 0x0, 0xc}]})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r0, 0xc4c85513, &(0x7f0000000000)={0x2, 0x5, 0x1, 0x0, 'syz1\x00'})

1.401742814s ago: executing program 3 (id=2567):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xe, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='contention_end\x00', r1}, 0x18)
r2 = syz_open_dev$sndctrl(&(0x7f0000000580), 0x1, 0x100)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045520, &(0x7f0000000080)=0xffffbf7f)

1.174066276s ago: executing program 3 (id=2570):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="6000000010000103ffeb00feffffff", @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800e00010069703665727370616e0000002c0002801400050000000000000000000000000000000001"], 0x60}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r2, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)

986.596634ms ago: executing program 3 (id=2573):
r0 = openat$smackfs_load(0xffffffffffffff9c, &(0x7f0000000000)='/sys/fs/smackfs/load-self2\x00', 0x2, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0', [{0x20, ')+'}, {0x20, '[k'}, {0x20, 'no&\x80\x85\xfe\x19\x17y\xb2\x82\x81AR\x86lo-\xc5hX\xbbt\b\x86xookie'}, {0x20, 'B-+'}, {0x20, 'hostdata'}, {0x20, '*'}], 0xa, '\vT'}, 0x42)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r1 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r1, 0x400442c8, 0x0)

838.966292ms ago: executing program 3 (id=2574):
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e65766530000000000000000000140001006c6f0000000000000000000000000000080002"], 0xb4}}, 0x0)

838.524176ms ago: executing program 5 (id=2575):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xfff7fffffffffff5}, 0x18)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x180300, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000040)={0x191, 0x258, 0x1e0, 0x3f, 0x32, 0x1, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4})
ioctl$FBIOGETCMAP(r1, 0x4604, &(0x7f0000000200)={0xcd, 0x0, 0x0, 0x0, 0x0, 0x0})

769.22864ms ago: executing program 0 (id=2576):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f0000000200)={0x1d, r1}, 0x10)
close(r0)

644.821515ms ago: executing program 0 (id=2577):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_ALLOW_IOVAS(r0, 0x3b82, &(0x7f0000000180)={0x18, r1, 0x1, 0x0, &(0x7f00000001c0)=[{0x0, 0x1}]})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000440)={0x28, 0x7, r1, 0x0, &(0x7f0000000480)='LLLLLLLLLLLLLLLLLLLLLLLLLLLL', 0x1c, 0x2})
ioctl$IOMMU_IOAS_COPY(r0, 0x3b83, &(0x7f0000000680)={0x28, 0x4, r1, r1, 0x1c, 0x3, 0x2})

543.027094ms ago: executing program 5 (id=2578):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet(r0, &(0x7f0000000940)=[{{&(0x7f0000000000)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000040)="93", 0x1}], 0x1}}], 0x1, 0x46054)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000100)={0x1}, 0x8)
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000140)='wg0\x00', 0x4)
close(r0)

495.677074ms ago: executing program 5 (id=2579):
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)="0bbb", 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000001000000850000002d000000850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r0}, 0x10)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

474.793273ms ago: executing program 0 (id=2580):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18)
r1 = memfd_secret(0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r2, r1, 0x2e, 0x4608, @void}, 0x10)

328.197449ms ago: executing program 5 (id=2581):
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0xe1002)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000540)="5802009400140091d491321dcea4acd70729723b4789c749380e24811f70c68fee4456", 0x23}], 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)=ANY=[@ANYRES64=r0])

327.286479ms ago: executing program 2 (id=2582):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

216.433495ms ago: executing program 0 (id=2583):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
syz_emit_ethernet(0x3a, &(0x7f0000002100)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data}}}}}, 0x0)

215.336242ms ago: executing program 5 (id=2584):
pipe2(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RGETLOCK(r1, &(0x7f0000001440)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
tee(r0, r2, 0xfffffffffffffc01, 0x0)
tee(r0, r2, 0x60000000000, 0x0)

179.468143ms ago: executing program 2 (id=2585):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/3\x00')
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000240)={0x80000011})
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000c40))

150.549891ms ago: executing program 3 (id=2586):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000180)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0002}}}, 0x14)
r1 = dup(r0)
connect$802154_dgram(r1, &(0x7f0000000040)={0x24, @short={0x2, 0x2, 0x2}}, 0x14)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, 0x0, 0x0)

121.826676ms ago: executing program 0 (id=2587):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000040000000000000000000085000000d000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2401, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r1, 0x0, 0xc, 0x0, 0x0)

92.17394ms ago: executing program 5 (id=2588):
r0 = syz_io_uring_setup(0x14d9, &(0x7f0000000480)={0x0, 0x5121, 0x0, 0x0, 0x2cf}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000600)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000100)=@xdp={0x2c, 0xa, 0x0, 0x16}})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

14.915671ms ago: executing program 2 (id=2589):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000580)="d4fa0c511aad03aa5ed217677bc41c027d9c830c439c7f821ddd78b6915cb170e7603acf9e433c2903bb6773f4b0130668a1e5b5e08d21d0b69c28ca3455aed65855c86f3d1e5789d26375a0d85eaf5e92e19c9affcf76e7a94e76556d2b104ebf645747fadc91460f4b3c94e1a89b51be4a6aa4c65285f988329a8163b69c51b801500a5bacd0463976e2960e2679ef2feee5e6ce6bb78a51fb0e15820d13e4a5aa9e0742a6f8d677ad28fea356657bb550c8311b682d9003c82267a15aa7334bc53b65b9119a1a7d905c7dd365b85c230bbad0d5d0a79819e112637819d9a187cfdf782c6127d2d4281926ab0e22f7346b616fe28ed0b9f4a0c9fdac6d3a90a9c38b5e31448a45546388c95045bc22fe88c43b82a0a5d3eb61c238a5159ea98db9c00aeef644ae98a8cb8dffff3b7ba14d7971910b559623af8295", 0x13c}], 0x2}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2c8, 0x0, 0x5, 0xffffff6a, 0x180, 0x0, 0x320, 0x258, 0x258, 0x320, 0x258, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'wg2\x00', 'macvlan1\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x328)
r0 = socket$pppoe(0x18, 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00'})

6.056982ms ago: executing program 3 (id=2590):
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0900000007000000000001"], 0x50)
r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x862b01)
r1 = syz_open_dev$evdev(&(0x7f0000000280), 0x0, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000180)=0x800)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250)

0s ago: executing program 0 (id=2591):
mkdir(&(0x7f0000005740)='./file0\x00', 0x3b)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000000180), 0xc810, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000540)='./file0\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x22)

kernel console output (not intermixed with test programs):

F:FFFF.0008: unknown main item tag 0x0
[  136.417407][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.439028][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.462596][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.480381][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.496449][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.522772][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.531692][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.572122][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.599380][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.617461][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.637399][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.655339][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.679375][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.712702][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.720169][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.763659][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.771116][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.799607][   T48] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  136.824146][   T48] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  136.863694][   T48] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  136.906157][   T48] usb 1-1: USB disconnect, device number 8
[  144.622161][ T5830] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  144.631188][ T5830] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  144.641694][ T5830] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  144.651008][ T5830] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  144.662788][ T5830] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  145.045346][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.084505][ T7792] chnl_net:caif_netlink_parms(): no params data found
[  145.153280][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.184106][   T48] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  145.287569][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.303006][ T5948] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  145.365881][   T48] usb 2-1: Using ep0 maxpacket: 32
[  145.382093][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  145.399352][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  145.429463][   T48] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  145.447644][   T48] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.468218][   T48] usb 2-1: config 0 descriptor??
[  145.484788][ T5948] usb 4-1: config 0 has no interfaces?
[  145.499964][ T5948] usb 4-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[  145.515595][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.530900][ T5948] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.543047][ T5948] usb 4-1: Product: syz
[  145.554218][ T5948] usb 4-1: Manufacturer: syz
[  145.561904][ T5948] usb 4-1: SerialNumber: syz
[  145.567825][ T7792] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.575404][ T7792] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.586845][ T5948] usb 4-1: config 0 descriptor??
[  145.592386][ T7792] bridge_slave_0: entered allmulticast mode
[  145.607084][ T7792] bridge_slave_0: entered promiscuous mode
[  145.628604][ T7792] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.641444][ T7792] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.650491][ T7792] bridge_slave_1: entered allmulticast mode
[  145.659004][ T7792] bridge_slave_1: entered promiscuous mode
[  145.824655][ T7792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  145.839000][ T5947] usb 4-1: USB disconnect, device number 8
[  145.856394][ T7792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  145.896898][   T48] savu 0003:1E7D:2D5A.0009: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  145.966617][ T7792] team0: Port device team_slave_0 added
[  145.976639][ T7792] team0: Port device team_slave_1 added
[  145.984090][   T12] batadv1: left allmulticast mode
[  145.989220][   T12] batadv1: left promiscuous mode
[  145.995703][   T12] bridge0: port 3(batadv1) entered disabled state
[  146.008053][   T12] bridge_slave_1: left allmulticast mode
[  146.015757][   T12] bridge_slave_1: left promiscuous mode
[  146.021619][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.037575][   T12] bridge_slave_0: left allmulticast mode
[  146.049083][   T12] bridge_slave_0: left promiscuous mode
[  146.056194][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.104266][ T7836] kernel read not supported for file /z� (pid: 7836 comm: syz.2.845)
[  146.120496][   T30] audit: type=1800 audit(1749783137.317:8): pid=7836 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.845" name=7ABF17 dev="mqueue" ino=17919 res=0 errno=0
[  146.181692][ T5948] usb 2-1: USB disconnect, device number 7
[  146.682623][ T5830] Bluetooth: hci4: command tx timeout
[  146.748333][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  146.831092][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  146.876198][   T12] bond0 (unregistering): Released all slaves
[  147.214233][ T7792] batman_adv: batadv0: Adding interface: batadv_slave_0
[  147.221236][ T7792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.334146][ T7792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  147.444563][ T7870] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.863'.
[  147.546347][ T7792] batman_adv: batadv0: Adding interface: batadv_slave_1
[  147.560794][ T7792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.676171][ T7792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  147.828742][ T5830] Bluetooth: hci3: unexpected cc 0x042f length: 9 > 7
[  147.882068][ T7792] hsr_slave_0: entered promiscuous mode
[  147.895317][ T7792] hsr_slave_1: entered promiscuous mode
[  147.901679][ T7792] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  147.911216][ T7792] Cannot create hsr debugfs directory
[  147.922864][ T5945] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  147.952526][   T12] hsr_slave_0: left promiscuous mode
[  147.967309][   T12] hsr_slave_1: left promiscuous mode
[  147.982238][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  148.003349][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  148.024229][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  148.039549][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.082644][ T5945] usb 3-1: Using ep0 maxpacket: 8
[  148.105737][ T5945] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  148.134342][   T12] veth1_macvtap: left promiscuous mode
[  148.142306][ T5945] usb 3-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  148.148293][ T7888] program syz.1.870 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  148.160740][   T12] veth0_macvtap: left promiscuous mode
[  148.172814][   T12] veth1_vlan: left promiscuous mode
[  148.180431][ T5945] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.192630][   T12] veth0_vlan: left promiscuous mode
[  148.203561][ T5945] usb 3-1: config 0 descriptor??
[  148.224155][ T5945] gspca_main: vc032x-2.14.0 probing 046d:0892
[  148.762716][ T5830] Bluetooth: hci4: command tx timeout
[  148.992977][ T5947] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  149.031042][ T5945] gspca_vc032x: reg_w err -71
[  149.055055][ T5945] vc032x 3-1:0.0: probe with driver vc032x failed with error -71
[  149.066386][ T5945] usb 3-1: USB disconnect, device number 4
[  149.130234][   T12] team0 (unregistering): Port device team_slave_1 removed
[  149.168834][   T12] team0 (unregistering): Port device team_slave_0 removed
[  149.195182][ T5947] usb 2-1: Using ep0 maxpacket: 16
[  149.206616][ T5947] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.224214][ T5947] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.234171][ T5947] usb 2-1: config 0 interface 0 has no altsetting 0
[  149.240877][ T5947] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  149.251386][ T5947] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.269264][ T5947] usb 2-1: config 0 descriptor??
[  149.396472][ T5894] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  149.572731][ T5894] usb 4-1: Using ep0 maxpacket: 8
[  149.587127][ T5894] usb 4-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77
[  149.603338][ T5894] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.621774][ T5894] usb 4-1: Product: syz
[  149.626251][ T5894] usb 4-1: Manufacturer: syz
[  149.630986][ T5894] usb 4-1: SerialNumber: syz
[  149.650334][ T5894] usb 4-1: config 0 descriptor??
[  149.665200][ T5894] gspca_main: sq905-2.14.0 probing 2770:9120
[  149.921216][ T5947] usb 2-1: USB disconnect, device number 8
[  150.214181][   T12] IPVS: stop unused estimator thread 0...
[  150.242415][ T7792] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  150.264103][ T7792] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  150.278181][ T7792] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  150.291602][ T7792] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  150.388254][ T7792] 8021q: adding VLAN 0 to HW filter on device bond0
[  150.417280][ T7792] 8021q: adding VLAN 0 to HW filter on device team0
[  150.432398][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.439621][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.503136][ T1331] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.510321][ T1331] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.687663][ T5894] gspca_sq905: sq905_read_data: usb_control_msg failed (-71)
[  150.699155][ T5894] sq905 4-1:0.0: probe with driver sq905 failed with error -71
[  150.738255][ T5894] usb 4-1: USB disconnect, device number 9
[  150.847064][ T5830] Bluetooth: hci4: command tx timeout
[  150.892219][ T7949] loop8: detected capacity change from 0 to 7
[  150.915641][ T7949] Dev loop8: unable to read RDB block 7
[  150.923510][ T7949]  loop8: AHDI p1 p2 p3 p4
[  150.928021][ T7949] loop8: partition table partially beyond EOD, truncated
[  150.949016][ T7949] loop8: p1 start 1601398130 is beyond EOD, truncated
[  150.969169][ T7949] loop8: p2 start 1702059890 is beyond EOD, truncated
[  150.989019][ T7949] loop8: p3 size 4160749567 extends beyond EOD, truncated
[  151.020192][ T7792] 8021q: adding VLAN 0 to HW filter on device batadv0
[  151.375877][ T5948] IPVS: starting estimator thread 0...
[  151.476158][ T7975] IPVS: using max 25 ests per chain, 60000 per kthread
[  151.916859][ T7792] veth0_vlan: entered promiscuous mode
[  151.952480][ T7792] veth1_vlan: entered promiscuous mode
[  152.017237][ T7792] veth0_macvtap: entered promiscuous mode
[  152.031508][ T7792] veth1_macvtap: entered promiscuous mode
[  152.081337][ T7792] batman_adv: batadv0: Interface activated: batadv_slave_0
[  152.104740][ T7792] batman_adv: batadv0: Interface activated: batadv_slave_1
[  152.128382][ T7792] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  152.141474][ T7792] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  152.151453][ T7792] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  152.164595][ T7792] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  152.222905][ T5894] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  152.234912][ T7994] netlink: 72 bytes leftover after parsing attributes in process `syz.3.907'.
[  152.269884][ T7994] netlink: 92 bytes leftover after parsing attributes in process `syz.3.907'.
[  152.378030][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  152.392761][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.417754][ T5894] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  152.438185][ T5894] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.478771][ T5894] usb 3-1: config 0 descriptor??
[  152.494894][ T5894] cp210x 3-1:0.0: cp210x converter detected
[  152.506815][ T1341] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  152.530271][ T1341] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.903759][ T5894] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[  152.930393][ T5830] Bluetooth: hci4: command tx timeout
[  153.157164][ T5894] usb 3-1: cp210x converter now attached to ttyUSB0
[  153.389220][   T10] usb 3-1: USB disconnect, device number 5
[  153.443692][   T10] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  153.477883][   T10] cp210x 3-1:0.0: device disconnected
[  153.492840][ T5894] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  153.692896][ T5894] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  153.743211][ T5894] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  153.774357][ T5894] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  153.799787][ T5894] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  153.822324][ T5894] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.845621][ T5894] usb 4-1: config 0 descriptor??
[  153.861327][   T30] audit: type=1800 audit(1749783145.057:9): pid=8036 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.925" name="bus" dev="tmpfs" ino=1022 res=0 errno=0
[  153.950789][ T8042] netlink: 44 bytes leftover after parsing attributes in process `syz.0.928'.
[  153.966409][ T8042] netlink: 43 bytes leftover after parsing attributes in process `syz.0.928'.
[  153.977833][ T8042] netlink: 'syz.0.928': attribute type 6 has an invalid length.
[  153.991691][ T8042] netlink: 'syz.0.928': attribute type 5 has an invalid length.
[  154.022615][ T8042] netlink: 43 bytes leftover after parsing attributes in process `syz.0.928'.
[  154.309899][ T5894] plantronics 0003:047F:FFFF.000B: No inputs registered, leaving
[  154.348653][ T5894] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  154.594930][ T5948] usb 4-1: USB disconnect, device number 10
[  154.681358][ T8070] syzkaller1: entered promiscuous mode
[  154.690534][ T8070] syzkaller1: entered allmulticast mode
[  154.757226][ T8072] netdevsim netdevsim5: Direct firmware load for ./file0 failed with error -2
[  154.767260][ T8072] netdevsim netdevsim5: Falling back to sysfs fallback for: ./file0
[  154.808322][ T8075] vivid-001: disconnect
[  154.815820][ T8073] vivid-001: reconnect
[  155.196084][ T8093] netlink: 32 bytes leftover after parsing attributes in process `syz.3.951'.
[  155.276215][   T10] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  155.298742][ T8102] netlink: 32 bytes leftover after parsing attributes in process `syz.2.954'.
[  155.308783][ T8102] netlink: 4 bytes leftover after parsing attributes in process `syz.2.954'.
[  155.445945][   T10] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  155.454403][   T10] usb 2-1: config 0 has no interface number 0
[  155.460534][   T10] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.472119][   T10] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.481968][   T10] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  155.491890][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.501796][   T10] usb 2-1: config 0 descriptor??
[  155.662619][ T5947] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  155.849496][ T5947] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.862813][ T5947] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.879726][ T5947] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  155.901138][ T5947] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  155.910427][ T5947] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.943736][   T10] prodikeys 0003:041E:2801.000C: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.1-1/input1
[  155.956206][ T5947] usb 3-1: config 0 descriptor??
[  155.985190][   T10] hid_prodikeys: hid-prodikeys: failed to find output report
[  155.985190][   T10] 
[  156.131308][ T5945] usb 2-1: USB disconnect, device number 9
[  156.396429][ T5947] plantronics 0003:047F:FFFF.000D: unknown main item tag 0x3
[  156.488964][ T5947] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving
[  156.500400][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  156.512640][    T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!!
[  156.544571][   T30] audit: type=1326 audit(1749783147.727:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  156.582928][ T5947] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  156.626021][   T30] audit: type=1326 audit(1749783147.727:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  156.657785][ T5948] usb 3-1: USB disconnect, device number 6
[  156.712663][   T30] audit: type=1326 audit(1749783147.727:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  156.793841][   T30] audit: type=1326 audit(1749783147.727:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  156.889437][   T30] audit: type=1326 audit(1749783147.727:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  156.911188][    C0] vkms_vblank_simulate: vblank timer overrun
[  156.971096][   T30] audit: type=1326 audit(1749783147.727:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  156.992514][    C0] vkms_vblank_simulate: vblank timer overrun
[  157.030589][   T30] audit: type=1326 audit(1749783147.727:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  157.083871][   T30] audit: type=1326 audit(1749783147.727:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  157.137120][   T30] audit: type=1326 audit(1749783147.727:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8124 comm="syz.3.964" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  157.158515][    C0] vkms_vblank_simulate: vblank timer overrun
[  157.279488][ T8148] netlink: 4 bytes leftover after parsing attributes in process `syz.2.975'.
[  157.301457][ T8148] bond_slave_0: entered promiscuous mode
[  157.307443][ T8148] bond_slave_1: entered promiscuous mode
[  157.314500][ T8148] macvlan2: entered promiscuous mode
[  157.319934][ T8148] bond0: entered promiscuous mode
[  157.328206][ T8148] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  157.664036][ T5947] kernel read not supported for file /adsp1 (pid: 5947 comm: kworker/0:7)
[  157.876731][ T8164] batadv_slave_1: entered promiscuous mode
[  157.901542][ T8163] batadv_slave_1: left promiscuous mode
[  158.365764][ T8182] input: syz1 as /devices/virtual/input/input7
[  158.842591][   T48] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  159.013149][   T48] usb 1-1: Using ep0 maxpacket: 32
[  159.027871][   T48] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 173, changing to 11
[  159.100984][   T48] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 18276, setting to 1024
[  159.115057][   T48] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  159.124206][   T48] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.147073][   T48] usb 1-1: config 0 descriptor??
[  159.153367][ T8199] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  159.173343][   T48] hub 1-1:0.0: USB hub found
[  159.400201][   T48] hub 1-1:0.0: 1 port detected
[  160.189687][ T8268] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1031'.
[  160.214842][   T48] hub 1-1:0.0: hub_ext_port_status failed (err = -71)
[  160.282736][ T5948] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  160.436131][ T5948] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.457479][ T5948] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  160.477655][ T5948] usb 4-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  160.497232][ T5948] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.515198][ T5948] usb 4-1: config 0 descriptor??
[  160.604884][ T5945] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  160.652827][  T977] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[  160.772959][ T5945] usb 3-1: Using ep0 maxpacket: 16
[  160.780191][ T5945] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11
[  160.795639][ T5945] usb 3-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00
[  160.805227][ T5945] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.815954][ T5945] usb 3-1: config 0 descriptor??
[  160.823058][  T977] usb 2-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  160.838267][  T977] usb 2-1: config 0 interface 0 has no altsetting 0
[  160.846389][  T977] usb 2-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  160.871334][  T977] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.897405][  T977] usb 2-1: config 0 descriptor??
[  160.913395][ T8276] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  160.994481][ T5826] usb 1-1: USB disconnect, device number 9
[  161.246301][ T5945] samsung 0003:0419:0600.000F: item fetching failed at offset 0/5
[  161.261246][ T5945] samsung 0003:0419:0600.000F: parse failed
[  161.267376][ T5945] samsung 0003:0419:0600.000F: probe with driver samsung failed with error -22
[  161.340456][ T5948] hid-led 0003:27B8:01ED.000E: hidraw0: USB HID v0.00 Device [HID 27b8:01ed] on usb-dummy_hcd.3-1/input0
[  161.369070][  T977] uclogic 0003:5543:0042.0010: item fetching failed at offset 0/3
[  161.393449][  T977] uclogic 0003:5543:0042.0010: parse failed
[  161.418688][ T5948] hid-led 0003:27B8:01ED.000E: ThingM blink(1) initialized
[  161.430130][  T977] uclogic 0003:5543:0042.0010: probe with driver uclogic failed with error -22
[  161.441521][ T5945] IPVS: starting estimator thread 0...
[  161.454446][ T5945] usb 3-1: USB disconnect, device number 7
[  161.549177][  T977] usb 4-1: USB disconnect, device number 11
[  161.549881][ T8303] IPVS: using max 30 ests per chain, 72000 per kthread
[  161.590626][   T10] usb 2-1: USB disconnect, device number 10
[  161.770879][ T8312] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1048'.
[  162.038939][ T8320] netlink: 'syz.2.1052': attribute type 1 has an invalid length.
[  162.048007][ T8320] netlink: 16150 bytes leftover after parsing attributes in process `syz.2.1052'.
[  162.924733][   T10] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  163.105569][   T10] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  163.122564][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.132547][ T5947] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  163.159397][   T10] usb 1-1: config 0 descriptor??
[  163.169947][   T10] gspca_main: cpia1-2.14.0 probing 0813:0001
[  163.322824][ T5947] usb 3-1: Using ep0 maxpacket: 32
[  163.330184][ T5947] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  163.341538][ T5947] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  163.354133][ T5947] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  163.365282][ T5947] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.392753][  T977] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  163.414562][ T5947] usb 3-1: config 0 descriptor??
[  163.535342][ T8393] netlink: 'syz.5.1085': attribute type 1 has an invalid length.
[  163.543615][ T8393] netlink: 'syz.5.1085': attribute type 2 has an invalid length.
[  163.565610][  T977] usb 4-1: Using ep0 maxpacket: 8
[  163.575937][  T977] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  163.588199][  T977] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  163.599793][  T977] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  163.599821][   T10] gspca_cpia1: usb_control_msg 03, error -32
[  163.613348][  T977] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  163.635273][  T977] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  163.644041][   T10] cpia1 1-1:0.0: unexpected state after lo power cmd: 01
[  163.668795][  T977] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  163.680305][  T977] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.845661][ T5947] savu 0003:1E7D:2D5A.0011: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  163.900600][  T977] usb 4-1: usb_control_msg returned -32
[  163.908610][  T977] usbtmc 4-1:16.0: can't read capabilities
[  164.045808][   T10] gspca_cpia1: usb_control_msg 02, error -71
[  164.048842][ T8411] binder: 8410:8411 ioctl c0306201 2000000003c0 returned -22
[  164.052307][   T10] gspca_cpia1: usb_control_msg 05, error -71
[  164.086754][   T10] cpia1 1-1:0.0: unexpected systemstate: 01
[  164.095484][  T977] usb 3-1: USB disconnect, device number 8
[  164.113564][   T10] usb 1-1: USB disconnect, device number 10
[  164.482325][ T8427] bond0: entered promiscuous mode
[  164.488890][ T8427] bond_slave_0: entered promiscuous mode
[  164.494833][ T8427] bond_slave_1: entered promiscuous mode
[  164.717875][ T8436] syzkaller1: entered promiscuous mode
[  164.728855][ T8436] syzkaller1: entered allmulticast mode
[  165.177201][ T8459] syz_tun: entered promiscuous mode
[  165.190404][ T8459] syz_tun: left promiscuous mode
[  165.372899][   T10] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[  165.590281][   T10] usb 2-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  165.621020][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.654707][   T10] usb 2-1: config 0 descriptor??
[  165.687267][   T10] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  165.840149][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x0
[  165.858995][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x1
[  165.877907][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x0
[  165.885884][   T10] gp8psk: usb in 128 operation failed.
[  165.902682][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x0
[  165.920422][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x0
[  165.932534][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x0
[  165.950477][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x0
[  165.967830][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x0
[  165.982524][ T5945] hid-generic 00A0:0008:0003.0012: unknown main item tag 0x0
[  166.012830][ T5945] hid-generic 00A0:0008:0003.0012: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  166.111542][   T10] gp8psk: usb in 146 operation failed.
[  166.117140][   T10] gp8psk: failed to get FW version
[  166.133245][   T10] gp8psk: FPGA Version = 4
[  166.196166][ T5945] usb 4-1: USB disconnect, device number 12
[  166.339072][   T10] gp8psk: usb in 138 operation failed.
[  166.355142][   T10] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  166.392691][   T10] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  166.414469][   T10] usb 2-1: USB disconnect, device number 11
[  166.762646][ T5830] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  166.762842][ T5145] Bluetooth: hci0: command 0x1003 tx timeout
[  166.839780][ T5945] kernel write not supported for file bpf-prog (pid: 5945 comm: kworker/0:5)
[  167.230509][ T8520] syzkaller1: entered promiscuous mode
[  167.236353][ T8520] syzkaller1: entered allmulticast mode
[  167.367307][ T8527] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  167.860981][ T8547] loop2: detected capacity change from 0 to 7
[  167.888321][ T8547] Dev loop2: unable to read RDB block 7
[  167.895228][ T8547]  loop2: unable to read partition table
[  167.901817][ T8547] loop2: partition table beyond EOD, truncated
[  167.911044][ T8547] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  167.958789][ T8553] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  168.122764][ T5945] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  168.237045][ T8562] geneve2: entered promiscuous mode
[  168.248198][ T8562] geneve2: entered allmulticast mode
[  168.262677][   T10] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  168.280529][ T5945] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  168.293116][ T5945] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  168.306360][ T5945] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  168.322056][ T5945] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  168.340485][ T8564] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1164'.
[  168.353405][ T5945] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.383130][ T5945] usb 2-1: config 0 descriptor??
[  168.432855][   T10] usb 3-1: Using ep0 maxpacket: 32
[  168.447880][   T10] usb 3-1: config 0 has an invalid interface number: 67 but max is 0
[  168.462660][   T10] usb 3-1: config 0 has no interface number 0
[  168.478293][   T10] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  168.492507][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.511538][   T10] usb 3-1: Product: syz
[  168.521676][   T10] usb 3-1: Manufacturer: syz
[  168.531783][   T10] usb 3-1: SerialNumber: syz
[  168.550533][   T10] usb 3-1: config 0 descriptor??
[  168.565205][   T10] smsc95xx v2.0.0
[  168.799569][ T5945] plantronics 0003:047F:FFFF.0013: No inputs registered, leaving
[  168.820794][ T5945] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  168.927036][ T8586] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1174'.
[  168.940075][ T5945] IPVS: starting estimator thread 0...
[  169.042880][ T8587] IPVS: using max 30 ests per chain, 72000 per kthread
[  169.075189][ T5945] usb 2-1: USB disconnect, device number 12
[  169.131043][ T8593] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1177'.
[  169.376159][   T10] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): EEPROM read operation timeout
[  169.595760][   T10] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  169.634044][   T10] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -71
[  169.662291][   T10] usb 3-1: USB disconnect, device number 9
[  169.909854][ T8626] geneve1: entered promiscuous mode
[  169.954618][ T8626] geneve1: left promiscuous mode
[  170.002692][ T5826] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  170.038404][   T59] Bluetooth: hci0: Frame reassembly failed (-84)
[  170.175155][ T5826] usb 1-1: Using ep0 maxpacket: 32
[  170.191695][ T5826] usb 1-1: config 0 interface 0 has no altsetting 0
[  170.217045][ T5826] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  170.242716][ T5826] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.257284][ T5826] usb 1-1: Product: syz
[  170.263683][ T5826] usb 1-1: Manufacturer: syz
[  170.268324][ T5826] usb 1-1: SerialNumber: syz
[  170.281527][ T5826] usb 1-1: config 0 descriptor??
[  170.402604][ T5948] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  170.567411][ T5948] usb 2-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  170.584764][ T5948] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.617884][ T5948] usb 2-1: config 0 descriptor??
[  170.645231][ T5948] gspca_main: spca508-2.14.0 probing 8086:0110
[  170.698514][ T5826] gs_usb 1-1:0.0: Configuring for 1 interfaces
[  170.850497][ T5948] gspca_spca508: reg_read err -32
[  170.857110][ T5948] gspca_spca508: reg_read err -32
[  170.863215][ T5948] gspca_spca508: reg_read err -32
[  171.069601][ T5948] gspca_spca508: reg_read err -71
[  171.083701][ T5948] gspca_spca508: reg write: error -71
[  171.089226][ T5948] spca508 2-1:0.0: probe with driver spca508 failed with error -71
[  171.124623][ T8667] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1211'.
[  171.138537][ T5948] usb 2-1: USB disconnect, device number 13
[  171.149199][ T8667] netlink: 'syz.2.1211': attribute type 7 has an invalid length.
[  171.159570][ T8667] netlink: 'syz.2.1211': attribute type 8 has an invalid length.
[  171.169415][ T8667] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1211'.
[  171.184878][ T8667] erspan0: entered promiscuous mode
[  171.191401][ T8667] gretap0: entered promiscuous mode
[  171.200320][ T8667] erspan0: left promiscuous mode
[  171.208103][ T8667] gretap0: left promiscuous mode
[  171.317631][   T48] usb 1-1: USB disconnect, device number 11
[  171.400439][ T8677] netlink: 6 bytes leftover after parsing attributes in process `syz.3.1216'.
[  171.680892][ T8685] netlink: 'syz.2.1219': attribute type 2 has an invalid length.
[  172.043169][ T5830] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  172.049752][ T5145] Bluetooth: hci0: command 0x1003 tx timeout
[  172.747146][ T5948] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  172.922735][ T5948] usb 2-1: Using ep0 maxpacket: 32
[  172.936842][ T5948] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  172.954698][ T5948] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.993623][ T5948] usb 2-1: config 0 descriptor??
[  173.087122][ T8756] program syz.2.1252 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.215451][ T5948] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  173.264440][ T5948] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  173.297129][ T5948] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  173.331631][ T5948] usb 2-1: media controller created
[  173.391863][ T5948] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  173.417047][ T8730] az6027: more than 2 i2c messages at a time is not handled yet. TODO.
[  173.486251][ T5948] az6027: usb out operation failed. (-71)
[  173.513844][ T5948] az6027: usb out operation failed. (-71)
[  173.519654][ T5948] stb0899_attach: Driver disabled by Kconfig
[  173.540516][ T5948] az6027: no front-end attached
[  173.540516][ T5948] 
[  173.592608][ T5948] az6027: usb out operation failed. (-71)
[  173.598924][ T5948] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  173.617840][ T5948] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input9
[  173.664917][ T5948] dvb-usb: schedule remote query interval to 400 msecs.
[  173.674254][ T5948] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  173.698306][ T5948] usb 2-1: USB disconnect, device number 14
[  173.778278][ T5948] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  173.882708][ T5945] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  173.890433][   T10] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  174.062710][ T5945] usb 1-1: Using ep0 maxpacket: 8
[  174.077355][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  174.096511][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  174.107224][ T5945] usb 1-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[  174.117212][ T5945] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.125453][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  174.140336][ T5945] usb 1-1: Product: syz
[  174.144824][ T5945] usb 1-1: Manufacturer: syz
[  174.149653][ T5945] usb 1-1: SerialNumber: syz
[  174.154373][   T10] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  174.166411][ T5945] usb 1-1: config 0 descriptor??
[  174.171596][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.184556][ T5945] radio-usb-si4713 1-1:0.0: Si4713 development board discovered: (10C4:8244)
[  174.200924][   T10] usb 6-1: config 0 descriptor??
[  174.336340][ T8805] netlink: 'syz.1.1273': attribute type 1 has an invalid length.
[  174.344625][ T8805] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1273'.
[  174.354490][ T8805] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1273'.
[  174.626572][   T10] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  174.653722][   T10] plantronics 0003:047F:FFFF.0014: No inputs registered, leaving
[  174.700920][   T10] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  174.805091][ T5945] radio-usb-si4713 1-1:0.0: probe with driver radio-usb-si4713 failed with error -71
[  174.852914][ T5945] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  174.880208][ T5945] usb 1-1: USB disconnect, device number 12
[  174.949816][ T8827] syzkaller1: entered promiscuous mode
[  174.960417][ T8827] syzkaller1: entered allmulticast mode
[  175.860446][ T8862] tun0: tun_chr_ioctl cmd 1074025675
[  175.876271][ T8862] tun0: persist enabled
[  175.889789][ T8862] tun0: tun_chr_ioctl cmd 1074025675
[  175.922323][ T8862] tun0: persist disabled
[  176.114288][ T8871] macvlan1: entered promiscuous mode
[  176.121247][ T8871] ipvlan0: entered promiscuous mode
[  176.128138][ T8871] ipvlan0: left promiscuous mode
[  176.176827][ T8871] macvlan1: left promiscuous mode
[  176.462587][   T48] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  176.578989][ T8892] syzkaller1: entered promiscuous mode
[  176.589539][ T8892] syzkaller1: entered allmulticast mode
[  176.643239][   T48] usb 2-1: Using ep0 maxpacket: 16
[  176.661071][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.678929][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  176.696877][   T48] usb 2-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 1.00
[  176.706256][   T48] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.721952][   T48] usb 2-1: config 0 descriptor??
[  176.797558][ T5947] usb 6-1: USB disconnect, device number 2
[  177.139292][   T48] appleir 0003:05AC:8241.0015: unknown main item tag 0x0
[  177.156232][   T48] appleir 0003:05AC:8241.0015: unknown main item tag 0x0
[  177.163802][   T48] appleir 0003:05AC:8241.0015: unknown main item tag 0x0
[  177.170968][   T48] appleir 0003:05AC:8241.0015: unknown main item tag 0x0
[  177.178796][   T48] appleir 0003:05AC:8241.0015: unknown main item tag 0x0
[  177.190235][   T48] appleir 0003:05AC:8241.0015: No inputs registered, leaving
[  177.204246][   T48] appleir 0003:05AC:8241.0015: hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.1-1/input0
[  177.307910][ T8921] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  177.324895][ T8921] overlayfs: fs on './file0' does not support file handles, falling back to xino=off.
[  177.342616][   T30] kauditd_printk_skb: 20 callbacks suppressed
[  177.342634][   T30] audit: type=1326 audit(1749783168.537:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  177.382733][   T30] audit: type=1326 audit(1749783168.537:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  177.405211][   T48] usb 2-1: USB disconnect, device number 15
[  177.407586][   T30] audit: type=1326 audit(1749783168.547:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  177.447854][   T30] audit: type=1326 audit(1749783168.547:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  177.472628][   T30] audit: type=1326 audit(1749783168.547:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  177.550742][   T30] audit: type=1326 audit(1749783168.547:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  177.621573][   T30] audit: type=1326 audit(1749783168.547:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  177.662855][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  177.715387][   T30] audit: type=1326 audit(1749783168.547:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  177.791936][   T30] audit: type=1326 audit(1749783168.547:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  177.849731][   T30] audit: type=1326 audit(1749783168.547:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8922 comm="syz.3.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  178.307889][ T8949] kvm: kvm [8948]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0x200000000280
[  178.692639][ T5947] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  178.732593][ T5894] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  178.857186][ T5947] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  178.867742][ T8985] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  178.875104][ T5947] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  178.889266][ T5947] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  178.898607][ T5947] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.909653][ T5947] usb 6-1: config 0 descriptor??
[  178.914836][ T5894] usb 3-1: Using ep0 maxpacket: 16
[  178.925568][ T5947] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  178.932288][ T5947] dvb-usb: bulk message failed: -22 (3/0)
[  178.939516][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  178.952219][ T5894] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  178.963062][ T5947] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  178.971648][ T5894] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  178.985201][ T5947] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  179.000859][ T5947] usb 6-1: media controller created
[  179.008391][ T5894] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  179.021432][ T5947] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  179.030031][ T5894] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.063996][ T5894] usb 3-1: config 0 descriptor??
[  179.073649][ T5947] dvb-usb: bulk message failed: -22 (6/0)
[  179.079863][ T5947] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  179.093604][ T5947] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input10
[  179.119392][ T5947] dvb-usb: schedule remote query interval to 150 msecs.
[  179.127366][ T5947] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  179.289362][ T5947] dvb-usb: bulk message failed: -22 (1/0)
[  179.302791][ T5947] dvb-usb: error while querying for an remote control event.
[  179.357345][ T5947] usb 6-1: USB disconnect, device number 3
[  179.407340][ T5947] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  179.486899][ T5894] microsoft 0003:045E:07DA.0016: unknown main item tag 0x2
[  179.496865][ T5894] microsoft 0003:045E:07DA.0016: unknown main item tag 0x6
[  179.505657][ T5894] microsoft 0003:045E:07DA.0016: unknown main item tag 0x6
[  179.514028][ T5894] microsoft 0003:045E:07DA.0016: unknown main item tag 0x6
[  179.532599][ T5894] microsoft 0003:045E:07DA.0016: unknown main item tag 0x6
[  179.542839][ T5894] microsoft 0003:045E:07DA.0016: No inputs registered, leaving
[  179.556136][ T5894] microsoft 0003:045E:07DA.0016: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  179.567948][ T5894] microsoft 0003:045E:07DA.0016: no inputs found
[  179.574510][ T5894] microsoft 0003:045E:07DA.0016: could not initialize ff, continuing anyway
[  179.612771][   T48] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[  179.701059][ T5894] usb 3-1: USB disconnect, device number 10
[  179.723272][ T9002] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1372'.
[  179.764924][   T48] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  179.777736][   T48] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.791641][   T48] usb 4-1: config 0 descriptor??
[  179.807627][   T48] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  180.042684][   T48] gp8psk: usb in 128 operation failed.
[  180.267351][   T48] gp8psk: FW Version = 107.255.166 (0x6bffa6)  Build 2064/41/152
[  180.478769][   T48] gp8psk: usb in 149 operation failed.
[  180.496335][   T48] gp8psk: failed to get FPGA version
[  180.512735][   T48] gp8psk: usb in 138 operation failed.
[  180.524281][   T48] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  180.552618][   T48] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  180.572643][   T48] usb 4-1: USB disconnect, device number 13
[  180.819865][ T9037] sctp: [Deprecated]: syz.0.1377 (pid 9037) Use of int in maxseg socket option.
[  180.819865][ T9037] Use struct sctp_assoc_value instead
[  181.658934][ T9069] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.1391'.
[  181.703975][ T9067] IPVS: ovf: UDP 224.0.0.2:20004 - no destination available
[  181.755956][ T9080] input: syz1 as /devices/virtual/input/input12
[  183.084364][ T9117] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  184.956314][ T9169] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  185.192604][ T5947] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  185.352591][ T5947] usb 6-1: Using ep0 maxpacket: 16
[  185.368140][ T5947] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  185.378460][ T5947] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 170, changing to 11
[  185.419142][ T5947] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid maxpacket 34661, setting to 1024
[  185.450029][ T5947] usb 6-1: config 0 interface 0 has no altsetting 0
[  185.512248][ T5947] usb 6-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  185.544626][ T5947] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.562657][ T5947] usb 6-1: Product: syz
[  185.566885][ T5947] usb 6-1: Manufacturer: syz
[  185.571590][ T5947] usb 6-1: SerialNumber: syz
[  185.595607][ T5947] usb 6-1: config 0 descriptor??
[  185.599571][ T9195] loop2: detected capacity change from 0 to 7
[  185.613765][ T9171] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  185.639178][ T9195] Dev loop2: unable to read RDB block 7
[  185.675429][ T9195]  loop2: AHDI p2 p3
[  185.682761][ T9195] loop2: partition table partially beyond EOD, truncated
[  185.690079][ T9195] loop2: p2 size 150995456 extends beyond EOD, truncated
[  185.752673][   T10] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[  185.804242][ T9199] vivid-000: disconnect
[  185.809316][ T9198] vivid-000: reconnect
[  185.825196][ T9171] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  185.841344][ T5947] input: syz syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input13
[  185.939059][   T10] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[  185.955664][   T10] usb 4-1: config 0 has no interface number 0
[  185.967231][   T48] kernel write not supported for file /672/coredump_filter (pid: 48 comm: kworker/1:1)
[  185.973956][   T10] usb 4-1: config 0 interface 41 has no altsetting 0
[  185.990591][   T10] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  186.001137][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.013355][   T10] usb 4-1: Product: syz
[  186.017753][   T10] usb 4-1: Manufacturer: syz
[  186.024997][   T10] usb 4-1: SerialNumber: syz
[  186.034066][   T10] usb 4-1: config 0 descriptor??
[  186.071692][ T5947] usb 6-1: USB disconnect, device number 4
[  186.588771][ T9217] input: syz0 as /devices/virtual/input/input14
[  187.123319][   T10] CoreChips 4-1:0.41: probe with driver CoreChips failed with error -71
[  187.151040][   T10] usb 4-1: USB disconnect, device number 14
[  187.510113][ T9251] loop6: detected capacity change from 0 to 63
[  187.530612][ T9251] Buffer I/O error on dev loop6, logical block 0, async page read
[  187.551135][ T9251] Buffer I/O error on dev loop6, logical block 1, async page read
[  187.575265][ T9251] Buffer I/O error on dev loop6, logical block 2, async page read
[  187.583834][ T9251] Buffer I/O error on dev loop6, logical block 3, async page read
[  187.597486][ T9251] Buffer I/O error on dev loop6, logical block 0, async page read
[  187.607626][ T9251] Buffer I/O error on dev loop6, logical block 1, async page read
[  187.616670][ T9251] Buffer I/O error on dev loop6, logical block 2, async page read
[  187.633021][ T9251] Buffer I/O error on dev loop6, logical block 3, async page read
[  187.641322][ T9251] Buffer I/O error on dev loop6, logical block 0, async page read
[  187.688959][ T9251] Buffer I/O error on dev loop6, logical block 1, async page read
[  188.786769][ T9302] netlink: 'syz.5.1491': attribute type 12 has an invalid length.
[  188.805666][ T9302] netlink: 'syz.5.1491': attribute type 29 has an invalid length.
[  188.817144][ T9302] netlink: 148 bytes leftover after parsing attributes in process `syz.5.1491'.
[  188.982711][ T9306] io-wq is not configured for unbound workers
[  189.647364][ T9320] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.1500' sets config #0
[  190.302648][ T5826] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  190.438996][   T30] kauditd_printk_skb: 94 callbacks suppressed
[  190.439013][   T30] audit: type=1326 audit(1749783181.637:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9358 comm="syz.0.1517" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6845d8e929 code=0x0
[  190.452718][ T5826] usb 6-1: Using ep0 maxpacket: 32
[  190.488082][ T5826] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.501209][ T5826] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.518457][ T5826] usb 6-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  190.528741][ T5826] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.539986][ T5826] usb 6-1: config 0 descriptor??
[  190.663443][   T48] IPVS: starting estimator thread 0...
[  190.763429][ T9367] IPVS: using max 26 ests per chain, 62400 per kthread
[  190.892778][ T5894] usb 4-1: new full-speed USB device number 15 using dummy_hcd
[  190.967971][ T5826] ft260 0003:0403:6030.0017: unknown main item tag 0x0
[  191.069588][ T5894] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  191.104256][ T5894] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  191.115594][ T5894] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  191.130302][ T5894] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  191.151646][ T5894] usb 4-1: Product: syz
[  191.152095][ T5826] ft260 0003:0403:6030.0017: chip code: 525b 7403
[  191.157035][ T5894] usb 4-1: Manufacturer: syz
[  191.157055][ T5894] usb 4-1: SerialNumber: syz
[  191.388689][ T5894] usb 4-1: 0:2 : does not exist
[  191.398669][ T5894] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  191.420887][ T5894] usb 4-1: USB disconnect, device number 15
[  191.531178][ T9388] overlayfs: upper fs does not support file handles, falling back to index=off.
[  191.541713][ T9388] overlayfs: NFS export requires "index=on", falling back to nfs_export=off.
[  191.562704][   T10] usb 6-1: USB disconnect, device number 5
[  191.612702][ T5826] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  191.782618][ T5826] usb 1-1: Using ep0 maxpacket: 16
[  192.577594][ T5826] usb 1-1: unable to get BOS descriptor or descriptor too short
[  192.598231][ T5826] usb 1-1: unable to read config index 0 descriptor/start: -71
[  192.614856][ T5826] usb 1-1: can't read configurations, error -71
[  193.033340][ T9414] syz.3.1538 (9414) used greatest stack depth: 16856 bytes left
[  193.610997][   T30] audit: type=1326 audit(1749783184.807:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9455 comm="syz.5.1558" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9988d8e929 code=0x0
[  193.758324][ T9466] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  194.006061][ T5947] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  194.166567][ T5947] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  194.181804][ T5947] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.196922][ T5947] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.207876][ T5947] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  194.226309][ T5947] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  194.247781][ T5947] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  194.266171][ T5947] usb 2-1: Manufacturer: syz
[  194.283610][ T5947] usb 2-1: config 0 descriptor??
[  194.373988][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  194.380458][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  194.543304][   T48] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  194.669504][ T9494] loop8: detected capacity change from 0 to 6
[  194.677238][ T9494] Dev loop8: unable to read RDB block 6
[  194.683828][ T9494]  loop8: unable to read partition table
[  194.689868][ T9494] loop8: partition table beyond EOD, truncated
[  194.696557][ T9494] loop_reread_partitions: partition scan of loop8 (�被x�^>�� �) failed (rc=-5)
[  194.698905][ T5947] appleir 0003:05AC:8243.0018: unknown main item tag 0x0
[  194.706145][   T48] usb 1-1: Using ep0 maxpacket: 16
[  194.735766][   T48] usb 1-1: config index 0 descriptor too short (expected 16456, got 72)
[  194.736904][ T5947] appleir 0003:05AC:8243.0018: No inputs registered, leaving
[  194.747638][   T48] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[  194.785038][   T48] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[  194.795144][ T5947] appleir 0003:05AC:8243.0018: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  194.802616][   T48] usb 1-1: config 0 has an invalid interface number: 125 but max is 1
[  194.811350][ T9496] dlm: non-version read from control device 4
[  194.829801][   T48] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  194.844713][   T48] usb 1-1: config 0 has no interface number 0
[  194.851242][   T48] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  194.866111][   T48] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  194.876470][   T48] usb 1-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  194.890169][   T48] usb 1-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  194.907546][   T48] usb 1-1: config 0 interface 125 has no altsetting 0
[  194.914719][   T48] usb 1-1: config 0 interface 125 has no altsetting 2
[  194.944394][   T48] usb 1-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  194.954111][   T48] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.962140][   T48] usb 1-1: Product: syz
[  194.988410][   T48] usb 1-1: Manufacturer: syz
[  194.998575][   T48] usb 1-1: SerialNumber: syz
[  195.011398][   T48] usb 1-1: config 0 descriptor??
[  195.026667][   T48] usb 1-1: selecting invalid altsetting 2
[  195.120007][ T5947] usb 2-1: USB disconnect, device number 16
[  195.824180][ T9534] program syz.2.1592 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  195.946102][   T10] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  196.063239][   T48] usb 1-1: USB disconnect, device number 15
[  196.105895][   T10] usb 2-1: Using ep0 maxpacket: 16
[  196.135633][   T10] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  196.160999][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  196.191142][   T10] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  196.209527][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.232467][   T10] usb 2-1: Product: syz
[  196.237157][   T10] usb 2-1: Manufacturer: syz
[  196.255595][   T10] usb 2-1: SerialNumber: syz
[  196.262710][ T5894] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  196.285926][   T10] usb 2-1: config 0 descriptor??
[  196.308199][   T10] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  196.326196][   T10] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  196.422703][ T5894] usb 6-1: Using ep0 maxpacket: 16
[  196.436635][ T5894] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  196.454345][ T5894] usb 6-1: config 0 has no interface number 0
[  196.476639][ T5894] usb 6-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  196.491333][ T5894] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.512564][ T5894] usb 6-1: Product: syz
[  196.527649][ T5894] usb 6-1: Manufacturer: syz
[  196.537163][ T5894] usb 6-1: SerialNumber: syz
[  196.572236][ T5894] usb 6-1: config 0 descriptor??
[  196.586502][ T5894] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  196.653615][ T9558] vcan0: tx drop: invalid da for name 0x0000000000000003
[  196.718132][ T9560] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1607'.
[  196.904598][ T9573] overlayfs: upper fs does not support tmpfile.
[  196.933614][   T10] em28xx 2-1:0.0: chip ID is em28174
[  197.145806][   T10] usb 2-1: USB disconnect, device number 17
[  197.166806][   T10] em28xx 2-1:0.0: Disconnecting em28xx
[  197.183754][   T10] em28xx 2-1:0.0: Freeing device
[  197.594169][ T5894] gspca_spca1528: reg_w err -71
[  197.605431][ T5894] spca1528 6-1:0.1: probe with driver spca1528 failed with error -71
[  197.620757][ T5894] usb 6-1: USB disconnect, device number 6
[  197.872534][   T10] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  197.972694][   T48] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  198.042813][ T5826] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  198.042864][   T10] usb 1-1: Using ep0 maxpacket: 8
[  198.064755][   T10] usb 1-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  198.080955][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.089907][   T10] usb 1-1: Product: syz
[  198.112771][   T10] usb 1-1: Manufacturer: syz
[  198.117500][   T10] usb 1-1: SerialNumber: syz
[  198.131375][   T10] usb 1-1: config 0 descriptor??
[  198.134276][   T48] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  198.140274][   T10] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  198.163747][   T48] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3
[  198.193446][   T48] usb 4-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[  198.215589][ T5826] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  198.237462][   T48] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.246727][ T5826] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.277037][   T48] usb 4-1: config 0 descriptor??
[  198.286964][ T5826] usb 2-1: config 0 descriptor??
[  198.317265][ T5826] cp210x 2-1:0.0: cp210x converter detected
[  198.381041][ T5830] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci5/hci5:201'
[  198.392373][ T5830] CPU: 1 UID: 0 PID: 5830 Comm: kworker/u9:2 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) 
[  198.392401][ T5830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.392418][ T5830] Workqueue: hci5 hci_rx_work
[  198.392462][ T5830] Call Trace:
[  198.392473][ T5830]  <TASK>
[  198.392482][ T5830]  dump_stack_lvl+0x189/0x250
[  198.392511][ T5830]  ? kernfs_path_from_node+0x2c/0x260
[  198.392537][ T5830]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.392562][ T5830]  ? __pfx__printk+0x10/0x10
[  198.392582][ T5830]  ? kernfs_path_from_node+0x2c/0x260
[  198.392603][ T5830]  ? kernfs_path_from_node+0x2c/0x260
[  198.392628][ T5830]  ? kernfs_path_from_node+0x22c/0x260
[  198.392649][ T5830]  ? kernfs_path_from_node+0x2c/0x260
[  198.392676][ T5830]  sysfs_create_dir_ns+0x259/0x280
[  198.392702][ T5830]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  198.392727][ T5830]  ? do_raw_spin_unlock+0x122/0x240
[  198.392752][ T5830]  kobject_add_internal+0x59f/0xb40
[  198.392782][ T5830]  kobject_add+0x155/0x220
[  198.392805][ T5830]  ? __pfx_kobject_add+0x10/0x10
[  198.392824][ T5830]  ? _raw_spin_unlock+0x28/0x50
[  198.392849][ T5830]  ? get_device_parent+0x366/0x3a0
[  198.392871][ T5830]  device_add+0x408/0xb50
[  198.392893][ T5830]  hci_conn_add_sysfs+0xd5/0x1e0
[  198.392920][ T5830]  le_conn_complete_evt+0xc3a/0x1220
[  198.392960][ T5830]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  198.392981][ T5830]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  198.393011][ T5830]  ? __pfx___mutex_lock+0x10/0x10
[  198.393028][ T5830]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  198.393052][ T5830]  ? skb_pull_data+0xfb/0x200
[  198.393081][ T5830]  hci_le_enh_conn_complete_evt+0x189/0x470
[  198.393103][ T5830]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  198.393128][ T5830]  hci_event_packet+0x78c/0x1200
[  198.393158][ T5830]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  198.393179][ T5830]  ? __pfx_hci_event_packet+0x10/0x10
[  198.393214][ T5830]  ? kcov_remote_start+0x4d3/0x7f0
[  198.393235][ T5830]  ? local_clock_noinstr+0xe0/0xe0
[  198.393263][ T5830]  ? hci_send_to_monitor+0xe2/0x570
[  198.393288][ T5830]  hci_rx_work+0x46a/0xe80
[  198.393322][ T5830]  ? process_scheduled_works+0x9ef/0x17b0
[  198.393349][ T5830]  process_scheduled_works+0xade/0x17b0
[  198.393405][ T5830]  ? __pfx_process_scheduled_works+0x10/0x10
[  198.393447][ T5830]  worker_thread+0x8a0/0xda0
[  198.393500][ T5830]  kthread+0x70e/0x8a0
[  198.393523][ T5830]  ? __pfx_worker_thread+0x10/0x10
[  198.393546][ T5830]  ? __pfx_kthread+0x10/0x10
[  198.393567][ T5830]  ? _raw_spin_unlock_irq+0x23/0x50
[  198.393588][ T5830]  ? lockdep_hardirqs_on+0x9c/0x150
[  198.393609][ T5830]  ? __pfx_kthread+0x10/0x10
[  198.393629][ T5830]  ret_from_fork+0x3fc/0x770
[  198.393655][ T5830]  ? __pfx_ret_from_fork+0x10/0x10
[  198.393684][ T5830]  ? __switch_to_asm+0x39/0x70
[  198.393700][ T5830]  ? __switch_to_asm+0x33/0x70
[  198.393715][ T5830]  ? __pfx_kthread+0x10/0x10
[  198.393733][ T5830]  ret_from_fork_asm+0x1a/0x30
[  198.393767][ T5830]  </TASK>
[  198.680737][ T5830] kobject: kobject_add_internal failed for hci5:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  198.695211][ T5830] Bluetooth: hci5: failed to register connection device
[  198.911630][ T5826] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32
[  199.114311][   T48] Bluetooth: Can't get version to change to load ram patch err
[  199.131662][ T5826] usb 2-1: cp210x converter now attached to ttyUSB0
[  199.138548][   T48] Bluetooth: Loading sysconfig file failed
[  199.145817][   T48] ath3k 4-1:0.0: probe with driver ath3k failed with error -71
[  199.156861][   T48] usb 4-1: USB disconnect, device number 16
[  199.296458][   T10] usb 1-1: USB disconnect, device number 16
[  199.325588][   T48] usb 2-1: USB disconnect, device number 18
[  199.344648][   T48] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  199.358651][   T48] cp210x 2-1:0.0: device disconnected
[  199.417856][ T5945] kernel write not supported for file /533/oom_score_adj (pid: 5945 comm: kworker/0:5)
[  199.821842][ T9656] input: syz0 as /devices/virtual/input/input15
[  199.923479][ T9659] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1653'.
[  199.937921][ T9659] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1653'.
[  199.956555][ T9660] loop8: detected capacity change from 0 to 1
[  199.980199][ T9660] Dev loop8: unable to read RDB block 1
[  199.992583][ T9660]  loop8: unable to read partition table
[  199.998491][ T9660] loop8: partition table beyond EOD, truncated
[  200.036902][ T9660] loop_reread_partitions: partition scan of loop8 (�被x�^>�� �) failed (rc=-5)
[  200.129173][ T9672] input: syz1 as /devices/virtual/input/input16
[  200.203819][ T5826] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  200.378170][ T5826] usb 2-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  200.398005][ T5826] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.419667][ T5826] usb 2-1: Product: syz
[  200.426519][ T5826] usb 2-1: Manufacturer: syz
[  200.431797][ T5826] usb 2-1: SerialNumber: syz
[  200.441132][ T5826] usb 2-1: config 0 descriptor??
[  200.547226][   T10] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  200.669223][ T5826] usb 2-1: ignoring: probably an ADSL modem
[  200.727158][   T10] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  200.746808][   T10] usb 6-1: config 0 has no interface number 0
[  200.768589][   T10] usb 6-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  200.793603][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.813105][   T10] usb 6-1: Product: syz
[  200.817319][   T10] usb 6-1: Manufacturer: syz
[  200.839142][   T10] usb 6-1: SerialNumber: syz
[  200.850173][   T10] usb 6-1: config 0 descriptor??
[  200.963254][ T9713] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1678'.
[  201.066620][   T10] usb 6-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  201.076561][ T5826] cxacru 2-1:0.0: usbatm_usb_probe: bind failed: -19!
[  201.081740][   T10] usb 6-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  201.101800][   T10] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  201.110476][   T10] usb 6-1: media controller created
[  201.160747][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  201.282196][ T5947] usb 2-1: USB disconnect, device number 19
[  201.284617][   T48] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  201.323696][   T10] i2c i2c-1: ec100: i2c rd failed=-32 reg=33
[  201.481714][   T48] usb 3-1: Using ep0 maxpacket: 32
[  201.495653][   T48] usb 3-1: config 0 has an invalid interface number: 67 but max is 0
[  201.512510][   T48] usb 3-1: config 0 has no interface number 0
[  201.521010][   T48] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  201.531070][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.539194][   T48] usb 3-1: Product: syz
[  201.543795][   T48] usb 3-1: Manufacturer: syz
[  201.548405][   T48] usb 3-1: SerialNumber: syz
[  201.560633][   T48] usb 3-1: config 0 descriptor??
[  201.565729][ T5145] Bluetooth: hci2: command 0x0406 tx timeout
[  201.575549][ T5145] Bluetooth: hci3: command 0x0406 tx timeout
[  201.577183][   T48] smsc95xx v2.0.0
[  201.596616][ T9727] netlink: 'syz.0.1684': attribute type 1 has an invalid length.
[  201.631974][ T9727] bond1: entered promiscuous mode
[  201.637894][ T9727] 8021q: adding VLAN 0 to HW filter on device bond1
[  201.691762][ T9731] 8021q: adding VLAN 0 to HW filter on device bond2
[  201.722147][ T9731] bond1: (slave bond2): making interface the new active one
[  201.738718][ T9731] bond2: entered promiscuous mode
[  201.746148][ T9731] bond1: (slave bond2): Enslaving as an active interface with an up link
[  202.007190][ T5826] hid-generic 0000:0000:0000.0019: unknown main item tag 0x0
[  202.035347][ T5826] hid-generic 0000:0000:0000.0019: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  202.370442][   T10] usb 6-1: USB disconnect, device number 7
[  202.430605][   T30] audit: type=1400 audit(1884000921.626:145): lsm=SMACK fn=smack_inode_removexattr action=denied subject="w" object="_" requested=w pid=9749 comm="syz.3.1693" name="file1" dev="tmpfs" ino=1838
[  202.626098][   T48] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  202.652769][   T48] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  202.662651][   T48] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  202.691277][   T48] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -71
[  202.711495][   T48] usb 3-1: USB disconnect, device number 11
[  203.063708][ T9777] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1706'.
[  203.262798][   T10] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  203.434781][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  203.446043][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  203.455857][   T10] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  203.469032][   T10] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  203.478225][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.488177][   T10] usb 4-1: config 0 descriptor??
[  203.916368][   T10] plantronics 0003:047F:FFFF.001A: No inputs registered, leaving
[  203.945392][   T10] plantronics 0003:047F:FFFF.001A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  204.174781][   T48] usb 4-1: USB disconnect, device number 17
[  204.942641][   T48] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  205.042987][   T10] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  205.104233][ T9844] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1736'.
[  205.122628][ T9844] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1736'.
[  205.147828][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  205.177995][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  205.190540][ T9844] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1736'.
[  205.199760][   T48] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  205.222584][ T9844] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1736'.
[  205.243939][   T48] usb 2-1: New USB device found, idVendor=20d6, idProduct=cb17, bcdDevice= 0.00
[  205.262551][   T10] usb 6-1: Using ep0 maxpacket: 8
[  205.271583][   T10] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  205.272540][   T48] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.289539][   T10] usb 6-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  205.319099][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.343551][   T48] usb 2-1: config 0 descriptor??
[  205.352017][   T10] usb 6-1: config 0 descriptor??
[  205.368155][   T10] gspca_main: vc032x-2.14.0 probing 046d:0892
[  205.608821][ T9861] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  205.770593][   T48] hid-udraw 0003:20D6:CB17.001B: item fetching failed at offset 3/7
[  205.786959][   T48] hid-udraw 0003:20D6:CB17.001B: parse failed
[  205.794691][   T48] hid-udraw 0003:20D6:CB17.001B: probe with driver hid-udraw failed with error -22
[  205.971158][  T977] usb 2-1: USB disconnect, device number 20
[  206.464509][   T10] gspca_vc032x: reg_r err -71
[  206.470846][   T10] vc032x 6-1:0.0: probe with driver vc032x failed with error -71
[  206.508157][   T10] usb 6-1: USB disconnect, device number 8
[  206.700679][ T5830] Bluetooth: hci1: command 0x0406 tx timeout
[  208.440550][ T9934] program syz.0.1775 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  208.658767][ T9927] team0 (unregistering): Port device team_slave_0 removed
[  208.680860][ T9927] team0 (unregistering): Port device team_slave_1 removed
[  209.227862][ T9972] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1791'.
[  209.932820][   T48] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  210.092634][   T48] usb 2-1: Using ep0 maxpacket: 8
[  210.113590][   T48] usb 2-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  210.135433][   T48] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.159653][   T48] usb 2-1: Product: syz
[  210.167902][   T48] usb 2-1: Manufacturer: syz
[  210.176087][   T48] usb 2-1: SerialNumber: syz
[  210.182831][ T5947] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  210.199891][   T48] usb 2-1: config 0 descriptor??
[  210.216601][   T48] gspca_main: se401-2.14.0 probing 047d:5003
[  210.342570][ T5947] usb 4-1: Using ep0 maxpacket: 8
[  210.357524][ T5947] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  210.377496][ T5947] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.405803][ T5947] pvrusb2: Hardware description: Terratec Grabster AV400
[  210.425594][ T5947] pvrusb2: **********
[  210.429633][ T5947] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  210.460399][ T5947] pvrusb2: Important functionality might not be entirely working.
[  210.470531][ T5947] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  210.496416][ T5947] pvrusb2: **********
[  210.611864][ T2349] pvrusb2: Invalid write control endpoint
[  210.616304][   T48] gspca_se401: Frame size: 0x0 1/16th janggu
[  210.744342][ T2349] pvrusb2: Invalid write control endpoint
[  210.770875][ T2349] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  210.820424][   T48] input: se401 as /devices/platform/dummy_hcd.1/usb2/2-1/input/input18
[  210.829203][ T2349] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  210.848965][ T2349] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  210.871420][   T48] usb 2-1: USB disconnect, device number 21
[  210.882555][ T2349] pvrusb2: Device being rendered inoperable
[  210.910784][T10007] pvrusb2: Attempted to execute control transfer when device not ok
[  210.952751][ T2349] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  210.963059][   T10] usb 4-1: USB disconnect, device number 18
[  210.974817][ T2349] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  210.995354][ T2349] pvrusb2: Attached sub-driver cx25840
[  211.001447][ T2349] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  211.032545][ T2349] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  211.831322][T10074] loop6: detected capacity change from 0 to 524287999
[  212.951623][   T30] audit: type=1326 audit(1884000932.146:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10102 comm="syz.2.1851" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2a3478e929 code=0x0
[  212.972675][    C1] vkms_vblank_simulate: vblank timer overrun
[  213.059547][T10107] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  213.834674][   T48] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  213.861764][   T30] audit: type=1326 audit(1884000933.056:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10134 comm="syz.1.1865" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f704458e929 code=0x0
[  214.021823][   T48] usb 1-1: Using ep0 maxpacket: 8
[  214.055488][   T48] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  214.096483][   T48] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  214.131387][   T48] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  214.186213][   T48] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  214.222275][   T48] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  214.250360][   T48] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.486615][   T48] usb 1-1: GET_CAPABILITIES returned 0
[  214.498767][   T48] usbtmc 1-1:16.0: can't read capabilities
[  214.691001][   T48] usb 1-1: USB disconnect, device number 17
[  214.715319][T10161] syzkaller1: entered promiscuous mode
[  214.746416][T10161] syzkaller1: entered allmulticast mode
[  214.792579][   T10] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  214.976940][   T10] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  214.998338][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  215.024857][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  215.045033][   T10] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  215.070462][   T10] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  215.082497][   T10] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  215.110331][   T10] usb 3-1: Manufacturer: syz
[  215.117957][   T10] usb 3-1: config 0 descriptor??
[  215.544926][   T10] appleir 0003:05AC:8243.001C: unknown main item tag 0x0
[  215.584280][   T10] appleir 0003:05AC:8243.001C: No inputs registered, leaving
[  215.627315][   T10] appleir 0003:05AC:8243.001C: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[  216.388509][    T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!!
[  216.742699][   T48] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  216.910667][   T48] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  216.945871][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  216.970632][   T48] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  216.981092][   T48] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  216.998026][   T48] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  217.018120][   T30] audit: type=1326 audit(1884000936.216:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10211 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  217.022510][   T48] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  217.041138][   T30] audit: type=1326 audit(1884000936.246:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10211 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  217.067659][   T48] usb 2-1: Manufacturer: syz
[  217.072718][   T30] audit: type=1326 audit(1884000936.276:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10211 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  217.093892][   T48] usb 2-1: config 0 descriptor??
[  217.098622][   T30] audit: type=1326 audit(1884000936.276:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10211 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  217.131715][   T30] audit: type=1326 audit(1884000936.276:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10211 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  217.157992][   T30] audit: type=1326 audit(1884000936.296:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10211 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  217.204768][   T30] audit: type=1326 audit(1884000936.296:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10211 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  217.229840][   T30] audit: type=1326 audit(1884000936.296:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10211 comm="syz.0.1895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  217.251796][    C1] vkms_vblank_simulate: vblank timer overrun
[  217.536592][   T48] appleir 0003:05AC:8243.001D: unknown main item tag 0x0
[  217.556372][   T48] appleir 0003:05AC:8243.001D: No inputs registered, leaving
[  217.571937][   T48] appleir 0003:05AC:8243.001D: hiddev1,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  217.653171][  T977] usb 3-1: USB disconnect, device number 12
[  217.820383][ T5948] usb 2-1: USB disconnect, device number 22
[  218.218976][T10227] netlink: 264 bytes leftover after parsing attributes in process `syz.0.1900'.
[  218.235266][T10227] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1900'.
[  218.276733][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  218.391174][T10253] xt_CT: No such helper "pptp"
[  218.495086][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  218.777873][T10271] veth0_to_bond: entered promiscuous mode
[  218.786875][T10271] veth0_to_bond: left promiscuous mode
[  219.638740][T10310] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  220.273177][T10336] trusted_key: syz.1.1948 sent an empty control message without MSG_MORE.
[  220.350604][T10340] input: syz0 as /devices/virtual/input/input21
[  220.399116][T10340] input: failed to attach handler leds to device input21, error: -6
[  220.514517][T10350] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1954'.
[  220.538747][T10350] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1954'.
[  220.705538][T10363] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1960'.
[  220.730935][T10363] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1960'.
[  220.756364][T10363] gtp0: entered promiscuous mode
[  220.761522][T10363] gtp0: entered allmulticast mode
[  220.841790][T10369] unknown channel width for channel at 909000KHz?
[  221.082689][   T10] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  221.165522][T10384] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1970'.
[  221.245890][   T10] usb 4-1: Using ep0 maxpacket: 16
[  221.268092][   T10] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  221.278202][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.290553][   T10] usb 4-1: Product: syz
[  221.297320][   T10] usb 4-1: Manufacturer: syz
[  221.302050][   T10] usb 4-1: SerialNumber: syz
[  221.316082][   T10] usb 4-1: config 0 descriptor??
[  221.324212][   T10] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  221.333502][   T10] usb 4-1: Detected FT232H
[  221.531658][   T10] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  221.969889][   T10] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  222.024924][T10418] usb usb1: usbfs: process 10418 (syz.0.1985) did not claim interface 63 before use
[  222.197756][   T10] usb 4-1: USB disconnect, device number 19
[  222.215047][   T10] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  222.253986][   T10] ftdi_sio 4-1:0.0: device disconnected
[  222.478822][T10428] 9pnet: p9_errstr2errno: server reported unknown error �@�
[  222.750929][   T30] kauditd_printk_skb: 6 callbacks suppressed
[  222.750948][   T30] audit: type=1400 audit(1884000941.946:162): lsm=SMACK fn=smack_file_fcntl action=denied subject="w" object="_" requested=w pid=10437 comm="syz.1.1993" path="/408" dev="tmpfs" ino=2098
[  223.060365][T10458] program syz.3.2001 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  223.542812][T10484] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.2012'.
[  224.007087][T10506] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  224.014863][T10506] IPv6: NLM_F_CREATE should be set when creating new route
[  224.134322][ T5945] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  224.245738][   T30] audit: type=1326 audit(1884000943.446:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f704452ab19 code=0x7ffc0000
[  224.322159][   T30] audit: type=1326 audit(1884000943.466:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f704452ab19 code=0x7ffc0000
[  224.360608][ T5945] usb 1-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  224.374389][   T30] audit: type=1326 audit(1884000943.466:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f704452ab19 code=0x7ffc0000
[  224.396535][   T30] audit: type=1326 audit(1884000943.466:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704458e929 code=0x7ffc0000
[  224.432542][   T30] audit: type=1326 audit(1884000943.466:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704458e929 code=0x7ffc0000
[  224.483166][   T30] audit: type=1326 audit(1884000943.466:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f704452ab19 code=0x7ffc0000
[  224.528737][   T30] audit: type=1326 audit(1884000943.466:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704458e929 code=0x7ffc0000
[  224.535819][ T5945] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.561743][   T30] audit: type=1326 audit(1884000943.466:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704458e929 code=0x7ffc0000
[  224.583324][ T5945] usb 1-1: Product: syz
[  224.583349][ T5945] usb 1-1: Manufacturer: syz
[  224.583362][ T5945] usb 1-1: SerialNumber: syz
[  224.603284][ T5945] usb 1-1: config 0 descriptor??
[  224.614568][ T5945] i2c-tiny-usb 1-1:0.0: version 6d.cc found at bus 001 address 018
[  224.620809][   T30] audit: type=1326 audit(1884000943.466:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10512 comm="syz.1.2026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f704452ab19 code=0x7ffc0000
[  225.013577][ T5945]  (null): failure reading functionality
[  225.042722][ T5945] i2c i2c-1: failure reading functionality
[  225.059374][ T5945] i2c i2c-1: connected i2c-tiny-usb device
[  225.068322][ T5945] usb 1-1: USB disconnect, device number 18
[  225.356509][T10546] loop7: detected capacity change from 0 to 6
[  225.380356][T10546] Dev loop7: unable to read RDB block 6
[  225.388300][T10547] netlink: 71 bytes leftover after parsing attributes in process `syz.5.2040'.
[  225.412617][T10546]  loop7: unable to read partition table
[  225.418918][T10546] loop7: partition table beyond EOD, truncated
[  225.428390][T10546] loop_reread_partitions: partition scan of loop7 (�被x������ ) failed (rc=-5)
[  225.668797][T10560] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  226.087915][T10587] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.2058'.
[  226.190478][T10589] 9pnet: p9_errstr2errno: server reported unknown error �@
[  226.283000][T10593] misc userio: Begin command sent, but we're already running
[  227.048807][T10626] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2076'.
[  227.088351][T10626] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2076'.
[  227.562551][   T48] usb 3-1: new full-speed USB device number 13 using dummy_hcd
[  227.736590][   T48] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  227.762273][   T48] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  227.789285][   T48] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  227.807547][   T48] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  227.826145][   T48] usb 3-1: Product: syz
[  227.830365][   T48] usb 3-1: Manufacturer: syz
[  227.853884][   T48] usb 3-1: SerialNumber: syz
[  227.939676][T10671] loop6: detected capacity change from 0 to 74
[  228.079974][   T48] usb 3-1: 0:2 : does not exist
[  228.098094][   T48] usb 3-1: 5:0: failed to get current value for ch 0 (-22)
[  228.159572][   T48] usb 3-1: USB disconnect, device number 13
[  229.273916][   T30] kauditd_printk_skb: 35 callbacks suppressed
[  229.273934][   T30] audit: type=1326 audit(1884000948.466:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10739 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  229.343049][   T30] audit: type=1326 audit(1884000948.466:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10739 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  229.382481][   T30] audit: type=1326 audit(1884000948.466:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10739 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  229.419962][   T30] audit: type=1326 audit(1884000948.476:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10739 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  229.441540][    C1] vkms_vblank_simulate: vblank timer overrun
[  229.500111][   T30] audit: type=1326 audit(1884000948.476:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10739 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  229.522147][    C1] vkms_vblank_simulate: vblank timer overrun
[  229.583489][   T30] audit: type=1326 audit(1884000948.476:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10739 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  229.605074][    C1] vkms_vblank_simulate: vblank timer overrun
[  229.612539][   T30] audit: type=1326 audit(1884000948.476:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10739 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  229.636490][   T30] audit: type=1326 audit(1884000948.476:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10739 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  229.658042][    C1] vkms_vblank_simulate: vblank timer overrun
[  229.942734][ T5947] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  229.976612][T10775] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2129'.
[  230.103110][ T5947] usb 2-1: Using ep0 maxpacket: 8
[  230.110071][ T5947] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  230.136591][ T5947] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.159387][ T5947] usb 2-1: config 0 descriptor??
[  230.400013][ T5947] asix 2-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  230.533382][   T48] usb 1-1: new full-speed USB device number 19 using dummy_hcd
[  230.708801][   T48] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  231.119611][   T48] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  231.129560][   T48] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  231.142667][   T48] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  231.151726][   T48] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.163302][   T48] usb 1-1: config 0 descriptor??
[  231.259452][T10801] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  231.327146][ T5947] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  231.347149][ T5947] asix 2-1:0.0: probe with driver asix failed with error -71
[  231.380227][ T5947] usb 2-1: USB disconnect, device number 23
[  231.601623][   T48] plantronics 0003:047F:FFFF.001E: reserved main item tag 0xd
[  231.628380][   T48] plantronics 0003:047F:FFFF.001E: No inputs registered, leaving
[  231.646022][   T48] plantronics 0003:047F:FFFF.001E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  231.702598][ T5945] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  231.872707][ T5945] usb 6-1: Using ep0 maxpacket: 16
[  231.889522][ T5947] usb 1-1: USB disconnect, device number 19
[  231.901037][ T5945] usb 6-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  231.947906][ T5945] usb 6-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  231.960552][ T5945] usb 6-1: Product: syz
[  231.966165][ T5945] usb 6-1: Manufacturer: syz
[  231.970917][ T5945] usb 6-1: SerialNumber: syz
[  231.984044][ T5945] usb 6-1: config 0 descriptor??
[  232.198179][  T977] usb 6-1: USB disconnect, device number 9
[  232.254425][   T59] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.507191][T10845] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2158'.
[  232.852093][T10863] 9pnet: p9_errstr2errno: server reported unknown error �0x0000000000000004
[  233.116334][T10878] sctp: [Deprecated]: syz.5.2171 (pid 10878) Use of struct sctp_assoc_value in delayed_ack socket option.
[  233.116334][T10878] Use struct sctp_sack_info instead
[  233.153720][T10883] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  233.345947][   T48] kernel write not supported for file bpf-prog (pid: 48 comm: kworker/1:1)
[  234.767993][T10956] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2206'.
[  234.808806][T10956] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  234.928058][   T30] audit: type=1326 audit(1884000954.116:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  234.968226][   T30] audit: type=1326 audit(1884000954.116:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  234.995081][   T30] audit: type=1326 audit(1884000954.116:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  235.020308][T10956] batman_adv: batadv0: Removing interface: batadv_slave_1
[  235.034547][   T30] audit: type=1326 audit(1884000954.116:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  235.110050][   T30] audit: type=1326 audit(1884000954.116:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  235.154523][   T30] audit: type=1326 audit(1884000954.116:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  235.177709][   T30] audit: type=1326 audit(1884000954.116:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  235.199520][   T30] audit: type=1326 audit(1884000954.116:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  235.280760][T10977] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2215'.
[  235.292018][   T30] audit: type=1326 audit(1884000954.116:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ec538e929 code=0x7ffc0000
[  235.318034][T10979] ipvlan2: entered promiscuous mode
[  235.329049][T10979] ipvlan2: entered allmulticast mode
[  235.334488][   T30] audit: type=1326 audit(1884000954.116:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10961 comm="syz.3.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5ec532ab19 code=0x7ffc0000
[  235.356047][T10979] bridge0: entered allmulticast mode
[  235.359244][T10979] batman_adv: batadv0: Adding interface: ipvlan2
[  235.385917][T10979] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.411392][    C1] vkms_vblank_simulate: vblank timer overrun
[  235.424236][T10979] batman_adv: batadv0: Interface activated: ipvlan2
[  235.579134][T10988] veth0: entered promiscuous mode
[  235.605775][T10987] veth0: left promiscuous mode
[  236.388622][T11033] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.555340][T11033] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.749341][T11033] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.896706][T11033] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.329610][T11033] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  237.367119][T11033] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  237.392309][T11033] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  237.404973][ T5830] Bluetooth: hci5: command 0x0406 tx timeout
[  237.422530][T11033] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  237.613876][ T5947] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  237.773253][ T5947] usb 1-1: Using ep0 maxpacket: 32
[  237.797257][ T5947] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  237.809077][ T5947] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  237.819692][ T5947] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  237.830195][ T5947] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.864864][ T5947] usb 1-1: config 0 descriptor??
[  238.037573][ T5894] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  238.210706][ T5894] usb 6-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  238.225872][ T5894] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.235751][ T5894] usb 6-1: Product: syz
[  238.240061][ T5894] usb 6-1: Manufacturer: syz
[  238.248172][ T5894] usb 6-1: SerialNumber: syz
[  238.256046][ T5894] usb 6-1: config 0 descriptor??
[  238.290305][ T5947] savu 0003:1E7D:2D5A.001F: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  238.322703][ T5948] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  238.484282][ T5948] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  238.497760][ T5948] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  238.508234][ T5948] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.516329][ T5948] usb 3-1: Product: syz
[  238.520642][ T5948] usb 3-1: Manufacturer: syz
[  238.530395][ T5948] usb 3-1: SerialNumber: syz
[  238.547192][  T977] usb 1-1: USB disconnect, device number 20
[  238.668520][ T5894] usb 6-1: Firmware version (0.0) predates our first public release.
[  238.681896][ T5894] usb 6-1: Please update to version 0.2 or newer
[  238.690702][ T5894] usb 6-1: Firmware: build 
[  238.923680][ T5894] usb 6-1: USB disconnect, device number 10
[  239.559594][T11133] syzkaller1: entered promiscuous mode
[  239.573251][ T5948] cdc_ncm 3-1:1.0: bind() failure
[  239.582547][T11133] syzkaller1: entered allmulticast mode
[  239.593152][ T5948] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  239.600003][ T5948] cdc_ncm 3-1:1.1: bind() failure
[  239.625394][ T5948] usb 3-1: USB disconnect, device number 14
[  240.062333][T11158] syz.3.2292 (11158) used obsolete PPPIOCDETACH ioctl
[  240.516610][T11180] debugfs: Invalid uid '0x00000000ffffffff'
[  240.529428][T11179] pim6reg1: entered promiscuous mode
[  240.545696][T11179] pim6reg1: entered allmulticast mode
[  240.736956][T11184] netlink: 'syz.0.2304': attribute type 10 has an invalid length.
[  240.742677][  T977] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  240.753264][T11184] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.762712][T11184] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.932486][  T977] usb 6-1: Using ep0 maxpacket: 8
[  240.948079][  T977] usb 6-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  240.958103][  T977] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  240.974361][  T977] usb 6-1: Product: syz
[  240.978885][  T977] usb 6-1: Manufacturer: syz
[  240.986829][  T977] usb 6-1: SerialNumber: syz
[  241.003876][  T977] usb 6-1: config 0 descriptor??
[  241.020952][  T977] gspca_main: sq930x-2.14.0 probing 2770:930c
[  241.168063][T11190] syzkaller1: entered promiscuous mode
[  241.182638][T11190] syzkaller1: entered allmulticast mode
[  241.388564][T11193] Bluetooth: MGMT ver 1.23
[  241.637123][ T5947] kernel read not supported for file /video37 (pid: 5947 comm: kworker/0:7)
[  241.825546][  T977] gspca_sq930x: ucbus_write failed -71
[  242.043166][  T977] gspca_sq930x: Sensor ov9630 not yet treated
[  242.052053][  T977] sq930x 6-1:0.0: probe with driver sq930x failed with error -22
[  242.106621][  T977] usb 6-1: USB disconnect, device number 11
[  242.371709][T11228] sctp: [Deprecated]: syz.1.2323 (pid 11228) Use of struct sctp_assoc_value in delayed_ack socket option.
[  242.371709][T11228] Use struct sctp_sack_info instead
[  242.566772][   T30] kauditd_printk_skb: 23 callbacks suppressed
[  242.566785][   T30] audit: type=1326 audit(1884000961.766:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7ffc0000
[  242.634394][   T30] audit: type=1326 audit(1884000961.766:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9988d2ab19 code=0x7ffc0000
[  242.656228][   T30] audit: type=1326 audit(1884000961.766:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7ffc0000
[  242.679452][   T30] audit: type=1326 audit(1884000961.766:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9988d2ab19 code=0x7ffc0000
[  242.701229][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  242.710152][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  242.728481][   T30] audit: type=1326 audit(1884000961.766:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7ffc0000
[  242.750823][ T5947] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  242.800159][   T30] audit: type=1326 audit(1884000961.766:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9988d2ab19 code=0x7ffc0000
[  242.822807][   T30] audit: type=1326 audit(1884000961.766:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9988d2ab19 code=0x7ffc0000
[  242.845677][   T30] audit: type=1326 audit(1884000961.766:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9988d2ab19 code=0x7ffc0000
[  242.869041][   T30] audit: type=1326 audit(1884000961.766:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9988d2ab19 code=0x7ffc0000
[  242.892500][   T30] audit: type=1326 audit(1884000961.766:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11238 comm="syz.5.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9988d2ab19 code=0x7ffc0000
[  242.942637][ T5947] usb 3-1: Using ep0 maxpacket: 32
[  242.949291][ T5947] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[  242.958090][ T5947] usb 3-1: config 0 has no interface number 0
[  242.964401][ T5947] usb 3-1: config 0 interface 184 has no altsetting 0
[  242.978570][ T5947] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  242.990693][ T5947] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  243.015332][ T5947] usb 3-1: Product: syz
[  243.019820][ T5947] usb 3-1: Manufacturer: syz
[  243.034740][ T5947] usb 3-1: SerialNumber: syz
[  243.042804][ T5947] usb 3-1: config 0 descriptor??
[  243.050657][ T5947] smsc75xx v1.0.0
[  243.062368][T11246] syzkaller1: entered promiscuous mode
[  243.068991][T11246] syzkaller1: entered allmulticast mode
[  243.686707][ T5947] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  243.707979][ T5947] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  243.878184][T11284] syzkaller1: entered promiscuous mode
[  243.883932][T11284] syzkaller1: entered allmulticast mode
[  243.930055][ T5947] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  243.954913][ T5947] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  243.972827][ T5947] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  244.002527][ T5947] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  244.019840][T11291] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  244.027191][ T5947] smsc75xx 3-1:0.184: probe with driver smsc75xx failed with error -71
[  244.050214][T11288] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  244.052694][ T5947] usb 3-1: USB disconnect, device number 15
[  244.209127][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  244.345788][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  244.399553][T11299] kvm: apic: phys broadcast and lowest prio
[  245.919168][T11357] PM: Enabling pm_trace changes system date and time during resume.
[  245.919168][T11357] PM: Correct system time has to be restored manually after resume.
[  246.609048][T11392] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2400'.
[  246.620598][T11392] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2400'.
[  246.656979][T11392] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  246.666289][T11392] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  246.675389][T11392] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  246.684571][T11392] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  246.702649][ T5947] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  246.874426][ T5947] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  246.892215][ T5947] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  246.943398][ T5947] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  246.976607][ T5947] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  247.036577][ T5947] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  247.062601][ T5947] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.079686][ T5947] usb 3-1: config 0 descriptor??
[  247.505147][ T5947] plantronics 0003:047F:FFFF.0020: ignoring exceeding usage max
[  247.525342][ T5947] plantronics 0003:047F:FFFF.0020: No inputs registered, leaving
[  247.560693][ T5947] plantronics 0003:047F:FFFF.0020: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  247.757857][   T24] usb 4-1: new full-speed USB device number 20 using dummy_hcd
[  247.925566][   T24] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  247.935790][   T24] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  247.959525][   T24] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  247.978978][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.122840][ T5948] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  248.210997][   T24] usb 4-1: usb_control_msg returned -32
[  248.223770][   T24] usbtmc 4-1:16.0: can't read capabilities
[  248.292649][ T5948] usb 1-1: Using ep0 maxpacket: 16
[  248.307761][ T5948] usb 1-1: config 64 has an invalid interface number: 176 but max is 0
[  248.323034][ T5948] usb 1-1: config 64 has no interface number 0
[  248.329300][ T5948] usb 1-1: config 64 interface 176 has no altsetting 0
[  248.347655][ T5948] usb 1-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=14.8d
[  248.363007][ T5948] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.371058][ T5948] usb 1-1: Product: syz
[  248.378545][ T5948] usb 1-1: Manufacturer: syz
[  248.383808][ T5948] usb 1-1: SerialNumber: syz
[  248.410113][T11445] syzkaller1: entered promiscuous mode
[  248.416110][T11445] syzkaller1: entered allmulticast mode
[  248.628024][ T5948] peak_usb 1-1:64.176 can0: unable to request usb[type=0 value=1] err=-71
[  248.645721][ T5948] peak_usb 1-1:64.176: unable to read PCAN-USB X6 firmware info (err -71)
[  248.663796][T11453] netlink: 'syz.1.2426': attribute type 10 has an invalid length.
[  248.671758][T11453] netlink: 55 bytes leftover after parsing attributes in process `syz.1.2426'.
[  248.726056][ T5948] peak_usb 1-1:64.176: probe with driver peak_usb failed with error -71
[  248.748299][ T5948] usb 1-1: USB disconnect, device number 21
[  249.180595][T11471] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  249.627652][ T5947] usb 3-1: USB disconnect, device number 16
[  249.756074][   T30] kauditd_printk_skb: 74 callbacks suppressed
[  249.756092][   T30] audit: type=1326 audit(1884000968.946:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  249.852557][   T30] audit: type=1326 audit(1884000968.946:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  249.874340][    C0] vkms_vblank_simulate: vblank timer overrun
[  249.901553][   T30] audit: type=1326 audit(1884000968.946:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  249.923247][    C0] vkms_vblank_simulate: vblank timer overrun
[  249.931229][   T30] audit: type=1326 audit(1884000968.946:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  249.955595][   T30] audit: type=1326 audit(1884000968.946:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  249.980037][   T30] audit: type=1326 audit(1884000968.946:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  250.003395][   T30] audit: type=1326 audit(1884000968.946:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  250.025132][    C0] vkms_vblank_simulate: vblank timer overrun
[  250.033072][   T30] audit: type=1326 audit(1884000968.946:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  250.059035][   T30] audit: type=1326 audit(1884000968.946:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  250.081451][   T30] audit: type=1326 audit(1884000968.946:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11461 comm="syz.5.2430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9988d8e929 code=0x7fc00000
[  250.522599][  T977] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  250.525902][ T5894] usb 4-1: USB disconnect, device number 20
[  250.574010][T11516] syzkaller1: entered promiscuous mode
[  250.580422][T11516] syzkaller1: entered allmulticast mode
[  250.692560][  T977] usb 6-1: Using ep0 maxpacket: 16
[  250.707113][  T977] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  250.740743][  T977] usb 6-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00
[  250.761964][  T977] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.833476][  T977] usb 6-1: config 0 descriptor??
[  251.043717][T11531] kernel read not supported for file /file1 (pid: 11531 comm: syz.3.2461)
[  251.063569][  T977] usbhid 6-1:0.0: can't add hid device: -71
[  251.083810][  T977] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  251.111007][  T977] usb 6-1: USB disconnect, device number 12
[  251.826859][T11553] Invalid source name
[  252.115948][T11562] openvswitch: netlink: IPv4 tun info is not correct
[  252.553454][  T977] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  252.712607][  T977] usb 2-1: Using ep0 maxpacket: 8
[  252.762670][  T977] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  252.787364][  T977] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  252.816758][  T977] usb 2-1: Product: syz
[  252.820974][  T977] usb 2-1: Manufacturer: syz
[  252.835370][  T977] usb 2-1: SerialNumber: syz
[  252.849891][  T977] usb 2-1: config 0 descriptor??
[  253.140664][  T977] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  253.951069][  T977] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  253.979667][  T977] usb 2-1: USB disconnect, device number 24
[  254.602205][T11646] netlink: 14528 bytes leftover after parsing attributes in process `syz.0.2510'.
[  255.072323][T11667] input: syz0 as /devices/virtual/input/input24
[  255.212989][T11671] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  255.570843][   T30] kauditd_printk_skb: 211 callbacks suppressed
[  255.570861][   T30] audit: type=1326 audit(1884000974.766:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  255.638648][   T30] audit: type=1326 audit(1884000974.766:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  255.667088][   T30] audit: type=1326 audit(1884000974.836:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  255.730706][   T30] audit: type=1326 audit(1884000974.836:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  255.765664][   T30] audit: type=1326 audit(1884000974.836:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  255.833053][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  255.842731][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  255.879664][   T30] audit: type=1326 audit(1884000974.836:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  255.976385][   T30] audit: type=1326 audit(1884000974.836:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  256.029090][T11705] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2536'.
[  256.038312][   T30] audit: type=1326 audit(1884000974.836:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  256.067794][   T30] audit: type=1326 audit(1884000974.836:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  256.097260][   T30] audit: type=1326 audit(1884000974.916:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11689 comm="syz.0.2529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6845d8e929 code=0x7ffc0000
[  256.222778][  T977] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  256.373737][  T977] usb 4-1: Using ep0 maxpacket: 32
[  256.386663][  T977] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  256.393331][T11713] syzkaller1: entered promiscuous mode
[  256.409967][  T977] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  256.425358][  T977] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  256.430269][T11713] syzkaller1: entered allmulticast mode
[  256.436676][  T977] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.457802][  T977] usb 4-1: config 0 descriptor??
[  256.466418][  T977] hub 4-1:0.0: USB hub found
[  256.673470][  T977] hub 4-1:0.0: 1 port detected
[  257.080030][  T977] usb 4-1: USB disconnect, device number 21
[  257.487696][T11740] binder: 11739:11740 ioctl c0306201 200000001a80 returned -14
[  257.832553][ T5894] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  257.992519][ T5894] usb 2-1: Using ep0 maxpacket: 32
[  258.008157][ T5894] usb 2-1: config 0 has an invalid interface number: 85 but max is 0
[  258.020012][ T5894] usb 2-1: config 0 has no interface number 0
[  258.044524][ T5894] usb 2-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  258.086388][ T5894] usb 2-1: config 0 interface 85 has no altsetting 0
[  258.117731][ T5894] usb 2-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  258.136095][ T5894] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.160246][ T5894] usb 2-1: Product: syz
[  258.165424][ T5894] usb 2-1: Manufacturer: syz
[  258.199457][ T5894] usb 2-1: SerialNumber: syz
[  258.224997][ T5894] usb 2-1: config 0 descriptor??
[  258.452748][T11752] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  258.496423][T11752] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  258.932617][ T5894] appletouch 2-1:0.85: Geyser mode initialized.
[  258.934722][ T5894] input: appletouch as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.85/input/input25
[  259.163222][ T5947] usb 2-1: USB disconnect, device number 25
[  259.164619][    C1] appletouch 2-1:0.85: atp_complete: usb_submit_urb failed with result -19
[  259.300706][ T5947] appletouch 2-1:0.85: input: appletouch disconnected
[  259.351157][T11807] program syz.5.2581 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  259.677252][T11826] 
[  259.679646][T11826] =====================================================
[  259.686586][T11826] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected
[  259.694069][T11826] 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 Not tainted
[  259.701187][T11826] -----------------------------------------------------
[  259.708295][T11826] syz.3.2590/11826 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire:
[  259.716007][T11826] ffff88802075a360 (&new->fa_lock){....}-{3:3}, at: kill_fasync+0x199/0x4d0
[  259.724705][T11826] 
[  259.724705][T11826] and this task is already holding:
[  259.732057][T11826] ffff8880298dc028 (&client->buffer_lock){....}-{3:3}, at: evdev_pass_values+0xb9/0xbd0
[  259.741902][T11826] which would create a new lock dependency:
[  259.747776][T11826]  (&client->buffer_lock){....}-{3:3} -> (&new->fa_lock){....}-{3:3}
[  259.755869][T11826] 
[  259.755869][T11826] but this new dependency connects a SOFTIRQ-irq-safe lock:
[  259.765345][T11826]  (&dev->event_lock#2){..-.}-{3:3}
[  259.765378][T11826] 
[  259.765378][T11826] ... which became SOFTIRQ-irq-safe at:
[  259.778352][T11826]   lock_acquire+0x120/0x360
[  259.783028][T11826]   _raw_spin_lock_irqsave+0xa7/0xf0
[  259.788307][T11826]   input_event+0x7a/0xc0
[  259.792630][T11826]   atp_complete_geyser_3_4+0x11f2/0x1e80
[  259.798344][T11826]   __usb_hcd_giveback_urb+0x417/0x690
[  259.803792][T11826]   dummy_timer+0x862/0x4550
[  259.808366][T11826]   __hrtimer_run_queues+0x529/0xc60
[  259.813642][T11826]   hrtimer_run_softirq+0x187/0x2b0
[  259.818833][T11826]   handle_softirqs+0x286/0x870
[  259.823678][T11826]   __irq_exit_rcu+0xca/0x1f0
[  259.828348][T11826]   irq_exit_rcu+0x9/0x30
[  259.832670][T11826]   sysvec_apic_timer_interrupt+0xa6/0xc0
[  259.838380][T11826]   asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  259.844431][T11826]   _raw_spin_unlock_irqrestore+0xa8/0x110
[  259.850237][T11826]   dummy_urb_enqueue+0x58a/0x780
[  259.855247][T11826]   usb_hcd_submit_urb+0x322/0x1aa0
[  259.860433][T11826]   atp_open+0x63/0xc0
[  259.864491][T11826]   input_open_device+0x1c2/0x360
[  259.869598][T11826]   mousedev_open_device+0xcc/0x150
[  259.874783][T11826]   mousedev_open+0x2ec/0x4a0
[  259.879442][T11826]   chrdev_open+0x4c9/0x5e0
[  259.883938][T11826]   do_dentry_open+0xdf0/0x1970
[  259.888781][T11826]   vfs_open+0x3b/0x340
[  259.892936][T11826]   path_openat+0x2ee5/0x3830
[  259.897597][T11826]   do_filp_open+0x1fa/0x410
[  259.902181][T11826]   do_sys_openat2+0x121/0x1c0
[  259.906938][T11826]   __x64_sys_openat+0x138/0x170
[  259.911869][T11826]   do_syscall_64+0xfa/0x3b0
[  259.916455][T11826]   entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.922423][T11826] 
[  259.922423][T11826] to a SOFTIRQ-irq-unsafe lock:
[  259.929442][T11826]  (tasklist_lock){.+.+}-{3:3}
[  259.929470][T11826] 
[  259.929470][T11826] ... which became SOFTIRQ-irq-unsafe at:
[  259.942108][T11826] ...
[  259.942119][T11826]   lock_acquire+0x120/0x360
[  259.949271][T11826]   _raw_read_lock+0x36/0x50
[  259.953862][T11826]   __do_wait+0xde/0x740
[  259.958096][T11826]   do_wait+0x1f8/0x520
[  259.962254][T11826]   kernel_wait+0xab/0x170
[  259.966748][T11826]   call_usermodehelper_exec_work+0xbe/0x230
[  259.972832][T11826]   process_scheduled_works+0xade/0x17b0
[  259.978466][T11826]   worker_thread+0x8a0/0xda0
[  259.983145][T11826]   kthread+0x70e/0x8a0
[  259.987291][T11826]   ret_from_fork+0x3fc/0x770
[  259.992097][T11826]   ret_from_fork_asm+0x1a/0x30
[  259.996938][T11826] 
[  259.996938][T11826] other info that might help us debug this:
[  259.996938][T11826] 
[  260.007152][T11826] Chain exists of:
[  260.007152][T11826]   &dev->event_lock#2 --> &client->buffer_lock --> tasklist_lock
[  260.007152][T11826] 
[  260.020805][T11826]  Possible interrupt unsafe locking scenario:
[  260.020805][T11826] 
[  260.029199][T11826]        CPU0                    CPU1
[  260.034553][T11826]        ----                    ----
[  260.039906][T11826]   lock(tasklist_lock);
[  260.044337][T11826]                                local_irq_disable();
[  260.051078][T11826]                                lock(&dev->event_lock#2);
[  260.058293][T11826]                                lock(&client->buffer_lock);
[  260.065667][T11826]   <Interrupt>
[  260.069111][T11826]     lock(&dev->event_lock#2);
[  260.073960][T11826] 
[  260.073960][T11826]  *** DEADLOCK ***
[  260.073960][T11826] 
[  260.082104][T11826] 7 locks held by syz.3.2590/11826:
[  260.087290][T11826]  #0: ffff8880298ff118 (&evdev->mutex){+.+.}-{4:4}, at: evdev_write+0x1a1/0x480
[  260.096429][T11826]  #1: ffff888141381230 (&dev->event_lock#2){..-.}-{3:3}, at: input_inject_event+0xab/0x320
[  260.106530][T11826]  #2: ffffffff8e13eda0 (rcu_read_lock){....}-{1:3}, at: input_inject_event+0xbc/0x320
[  260.116361][T11826]  #3: ffffffff8e13eda0 (rcu_read_lock){....}-{1:3}, at: input_pass_values+0x8d/0x890
[  260.126018][T11826]  #4: ffffffff8e13eda0 (rcu_read_lock){....}-{1:3}, at: evdev_events+0x79/0x340
[  260.135152][T11826]  #5: ffff8880298dc028 (&client->buffer_lock){....}-{3:3}, at: evdev_pass_values+0xb9/0xbd0
[  260.145346][T11826]  #6: ffffffff8e13eda0 (rcu_read_lock){....}-{1:3}, at: kill_fasync+0x53/0x4d0
[  260.154390][T11826] 
[  260.154390][T11826] the dependencies between SOFTIRQ-irq-safe lock and the holding lock:
[  260.164882][T11826]  -> (&dev->event_lock#2){..-.}-{3:3} {
[  260.170541][T11826]     IN-SOFTIRQ-W at:
[  260.174596][T11826]                       lock_acquire+0x120/0x360
[  260.180915][T11826]                       _raw_spin_lock_irqsave+0xa7/0xf0
[  260.187941][T11826]                       input_event+0x7a/0xc0
[  260.194261][T11826]                       atp_complete_geyser_3_4+0x11f2/0x1e80
[  260.201799][T11826]                       __usb_hcd_giveback_urb+0x417/0x690
[  260.209184][T11826]                       dummy_timer+0x862/0x4550
[  260.215501][T11826]                       __hrtimer_run_queues+0x529/0xc60
[  260.222522][T11826]                       hrtimer_run_softirq+0x187/0x2b0
[  260.229451][T11826]                       handle_softirqs+0x286/0x870
[  260.236035][T11826]                       __irq_exit_rcu+0xca/0x1f0
[  260.242443][T11826]                       irq_exit_rcu+0x9/0x30
[  260.248502][T11826]                       sysvec_apic_timer_interrupt+0xa6/0xc0
[  260.255952][T11826]                       asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  260.263757][T11826]                       _raw_spin_unlock_irqrestore+0xa8/0x110
[  260.271638][T11826]                       dummy_urb_enqueue+0x58a/0x780
[  260.278392][T11826]                       usb_hcd_submit_urb+0x322/0x1aa0
[  260.285340][T11826]                       atp_open+0x63/0xc0
[  260.291138][T11826]                       input_open_device+0x1c2/0x360
[  260.297898][T11826]                       mousedev_open_device+0xcc/0x150
[  260.304827][T11826]                       mousedev_open+0x2ec/0x4a0
[  260.311230][T11826]                       chrdev_open+0x4c9/0x5e0
[  260.317462][T11826]                       do_dentry_open+0xdf0/0x1970
[  260.324046][T11826]                       vfs_open+0x3b/0x340
[  260.329931][T11826]                       path_openat+0x2ee5/0x3830
[  260.336348][T11826]                       do_filp_open+0x1fa/0x410
[  260.342680][T11826]                       do_sys_openat2+0x121/0x1c0
[  260.349189][T11826]                       __x64_sys_openat+0x138/0x170
[  260.355868][T11826]                       do_syscall_64+0xfa/0x3b0
[  260.362180][T11826]                       entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.370146][T11826]     INITIAL USE at:
[  260.374120][T11826]                      lock_acquire+0x120/0x360
[  260.380365][T11826]                      _raw_spin_lock_irqsave+0xa7/0xf0
[  260.387311][T11826]                      input_inject_event+0xab/0x320
[  260.393996][T11826]                      kbd_led_trigger_activate+0xbc/0x100
[  260.401341][T11826]                      led_trigger_set+0x52a/0x950
[  260.407868][T11826]                      led_trigger_set_default+0x260/0x2a0
[  260.415051][T11826]                      led_classdev_register_ext+0x73d/0x930
[  260.422589][T11826]                      input_leds_connect+0x517/0x790
[  260.429353][T11826]                      input_register_device+0xcee/0x10b0
[  260.436539][T11826]                      atkbd_connect+0x70e/0x9c0
[  260.442860][T11826]                      serio_driver_probe+0x7f/0xa0
[  260.449434][T11826]                      really_probe+0x26a/0x9a0
[  260.455664][T11826]                      __driver_probe_device+0x18c/0x2f0
[  260.462674][T11826]                      driver_probe_device+0x4f/0x430
[  260.469422][T11826]                      __driver_attach+0x452/0x700
[  260.475908][T11826]                      bus_for_each_dev+0x230/0x2b0
[  260.482493][T11826]                      serio_handle_event+0x1a2/0x860
[  260.489247][T11826]                      process_scheduled_works+0xade/0x17b0
[  260.496521][T11826]                      worker_thread+0x8a0/0xda0
[  260.502839][T11826]                      kthread+0x70e/0x8a0
[  260.508627][T11826]                      ret_from_fork+0x3fc/0x770
[  260.514943][T11826]                      ret_from_fork_asm+0x1a/0x30
[  260.521430][T11826]   }
[  260.524000][T11826]   ... key      at: [<ffffffff99dcffc0>] input_allocate_device.__key.5+0x0/0x20
[  260.533106][T11826] -> (&client->buffer_lock){....}-{3:3} {
[  260.538836][T11826]    INITIAL USE at:
[  260.542721][T11826]                    lock_acquire+0x120/0x360
[  260.548781][T11826]                    _raw_spin_lock+0x2e/0x40
[  260.554847][T11826]                    evdev_pass_values+0xb9/0xbd0
[  260.561246][T11826]                    evdev_events+0x1e6/0x340
[  260.567297][T11826]                    input_pass_values+0x288/0x890
[  260.573789][T11826]                    input_event_dispose+0x330/0x6b0
[  260.580544][T11826]                    input_inject_event+0x1fe/0x320
[  260.587123][T11826]                    evdev_write+0x2fc/0x480
[  260.593089][T11826]                    vfs_write+0x27e/0xa90
[  260.598886][T11826]                    ksys_write+0x145/0x250
[  260.604766][T11826]                    do_syscall_64+0xfa/0x3b0
[  260.610820][T11826]                    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.618287][T11826]  }
[  260.620771][T11826]  ... key      at: [<ffffffff99dd0260>] evdev_open.__key.25+0x0/0x20
[  260.628927][T11826]  ... acquired at:
[  260.632713][T11826]    lock_acquire+0x120/0x360
[  260.637555][T11826]    _raw_spin_lock+0x2e/0x40
[  260.642229][T11826]    evdev_pass_values+0xb9/0xbd0
[  260.647240][T11826]    evdev_events+0x1e6/0x340
[  260.651904][T11826]    input_pass_values+0x288/0x890
[  260.657029][T11826]    input_event_dispose+0x330/0x6b0
[  260.662314][T11826]    input_inject_event+0x1fe/0x320
[  260.667606][T11826]    evdev_write+0x2fc/0x480
[  260.672186][T11826]    vfs_write+0x27e/0xa90
[  260.676772][T11826]    ksys_write+0x145/0x250
[  260.681265][T11826]    do_syscall_64+0xfa/0x3b0
[  260.685930][T11826]    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.691987][T11826] 
[  260.694299][T11826] 
[  260.694299][T11826] the dependencies between the lock to be acquired
[  260.694308][T11826]  and SOFTIRQ-irq-unsafe lock:
[  260.707888][T11826]   -> (tasklist_lock){.+.+}-{3:3} {
[  260.713185][T11826]      HARDIRQ-ON-R at:
[  260.717325][T11826]                         lock_acquire+0x120/0x360
[  260.723820][T11826]                         _raw_read_lock+0x36/0x50
[  260.730314][T11826]                         __do_wait+0xde/0x740
[  260.736458][T11826]                         do_wait+0x1f8/0x520
[  260.742608][T11826]                         kernel_wait+0xab/0x170
[  260.748919][T11826]                         call_usermodehelper_exec_work+0xbe/0x230
[  260.757074][T11826]                         process_scheduled_works+0xade/0x17b0
[  260.764607][T11826]                         worker_thread+0x8a0/0xda0
[  260.771185][T11826]                         kthread+0x70e/0x8a0
[  260.777246][T11826]                         ret_from_fork+0x3fc/0x770
[  260.783827][T11826]                         ret_from_fork_asm+0x1a/0x30
[  260.790576][T11826]      SOFTIRQ-ON-R at:
[  260.794717][T11826]                         lock_acquire+0x120/0x360
[  260.801206][T11826]                         _raw_read_lock+0x36/0x50
[  260.807789][T11826]                         __do_wait+0xde/0x740
[  260.813932][T11826]                         do_wait+0x1f8/0x520
[  260.819991][T11826]                         kernel_wait+0xab/0x170
[  260.826307][T11826]                         call_usermodehelper_exec_work+0xbe/0x230
[  260.834189][T11826]                         process_scheduled_works+0xade/0x17b0
[  260.841722][T11826]                         worker_thread+0x8a0/0xda0
[  260.848301][T11826]                         kthread+0x70e/0x8a0
[  260.854350][T11826]                         ret_from_fork+0x3fc/0x770
[  260.860927][T11826]                         ret_from_fork_asm+0x1a/0x30
[  260.867705][T11826]      INITIAL USE at:
[  260.871760][T11826]                        lock_acquire+0x120/0x360
[  260.878167][T11826]                        _raw_write_lock_irq+0xa2/0xf0
[  260.885010][T11826]                        copy_process+0x224f/0x3c00
[  260.891615][T11826]                        kernel_clone+0x224/0x7f0
[  260.898031][T11826]                        user_mode_thread+0xdd/0x140
[  260.904705][T11826]                        rest_init+0x23/0x300
[  260.910765][T11826]                        start_kernel+0x47d/0x500
[  260.917174][T11826]                        x86_64_start_reservations+0x24/0x30
[  260.924532][T11826]                        x86_64_start_kernel+0x143/0x1c0
[  260.931537][T11826]                        common_startup_64+0x13e/0x147
[  260.938382][T11826]      INITIAL READ USE at:
[  260.942880][T11826]                             lock_acquire+0x120/0x360
[  260.949810][T11826]                             _raw_read_lock+0x36/0x50
[  260.956659][T11826]                             __do_wait+0xde/0x740
[  260.963149][T11826]                             do_wait+0x1f8/0x520
[  260.969563][T11826]                             kernel_wait+0xab/0x170
[  260.976246][T11826]                             call_usermodehelper_exec_work+0xbe/0x230
[  260.984562][T11826]                             process_scheduled_works+0xade/0x17b0
[  260.992444][T11826]                             worker_thread+0x8a0/0xda0
[  260.999383][T11826]                             kthread+0x70e/0x8a0
[  261.005794][T11826]                             ret_from_fork+0x3fc/0x770
[  261.012720][T11826]                             ret_from_fork_asm+0x1a/0x30
[  261.019839][T11826]    }
[  261.022504][T11826]    ... key      at: [<ffffffff8de0c058>] tasklist_lock+0x18/0x40
[  261.030398][T11826]    ... acquired at:
[  261.034363][T11826]    lock_acquire+0x120/0x360
[  261.039038][T11826]    _raw_read_lock+0x36/0x50
[  261.043706][T11826]    send_sigurg+0x12b/0x420
[  261.048279][T11826]    sk_send_sigurg+0x6c/0x2e0
[  261.053039][T11826]    queue_oob+0x490/0x5a0
[  261.057445][T11826]    unix_stream_sendmsg+0xaf9/0xc90
[  261.062719][T11826]    __sock_sendmsg+0x219/0x270
[  261.067560][T11826]    ____sys_sendmsg+0x52d/0x830
[  261.072487][T11826]    ___sys_sendmsg+0x21f/0x2a0
[  261.077337][T11826]    __sys_sendmmsg+0x227/0x430
[  261.082284][T11826]    __x64_sys_sendmmsg+0xa0/0xc0
[  261.087326][T11826]    do_syscall_64+0xfa/0x3b0
[  261.091996][T11826]    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.098055][T11826] 
[  261.100362][T11826]  -> (&f_owner->lock){....}-{3:3} {
[  261.105655][T11826]     INITIAL USE at:
[  261.109625][T11826]                      lock_acquire+0x120/0x360
[  261.115858][T11826]                      _raw_write_lock_irq+0xa2/0xf0
[  261.122525][T11826]                      __f_setown+0x67/0x370
[  261.128501][T11826]                      do_fcntl+0x15ff/0x1910
[  261.134641][T11826]                      __se_sys_fcntl+0xc8/0x150
[  261.140960][T11826]                      do_syscall_64+0xfa/0x3b0
[  261.147197][T11826]                      entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.154829][T11826]     INITIAL READ USE at:
[  261.159231][T11826]                           lock_acquire+0x120/0x360
[  261.165898][T11826]                           _raw_read_lock_irqsave+0xaf/0x100
[  261.173345][T11826]                           send_sigurg+0x55/0x420
[  261.179832][T11826]                           sk_send_sigurg+0x6c/0x2e0
[  261.186586][T11826]                           queue_oob+0x490/0x5a0
[  261.192990][T11826]                           unix_stream_sendmsg+0xaf9/0xc90
[  261.200265][T11826]                           __sock_sendmsg+0x219/0x270
[  261.207104][T11826]                           ____sys_sendmsg+0x505/0x830
[  261.214035][T11826]                           ___sys_sendmsg+0x21f/0x2a0
[  261.220889][T11826]                           __x64_sys_sendmsg+0x19b/0x260
[  261.228015][T11826]                           do_syscall_64+0xfa/0x3b0
[  261.234685][T11826]                           entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.242745][T11826]   }
[  261.245327][T11826]   ... key      at: [<ffffffff99ac13c0>] file_f_owner_allocate.__key+0x0/0x20
[  261.254257][T11826]   ... acquired at:
[  261.258134][T11826]    lock_acquire+0x120/0x360
[  261.262804][T11826]    _raw_read_lock_irqsave+0xaf/0x100
[  261.268271][T11826]    send_sigio+0x38/0x370
[  261.272704][T11826]    kill_fasync+0x24d/0x4d0
[  261.277283][T11826]    lease_break_callback+0x26/0x30
[  261.282473][T11826]    __break_lease+0x6a5/0x1620
[  261.287320][T11826]    do_dentry_open+0xd62/0x1970
[  261.292247][T11826]    vfs_open+0x3b/0x340
[  261.296487][T11826]    path_openat+0x2ee5/0x3830
[  261.301234][T11826]    do_filp_open+0x1fa/0x410
[  261.305904][T11826]    do_sys_openat2+0x121/0x1c0
[  261.310760][T11826]    __x64_sys_openat+0x138/0x170
[  261.315776][T11826]    do_syscall_64+0xfa/0x3b0
[  261.320437][T11826]    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.326492][T11826] 
[  261.328805][T11826] -> (&new->fa_lock){....}-{3:3} {
[  261.334013][T11826]    INITIAL USE at:
[  261.337899][T11826]                    lock_acquire+0x120/0x360
[  261.343965][T11826]                    _raw_write_lock_irq+0xa2/0xf0
[  261.350460][T11826]                    fasync_insert_entry+0xc3/0x270
[  261.357036][T11826]                    lease_setup+0x86/0x110
[  261.362925][T11826]                    generic_setlease+0xd5d/0x1240
[  261.369450][T11826]                    fcntl_setlease+0x3a2/0x4c0
[  261.375865][T11826]                    do_fcntl+0x6a9/0x1910
[  261.381673][T11826]                    __se_sys_fcntl+0xc8/0x150
[  261.387822][T11826]                    do_syscall_64+0xfa/0x3b0
[  261.393877][T11826]                    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.401321][T11826]    INITIAL READ USE at:
[  261.405644][T11826]                         lock_acquire+0x120/0x360
[  261.412136][T11826]                         _raw_read_lock_irqsave+0xaf/0x100
[  261.419409][T11826]                         kill_fasync+0x199/0x4d0
[  261.425805][T11826]                         sock_wake_async+0x137/0x160
[  261.432551][T11826]                         sock_def_error_report+0x332/0x390
[  261.439827][T11826]                         sk_error_report+0x45/0x290
[  261.446486][T11826]                         unix_dgram_connect+0x997/0xce0
[  261.453494][T11826]                         __sys_connect+0x313/0x440
[  261.460068][T11826]                         __x64_sys_connect+0x7a/0x90
[  261.466814][T11826]                         do_syscall_64+0xfa/0x3b0
[  261.473299][T11826]                         entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.481262][T11826]  }
[  261.483752][T11826]  ... key      at: [<ffffffff99ac13e0>] fasync_insert_entry.__key+0x0/0x20
[  261.492416][T11826]  ... acquired at:
[  261.496201][T11826]    lock_acquire+0x120/0x360
[  261.500867][T11826]    _raw_read_lock_irqsave+0xaf/0x100
[  261.506320][T11826]    kill_fasync+0x199/0x4d0
[  261.510992][T11826]    evdev_pass_values+0x627/0xbd0
[  261.516098][T11826]    evdev_events+0x1e6/0x340
[  261.520763][T11826]    input_pass_values+0x288/0x890
[  261.526056][T11826]    input_event_dispose+0x330/0x6b0
[  261.531529][T11826]    input_inject_event+0x1fe/0x320
[  261.536729][T11826]    evdev_write+0x2fc/0x480
[  261.541311][T11826]    vfs_write+0x27e/0xa90
[  261.545714][T11826]    ksys_write+0x145/0x250
[  261.550203][T11826]    do_syscall_64+0xfa/0x3b0
[  261.554871][T11826]    entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.560928][T11826] 
[  261.563248][T11826] 
[  261.563248][T11826] stack backtrace:
[  261.569210][T11826] CPU: 0 UID: 0 PID: 11826 Comm: syz.3.2590 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) 
[  261.569229][T11826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  261.569238][T11826] Call Trace:
[  261.569247][T11826]  <TASK>
[  261.569254][T11826]  dump_stack_lvl+0x189/0x250
[  261.569277][T11826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  261.569295][T11826]  ? __pfx__printk+0x10/0x10
[  261.569312][T11826]  validate_chain+0x1f05/0x2140
[  261.569339][T11826]  __lock_acquire+0xab9/0xd20
[  261.569358][T11826]  ? kill_fasync+0x199/0x4d0
[  261.569370][T11826]  lock_acquire+0x120/0x360
[  261.569386][T11826]  ? kill_fasync+0x199/0x4d0
[  261.569402][T11826]  _raw_read_lock_irqsave+0xaf/0x100
[  261.569420][T11826]  ? kill_fasync+0x199/0x4d0
[  261.569432][T11826]  ? __pfx__raw_read_lock_irqsave+0x10/0x10
[  261.569450][T11826]  ? do_raw_spin_lock+0x121/0x290
[  261.569465][T11826]  kill_fasync+0x199/0x4d0
[  261.569477][T11826]  ? kill_fasync+0x53/0x4d0
[  261.569489][T11826]  evdev_pass_values+0x627/0xbd0
[  261.569507][T11826]  ? evdev_pass_values+0x651/0xbd0
[  261.569523][T11826]  evdev_events+0x1e6/0x340
[  261.569536][T11826]  ? evdev_events+0x79/0x340
[  261.569550][T11826]  ? input_pass_values+0x8d/0x890
[  261.569563][T11826]  input_pass_values+0x288/0x890
[  261.569579][T11826]  ? input_handle_event+0x70c/0xf30
[  261.569599][T11826]  input_event_dispose+0x330/0x6b0
[  261.569619][T11826]  input_inject_event+0x1fe/0x320
[  261.569637][T11826]  ? input_inject_event+0xbc/0x320
[  261.569657][T11826]  evdev_write+0x2fc/0x480
[  261.569673][T11826]  ? __pfx_evdev_write+0x10/0x10
[  261.569688][T11826]  ? bpf_lsm_file_permission+0x9/0x20
[  261.569706][T11826]  ? security_file_permission+0x75/0x290
[  261.569723][T11826]  ? rw_verify_area+0x258/0x650
[  261.569737][T11826]  ? __pfx_evdev_write+0x10/0x10
[  261.569752][T11826]  vfs_write+0x27e/0xa90
[  261.569774][T11826]  ? __pfx_vfs_write+0x10/0x10
[  261.569788][T11826]  ? __fget_files+0x2a/0x420
[  261.569807][T11826]  ? __fget_files+0x2a/0x420
[  261.569822][T11826]  ? __fget_files+0x3a0/0x420
[  261.569839][T11826]  ? __fget_files+0x2a/0x420
[  261.569858][T11826]  ksys_write+0x145/0x250
[  261.569873][T11826]  ? __pfx_ksys_write+0x10/0x10
[  261.569886][T11826]  ? rcu_is_watching+0x15/0xb0
[  261.569907][T11826]  ? do_syscall_64+0xbe/0x3b0
[  261.569920][T11826]  do_syscall_64+0xfa/0x3b0
[  261.569932][T11826]  ? lockdep_hardirqs_on+0x9c/0x150
[  261.569951][T11826]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.569964][T11826]  ? clear_bhb_loop+0x60/0xb0
[  261.569979][T11826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.569993][T11826] RIP: 0033:0x7f5ec538e929
[  261.570006][T11826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.570019][T11826] RSP: 002b:00007f5ec6296038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  261.570035][T11826] RAX: ffffffffffffffda RBX: 00007f5ec55b5fa0 RCX: 00007f5ec538e929
[  261.570046][T11826] RDX: 0000000000002250 RSI: 0000200000000040 RDI: 0000000000000003
[  261.570055][T11826] RBP: 00007f5ec5410b39 R08: 0000000000000000 R09: 0000000000000000
[  261.570064][T11826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  261.570072][T11826] R13: 0000000000000000 R14: 00007f5ec55b5fa0 R15: 00007ffd102a72c8
[  261.570087][T11826]  </TASK>
[  261.893114][    C0] vkms_vblank_simulate: vblank timer overrun