last executing test programs:

1m42.412856305s ago: executing program 5 (id=1482):
syz_mount_image$ocfs2(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000004680)=ANY=[@ANYBLOB="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"], 0x1, 0x4430, &(0x7f0000000240)="$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")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001140)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r3, 0x0, 0xe40, 0x0, &(0x7f00000006c0)="ffffffff106c3ed990f77e9eb3cf", 0x0, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000680)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600004, 0x15)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r7 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="5c00000013006bcd9e3fe3dc6e48aa31086b8703240000007ea60264160af365040014000d000a000e0000009ee517d344530cdc7eb62ea52b779ac46dbf0aa3fb8e54166ba7de5e251e6182949a3651f60a0000bdd7fcf50e4509c5", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
sendto$inet6(r1, &(0x7f00000001c0), 0xfffffffffffffede, 0x0, 0x0, 0x3000137)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x1400, 0x0, 0x19)

1m38.007466969s ago: executing program 5 (id=1497):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x1cd02, &(0x7f0000001b80)=ANY=[], 0x1, 0x11f3, &(0x7f0000000980)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioprio_get$pid(0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
sendfile(r4, r4, 0x0, 0x3)
ftruncate(r4, 0x0)
r5 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, r5)

1m36.030912855s ago: executing program 5 (id=1506):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000040)='j', 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000c80)='|', 0x1, 0xbcff, 0x0, 0x0)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000480)='[', 0x1}], 0x1)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x0, 0x20}, 0xc)
sendmsg$inet6(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)

1m33.235522721s ago: executing program 5 (id=1510):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000200000006110600000000000c6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1ad, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={@map=r1, r0, 0x26, 0x0, 0x0, @void, @value}, 0x10)
syz_emit_vhci(&(0x7f0000000700)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x9c}, "210e2fca2ab4549fcfd8d01c21482639db36413aee3f4388b108bc20b4e4244ced24ad97ba3474d2061b6000fe63bf35debd65b1abb678fe2d0c4ad64c14aa3f56b0f5cd162c605425967204aa89faa230979246ee4ad2222ab9fdeb13874c96fa339579108a706cfcbc6d1a25b7029938536870e99c84d26de7b4e7a10579d04c1bfe4217625a8367c24f69e326def55c287aabe49d309589b793be"}, 0xa0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000a80)={0xffffffffffffffff, 0xe0, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000006c0)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x6, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000800)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x7e, &(0x7f0000000840)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x48, 0x10, &(0x7f00000008c0), &(0x7f0000000900), 0x8, 0xad, 0x8, 0x8, &(0x7f0000000940)}}, 0x10)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r2, 0x8915, &(0x7f0000001780)={'tunl0\x00', {0x2, 0x0, @dev}})

1m31.255570924s ago: executing program 5 (id=1516):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0x8}, {0x6}]})
syz_open_dev$ttys(0xc, 0x2, 0x1)
set_mempolicy(0x2, &(0x7f0000000080)=0xee02, 0xa)
shmget$private(0x0, 0x4000, 0x780008c0, &(0x7f0000a02000/0x4000)=nil)

1m30.116954361s ago: executing program 5 (id=1521):
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6=@local, @in6=@private0}}, {{@in=@initdev}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8)
fstat(0xffffffffffffffff, &(0x7f0000003f00))
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000003fc0)={0x0, 0x5}, 0xc)
syz_open_dev$sndpcmc(&(0x7f0000000040), 0x1, 0x0)
read$FUSE(r0, &(0x7f000000e280)={0x2020, 0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f000000c280)="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", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x1c, {0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000}}}, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x130, 0x0, 0x0, {0x0, 0x0, 0x0, '\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x1}}}})
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r3, {0x7, 0x27}}, 0x50)
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', &(0x7f0000000140)='./file0/../file0/file0\x00')

1m29.593175329s ago: executing program 1 (id=1523):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x248, &(0x7f0000000100), 0xfd, 0x48f, &(0x7f0000000940)="$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")

1m25.523495891s ago: executing program 1 (id=1529):
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000001400)=<r0=>0x0)
timer_create(0xfffffffc, 0x0, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x1c9c380}}, 0x0)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0)
timer_delete(r0)

1m25.000802036s ago: executing program 1 (id=1533):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0x8}, {0x6}]})
syz_open_dev$ttys(0xc, 0x2, 0x1)
set_mempolicy(0x2, &(0x7f0000000080)=0xee02, 0xa)
shmget$private(0x0, 0x4000, 0x780008c0, &(0x7f0000a02000/0x4000)=nil)

1m23.912964965s ago: executing program 1 (id=1537):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f00000000c0)={0x800080, 0x0, 0x0, 0x0, 0xa965, 0x2})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000000640)=""/102400, 0x19000)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000400), 0x20000, 0x0)
ioctl$TIOCMGET(r3, 0x5415, &(0x7f0000000040))
userfaultfd(0x80801)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x10, 0xd, &(0x7f0000000240)=ANY=[@ANYRES8=r1], &(0x7f0000000140)='GPL\x00', 0xffe, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffff59, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='signal_generate\x00', r5}, 0x10)
socket$inet(0x2, 0x4000000000000001, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000480)='net/icmp6\x00')
preadv(r6, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/133, 0x85}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r4}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff"], 0x50)

1m21.370143869s ago: executing program 2 (id=1542):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000001680)=0x7d)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f00000002c0)={'wg2\x00', <r3=>0x0})
ioperm(0x0, 0x2, 0x2)
quotactl_fd$Q_GETFMT(0xffffffffffffffff, 0xffffffff80000400, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), r2)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000b00)={0x478, r4, 0x5, 0x70bd2a, 0x25dfdbfd, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e24}, @WGDEVICE_A_PEERS={0x44c, 0x8, 0x0, 0x1, [{0xbc, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x1, @mcast1, 0x2}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "1171ee8da334a5099295af229a5d237a7f4102f01f28b34347d6cbbe135d83ec"}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_FLAGS={0x8, 0x3, 0x7}]}, {0x24c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_ALLOWEDIPS={0x224, 0x9, 0x0, 0x1, [{0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5, 0x3, 0x3}}]}, {0xc4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010100}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x2}}]}, {0x88, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}]}]}]}, {0x40, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_FLAGS={0x8, 0x3, 0x3}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "379aa288b2244a5b504ba04bea45625d328fb93b62e607a1b2e4da2f7f76a549"}]}, {0x4}, {0xf0, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0xc8, 0x9, 0x0, 0x1, [{0xa0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}]}, {0x4}, {0x4}]}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "55fbc2635cc801d67c589cc98f3cf65074dffe0886750dec83be49fbf628e1dc"}]}, {0xc, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x6}]}]}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e24}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r3}]}, 0x478}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180))
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.stat\x00', 0x26e1, 0x0)

1m16.906296406s ago: executing program 1 (id=1544):
r0 = syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000840)={[{}, {}, {@nls={'nls', 0x3d, 'iso8859-3'}}, {@uid}, {@nobarrier}, {@umask={'umask', 0x3d, 0x804}}]}, 0x0, 0x6ce, &(0x7f00000000c0)="$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")
r1 = socket$rxrpc(0x21, 0x2, 0xa)
connect$rxrpc(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x1901000000000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240), 0xfe, 0x557, &(0x7f0000000280)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000180)=@raw={'raw\x00', 0x4001, 0x3, 0x240, 0xd0, 0xb, 0x148, 0x0, 0x148, 0x1a8, 0x242, 0x240, 0x1a8, 0x215, 0x3, 0x0, {[{{@ip={@broadcast, @remote, 0x0, 0x0, 'ip6gretap0\x00', 'veth0\x00'}, 0x0, 0x70, 0xd0, 0x0, {0xff0f000000000000}}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x0, 0x0, 0x6]}}}}, {{@uncond, 0xec010000, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a0)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r5, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, 0x0, 0x8)
sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
connect$rxrpc(r1, &(0x7f0000000000)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e23, 0x0, @private1={0xfc, 0x1, '\x00', 0x4}}}, 0x24)
sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0xfffffffffffffd6b, 0x0, 0x0, &(0x7f00000000c0)=[@ip_tos_int={{0x18, 0x110}}], 0x18, 0x4c00}, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x9, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getdents64(r0, &(0x7f0000002140)=""/4105, 0x1009)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff8000/0x6000)=nil, 0x6000, 0xf, 0x100010, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x104, &(0x7f00000007c0)=0x7, 0x0, 0x4)

1m16.477863975s ago: executing program 2 (id=1546):
r0 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000e00000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r2}, 0x10)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r5, 0x0, r7, 0x0, 0xf3a, 0x0)
tee(r6, r3, 0x8, 0x0)
write$binfmt_script(r4, &(0x7f0000000140)={'#! ', './file0'}, 0xb)

1m15.215047402s ago: executing program 2 (id=1547):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f00000000c0)={0x800080, 0x0, 0x0, 0x0, 0xa965, 0x2})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000000640)=""/102400, 0x19000)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000400), 0x20000, 0x0)
ioctl$TIOCMGET(r3, 0x5415, &(0x7f0000000040))
userfaultfd(0x80801)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x10, 0xd, &(0x7f0000000240)=ANY=[@ANYRES8=r1], &(0x7f0000000140)='GPL\x00', 0xffe, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffff59, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='signal_generate\x00', r5}, 0x10)
socket$inet(0x2, 0x4000000000000001, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000480)='net/icmp6\x00')
preadv(r6, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/133, 0x85}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r4}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff"], 0x50)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup/syz1\x00', 0x1ff)

1m14.511666785s ago: executing program 32 (id=1521):
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001ac0)={{{@in6=@local, @in6=@private0}}, {{@in=@initdev}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8)
fstat(0xffffffffffffffff, &(0x7f0000003f00))
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000003fc0)={0x0, 0x5}, 0xc)
syz_open_dev$sndpcmc(&(0x7f0000000040), 0x1, 0x0)
read$FUSE(r0, &(0x7f000000e280)={0x2020, 0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f000000c280)="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", 0x2000, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0x0, 0x1c, {0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000}}}, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x130, 0x0, 0x0, {0x0, 0x0, 0x0, '\x00', {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x1}}}})
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r3, {0x7, 0x27}}, 0x50)
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', &(0x7f0000000140)='./file0/../file0/file0\x00')

1m14.504831452s ago: executing program 0 (id=1549):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0x8}, {0x6}]})
syz_open_dev$ttys(0xc, 0x2, 0x1)
set_mempolicy(0x2, &(0x7f0000000080)=0xee02, 0xa)
shmget$private(0x0, 0x4000, 0x780008c0, &(0x7f0000a02000/0x4000)=nil)

1m9.809183568s ago: executing program 0 (id=1554):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1m9.295533261s ago: executing program 0 (id=1556):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
r1 = socket$inet6(0xa, 0x802, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x8000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000000040), 0x0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x40505331, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000480)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f00000003c0)={{0x7, 0xc}, {0xee, 0x8}, 0x8, 0x0, 0xe})
io_submit(0x0, 0x0, &(0x7f0000000540))
io_pgetevents(0x0, 0x1, 0x3, &(0x7f0000000180)=[{}, {}, {}], &(0x7f0000000200)={0x0, 0x989680}, 0x0)
connect$vsock_stream(r0, &(0x7f0000000140)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x36)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r4}, 0x18)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000100)=0xfffffffffffffffe, 0x112)
getpid()

1m4.407945108s ago: executing program 1 (id=1558):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000280)=0x7)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
writev(0xffffffffffffffff, &(0x7f0000000140), 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f0000000080)={'batadv0\x00', 0x20})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB], 0x1c0}, 0x1, 0x0, 0x0, 0x24000084}, 0x4000000)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x1f4, 0x0, 0x0, 0x0, 0x0, 0x300, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x50)

1m3.739128899s ago: executing program 2 (id=1561):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x40505330, &(0x7f00000000c0)={0x800080, 0x0, 0x0, 0x0, 0xa965, 0x2})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000000640)=""/102400, 0x19000)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000400), 0x20000, 0x0)
ioctl$TIOCMGET(r3, 0x5415, &(0x7f0000000040))
userfaultfd(0x80801)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x10, 0xd, &(0x7f0000000240)=ANY=[@ANYRES8=r1], &(0x7f0000000140)='GPL\x00', 0xffe, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffff59, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='signal_generate\x00', r5}, 0x10)
socket$inet(0x2, 0x4000000000000001, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000480)='net/icmp6\x00')
preadv(r6, &(0x7f0000000080)=[{&(0x7f00000001c0)=""/133, 0x85}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r4}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup/syz1\x00', 0x1ff)

58.46843454s ago: executing program 2 (id=1562):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
syz_mount_image$squashfs(&(0x7f0000002740), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000280)=ANY=[], 0x7, 0x18a, &(0x7f0000002480)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000006000000000000000000000000000000000000001895"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r0 = socket(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc)
write(r0, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write(r0, &(0x7f0000000000)='\"', 0xec0)

58.332002618s ago: executing program 0 (id=1563):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_dev$tty20(0xc, 0x4, 0x1)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$netlink(r3, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000080)={0xdc, 0x10, 0x509, 0x0, 0x0, "", [@generic="6f6d8864d22a3f2ffaa46c88bc", @typed={0xa8, 0x0, 0x0, 0x0, @binary="2b0e13e735a3184f123d6da2f1acfac0ee2dd2b184b27db1f302de337c0004060000000000bf852c8986626691b01b2d44e4ce28715f2d5fda0a9423debbb86f9dba4a2dba4dbe076c02262600c446a567de243ab0d67683f7bb11c9cab3b3eed8a8bef4ff1631aa78acefca03c1a66db4424a8ba100022db228bb7b5eb5100e434db5dd5e995aa0912086d9f4606d2e4cc898739222c5d3a83cb6b707f3336336ebb7d6"}, @nested={0x14, 0x0, 0x0, 0x1, [@typed={0xd, 0x0, 0x0, 0x0, @binary="cfe7336f91087ba18b"}]}]}, 0xdc}], 0x1}, 0x0)

56.010590957s ago: executing program 0 (id=1566):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), r0)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000b00)={0x478, r1, 0x5, 0x70bd2a, 0x25dfdbfd, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e24}, @WGDEVICE_A_PEERS={0x44c, 0x8, 0x0, 0x1, [{0xbc, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0x1, @mcast1, 0x2}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "1171ee8da334a5099295af229a5d237a7f4102f01f28b34347d6cbbe135d83ec"}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_FLAGS={0x8, 0x3, 0x7}]}, {0x24c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_ALLOWEDIPS={0x224, 0x9, 0x0, 0x1, [{0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010101}, {0x5, 0x3, 0x3}}]}, {0xc4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010100}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x2}}]}, {0x88, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}]}]}]}, {0x40, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_FLAGS={0x8, 0x3, 0x3}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "379aa288b2244a5b504ba04bea45625d328fb93b62e607a1b2e4da2f7f76a549"}]}, {0x4}, {0xf0, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0xc8, 0x9, 0x0, 0x1, [{0xa0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}]}, {0x4}, {0x4}]}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "55fbc2635cc801d67c589cc98f3cf65074dffe0886750dec83be49fbf628e1dc"}]}, {0xc, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x6}]}]}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e24}, @WGDEVICE_A_IFINDEX={0x8}]}, 0x478}, 0x1, 0x0, 0x0, 0x4000}, 0x40)

55.819647962s ago: executing program 0 (id=1567):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0x3, 0x2, 0x4, 0x7})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x17, 0x5, &(0x7f0000000040)=@framed={{0x46, 0xa, 0x0, 0x0, 0x0, 0x63, 0x11, 0x4}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4}, {0x2, 0x0, @loopback}, {0x2, 0x0, @empty}, 0x4f, 0x0, 0x0, 0x0, 0xfffc})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r2, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2})
mount$fuseblk(0x0, 0x0, 0x0, 0x800000, 0x0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x3, 0x0, 0x41c}}}, 0x7)
timer_create(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4a16, &(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYRES64, @ANYRESHEX, @ANYRESHEX, @ANYRES32], 0x5, 0x31e, &(0x7f0000000a80)="$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")
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x2a}, @l2cap_cid_signaling={{0x26}, [@l2cap_conf_rsp={{0x5, 0x7, 0x15}, {0xfff3, 0x9, 0x1, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_flushto={0x2, 0x2, 0x40}, @l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x1000}]}}, @l2cap_conf_rsp={{0x5, 0x7, 0x9}, {0x300, 0x17e, 0x9, [@l2cap_conf_fcs={0x5, 0x1, 0x1}]}}]}}, 0x2f)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c40)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_setup(0x3c5f, &(0x7f0000000240)={0x0, 0x0, 0x27}, &(0x7f00000002c0), &(0x7f0000000300))

55.464256133s ago: executing program 2 (id=1568):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
capset(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_vhci(0x0, 0xd)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@volatile={0xc, 0x0, 0x0, 0x9, 0x1}]}}, 0x0, 0x26, 0x0, 0x1, 0x9, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0)
write$UHID_INPUT2(r3, &(0x7f0000000040)={0xc, {0x7, "bfada8b88ed752"}}, 0xd)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x2, 0x5, 0x84)
socket(0x27, 0x3, 0x45c)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x8000, 0x0)
socket$inet(0x2, 0x1, 0x0)

53.035862364s ago: executing program 3 (id=1570):
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000340)=<r0=>0x0)
quotactl$Q_GETQUOTA(0xffffffff80000702, &(0x7f0000000240)=@nbd={'/dev/nbd', 0x0}, r0, &(0x7f00000004c0))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x18, 0x10, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYBLOB="da2261875f58323cf5704ca92bdcc7e39a892ad9ce2e9482b397d74faa777043c79850203e844203a9e2442046"], 0x0, 0x8, 0xac, &(0x7f0000000140)=""/172, 0x41000, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f0000000300)=@req={0x8, 0xe1e, 0x8, 0x9}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
socket$netlink(0x10, 0x3, 0xc)
r6 = socket$inet(0x2, 0x2, 0x1)
bind$inet(r6, &(0x7f0000000340)={0x2, 0x0, @local}, 0x10)
sendmsg$inet(r6, &(0x7f0000000600)={&(0x7f0000000000)={0x2, 0x0, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x6}], 0x2}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)

50.095682171s ago: executing program 4 (id=1571):
r0 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000480)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x9, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0xf3a, 0x0)
tee(r5, r2, 0x8, 0x0)
write$binfmt_script(r3, &(0x7f0000000140)={'#! ', './file0'}, 0xb)

49.773500888s ago: executing program 4 (id=1572):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0x3, 0x2, 0x4, 0x7})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x17, 0x5, &(0x7f0000000040)=@framed={{0x46, 0xa, 0x0, 0x0, 0x0, 0x63, 0x11, 0x4}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4}, {0x2, 0x0, @loopback}, {0x2, 0x0, @empty}, 0x4f, 0x0, 0x0, 0x0, 0xfffc})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r2, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2})
mount$fuseblk(0x0, 0x0, 0x0, 0x800000, 0x0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x3, 0x0, 0x41c}}}, 0x7)
timer_create(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4a16, &(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYRES64, @ANYRESHEX, @ANYRESHEX, @ANYRES32], 0x5, 0x31e, &(0x7f0000000a80)="$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")
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x46}, @l2cap_cid_signaling={{0x42}, [@l2cap_conf_rsp={{0x5, 0x0, 0x18}, {0x7, 0x1, 0x4, [@l2cap_conf_ews={0x7, 0x2, 0x2}, @l2cap_conf_rfc={0x4, 0x9, {0x0, 0x2, 0xd6, 0x8001, 0x7, 0x3ff}}, @l2cap_conf_fcs={0x5, 0x1}]}}, @l2cap_conf_rsp={{0x5, 0x7, 0x15}, {0xfff3, 0x9, 0x1, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_flushto={0x2, 0x2, 0x40}, @l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x1000}]}}, @l2cap_conf_rsp={{0x5, 0x7, 0x9}, {0x300, 0x17e, 0x9, [@l2cap_conf_fcs={0x5, 0x1, 0x1}]}}]}}, 0x4b)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c40)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f00000001c0)={[{@noblock_validity}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@stripe={'stripe', 0x3d, 0x1}}, {@data_writeback}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x74b}}]}, 0xf6, 0x479, &(0x7f00000004c0)="$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")
r4 = syz_io_uring_setup(0x31c7, &(0x7f0000000140)={0x0, 0x0, 0x2}, &(0x7f00000001c0), &(0x7f00000005c0))
syz_io_uring_setup(0x3c5f, &(0x7f0000000240)={0x0, 0x0, 0x27, 0x0, 0x0, 0x0, r4}, &(0x7f00000002c0), &(0x7f0000000300))
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

48.570997982s ago: executing program 33 (id=1558):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000280)=0x7)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
writev(0xffffffffffffffff, &(0x7f0000000140), 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f0000000080)={'batadv0\x00', 0x20})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB], 0x1c0}, 0x1, 0x0, 0x0, 0x24000084}, 0x4000000)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x1f4, 0x0, 0x0, 0x0, 0x0, 0x300, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x50)

48.549983718s ago: executing program 3 (id=1574):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0x8e, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0xa, &(0x7f0000000000)=0x3, 0x4)
r2 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f0000010300)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000010380)=""/47, 0x2f}], 0x4)
socket$rds(0x15, 0x5, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000080)={0x4, 0x9, 0x8000, 0x8, 0x3, "fee34814f90c96a0f56e2c264ed56c4f2397a0"})
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

40.549293874s ago: executing program 34 (id=1567):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0x3, 0x2, 0x4, 0x7})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x17, 0x5, &(0x7f0000000040)=@framed={{0x46, 0xa, 0x0, 0x0, 0x0, 0x63, 0x11, 0x4}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4}, {0x2, 0x0, @loopback}, {0x2, 0x0, @empty}, 0x4f, 0x0, 0x0, 0x0, 0xfffc})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r2, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2})
mount$fuseblk(0x0, 0x0, 0x0, 0x800000, 0x0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x3, 0x0, 0x41c}}}, 0x7)
timer_create(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4a16, &(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYRES64, @ANYRESHEX, @ANYRESHEX, @ANYRES32], 0x5, 0x31e, &(0x7f0000000a80)="$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")
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x2a}, @l2cap_cid_signaling={{0x26}, [@l2cap_conf_rsp={{0x5, 0x7, 0x15}, {0xfff3, 0x9, 0x1, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_flushto={0x2, 0x2, 0x40}, @l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x1000}]}}, @l2cap_conf_rsp={{0x5, 0x7, 0x9}, {0x300, 0x17e, 0x9, [@l2cap_conf_fcs={0x5, 0x1, 0x1}]}}]}}, 0x2f)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c40)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_setup(0x3c5f, &(0x7f0000000240)={0x0, 0x0, 0x27}, &(0x7f00000002c0), &(0x7f0000000300))

40.102834851s ago: executing program 35 (id=1568):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
capset(0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_vhci(0x0, 0xd)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000035c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@volatile={0xc, 0x0, 0x0, 0x9, 0x1}]}}, 0x0, 0x26, 0x0, 0x1, 0x9, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0)
write$UHID_INPUT2(r3, &(0x7f0000000040)={0xc, {0x7, "bfada8b88ed752"}}, 0xd)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x2, 0x5, 0x84)
socket(0x27, 0x3, 0x45c)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x8000, 0x0)
socket$inet(0x2, 0x1, 0x0)

39.710194729s ago: executing program 3 (id=1577):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ppoll(&(0x7f0000000140)=[{r3, 0x51a1}, {r3, 0x302}], 0x2, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

38.520515315s ago: executing program 3 (id=1578):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0x3, 0x2, 0x4, 0x7})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x17, 0x5, &(0x7f0000000040)=@framed={{0x46, 0xa, 0x0, 0x0, 0x0, 0x63, 0x11, 0x4}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4}, {0x2, 0x0, @loopback}, {0x2, 0x0, @empty}, 0x4f, 0x0, 0x0, 0x0, 0xfffc})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r2, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2})
mount$fuseblk(0x0, 0x0, 0x0, 0x800000, 0x0)
syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x3, 0x0, 0x41c}}}, 0x7)
timer_create(0x5, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4a16, &(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYRES64, @ANYRESHEX, @ANYRESHEX, @ANYRES32], 0x5, 0x31e, &(0x7f0000000a80)="$eJzs3M9LG1sUwPFjjDGJzySLx3u8Bw8v721eN4OmXZeGolAaqKgp1UJh1EkbMk0kEywppeqq29J9V4UuxKU7ofUfcNNdu+mmOzeFLuqidEomM+anmsZorH4/IHNz7z3m3sxNOBNyZ/fO84fZtKWl9aL4gkp+ExHZE4mJTzx97tHnlANSa1UuDX15/8/07NzNRDI5PqXURGLmclwpFRl58+hJyO22NSg7sXu7n+Ofdv7Y+Wv3+8yDjKUylsrli0pX8/mPRX3eNNRixspqSk2ahm4ZKpOzjEKlPV9pT5v5paWS0nOLw+GlgmFZSs+VVNYoqWJeFQslpd/XMzmlaZoaDguOklqfmtITHQYvdHkwOCGFQkLvF5FQU0tqvScDAgAAPdWY//vKKX1H+b9EnPy/3Lma/2/8u10cur0ZcfP/rUCr/P/Kh8r/qsv/gyLSSf7/Un4i/2/OiC6WY+X/OBtGAk1VfXWPyvl/2H3/Otbubow6BfJ/AAAAAAAAAAAAAAAAAAAAAAB+BXu2HbVtO+odvb/qFgL3Mc6lg87/oIgEy2ff5vyfZ9OzcxJ0Nu75IyLms+XUcqpydDtsi4gphoxKVL4568FVLns7j1RZTN6aK278ynKq32lJpCXjxI9JVGKN8bY9cSM5PqYq3Pj9bUrh2vi4ROX31vHx+nj3+QPy/3818ZpE5d2C5MWURWddV+Ofjil1/VayIT7k9AMAAAAA4DzQ1L6W1++adlB75S4j+9fXLb8fqFxfj7a8PvdH//b3evYAAAAAAFwMVulxVjdNo3BIISRH9+m84G+vc6ChZuCwzv01M2x3PAHn9y4ix53XqzZf1bqC90OKuqagW9nZeLz5d+18rdbW+KSNKH/j4EfKFeq44/G+Ngoc8DrLZHOU75CVMNC19fzni9dfu/cGubrprYCjO691+lzBxlXnFAZO47MHAAAAwOmqJv1ezbXa5r6eDAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAvmRG7p11Do9RwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAs+JHAAAA//+3evqP")
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x46}, @l2cap_cid_signaling={{0x42}, [@l2cap_conf_rsp={{0x5, 0x0, 0x18}, {0x7, 0x1, 0x4, [@l2cap_conf_ews={0x7, 0x2, 0x2}, @l2cap_conf_rfc={0x4, 0x9, {0x0, 0x2, 0xd6, 0x8001, 0x7, 0x3ff}}, @l2cap_conf_fcs={0x5, 0x1}]}}, @l2cap_conf_rsp={{0x5, 0x7, 0x15}, {0xfff3, 0x9, 0x1, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_flushto={0x2, 0x2, 0x40}, @l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x1000}]}}, @l2cap_conf_rsp={{0x5, 0x7, 0x9}, {0x300, 0x17e, 0x9, [@l2cap_conf_fcs={0x5, 0x1, 0x1}]}}]}}, 0x4b)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c40)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f00000001c0)={[{@noblock_validity}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@stripe={'stripe', 0x3d, 0x1}}, {@data_writeback}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x74b}}]}, 0xf6, 0x479, &(0x7f00000004c0)="$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")
r4 = syz_io_uring_setup(0x31c7, &(0x7f0000000140)={0x0, 0x0, 0x2}, &(0x7f00000001c0), &(0x7f00000005c0))
syz_io_uring_setup(0x263f, &(0x7f0000000840)={0x0, 0xb8da, 0x186a, 0x0, 0x0, 0x0, r4}, 0x0, 0x0)
syz_io_uring_setup(0x3c5f, &(0x7f0000000240)={0x0, 0x0, 0x27, 0x0, 0x0, 0x0, r4}, &(0x7f00000002c0), &(0x7f0000000300))
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000f40)='./file0\x00', 0x408e, &(0x7f0000000f80)={[{@block_validity}, {@usrjquota, 0x22}, {@journal_dev={'journal_dev', 0x3d, 0xb7f}}, {@errors_continue}, {@data_err_ignore}, {@nobh, 0x22}, {@test_dummy_encryption_v1}, {@nouid32}, {@noblock_validity}, {@bsdgroups}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x3}}, {@lazytime}, {@nobh}, {@nomblk_io_submit}], [{@smackfsfloor={'smackfsfloor', 0x3d, '({'}}, {@appraise}, {@dont_appraise}, {@euid_lt}, {@context={'context', 0x3d, 'unconfined_u'}}]}, 0xfe, 0x461, &(0x7f00000004c0)="$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")

37.86809051s ago: executing program 4 (id=1579):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000b80)={[{@nombcache}, {@abort}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000680)='./file0\x00', 0xa00010, &(0x7f00000001c0)=ANY=[@ANYRES8, @ANYRESHEX=0xee01, @ANYBLOB="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"], 0x6, 0x635, &(0x7f0000000c80)="$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")
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000340)={0x0, {0x2, 0x4e24, @local}, {0x2, 0x4e20, @remote}, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x9, 0x0}}, 0x140, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x2})

36.664405498s ago: executing program 3 (id=1580):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
r1 = socket$inet6(0xa, 0x802, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x8000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000000040), 0x0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x40505331, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000480)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f00000003c0)={{0x7, 0xc}, {0xee, 0x8}, 0x8, 0x0, 0xe})
io_submit(0x0, 0x0, &(0x7f0000000540))
io_pgetevents(0x0, 0x1, 0x3, &(0x7f0000000180)=[{}, {}, {}], &(0x7f0000000200)={0x0, 0x989680}, 0x0)
connect$vsock_stream(r0, &(0x7f0000000140)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x36)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r4}, 0x18)

30.847034916s ago: executing program 3 (id=1581):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = dup3(0xffffffffffffffff, r3, 0x0)
ioctl$SOUND_MIXER_WRITE_RECSRC(r4, 0xc0044dff, &(0x7f0000000280)=0x3)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
geteuid()
socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x42004}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_EXPECTED_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)

30.485424265s ago: executing program 4 (id=1582):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000000000c00000000000000008500000036000000850000007d00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x8}, 0x50)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

18.059940476s ago: executing program 4 (id=1583):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201100100000010bd28340900000000000109022400010000000009042000010300030009210000000122020009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000300)={0x2c, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)

15.46251829s ago: executing program 36 (id=1581):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = dup3(0xffffffffffffffff, r3, 0x0)
ioctl$SOUND_MIXER_WRITE_RECSRC(r4, 0xc0044dff, &(0x7f0000000280)=0x3)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
geteuid()
socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x42004}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_EXPECTED_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)

15.441816946s ago: executing program 4 (id=1585):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f0000000300), 0x100040000, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r5, 0x5453, 0x0)
r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
lseek(r6, 0x851, 0x0)

0s ago: executing program 37 (id=1585):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f0000000300), 0x100040000, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r5, 0x5453, 0x0)
r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
lseek(r6, 0x851, 0x0)

kernel console output (not intermixed with test programs):

 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  220.275576][ T5894] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  220.290710][ T5894] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  220.299967][ T5894] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.308754][ T5894] usb 2-1: Product: syz
[  220.308950][ T8168] bridge0: port 3(erspan0) entered blocking state
[  220.319669][ T8168] bridge0: port 3(erspan0) entered disabled state
[  220.326302][ T8168] erspan0: entered allmulticast mode
[  220.332649][ T8168] erspan0: entered promiscuous mode
[  220.338242][ T8168] bridge0: port 3(erspan0) entered blocking state
[  220.344782][ T8168] bridge0: port 3(erspan0) entered forwarding state
[  220.352882][ T5894] usb 2-1: Manufacturer: syz
[  220.357827][ T5894] usb 2-1: SerialNumber: syz
[  220.431086][ T6019] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  220.463261][   T25] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  220.571039][ T6019] usb 5-1: device descriptor read/64, error -71
[  220.691253][ T6019] usb usb5-port1: attempt power cycle
[  220.749600][ T8154] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  220.848392][   T25] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  220.866283][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.905185][   T25] usb 3-1: Product: syz
[  220.907207][ T8174] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  220.909558][   T25] usb 3-1: Manufacturer: syz
[  220.930732][ T8174] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  220.937252][   T25] usb 3-1: SerialNumber: syz
[  220.996774][   T25] usb 3-1: config 0 descriptor??
[  221.004756][   T25] ch341 3-1:0.0: ch341-uart converter detected
[  221.031040][ T6019] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  221.063385][ T6019] usb 5-1: device descriptor read/8, error -71
[  221.218326][ T8161] vlan2: entered promiscuous mode
[  221.223547][ T8161] vlan2: entered allmulticast mode
[  221.290302][   T25] usb 3-1: failed to receive control message: -71
[  221.308380][   T25] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  221.311040][ T6019] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  221.325956][   T47] usb 4-1: USB disconnect, device number 14
[  221.367861][   T25] usb 3-1: USB disconnect, device number 11
[  221.373176][ T8154] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  221.388855][   T25] ch341 3-1:0.0: device disconnected
[  221.394853][ T6019] usb 5-1: device descriptor read/8, error -71
[  221.504219][ T6019] usb usb5-port1: unable to enumerate USB device
[  221.603844][ T5894] cdc_ncm 2-1:1.0: MAC-Address: 42:42:42:42:42:42
[  221.610518][ T5894] cdc_ncm 2-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  221.638913][ T5894] cdc_ncm 2-1:1.0: setting rx_max = 2048
[  221.811278][ T5894] cdc_ncm 2-1:1.0: setting tx_max = 184
[  221.837058][ T5894] cdc_ncm 2-1:1.0 eth1: register 'cdc_ncm' at usb-dummy_hcd.1-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  221.912440][ T5894] usb 2-1: USB disconnect, device number 9
[  221.931638][ T5894] cdc_ncm 2-1:1.0 eth1: unregister 'cdc_ncm' usb-dummy_hcd.1-1, CDC NCM (NO ZLP)
[  223.451126][ T8215] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  223.458862][ T8215] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  224.254833][ T6019] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  224.362577][ T8224] netlink: 12 bytes leftover after parsing attributes in process `syz.1.878'.
[  224.411413][ T6019] usb 6-1: Using ep0 maxpacket: 16
[  224.429883][ T6019] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.460786][ T6019] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.507673][ T6019] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  224.551368][ T6019] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  224.560432][ T6019] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.652186][ T6019] usb 6-1: config 0 descriptor??
[  224.760964][ T5922] usb 1-1: new full-speed USB device number 20 using dummy_hcd
[  225.403111][ T5922] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  225.431561][ T5922] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  225.460686][ T5922] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  225.483929][ T5922] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  225.530876][ T5922] usb 1-1: Product: syz
[  225.539694][ T5922] usb 1-1: Manufacturer: syz
[  225.591153][ T5922] usb 1-1: SerialNumber: syz
[  225.780345][ T8251] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  225.806207][ T6019] usbhid 6-1:0.0: can't add hid device: -71
[  225.812356][ T6019] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  225.832518][ T6019] usb 6-1: USB disconnect, device number 15
[  225.841464][ T8251] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  225.842309][ T8226] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  226.027560][ T8255] vlan2: entered promiscuous mode
[  226.051577][ T8255] vlan2: entered allmulticast mode
[  226.068125][ T8260] netlink: 12 bytes leftover after parsing attributes in process `syz.2.895'.
[  226.604578][ T8271] No source specified
[  227.094815][ T8273] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  227.503222][ T8286] netlink: 243 bytes leftover after parsing attributes in process `syz.2.903'.
[  227.514859][ T8286] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  227.650974][ T5922] cdc_ncm 1-1:1.0: failed to get mac address
[  227.688763][ T5922] cdc_ncm 1-1:1.0: bind() failure
[  227.708696][ T5922] cdc_ncm 1-1:1.1: probe with driver cdc_ncm failed with error -71
[  227.719597][ T5922] cdc_mbim 1-1:1.1: probe with driver cdc_mbim failed with error -71
[  227.730112][ T5922] usbtest 1-1:1.1: probe with driver usbtest failed with error -71
[  227.750165][ T5922] usb 1-1: USB disconnect, device number 20
[  227.898359][ T8304] syz.5.910: attempt to access beyond end of device
[  227.898359][ T8304] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  228.617264][ T8321] Unsupported ieee802154 address type: 0
[  229.068809][   T25] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[  230.112663][ T8321] overlayfs: missing 'workdir'
[  230.335103][ T8328] No source specified
[  231.322001][ T6019] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  231.464988][ T8349] netlink: 12 bytes leftover after parsing attributes in process `syz.2.926'.
[  231.527911][   T25] usb 3-1: device descriptor read/all, error -71
[  231.927897][ T6019] usb 4-1: Using ep0 maxpacket: 16
[  231.945252][ T6019] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  232.014792][ T6019] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  232.038520][ T6019] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.165968][ T6019] usb 4-1: config 0 descriptor??
[  232.593486][ T6019] mcp2221 0003:04D8:00DD.000B: item fetching failed at offset 0/5
[  232.602637][ T6019] mcp2221 0003:04D8:00DD.000B: can't parse reports
[  232.609211][ T6019] mcp2221 0003:04D8:00DD.000B: probe with driver mcp2221 failed with error -22
[  233.389351][ T6019] usb 4-1: USB disconnect, device number 15
[  233.716200][ T8383] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  234.987232][ T8399] No source specified
[  235.047472][ T8407] Unsupported ieee802154 address type: 0
[  236.501277][ T8428] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  237.308519][ T8438] netlink: 12 bytes leftover after parsing attributes in process `syz.2.959'.
[  237.984103][ T8444] fuse: Unknown parameter '0x0000000000000004'
[  238.202689][ T8455] Unsupported ieee802154 address type: 0
[  239.140939][ T6019] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  239.330925][ T6019] usb 2-1: Using ep0 maxpacket: 16
[  239.354673][ T6019] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  239.366829][ T6019] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  239.400297][ T6019] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  239.439077][ T6019] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  239.753825][ T8475] o2cb: This node has not been configured.
[  239.759731][ T8475] o2cb: Cluster check failed. Fix errors before retrying.
[  239.767058][ T8475] (syz.4.973,8475,1):user_dlm_register:674 ERROR: status = -22
[  239.774818][ T8475] (syz.4.973,8475,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file1"
[  240.439711][ T6019] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.452310][ T6019] usb 2-1: config 0 descriptor??
[  240.985891][ T8488] fuse: Unknown parameter '0x0000000000000004'
[  241.031267][ T5890] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  241.083151][ T6019] usbhid 2-1:0.0: can't add hid device: -71
[  241.089185][ T6019] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  241.099328][ T8491] loop2: detected capacity change from 0 to 7
[  241.109870][ T8491]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  241.114919][ T6019] usb 2-1: USB disconnect, device number 10
[  241.124678][ T8491] loop2: partition table partially beyond EOD, truncated
[  241.142279][ T8491] loop2: p1 size 276741282 extends beyond EOD, truncated
[  241.159817][ T8491] loop2: p2 start 579963744 is beyond EOD, truncated
[  241.179427][ T8494] netlink: 20 bytes leftover after parsing attributes in process `syz.2.981'.
[  241.188924][ T8494] openvswitch: netlink: Flow key attr not present in new flow.
[  241.191021][ T5890] usb 5-1: Using ep0 maxpacket: 32
[  241.198978][   T25] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  241.216290][ T5847]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  241.235964][ T5847] loop2: partition table partially beyond EOD, truncated
[  241.243355][ T5890] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  241.250972][ T5847] loop2: p1 size 276741282 extends beyond EOD, truncated
[  241.265247][ T5847] loop2: p2 start 579963744 is beyond EOD, truncated
[  241.265992][ T5890] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  241.290585][ T8493]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  241.290615][ T5890] usb 5-1: New USB device found, idVendor=2040, idProduct=8400, bcdDevice=dc.5d
[  241.298627][ T8493] loop2: partition table partially beyond EOD, truncated
[  241.314033][ T5890] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  241.315283][ T8493] loop2: p1 size 276741282 extends beyond EOD, 
[  241.324794][ T5890] usb 5-1: Product: syz
[  241.327072][ T8493] truncated
[  241.331176][ T5890] usb 5-1: Manufacturer: syz
[  241.344132][ T8493] loop2: p2 start 579963744 is beyond EOD, truncated
[  241.345022][ T5890] usb 5-1: SerialNumber: syz
[  241.381031][   T25] usb 4-1: Using ep0 maxpacket: 16
[  241.392704][   T25] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  241.416768][   T25] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  241.464742][   T25] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  241.473959][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  241.500882][   T25] usb 4-1: Product: syz
[  241.505171][   T25] usb 4-1: Manufacturer: syz
[  241.509829][   T25] usb 4-1: SerialNumber: syz
[  241.569903][ T8499] Unsupported ieee802154 address type: 0
[  242.127935][   T25] usb 4-1: 0:2 : does not exist
[  242.470920][ T5198]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  242.478270][ T5198] loop2: partition table partially beyond EOD, truncated
[  242.495732][ T5198] loop2: p1 size 276741282 extends beyond EOD, truncated
[  242.508291][ T5198] loop2: p2 start 579963744 is beyond EOD, truncated
[  242.574350][ T5198]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  242.583404][   T25] usb 5-1: USB disconnect, device number 20
[  242.594336][ T5198] loop2: partition table partially beyond EOD, truncated
[  242.602546][ T5198] loop2: p1 size 276741282 extends beyond EOD, truncated
[  242.611842][ T5198] loop2: p2 start 579963744 is beyond EOD, truncated
[  242.751825][ T8513] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  243.110252][ T8517] o2cb: This node has not been configured.
[  243.116406][ T8517] o2cb: Cluster check failed. Fix errors before retrying.
[  243.123701][ T8517] (syz.2.988,8517,1):user_dlm_register:674 ERROR: status = -22
[  243.131375][ T8517] (syz.2.988,8517,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file1"
[  243.973688][ T5198]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  243.998562][ T5198] loop2: partition table partially beyond EOD, truncated
[  244.021524][ T8522] netlink: 1268 bytes leftover after parsing attributes in process `syz.2.990'.
[  244.032822][ T5198] loop2: p1 size 276741282 extends beyond EOD, truncated
[  244.047650][ T6019] usb 4-1: USB disconnect, device number 16
[  244.056805][ T5198] loop2: p2 start 579963744 is beyond EOD, truncated
[  244.064127][ T8522] openvswitch: netlink: Message has 9 unknown bytes.
[  244.503611][ T8537] CIFS mount error: No usable UNC path provided in device string!
[  244.503611][ T8537] 
[  244.798850][ T8537] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  245.541841][ T6072] udevd[6072]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  245.776396][ T5891] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  245.778793][ T8549] Unsupported ieee802154 address type: 0
[  246.385939][ T8557] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1001'.
[  246.395221][ T8557] openvswitch: netlink: Flow key attr not present in new flow.
[  246.542886][ T5891] usb 6-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  246.552341][ T5891] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.580518][ T5891] usb 6-1: Product: syz
[  246.589876][ T5891] usb 6-1: Manufacturer: syz
[  246.598750][ T5891] usb 6-1: SerialNumber: syz
[  246.616069][ T8566] binder: 8564:8566 ioctl 4018620d 0 returned -22
[  246.631522][ T5891] usb 6-1: config 0 descriptor??
[  246.824875][ T5891] ch341 6-1:0.0: ch341-uart converter detected
[  246.932310][ T8571] o2cb: This node has not been configured.
[  246.938235][ T8571] o2cb: Cluster check failed. Fix errors before retrying.
[  246.945598][ T8571] (syz.0.1003,8571,1):user_dlm_register:674 ERROR: status = -22
[  246.953419][ T8571] (syz.0.1003,8571,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file1"
[  247.811906][ T6019] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  247.956142][ T5891] usb 6-1: failed to receive control message: -110
[  247.995145][ T5891] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -110
[  248.085289][ T5890] usb 6-1: USB disconnect, device number 16
[  248.099669][ T5890] ch341 6-1:0.0: device disconnected
[  248.136240][ T6019] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  248.149326][ T6019] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  248.159419][ T6019] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  248.168779][ T6019] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.195167][ T6019] usb 2-1: config 0 descriptor??
[  248.291333][   T25] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  248.328446][ T8586] netlink: 1268 bytes leftover after parsing attributes in process `syz.2.1009'.
[  248.355915][ T8586] openvswitch: netlink: Message has 9 unknown bytes.
[  248.451849][   T25] usb 1-1: Using ep0 maxpacket: 16
[  248.504401][ T8583] loop2: detected capacity change from 0 to 7
[  248.508304][   T25] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  249.355628][   T25] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  249.505909][ T5825]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  249.513513][ T5825] loop2: partition table partially beyond EOD, truncated
[  249.522171][   T25] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  249.531577][   T25] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  249.540294][ T5825] loop2: p1 size 276741282 extends beyond EOD, truncated
[  249.547782][   T25] usb 1-1: Product: syz
[  249.557795][   T25] usb 1-1: Manufacturer: syz
[  249.568303][ T5825] loop2: p2 start 579963744 is beyond EOD, truncated
[  249.577402][   T25] usb 1-1: SerialNumber: syz
[  250.006921][ T8599] CIFS mount error: No usable UNC path provided in device string!
[  250.006921][ T8599] 
[  250.017064][ T8599] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  250.143949][ T8583]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  251.140909][ T8583] loop2: partition table partially beyond EOD, truncated
[  251.148235][ T8583] loop2: p1 size 276741282 extends beyond EOD, truncated
[  251.220785][ T8583] loop2: p2 start 579963744 is beyond EOD, 
[  251.231041][ T6019] usbhid 2-1:0.0: can't add hid device: -71
[  251.361026][ T8583] truncated
[  251.384565][ T8611] Unsupported ieee802154 address type: 0
[  252.141479][ T6019] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  252.151650][ T6019] usb 2-1: USB disconnect, device number 11
[  252.251840][   T25] usb 1-1: 0:2 : does not exist
[  252.279264][ T5198]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  252.287579][ T5198] loop2: partition table partially beyond EOD, truncated
[  252.288120][   T25] usb 1-1: USB disconnect, device number 21
[  252.295173][ T5198] loop2: p1 size 276741282 extends beyond EOD, truncated
[  252.341503][ T5198] loop2: p2 start 579963744 is beyond EOD, truncated
[  252.594019][ T6072] udevd[6072]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  253.569358][ T6072] udevd[6072]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  253.646231][ T6072] udevd[6072]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  254.108106][ T8641] Unsupported ieee802154 address type: 0
[  254.315079][ T8621] o2cb: This node has not been configured.
[  254.321018][ T8621] o2cb: Cluster check failed. Fix errors before retrying.
[  254.328218][ T8621] (syz.2.1019,8621,1):user_dlm_register:674 ERROR: status = -22
[  254.335958][ T8621] (syz.2.1019,8621,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file1"
[  254.954116][   T25] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  255.141177][ T5894] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  255.163197][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  255.175588][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  255.253783][   T25] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  255.269892][   T25] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  255.278454][   T25] usb 1-1: Product: syz
[  255.291562][   T25] usb 1-1: Manufacturer: syz
[  255.307553][   T25] usb 1-1: SerialNumber: syz
[  255.324614][   T25] usb 1-1: config 0 descriptor??
[  255.333014][ T5894] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 5
[  255.353949][ T5894] usb 5-1: config 0 has no interface number 0
[  255.369056][ T5894] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  255.391111][   T25] ch341 1-1:0.0: ch341-uart converter detected
[  255.398063][ T5894] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  255.409508][ T5894] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  255.453568][ T5894] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  255.565132][ T5894] usb 5-1: config 0 descriptor??
[  255.598669][   T25] usb 1-1: failed to receive control message: -71
[  255.612097][   T25] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  255.655754][ T6266] udevd[6266]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  255.672584][   T25] usb 1-1: USB disconnect, device number 22
[  255.679633][   T25] ch341 1-1:0.0: device disconnected
[  255.953938][ T8657] CIFS mount error: No usable UNC path provided in device string!
[  255.953938][ T8657] 
[  255.966249][ T8657] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  255.993742][ T6019] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  256.000312][ T5894] uclogic 0003:256C:006D.000C: No inputs registered, leaving
[  256.046689][ T5894] uclogic 0003:256C:006D.000C: hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.4-1/input1
[  256.276786][ T6019] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  256.287790][ T6019] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  256.298410][ T6019] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  256.313878][ T5890] usb 5-1: USB disconnect, device number 21
[  256.333878][ T6019] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.452577][ T8663] Unsupported ieee802154 address type: 0
[  257.153753][ T6019] usb 3-1: config 0 descriptor??
[  257.239207][ T8667] loop2: detected capacity change from 0 to 7
[  257.276537][ T8667]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  257.295133][ T8667] loop2: partition table partially beyond EOD, truncated
[  257.341554][ T8667] loop2: p1 size 276741282 extends beyond EOD, truncated
[  257.372006][ T8667] loop2: p2 start 579963744 is beyond EOD, truncated
[  257.461194][ T8671]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  257.490759][ T8671] loop2: partition table partially beyond EOD, truncated
[  257.537494][ T8671] loop2: p1 size 276741282 extends beyond EOD, truncated
[  257.551756][ T5890] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  257.703185][ T8671] loop2: p2 start 579963744 is beyond EOD, truncated
[  257.861111][ T5890] usb 4-1: Using ep0 maxpacket: 8
[  257.872445][ T5890] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  257.892978][ T5890] usb 4-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00
[  257.902248][ T5890] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.023701][ T5890] usb 4-1: config 0 descriptor??
[  258.081403][ T5893] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  258.230996][ T5894] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  258.388582][ T5894] usb 5-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  258.410568][ T5893] usb 2-1: config index 0 descriptor too short (expected 5292, got 77)
[  258.424547][ T5894] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.438278][ T5893] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  258.465027][ T5894] usb 5-1: Product: syz
[  258.469334][ T5894] usb 5-1: Manufacturer: syz
[  258.475788][ T5890] usbhid 4-1:0.0: can't add hid device: -71
[  258.479251][ T5893] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 20
[  258.483318][ T5890] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  258.499026][ T5894] usb 5-1: SerialNumber: syz
[  258.532132][ T5894] usb 5-1: config 0 descriptor??
[  258.546887][ T5890] usb 4-1: USB disconnect, device number 17
[  258.554076][ T5894] ch341 5-1:0.0: ch341-uart converter detected
[  258.743282][ T5893] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  258.770082][ T5893] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.789860][ T8690] vlan2: entered promiscuous mode
[  258.817395][ T5893] usb 2-1: Product: syz
[  258.821355][ T8690] vlan2: entered allmulticast mode
[  258.837977][ T5893] usb 2-1: Manufacturer: syz
[  258.908086][ T6019] usbhid 3-1:0.0: can't add hid device: -71
[  258.914658][ T6019] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  258.939442][ T6019] usb 3-1: USB disconnect, device number 14
[  258.977669][ T5893] usb 2-1: SerialNumber: syz
[  258.992068][ T5893] usb 2-1: config 0 descriptor??
[  259.090932][ T5894] usb 5-1: failed to receive control message: -71
[  259.097418][ T5894] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  259.108935][ T5198]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  259.125781][ T5198] loop2: partition table partially beyond EOD, truncated
[  259.151190][ T5894] usb 5-1: USB disconnect, device number 22
[  259.157369][ T5198] loop2: p1 size 276741282 extends beyond EOD, truncated
[  259.187683][ T5894] ch341 5-1:0.0: device disconnected
[  259.221297][ T5198] loop2: p2 start 579963744 is beyond EOD, truncated
[  259.336866][ T8702] vlan2: entered promiscuous mode
[  259.930912][ T5198]  loop2: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2
[  259.938890][ T5198] loop2: partition table partially beyond EOD, truncated
[  259.947349][ T5198] loop2: p1 size 276741282 extends beyond EOD, truncated
[  259.994764][ T8717] Unsupported ieee802154 address type: 0
[  260.139576][ T5198] loop2: p2 start 579963744 is beyond EOD, truncated
[  262.670981][ T6019] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  262.821005][ T6019] usb 5-1: Using ep0 maxpacket: 32
[  262.851830][ T6019] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  262.901222][ T6019] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  262.951146][ T6019] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  263.037355][ T6019] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.070352][ T6019] usb 5-1: config 0 descriptor??
[  263.391099][ T5890] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  263.630214][ T8758] loop0: detected capacity change from 0 to 4096
[  263.664550][ T5890] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  263.696679][ T6019] usbhid 5-1:0.0: can't add hid device: -32
[  263.760442][ T6019] usbhid 5-1:0.0: probe with driver usbhid failed with error -32
[  263.770478][ T5890] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  263.834460][ T6019] usb 5-1: USB disconnect, device number 23
[  263.847530][ T5890] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  263.889182][ T5890] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.937087][ T8758] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  263.941661][ T5890] usb 6-1: config 0 descriptor??
[  263.950712][ T8758] ntfs3(loop0): Failed to load root (-2).
[  264.079776][ T5894] usb 2-1: USB disconnect, device number 12
[  264.346721][ T8770] vlan2: entered promiscuous mode
[  266.990670][   T47] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  268.518622][   T47] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  268.528473][   T47] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.606242][   T47] usb 5-1: Product: syz
[  268.610773][   T47] usb 5-1: Manufacturer: syz
[  268.616472][   T47] usb 5-1: SerialNumber: syz
[  268.649008][ T8808] loop1: detected capacity change from 0 to 4096
[  268.731391][ T8808] ntfs3(loop1): failed to replay log file. Can't mount rw!
[  268.799334][   T47] usb 5-1: can't set config #1, error -71
[  268.858571][   T47] usb 5-1: USB disconnect, device number 24
[  268.956192][ T5890] usbhid 6-1:0.0: can't add hid device: -71
[  268.991121][ T5890] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  269.032149][ T5890] usb 6-1: USB disconnect, device number 17
[  269.167875][ T8817] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1073'.
[  269.262890][ T8822] loop1: detected capacity change from 0 to 512
[  269.374078][ T8822] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  269.485715][ T8822] ext4 filesystem being mounted at /206/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.525366][ T8832] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  269.533004][ T8832] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  272.912555][ T5838] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  273.916091][ T6019] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  274.810990][ T6019] usb 6-1: device descriptor read/all, error -71
[  274.995825][ T8865] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  275.092035][ T5895] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  275.278478][ T8873] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1091'.
[  275.323436][ T5895] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 5
[  275.341486][ T5895] usb 3-1: config 0 has no interface number 0
[  275.360876][ T5895] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  275.391755][ T8877] Unsupported ieee802154 address type: 0
[  275.665451][ T5895] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  275.882031][ T5895] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  275.899523][ T5895] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.910226][ T8878] loop0: detected capacity change from 0 to 4112
[  275.912328][ T5895] usb 3-1: config 0 descriptor??
[  275.946876][ T8878] ntfs3(loop0): failed to replay log file. Can't mount rw!
[  275.981247][ T5891] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  277.027929][ T5895] uclogic 0003:256C:006D.000D: No inputs registered, leaving
[  277.036759][ T5895] uclogic 0003:256C:006D.000D: hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.2-1/input1
[  277.080499][ T8888] loop0: detected capacity change from 0 to 2048
[  277.121960][ T5891] usb 5-1: Using ep0 maxpacket: 8
[  277.133860][ T5891] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  277.241775][   T47] usb 3-1: USB disconnect, device number 15
[  277.256811][ T8888] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  278.095250][ T5891] usb 5-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00
[  278.104462][ T5891] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.416775][ T5891] usb 5-1: config 0 descriptor??
[  279.453180][ T5891] usb 5-1: can't set config #0, error -71
[  279.465174][ T5891] usb 5-1: USB disconnect, device number 25
[  279.685716][ T5895] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  280.619325][ T5895] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.687660][ T5895] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  280.754002][ T8921] vlan2: entered promiscuous mode
[  280.791027][ T5895] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  280.832722][ T5895] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.896255][ T5895] usb 6-1: config 0 descriptor??
[  280.972021][ T8925] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1107'.
[  281.263699][ T8933] Bluetooth: MGMT ver 1.23
[  281.535612][ T8934] Unsupported ieee802154 address type: 0
[  281.919467][ T8940] loop2: detected capacity change from 0 to 4096
[  282.722324][ T5895] usbhid 6-1:0.0: can't add hid device: -71
[  282.729885][ T5895] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  282.798396][ T5895] usb 6-1: USB disconnect, device number 20
[  282.881157][ T8933] Process accounting resumed
[  282.885841][ T8940] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  282.886953][ T8940] ntfs3(loop2): Failed to load root (-2).
[  282.896290][ T8914] bridge0: port 3(erspan0) entered blocking state
[  282.905417][ T8914] bridge0: port 3(erspan0) entered disabled state
[  283.127417][ T8914] erspan0: entered allmulticast mode
[  283.173085][ T8914] erspan0: entered promiscuous mode
[  283.178714][ T8914] bridge0: port 3(erspan0) entered blocking state
[  283.185270][ T8914] bridge0: port 3(erspan0) entered forwarding state
[  283.297781][   T47] usb 1-1: new full-speed USB device number 23 using dummy_hcd
[  283.717158][   T47] usb 1-1: device descriptor read/64, error -71
[  283.870930][ T5893] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  284.052922][   T47] usb 1-1: new full-speed USB device number 24 using dummy_hcd
[  284.251141][   T47] usb 1-1: device descriptor read/64, error -71
[  284.319728][ T5893] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 5
[  284.345861][ T5893] usb 2-1: config 0 has no interface number 0
[  284.441149][ T5893] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  284.452613][ T5893] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  284.463188][   T47] usb usb1-port1: attempt power cycle
[  284.478822][ T5893] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  284.494335][ T5893] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.579575][ T5893] usb 2-1: config 0 descriptor??
[  284.831145][ T8966] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1122'.
[  284.921753][ T8968] loop2: detected capacity change from 0 to 128
[  284.935252][ T8968] =======================================================
[  284.935252][ T8968] WARNING: The mand mount option has been deprecated and
[  284.935252][ T8968]          and is ignored by this kernel. Remove the mand
[  284.935252][ T8968]          option from the mount to silence this warning.
[  284.935252][ T8968] =======================================================
[  285.008906][ T5893] uclogic 0003:256C:006D.000E: No inputs registered, leaving
[  285.042169][ T5893] uclogic 0003:256C:006D.000E: hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.1-1/input1
[  285.056547][ T8970] loop4: detected capacity change from 0 to 2048
[  285.094679][ T8970] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  286.978640][ T5895] usb 2-1: USB disconnect, device number 13
[  287.252350][ T8968] EXT4-fs (loop2): Test dummy encryption mode enabled
[  287.609116][ T8968] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  287.669512][ T8968] ext4 filesystem being mounted at /177/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  287.792936][ T8968] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  287.851010][ T5895] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  287.939908][ T5825] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  288.026955][ T5895] usb 2-1: Using ep0 maxpacket: 16
[  288.042981][ T5893] usb 5-1: new full-speed USB device number 26 using dummy_hcd
[  288.049799][ T5895] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[  288.091127][ T5895] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[  288.118364][ T5895] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  288.142679][ T5895] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  288.158850][ T5895] usb 2-1: Product: �
[  288.164280][ T5895] usb 2-1: SerialNumber: syz
[  288.186825][ T9012] Process accounting resumed
[  288.226130][ T5893] usb 5-1: config 201 has an invalid interface number: 249 but max is 0
[  288.235199][ T5893] usb 5-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config
[  288.247250][ T5893] usb 5-1: config 201 has no interface number 0
[  288.248578][ T9015] binder: 9014:9015 ioctl 4018620d 0 returned -22
[  288.263323][ T5893] usb 5-1: config 201 interface 249 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  288.276815][ T5893] usb 5-1: config 201 interface 249 has no altsetting 0
[  288.288015][ T5893] usb 5-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  288.299334][ T5893] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  288.312355][ T5893] usb 5-1: Product: syz
[  288.316845][ T5893] usb 5-1: Manufacturer: syz
[  288.325731][ T5893] usb 5-1: SerialNumber: syz
[  288.392426][ T5895] cdc_ncm 2-1:1.0: bind() failure
[  288.407626][ T5895] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  288.414979][ T5895] cdc_ncm 2-1:1.1: bind() failure
[  288.428225][ T5895] usb 2-1: USB disconnect, device number 14
[  288.451046][ T5894] usb 1-1: new full-speed USB device number 26 using dummy_hcd
[  288.550051][ T5893] ath6kl: Failed to submit usb control message: -71
[  288.557936][ T5893] ath6kl: unable to send the bmi data to the device: -71
[  288.565435][ T5893] ath6kl: Unable to send get target info: -71
[  288.574497][ T5893] ath6kl: Failed to init ath6kl core: -71
[  288.585295][ T5893] ath6kl_usb 5-1:201.249: probe with driver ath6kl_usb failed with error -71
[  288.594833][ T5894] usb 1-1: device descriptor read/64, error -71
[  288.618071][ T5893] usb 5-1: USB disconnect, device number 26
[  288.699867][ T9019] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1136'.
[  288.861902][ T5894] usb 1-1: new full-speed USB device number 27 using dummy_hcd
[  289.021153][ T5895] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  289.213303][ T5894] usb 1-1: device descriptor read/64, error -71
[  289.257371][ T5895] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 5
[  289.343688][ T5894] usb usb1-port1: attempt power cycle
[  289.457111][ T5895] usb 4-1: config 0 has no interface number 0
[  289.675321][ T5895] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  289.751109][ T5894] usb 1-1: new full-speed USB device number 28 using dummy_hcd
[  289.836790][ T5894] usb 1-1: device descriptor read/8, error -71
[  289.880974][ T5895] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  289.890741][ T5895] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  289.907998][ T5895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.917051][ T9036] loop4: detected capacity change from 0 to 128
[  289.928217][ T5895] usb 4-1: config 0 descriptor??
[  289.951041][ T9036] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  289.957492][ T9034] loop5: detected capacity change from 0 to 1024
[  290.007840][ T9034] hfsplus: inconsistency in B*Tree (-1,0,1,1,0)
[  290.027301][ T9034] hfsplus: failed to load root directory
[  290.138841][ T5894] usb 1-1: new full-speed USB device number 29 using dummy_hcd
[  290.181590][ T5894] usb 1-1: device descriptor read/8, error -71
[  290.267323][ T5893] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  290.305877][ T5894] usb usb1-port1: unable to enumerate USB device
[  290.325151][ T9038] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1143'.
[  290.423072][ T5895] uclogic 0003:256C:006D.000F: No inputs registered, leaving
[  290.431957][ T5895] uclogic 0003:256C:006D.000F: hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.3-1/input1
[  290.466400][ T5893] usb 5-1: Using ep0 maxpacket: 32
[  290.498797][ T5893] usb 5-1: New USB device found, idVendor=07ca, idProduct=0337, bcdDevice=97.1e
[  290.538645][ T5893] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.568356][ T5893] usb 5-1: Product: syz
[  290.598581][ T5893] usb 5-1: Manufacturer: syz
[  290.630957][ T5893] usb 5-1: SerialNumber: syz
[  290.664921][   T47] usb 4-1: USB disconnect, device number 18
[  290.692120][ T5893] usb 5-1: config 0 descriptor??
[  290.887682][ T9054] loop2: detected capacity change from 0 to 4096
[  290.920581][ T9054] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  290.933008][ T9054] ntfs3(loop2): Failed to load root (-2).
[  291.739792][ T9064] Unsupported ieee802154 address type: 0
[  292.446807][   T12] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  292.663561][ T9066] binder: 9065:9066 ioctl 4018620d 0 returned -22
[  293.930936][   T47] usb 6-1: new full-speed USB device number 21 using dummy_hcd
[  294.137146][ T5893] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  294.143828][ T5893] dvb_usb_af9035 5-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[  294.169767][ T5893] usb 5-1: USB disconnect, device number 27
[  295.058311][   T47] usb 6-1: config 201 has an invalid interface number: 249 but max is 0
[  295.067053][   T47] usb 6-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config
[  295.150920][   T47] usb 6-1: config 201 has no interface number 0
[  295.157233][   T47] usb 6-1: config 201 interface 249 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  295.178313][   T47] usb 6-1: config 201 interface 249 has no altsetting 0
[  297.150446][   T47] usb 6-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  297.172097][   T47] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.236804][   T47] usb 6-1: can't set config #201, error -71
[  297.267486][ T9106] loop2: detected capacity change from 0 to 1024
[  297.289900][   T47] usb 6-1: USB disconnect, device number 21
[  297.338509][ T9108] loop3: detected capacity change from 0 to 16
[  297.437796][ T9112] Process accounting resumed
[  297.527698][ T9108] erofs (device loop3): mounted with root inode @ nid 36.
[  297.701936][ T9106] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  297.788002][ T9119] binder: 9118:9119 ioctl 4018620d 0 returned -22
[  297.846598][ T5837] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[  297.859968][ T5837] CPU: 1 UID: 0 PID: 5837 Comm: kworker/u9:3 Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  297.870500][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  297.880572][ T5837] Workqueue: hci0 hci_rx_work
[  297.885300][ T5837] Call Trace:
[  297.888595][ T5837]  <TASK>
[  297.891541][ T5837]  dump_stack_lvl+0x241/0x360
[  297.896263][ T5837]  ? __pfx_dump_stack_lvl+0x10/0x10
[  297.901501][ T5837]  ? __pfx__printk+0x10/0x10
[  297.906122][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  297.911771][ T5837]  ? __kmalloc_cache_noprof+0x243/0x390
[  297.917336][ T5837]  ? sysfs_create_dir_ns+0x28a/0x3a0
[  297.922641][ T5837]  sysfs_create_dir_ns+0x2ce/0x3a0
[  297.927765][ T5837]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  297.933407][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  297.939061][ T5837]  kobject_add_internal+0x435/0x8d0
[  297.944292][ T5837]  kobject_add+0x152/0x220
[  297.948724][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  297.954392][ T5837]  ? do_raw_spin_unlock+0x13c/0x8b0
[  297.959610][ T5837]  ? device_add+0x3e7/0xbf0
[  297.964134][ T5837]  ? __pfx_kobject_add+0x10/0x10
[  297.969088][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  297.974730][ T5837]  ? _raw_spin_unlock+0x28/0x50
[  297.979592][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  297.985236][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  297.990973][ T5837]  ? get_device_parent+0x165/0x410
[  297.996121][ T5837]  device_add+0x4e5/0xbf0
[  298.000484][ T5837]  hci_conn_add_sysfs+0xe8/0x200
[  298.005437][ T5837]  le_conn_complete_evt+0xc9f/0x12e0
[  298.010741][ T5837]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  298.016469][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  298.022111][ T5837]  ? __mutex_unlock_slowpath+0x21e/0x790
[  298.027767][ T5837]  ? __pfx___mutex_lock+0x10/0x10
[  298.032811][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  298.038450][ T5837]  ? skb_pull_data+0x112/0x230
[  298.043234][ T5837]  hci_le_enh_conn_complete_evt+0x185/0x420
[  298.049159][ T5837]  hci_event_packet+0xa57/0x1540
[  298.054115][ T5837]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  298.059425][ T5837]  ? __pfx_hci_event_packet+0x10/0x10
[  298.064813][ T5837]  ? do_raw_spin_unlock+0x13c/0x8b0
[  298.070038][ T5837]  ? hci_send_to_monitor+0xd8/0x7f0
[  298.075247][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  298.080892][ T5837]  ? kcov_remote_start+0x97/0x7d0
[  298.085942][ T5837]  hci_rx_work+0x3f3/0xdb0
[  298.090385][ T5837]  ? process_scheduled_works+0x976/0x1840
[  298.096130][ T5837]  process_scheduled_works+0xa68/0x1840
[  298.101723][ T5837]  ? __pfx_process_scheduled_works+0x10/0x10
[  298.107733][ T5837]  ? assign_work+0x364/0x3d0
[  298.112349][ T5837]  worker_thread+0x870/0xd30
[  298.116958][ T5837]  ? __kthread_parkme+0x169/0x1d0
[  298.121993][ T5837]  ? __pfx_worker_thread+0x10/0x10
[  298.127111][ T5837]  kthread+0x2f2/0x390
[  298.131193][ T5837]  ? __pfx_worker_thread+0x10/0x10
[  298.136310][ T5837]  ? __pfx_kthread+0x10/0x10
[  298.140913][ T5837]  ret_from_fork+0x4d/0x80
[  298.145339][ T5837]  ? __pfx_kthread+0x10/0x10
[  298.150033][ T5837]  ret_from_fork_asm+0x1a/0x30
[  298.154859][ T5837]  </TASK>
[  298.158017][    C1] vkms_vblank_simulate: vblank timer overrun
[  298.167308][ T5837] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  298.181602][ T5837] Bluetooth: hci0: failed to register connection device
[  298.438535][ T9128] loop3: detected capacity change from 0 to 4096
[  298.465244][ T9128] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  298.481130][   T47] usb 6-1: new full-speed USB device number 22 using dummy_hcd
[  298.532150][ T9128] ntfs3(loop3): mft corrupted
[  298.539273][ T9128] ntfs3(loop3): Failed to load $MFT.
[  298.651603][   T47] usb 6-1: device descriptor read/64, error -71
[  298.735895][ T9130] loop4: detected capacity change from 0 to 256
[  298.784587][ T9130] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  298.855508][ T9133] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  298.920957][   T47] usb 6-1: new full-speed USB device number 23 using dummy_hcd
[  299.780913][   T47] usb 6-1: device descriptor read/64, error -71
[  299.891132][   T47] usb usb6-port1: attempt power cycle
[  300.063456][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.234807][   T47] usb 6-1: new full-speed USB device number 24 using dummy_hcd
[  300.261859][   T47] usb 6-1: device descriptor read/8, error -71
[  300.416037][ T5893] usb 4-1: new full-speed USB device number 19 using dummy_hcd
[  300.573487][   T47] usb 6-1: new full-speed USB device number 25 using dummy_hcd
[  302.078521][ T5893] usb 4-1: config 201 has an invalid interface number: 249 but max is 0
[  302.088526][ T5893] usb 4-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config
[  302.098903][ T5893] usb 4-1: config 201 has no interface number 0
[  302.105496][ T5893] usb 4-1: config 201 interface 249 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  302.118723][ T5893] usb 4-1: config 201 interface 249 has no altsetting 0
[  302.284042][   T47] usb 6-1: device not accepting address 25, error -71
[  302.340990][ T9166] loop4: detected capacity change from 0 to 1024
[  302.348727][   T47] usb usb6-port1: unable to enumerate USB device
[  302.812154][ T5893] usb 4-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  302.822369][ T5893] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  302.830642][ T5893] usb 4-1: Product: syz
[  302.836508][ T5893] usb 4-1: Manufacturer: syz
[  302.841244][ T5893] usb 4-1: SerialNumber: syz
[  302.860786][   T29] audit: type=1800 audit(1732974961.606:16): pid=9161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1181" name="/" dev="fuse" ino=1 res=0 errno=0
[  302.989577][ T9174] binder: 9173:9174 ioctl c0306201 0 returned -14
[  303.228252][ T9179] loop1: detected capacity change from 0 to 256
[  303.255090][ T9178] loop5: detected capacity change from 0 to 1024
[  303.262425][ T9179] vfat: Unknown parameter 'shortnan95'
[  303.276851][ T5893] ath6kl: Failed to submit usb control message: -71
[  303.293535][ T5893] ath6kl: unable to send the bmi data to the device: -71
[  303.300589][ T5893] ath6kl: Unable to send get target info: -71
[  303.308821][ T9179] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1188'.
[  303.670937][ T5893] ath6kl: Failed to init ath6kl core: -71
[  303.682268][ T5893] ath6kl_usb 4-1:201.249: probe with driver ath6kl_usb failed with error -71
[  304.293098][ T5893] usb 4-1: USB disconnect, device number 19
[  305.318055][ T9182] hfsplus: bad catalog entry type
[  305.385458][ T9184] hfsplus: bad catalog entry type
[  306.054817][ T9192] Process accounting resumed
[  306.132585][   T35] hfsplus: b-tree write err: -5, ino 4
[  306.175723][ T8631] hfsplus: b-tree write err: -5, ino 4
[  306.331056][ T9202] loop4: detected capacity change from 0 to 128
[  306.371186][ T5893] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  306.440010][ T9202] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  307.584587][ T5893] usb 3-1: device descriptor read/64, error -71
[  307.871135][ T5893] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  308.041447][ T5893] usb 3-1: device descriptor read/64, error -71
[  308.221662][ T5893] usb usb3-port1: attempt power cycle
[  308.400910][ T5891] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  308.562080][ T9221] binder: BINDER_SET_CONTEXT_MGR already set
[  308.568201][ T9221] binder: 9220:9221 ioctl 4018620d 20000040 returned -16
[  308.575946][ T9221] binder: 9220:9221 ioctl c0306201 0 returned -14
[  308.585172][ T9212] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  308.610880][ T5893] usb 3-1: new full-speed USB device number 18 using dummy_hcd
[  308.652867][ T5893] usb 3-1: device descriptor read/8, error -71
[  308.870927][ T5891] usb 5-1: Using ep0 maxpacket: 32
[  308.897589][ T5891] usb 5-1: New USB device found, idVendor=07ca, idProduct=0337, bcdDevice=97.1e
[  308.906728][ T5891] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.914841][ T5891] usb 5-1: Product: syz
[  308.919023][ T5891] usb 5-1: Manufacturer: syz
[  308.923800][ T5891] usb 5-1: SerialNumber: syz
[  308.930540][ T5891] usb 5-1: config 0 descriptor??
[  308.940947][ T5893] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[  309.600943][   T25] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  309.680062][ T9237] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1207'.
[  309.720881][ T5893] usb 3-1: device not accepting address 19, error -71
[  309.728116][ T5893] usb usb3-port1: unable to enumerate USB device
[  309.851506][   T25] usb 4-1: Using ep0 maxpacket: 16
[  309.864360][   T25] usb 4-1: config index 0 descriptor too short (expected 12306, got 18)
[  309.873375][   T25] usb 4-1: config 55 has too many interfaces: 49, using maximum allowed: 32
[  309.882725][   T25] usb 4-1: config 55 has an invalid descriptor of length 55, skipping remainder of the config
[  309.893055][   T25] usb 4-1: config 55 has 0 interfaces, different from the descriptor's value: 49
[  309.902261][   T25] usb 4-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[  309.911344][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.981011][ T5894] usb 1-1: new full-speed USB device number 30 using dummy_hcd
[  310.130041][    C1] raw-gadget.2 gadget.3: ignoring, device is not running
[  310.137805][    C1] raw-gadget.2 gadget.3: ignoring, device is not running
[  310.145212][    C1] raw-gadget.2 gadget.3: ignoring, device is not running
[  310.152779][    C1] raw-gadget.2 gadget.3: ignoring, device is not running
[  310.160574][   T25] usb 4-1: string descriptor 0 read error: -32
[  310.169103][ T5894] usb 1-1: config 201 has an invalid interface number: 249 but max is 0
[  310.181182][ T5893] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  310.198285][ T5894] usb 1-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config
[  310.209168][   T25] usb 4-1: USB disconnect, device number 20
[  310.219104][ T5894] usb 1-1: config 201 has no interface number 0
[  310.226644][ T5894] usb 1-1: config 201 interface 249 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  310.241063][ T5894] usb 1-1: config 201 interface 249 has no altsetting 0
[  310.250669][ T5894] usb 1-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  310.260749][ T5894] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  310.269647][ T5894] usb 1-1: Product: syz
[  310.284167][ T5894] usb 1-1: Manufacturer: syz
[  310.290892][ T5894] usb 1-1: SerialNumber: syz
[  310.302355][ T5891] usb 5-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  310.313443][ T6524] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  310.323011][ T5891] dvb_usb_af9035 5-1:0.0: probe with driver dvb_usb_af9035 failed with error -22
[  310.351039][ T5893] usb 3-1: Using ep0 maxpacket: 16
[  310.362968][ T5893] usb 3-1: config 0 has an invalid interface number: 32 but max is 0
[  310.371106][ T5891] usb 5-1: USB disconnect, device number 28
[  310.386054][ T5893] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  310.410446][ T5893] usb 3-1: config 0 has no interface number 0
[  310.425975][ T5893] usb 3-1: config 0 interface 32 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  310.442955][ T5893] usb 3-1: New USB device found, idVendor=28bd, idProduct=0934, bcdDevice= 0.00
[  310.452534][ T5893] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.463782][ T5893] usb 3-1: config 0 descriptor??
[  310.473633][ T5893] usbhid 3-1:0.32: couldn't find an input interrupt endpoint
[  311.134378][ T5894] ath6kl: Failed to submit usb control message: -71
[  311.211133][ T5894] ath6kl: unable to send the bmi data to the device: -71
[  311.218233][ T5894] ath6kl: Unable to send get target info: -71
[  311.270323][ T5894] ath6kl: Failed to init ath6kl core: -71
[  311.276879][ T5894] ath6kl_usb 1-1:201.249: probe with driver ath6kl_usb failed with error -71
[  311.385752][ T9254] loop4: detected capacity change from 0 to 1024
[  311.412436][ T9254] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  311.439507][ T9251] loop5: detected capacity change from 0 to 1024
[  311.451159][ T9254] JBD2: no valid journal superblock found
[  311.467268][ T9254] EXT4-fs (loop4): Could not load journal inode
[  311.573914][ T5894] usb 1-1: USB disconnect, device number 30
[  311.588687][ T9259] Process accounting resumed
[  311.600436][ T9251] hfsplus: inconsistency in B*Tree (-1,0,1,1,0)
[  311.608112][ T9251] hfsplus: failed to load root directory
[  311.657826][ T9254] tmpfs: Unknown parameter 'huËÎf§ever'
[  311.861035][ T5891] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  311.929743][ T9264] binder: 9263:9264 ioctl c0306201 0 returned -14
[  312.012688][ T5891] usb 2-1: device descriptor read/64, error -71
[  312.172723][ T9271] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  312.260913][ T5891] usb 2-1: new full-speed USB device number 16 using dummy_hcd
[  312.401833][ T5891] usb 2-1: device descriptor read/64, error -71
[  312.521203][ T5891] usb usb2-port1: attempt power cycle
[  312.870984][ T5891] usb 2-1: new full-speed USB device number 17 using dummy_hcd
[  312.942607][ T5891] usb 2-1: device descriptor read/8, error -71
[  313.108530][ T6019] usb 3-1: USB disconnect, device number 20
[  313.177737][ T9276] loop4: detected capacity change from 0 to 512
[  313.321055][ T5891] usb 2-1: new full-speed USB device number 18 using dummy_hcd
[  313.454389][ T5891] usb 2-1: device descriptor read/8, error -71
[  313.562258][ T5891] usb usb2-port1: unable to enumerate USB device
[  313.573686][ T9276] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  313.587257][ T9276] ext4 filesystem being mounted at /233/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.801874][ T9291] No source specified
[  314.398199][ T6019] usb 6-1: new full-speed USB device number 26 using dummy_hcd
[  314.791272][ T6019] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  315.734858][ T6019] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 1024, setting to 64
[  316.148105][ T9303] loop2: detected capacity change from 0 to 512
[  316.293913][ T6019] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  316.313596][ T6019] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.329085][ T6019] usb 6-1: Product: syz
[  316.358027][ T9303] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  316.400241][ T6019] usb 6-1: Manufacturer: syz
[  316.431117][ T6019] usb 6-1: SerialNumber: syz
[  316.444882][ T5830] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  316.461154][ T9303] ext4 filesystem being mounted at /195/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.533361][ T6019] usb 6-1: can't set config #1, error -71
[  316.788277][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  316.800938][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  317.309450][ T9315] binder: BINDER_SET_CONTEXT_MGR already set
[  317.316675][ T9315] binder: 9314:9315 ioctl 4018620d 20000040 returned -16
[  317.418316][ T6019] usb 6-1: USB disconnect, device number 26
[  318.473487][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  318.497218][ T9331] loop4: detected capacity change from 0 to 1024
[  318.513005][ T9331] EXT4-fs: Ignoring removed orlov option
[  318.570884][ T5894] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  318.669907][ T9338] loop3: detected capacity change from 0 to 1024
[  318.861247][ T9331] EXT4-fs (loop4): Test dummy encryption mode enabled
[  319.844353][ T5894] usb 1-1: Using ep0 maxpacket: 16
[  319.852515][ T5894] usb 1-1: config 0 has an invalid interface number: 32 but max is 0
[  319.860609][ T5894] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  319.870893][ T5894] usb 1-1: config 0 has no interface number 0
[  319.876998][ T5894] usb 1-1: config 0 interface 32 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  320.676746][ T9342] No source specified
[  320.686252][ T5894] usb 1-1: New USB device found, idVendor=28bd, idProduct=0934, bcdDevice= 0.00
[  320.695553][ T5894] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.705851][ T5894] usb 1-1: config 0 descriptor??
[  320.740688][ T9331] EXT4-fs (loop4): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  320.807778][ T9344] hfsplus: bad catalog entry type
[  320.880200][ T5894] usb 1-1: can't set config #0, error -71
[  320.887607][ T9331] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.888686][ T5894] usb 1-1: USB disconnect, device number 31
[  321.154962][ T9354] binder: 9353:9354 ioctl c0306201 0 returned -14
[  321.166946][ T9352] loop1: detected capacity change from 0 to 128
[  321.183779][   T53] hfsplus: b-tree write err: -5, ino 4
[  321.231066][ T9352] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  321.301066][ T9357] binder: BINDER_SET_CONTEXT_MGR already set
[  321.521189][ T9357] binder: 9353:9357 ioctl 4018620d 20000280 returned -16
[  323.821557][ T5830] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.954856][ T9374] loop2: detected capacity change from 0 to 128
[  323.981909][ T9374] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  325.557486][ T9393] loop1: detected capacity change from 0 to 1024
[  325.791155][ T5893] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  325.867024][ T9400] No source specified
[  326.759158][ T9401] loop4: detected capacity change from 0 to 164
[  326.850861][ T5893] usb 6-1: Using ep0 maxpacket: 16
[  327.613814][ T5893] usb 6-1: config 0 has an invalid interface number: 32 but max is 0
[  327.622839][ T5893] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  327.633043][ T5893] usb 6-1: config 0 has no interface number 0
[  327.639141][ T5893] usb 6-1: config 0 interface 32 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  328.112683][ T5893] usb 6-1: New USB device found, idVendor=28bd, idProduct=0934, bcdDevice= 0.00
[  328.122537][ T5893] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.368396][ T5893] usb 6-1: config 0 descriptor??
[  328.412305][ T9408] hfsplus: bad catalog entry type
[  328.851941][ T9410] loop3: detected capacity change from 0 to 24
[  328.858875][ T9410] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  328.960920][ T9410] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  328.985365][ T9405] loop0: detected capacity change from 0 to 1024
[  328.995260][   T80] hfsplus: b-tree write err: -5, ino 4
[  329.026727][ T9405] EXT4-fs: Ignoring removed orlov option
[  329.098003][ T5893] usb 6-1: can't set config #0, error -71
[  329.150995][ T9405] EXT4-fs (loop0): Test dummy encryption mode enabled
[  329.257395][ T9405] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  329.380717][ T5893] usb 6-1: USB disconnect, device number 27
[  330.646035][ T9405] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.717077][ T9432] vlan2: entered promiscuous mode
[  330.836281][ T9434] loop1: detected capacity change from 0 to 1024
[  331.143366][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.420188][ T9441] hfsplus: bad catalog entry type
[  332.157950][   T35] hfsplus: b-tree write err: -5, ino 4
[  333.628471][ T9460] No source specified
[  333.958574][ T9455] netlink: 'syz.1.1272': attribute type 21 has an invalid length.
[  334.202527][ T9464] loop0: detected capacity change from 0 to 128
[  334.234900][ T9464] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  334.701387][ T5893] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  334.890947][ T5893] usb 2-1: Using ep0 maxpacket: 16
[  334.922642][ T5893] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  334.979095][ T5893] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  335.081182][ T5893] usb 2-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  335.090367][ T5893] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.117868][ T5893] usb 2-1: config 0 descriptor??
[  335.376675][ T9476] netlink: 251 bytes leftover after parsing attributes in process `syz.0.1281'.
[  335.417173][ T9478] loop2: detected capacity change from 0 to 1024
[  335.451095][ T9476] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  335.803026][ T5893] kye 0003:0458:5015.0010: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  336.665675][ T5893] kye 0003:0458:5015.0010: unbalanced collection at end of report description
[  336.681050][ T5893] kye 0003:0458:5015.0010: parse failed
[  336.687016][ T5893] kye 0003:0458:5015.0010: probe with driver kye failed with error -22
[  336.961327][   T80] hfsplus: b-tree write err: -5, ino 4
[  337.523387][ T9492] fuse: Unknown parameter '0x00000000000000030x0000000000000003'
[  337.785027][ T5893] usb 2-1: USB disconnect, device number 19
[  338.603409][ T9474] loop4: detected capacity change from 0 to 164
[  338.716894][ T9503] loop1: detected capacity change from 0 to 256
[  338.734327][ T9503] vfat: Unknown parameter 'shortnan95'
[  338.763877][ T9503] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1287'.
[  339.362457][ T9499] loop3: detected capacity change from 0 to 164
[  340.354941][ T9514] loop2: detected capacity change from 0 to 1024
[  340.434752][ T9514] hfsplus: inconsistency in B*Tree (-1,0,1,1,0)
[  340.473109][ T9514] hfsplus: failed to load root directory
[  340.653264][ T9519] No source specified
[  342.163841][ T9530] netlink: 251 bytes leftover after parsing attributes in process `syz.0.1296'.
[  342.198669][ T9530] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  342.235931][ T9528] loop2: detected capacity change from 0 to 2048
[  342.323648][ T9528] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  342.403065][ T9534] vlan2: entered promiscuous mode
[  342.719148][ T9539] loop0: detected capacity change from 0 to 256
[  342.751830][ T9539] vfat: Unknown parameter 'shortnan95'
[  342.891298][ T9541] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1299'.
[  343.216288][ T9545] fuse: Unknown parameter '0x00000000000000030x0000000000000003'
[  343.237797][ T9548] loop4: detected capacity change from 0 to 1024
[  345.062126][ T9551] hfsplus: bad catalog entry type
[  345.557096][ T9556] loop3: detected capacity change from 0 to 1024
[  345.581488][ T6524] hfsplus: b-tree write err: -5, ino 4
[  348.352794][ T9574] loop1: detected capacity change from 0 to 1024
[  348.772874][ T9574] hfsplus: inconsistency in B*Tree (-1,0,1,1,0)
[  349.273291][ T9574] hfsplus: failed to load root directory
[  349.414680][ T9580] hfsplus: bad catalog entry type
[  350.752377][   T11] hfsplus: b-tree write err: -5, ino 4
[  350.895248][ T9593] fuse: Unknown parameter '0x00000000000000030x0000000000000003'
[  350.981080][ T9595] loop3: detected capacity change from 0 to 1024
[  351.018710][ T9597] netlink: 4100 bytes leftover after parsing attributes in process `syz.4.1316'.
[  352.914432][ T5922] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  352.945760][ T9605] loop1: detected capacity change from 0 to 2048
[  353.887397][ T9613] hfsplus: bad catalog entry type
[  354.526380][ T9605] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  354.583144][ T6524] hfsplus: b-tree write err: -5, ino 4
[  354.707189][ T9621] pim6reg: entered allmulticast mode
[  354.831036][ T9621] pim6reg: left allmulticast mode
[  356.353225][ T5891] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  356.580907][ T5891] usb 5-1: Using ep0 maxpacket: 32
[  356.588455][ T5891] usb 5-1: config index 0 descriptor too short (expected 35577, got 27)
[  356.597068][ T5891] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  356.624853][ T5891] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92
[  356.654447][ T5891] usb 5-1: config 1 has no interface number 0
[  356.660714][ T5891] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  356.680975][ T5893] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  356.704572][ T5891] usb 5-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  356.745762][ T5891] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  356.760864][ T5891] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.789898][ T5891] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found
[  356.841023][ T5893] usb 2-1: Using ep0 maxpacket: 32
[  356.851612][ T5893] usb 2-1: config 0 has an invalid interface number: 12 but max is 0
[  356.868924][ T5893] usb 2-1: config 0 has no interface number 0
[  356.876666][ T5893] usb 2-1: config 0 interface 12 has no altsetting 0
[  356.890029][ T5893] usb 2-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  356.900075][ T5893] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  356.908677][ T5893] usb 2-1: Product: syz
[  356.913565][ T5893] usb 2-1: Manufacturer: syz
[  356.918265][ T5893] usb 2-1: SerialNumber: syz
[  356.959938][ T5893] usb 2-1: config 0 descriptor??
[  356.996271][ T5893] f81534 2-1:0.12: required endpoints missing
[  357.247534][ T9646] loop3: detected capacity change from 0 to 1024
[  357.316365][ T9646] hfsplus: inconsistency in B*Tree (-1,0,1,1,0)
[  357.323597][ T9646] hfsplus: failed to load root directory
[  357.347822][ T5891] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now attached
[  357.573379][ T5922] usb 5-1: USB disconnect, device number 29
[  357.580478][ T5922] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected
[  357.665154][ T9653] fuse: Unknown parameter '0x00000000000000030x0000000000000003'
[  357.676466][ T9655] netlink: 4100 bytes leftover after parsing attributes in process `syz.2.1333'.
[  359.162484][ T9664] loop5: detected capacity change from 0 to 1024
[  359.170167][ T9664] hfsplus: Unknown parameter 'ÿ'
[  361.005880][ T5893] usb 2-1: USB disconnect, device number 20
[  361.218185][ T9675] loop1: detected capacity change from 0 to 1024
[  361.286608][ T9678] loop3: detected capacity change from 0 to 1024
[  361.521966][ T5891] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[  361.536953][ T6127] hfsplus: b-tree write err: -5, ino 4
[  362.893071][ T9686] hfsplus: bad catalog entry type
[  363.275166][ T9682] loop5: detected capacity change from 0 to 164
[  363.480970][ T5891] usb 1-1: Using ep0 maxpacket: 8
[  363.487679][ T5891] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  363.769826][ T5891] usb 1-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00
[  363.779498][ T5891] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.793556][ T5891] usb 1-1: config 0 descriptor??
[  364.095893][ T9696] hfsplus: bad catalog entry type
[  364.540542][ T9699] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  364.685078][ T5893] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  364.746126][   T53] hfsplus: b-tree write err: -5, ino 4
[  365.000937][ T6019] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  365.029219][ T9711] fuse: Unknown parameter '0x00000000000000030x0000000000000003'
[  365.121953][ T5893] usb 5-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  365.137883][ T5893] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.156144][ T5893] usb 5-1: Product: syz
[  365.169707][ T5893] usb 5-1: Manufacturer: syz
[  365.184615][ T5893] usb 5-1: SerialNumber: syz
[  365.433695][ T5893] usb 5-1: config 0 descriptor??
[  365.442247][ T5893] ch341 5-1:0.0: ch341-uart converter detected
[  365.454488][ T9713] loop0: detected capacity change from 0 to 128
[  365.931419][ T9713] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  365.978517][ T9690] vlan2: entered promiscuous mode
[  366.040944][ T9690] vlan2: entered allmulticast mode
[  366.194852][ T5891] usbhid 1-1:0.0: can't add hid device: -71
[  366.202834][ T5891] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  366.220703][ T5891] usb 1-1: USB disconnect, device number 33
[  366.281054][ T5893] usb 5-1: failed to receive control message: -71
[  366.319342][ T5893] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  366.329905][ T9718] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1350'.
[  366.349782][ T6019] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 5
[  366.356769][ T5893] usb 5-1: USB disconnect, device number 30
[  366.367435][ T6019] usb 2-1: config 0 has no interface number 0
[  366.388368][ T6019] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  366.396975][ T5893] ch341 5-1:0.0: device disconnected
[  366.424976][ T6019] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  366.437255][ T6019] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  366.459983][ T6019] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.524761][ T9723] netlink: 'syz.0.1352': attribute type 3 has an invalid length.
[  366.552346][ T6019] usb 2-1: config 0 descriptor??
[  366.851804][ T9725] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  366.859503][ T9725] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  367.755621][ T6019] usbhid 2-1:0.1: can't add hid device: -71
[  367.762804][ T6019] usbhid 2-1:0.1: probe with driver usbhid failed with error -71
[  367.850404][ T6019] usb 2-1: USB disconnect, device number 21
[  369.190399][ T9741] loop1: detected capacity change from 0 to 164
[  369.237869][   T25] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  369.261788][ T9739] 9pnet_fd: Insufficient options for proto=fd
[  369.640875][   T25] usb 4-1: Using ep0 maxpacket: 32
[  369.658844][   T25] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  369.711874][ T9742] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  369.743284][   T25] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  369.991454][   T25] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  370.001059][   T25] usb 4-1: config 1 has no interface number 0
[  370.007219][   T25] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  370.018142][   T25] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  370.031407][   T25] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  370.041011][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.056203][   T25] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  370.219579][ T9748] loop5: detected capacity change from 0 to 164
[  370.930378][   T25] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  371.023591][ T9751] loop0: detected capacity change from 0 to 1024
[  371.113788][ T9756] fuse: Unknown parameter '0x00000000000000030x0000000000000003'
[  371.445691][   T11] hfsplus: b-tree write err: -5, ino 4
[  372.411610][ T5893] snd_usb_pod 4-1:1.1: line6_send_raw_message_async_part: usb_submit_urb failed (-22)
[  373.333943][ T9764] hfsplus: bad catalog entry type
[  374.979490][ T5895] usb 4-1: USB disconnect, device number 21
[  375.044720][ T5895] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  375.089936][ T9774] fuse: Bad value for 'fd'
[  375.401975][   T25] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  375.619519][   T25] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  375.628874][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  375.641020][   T25] usb 3-1: Product: syz
[  375.645301][   T25] usb 3-1: Manufacturer: syz
[  375.650063][   T25] usb 3-1: SerialNumber: syz
[  375.714525][ T9782] loop0: detected capacity change from 0 to 1024
[  375.936429][   T25] usb 3-1: config 0 descriptor??
[  375.957340][   T25] ch341 3-1:0.0: ch341-uart converter detected
[  375.970905][ T9786] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1359'.
[  376.128413][ T9782] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  376.162331][ T9776] vlan2: entered promiscuous mode
[  376.167391][ T9776] vlan2: entered allmulticast mode
[  376.224933][ T5837] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  376.234944][ T5837] CPU: 1 UID: 0 PID: 5837 Comm: kworker/u9:3 Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  376.240598][ T9790] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1371'.
[  376.245450][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  376.245485][ T5837] Workqueue: hci1 hci_rx_work
[  376.245529][ T5837] Call Trace:
[  376.245541][ T5837]  <TASK>
[  376.245553][ T5837]  dump_stack_lvl+0x241/0x360
[  376.279961][ T5837]  ? __pfx_dump_stack_lvl+0x10/0x10
[  376.285182][ T5837]  ? __pfx__printk+0x10/0x10
[  376.289988][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.295639][ T5837]  ? __kmalloc_cache_noprof+0x243/0x390
[  376.301201][ T5837]  ? sysfs_create_dir_ns+0x28a/0x3a0
[  376.306502][ T5837]  sysfs_create_dir_ns+0x2ce/0x3a0
[  376.311627][ T5837]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  376.317270][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.322928][ T5837]  kobject_add_internal+0x435/0x8d0
[  376.328155][ T5837]  kobject_add+0x152/0x220
[  376.332590][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.338230][ T5837]  ? do_raw_spin_unlock+0x13c/0x8b0
[  376.343448][ T5837]  ? device_add+0x3e7/0xbf0
[  376.348063][ T5837]  ? __pfx_kobject_add+0x10/0x10
[  376.353013][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.358653][ T5837]  ? _raw_spin_unlock+0x28/0x50
[  376.363515][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.369157][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.374796][ T5837]  ? get_device_parent+0x165/0x410
[  376.379929][ T5837]  device_add+0x4e5/0xbf0
[  376.384284][ T5837]  hci_conn_add_sysfs+0xe8/0x200
[  376.389235][ T5837]  le_conn_complete_evt+0xc9f/0x12e0
[  376.394538][ T5837]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  376.400260][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.405898][ T5837]  ? __mutex_unlock_slowpath+0x21e/0x790
[  376.411556][ T5837]  ? __pfx___mutex_lock+0x10/0x10
[  376.416594][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.422230][ T5837]  ? skb_pull_data+0x112/0x230
[  376.427031][ T5837]  hci_le_enh_conn_complete_evt+0x185/0x420
[  376.432955][ T5837]  hci_event_packet+0xa57/0x1540
[  376.437910][ T5837]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  376.443218][ T5837]  ? __pfx_hci_event_packet+0x10/0x10
[  376.448600][ T5837]  ? do_raw_spin_unlock+0x13c/0x8b0
[  376.453821][ T5837]  ? hci_send_to_monitor+0xd8/0x7f0
[  376.459019][ T5837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  376.464658][ T5837]  ? kcov_remote_start+0x97/0x7d0
[  376.469690][ T5837]  hci_rx_work+0x3f3/0xdb0
[  376.474130][ T5837]  ? process_scheduled_works+0x976/0x1840
[  376.480041][ T5837]  process_scheduled_works+0xa68/0x1840
[  376.485634][ T5837]  ? __pfx_process_scheduled_works+0x10/0x10
[  376.491643][ T5837]  ? assign_work+0x364/0x3d0
[  376.496255][ T5837]  worker_thread+0x870/0xd30
[  376.500865][ T5837]  ? __kthread_parkme+0x169/0x1d0
[  376.505898][ T5837]  ? __pfx_worker_thread+0x10/0x10
[  376.511011][ T5837]  kthread+0x2f2/0x390
[  376.515087][ T5837]  ? __pfx_worker_thread+0x10/0x10
[  376.520288][ T5837]  ? __pfx_kthread+0x10/0x10
[  376.524888][ T5837]  ret_from_fork+0x4d/0x80
[  376.529308][ T5837]  ? __pfx_kthread+0x10/0x10
[  376.533911][ T5837]  ret_from_fork_asm+0x1a/0x30
[  376.538707][ T5837]  </TASK>
[  376.550892][ T5837] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  376.566014][ T5837] Bluetooth: hci1: failed to register connection device
[  376.624032][   T25] usb 3-1: failed to receive control message: -71
[  376.636405][   T25] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  376.651130][ T5895] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  376.653954][   T25] usb 3-1: USB disconnect, device number 21
[  376.666530][   T25] ch341 3-1:0.0: device disconnected
[  376.728054][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.836622][ T5895] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 5
[  376.858607][ T5895] usb 4-1: config 0 has no interface number 0
[  376.870747][ T9800] loop0: detected capacity change from 0 to 1024
[  376.878208][ T5895] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  376.899165][ T5895] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  376.947368][ T5895] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  376.959289][ T5895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.013339][ T5895] usb 4-1: config 0 descriptor??
[  377.566345][ T9806] loop1: detected capacity change from 0 to 164
[  378.160525][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  378.168835][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  378.742351][ T9808] hfsplus: bad catalog entry type
[  379.577679][ T8631] hfsplus: b-tree write err: -5, ino 4
[  379.708414][ T5895] usbhid 4-1:0.1: can't add hid device: -71
[  379.714489][ T5895] usbhid 4-1:0.1: probe with driver usbhid failed with error -71
[  379.747860][ T5895] usb 4-1: USB disconnect, device number 22
[  380.071088][   T29] audit: type=1326 audit(1732975038.676:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.093712][   T29] audit: type=1326 audit(1732975038.676:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.117656][   T29] audit: type=1326 audit(1732975038.676:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.140260][   T29] audit: type=1326 audit(1732975038.676:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.162951][   T29] audit: type=1326 audit(1732975038.676:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.185342][   T29] audit: type=1326 audit(1732975038.676:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.207923][   T29] audit: type=1326 audit(1732975038.676:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.230703][   T29] audit: type=1326 audit(1732975038.676:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.253652][   T29] audit: type=1326 audit(1732975038.676:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.276789][   T29] audit: type=1326 audit(1732975038.676:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9819 comm="syz.0.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6631b80849 code=0x7ffc0000
[  380.320933][ T9825] fuse: Bad value for 'fd'
[  380.532779][ T9828] loop0: detected capacity change from 0 to 512
[  380.675369][ T9804] syz.4.1373 (9804): drop_caches: 2
[  380.852232][ T9828] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 ro without journal. Quota mode: writeback.
[  381.076073][ T9828] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1383'.
[  381.085526][ T9828] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1383'.
[  381.349917][ T9846] loop5: detected capacity change from 0 to 1024
[  381.407108][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  381.637545][   T25] kernel write not supported for file /snd/midiC2D0 (pid: 25 comm: kworker/1:0)
[  381.676722][ T9851] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  383.321370][ T9846] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  383.528622][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.620892][   T25] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  383.850003][ T9865] fuse: Bad value for 'fd'
[  384.042246][   T25] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 5
[  384.051310][   T25] usb 1-1: config 0 has no interface number 0
[  384.057419][   T25] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  384.058438][ T9868] vlan2: entered promiscuous mode
[  384.068394][   T25] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  384.068497][   T25] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  384.068529][   T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  384.102383][   T25] usb 1-1: config 0 descriptor??
[  385.737160][   T25] uclogic 0003:256C:006D.0011: No inputs registered, leaving
[  385.755763][   T25] uclogic 0003:256C:006D.0011: hidraw0: USB HID v0.00 Device [HID 256c:006d] on usb-dummy_hcd.0-1/input1
[  385.853342][ T6019] usb 1-1: USB disconnect, device number 34
[  385.996630][ T9883] loop2: detected capacity change from 0 to 7
[  386.057744][ T9883] Dev loop2: unable to read RDB block 7
[  386.080740][ T9886] Cannot find set identified by id 0 to match
[  386.098054][ T9883]  loop2: unable to read partition table
[  386.117286][ T9886] pim6reg: entered allmulticast mode
[  386.138606][ T9883] loop2: partition table beyond EOD, truncated
[  386.232084][ T9883] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  386.254396][ T9886] pim6reg: left allmulticast mode
[  387.529828][ T9891] Dev loop2: unable to read RDB block 7
[  387.535781][ T9891]  loop2: unable to read partition table
[  387.548501][ T9891] loop2: partition table beyond EOD, truncated
[  387.576917][ T9891] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  387.639950][ T5198] Dev loop2: unable to read RDB block 7
[  387.648683][ T5198]  loop2: unable to read partition table
[  387.654649][ T5198] loop2: partition table beyond EOD, truncated
[  387.752429][ T9901] fuse: Bad value for 'fd'
[  388.078867][ T5198] Dev loop2: unable to read RDB block 7
[  388.111065][ T5198]  loop2: unable to read partition table
[  388.118184][ T5198] loop2: partition table beyond EOD, truncated
[  391.279912][ T9941] loop3: detected capacity change from 0 to 1024
[  392.235430][ T9946] loop5: detected capacity change from 0 to 164
[  392.248169][ T5891] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  393.171334][ T9911] syz.1.1407 (9911): drop_caches: 2
[  393.182159][ T5891] usb 1-1: Using ep0 maxpacket: 32
[  393.381779][ T9950] hfsplus: bad catalog entry type
[  394.068651][ T5891] usb 1-1: config 0 has an invalid interface number: 12 but max is 0
[  394.076859][ T5891] usb 1-1: config 0 has no interface number 0
[  394.083222][ T5891] usb 1-1: config 0 interface 12 has no altsetting 0
[  394.183538][ T5891] usb 1-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  394.192655][ T5891] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.200643][ T5891] usb 1-1: Product: syz
[  394.205174][ T5891] usb 1-1: Manufacturer: syz
[  394.209773][ T5891] usb 1-1: SerialNumber: syz
[  394.220009][ T5891] usb 1-1: config 0 descriptor??
[  394.248608][   T53] hfsplus: b-tree write err: -5, ino 4
[  394.378260][ T5891] f81534 1-1:0.12: f81534_set_register: reg: 1002 data: 3 failed: -71
[  394.420828][ T5891] f81534 1-1:0.12: f81534_find_config_idx: read failed: -71
[  394.428149][ T5891] f81534 1-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  394.476001][ T5891] f81534 1-1:0.12: probe with driver f81534 failed with error -71
[  394.567732][ T5891] usb 1-1: USB disconnect, device number 35
[  394.627086][ T9957] fuse: Bad value for 'fd'
[  394.796207][ T9959] loop4: detected capacity change from 0 to 2048
[  394.835575][ T9959] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  395.550962][ T5891] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  397.344396][ T5891] usb 4-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  397.353634][ T5891] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  397.362463][ T5891] usb 4-1: Product: syz
[  397.366845][ T5891] usb 4-1: Manufacturer: syz
[  397.614505][ T5891] usb 4-1: SerialNumber: syz
[  397.632029][ T5891] usb 4-1: config 0 descriptor??
[  397.639068][ T5891] ch341 4-1:0.0: ch341-uart converter detected
[  398.172928][ T9967] vlan2: entered promiscuous mode
[  398.495619][ T9967] vlan2: entered allmulticast mode
[  398.557261][ T9993] loop5: detected capacity change from 0 to 512
[  398.651767][ T5891] usb 4-1: failed to receive control message: -71
[  398.655379][ T9993] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 ro without journal. Quota mode: writeback.
[  398.658265][ T5891] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  398.687413][ T5891] usb 4-1: USB disconnect, device number 23
[  398.694422][ T5891] ch341 4-1:0.0: device disconnected
[  398.910430][ T9993] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1435'.
[  398.990663][ T9998] Cannot find set identified by id 0 to match
[  399.000098][ T9993] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1435'.
[  399.153148][ T9998] pim6reg: entered allmulticast mode
[  399.745881][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  400.014487][T10008] loop1: detected capacity change from 0 to 128
[  400.179121][T10008] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  402.877677][T10049] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  402.917419][T10047] loop0: detected capacity change from 0 to 1024
[  403.745653][T10055] hfsplus: bad catalog entry type
[  404.232688][ T6120] hfsplus: b-tree write err: -5, ino 4
[  405.722443][T10029] syz.4.1446 (10029): drop_caches: 2
[  406.560844][ T5922] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  406.720841][ T5922] usb 1-1: Using ep0 maxpacket: 16
[  406.740463][ T5922] usb 1-1: config 0 has an invalid interface number: 32 but max is 0
[  406.799018][ T5922] usb 1-1: config 0 has no interface number 0
[  406.806483][ T5922] usb 1-1: config 0 interface 32 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  406.853378][ T5922] usb 1-1: config 0 interface 32 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  406.870840][ T5922] usb 1-1: New USB device found, idVendor=28bd, idProduct=0934, bcdDevice= 0.00
[  406.881045][ T5922] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  406.898129][ T5922] usb 1-1: config 0 descriptor??
[  407.333121][ T5922] usbhid 1-1:0.32: can't add hid device: -71
[  407.339356][ T5922] usbhid 1-1:0.32: probe with driver usbhid failed with error -71
[  407.368221][ T5922] usb 1-1: USB disconnect, device number 36
[  407.827221][T10080] loop4: detected capacity change from 0 to 164
[  411.688815][T10113] loop1: detected capacity change from 0 to 128
[  411.726311][T10113] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  412.229167][T10121] loop5: detected capacity change from 0 to 164
[  414.654201][T10132] loop5: detected capacity change from 0 to 1024
[  415.357391][T10141] hfsplus: bad catalog entry type
[  416.721242][   T53] hfsplus: b-tree write err: -5, ino 4
[  417.206574][T10151] loop2: detected capacity change from 0 to 256
[  417.290925][T10151] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119ac00, checksum : 0x30f9ac00)
[  417.337307][T10151] exFAT-fs (loop2): invalid boot region
[  417.360965][T10151] exFAT-fs (loop2): failed to recognize exfat type
[  417.398018][T10157] loop4: detected capacity change from 0 to 1024
[  418.126586][T10163] loop3: detected capacity change from 0 to 8192
[  418.206695][T10163] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  418.287074][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  418.287094][   T29] audit: type=1326 audit(1732975077.036:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  418.445699][   T29] audit: type=1326 audit(1732975077.086:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  419.327812][   T29] audit: type=1326 audit(1732975077.086:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  419.374870][T10176] hfsplus: bad catalog entry type
[  419.462177][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.471175][T10173] FAT-fs (loop3): Filesystem has been set read-only
[  419.477889][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.499871][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.508711][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.517524][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.526425][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.536580][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.545402][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.607589][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.616536][T10173] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  419.738975][T10173] syz.3.1488 (10173) used greatest stack depth: 18040 bytes left
[  419.905296][   T29] audit: type=1326 audit(1732975077.086:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  420.118702][   T29] audit: type=1326 audit(1732975077.086:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  420.195004][   T29] audit: type=1326 audit(1732975077.086:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  420.211171][ T6120] hfsplus: b-tree write err: -5, ino 4
[  420.217504][   T29] audit: type=1326 audit(1732975077.096:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  420.274231][   T29] audit: type=1326 audit(1732975077.096:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  420.324316][   T29] audit: type=1326 audit(1732975077.096:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  421.045893][   T29] audit: type=1326 audit(1732975077.096:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10162 comm="syz.3.1488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b53980849 code=0x7ffc0000
[  421.157989][T10190] loop3: detected capacity change from 0 to 512
[  421.228805][T10190] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 ro without journal. Quota mode: writeback.
[  421.412186][T10190] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1495'.
[  421.482268][T10190] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1495'.
[  421.532308][T10205] fuse: Bad value for 'fd'
[  421.846808][T10198] loop5: detected capacity change from 0 to 8192
[  421.943179][T10198] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  422.011892][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  423.077442][T10222] loop0: detected capacity change from 0 to 1024
[  423.413145][T10228] loop4: detected capacity change from 0 to 512
[  424.435499][T10228] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.4.1507: corrupted xattr block 95: invalid header
[  425.235753][T10240] loop3: detected capacity change from 0 to 164
[  425.255553][T10236] hfsplus: bad catalog entry type
[  425.744723][T10228] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2863: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  425.806251][T10228] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1507: bg 0: block 7: invalid block bitmap
[  425.835549][T10228] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  425.923638][   T35] hfsplus: b-tree write err: -5, ino 4
[  427.281313][T10228] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2977: inode #11: comm syz.4.1507: corrupted xattr block 95: invalid header
[  427.314880][T10249] loop0: detected capacity change from 0 to 164
[  427.543411][T10251] loop2: detected capacity change from 0 to 1024
[  427.563352][T10228] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[  427.581646][T10228] EXT4-fs (loop4): 1 orphan inode deleted
[  427.647833][T10251] hfsplus: bad catalog entry type
[  427.663379][T10228] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  427.986812][   T11] hfsplus: b-tree write err: -5, ino 4
[  428.010598][ T5830] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.703138][   T29] kauditd_printk_skb: 44 callbacks suppressed
[  428.703162][   T29] audit: type=1326 audit(1732975087.136:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10258 comm="syz.5.1516" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3413180849 code=0x0
[  429.219528][T10270] fuse: Bad value for 'fd'
[  429.421685][ T5891] usb 1-1: new full-speed USB device number 37 using dummy_hcd
[  429.610506][ T5891] usb 1-1: config 201 has an invalid interface number: 249 but max is 0
[  429.647127][ T5891] usb 1-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config
[  429.696048][T10285] fuse: root generation should be zero
[  429.710444][ T5891] usb 1-1: config 201 has no interface number 0
[  429.740161][ T5891] usb 1-1: config 201 interface 249 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  429.760240][T10288] loop1: detected capacity change from 0 to 512
[  430.477083][T10291] o2cb: This node has not been configured.
[  430.482998][T10291] o2cb: Cluster check failed. Fix errors before retrying.
[  430.490132][T10291] (syz.2.1524,10291,0):user_dlm_register:674 ERROR: status = -22
[  430.499088][T10291] (syz.2.1524,10291,0):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file1"
[  431.180137][ T5891] usb 1-1: config 201 interface 249 has no altsetting 0
[  431.199404][ T5891] usb 1-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  431.212486][ T5891] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  431.277014][ T5891] usb 1-1: Product: syz
[  431.296190][T10288] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.1.1523: corrupted xattr block 95: invalid header
[  431.313344][ T5891] usb 1-1: Manufacturer: syz
[  431.317975][ T5891] usb 1-1: SerialNumber: syz
[  431.393378][T10288] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1523: bg 0: block 7: invalid block bitmap
[  431.508689][T10288] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  431.574820][T10288] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2977: inode #11: comm syz.1.1523: corrupted xattr block 95: invalid header
[  432.083880][ T5891] ath6kl: Failed to submit usb control message: -71
[  432.090566][ T5891] ath6kl: unable to send the bmi data to the device: -71
[  432.099449][T10288] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -117)
[  432.162981][T10288] EXT4-fs (loop1): 1 orphan inode deleted
[  432.201602][ T5891] ath6kl: Unable to send get target info: -71
[  433.123968][T10304] loop2: detected capacity change from 0 to 164
[  433.133066][T10288] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.262439][ T5891] ath6kl: Failed to init ath6kl core: -71
[  433.271857][ T5891] ath6kl_usb 1-1:201.249: probe with driver ath6kl_usb failed with error -71
[  433.427240][ T5891] usb 1-1: USB disconnect, device number 37
[  433.605931][ T5838] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.719712][   T29] audit: type=1326 audit(1732975093.466:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.1.1533" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f14a6f80849 code=0x0
[  437.244463][T10336] 9pnet_fd: Insufficient options for proto=fd
[  437.317721][T10336] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem
[  437.481014][ T5891] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  437.672491][ T5891] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 5
[  437.721202][ T5891] usb 5-1: config 0 has no interface number 0
[  437.758310][ T5891] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  438.098807][ T5891] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  438.108829][ T5891] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  438.117982][ T5891] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  440.155336][ T5891] usb 5-1: config 0 descriptor??
[  440.185170][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  441.591509][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  442.277181][ T5891] usb 5-1: can't set config #0, error -71
[  442.386172][ T5891] usb 5-1: USB disconnect, device number 31
[  442.600972][ T6019] usb 4-1: new full-speed USB device number 24 using dummy_hcd
[  442.783649][T10353] loop4: detected capacity change from 0 to 256
[  442.800259][ T6019] usb 4-1: config 201 has an invalid interface number: 249 but max is 0
[  442.901607][T10353] vfat: Unknown parameter '/dev/loop#'
[  442.940950][ T6019] usb 4-1: config 201 has an invalid descriptor of length 0, skipping remainder of the config
[  443.142806][ T6019] usb 4-1: config 201 has no interface number 0
[  443.270061][ T6019] usb 4-1: config 201 interface 249 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  443.367236][ T6019] usb 4-1: config 201 interface 249 has no altsetting 0
[  443.389476][ T6019] usb 4-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  443.405575][ T6019] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  443.430117][ T6019] usb 4-1: Product: syz
[  443.442715][ T6019] usb 4-1: Manufacturer: syz
[  443.493115][ T6019] usb 4-1: SerialNumber: syz
[  444.426489][ T6019] ath6kl: Failed to submit usb control message: -71
[  444.617719][ T6019] ath6kl: unable to send the bmi data to the device: -71
[  445.617550][ T6019] ath6kl: Unable to send get target info: -71
[  445.625835][ T6019] ath6kl: Failed to init ath6kl core: -71
[  445.632369][ T6019] ath6kl_usb 4-1:201.249: probe with driver ath6kl_usb failed with error -71
[  446.141844][ T6019] usb 4-1: USB disconnect, device number 24
[  448.361882][ T5846] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  448.373180][ T5846] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  448.381882][ T5846] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  448.389909][ T5846] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  448.398092][ T5846] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  448.410007][ T5846] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  448.519968][   T29] audit: type=1326 audit(1732975107.266:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10371 comm="syz.0.1549" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6631b80849 code=0x0
[  449.677856][T10368] chnl_net:caif_netlink_parms(): no params data found
[  449.828440][T10390] loop3: detected capacity change from 0 to 1024
[  449.996981][T10392] loop1: detected capacity change from 0 to 1024
[  454.109349][ T5846] Bluetooth: hci6: command tx timeout
[  454.132652][T10393] hfsplus: bad catalog entry type
[  454.525615][T10392] hfsplus: failed to load extents file
[  455.537481][ T5837] Bluetooth: hci4: unexpected event for opcode 0x041c
[  455.555548][T10413] loop4: detected capacity change from 0 to 128
[  455.644366][ T5837] Bluetooth: hci4: ACL packet for unknown connection handle 200
[  456.120884][ T5837] Bluetooth: hci6: command tx timeout
[  458.202144][ T5837] Bluetooth: hci6: command tx timeout
[  459.562621][ T5837] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  459.580646][ T5837] Bluetooth: hci4: Injecting HCI hardware error event
[  459.591515][ T5846] Bluetooth: hci4: hardware error 0x00
[  460.582592][ T5837] Bluetooth: hci6: command tx timeout
[  460.629582][   T35] hfsplus: b-tree write err: -5, ino 4
[  461.420928][ T5895] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  461.592998][ T5895] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 5
[  461.602142][ T5895] usb 4-1: config 0 has no interface number 0
[  461.620960][ T5895] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  461.683433][ T5895] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  461.726820][ T5895] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  461.763040][ T5895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  461.823652][ T5895] usb 4-1: config 0 descriptor??
[  462.378926][ T5895] usbhid 4-1:0.1: can't add hid device: -71
[  462.412074][ T5895] usbhid 4-1:0.1: probe with driver usbhid failed with error -71
[  462.466055][ T5895] usb 4-1: USB disconnect, device number 25
[  462.681089][ T5846] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  462.692026][T10433] loop2: detected capacity change from 0 to 8
[  463.142128][   T29] audit: type=1326 audit(1732975121.886:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.3.1565" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2b53980849 code=0x0
[  463.541145][ T5846] Bluetooth: hci1: unexpected event for opcode 0x041c
[  463.554871][T10443] loop0: detected capacity change from 0 to 128
[  463.612713][ T5846] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  467.000986][ T6019] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  467.161150][ T6019] usb 5-1: Using ep0 maxpacket: 16
[  467.176066][ T6019] usb 5-1: config 0 has an invalid interface number: 32 but max is 0
[  467.194022][ T6019] usb 5-1: config 0 has no interface number 0
[  467.207619][ T6019] usb 5-1: config 0 interface 32 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  467.227084][ T6019] usb 5-1: config 0 interface 32 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  467.247620][ T6019] usb 5-1: New USB device found, idVendor=28bd, idProduct=0934, bcdDevice= 0.00
[  467.270909][ T6019] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.290470][ T6019] usb 5-1: config 0 descriptor??
[  467.562131][ T5846] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  467.580791][ T5846] Bluetooth: hci1: Injecting HCI hardware error event
[  467.589590][ T5837] Bluetooth: hci1: hardware error 0x00
[  468.456850][ T6019] usbhid 5-1:0.32: can't add hid device: -71
[  468.467410][ T6019] usbhid 5-1:0.32: probe with driver usbhid failed with error -71
[  468.488191][ T6019] usb 5-1: USB disconnect, device number 32
[  469.519444][T10469] loop4: detected capacity change from 0 to 128
[  471.291030][ T5137] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  471.304757][ T5137] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  471.312677][ T5137] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  471.320619][ T5137] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  471.328900][ T5137] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  471.336588][ T5137] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  473.408877][ T5137] Bluetooth: hci7: command tx timeout
[  475.483771][ T5137] Bluetooth: hci7: command tx timeout
[  477.561068][ T5137] Bluetooth: hci7: command tx timeout
[  479.641266][ T5137] Bluetooth: hci7: command tx timeout
[  480.604652][T10368] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.691310][T10368] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.698657][T10368] bridge_slave_0: entered allmulticast mode
[  480.861901][T10368] bridge_slave_0: entered promiscuous mode
[  480.980996][T10368] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.988144][T10368] bridge0: port 2(bridge_slave_1) entered disabled state
[  481.131010][T10368] bridge_slave_1: entered allmulticast mode
[  481.175409][T10487] loop3: detected capacity change from 0 to 128
[  481.183521][ T5137] Bluetooth: hci3: unexpected event for opcode 0x041c
[  481.196606][T10368] bridge_slave_1: entered promiscuous mode
[  481.290686][ T5846] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  481.308410][ T5846] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  481.322247][ T5846] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  481.351051][ T5846] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  481.360918][ T5846] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  481.369910][ T5846] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  481.450899][ T5846] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  481.526747][ T5137] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  481.551282][ T5137] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  481.559709][ T5137] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  481.569562][ T5137] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  481.577597][ T5137] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  481.600965][ T5137] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  481.808916][ T5837] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  481.848741][T10496] loop4: detected capacity change from 0 to 1024
[  482.056091][T10496] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  482.092596][T10368] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  483.481174][ T5837] Bluetooth: hci8: command tx timeout
[  483.641347][ T5837] Bluetooth: hci9: command tx timeout
[  485.241105][ T5837] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  485.255092][ T5837] Bluetooth: hci3: Injecting HCI hardware error event
[  485.265823][ T5137] Bluetooth: hci3: hardware error 0x00
[  485.563042][ T5837] Bluetooth: hci8: command tx timeout
[  485.721279][ T5837] Bluetooth: hci9: command tx timeout
[  487.325587][ T5137] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  487.655351][ T5137] Bluetooth: hci8: command tx timeout
[  487.814345][ T5137] Bluetooth: hci9: command tx timeout
[  488.464196][T10368] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  488.722963][ T5830] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.162595][T10508] Illegal XDP return value 3810579607 on prog  (id 100) dev N/A, expect packet loss!
[  489.730763][ T5137] Bluetooth: hci8: command tx timeout
[  489.880831][ T5137] Bluetooth: hci9: command tx timeout
[  500.925719][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  500.932498][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  501.961143][ T5890] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  502.141007][ T5890] usb 5-1: Using ep0 maxpacket: 16
[  502.163162][ T5890] usb 5-1: config 0 has an invalid interface number: 32 but max is 0
[  502.179892][ T5890] usb 5-1: config 0 has no interface number 0
[  502.188329][ T5890] usb 5-1: config 0 interface 32 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  502.209285][ T5890] usb 5-1: config 0 interface 32 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  502.227456][ T5890] usb 5-1: New USB device found, idVendor=28bd, idProduct=0934, bcdDevice= 0.00
[  502.239200][ T5890] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  502.258284][ T5890] usb 5-1: config 0 descriptor??
[  502.979225][ T5890] usbhid 5-1:0.32: can't add hid device: -71
[  503.009668][ T5890] usbhid 5-1:0.32: probe with driver usbhid failed with error -71
[  503.061323][ T5890] usb 5-1: USB disconnect, device number 33
[  505.132922][ T5837] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  505.165575][ T5837] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  505.176875][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  505.187330][ T5837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  505.195883][ T5837] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  505.203565][ T5837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  505.519063][ T5137] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  505.530157][ T5137] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  505.542378][ T5137] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  505.553459][ T5137] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  505.564150][ T5137] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  505.576774][ T5137] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  506.535356][ T4891] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.241088][ T5837] Bluetooth: hci0: command tx timeout
[  507.641103][ T5837] Bluetooth: hci1: command tx timeout
[  509.322707][ T5837] Bluetooth: hci0: command tx timeout
[  509.721027][ T5837] Bluetooth: hci1: command tx timeout
[  511.401636][ T5837] Bluetooth: hci0: command tx timeout
[  511.815655][ T5837] Bluetooth: hci1: command tx timeout
[  513.480961][ T5837] Bluetooth: hci0: command tx timeout
[  513.880903][ T5837] Bluetooth: hci1: command tx timeout
[  520.623740][ T5137] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  520.633730][ T5137] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  520.641750][ T5137] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  520.649858][ T5137] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  520.657689][ T5137] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  520.666626][ T5137] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  522.761105][ T5837] Bluetooth: hci2: command tx timeout
[  524.841059][ T5837] Bluetooth: hci2: command tx timeout
[  526.920945][ T5837] Bluetooth: hci2: command tx timeout
[  529.001883][ T5837] Bluetooth: hci2: command tx timeout
[  532.241200][ T5137] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  532.252624][ T5137] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  532.260311][ T5137] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  532.271200][ T5137] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  532.283447][ T5137] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  532.291737][ T5137] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  534.361125][ T5137] Bluetooth: hci3: command tx timeout
[  536.440888][ T5137] Bluetooth: hci3: command tx timeout
[  538.520944][ T5137] Bluetooth: hci3: command tx timeout
[  540.460260][ T5837] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  540.471965][ T5837] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  540.480119][ T5837] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  540.488400][ T5837] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  540.496279][ T5837] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  540.504889][ T5837] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  540.601182][ T5837] Bluetooth: hci3: command tx timeout
[  540.660316][ T5137] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  540.671362][ T5137] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  540.697184][ T5137] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  540.705334][ T5137] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  540.713664][ T5137] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  540.721251][ T5137] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  542.601286][ T5137] Bluetooth: hci5: command tx timeout
[  542.760963][ T5137] Bluetooth: hci6: command tx timeout
[  544.680860][ T5137] Bluetooth: hci5: command tx timeout
[  544.841001][ T5137] Bluetooth: hci6: command tx timeout
[  546.761955][ T5137] Bluetooth: hci5: command tx timeout
[  546.931049][ T5137] Bluetooth: hci6: command tx timeout
[  548.840953][ T5137] Bluetooth: hci5: command tx timeout
[  549.006809][ T5137] Bluetooth: hci6: command tx timeout
[  562.365672][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  562.380102][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  566.663546][ T5837] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  566.672460][ T5837] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  566.692379][ T5837] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  566.701785][ T5837] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  566.726017][ T5837] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  566.735892][ T5837] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  567.016444][ T5837] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  567.025799][ T5837] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  567.035225][ T5837] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  567.044043][ T5837] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  567.052021][ T5837] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  567.059574][ T5837] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  568.761036][ T5837] Bluetooth: hci10: command tx timeout
[  569.080975][ T5837] Bluetooth: hci11: command tx timeout
[  570.841112][ T5837] Bluetooth: hci10: command tx timeout
[  571.160949][ T5837] Bluetooth: hci11: command tx timeout
[  572.920881][ T5837] Bluetooth: hci10: command tx timeout
[  573.241011][ T5137] Bluetooth: hci11: command tx timeout
[  575.000963][ T5837] Bluetooth: hci10: command tx timeout
[  575.320999][ T5837] Bluetooth: hci11: command tx timeout
[  581.551628][ T5137] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  581.572700][ T5137] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  581.581644][ T5137] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  581.592037][ T5137] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  581.600621][ T5137] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  581.608209][ T5137] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  582.800707][    C1] sched: DL replenish lagged too much
[  583.640820][ T5137] Bluetooth: hci12: command tx timeout
[  585.720923][ T5137] Bluetooth: hci12: command tx timeout
[  587.800835][ T5137] Bluetooth: hci12: command tx timeout
[  589.880912][ T5137] Bluetooth: hci12: command tx timeout
[  592.823920][ T5837] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  592.843871][ T5837] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  592.851956][ T5837] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  592.862064][ T5837] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  592.871120][ T5837] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  592.878466][ T5837] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  595.001131][ T5837] Bluetooth: hci13: command tx timeout
[  595.166679][ T5837] Bluetooth: hci7: command 0x0406 tx timeout
[  597.081157][ T5137] Bluetooth: hci13: command tx timeout
[  599.161046][ T5137] Bluetooth: hci13: command tx timeout
[  601.240948][ T5137] Bluetooth: hci13: command tx timeout
[  601.430338][ T5837] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  601.448918][ T5837] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  601.457654][ T5837] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  601.470503][ T5837] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  601.479124][ T5837] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  601.486862][ T5837] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  601.526623][ T5137] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  601.537574][ T5137] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  601.545738][ T5137] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  601.554170][ T5137] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  601.562380][ T5137] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  601.569737][ T5137] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  603.560896][ T5846] Bluetooth: hci14: command tx timeout
[  603.640862][ T5846] Bluetooth: hci15: command tx timeout
[  605.426542][ T5846] Bluetooth: hci8: command 0x0406 tx timeout
[  605.481192][ T5846] Bluetooth: hci9: command 0x0406 tx timeout
[  605.643252][ T5846] Bluetooth: hci14: command tx timeout
[  605.720999][ T5846] Bluetooth: hci15: command tx timeout
[  607.720905][ T5846] Bluetooth: hci14: command tx timeout
[  607.810788][ T5846] Bluetooth: hci15: command tx timeout
[  609.800892][T10582] Bluetooth: hci14: command tx timeout
[  609.881190][T10582] Bluetooth: hci15: command tx timeout
[  623.805188][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  623.811742][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  626.859179][T10583] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  626.868936][T10583] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  626.877016][T10583] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  626.887752][T10583] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  626.911387][T10583] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  626.918856][T10583] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  626.957855][ T5846] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  626.968759][ T5846] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  626.977234][ T5846] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  626.992626][ T5846] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  627.006412][ T5846] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[  627.017397][ T5846] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  631.016469][ T5837] Bluetooth: hci0: command 0x0406 tx timeout
[  631.022643][T10583] Bluetooth: hci1: command 0x0406 tx timeout
[  632.761286][T10596] Bluetooth: hci16: command tx timeout
[  632.769368][T10582] Bluetooth: hci17: command tx timeout
[  634.845668][T10582] Bluetooth: hci17: command tx timeout
[  634.851446][T10596] Bluetooth: hci16: command tx timeout
[  636.920889][T10596] Bluetooth: hci16: command tx timeout
[  636.927780][T10582] Bluetooth: hci17: command tx timeout
[  639.001093][T10582] Bluetooth: hci17: command tx timeout
[  639.006660][T10582] Bluetooth: hci16: command tx timeout
[  641.715555][T10596] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  641.735458][T10596] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  641.744586][T10596] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  641.753153][T10596] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  641.761084][T10596] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[  641.769459][T10596] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  643.889067][T10596] Bluetooth: hci18: command tx timeout
[  645.961099][T10596] Bluetooth: hci18: command tx timeout
[  646.370740][T10596] Bluetooth: hci2: command 0x0406 tx timeout
[  648.048809][T10596] Bluetooth: hci18: command tx timeout
[  650.131160][T10596] Bluetooth: hci18: command tx timeout
[  653.431162][ T5837] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[  653.444502][ T5837] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[  653.454110][ T5837] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[  653.462479][ T5837] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[  653.471113][ T5837] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3
[  653.479562][ T5837] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[  656.606265][T10596] Bluetooth: hci3: command 0x0406 tx timeout
[  662.107103][ T5137] Bluetooth: hci20: unexpected cc 0x0c03 length: 249 > 1
[  662.129859][ T5137] Bluetooth: hci20: unexpected cc 0x1003 length: 249 > 9
[  662.139432][ T5137] Bluetooth: hci20: unexpected cc 0x1001 length: 249 > 9
[  662.151454][ T5137] Bluetooth: hci20: unexpected cc 0x0c23 length: 249 > 4
[  662.161329][ T5137] Bluetooth: hci20: unexpected cc 0x0c25 length: 249 > 3
[  662.168908][ T5137] Bluetooth: hci20: unexpected cc 0x0c38 length: 249 > 2
[  662.236964][T10598] Bluetooth: hci21: unexpected cc 0x0c03 length: 249 > 1
[  662.247840][T10598] Bluetooth: hci21: unexpected cc 0x1003 length: 249 > 9
[  662.256600][T10598] Bluetooth: hci21: unexpected cc 0x1001 length: 249 > 9
[  662.266227][T10598] Bluetooth: hci21: unexpected cc 0x0c23 length: 249 > 4
[  662.274228][T10598] Bluetooth: hci21: unexpected cc 0x0c25 length: 249 > 3
[  662.283337][T10598] Bluetooth: hci21: unexpected cc 0x0c38 length: 249 > 2
[  662.841018][   T30] INFO: task kworker/u8:8:4891 blocked for more than 143 seconds.
[  662.848976][   T30]       Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  662.874321][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  662.906619][   T30] task:kworker/u8:8    state:D stack:20304 pid:4891  tgid:4891  ppid:2      flags:0x00004000
[  662.959028][   T30] Workqueue: netns cleanup_net
[  662.968985][   T30] Call Trace:
[  662.986960][   T30]  <TASK>
[  662.989931][   T30]  __schedule+0x1850/0x4c30
[  663.080171][   T30]  ? __pfx___schedule+0x10/0x10
[  663.150725][   T30]  ? __pfx_lock_release+0x10/0x10
[  663.155841][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  663.212740][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.218466][   T30]  ? kthread_data+0x52/0xd0
[  663.232856][   T30]  ? schedule+0x90/0x320
[  663.237154][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.248768][   T30]  ? wq_worker_sleeping+0x66/0x240
[  663.259569][   T30]  ? schedule+0x90/0x320
[  663.267091][   T30]  schedule+0x14b/0x320
[  663.277742][   T30]  schedule_preempt_disabled+0x13/0x30
[  663.285801][   T30]  __mutex_lock+0x7e7/0xee0
[  663.290355][   T30]  ? __mutex_lock+0x5ef/0xee0
[  663.307085][   T30]  ? nsim_destroy+0x71/0x5c0
[  663.311813][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  663.316879][   T30]  ? mntput_no_expire+0x2da/0x850
[  663.333008][   T30]  ? __pfx_mntput_no_expire+0x10/0x10
[  663.338443][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.351371][   T30]  ? _raw_spin_unlock+0x28/0x50
[  663.356274][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.370258][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.376229][   T30]  nsim_destroy+0x71/0x5c0
[  663.389961][   T30]  ? nsim_dev_reload_destroy+0x28a/0x490
[  663.395932][   T30]  __nsim_dev_port_del+0x14b/0x1b0
[  663.411752][   T30]  nsim_dev_reload_destroy+0x28a/0x490
[  663.417281][   T30]  nsim_dev_reload_down+0x98/0xd0
[  663.430941][   T30]  devlink_reload+0x18d/0x870
[  663.435664][   T30]  ? __pfx_devlink_reload+0x10/0x10
[  663.450503][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.458253][   T30]  devlink_pernet_pre_exit+0x1f3/0x440
[  663.470923][   T30]  ? __pfx_devlink_pernet_pre_exit+0x10/0x10
[  663.476961][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.497411][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.505700][   T30]  ? class_remove_file_ns+0x121/0x160
[  663.520814][   T30]  cleanup_net+0x617/0xcc0
[  663.525293][   T30]  ? __pfx_cleanup_net+0x10/0x10
[  663.530286][   T30]  ? process_scheduled_works+0x976/0x1840
[  663.545570][   T30]  process_scheduled_works+0xa68/0x1840
[  663.556929][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  663.568878][   T30]  ? assign_work+0x364/0x3d0
[  663.576012][   T30]  worker_thread+0x870/0xd30
[  663.586431][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.595796][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.607866][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  663.616342][   T30]  ? __kthread_parkme+0x169/0x1d0
[  663.630794][   T30]  ? __pfx_worker_thread+0x10/0x10
[  663.635951][   T30]  kthread+0x2f2/0x390
[  663.640052][   T30]  ? __pfx_worker_thread+0x10/0x10
[  663.655447][   T30]  ? __pfx_kthread+0x10/0x10
[  663.669050][   T30]  ret_from_fork+0x4d/0x80
[  663.676659][   T30]  ? __pfx_kthread+0x10/0x10
[  663.687061][   T30]  ret_from_fork_asm+0x1a/0x30
[  663.694420][   T30]  </TASK>
[  663.697571][   T30] INFO: task kworker/u8:14:8631 blocked for more than 144 seconds.
[  663.710818][   T30]       Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  663.718120][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  663.750974][   T30] task:kworker/u8:14   state:D stack:21928 pid:8631  tgid:8631  ppid:2      flags:0x00004000
[  663.769985][   T30] Workqueue: events_unbound linkwatch_event
[  663.777676][   T30] Call Trace:
[  663.789482][   T30]  <TASK>
[  663.792853][   T30]  __schedule+0x1850/0x4c30
[  663.797435][   T30]  ? __pfx___schedule+0x10/0x10
[  663.810975][   T30]  ? __pfx_lock_release+0x10/0x10
[  663.816134][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  663.829037][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.835072][   T30]  ? kthread_data+0x52/0xd0
[  663.839611][   T30]  ? schedule+0x90/0x320
[  663.857215][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  663.867288][   T30]  ? wq_worker_sleeping+0x66/0x240
[  663.880822][   T30]  ? schedule+0x90/0x320
[  663.885119][   T30]  schedule+0x14b/0x320
[  663.889315][   T30]  schedule_preempt_disabled+0x13/0x30
[  663.902546][   T30]  __mutex_lock+0x7e7/0xee0
[  663.907102][   T30]  ? __mutex_lock+0x5ef/0xee0
[  663.919043][   T30]  ? linkwatch_event+0xe/0x60
[  663.926419][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  663.937271][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  663.947112][   T30]  ? process_scheduled_works+0x976/0x1840
[  663.961178][   T30]  linkwatch_event+0xe/0x60
[  663.976427][   T30]  process_scheduled_works+0xa68/0x1840
[  663.987575][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  663.997272][   T30]  ? assign_work+0x364/0x3d0
[  664.006640][   T30]  worker_thread+0x870/0xd30
[  664.015738][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.026124][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.035381][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  664.046058][   T30]  ? __kthread_parkme+0x169/0x1d0
[  664.055899][   T30]  ? __pfx_worker_thread+0x10/0x10
[  664.070775][   T30]  kthread+0x2f2/0x390
[  664.074894][   T30]  ? __pfx_worker_thread+0x10/0x10
[  664.088607][   T30]  ? __pfx_kthread+0x10/0x10
[  664.093349][   T30]  ret_from_fork+0x4d/0x80
[  664.097794][   T30]  ? __pfx_kthread+0x10/0x10
[  664.110835][   T30]  ret_from_fork_asm+0x1a/0x30
[  664.115669][   T30]  </TASK>
[  664.120510][   T30] INFO: task syz-executor:10488 blocked for more than 144 seconds.
[  664.142396][   T30]       Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  664.149709][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  664.167883][   T30] task:syz-executor    state:D stack:22912 pid:10488 tgid:10488 ppid:1      flags:0x00004006
[  664.196532][   T30] Call Trace:
[  664.199876][   T30]  <TASK>
[  664.210702][   T30]  __schedule+0x1850/0x4c30
[  664.215301][   T30]  ? __pfx___schedule+0x10/0x10
[  664.220202][   T30]  ? __pfx_lock_release+0x10/0x10
[  664.234304][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  664.240261][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.250691][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.256462][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  664.273646][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  664.280151][   T30]  ? schedule+0x90/0x320
[  664.293726][   T30]  schedule+0x14b/0x320
[  664.297960][   T30]  schedule_preempt_disabled+0x13/0x30
[  664.313889][   T30]  __mutex_lock+0x7e7/0xee0
[  664.318555][   T30]  ? __mutex_lock+0x5ef/0xee0
[  664.330714][   T30]  ? ip_tunnel_init_net+0x20e/0x720
[  664.335985][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  664.349746][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.355732][   T30]  ip_tunnel_init_net+0x20e/0x720
[  664.370156][   T30]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  664.377746][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.390962][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.396729][   T30]  ops_init+0x320/0x590
[  664.409510][   T30]  ? lockdep_init_map_type+0xa1/0x910
[  664.418458][   T30]  setup_net+0x287/0x9e0
[  664.430753][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  664.436347][   T30]  ? __pfx_setup_net+0x10/0x10
[  664.450900][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.456676][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.470704][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.479727][   T30]  copy_net_ns+0x33f/0x570
[  664.487743][   T30]  create_new_namespaces+0x425/0x7b0
[  664.498627][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[  664.507952][   T30]  ksys_unshare+0x57d/0xa70
[  664.518355][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[  664.530421][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  664.546980][   T30]  ? do_syscall_64+0x100/0x230
[  664.553426][   T30]  __x64_sys_unshare+0x38/0x40
[  664.558235][   T30]  do_syscall_64+0xf3/0x230
[  664.571059][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  664.577007][   T30] RIP: 0033:0x7fd777f82047
[  664.589535][   T30] RSP: 002b:00007ffcafca15e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[  664.605980][   T30] RAX: ffffffffffffffda RBX: 00007fd778145f40 RCX: 00007fd777f82047
[  664.617767][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[  664.633895][   T30] RBP: 00007fd778146738 R08: 0000000000000000 R09: 0000000000000000
[  664.651411][   T30] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000008
[  664.659415][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  664.675643][   T30]  </TASK>
[  664.678774][   T30] INFO: task syz-executor:10490 blocked for more than 145 seconds.
[  664.699403][   T30]       Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  664.708748][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  664.726929][   T30] task:syz-executor    state:D stack:22912 pid:10490 tgid:10490 ppid:1      flags:0x00004006
[  664.739628][   T30] Call Trace:
[  664.751424][   T30]  <TASK>
[  664.754388][   T30]  __schedule+0x1850/0x4c30
[  664.758965][   T30]  ? __pfx___schedule+0x10/0x10
[  664.784683][   T30]  ? __pfx_lock_release+0x10/0x10
[  664.796874][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  664.805316][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.816798][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.826326][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  664.838077][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  664.850689][   T30]  ? schedule+0x90/0x320
[  664.855064][   T30]  schedule+0x14b/0x320
[  664.859262][   T30]  schedule_preempt_disabled+0x13/0x30
[  664.879051][   T30]  __mutex_lock+0x7e7/0xee0
[  664.885177][   T30]  ? __mutex_lock+0x5ef/0xee0
[  664.900303][   T30]  ? ip_tunnel_init_net+0x20e/0x720
[  664.907048][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  664.919035][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.926229][   T30]  ? read_word_at_a_time+0xe/0x20
[  664.939498][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.946792][   T30]  ? sized_strscpy+0x8d/0x220
[  664.958378][   T30]  ip_tunnel_init_net+0x20e/0x720
[  664.966111][   T30]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  664.980798][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  664.986478][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.004316][   T30]  ops_init+0x320/0x590
[  665.008532][   T30]  ? lockdep_init_map_type+0xa1/0x910
[  665.018657][   T30]  setup_net+0x287/0x9e0
[  665.026614][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  665.038116][   T30]  ? __pfx_setup_net+0x10/0x10
[  665.046582][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.056943][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.066274][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.077723][   T30]  copy_net_ns+0x33f/0x570
[  665.089728][   T30]  create_new_namespaces+0x425/0x7b0
[  665.100863][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[  665.107307][   T30]  ksys_unshare+0x57d/0xa70
[  665.121377][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[  665.126445][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  665.142007][   T30]  ? do_syscall_64+0x100/0x230
[  665.146827][   T30]  __x64_sys_unshare+0x38/0x40
[  665.160479][   T30]  do_syscall_64+0xf3/0x230
[  665.166333][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  665.181578][   T30] RIP: 0033:0x7f564e982047
[  665.186023][   T30] RSP: 002b:00007ffc199a3e88 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[  665.208871][   T30] RAX: ffffffffffffffda RBX: 00007f564eb45f40 RCX: 00007f564e982047
[  665.227612][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[  665.237043][   T30] RBP: 00007f564eb46738 R08: 0000000000000000 R09: 0000000000000000
[  665.252450][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
[  665.260552][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  665.276250][   T30]  </TASK>
[  665.279398][   T30] INFO: task syz.4.1585:10525 blocked for more than 145 seconds.
[  665.298395][   T30]       Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  665.318449][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  665.359785][   T30] task:syz.4.1585      state:D stack:25984 pid:10525 tgid:10524 ppid:5830   flags:0x00000004
[  665.370450][   T30] Call Trace:
[  665.380754][   T30]  <TASK>
[  665.383804][   T30]  __schedule+0x1850/0x4c30
[  665.388375][   T30]  ? __pfx___schedule+0x10/0x10
[  665.405475][   T30]  ? __pfx_lock_release+0x10/0x10
[  665.410552][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  665.429958][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.437098][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.449641][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  665.458272][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  665.471015][   T30]  ? schedule+0x90/0x320
[  665.475305][   T30]  schedule+0x14b/0x320
[  665.479501][   T30]  schedule_preempt_disabled+0x13/0x30
[  665.494120][   T30]  __mutex_lock+0x7e7/0xee0
[  665.498678][   T30]  ? __mutex_lock+0x5ef/0xee0
[  665.513350][   T30]  ? nl80211_pre_doit+0x5f/0x8b0
[  665.519192][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  665.535805][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.549388][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.555406][   T30]  ? __nla_parse+0x40/0x60
[  665.559866][   T30]  nl80211_pre_doit+0x5f/0x8b0
[  665.570762][   T30]  genl_rcv_msg+0xaac/0xec0
[  665.575323][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  665.580411][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  665.594286][   T30]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  665.599711][   T30]  ? __pfx_nl80211_set_interface+0x10/0x10
[  665.615756][   T30]  ? __pfx_nl80211_post_doit+0x10/0x10
[  665.624446][   T30]  ? __pfx___might_resched+0x10/0x10
[  665.629824][   T30]  netlink_rcv_skb+0x1e5/0x430
[  665.642122][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  665.647211][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  665.664304][   T30]  ? __netlink_deliver_tap+0x7aa/0x7f0
[  665.669881][   T30]  genl_rcv+0x28/0x40
[  665.680739][   T30]  netlink_unicast+0x7f8/0x990
[  665.685587][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  665.698887][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.707916][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.722610][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.728322][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.740752][   T30]  ? __check_object_size+0x48e/0x900
[  665.746116][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  665.763026][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  665.768379][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.784340][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  665.789337][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  665.801143][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  665.806466][   T30]  __sock_sendmsg+0x223/0x270
[  665.825924][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  665.835551][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  665.845630][   T30]  ? __fget_files+0x2a/0x410
[  665.850279][   T30]  ? __fget_files+0x2a/0x410
[  665.859920][   T30]  __sys_sendmsg+0x269/0x350
[  665.869985][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  665.890907][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  665.897317][   T30]  ? do_syscall_64+0x100/0x230
[  665.911354][   T30]  ? do_syscall_64+0xb6/0x230
[  665.916091][   T30]  do_syscall_64+0xf3/0x230
[  665.930859][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  665.936807][   T30] RIP: 0033:0x7fef23780849
[  665.950817][   T30] RSP: 002b:00007fef245a0058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  665.959272][   T30] RAX: ffffffffffffffda RBX: 00007fef23945fa0 RCX: 00007fef23780849
[  665.977517][   T30] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000004
[  665.997055][   T30] RBP: 00007fef237f3986 R08: 0000000000000000 R09: 0000000000000000
[  666.007624][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  666.025278][   T30] R13: 0000000000000000 R14: 00007fef23945fa0 R15: 00007ffcaad71918
[  666.038001][   T30]  </TASK>
[  666.045305][   T30] INFO: task syz-executor:10529 blocked for more than 146 seconds.
[  666.060851][   T30]       Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  666.068158][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  666.087962][   T30] task:syz-executor    state:D stack:25952 pid:10529 tgid:10529 ppid:1      flags:0x00000004
[  666.106899][   T30] Call Trace:
[  666.110217][   T30]  <TASK>
[  666.123938][   T30]  __schedule+0x1850/0x4c30
[  666.129217][   T30]  ? __pfx___schedule+0x10/0x10
[  666.140132][   T30]  ? __pfx_lock_release+0x10/0x10
[  666.147728][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  666.159702][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.169076][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.180731][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  666.186680][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  666.206974][   T30]  ? schedule+0x90/0x320
[  666.218305][   T30]  schedule+0x14b/0x320
[  666.226869][   T30]  schedule_preempt_disabled+0x13/0x30
[  666.238112][   T30]  __mutex_lock+0x7e7/0xee0
[  666.247500][   T30]  ? __mutex_lock+0x5ef/0xee0
[  666.256276][   T30]  ? inet_rtm_newaddr+0x47e/0x1bd0
[  666.266828][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  666.275625][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.286083][   T30]  ? __lock_acquire+0x1397/0x2100
[  666.294900][   T30]  ? __nla_parse+0x40/0x60
[  666.299361][   T30]  inet_rtm_newaddr+0x47e/0x1bd0
[  666.316193][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.334830][   T30]  ? rcu_read_unlock+0x87/0xa0
[  666.339646][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  666.354623][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  666.360053][   T30]  rtnetlink_rcv_msg+0x793/0xcf0
[  666.371238][   T30]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  666.376391][   T30]  ? __lock_acquire+0x1397/0x2100
[  666.389585][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  666.395537][   T30]  netlink_rcv_skb+0x1e5/0x430
[  666.400356][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  666.413535][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  666.418897][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  666.436446][   T30]  netlink_unicast+0x7f8/0x990
[  666.448489][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  666.458756][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.468150][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.479867][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.489151][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.499511][   T30]  ? __check_object_size+0x48e/0x900
[  666.508548][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  666.519005][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  666.531723][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.547130][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  666.554732][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.560409][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  666.570816][   T30]  __sock_sendmsg+0x223/0x270
[  666.575804][   T30]  __sys_sendto+0x363/0x4c0
[  666.580357][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  666.593689][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.599395][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  666.615834][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  666.625958][   T30]  ? exc_page_fault+0x590/0x8b0
[  666.639507][   T30]  __x64_sys_sendto+0xde/0x100
[  666.649799][   T30]  do_syscall_64+0xf3/0x230
[  666.660524][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  666.670724][   T30] RIP: 0033:0x7f3bf09826dc
[  666.675651][   T30] RSP: 002b:00007ffd618a38f0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  666.690722][   T30] RAX: ffffffffffffffda RBX: 00007f3bf1674620 RCX: 00007f3bf09826dc
[  666.698732][   T30] RDX: 0000000000000028 RSI: 00007f3bf1674670 RDI: 0000000000000003
[  666.717933][   T30] RBP: 0000000000000000 R08: 00007ffd618a3944 R09: 000000000000000c
[  666.731679][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  666.739685][   T30] R13: 0000000000000000 R14: 00007f3bf1674670 R15: 0000000000000000
[  666.758072][   T30]  </TASK>
[  666.818171][   T30] INFO: task syz-executor:10531 blocked for more than 147 seconds.
[  666.843943][T10583] Bluetooth: hci5: command 0x0406 tx timeout
[  666.850037][T10583] Bluetooth: hci6: command 0x0406 tx timeout
[  666.874623][   T30]       Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  666.883176][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  666.892353][   T30] task:syz-executor    state:D stack:25952 pid:10531 tgid:10531 ppid:1      flags:0x00000004
[  666.902875][   T30] Call Trace:
[  666.906181][   T30]  <TASK>
[  666.909136][   T30]  __schedule+0x1850/0x4c30
[  666.915180][   T30]  ? __pfx___schedule+0x10/0x10
[  666.920090][   T30]  ? __pfx_lock_release+0x10/0x10
[  666.925751][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  666.932053][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.939485][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  666.946070][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  666.961369][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  666.967757][   T30]  ? schedule+0x90/0x320
[  666.989585][   T30]  schedule+0x14b/0x320
[  666.998610][   T30]  schedule_preempt_disabled+0x13/0x30
[  667.007743][   T30]  __mutex_lock+0x7e7/0xee0
[  667.017176][   T30]  ? __mutex_lock+0x5ef/0xee0
[  667.026736][   T30]  ? inet_rtm_newaddr+0x47e/0x1bd0
[  667.037530][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  667.047036][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.057984][   T30]  ? __lock_acquire+0x1397/0x2100
[  667.066612][   T30]  ? __nla_parse+0x40/0x60
[  667.076464][   T30]  inet_rtm_newaddr+0x47e/0x1bd0
[  667.086200][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.099736][   T30]  ? rcu_read_unlock+0x87/0xa0
[  667.109373][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  667.119534][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  667.128938][   T30]  rtnetlink_rcv_msg+0x793/0xcf0
[  667.139949][   T30]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  667.149229][   T30]  ? __lock_acquire+0x1397/0x2100
[  667.158393][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  667.169935][   T30]  netlink_rcv_skb+0x1e5/0x430
[  667.178509][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  667.189408][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  667.207060][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  667.215989][   T30]  netlink_unicast+0x7f8/0x990
[  667.226150][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  667.236518][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.254863][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.260540][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.274915][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.280587][   T30]  ? __check_object_size+0x48e/0x900
[  667.289648][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  667.299925][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  667.312759][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.318533][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  667.340458][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.350821][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  667.360967][   T30]  __sock_sendmsg+0x223/0x270
[  667.365694][   T30]  __sys_sendto+0x363/0x4c0
[  667.370248][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  667.384020][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  667.389698][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  667.401646][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  667.408104][   T30]  ? exc_page_fault+0x590/0x8b0
[  667.430810][   T30]  __x64_sys_sendto+0xde/0x100
[  667.435643][   T30]  do_syscall_64+0xf3/0x230
[  667.440196][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  667.456709][   T30] RIP: 0033:0x7f3e0ab826dc
[  667.465343][   T30] RSP: 002b:00007fff4fd03950 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  667.478564][   T30] RAX: ffffffffffffffda RBX: 00007f3e0b874620 RCX: 00007f3e0ab826dc
[  667.490897][   T30] RDX: 0000000000000028 RSI: 00007f3e0b874670 RDI: 0000000000000003
[  667.498901][   T30] RBP: 0000000000000000 R08: 00007fff4fd039a4 R09: 000000000000000c
[  667.516486][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  667.529359][   T30] R13: 0000000000000000 R14: 00007f3e0b874670 R15: 0000000000000000
[  667.550465][   T30]  </TASK>
[  667.555971][   T30] 
[  667.555971][   T30] Showing all locks held in the system:
[  667.570704][   T30] 3 locks held by kworker/u8:0/11:
[  667.575846][   T30] 2 locks held by ksoftirqd/1/24:
[  667.588711][   T30] 1 lock held by khungtaskd/30:
[  667.593637][   T30]  #0: ffffffff8e93c5a0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  667.603778][   T30] 3 locks held by kworker/u8:3/53:
[  667.608912][   T30]  #0: ffff88801ac81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  667.620881][   T30]  #1: ffffc90000bd7d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  667.633343][   T30]  #2: ffff88807bb60768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xd9/0x480
[  667.643824][   T30] 6 locks held by kworker/u8:8/4891:
[  667.649125][   T30]  #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  667.661351][   T30]  #1: ffffc9000ffbfd00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  667.685648][   T30]  #2: ffffffff8fcd1b50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x16a/0xcc0
[  667.703295][   T30]  #3: ffff8880564510e8 (&dev->mutex){....}-{4:4}, at: devlink_pernet_pre_exit+0x13b/0x440
[  667.737439][   T30]  #4: ffff888056499250 (&devlink->lock_key#4){+.+.}-{4:4}, at: devlink_pernet_pre_exit+0x14d/0x440
[  667.810955][   T30]  #5: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: nsim_destroy+0x71/0x5c0
[  667.819972][   T30] 6 locks held by kworker/u9:1/5137:
[  667.887832][   T30]  #0: ffff88804396e148 ((wq_completion)hci6){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  667.930793][   T30]  #1: ffffc9001082fd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  667.954797][   T30]  #2: ffff888034188d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  667.971057][   T30]  #3: ffff888034188078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1ea/0xe00
[  667.989194][   T30]  #4: ffffffff8fe4c828 (hci_cb_list_lock){+.+.}-{4:4}, at: hci_conn_failed+0x15d/0x300
[  667.999420][   T30]  #5: ffffffff8e941b38 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x381/0x830
[  668.018619][   T30] 2 locks held by getty/5584:
[  668.025573][   T30]  #0: ffff888030ed30a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  668.050818][   T30]  #1: ffffc90002fd62f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[  668.073414][   T30] 3 locks held by kworker/0:3/5890:
[  668.078637][   T30]  #0: ffff88801ac78948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  668.098407][   T30]  #1: ffffc9000311fd00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  668.109806][   T30]  #2: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20
[  668.129649][   T30] 3 locks held by kworker/u8:10/6127:
[  668.136060][   T30]  #0: ffff888145681948 ((wq_completion)cfg80211){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  668.158803][   T30]  #1: ffffc900053f7d00 ((work_completion)(&(&rdev->dfs_update_channels_wk)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  668.180725][   T30]  #2: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: cfg80211_dfs_channels_update_work+0xbf/0x610
[  668.199685][   T30] 3 locks held by kworker/u8:13/8630:
[  668.205382][   T30]  #0: ffff888030366148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  668.220711][   T30]  #1: ffffc9001e76fd00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  668.244349][   T30]  #2: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[  668.263209][   T30] 3 locks held by kworker/u8:14/8631:
[  668.278774][   T30]  #0: ffff88801ac81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  668.301486][   T30]  #1: ffffc9001e77fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  668.320857][   T30]  #2: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[  668.329930][   T30] 1 lock held by syz.5.1521/10279:
[  668.344586][   T30] 2 locks held by syz-executor/10476:
[  668.349985][   T30]  #0: ffffffff8fcd1b50 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570
[  668.375386][   T30]  #1: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: wg_netns_pre_exit+0x1f/0x1e0
[  668.389004][   T30] 2 locks held by syz-executor/10488:
[  668.399179][   T30]  #0: ffffffff8fcd1b50 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570
[  668.417655][   T30]  #1: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: ip_tunnel_init_net+0x20e/0x720
[  668.428764][   T30] 2 locks held by syz-executor/10490:
[  668.442393][   T30]  #0: ffffffff8fcd1b50 (pernet_ops_rwsem){++++}-{4:4}, at: copy_net_ns+0x328/0x570
[  668.459203][   T30]  #1: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: ip_tunnel_init_net+0x20e/0x720
[  668.469299][   T30] 1 lock held by syz-executor/10534:
[  668.490262][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.510828][   T30] 1 lock held by syz-executor/10540:
[  668.516177][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.534227][   T30] 1 lock held by syz-executor/10547:
[  668.539567][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.558425][   T30] 1 lock held by syz-executor/10552:
[  668.565332][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.591518][   T30] 1 lock held by syz-executor/10556:
[  668.596855][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.616057][   T30] 1 lock held by syz-executor/10560:
[  668.625186][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.643081][   T30] 1 lock held by syz-executor/10563:
[  668.648415][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.667670][   T30] 1 lock held by syz-executor/10568:
[  668.676055][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.697877][   T30] 1 lock held by syz-executor/10575:
[  668.710073][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.727816][   T30] 1 lock held by syz-executor/10577:
[  668.734818][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.753301][   T30] 1 lock held by syz-executor/10592:
[  668.758639][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.778684][   T30] 1 lock held by syz-executor/10593:
[  668.786809][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.809842][   T30] 5 locks held by kworker/u9:6/10600:
[  668.819692][   T30]  #0: ffff88804a6b2148 ((wq_completion)hci5){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  668.839855][   T30]  #1: ffffc900039efd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  668.860536][T10583] Bluetooth: hci21: command tx timeout
[  668.866466][T10582] Bluetooth: hci20: command tx timeout
[  668.872373][T10598] Bluetooth: hci19: command tx timeout
[  668.891182][   T30]  #2: ffff8880595e8d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  668.910361][   T30]  #3: ffff8880595e8078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1ea/0xe00
[  668.932270][   T30]  #4: ffffffff8e941b38 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x451/0x830
[  668.951963][   T30] 1 lock held by syz-executor/10604:
[  668.957278][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  668.976120][   T30] 1 lock held by syz-executor/10610:
[  668.986793][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  669.001001][   T30] 1 lock held by syz-executor/10616:
[  669.006307][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  669.025098][   T30] 1 lock held by syz-executor/10620:
[  669.030409][   T30]  #0: ffffffff8fcde688 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  669.056352][   T30] 
[  669.058712][   T30] =============================================
[  669.058712][   T30] 
[  669.157479][   T30] NMI backtrace for cpu 0
[  669.162042][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  669.172218][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  669.182303][   T30] Call Trace:
[  669.185596][   T30]  <TASK>
[  669.188546][   T30]  dump_stack_lvl+0x241/0x360
[  669.193275][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  669.198514][   T30]  ? __pfx__printk+0x10/0x10
[  669.203151][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  669.208123][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  669.213713][   T30]  ? _printk+0xd5/0x120
[  669.217908][   T30]  ? __pfx__printk+0x10/0x10
[  669.222540][   T30]  ? __wake_up_klogd+0xcc/0x110
[  669.227437][   T30]  ? __pfx__printk+0x10/0x10
[  669.232072][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.237733][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  669.242794][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  669.248812][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  669.254827][   T30]  watchdog+0xff6/0x1040
[  669.259272][   T30]  ? watchdog+0x1ea/0x1040
[  669.263728][   T30]  ? __pfx_watchdog+0x10/0x10
[  669.268429][   T30]  kthread+0x2f2/0x390
[  669.272529][   T30]  ? __pfx_watchdog+0x10/0x10
[  669.277231][   T30]  ? __pfx_kthread+0x10/0x10
[  669.281849][   T30]  ret_from_fork+0x4d/0x80
[  669.286288][   T30]  ? __pfx_kthread+0x10/0x10
[  669.290908][   T30]  ret_from_fork_asm+0x1a/0x30
[  669.295724][   T30]  </TASK>
[  669.300018][   T30] Sending NMI from CPU 0 to CPUs 1:
[  669.305937][    C1] NMI backtrace for cpu 1
[  669.305952][    C1] CPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  669.305978][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  669.305992][    C1] RIP: 0010:kasan_check_range+0x5/0x290
[  669.306027][    C1] Code: 8e e8 6f 94 e1 ff 90 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 <41> 57 41 56 41 54 53 b0 01 48 85 f6 0f 84 a0 01 00 00 4c 8d 04 37
[  669.306046][    C1] RSP: 0018:ffffc900001e68a0 EFLAGS: 00000246
[  669.306068][    C1] RAX: ffffc900001e74e0 RBX: 0000000000000010 RCX: ffffffff8142257b
[  669.306085][    C1] RDX: 0000000000000001 RSI: 0000000000000010 RDI: ffffc900001e69f0
[  669.306101][    C1] RBP: ffffc900001e69f0 R08: 0000000000000001 R09: ffffc900001e6a90
[  669.306118][    C1] R10: dffffc0000000000 R11: ffffffff8181a620 R12: ffffc900001e8000
[  669.306136][    C1] R13: ffffc900001e69a0 R14: 0000000000000000 R15: ffffc900001e69f0
[  669.306156][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  669.306175][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  669.306192][    C1] CR2: 0000000020032000 CR3: 000000000e738000 CR4: 0000000000350ef0
[  669.306210][    C1] Call Trace:
[  669.306218][    C1]  <NMI>
[  669.306227][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  669.306260][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  669.306288][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  669.306311][    C1]  ? nmi_handle+0x2a/0x5a0
[  669.306348][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  669.306383][    C1]  ? nmi_handle+0x151/0x5a0
[  669.306408][    C1]  ? nmi_handle+0x2a/0x5a0
[  669.306435][    C1]  ? kasan_check_range+0x5/0x290
[  669.306464][    C1]  ? default_do_nmi+0x63/0x160
[  669.306491][    C1]  ? exc_nmi+0x123/0x1f0
[  669.306516][    C1]  ? end_repeat_nmi+0xf/0x53
[  669.306541][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  669.306579][    C1]  ? unwind_next_frame+0xcfb/0x22d0
[  669.306605][    C1]  ? kasan_check_range+0x5/0x290
[  669.306635][    C1]  ? kasan_check_range+0x5/0x290
[  669.306666][    C1]  ? kasan_check_range+0x5/0x290
[  669.306696][    C1]  </NMI>
[  669.306704][    C1]  <TASK>
[  669.306712][    C1]  __asan_memset+0x23/0x50
[  669.306735][    C1]  ? NF_HOOK+0x29e/0x450
[  669.306759][    C1]  unwind_next_frame+0xcfb/0x22d0
[  669.306789][    C1]  ? nf_hook_slow+0xc5/0x220
[  669.306823][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  669.306859][    C1]  arch_stack_walk+0x11c/0x150
[  669.306889][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  669.306923][    C1]  ? NF_HOOK+0x29e/0x450
[  669.306951][    C1]  stack_trace_save+0x118/0x1d0
[  669.306985][    C1]  ? stack_trace_save+0x118/0x1d0
[  669.307020][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  669.307056][    C1]  ? __asan_memset+0x23/0x50
[  669.307079][    C1]  ? unwind_next_frame+0x193b/0x22d0
[  669.307107][    C1]  kasan_save_track+0x3f/0x80
[  669.307130][    C1]  ? kasan_save_track+0x3f/0x80
[  669.307171][    C1]  ? __kasan_slab_alloc+0x66/0x80
[  669.307197][    C1]  ? kmem_cache_alloc_node_noprof+0x1d9/0x380
[  669.307229][    C1]  ? __alloc_skb+0x1c3/0x440
[  669.307267][    C1]  ? synproxy_send_client_synack_ipv6+0x1b4/0xcc0
[  669.307301][    C1]  ? nft_synproxy_do_eval+0x739/0xa60
[  669.307336][    C1]  ? nft_do_chain+0x4af/0x1da0
[  669.307369][    C1]  ? nft_do_chain_inet+0x418/0x6b0
[  669.307402][    C1]  ? nf_hook_slow+0xc5/0x220
[  669.307459][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.307486][    C1]  __kasan_slab_alloc+0x66/0x80
[  669.307515][    C1]  kmem_cache_alloc_node_noprof+0x1d9/0x380
[  669.307547][    C1]  ? __alloc_skb+0x1c3/0x440
[  669.307584][    C1]  __alloc_skb+0x1c3/0x440
[  669.307622][    C1]  ? __pfx___alloc_skb+0x10/0x10
[  669.307657][    C1]  ? __entry_text_end+0x1020c5/0x1020c9
[  669.307687][    C1]  synproxy_send_client_synack_ipv6+0x1b4/0xcc0
[  669.307727][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.307754][    C1]  ? __pfx_synproxy_send_client_synack_ipv6+0x10/0x10
[  669.307788][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.307815][    C1]  ? synproxy_pernet+0x45/0x270
[  669.307849][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.307877][    C1]  nft_synproxy_do_eval+0x739/0xa60
[  669.307916][    C1]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[  669.307955][    C1]  ? __pfx_validate_chain+0x10/0x10
[  669.307984][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  669.308011][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.308040][    C1]  nft_do_chain+0x4af/0x1da0
[  669.308074][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.308103][    C1]  ? nf_nat_inet_fn+0xa30/0xd10
[  669.308129][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[  669.308179][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.308204][    C1]  ? nf_nat_ipv6_fn+0x2cb/0x3e0
[  669.308233][    C1]  ? __pfx_nf_nat_ipv6_fn+0x10/0x10
[  669.308267][    C1]  nft_do_chain_inet+0x418/0x6b0
[  669.308303][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  669.308337][    C1]  ? nf_nat_ipv6_local_in+0x1cd/0x620
[  669.308367][    C1]  ? __pfx_nf_nat_ipv6_local_in+0x10/0x10
[  669.308394][    C1]  ? nf_nat_ipv6_fn+0x2cb/0x3e0
[  669.308424][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  669.308458][    C1]  nf_hook_slow+0xc5/0x220
[  669.308489][    C1]  ? __pfx_ip6_input_finish+0x10/0x10
[  669.308515][    C1]  ? __pfx_ip6_input_finish+0x10/0x10
[  669.308541][    C1]  NF_HOOK+0x29e/0x450
[  669.308567][    C1]  ? NF_HOOK+0x9a/0x450
[  669.308590][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  669.308616][    C1]  ? __pfx_ip6_input_finish+0x10/0x10
[  669.308643][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.308667][    C1]  ? ip6_rcv_finish_core+0x1fb/0x410
[  669.308694][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.308721][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  669.308745][    C1]  NF_HOOK+0x3a6/0x450
[  669.308768][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.308792][    C1]  ? skb_orphan+0xae/0xd0
[  669.308818][    C1]  ? NF_HOOK+0x9a/0x450
[  669.308841][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  669.308867][    C1]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  669.308896][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.308920][    C1]  ? __pfx_ipv6_rcv+0x10/0x10
[  669.308945][    C1]  __netif_receive_skb+0x1ea/0x650
[  669.308976][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  669.309000][    C1]  ? __pfx___netif_receive_skb+0x10/0x10
[  669.309027][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  669.309051][    C1]  ? __pfx_lock_release+0x10/0x10
[  669.309077][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  669.309116][    C1]  process_backlog+0x662/0x15b0
[  669.309144][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.309173][    C1]  ? process_backlog+0x33b/0x15b0
[  669.309208][    C1]  ? __pfx_process_backlog+0x10/0x10
[  669.309237][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  669.309268][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  669.309296][    C1]  __napi_poll+0xcd/0x490
[  669.309326][    C1]  net_rx_action+0x89b/0x1240
[  669.309370][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  669.309402][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.309427][    C1]  ? sched_clock+0x4a/0x70
[  669.309469][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  669.309501][    C1]  handle_softirqs+0x2d6/0x9b0
[  669.309535][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.309565][    C1]  ? run_ksoftirqd+0xca/0x130
[  669.309589][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  669.309621][    C1]  ? preempt_schedule+0xe1/0xf0
[  669.309654][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.309682][    C1]  run_ksoftirqd+0xca/0x130
[  669.309703][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[  669.309723][    C1]  ? __pfx_ksoftirqd_should_run+0x10/0x10
[  669.309747][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  669.309772][    C1]  ? __pfx_ksoftirqd_should_run+0x10/0x10
[  669.309794][    C1]  ? smpboot_thread_fn+0x2d3/0xa30
[  669.309829][    C1]  ? smpboot_thread_fn+0x4fb/0xa30
[  669.309864][    C1]  ? smpboot_thread_fn+0x656/0xa30
[  669.309901][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[  669.309922][    C1]  smpboot_thread_fn+0x546/0xa30
[  669.309958][    C1]  ? smpboot_thread_fn+0x4e/0xa30
[  669.309998][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  669.310034][    C1]  kthread+0x2f2/0x390
[  669.310059][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  669.310095][    C1]  ? __pfx_kthread+0x10/0x10
[  669.310121][    C1]  ret_from_fork+0x4d/0x80
[  669.310141][    C1]  ? __pfx_kthread+0x10/0x10
[  669.310167][    C1]  ret_from_fork_asm+0x1a/0x30
[  669.310210][    C1]  </TASK>
[  671.394085][T10600] Bluetooth: hci21: command tx timeout
[  671.399626][T10600] Bluetooth: hci19: command tx timeout
[  671.405306][ T5137] Bluetooth: hci20: command tx timeout
[  671.500055][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  671.506944][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-11677-g2ba9f676d0a2 #0
[  671.517114][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  671.527193][   T30] Call Trace:
[  671.530482][   T30]  <TASK>
[  671.533433][   T30]  dump_stack_lvl+0x241/0x360
[  671.538156][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  671.543389][   T30]  ? __pfx__printk+0x10/0x10
[  671.548009][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  671.554025][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  671.559683][   T30]  ? vscnprintf+0x5d/0x90
[  671.564040][   T30]  panic+0x349/0x880
[  671.567964][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  671.573621][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  671.579891][   T30]  ? __pfx_panic+0x10/0x10
[  671.584517][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  671.589929][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  671.595591][   T30]  ? __irq_work_queue_local+0x137/0x410
[  671.601169][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  671.606917][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  671.612317][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  671.618500][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  671.624682][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  671.630348][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  671.636530][   T30]  watchdog+0x1035/0x1040
[  671.640886][   T30]  ? watchdog+0x1ea/0x1040
[  671.645340][   T30]  ? __pfx_watchdog+0x10/0x10
[  671.650047][   T30]  kthread+0x2f2/0x390
[  671.654144][   T30]  ? __pfx_watchdog+0x10/0x10
[  671.658849][   T30]  ? __pfx_kthread+0x10/0x10
[  671.663469][   T30]  ret_from_fork+0x4d/0x80
[  671.667919][   T30]  ? __pfx_kthread+0x10/0x10
[  671.672546][   T30]  ret_from_fork_asm+0x1a/0x30
[  671.677366][   T30]  </TASK>
[  671.680654][   T30] Kernel Offset: disabled
[  671.684978][   T30] Rebooting in 86400 seconds..