last executing test programs:

1m23.816186457s ago: executing program 4 (id=821):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x80)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x5dd93000)
recvmmsg(0xffffffffffffffff, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000300)=""/37, 0x25}, {&(0x7f0000000900)=""/75, 0x4b}], 0x2}, 0x4ce0}], 0x1, 0x20, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x321}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000580)=""/106, 0x659}, {&(0x7f0000000980)=""/73, 0xd}, {&(0x7f0000000200)=""/77, 0x82}, {&(0x7f00000007c0)=""/141, 0xc4}, {&(0x7f00000001c0)=""/6, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}, 0x5}], 0x4000000000003b4, 0x2000, &(0x7f0000003700)={0x77359400})

1m23.654757084s ago: executing program 4 (id=823):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000180)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000000)="38000000010007", 0x7)

1m23.04675477s ago: executing program 4 (id=824):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x202, 0x0)
write$sequencer(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="810500"], 0x14)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x36, &(0x7f0000000440)=@req={0x3fc, 0x0, 0xe3e}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x200000b, 0x59033, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="c80000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200e00000010c000280050001000000000008000740000000013c001080080002400000000708000140000046e2080003"], 0xc8}, 0x1, 0x0, 0x0, 0x4000090}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x44, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x100e}, @CTA_SEQ_ADJ_REPLY={0x4, 0x4}]}, 0x44}}, 0x0)

1m22.930800545s ago: executing program 4 (id=826):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='devpts\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x820061, &(0x7f0000000000)=ANY=[@ANYBLOB='ui'])

1m22.623393138s ago: executing program 4 (id=829):
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x2401, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000080)=ANY=[], 0x8)
shmctl$SHM_STAT_ANY(0x0, 0xf, &(0x7f0000000040)=""/93)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x5}, 0x1c)
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x190, 0x1, 0x0, 0xdd9f86, 0x3, 0x9, 0x1, 0x8, 0x8, 0x722, 0x5, 0xb, 0x8, 0x3f, 0xb763599953cb091e, {0xf56, 0x6fd8e84b}, 0x3, 0xed}})

1m21.682374279s ago: executing program 4 (id=833):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
symlink(&(0x7f0000000100)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000007c0)={{{@in, @in6=@remote}}, {{@in6=@empty}, 0x0, @in=@empty}}, &(0x7f0000000340)=0xe8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='map_files\x00')
getdents(r2, &(0x7f0000000280)=""/4097, 0x1001)

1m6.188715069s ago: executing program 32 (id=833):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
symlink(&(0x7f0000000100)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000007c0)={{{@in, @in6=@remote}}, {{@in6=@empty}, 0x0, @in=@empty}}, &(0x7f0000000340)=0xe8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='map_files\x00')
getdents(r2, &(0x7f0000000280)=""/4097, 0x1001)

29.442727757s ago: executing program 2 (id=996):
epoll_pwait(0xffffffffffffffff, &(0x7f00000001c0), 0x0, 0xffffffff, &(0x7f0000000280)={[0x1]}, 0x6)

29.405146479s ago: executing program 2 (id=997):
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x5dd93000)
recvmmsg(0xffffffffffffffff, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000900)=""/75, 0x4b}, {&(0x7f0000000a00)=""/95, 0x5f}], 0x2}, 0x4ce0}], 0x1, 0x20, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000040)="120000001200e7ef007b00000000000000a1", 0x12, 0x80, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x321}, {&(0x7f0000000280)=""/85, 0x21}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000580)=""/106, 0x659}, {&(0x7f0000000980)=""/73, 0xd}, {&(0x7f0000000200)=""/77, 0x82}, {&(0x7f00000007c0)=""/141, 0xc4}, {&(0x7f00000001c0)=""/6, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}, 0x5}], 0x4000000000003b4, 0x2000, &(0x7f0000003700)={0x77359400})

29.312630453s ago: executing program 2 (id=998):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x14, r3, 0x1, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x67)
mount(0x0, 0x0, &(0x7f0000000000)='devpts\x00', 0x0, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000))
mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x40078, 0x0)
ioctl$HCIINQUIRY(r4, 0x400448ca, 0x0)
ioctl$sock_bt_hci(r4, 0x400448c9, 0x0)

28.578349574s ago: executing program 0 (id=1005):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x805, 0x0, 0x0)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2208050, &(0x7f0000000140)=ANY=[], 0x1, 0x1520, &(0x7f0000011680)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x78)
close(r2)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

28.168473162s ago: executing program 0 (id=1009):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x1c0)
r3 = landlock_create_ruleset(&(0x7f0000000240)={0x20}, 0x18, 0x0)
landlock_restrict_self(r3, 0x0)
rename(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240)='./file1\x00')

27.99433375s ago: executing program 3 (id=1012):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000600)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffbd35010000000000840400000000000014000000100000009500000000000000db"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
shutdown(r0, 0x0)
sendfile(r0, r6, 0x0, 0xdc)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1e, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20048801}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0)

27.99409622s ago: executing program 0 (id=1013):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x202, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="c80000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200e00000010c000280050001000000000008000740000000013c001080080002400000000708000140000046e2080003"], 0xc8}, 0x1, 0x0, 0x0, 0x4000090}, 0x0)

27.489331171s ago: executing program 1 (id=1015):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b70300000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r3}, &(0x7f0000000540), &(0x7f0000000580)=r4}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r3, &(0x7f0000000780)}, 0x20)

25.049033917s ago: executing program 3 (id=1016):
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000400)=@mangle={'mangle\x00', 0x44, 0x6, 0x398, 0x98, 0x1d0, 0x0, 0x138, 0x1d0, 0x300, 0x300, 0x300, 0x300, 0x300, 0x6, 0x0, {[{{@ip={@broadcast, @dev, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x268}}, {{@uncond, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x7, 0x0, @multicast2, 0xffff}}}, {{@uncond, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@ip={@rand_addr, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'bond0\x00'}, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x1a}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3f8)

25.041649217s ago: executing program 0 (id=1017):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x1, 0x170bd27, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2100}, [@IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0xc, 0x0, 0x0, 0xffff}, {0x8, 0x1d, 0x0, 0x0, 0x401}]}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

24.958758581s ago: executing program 1 (id=1018):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@bridge_newneigh={0x1c, 0x1c, 0x401, 0x70bd29, 0x25dfdbff, {0x7, 0x0, 0x0, r1, 0x40, 0xbe571c956b62a9f, 0x5}}, 0x1c}, 0x1, 0x0, 0x0, 0x44801}, 0x840)

24.933559762s ago: executing program 3 (id=1019):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000440), 0x87228b834f09328, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsetxattr$trusted_overlay_nlink(r0, 0x0, 0x0, 0x0, 0x0)

24.860860635s ago: executing program 3 (id=1020):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
write(r3, 0x0, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x14)

24.755991219s ago: executing program 1 (id=1021):
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
syslog(0x2, &(0x7f0000000040)=""/99, 0x63)

24.754398439s ago: executing program 0 (id=1022):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0xa1001)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})

24.74594262s ago: executing program 2 (id=1023):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xd, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000009800000095"], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="d2df03c4ff4f84e5fbd9cb4688a8", 0x0, 0x95b4, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

24.618423675s ago: executing program 0 (id=1025):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000000c0)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r3, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="05002ebd7000000000000800000008000300", @ANYRES32=r6], 0x2c}, 0x1, 0x0, 0x0, 0x44840}, 0x0)

24.618336176s ago: executing program 1 (id=1026):
pipe(&(0x7f00000045c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe1b)
write$UHID_INPUT(r0, &(0x7f00000006c0)={0x8, {"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", 0x1000}}, 0x1006)

24.51650598s ago: executing program 2 (id=1027):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000600)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffbd35010000000000840400000000000014000000100000009500000000000000db"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
shutdown(r0, 0x0)
sendfile(r0, r6, 0x0, 0xdc)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
getpid()
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1e, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20048801}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0)

23.704377495s ago: executing program 1 (id=1030):
add_key(&(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffc)

23.578812091s ago: executing program 1 (id=1032):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x89f0, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000040)=@ethtool_regs={0x4, 0x0, 0xc, "f42a97b96d02674f51eae4da"}})

23.556287031s ago: executing program 2 (id=1033):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x1, 0x170bd27, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2100}, [@IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0xc, 0x0, 0x0, 0xffff}, {0x8, 0x1d, 0x0, 0x0, 0x401}]}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

22.66677425s ago: executing program 3 (id=1034):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x44}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x70)

22.534377766s ago: executing program 3 (id=1037):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x7, 0x0)

19.572444524s ago: executing program 5 (id=1042):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, 0x0, 0x118)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)

18.667043643s ago: executing program 5 (id=1043):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000600)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000fff07006706000020000000170200000ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffbd35010000000000840400000000000014000000100000009500000000000000db"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
shutdown(r0, 0x0)
sendfile(r0, r6, 0x0, 0xdc)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)
getpid()
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x1e, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x20048801}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x0)

16.312104195s ago: executing program 5 (id=1044):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000340)={<r1=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, &(0x7f00000000c0)={r1})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000005c0)={<r2=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000080)={r2, 0x3, r0, 0x5})

16.094778984s ago: executing program 5 (id=1045):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmmsg$inet(r0, &(0x7f0000000340)=[{{&(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000400)='\b\x00\x00\x00(\x00\x00\x00', 0x8}], 0x1}}], 0x1, 0xc850)

16.067723785s ago: executing program 5 (id=1046):
socket$nl_route(0x10, 0x3, 0x0)
close(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000016c0)={0x4c, 0x0, &(0x7f0000000600)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x1, 0x4000, &(0x7f00000006c0)="02"})

15.611688405s ago: executing program 5 (id=1047):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x1, 0x17d, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
read$FUSE(r0, &(0x7f00000020c0)={0x2020}, 0x2020)

9.519230328s ago: executing program 33 (id=1025):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000000c0)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r2, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r3, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="05002ebd7000000000000800000008000300", @ANYRES32=r6], 0x2c}, 0x1, 0x0, 0x0, 0x44840}, 0x0)

8.379948147s ago: executing program 34 (id=1032):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x89f0, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000040)=@ethtool_regs={0x4, 0x0, 0xc, "f42a97b96d02674f51eae4da"}})

8.275590162s ago: executing program 35 (id=1033):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x1, 0x170bd27, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2100}, [@IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x1c, 0x1a, 0x0, 0x1, [@AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0xc, 0x0, 0x0, 0xffff}, {0x8, 0x1d, 0x0, 0x0, 0x401}]}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

7.510234195s ago: executing program 36 (id=1037):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x7, 0x0)

0s ago: executing program 37 (id=1047):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x1, 0x17d, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
read$FUSE(r0, &(0x7f00000020c0)={0x2020}, 0x2020)

kernel console output (not intermixed with test programs):

ss 0
[   82.401204][ T4629] MINIX-fs: unable to read superblock
[   83.468431][ T2409] usb 1-1: USB disconnect, device number 4
[   84.946130][    T7] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   84.955546][ T4258] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   85.663659][ T4177] udevd[4177]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:9.221/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   86.754097][ T4258] usb 2-1: unable to read config index 0 descriptor/start: -71
[   86.768793][ T4258] usb 2-1: can't read configurations, error -71
[   86.965892][    T7] usb 4-1: device descriptor read/all, error -71
[   87.794359][  T263] block nbd3: Attempted send on invalid socket
[   87.801344][  T263] blk_update_request: I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   87.812542][ T4687] MINIX-fs: unable to read superblock
[   87.971781][ T4694] netlink: 'syz.1.115': attribute type 10 has an invalid length.
[   88.031218][ T4694] team0: Port device dummy0 added
[   88.042983][ T4699] netlink: 'syz.1.115': attribute type 10 has an invalid length.
[   88.094844][ T4699] team0: Port device dummy0 removed
[   88.111982][ T4699] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   89.467280][ T4728] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[   89.482122][ T4728] Error parsing options; rc = [-22]
[   96.710974][  T150] block nbd2: Attempted send on invalid socket
[   96.717211][  T150] blk_update_request: I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   96.731630][ T4782] MINIX-fs: unable to read superblock
[   97.174841][ T4808] netlink: 'syz.1.150': attribute type 32 has an invalid length.
[   99.517399][ T4258] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  100.312242][ T4258] usb 5-1: config 0 has an invalid interface number: 151 but max is 1
[  100.390461][ T4258] usb 5-1: config 0 has no interface number 1
[  100.453676][ T4258] usb 5-1: config 0 interface 151 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  100.535771][ T4258] usb 5-1: config 0 interface 151 altsetting 0 has an invalid endpoint with address 0xA3, skipping
[  100.637070][ T4258] usb 5-1: config 0 interface 151 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  100.764034][ T4258] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xC9, skipping
[  101.582252][ T4258] usb 5-1: New USB device found, idVendor=0499, idProduct=500a, bcdDevice=e7.b7
[  101.622508][ T4258] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.685247][ T4258] usb 5-1: Product: syz
[  101.713975][ T4258] usb 5-1: Manufacturer: syz
[  101.718618][ T4258] usb 5-1: SerialNumber: syz
[  101.788459][ T4258] usb 5-1: config 0 descriptor??
[  101.841063][ T4832] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  101.860095][ T4258] snd-usb-audio: probe of 5-1:0.151 failed with error -2
[  101.932421][ T4258] snd-usb-audio: probe of 5-1:0.0 failed with error -2
[  102.020215][ T4177] udevd[4177]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  102.055316][ T2409] usb 5-1: USB disconnect, device number 3
[  102.483039][ T4354] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  102.558455][ T4856] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.589816][ T4856] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.724789][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880621e2000: rx timeout, send abort
[  102.783070][ T4354] usb 4-1: Using ep0 maxpacket: 16
[  102.857013][ T4872] netlink: 40 bytes leftover after parsing attributes in process `syz.0.175'.
[  102.877684][ T4872] netlink: 32 bytes leftover after parsing attributes in process `syz.0.175'.
[  103.047651][ T4354] usb 4-1: config 0 has an invalid interface number: 251 but max is 0
[  103.056662][ T4354] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  103.067105][ T4354] usb 4-1: config 0 has no interface number 0
[  103.073464][ T4354] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  103.101366][ T4354] usb 4-1: config 0 interface 251 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  103.234068][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880621e2000: abort rx timeout. Force session deactivation
[  103.338076][ T4354] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  103.359657][ T4354] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.387459][ T4354] usb 4-1: Product: syz
[  103.398976][ T4354] usb 4-1: Manufacturer: syz
[  103.408474][ T4354] usb 4-1: SerialNumber: syz
[  103.425596][ T4354] usb 4-1: config 0 descriptor??
[  103.443290][ T4865] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  104.145211][ T4354] asix: probe of 4-1:0.251 failed with error -22
[  104.239272][ T4354] usb 4-1: USB disconnect, device number 4
[  104.369039][ T4856] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.562451][ T4856] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.604119][ T4911] netlink: 40 bytes leftover after parsing attributes in process `syz.0.187'.
[  105.624435][ T4911] netlink: 32 bytes leftover after parsing attributes in process `syz.0.187'.
[  106.023735][ T4856] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.036957][ T4856] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.049079][ T4856] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.061943][ T4856] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  110.371169][ T4995] loop2: detected capacity change from 0 to 7
[  110.390361][ T4175] Dev loop2: unable to read RDB block 7
[  110.401256][ T4175]  loop2: unable to read partition table
[  110.409057][ T4175] loop2: partition table beyond EOD, truncated
[  110.420881][ T4995] Dev loop2: unable to read RDB block 7
[  110.428589][ T4995]  loop2: unable to read partition table
[  110.434556][ T4995] loop2: partition table beyond EOD, truncated
[  110.452149][ T4995] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  114.030050][  T150] block nbd4: Attempted send on invalid socket
[  114.036526][  T150] blk_update_request: I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  114.048447][ T5038] MINIX-fs: unable to read superblock
[  114.846521][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  114.858213][ T4200] CPU: 0 PID: 4200 Comm: kworker/u5:8 Not tainted syzkaller #0
[  114.865783][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  114.875851][ T4200] Workqueue: hci3 hci_rx_work
[  114.880555][ T4200] Call Trace:
[  114.883839][ T4200]  <TASK>
[  114.886849][ T4200]  dump_stack_lvl+0x168/0x230
[  114.891541][ T4200]  ? show_regs_print_info+0x20/0x20
[  114.896750][ T4200]  ? load_image+0x3b0/0x3b0
[  114.901276][ T4200]  sysfs_create_dir_ns+0x252/0x280
[  114.906406][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  114.911453][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[  114.916145][ T4200]  ? le_conn_complete_evt+0xcbc/0x1590
[  114.921613][ T4200]  ? hci_event_packet+0xe05/0x12f0
[  114.926735][ T4200]  ? process_one_work+0x863/0x1000
[  114.931861][ T4200]  ? do_raw_spin_unlock+0x11d/0x230
[  114.937213][ T4200]  kobject_add_internal+0x662/0xd00
[  114.942436][ T4200]  kobject_add+0x152/0x210
[  114.946872][ T4200]  ? kobject_init+0x1d0/0x1d0
[  114.951686][ T4200]  ? klist_children_get+0x50/0x50
[  114.956720][ T4200]  ? get_device_parent+0x121/0x3f0
[  114.961942][ T4200]  device_add+0x483/0xfb0
[  114.966298][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[  114.971251][ T4200]  le_conn_complete_evt+0xcbc/0x1590
[  114.976557][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[  114.981681][ T4200]  ? __mutex_trylock_common+0x14f/0x250
[  114.987242][ T4200]  hci_le_meta_evt+0x289/0x3b80
[  114.992137][ T4200]  ? hci_event_packet+0x36d/0x12f0
[  114.997256][ T4200]  ? hci_event_packet+0x2e2/0x12f0
[  115.002371][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  115.007407][ T4200]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  115.013414][ T4200]  ? lock_chain_count+0x20/0x20
[  115.018375][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[  115.024455][ T4200]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  115.030097][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  115.035301][ T4200]  ? mutex_unlock+0x10/0x10
[  115.039824][ T4200]  hci_event_packet+0xe05/0x12f0
[  115.044771][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  115.049981][ T4200]  ? rcu_lock_release+0x20/0x20
[  115.054847][ T4200]  ? hci_send_to_monitor+0x9c/0x4a0
[  115.060053][ T4200]  hci_rx_work+0x255/0xa10
[  115.064491][ T4200]  process_one_work+0x863/0x1000
[  115.069451][ T4200]  ? worker_detach_from_pool+0x240/0x240
[  115.075085][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[  115.080381][ T4200]  ? _raw_spin_lock_irq+0xab/0xe0
[  115.085422][ T4200]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  115.090803][ T4200]  ? wq_worker_running+0x97/0x170
[  115.095844][ T4200]  worker_thread+0xaa8/0x12a0
[  115.100525][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  115.105732][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  115.110938][ T4200]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  115.116846][ T4200]  kthread+0x436/0x520
[  115.120925][ T4200]  ? rcu_lock_release+0x20/0x20
[  115.125781][ T4200]  ? kthread_blkcg+0xd0/0xd0
[  115.130379][ T4200]  ret_from_fork+0x1f/0x30
[  115.134827][ T4200]  </TASK>
[  115.267935][ T4200] kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  115.285109][ T4200] Bluetooth: hci3: failed to register connection device
[  115.955705][ T5066] process 'syz.3.231' launched '/dev/fd/8' with NULL argv: empty string added
[  116.424805][ T4255] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  118.443306][ T4255] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32
[  118.452375][ T4255] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.514434][  T263] block nbd0: Attempted send on invalid socket
[  118.520697][  T263] blk_update_request: I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  118.533383][ T5090] MINIX-fs: unable to read superblock
[  118.588142][ T4255] usb 5-1: config 0 descriptor??
[  118.691194][ T5102] netlink: 40 bytes leftover after parsing attributes in process `syz.2.243'.
[  118.700918][ T5102] netlink: 32 bytes leftover after parsing attributes in process `syz.2.243'.
[  118.893258][ T1111] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  119.176322][ T1111] usb 4-1: Using ep0 maxpacket: 16
[  119.370881][ T4255] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  119.407705][ T4255] gp8psk: usb in 128 operation failed.
[  119.676252][ T1111] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.221924][ T4255] gp8psk: usb in 137 operation failed.
[  120.227780][ T1111] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.231400][ T4255] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  120.244698][ T1111] usb 4-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  120.257034][ T1111] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.268051][ T1111] usb 4-1: config 0 descriptor??
[  120.313515][ T4255] dvbdev: DVB: registering new adapter (Genpix SkyWalker-1 DVB-S receiver)
[  120.322457][ T4255] usb 5-1: media controller created
[  120.340535][ T4255] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  120.361680][ T4255] gp8psk_fe: Frontend attached
[  120.373805][ T4255] usb 5-1: DVB: registering adapter 1 frontend 0 (Genpix DVB-S)...
[  120.390804][ T4255] dvbdev: dvb_create_media_entity: media entity 'Genpix DVB-S' registered.
[  120.507567][ T4255] gp8psk: usb in 138 operation failed.
[  120.522862][ T4255] dvb-usb: Genpix SkyWalker-1 DVB-S receiver successfully initialized and connected.
[  120.534253][ T4255] gp8psk: found Genpix USB device pID = 203 (hex)
[  120.545328][ T4255] usb 5-1: USB disconnect, device number 4
[  120.807291][ T1111] hid-multitouch 0003:1FD2:6007.0002: unknown main item tag 0x4
[  121.206115][ T1111] hid-multitouch 0003:1FD2:6007.0002: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.3-1/input0
[  121.280323][ T4255] dvb-usb: Genpix SkyWalker-1 DVB-S receiver successfully deinitialized and disconnected.
[  121.331797][ T1111] usb 4-1: USB disconnect, device number 5
[  121.522774][ T5135] fido_id[5135]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  122.313514][ T1111] Bluetooth: hci4: command 0x0405 tx timeout
[  122.431034][ T4255] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  123.350139][  T150] block nbd3: Attempted send on invalid socket
[  123.539387][  T150] blk_update_request: I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.564155][ T5146] MINIX-fs: unable to read superblock
[  124.397591][ T4255] usb 5-1: device not accepting address 5, error -71
[  129.059655][ T5241] netlink: 16 bytes leftover after parsing attributes in process `syz.2.291'.
[  129.132329][ T5241] netlink: 16 bytes leftover after parsing attributes in process `syz.2.291'.
[  132.224235][ T5281] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  132.661653][ T5293] netlink: 4 bytes leftover after parsing attributes in process `syz.2.308'.
[  132.715378][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.724188][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  132.978099][ T5293] netlink: 4 bytes leftover after parsing attributes in process `syz.2.308'.
[  136.064926][ T5340] netlink: 12 bytes leftover after parsing attributes in process `syz.2.321'.
[  136.094416][ T4177] udevd[4177]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  136.196312][   T26] audit: type=1326 audit(1764015524.334:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5343 comm="syz.3.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  136.235049][ T5340] overlayfs: failed to clone upperpath
[  136.301038][   T26] audit: type=1326 audit(1764015524.374:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5343 comm="syz.3.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  136.638032][   T26] audit: type=1326 audit(1764015524.374:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5343 comm="syz.3.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  137.347240][   T26] audit: type=1326 audit(1764015524.384:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5343 comm="syz.3.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  137.593644][   T26] audit: type=1326 audit(1764015524.384:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5343 comm="syz.3.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=225 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  137.593836][   T26] audit: type=1326 audit(1764015524.384:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5343 comm="syz.3.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  137.593987][   T26] audit: type=1326 audit(1764015524.384:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5343 comm="syz.3.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  138.993074][   T21] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  139.310823][ T5375] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  139.323052][   T21] usb 4-1: Using ep0 maxpacket: 32
[  140.838942][   T21] usb 4-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  141.637971][   T21] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.195313][   T21] usb 4-1: can't set config #3, error -71
[  142.218968][   T21] usb 4-1: USB disconnect, device number 6
[  142.336842][  T263] block nbd3: Attempted send on invalid socket
[  142.343256][  T263] blk_update_request: I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  142.355468][ T5396] MINIX-fs: unable to read superblock
[  144.783094][ T1108] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  145.883282][ T1108] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x99, skipping
[  146.943136][ T1108] usb 5-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  146.952474][ T1108] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.036159][ T1108] usb 5-1: config 0 descriptor??
[  147.065766][ T1108] usb 5-1: can't set config #0, error -71
[  147.091396][ T1108] usb 5-1: USB disconnect, device number 7
[  147.366862][ T5457] af_packet: tpacket_rcv: packet too big, clamped from 28 to 4294967272. macoff=96
[  148.040640][ T5462] netlink: 40 bytes leftover after parsing attributes in process `syz.0.358'.
[  148.049893][ T5462] netlink: 32 bytes leftover after parsing attributes in process `syz.0.358'.
[  150.079013][ T2409] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  150.128115][ T5497] netlink: 'syz.3.371': attribute type 10 has an invalid length.
[  150.137470][ T5498] netlink: 108 bytes leftover after parsing attributes in process `syz.1.370'.
[  150.150041][ T5499] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  150.176303][ T5497] team0: Port device netdevsim0 added
[  153.343225][ T2409] usb 3-1: unable to read config index 0 descriptor/all
[  153.352304][ T2409] usb 3-1: can't read configurations, error -71
[  156.815749][ T5573] netlink: 40 bytes leftover after parsing attributes in process `syz.2.389'.
[  156.824995][ T5573] netlink: 32 bytes leftover after parsing attributes in process `syz.2.389'.
[  159.854058][ T5610] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  160.894889][ T5622] netlink: 40 bytes leftover after parsing attributes in process `syz.3.407'.
[  160.904425][ T5622] netlink: 32 bytes leftover after parsing attributes in process `syz.3.407'.
[  161.571903][ T5624] device batadv1 entered promiscuous mode
[  162.284579][ T5637] hub 6-0:1.0: USB hub found
[  162.313454][ T5637] hub 6-0:1.0: 1 port detected
[  163.353263][ T1111] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  163.603058][ T1111] usb 1-1: Using ep0 maxpacket: 32
[  163.987270][ T1111] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  163.998663][ T1111] usb 1-1: config 0 has no interface number 0
[  164.188243][ T5668] netlink: 40 bytes leftover after parsing attributes in process `syz.3.420'.
[  164.198230][ T5668] netlink: 32 bytes leftover after parsing attributes in process `syz.3.420'.
[  164.763462][ T1111] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  164.778940][ T1111] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.790634][ T1111] usb 1-1: Product: syz
[  164.795021][ T1111] usb 1-1: Manufacturer: syz
[  164.800161][ T1111] usb 1-1: SerialNumber: syz
[  164.808897][ T1111] usb 1-1: config 0 descriptor??
[  164.855521][ T1111] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  165.066840][ T1111] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  165.142776][ T5676] tipc: Started in network mode
[  165.143268][ T1111] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  165.148256][ T5676] tipc: Node identity 000000003a0000000000000000000001, cluster identity 4711
[  165.166770][ T5676] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  165.477700][ T1111] usb 1-1: USB disconnect, device number 5
[  165.483688][    C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  165.722334][ T1111] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  165.783186][ T1111] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  166.387357][ T1111] quatech2 1-1:0.51: device disconnected
[  168.395614][ T5711] netlink: 40 bytes leftover after parsing attributes in process `syz.4.433'.
[  168.405176][ T5711] netlink: 32 bytes leftover after parsing attributes in process `syz.4.433'.
[  168.704644][ T5713] capability: warning: `syz.3.434' uses deprecated v2 capabilities in a way that may be insecure
[  168.813892][   T26] audit: type=1326 audit(1764015556.844:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  169.387292][   T26] audit: type=1326 audit(1764015556.844:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  169.410475][   T26] audit: type=1326 audit(1764015556.844:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  169.441648][   T26] audit: type=1326 audit(1764015556.854:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  170.043892][   T26] audit: type=1326 audit(1764015556.854:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  170.073813][   T26] audit: type=1326 audit(1764015556.854:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f860e2e9f90 code=0x7ffc0000
[  170.396062][   T26] audit: type=1326 audit(1764015556.854:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f860e2ecf77 code=0x7ffc0000
[  170.543057][   T26] audit: type=1326 audit(1764015556.854:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f860e2eb749 code=0x7ffc0000
[  170.739833][   T26] audit: type=1326 audit(1764015556.854:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f860e2ecf77 code=0x7ffc0000
[  170.777988][   T26] audit: type=1326 audit(1764015556.854:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5704 comm="syz.3.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f860e2ea3aa code=0x7ffc0000
[  173.312369][ T5758] netlink: 40 bytes leftover after parsing attributes in process `syz.1.447'.
[  173.321761][ T5758] netlink: 32 bytes leftover after parsing attributes in process `syz.1.447'.
[  175.133148][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  175.133164][   T26] audit: type=1326 audit(1764015563.254:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a66c5749 code=0x7ffc0000
[  175.275152][   T26] audit: type=1326 audit(1764015563.254:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a66c5749 code=0x7ffc0000
[  175.349654][   T26] audit: type=1326 audit(1764015563.254:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fe4a66c5749 code=0x7ffc0000
[  175.378888][   T26] audit: type=1326 audit(1764015563.254:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a66c5749 code=0x7ffc0000
[  175.407304][   T26] audit: type=1326 audit(1764015563.254:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.1.456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a66c5749 code=0x7ffc0000
[  176.033228][ T2409] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  176.473360][ T2409] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  176.483179][ T1108] Bluetooth: hci1: command 0x0406 tx timeout
[  176.483258][ T2409] usb 4-1: config 0 has no interface number 0
[  176.495035][ T1108] Bluetooth: hci4: command 0x0406 tx timeout
[  176.531673][ T1108] Bluetooth: hci2: command 0x0406 tx timeout
[  177.133315][ T2409] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  177.142849][ T2409] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.176582][ T2409] usb 4-1: Product: syz
[  177.180792][ T2409] usb 4-1: Manufacturer: syz
[  177.209521][ T2409] usb 4-1: SerialNumber: syz
[  177.223640][ T2409] usb 4-1: config 0 descriptor??
[  177.487133][ T2409] usb 4-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  177.705653][ T2409] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  178.001767][ T2409] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  178.105243][ T2409] usb 4-1: media controller created
[  178.454934][ T2409] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  178.547602][ T5894] loop3: detected capacity change from 0 to 7
[  178.563412][ T5894] Dev loop3: unable to read RDB block 7
[  178.664179][ T5896] netlink: 40 bytes leftover after parsing attributes in process `syz.3.475'.
[  178.675174][ T5896] netlink: 32 bytes leftover after parsing attributes in process `syz.3.475'.
[  178.898565][ T4255] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  179.106676][ T4255] Bluetooth: hci3: Injecting HCI hardware error event
[  179.146913][ T5894]  loop3: unable to read partition table
[  179.219811][ T4199] Bluetooth: hci3: hardware error 0x00
[  179.292166][ T5894] loop3: partition table beyond EOD, truncated
[  179.302106][ T5894] loop_reread_partitions: partition scan of loop3 (úùƒå¡™‰ü�¾CÿjmámÛÀ¿Ã½?ã}X‹ºÐ	œëÜ%õ«`ÉæÖ€ù…ˆ{í©Ö�˜Èµ4FLQkÝŠ) failed (rc=-5)
[  179.303606][ T2409] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  179.503374][ T2409] usb 4-1: USB disconnect, device number 7
[  179.643957][ T5908] 8021q: VLANs not supported on gre0
[  183.133191][ T4354] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  184.267996][ T5942] netlink: 40 bytes leftover after parsing attributes in process `syz.3.490'.
[  184.277549][ T5942] netlink: 32 bytes leftover after parsing attributes in process `syz.3.490'.
[  184.948534][ T4354] usb 3-1: device not accepting address 6, error -71
[  185.165481][  T150] block nbd1: Attempted send on invalid socket
[  185.171900][  T150] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  185.184245][ T5955] MINIX-fs: unable to read superblock
[  185.343036][ T4354] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  186.047406][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  186.058217][ T4200] CPU: 0 PID: 4200 Comm: kworker/u5:8 Not tainted syzkaller #0
[  186.065915][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  186.076223][ T4200] Workqueue: hci2 hci_rx_work
[  186.081014][ T4200] Call Trace:
[  186.084303][ T4200]  <TASK>
[  186.087244][ T4200]  dump_stack_lvl+0x168/0x230
[  186.092023][ T4200]  ? show_regs_print_info+0x20/0x20
[  186.097233][ T4200]  ? load_image+0x3b0/0x3b0
[  186.101754][ T4200]  sysfs_create_dir_ns+0x252/0x280
[  186.106882][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  186.112022][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[  186.116796][ T4200]  ? le_conn_complete_evt+0xcbc/0x1590
[  186.122291][ T4200]  ? hci_event_packet+0xe05/0x12f0
[  186.127541][ T4200]  ? process_one_work+0x863/0x1000
[  186.132668][ T4200]  ? do_raw_spin_unlock+0x11d/0x230
[  186.137869][ T4200]  kobject_add_internal+0x662/0xd00
[  186.143078][ T4200]  kobject_add+0x152/0x210
[  186.147505][ T4200]  ? kobject_init+0x1d0/0x1d0
[  186.152262][ T4200]  ? klist_children_get+0x50/0x50
[  186.157383][ T4200]  ? get_device_parent+0x121/0x3f0
[  186.162541][ T4200]  device_add+0x483/0xfb0
[  186.167060][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[  186.172284][ T4200]  le_conn_complete_evt+0xcbc/0x1590
[  186.177601][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[  186.182721][ T4200]  ? __mutex_trylock_common+0x14f/0x250
[  186.188630][ T4200]  hci_le_meta_evt+0x289/0x3b80
[  186.193613][ T4200]  ? hci_event_packet+0x36d/0x12f0
[  186.198729][ T4200]  ? hci_event_packet+0x2e2/0x12f0
[  186.203844][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  186.209015][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[  186.215386][ T4200]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  186.221052][ T4200]  ? mark_lock+0x94/0x320
[  186.225398][ T4200]  ? mutex_unlock+0x10/0x10
[  186.229922][ T4200]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  186.235958][ T4200]  ? lock_chain_count+0x20/0x20
[  186.240802][ T4200]  ? __rwlock_init+0x140/0x140
[  186.245639][ T4200]  hci_event_packet+0xe05/0x12f0
[  186.251183][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  186.256538][ T4200]  ? rcu_lock_release+0x20/0x20
[  186.261571][ T4200]  ? lock_acquire+0x1f2/0x3f0
[  186.266258][ T4200]  ? hci_send_to_monitor+0x9c/0x4a0
[  186.271710][ T4200]  hci_rx_work+0x255/0xa10
[  186.276255][ T4200]  process_one_work+0x863/0x1000
[  186.281219][ T4200]  ? worker_detach_from_pool+0x240/0x240
[  186.286964][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[  186.292255][ T4200]  ? _raw_spin_lock_irq+0xab/0xe0
[  186.297260][ T4200]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  186.302619][ T4200]  ? wq_worker_running+0x97/0x170
[  186.307643][ T4200]  worker_thread+0xaa8/0x12a0
[  186.312309][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  186.317497][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  186.322683][ T4200]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  186.328567][ T4200]  kthread+0x436/0x520
[  186.332633][ T4200]  ? rcu_lock_release+0x20/0x20
[  186.337483][ T4200]  ? kthread_blkcg+0xd0/0xd0
[  186.342084][ T4200]  ret_from_fork+0x1f/0x30
[  186.346498][ T4200]  </TASK>
[  186.355465][ T4200] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  186.371265][ T4200] Bluetooth: hci2: failed to register connection device
[  186.404685][ T4354] usb 3-1: New USB device found, idVendor=13d8, idProduct=0011, bcdDevice=d0.62
[  186.431545][ T4354] usb 3-1: New USB device strings: Mfr=1, Product=6, SerialNumber=3
[  186.443380][ T4354] usb 3-1: Product: syz
[  186.448755][ T4354] usb 3-1: Manufacturer: syz
[  186.456199][ T4354] usb 3-1: SerialNumber: syz
[  186.734004][ T4354] usb 3-1: config 0 descriptor??
[  186.809530][ T4354] usb 3-1: selecting invalid altsetting 1
[  186.834526][ T4354] comedi comedi5: could not switch to alternate setting 1
[  186.841684][ T4354] usbduxfast 3-1:0.0: driver 'usbduxfast' failed to auto-configure device.
[  187.063761][ T5972] netlink: 40 bytes leftover after parsing attributes in process `syz.1.500'.
[  187.073315][ T5972] netlink: 32 bytes leftover after parsing attributes in process `syz.1.500'.
[  187.720983][ T1111] usb 3-1: USB disconnect, device number 7
[  192.070153][ T4199] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  192.080711][ T4199] CPU: 0 PID: 4199 Comm: kworker/u5:7 Not tainted syzkaller #0
[  192.088369][ T4199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  192.098438][ T4199] Workqueue: hci2 hci_rx_work
[  192.103154][ T4199] Call Trace:
[  192.106449][ T4199]  <TASK>
[  192.109383][ T4199]  dump_stack_lvl+0x168/0x230
[  192.114128][ T4199]  ? show_regs_print_info+0x20/0x20
[  192.119340][ T4199]  ? load_image+0x3b0/0x3b0
[  192.123974][ T4199]  sysfs_create_dir_ns+0x252/0x280
[  192.129106][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  192.134155][ T4199]  ? sysfs_warn_dup+0xa0/0xa0
[  192.138846][ T4199]  ? le_conn_complete_evt+0xcbc/0x1590
[  192.144369][ T4199]  ? hci_event_packet+0xe05/0x12f0
[  192.149503][ T4199]  ? process_one_work+0x863/0x1000
[  192.154633][ T4199]  ? do_raw_spin_unlock+0x11d/0x230
[  192.159932][ T4199]  kobject_add_internal+0x662/0xd00
[  192.165154][ T4199]  kobject_add+0x152/0x210
[  192.169710][ T4199]  ? kobject_init+0x1d0/0x1d0
[  192.174411][ T4199]  ? klist_children_get+0x50/0x50
[  192.179472][ T4199]  ? get_device_parent+0x121/0x3f0
[  192.184801][ T4199]  device_add+0x483/0xfb0
[  192.189165][ T4199]  hci_conn_add_sysfs+0xd1/0x1e0
[  192.194124][ T4199]  le_conn_complete_evt+0xcbc/0x1590
[  192.199436][ T4199]  ? cs_le_create_conn+0x5e0/0x5e0
[  192.204571][ T4199]  ? __mutex_trylock_common+0x14f/0x250
[  192.210166][ T4199]  hci_le_meta_evt+0x289/0x3b80
[  192.215032][ T4199]  ? hci_event_packet+0x36d/0x12f0
[  192.220253][ T4199]  ? hci_event_packet+0x2e2/0x12f0
[  192.225386][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  192.230433][ T4199]  ? mark_lock+0x94/0x320
[  192.234829][ T4199]  ? hci_remote_host_features_evt+0x280/0x280
[  192.241114][ T4199]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  192.247294][ T4199]  ? mutex_unlock+0x10/0x10
[  192.251815][ T4199]  ? asm_sysvec_call_function_single+0x16/0x20
[  192.257991][ T4199]  ? asm_sysvec_call_function_single+0x16/0x20
[  192.264165][ T4199]  hci_event_packet+0xe05/0x12f0
[  192.269123][ T4199]  ? rcu_lock_release+0x20/0x20
[  192.273991][ T4199]  ? hci_send_to_monitor+0x9c/0x4a0
[  192.279200][ T4199]  hci_rx_work+0x255/0xa10
[  192.283648][ T4199]  process_one_work+0x863/0x1000
[  192.288630][ T4199]  ? worker_detach_from_pool+0x240/0x240
[  192.294288][ T4199]  ? lockdep_hardirqs_off+0x70/0x100
[  192.299590][ T4199]  ? _raw_spin_lock_irq+0xab/0xe0
[  192.304636][ T4199]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  192.310045][ T4199]  ? wq_worker_running+0x97/0x170
[  192.315083][ T4199]  worker_thread+0xaa8/0x12a0
[  192.319795][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  192.325021][ T4199]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  192.330940][ T4199]  kthread+0x436/0x520
[  192.335038][ T4199]  ? rcu_lock_release+0x20/0x20
[  192.339984][ T4199]  ? kthread_blkcg+0xd0/0xd0
[  192.344585][ T4199]  ret_from_fork+0x1f/0x30
[  192.349041][ T4199]  </TASK>
[  192.428476][ T4199] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  192.442000][ T4199] Bluetooth: hci2: failed to register connection device
[  192.560819][ T6011] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  192.579220][ T6011] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  192.587856][ T6011] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  192.815988][ T6011] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  193.144830][ T4917] Bluetooth: hci2: command 0x0406 tx timeout
[  193.258015][  T150] block nbd4: Attempted send on invalid socket
[  193.264489][  T150] blk_update_request: I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  193.276786][ T6017] MINIX-fs: unable to read superblock
[  194.156517][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  194.162868][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  194.323123][ T6025] netlink: 40 bytes leftover after parsing attributes in process `syz.2.512'.
[  194.333282][ T6025] netlink: 32 bytes leftover after parsing attributes in process `syz.2.512'.
[  197.281598][ T4199] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  197.291834][ T4199] CPU: 1 PID: 4199 Comm: kworker/u5:7 Not tainted syzkaller #0
[  197.299455][ T4199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  197.309522][ T4199] Workqueue: hci1 hci_rx_work
[  197.314218][ T4199] Call Trace:
[  197.317508][ T4199]  <TASK>
[  197.320449][ T4199]  dump_stack_lvl+0x168/0x230
[  197.325165][ T4199]  ? show_regs_print_info+0x20/0x20
[  197.330392][ T4199]  ? load_image+0x3b0/0x3b0
[  197.334933][ T4199]  sysfs_create_dir_ns+0x252/0x280
[  197.340065][ T4199]  ? sysfs_warn_dup+0xa0/0xa0
[  197.344775][ T4199]  kobject_add_internal+0x662/0xd00
[  197.350003][ T4199]  kobject_add+0x152/0x210
[  197.354446][ T4199]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  197.360182][ T4199]  ? kobject_init+0x1d0/0x1d0
[  197.364852][ T4199]  ? get_device_parent+0x8b/0x3f0
[  197.369874][ T4199]  ? get_device_parent+0x121/0x3f0
[  197.374976][ T4199]  device_add+0x483/0xfb0
[  197.379299][ T4199]  hci_conn_add_sysfs+0xd1/0x1e0
[  197.384322][ T4199]  le_conn_complete_evt+0xcbc/0x1590
[  197.389608][ T4199]  ? cs_le_create_conn+0x5e0/0x5e0
[  197.394794][ T4199]  ? mark_lock+0x94/0x320
[  197.399114][ T4199]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  197.405178][ T4199]  hci_le_meta_evt+0x289/0x3b80
[  197.410103][ T4199]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  197.415725][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  197.420912][ T4199]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  197.426536][ T4199]  ? hci_remote_host_features_evt+0x280/0x280
[  197.432588][ T4199]  ? __mutex_unlock_slowpath+0x174/0x6a0
[  197.438208][ T4199]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  197.443835][ T4199]  ? mark_lock+0x94/0x320
[  197.448157][ T4199]  ? mutex_unlock+0x10/0x10
[  197.452665][ T4199]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  197.458724][ T4199]  ? lock_chain_count+0x20/0x20
[  197.463581][ T4199]  ? __rwlock_init+0x140/0x140
[  197.468461][ T4199]  hci_event_packet+0xe05/0x12f0
[  197.473405][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  197.478606][ T4199]  ? rcu_lock_release+0x20/0x20
[  197.483450][ T4199]  ? hci_send_to_monitor+0x9c/0x4a0
[  197.488636][ T4199]  hci_rx_work+0x255/0xa10
[  197.493052][ T4199]  process_one_work+0x863/0x1000
[  197.497988][ T4199]  ? worker_detach_from_pool+0x240/0x240
[  197.503601][ T4199]  ? lockdep_hardirqs_off+0x70/0x100
[  197.508878][ T4199]  ? _raw_spin_lock_irq+0xab/0xe0
[  197.513885][ T4199]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  197.519261][ T4199]  ? wq_worker_running+0x97/0x170
[  197.524416][ T4199]  worker_thread+0xaa8/0x12a0
[  197.529120][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  197.534335][ T4199]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  197.540245][ T4199]  kthread+0x436/0x520
[  197.544305][ T4199]  ? rcu_lock_release+0x20/0x20
[  197.549144][ T4199]  ? kthread_blkcg+0xd0/0xd0
[  197.553716][ T4199]  ret_from_fork+0x1f/0x30
[  197.558129][ T4199]  </TASK>
[  197.570506][ T4199] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  197.586628][ T4199] Bluetooth: hci1: failed to register connection device
[  197.713206][ T4917] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  197.953046][ T4917] usb 4-1: Using ep0 maxpacket: 32
[  197.978630][ T6075] netlink: 40 bytes leftover after parsing attributes in process `syz.4.526'.
[  197.988124][ T6075] netlink: 32 bytes leftover after parsing attributes in process `syz.4.526'.
[  198.760987][  T263] block nbd1: Attempted send on invalid socket
[  198.767305][  T263] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  198.783915][ T6074] MINIX-fs: unable to read superblock
[  199.022150][ T1108] Bluetooth: hci2: command 0x0406 tx timeout
[  199.622561][ T4917] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  199.638148][ T4917] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  199.655481][ T4917] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  199.681667][ T4917] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.691635][ T4917] usb 4-1: config 0 descriptor??
[  199.744420][ T4917] hub 4-1:0.0: USB hub found
[  200.033255][ T4917] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  200.163115][ T4917] usbhid 4-1:0.0: can't add hid device: -71
[  200.176718][ T4917] usbhid: probe of 4-1:0.0 failed with error -71
[  200.251713][ T6103] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  200.265094][ T6103] Error parsing options; rc = [-22]
[  200.943941][ T4917] usb 4-1: USB disconnect, device number 8
[  201.329700][ T4199] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  201.350470][ T4199] CPU: 0 PID: 4199 Comm: kworker/u5:7 Not tainted syzkaller #0
[  201.358053][ T4199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  201.368122][ T4199] Workqueue: hci4 hci_rx_work
[  201.372836][ T4199] Call Trace:
[  201.376133][ T4199]  <TASK>
[  201.379071][ T4199]  dump_stack_lvl+0x168/0x230
[  201.383766][ T4199]  ? asm_sysvec_call_function_single+0x16/0x20
[  201.389944][ T4199]  ? show_regs_print_info+0x20/0x20
[  201.395159][ T4199]  ? asm_sysvec_call_function_single+0x16/0x20
[  201.401341][ T4199]  sysfs_create_dir_ns+0x252/0x280
[  201.406474][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  201.411514][ T4199]  ? sysfs_warn_dup+0xa0/0xa0
[  201.416201][ T4199]  ? le_conn_complete_evt+0xcbc/0x1590
[  201.421676][ T4199]  ? hci_event_packet+0xe05/0x12f0
[  201.426815][ T4199]  ? process_one_work+0x863/0x1000
[  201.431949][ T4199]  ? do_raw_spin_unlock+0x11d/0x230
[  201.437255][ T4199]  kobject_add_internal+0x662/0xd00
[  201.442484][ T4199]  kobject_add+0x152/0x210
[  201.446937][ T4199]  ? kobject_init+0x1d0/0x1d0
[  201.451649][ T4199]  ? klist_children_get+0x50/0x50
[  201.456695][ T4199]  ? get_device_parent+0x121/0x3f0
[  201.461826][ T4199]  device_add+0x483/0xfb0
[  201.466180][ T4199]  hci_conn_add_sysfs+0xd1/0x1e0
[  201.471151][ T4199]  le_conn_complete_evt+0xcbc/0x1590
[  201.476630][ T4199]  ? cs_le_create_conn+0x5e0/0x5e0
[  201.481773][ T4199]  ? __mutex_trylock_common+0x14f/0x250
[  201.487337][ T4199]  hci_le_meta_evt+0x289/0x3b80
[  201.492205][ T4199]  ? hci_event_packet+0x36d/0x12f0
[  201.497317][ T4199]  ? hci_event_packet+0x2e2/0x12f0
[  201.502514][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  201.507537][ T4199]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  201.513518][ T4199]  ? lock_chain_count+0x20/0x20
[  201.518380][ T4199]  ? hci_remote_host_features_evt+0x280/0x280
[  201.524437][ T4199]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  201.530062][ T4199]  ? mutex_unlock+0x10/0x10
[  201.534550][ T4199]  ? asm_sysvec_call_function_single+0x16/0x20
[  201.540704][ T4199]  hci_event_packet+0xe05/0x12f0
[  201.545640][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  201.550830][ T4199]  ? rcu_lock_release+0x20/0x20
[  201.555771][ T4199]  ? hci_send_to_monitor+0x9c/0x4a0
[  201.560960][ T4199]  hci_rx_work+0x255/0xa10
[  201.565434][ T4199]  process_one_work+0x863/0x1000
[  201.570419][ T4199]  ? worker_detach_from_pool+0x240/0x240
[  201.576052][ T4199]  ? lockdep_hardirqs_off+0x70/0x100
[  201.581332][ T4199]  ? _raw_spin_lock_irq+0xab/0xe0
[  201.586340][ T4199]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  201.591693][ T4199]  ? wq_worker_running+0x97/0x170
[  201.596702][ T4199]  worker_thread+0xaa8/0x12a0
[  201.601379][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  201.606563][ T4199]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  201.612446][ T4199]  kthread+0x436/0x520
[  201.616505][ T4199]  ? rcu_lock_release+0x20/0x20
[  201.621336][ T4199]  ? kthread_blkcg+0xd0/0xd0
[  201.625908][ T4199]  ret_from_fork+0x1f/0x30
[  201.630348][ T4199]  </TASK>
[  201.633524][    C0] vkms_vblank_simulate: vblank timer overrun
[  201.642087][ T4199] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  201.655551][ T4199] Bluetooth: hci4: failed to register connection device
[  202.554911][  T150] block nbd4: Attempted send on invalid socket
[  202.561288][  T150] blk_update_request: I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.574101][ T6127] MINIX-fs: unable to read superblock
[  202.919914][ T6135] netlink: 40 bytes leftover after parsing attributes in process `syz.0.545'.
[  202.929378][ T6135] netlink: 32 bytes leftover after parsing attributes in process `syz.0.545'.
[  203.604101][ T6139] netlink: 40 bytes leftover after parsing attributes in process `syz.2.544'.
[  203.613822][ T6139] netlink: 32 bytes leftover after parsing attributes in process `syz.2.544'.
[  203.911516][   T13] Bluetooth: hci1: command 0x0406 tx timeout
[  208.211350][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  208.222884][ T4200] CPU: 0 PID: 4200 Comm: kworker/u5:8 Not tainted syzkaller #0
[  208.230467][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  208.240628][ T4200] Workqueue: hci1 hci_rx_work
[  208.245342][ T4200] Call Trace:
[  208.248639][ T4200]  <TASK>
[  208.249262][   T24] Bluetooth: hci4: command 0x0406 tx timeout
[  208.251578][ T4200]  dump_stack_lvl+0x168/0x230
[  208.262231][ T4200]  ? show_regs_print_info+0x20/0x20
[  208.267453][ T4200]  ? load_image+0x3b0/0x3b0
[  208.272172][ T4200]  sysfs_create_dir_ns+0x252/0x280
[  208.277303][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  208.282381][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[  208.287078][ T4200]  ? le_conn_complete_evt+0xcbc/0x1590
[  208.292557][ T4200]  ? hci_event_packet+0xe05/0x12f0
[  208.297682][ T4200]  ? process_one_work+0x863/0x1000
[  208.302808][ T4200]  ? do_raw_spin_unlock+0x11d/0x230
[  208.308028][ T4200]  kobject_add_internal+0x662/0xd00
[  208.313246][ T4200]  kobject_add+0x152/0x210
[  208.317655][ T4200]  ? kobject_init+0x1d0/0x1d0
[  208.322317][ T4200]  ? klist_children_get+0x50/0x50
[  208.327336][ T4200]  ? get_device_parent+0x121/0x3f0
[  208.332455][ T4200]  device_add+0x483/0xfb0
[  208.336781][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[  208.341707][ T4200]  le_conn_complete_evt+0xcbc/0x1590
[  208.347181][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[  208.352284][ T4200]  ? __mutex_trylock_common+0x14f/0x250
[  208.357834][ T4200]  hci_le_meta_evt+0x289/0x3b80
[  208.362670][ T4200]  ? hci_event_packet+0x36d/0x12f0
[  208.367763][ T4200]  ? hci_event_packet+0x2e2/0x12f0
[  208.372943][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  208.378004][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[  208.384061][ T4200]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  208.389691][ T4200]  ? mark_lock+0x94/0x320
[  208.394007][ T4200]  ? mutex_unlock+0x10/0x10
[  208.398584][ T4200]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  208.404594][ T4200]  ? lock_chain_count+0x20/0x20
[  208.409445][ T4200]  ? __rwlock_init+0x140/0x140
[  208.414208][ T4200]  hci_event_packet+0xe05/0x12f0
[  208.419130][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  208.424322][ T4200]  ? rcu_lock_release+0x20/0x20
[  208.429177][ T4200]  ? hci_send_to_monitor+0x9c/0x4a0
[  208.434358][ T4200]  hci_rx_work+0x255/0xa10
[  208.438775][ T4200]  process_one_work+0x863/0x1000
[  208.443736][ T4200]  ? worker_detach_from_pool+0x240/0x240
[  208.449350][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[  208.454615][ T4200]  ? _raw_spin_lock_irq+0xab/0xe0
[  208.459619][ T4200]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  208.464968][ T4200]  ? wq_worker_running+0x97/0x170
[  208.469972][ T4200]  worker_thread+0xaa8/0x12a0
[  208.474637][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  208.479935][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  208.485227][ T4200]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  208.491134][ T4200]  kthread+0x436/0x520
[  208.495230][ T4200]  ? rcu_lock_release+0x20/0x20
[  208.500062][ T4200]  ? kthread_blkcg+0xd0/0xd0
[  208.504634][ T4200]  ret_from_fork+0x1f/0x30
[  208.509051][ T4200]  </TASK>
[  208.512263][    C0] vkms_vblank_simulate: vblank timer overrun
[  208.535868][ T4200] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  208.549279][ T4200] Bluetooth: hci1: failed to register connection device
[  208.624315][ T6182] netlink: 40 bytes leftover after parsing attributes in process `syz.4.558'.
[  208.633408][ T6182] netlink: 32 bytes leftover after parsing attributes in process `syz.4.558'.
[  211.104141][  T263] block nbd2: Attempted send on invalid socket
[  211.110472][  T263] blk_update_request: I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  211.121702][ T6209] MINIX-fs: unable to read superblock
[  212.786059][ T4199] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  212.913086][ T4199] CPU: 1 PID: 4199 Comm: kworker/u5:7 Not tainted syzkaller #0
[  212.920651][ T4199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  212.930691][ T4199] Workqueue: hci4 hci_rx_work
[  212.935361][ T4199] Call Trace:
[  212.938619][ T4199]  <TASK>
[  212.941526][ T4199]  dump_stack_lvl+0x168/0x230
[  212.946187][ T4199]  ? show_regs_print_info+0x20/0x20
[  212.951377][ T4199]  ? load_image+0x3b0/0x3b0
[  212.955867][ T4199]  sysfs_create_dir_ns+0x252/0x280
[  212.961044][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  212.966059][ T4199]  ? sysfs_warn_dup+0xa0/0xa0
[  212.970719][ T4199]  ? le_conn_complete_evt+0xcbc/0x1590
[  212.976277][ T4199]  ? hci_event_packet+0xe05/0x12f0
[  212.981367][ T4199]  ? process_one_work+0x863/0x1000
[  212.986488][ T4199]  ? do_raw_spin_unlock+0x11d/0x230
[  212.991669][ T4199]  kobject_add_internal+0x662/0xd00
[  212.996858][ T4199]  kobject_add+0x152/0x210
[  213.001257][ T4199]  ? kobject_init+0x1d0/0x1d0
[  213.005913][ T4199]  ? klist_children_get+0x50/0x50
[  213.010912][ T4199]  ? get_device_parent+0x121/0x3f0
[  213.016005][ T4199]  device_add+0x483/0xfb0
[  213.020327][ T4199]  hci_conn_add_sysfs+0xd1/0x1e0
[  213.025244][ T4199]  le_conn_complete_evt+0xcbc/0x1590
[  213.030514][ T4199]  ? cs_le_create_conn+0x5e0/0x5e0
[  213.035624][ T4199]  ? __mutex_trylock_common+0x14f/0x250
[  213.041153][ T4199]  hci_le_meta_evt+0x289/0x3b80
[  213.045981][ T4199]  ? hci_event_packet+0x36d/0x12f0
[  213.051073][ T4199]  ? hci_event_packet+0x2e2/0x12f0
[  213.056160][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  213.061169][ T4199]  ? hci_remote_host_features_evt+0x280/0x280
[  213.067300][ T4199]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  213.072914][ T4199]  ? mark_lock+0x94/0x320
[  213.077219][ T4199]  ? mutex_unlock+0x10/0x10
[  213.081702][ T4199]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  213.087663][ T4199]  ? lock_chain_count+0x20/0x20
[  213.092490][ T4199]  ? __rwlock_init+0x140/0x140
[  213.097231][ T4199]  hci_event_packet+0xe05/0x12f0
[  213.102162][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  213.107455][ T4199]  ? rcu_lock_release+0x20/0x20
[  213.112289][ T4199]  ? hci_send_to_monitor+0x9c/0x4a0
[  213.117469][ T4199]  hci_rx_work+0x255/0xa10
[  213.121872][ T4199]  process_one_work+0x863/0x1000
[  213.126796][ T4199]  ? worker_detach_from_pool+0x240/0x240
[  213.132405][ T4199]  ? lockdep_hardirqs_off+0x70/0x100
[  213.137671][ T4199]  ? _raw_spin_lock_irq+0xab/0xe0
[  213.142676][ T4199]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  213.148023][ T4199]  ? wq_worker_running+0x97/0x170
[  213.153025][ T4199]  worker_thread+0xaa8/0x12a0
[  213.157692][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  213.162869][ T4199]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  213.168748][ T4199]  kthread+0x436/0x520
[  213.172797][ T4199]  ? rcu_lock_release+0x20/0x20
[  213.177624][ T4199]  ? kthread_blkcg+0xd0/0xd0
[  213.182193][ T4199]  ret_from_fork+0x1f/0x30
[  213.186616][ T4199]  </TASK>
[  213.209926][ T4199] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  213.223681][ T4199] Bluetooth: hci4: failed to register connection device
[  217.360689][ T6254] netlink: 40 bytes leftover after parsing attributes in process `syz.2.577'.
[  217.369814][ T6254] netlink: 32 bytes leftover after parsing attributes in process `syz.2.577'.
[  218.344465][  T263] block nbd1: Attempted send on invalid socket
[  218.350936][  T263] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  218.363177][ T6268] MINIX-fs: unable to read superblock
[  219.503942][ T6285] netlink: 40 bytes leftover after parsing attributes in process `syz.2.587'.
[  219.514147][ T6285] netlink: 32 bytes leftover after parsing attributes in process `syz.2.587'.
[  221.370041][ T6307] netlink: 40 bytes leftover after parsing attributes in process `syz.4.593'.
[  221.379146][ T6307] netlink: 32 bytes leftover after parsing attributes in process `syz.4.593'.
[  223.441451][ T6332] netlink: 40 bytes leftover after parsing attributes in process `syz.2.599'.
[  223.451390][ T6332] netlink: 32 bytes leftover after parsing attributes in process `syz.2.599'.
[  226.081520][  T150] block nbd1: Attempted send on invalid socket
[  226.088480][  T150] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  226.100503][ T6352] MINIX-fs: unable to read superblock
[  227.107329][ T4199] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  227.391464][ T4199] CPU: 0 PID: 4199 Comm: kworker/u5:7 Not tainted syzkaller #0
[  227.399053][ T4199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  227.409120][ T4199] Workqueue: hci1 hci_rx_work
[  227.413923][ T4199] Call Trace:
[  227.417214][ T4199]  <TASK>
[  227.420163][ T4199]  dump_stack_lvl+0x168/0x230
[  227.424860][ T4199]  ? show_regs_print_info+0x20/0x20
[  227.430192][ T4199]  ? load_image+0x3b0/0x3b0
[  227.434699][ T4199]  sysfs_create_dir_ns+0x252/0x280
[  227.439799][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  227.444818][ T4199]  ? sysfs_warn_dup+0xa0/0xa0
[  227.449492][ T4199]  ? le_conn_complete_evt+0xcbc/0x1590
[  227.454945][ T4199]  ? hci_event_packet+0xe05/0x12f0
[  227.460080][ T4199]  ? process_one_work+0x863/0x1000
[  227.465177][ T4199]  ? do_raw_spin_unlock+0x11d/0x230
[  227.470360][ T4199]  kobject_add_internal+0x662/0xd00
[  227.475650][ T4199]  kobject_add+0x152/0x210
[  227.480158][ T4199]  ? kobject_init+0x1d0/0x1d0
[  227.484841][ T4199]  ? klist_children_get+0x50/0x50
[  227.489868][ T4199]  ? get_device_parent+0x121/0x3f0
[  227.494972][ T4199]  device_add+0x483/0xfb0
[  227.499303][ T4199]  hci_conn_add_sysfs+0xd1/0x1e0
[  227.504256][ T4199]  le_conn_complete_evt+0xcbc/0x1590
[  227.509568][ T4199]  ? cs_le_create_conn+0x5e0/0x5e0
[  227.514706][ T4199]  ? __mutex_trylock_common+0x14f/0x250
[  227.520455][ T4199]  hci_le_meta_evt+0x289/0x3b80
[  227.525324][ T4199]  ? hci_event_packet+0x36d/0x12f0
[  227.530452][ T4199]  ? hci_event_packet+0x2e2/0x12f0
[  227.536361][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  227.541497][ T4199]  ? hci_remote_host_features_evt+0x280/0x280
[  227.547597][ T4199]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  227.553338][ T4199]  ? mark_lock+0x94/0x320
[  227.557686][ T4199]  ? mutex_unlock+0x10/0x10
[  227.562175][ T4199]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  227.568148][ T4199]  ? lock_chain_count+0x20/0x20
[  227.573090][ T4199]  ? __rwlock_init+0x140/0x140
[  227.577877][ T4199]  hci_event_packet+0xe05/0x12f0
[  227.582808][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  227.588118][ T4199]  ? rcu_lock_release+0x20/0x20
[  227.593145][ T4199]  ? hci_send_to_monitor+0x9c/0x4a0
[  227.598442][ T4199]  hci_rx_work+0x255/0xa10
[  227.602960][ T4199]  ? process_one_work+0x791/0x1000
[  227.608163][ T4199]  process_one_work+0x863/0x1000
[  227.613098][ T4199]  ? worker_detach_from_pool+0x240/0x240
[  227.618713][ T4199]  ? lockdep_hardirqs_off+0x70/0x100
[  227.623987][ T4199]  ? _raw_spin_lock_irq+0xab/0xe0
[  227.629011][ T4199]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  227.634388][ T4199]  ? wq_worker_running+0x97/0x170
[  227.639646][ T4199]  worker_thread+0xaa8/0x12a0
[  227.644345][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  227.649805][ T4199]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  227.655981][ T4199]  kthread+0x436/0x520
[  227.660307][ T4199]  ? rcu_lock_release+0x20/0x20
[  227.665252][ T4199]  ? kthread_blkcg+0xd0/0xd0
[  227.669849][ T4199]  ret_from_fork+0x1f/0x30
[  227.674280][ T4199]  </TASK>
[  227.677398][    C0] vkms_vblank_simulate: vblank timer overrun
[  227.742120][ T4199] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  227.756516][ T4199] Bluetooth: hci1: failed to register connection device
[  228.610773][ T4199] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  228.630209][ T4199] CPU: 0 PID: 4199 Comm: kworker/u5:7 Not tainted syzkaller #0
[  228.637805][ T4199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  228.647980][ T4199] Workqueue: hci1 hci_rx_work
[  228.653135][ T4199] Call Trace:
[  228.656426][ T4199]  <TASK>
[  228.659375][ T4199]  dump_stack_lvl+0x168/0x230
[  228.664077][ T4199]  ? show_regs_print_info+0x20/0x20
[  228.669299][ T4199]  ? load_image+0x3b0/0x3b0
[  228.673847][ T4199]  sysfs_create_dir_ns+0x252/0x280
[  228.678983][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  228.684030][ T4199]  ? sysfs_warn_dup+0xa0/0xa0
[  228.688720][ T4199]  ? le_conn_complete_evt+0xcbc/0x1590
[  228.694194][ T4199]  ? hci_event_packet+0xe05/0x12f0
[  228.699326][ T4199]  ? process_one_work+0x863/0x1000
[  228.704460][ T4199]  ? do_raw_spin_unlock+0x11d/0x230
[  228.710390][ T4199]  kobject_add_internal+0x662/0xd00
[  228.715701][ T4199]  kobject_add+0x152/0x210
[  228.720115][ T4199]  ? kobject_init+0x1d0/0x1d0
[  228.724784][ T4199]  ? klist_children_get+0x50/0x50
[  228.729806][ T4199]  ? get_device_parent+0x121/0x3f0
[  228.734926][ T4199]  device_add+0x483/0xfb0
[  228.739297][ T4199]  hci_conn_add_sysfs+0xd1/0x1e0
[  228.744240][ T4199]  le_conn_complete_evt+0xcbc/0x1590
[  228.749522][ T4199]  ? cs_le_create_conn+0x5e0/0x5e0
[  228.753966][ T6383] netlink: 40 bytes leftover after parsing attributes in process `syz.3.611'.
[  228.754632][ T4199]  ? __mutex_trylock_common+0x14f/0x250
[  228.754666][ T4199]  hci_le_meta_evt+0x289/0x3b80
[  228.763784][ T6383] netlink: 32 bytes leftover after parsing attributes in process `syz.3.611'.
[  228.769145][ T4199]  ? hci_event_packet+0x36d/0x12f0
[  228.769186][ T4199]  ? hci_event_packet+0x2e2/0x12f0
[  228.769207][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  228.769235][ T4199]  ? hci_remote_host_features_evt+0x280/0x280
[  228.804244][ T4199]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  228.809897][ T4199]  ? mark_lock+0x94/0x320
[  228.814331][ T4199]  ? mutex_unlock+0x10/0x10
[  228.818843][ T4199]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  228.824828][ T4199]  ? lock_chain_count+0x20/0x20
[  228.829670][ T4199]  ? __rwlock_init+0x140/0x140
[  228.834533][ T4199]  hci_event_packet+0xe05/0x12f0
[  228.839490][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  228.844695][ T4199]  ? rcu_lock_release+0x20/0x20
[  228.849545][ T4199]  ? hci_send_to_monitor+0x9c/0x4a0
[  228.854745][ T4199]  hci_rx_work+0x255/0xa10
[  228.859182][ T4199]  process_one_work+0x863/0x1000
[  228.864133][ T4199]  ? worker_detach_from_pool+0x240/0x240
[  228.869855][ T4199]  ? lockdep_hardirqs_off+0x70/0x100
[  228.875259][ T4199]  ? _raw_spin_lock_irq+0xab/0xe0
[  228.880292][ T4199]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  228.885687][ T4199]  ? wq_worker_running+0x97/0x170
[  228.890765][ T4199]  worker_thread+0xaa8/0x12a0
[  228.895459][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  228.900679][ T4199]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  228.906707][ T4199]  kthread+0x436/0x520
[  228.910778][ T4199]  ? rcu_lock_release+0x20/0x20
[  228.915707][ T4199]  ? kthread_blkcg+0xd0/0xd0
[  228.920294][ T4199]  ret_from_fork+0x1f/0x30
[  228.924730][ T4199]  </TASK>
[  228.927862][    C0] vkms_vblank_simulate: vblank timer overrun
[  228.934557][ T4199] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  228.954227][ T4199] Bluetooth: hci1: failed to register connection device
[  232.524503][  T150] block nbd1: Attempted send on invalid socket
[  232.530924][  T150] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  232.542686][ T6421] MINIX-fs: unable to read superblock
[  234.930548][ T6438] netlink: 40 bytes leftover after parsing attributes in process `syz.1.628'.
[  234.939599][ T6438] netlink: 32 bytes leftover after parsing attributes in process `syz.1.628'.
[  235.014550][ T6440] netlink: 40 bytes leftover after parsing attributes in process `syz.3.629'.
[  235.023855][ T6440] netlink: 32 bytes leftover after parsing attributes in process `syz.3.629'.
[  237.885136][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  237.897438][ T4200] CPU: 1 PID: 4200 Comm: kworker/u5:8 Not tainted syzkaller #0
[  237.904997][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  237.915074][ T4200] Workqueue: hci2 hci_rx_work
[  237.919759][ T4200] Call Trace:
[  237.923034][ T4200]  <TASK>
[  237.925960][ T4200]  dump_stack_lvl+0x168/0x230
[  237.930637][ T4200]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  237.936270][ T4200]  ? show_regs_print_info+0x20/0x20
[  237.941495][ T4200]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  237.947161][ T4200]  sysfs_create_dir_ns+0x252/0x280
[  237.952289][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  237.957340][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[  237.962046][ T4200]  kobject_add_internal+0x662/0xd00
[  237.967257][ T4200]  kobject_add+0x152/0x210
[  237.971775][ T4200]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  237.977519][ T4200]  ? kobject_init+0x1d0/0x1d0
[  237.982228][ T4200]  device_add+0x483/0xfb0
[  237.986581][ T4200]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  237.992245][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[  237.997207][ T4200]  le_conn_complete_evt+0xcbc/0x1590
[  238.002524][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[  238.007640][ T4200]  ? preempt_schedule_common+0xa5/0xd0
[  238.013102][ T4200]  ? mark_lock+0x94/0x320
[  238.017552][ T4200]  hci_le_meta_evt+0x289/0x3b80
[  238.022533][ T4200]  ? mark_lock+0x94/0x320
[  238.026886][ T4200]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  238.032909][ T4200]  ? lock_chain_count+0x20/0x20
[  238.037864][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[  238.044127][ T4200]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  238.049880][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  238.055085][ T4200]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  238.060723][ T4200]  ? hci_event_packet+0x5cf/0x12f0
[  238.065858][ T4200]  hci_event_packet+0xe05/0x12f0
[  238.070826][ T4200]  ? rcu_lock_release+0x20/0x20
[  238.075708][ T4200]  hci_rx_work+0x255/0xa10
[  238.080151][ T4200]  process_one_work+0x863/0x1000
[  238.085222][ T4200]  ? worker_detach_from_pool+0x240/0x240
[  238.090880][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[  238.096194][ T4200]  ? _raw_spin_lock_irq+0xab/0xe0
[  238.101437][ T4200]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  238.106827][ T4200]  ? wq_worker_running+0x97/0x170
[  238.111866][ T4200]  worker_thread+0xaa8/0x12a0
[  238.116568][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  238.121838][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  238.127059][ T4200]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  238.133080][ T4200]  kthread+0x436/0x520
[  238.137162][ T4200]  ? rcu_lock_release+0x20/0x20
[  238.142023][ T4200]  ? kthread_blkcg+0xd0/0xd0
[  238.146739][ T4200]  ret_from_fork+0x1f/0x30
[  238.151187][ T4200]  </TASK>
[  238.154303][    C1] vkms_vblank_simulate: vblank timer overrun
[  238.167426][ T4200] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  238.181363][ T4200] Bluetooth: hci2: failed to register connection device
[  238.895135][  T150] block nbd1: Attempted send on invalid socket
[  238.901894][  T150] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  238.915730][ T6485] MINIX-fs: unable to read superblock
[  239.819139][ T6506] netlink: 40 bytes leftover after parsing attributes in process `syz.2.646'.
[  239.828544][ T6506] netlink: 32 bytes leftover after parsing attributes in process `syz.2.646'.
[  241.716395][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  241.726027][ T4200] CPU: 1 PID: 4200 Comm: kworker/u5:8 Not tainted syzkaller #0
[  241.733579][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  241.743648][ T4200] Workqueue: hci2 hci_rx_work
[  241.748341][ T4200] Call Trace:
[  241.751619][ T4200]  <TASK>
[  241.754551][ T4200]  dump_stack_lvl+0x168/0x230
[  241.759237][ T4200]  ? show_regs_print_info+0x20/0x20
[  241.764617][ T4200]  ? load_image+0x3b0/0x3b0
[  241.769238][ T4200]  sysfs_create_dir_ns+0x252/0x280
[  241.774363][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  241.779393][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[  241.784085][ T4200]  ? le_conn_complete_evt+0xcbc/0x1590
[  241.789560][ T4200]  ? hci_event_packet+0xe05/0x12f0
[  241.794780][ T4200]  ? process_one_work+0x863/0x1000
[  241.799908][ T4200]  ? do_raw_spin_unlock+0x11d/0x230
[  241.805134][ T4200]  kobject_add_internal+0x662/0xd00
[  241.810444][ T4200]  kobject_add+0x152/0x210
[  241.814885][ T4200]  ? kobject_init+0x1d0/0x1d0
[  241.819595][ T4200]  ? klist_children_get+0x50/0x50
[  241.824620][ T4200]  ? get_device_parent+0x121/0x3f0
[  241.829741][ T4200]  device_add+0x483/0xfb0
[  241.834085][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[  241.839025][ T4200]  le_conn_complete_evt+0xcbc/0x1590
[  241.844309][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[  241.849412][ T4200]  ? __mutex_trylock_common+0x14f/0x250
[  241.854949][ T4200]  hci_le_meta_evt+0x289/0x3b80
[  241.859791][ T4200]  ? hci_event_packet+0x36d/0x12f0
[  241.864897][ T4200]  ? hci_event_packet+0x2e2/0x12f0
[  241.870003][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  241.875025][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[  241.881088][ T4200]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  241.886709][ T4200]  ? mark_lock+0x94/0x320
[  241.891028][ T4200]  ? mutex_unlock+0x10/0x10
[  241.895516][ T4200]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  241.901487][ T4200]  ? lock_chain_count+0x20/0x20
[  241.906346][ T4200]  ? __rwlock_init+0x140/0x140
[  241.911204][ T4200]  hci_event_packet+0xe05/0x12f0
[  241.916240][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  241.921621][ T4200]  ? rcu_lock_release+0x20/0x20
[  241.926480][ T4200]  ? hci_send_to_monitor+0x9c/0x4a0
[  241.931663][ T4200]  hci_rx_work+0x255/0xa10
[  241.936076][ T4200]  process_one_work+0x863/0x1000
[  241.941027][ T4200]  ? worker_detach_from_pool+0x240/0x240
[  241.946644][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[  241.951945][ T4200]  ? _raw_spin_lock_irq+0xab/0xe0
[  241.956953][ T4200]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  241.962329][ T4200]  ? wq_worker_running+0x97/0x170
[  241.967358][ T4200]  worker_thread+0xaa8/0x12a0
[  241.972038][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  241.977233][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  241.982418][ T4200]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  241.988317][ T4200]  kthread+0x436/0x520
[  241.992388][ T4200]  ? rcu_lock_release+0x20/0x20
[  241.997229][ T4200]  ? kthread_blkcg+0xd0/0xd0
[  242.001807][ T4200]  ret_from_fork+0x1f/0x30
[  242.006219][ T4200]  </TASK>
[  242.009245][    C1] vkms_vblank_simulate: vblank timer overrun
[  242.017630][ T4200] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  242.031008][ T4200] Bluetooth: hci2: failed to register connection device
[  242.340836][  T263] block nbd4: Attempted send on invalid socket
[  242.347151][  T263] blk_update_request: I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  242.358993][ T6533] MINIX-fs: unable to read superblock
[  244.323094][   T21] Bluetooth: hci2: command 0x0406 tx timeout
[  244.419468][ T6554] netlink: 40 bytes leftover after parsing attributes in process `syz.3.659'.
[  244.428892][ T6554] netlink: 32 bytes leftover after parsing attributes in process `syz.3.659'.
[  248.364029][ T4916] Bluetooth: hci2: command 0x0406 tx timeout
[  248.441464][  T150] block nbd1: Attempted send on invalid socket
[  248.447839][  T150] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  248.460314][ T6594] MINIX-fs: unable to read superblock
[  248.969592][ T6606] netlink: 40 bytes leftover after parsing attributes in process `syz.4.676'.
[  248.978663][ T6606] netlink: 32 bytes leftover after parsing attributes in process `syz.4.676'.
[  249.536808][ T6610] netlink: 40 bytes leftover after parsing attributes in process `syz.2.677'.
[  249.545979][ T6610] netlink: 32 bytes leftover after parsing attributes in process `syz.2.677'.
[  250.695390][ T6620] tipc: Started in network mode
[  250.714055][ T6620] tipc: Node identity ac14140f, cluster identity 4711
[  250.737820][ T6620] tipc: New replicast peer: 255.255.255.255
[  250.754316][ T6620] tipc: Enabled bearer <udp:syz2>, priority 10
[  251.017795][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  251.116807][ T4200] CPU: 1 PID: 4200 Comm: kworker/u5:8 Not tainted syzkaller #0
[  251.124392][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  251.134464][ T4200] Workqueue: hci1 hci_rx_work
[  251.139166][ T4200] Call Trace:
[  251.142455][ T4200]  <TASK>
[  251.145392][ T4200]  dump_stack_lvl+0x168/0x230
[  251.150083][ T4200]  ? show_regs_print_info+0x20/0x20
[  251.155288][ T4200]  ? load_image+0x3b0/0x3b0
[  251.159814][ T4200]  sysfs_create_dir_ns+0x252/0x280
[  251.164932][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  251.169962][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[  251.174643][ T4200]  ? le_conn_complete_evt+0xcbc/0x1590
[  251.180123][ T4200]  ? hci_event_packet+0xe05/0x12f0
[  251.185241][ T4200]  ? process_one_work+0x863/0x1000
[  251.190443][ T4200]  ? do_raw_spin_unlock+0x11d/0x230
[  251.195674][ T4200]  kobject_add_internal+0x662/0xd00
[  251.200897][ T4200]  kobject_add+0x152/0x210
[  251.205329][ T4200]  ? kobject_init+0x1d0/0x1d0
[  251.210015][ T4200]  ? klist_children_get+0x50/0x50
[  251.215043][ T4200]  ? get_device_parent+0x121/0x3f0
[  251.220162][ T4200]  device_add+0x483/0xfb0
[  251.224530][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[  251.229490][ T4200]  le_conn_complete_evt+0xcbc/0x1590
[  251.234797][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[  251.239919][ T4200]  ? __schedule+0x11c3/0x4390
[  251.244603][ T4200]  ? __mutex_trylock_common+0x14f/0x250
[  251.250158][ T4200]  hci_le_meta_evt+0x289/0x3b80
[  251.255019][ T4200]  ? hci_event_packet+0x36d/0x12f0
[  251.260141][ T4200]  ? hci_event_packet+0x2e2/0x12f0
[  251.265266][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  251.270313][ T4200]  ? release_firmware_map_entry+0x190/0x190
[  251.276216][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[  251.282303][ T4200]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  251.287972][ T4200]  ? mark_lock+0x94/0x320
[  251.292605][ T4200]  ? mutex_unlock+0x10/0x10
[  251.297130][ T4200]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  251.303125][ T4200]  ? lock_chain_count+0x20/0x20
[  251.307991][ T4200]  ? __rwlock_init+0x140/0x140
[  251.312773][ T4200]  hci_event_packet+0xe05/0x12f0
[  251.317719][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  251.322928][ T4200]  ? rcu_lock_release+0x20/0x20
[  251.327781][ T4200]  ? lock_acquire+0x1f2/0x3f0
[  251.332557][ T4200]  ? hci_send_to_monitor+0x9c/0x4a0
[  251.337854][ T4200]  hci_rx_work+0x255/0xa10
[  251.342290][ T4200]  process_one_work+0x863/0x1000
[  251.347254][ T4200]  ? worker_detach_from_pool+0x240/0x240
[  251.352894][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[  251.358209][ T4200]  ? _raw_spin_lock_irq+0xab/0xe0
[  251.363262][ T4200]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  251.368644][ T4200]  ? wq_worker_running+0x97/0x170
[  251.373676][ T4200]  worker_thread+0xaa8/0x12a0
[  251.378358][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  251.383576][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  251.388779][ T4200]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  251.394772][ T4200]  kthread+0x436/0x520
[  251.398841][ T4200]  ? rcu_lock_release+0x20/0x20
[  251.403692][ T4200]  ? kthread_blkcg+0xd0/0xd0
[  251.408287][ T4200]  ret_from_fork+0x1f/0x30
[  251.412761][ T4200]  </TASK>
[  251.693710][ T4200] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  251.707420][ T4200] Bluetooth: hci1: failed to register connection device
[  251.890913][ T4916] tipc: Node number set to 2886997007
[  253.588010][  T263] block nbd3: Attempted send on invalid socket
[  253.594565][  T263] blk_update_request: I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  253.606654][ T6647] MINIX-fs: unable to read superblock
[  253.959624][ T6663] netlink: 40 bytes leftover after parsing attributes in process `syz.2.692'.
[  253.959707][ T6663] netlink: 32 bytes leftover after parsing attributes in process `syz.2.692'.
[  254.634874][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  254.645007][ T4200] CPU: 1 PID: 4200 Comm: kworker/u5:8 Not tainted syzkaller #0
[  254.652671][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  254.662840][ T4200] Workqueue: hci1 hci_rx_work
[  254.667550][ T4200] Call Trace:
[  254.670836][ T4200]  <TASK>
[  254.673764][ T4200]  dump_stack_lvl+0x168/0x230
[  254.678461][ T4200]  ? show_regs_print_info+0x20/0x20
[  254.683676][ T4200]  ? load_image+0x3b0/0x3b0
[  254.688211][ T4200]  sysfs_create_dir_ns+0x252/0x280
[  254.693347][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  254.698388][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[  254.703103][ T4200]  kobject_add_internal+0x662/0xd00
[  254.708338][ T4200]  kobject_add+0x152/0x210
[  254.712776][ T4200]  ? kobject_init+0x1d0/0x1d0
[  254.717475][ T4200]  ? klist_children_get+0x50/0x50
[  254.722515][ T4200]  ? get_device_parent+0x121/0x3f0
[  254.727643][ T4200]  device_add+0x483/0xfb0
[  254.732169][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[  254.737128][ T4200]  le_conn_complete_evt+0xcbc/0x1590
[  254.742429][ T4200]  ? release_firmware_map_entry+0x190/0x190
[  254.748352][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[  254.753479][ T4200]  ? preempt_schedule_common+0xa5/0xd0
[  254.758954][ T4200]  ? preempt_schedule+0xa7/0xb0
[  254.763885][ T4200]  ? schedule_preempt_disabled+0x20/0x20
[  254.769530][ T4200]  ? __mutex_trylock_common+0x14f/0x250
[  254.775097][ T4200]  hci_le_meta_evt+0x289/0x3b80
[  254.779963][ T4200]  ? hci_event_packet+0x36d/0x12f0
[  254.785096][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  254.790143][ T4200]  ? release_firmware_map_entry+0x190/0x190
[  254.796065][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[  254.802151][ T4200]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  254.807804][ T4200]  ? mutex_unlock+0x10/0x10
[  254.812412][ T4200]  ? preempt_schedule+0xa7/0xb0
[  254.817277][ T4200]  ? schedule_preempt_disabled+0x20/0x20
[  254.822927][ T4200]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  254.828579][ T4200]  hci_event_packet+0xe05/0x12f0
[  254.833556][ T4200]  ? rcu_lock_release+0x20/0x20
[  254.838779][ T4200]  ? hci_send_to_monitor+0x9c/0x4a0
[  254.844090][ T4200]  hci_rx_work+0x255/0xa10
[  254.848537][ T4200]  process_one_work+0x863/0x1000
[  254.853508][ T4200]  ? worker_detach_from_pool+0x240/0x240
[  254.859156][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[  254.864543][ T4200]  ? _raw_spin_lock_irq+0xab/0xe0
[  254.869676][ T4200]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  254.875070][ T4200]  ? wq_worker_running+0x97/0x170
[  254.880123][ T4200]  worker_thread+0xaa8/0x12a0
[  254.884816][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  254.890037][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  254.895262][ T4200]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  254.901176][ T4200]  kthread+0x436/0x520
[  254.905255][ T4200]  ? rcu_lock_release+0x20/0x20
[  254.910115][ T4200]  ? kthread_blkcg+0xd0/0xd0
[  254.914718][ T4200]  ret_from_fork+0x1f/0x30
[  254.919162][ T4200]  </TASK>
[  255.018008][ T4200] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  255.075943][ T4200] Bluetooth: hci1: failed to register connection device
[  256.274533][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  256.280930][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  256.463890][ T6696] netlink: 'syz.4.700': attribute type 4 has an invalid length.
[  256.559086][ T6701] netlink: 'syz.4.700': attribute type 4 has an invalid length.
[  256.809540][ T6714] netlink: 40 bytes leftover after parsing attributes in process `syz.4.707'.
[  256.819292][ T6714] netlink: 32 bytes leftover after parsing attributes in process `syz.4.707'.
[  256.908815][  T150] block nbd1: Attempted send on invalid socket
[  256.915375][  T150] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  256.927169][ T6718] MINIX-fs: unable to read superblock
[  257.143514][ T6720] netlink: 40 bytes leftover after parsing attributes in process `syz.3.708'.
[  257.152869][ T6720] netlink: 32 bytes leftover after parsing attributes in process `syz.3.708'.
[  257.879372][ T6737] netlink: 4 bytes leftover after parsing attributes in process `syz.0.716'.
[  259.405677][ T6757] netlink: 40 bytes leftover after parsing attributes in process `syz.0.720'.
[  259.414981][ T6757] netlink: 32 bytes leftover after parsing attributes in process `syz.0.720'.
[  259.597602][  T150] block nbd4: Attempted send on invalid socket
[  259.605725][  T150] blk_update_request: I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  259.618377][ T6762] MINIX-fs: unable to read superblock
[  259.798162][ T6764] netlink: 40 bytes leftover after parsing attributes in process `syz.3.724'.
[  259.815527][ T6764] netlink: 32 bytes leftover after parsing attributes in process `syz.3.724'.
[  261.359386][ T4916] Bluetooth: hci1: command 0x0406 tx timeout
[  261.816799][ T6796] netlink: 40 bytes leftover after parsing attributes in process `syz.0.738'.
[  261.826359][ T6796] netlink: 32 bytes leftover after parsing attributes in process `syz.0.738'.
[  262.381088][ T6799] loop3: detected capacity change from 0 to 16
[  262.424894][ T6799] erofs: (device loop3): mounted with root inode @ nid 36.
[  262.652928][ T4199] erofs: (device loop3): z_erofs_lz4_decompress: failed to decompress -26 in[46, 4050] out[9000]
[  262.688692][ T6799] erofs: (device loop3): z_erofs_lz4_decompress: failed to decompress -26 in[46, 4050] out[8192]
[  262.720979][   T26] audit: type=1800 audit(1764015650.844:41): pid=6799 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.737" name="file2" dev="loop3" ino=89 res=0 errno=0
[  262.793203][ T4916] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  263.213411][ T4916] usb 5-1: config 0 has an invalid interface number: 130 but max is 0
[  263.840356][ T4916] usb 5-1: config 0 has no interface number 0
[  263.846646][ T4916] usb 5-1: config 0 interface 130 has no altsetting 0
[  263.944383][ T6825] loop3: detected capacity change from 0 to 1024
[  264.012110][ T6825] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  264.026414][ T6825] EXT4-fs (loop3): orphan cleanup on readonly fs
[  264.034328][ T6825] EXT4-fs error (device loop3): ext4_quota_enable:6417: inode #3: comm syz.3.748: iget: bad i_size value: 1407374883559424
[  264.057105][ T6832] netlink: 40 bytes leftover after parsing attributes in process `syz.0.750'.
[  264.057987][ T6825] EXT4-fs (loop3): Remounting filesystem read-only
[  264.066371][ T6832] netlink: 32 bytes leftover after parsing attributes in process `syz.0.750'.
[  264.082668][ T4916] usb 5-1: New USB device found, idVendor=0ed1, idProduct=6660, bcdDevice= 1.5e
[  264.092074][ T4916] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  264.100481][ T4916] usb 5-1: Product: syz
[  264.107930][ T4916] usb 5-1: Manufacturer: syz
[  264.109027][ T6825] EXT4-fs error (device loop3): ext4_quota_enable:6420: comm syz.3.748: Bad quota inode: 3, type: 0
[  264.112836][ T4916] usb 5-1: SerialNumber: syz
[  264.145363][ T4916] usb 5-1: config 0 descriptor??
[  264.188057][ T6825] EXT4-fs (loop3): Remounting filesystem read-only
[  264.194229][ T4916] usb-storage 5-1:0.130: USB Mass Storage device detected
[  264.196432][ T6825] EXT4-fs warning (device loop3): ext4_enable_quotas:6461: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  264.229243][ T6825] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  264.241200][ T6825] EXT4-fs (loop3): mounted filesystem without journal. Opts: data_err=abort,grpjquota=,minixdf,max_batch_time=0x000000000000000b,abort,noauto_da_alloc,block_validity,errors=remount-ro,block_validity,. Quota mode: writeback.
[  264.242877][ T4916] usb-storage 5-1:0.130: Quirks match for vid 0ed1 pid 6660: 8
[  264.290128][ T6825] EXT4-fs error (device loop3): ext4_search_dir:1549: inode #2: block 16: comm syz.3.748: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  264.326151][ T6825] EXT4-fs error (device loop3): ext4_search_dir:1549: inode #2: block 16: comm syz.3.748: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  264.477369][ T4916] usb 5-1: USB disconnect, device number 8
[  265.768436][ T6853] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  269.111781][ T6877] netlink: 40 bytes leftover after parsing attributes in process `syz.3.764'.
[  269.121606][ T6877] netlink: 32 bytes leftover after parsing attributes in process `syz.3.764'.
[  270.686655][ T6889] loop3: detected capacity change from 0 to 256
[  270.849317][ T6889] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  272.063986][ T4199] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  272.077599][ T6915] netlink: 40 bytes leftover after parsing attributes in process `syz.0.777'.
[  272.086661][ T6915] netlink: 32 bytes leftover after parsing attributes in process `syz.0.777'.
[  272.097578][ T4199] CPU: 1 PID: 4199 Comm: kworker/u5:7 Not tainted syzkaller #0
[  272.105162][ T4199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  272.115223][ T4199] Workqueue: hci4 hci_rx_work
[  272.119917][ T4199] Call Trace:
[  272.123193][ T4199]  <TASK>
[  272.126120][ T4199]  dump_stack_lvl+0x168/0x230
[  272.130809][ T4199]  ? show_regs_print_info+0x20/0x20
[  272.136113][ T4199]  ? load_image+0x3b0/0x3b0
[  272.140627][ T4199]  sysfs_create_dir_ns+0x252/0x280
[  272.145744][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  272.150774][ T4199]  ? sysfs_warn_dup+0xa0/0xa0
[  272.155455][ T4199]  ? le_conn_complete_evt+0xcbc/0x1590
[  272.160927][ T4199]  ? hci_event_packet+0xe05/0x12f0
[  272.166046][ T4199]  ? process_one_work+0x863/0x1000
[  272.171160][ T4199]  ? do_raw_spin_unlock+0x11d/0x230
[  272.176452][ T4199]  kobject_add_internal+0x662/0xd00
[  272.181665][ T4199]  kobject_add+0x152/0x210
[  272.186086][ T4199]  ? kobject_init+0x1d0/0x1d0
[  272.190768][ T4199]  ? klist_children_get+0x50/0x50
[  272.195793][ T4199]  ? get_device_parent+0x121/0x3f0
[  272.201184][ T4199]  device_add+0x483/0xfb0
[  272.205526][ T4199]  hci_conn_add_sysfs+0xd1/0x1e0
[  272.210479][ T4199]  le_conn_complete_evt+0xcbc/0x1590
[  272.215785][ T4199]  ? cs_le_create_conn+0x5e0/0x5e0
[  272.220922][ T4199]  ? __mutex_trylock_common+0x14f/0x250
[  272.226495][ T4199]  hci_le_meta_evt+0x289/0x3b80
[  272.231357][ T4199]  ? hci_event_packet+0x36d/0x12f0
[  272.236474][ T4199]  ? hci_event_packet+0x2e2/0x12f0
[  272.241591][ T4199]  ? __lock_acquire+0x7c60/0x7c60
[  272.246639][ T4199]  ? hci_remote_host_features_evt+0x280/0x280
[  272.252728][ T4199]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  272.258367][ T4199]  ? mark_lock+0x94/0x320
[  272.262713][ T4199]  ? mutex_unlock+0x10/0x10
[  272.267223][ T4199]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  272.273301][ T4199]  ? lock_chain_count+0x20/0x20
[  272.278157][ T4199]  ? __rwlock_init+0x140/0x140
[  272.282941][ T4199]  hci_event_packet+0xe05/0x12f0
[  272.287898][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  272.293113][ T4199]  ? rcu_lock_release+0x20/0x20
[  272.298060][ T4199]  ? hci_send_to_monitor+0x9c/0x4a0
[  272.303265][ T4199]  hci_rx_work+0x255/0xa10
[  272.307699][ T4199]  process_one_work+0x863/0x1000
[  272.312651][ T4199]  ? worker_detach_from_pool+0x240/0x240
[  272.318286][ T4199]  ? lockdep_hardirqs_off+0x70/0x100
[  272.323580][ T4199]  ? _raw_spin_lock_irq+0xab/0xe0
[  272.328602][ T4199]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  272.333977][ T4199]  ? wq_worker_running+0x97/0x170
[  272.339015][ T4199]  worker_thread+0xaa8/0x12a0
[  272.343704][ T4199]  ? lockdep_hardirqs_on+0x94/0x140
[  272.348991][ T4199]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  272.354901][ T4199]  kthread+0x436/0x520
[  272.358972][ T4199]  ? rcu_lock_release+0x20/0x20
[  272.363828][ T4199]  ? kthread_blkcg+0xd0/0xd0
[  272.368422][ T4199]  ret_from_fork+0x1f/0x30
[  272.372859][ T4199]  </TASK>
[  272.381485][ T4199] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  272.395159][ T4199] Bluetooth: hci4: failed to register connection device
[  272.563344][ T4917] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  273.337024][ T4917] usb 4-1: Using ep0 maxpacket: 16
[  274.278213][  T150] block nbd2: Attempted send on invalid socket
[  274.284561][  T150] blk_update_request: I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  274.295930][ T6922] MINIX-fs: unable to read superblock
[  274.383297][ T4917] usb 4-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  274.423057][ T4917] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  274.451714][ T4917] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[  274.514149][ T4917] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  275.454069][ T4917] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  275.486167][ T4917] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  275.494610][ T4917] usb 4-1: SerialNumber: syz
[  275.525703][ T6942] loop4: detected capacity change from 0 to 512
[  275.563223][ T4917] usb 4-1: can't set config #1, error -71
[  275.619119][ T6942] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  275.784746][ T6942] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  276.049045][ T6942] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #15: comm syz.4.785: inode has both inline data and extents flags
[  276.201541][ T6942] EXT4-fs (loop4): Remounting filesystem read-only
[  276.269428][ T6942] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.785: couldn't read orphan inode 15 (err -117)
[  276.492456][ T6954] netlink: 40 bytes leftover after parsing attributes in process `syz.3.790'.
[  276.501621][ T6954] netlink: 32 bytes leftover after parsing attributes in process `syz.3.790'.
[  276.551882][ T4917] usb 4-1: USB disconnect, device number 9
[  276.570101][ T6942] EXT4-fs (loop4): Remounting filesystem read-only
[  276.583177][ T6942] EXT4-fs (loop4): mounted filesystem without journal. Opts: noload,discard,journal_ioprio=0x0000000000000003,errors=remount-ro,lazytime,minixdf,noquota,usrjquota=,. Quota mode: none.
[  276.611634][ T6957] loop2: detected capacity change from 0 to 1024
[  276.666635][ T6942] EXT4-fs error (device loop4): ext4_lookup:1858: inode #15: comm syz.4.785: inode has both inline data and extents flags
[  276.757499][ T6957] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  276.776767][ T6942] EXT4-fs (loop4): Remounting filesystem read-only
[  276.952893][  T263] block nbd0: Attempted send on invalid socket
[  276.959540][  T263] blk_update_request: I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  276.971469][ T6964] MINIX-fs: unable to read superblock
[  277.163575][   T21] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  277.463193][   T21] usb 2-1: Using ep0 maxpacket: 8
[  277.584210][   T21] usb 2-1: config 0 has an invalid interface number: 144 but max is 0
[  277.659189][   T21] usb 2-1: config 0 has no interface number 0
[  277.741385][   T21] usb 2-1: New USB device found, idVendor=2c7c, idProduct=0512, bcdDevice=ce.e9
[  277.792598][   T21] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.883292][   T21] usb 2-1: config 0 descriptor??
[  278.204494][   T21] qmi_wwan: probe of 2-1:0.144 failed with error -22
[  278.969630][   T21] usb 2-1: USB disconnect, device number 4
[  279.001176][   T24] Bluetooth: hci4: command 0x0406 tx timeout
[  279.155965][ T6989] loop4: detected capacity change from 0 to 2048
[  279.713411][ T7003] netlink: 40 bytes leftover after parsing attributes in process `syz.1.807'.
[  279.722464][ T7003] netlink: 32 bytes leftover after parsing attributes in process `syz.1.807'.
[  279.762512][ T4200] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  279.777083][ T6989]  loop4: unable to read partition table
[  279.783624][ T4200] CPU: 0 PID: 4200 Comm: kworker/u5:8 Not tainted syzkaller #0
[  279.791185][ T4200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  279.801242][ T4200] Workqueue: hci4 hci_rx_work
[  279.805929][ T4200] Call Trace:
[  279.809203][ T4200]  <TASK>
[  279.812128][ T4200]  dump_stack_lvl+0x168/0x230
[  279.816825][ T4200]  ? show_regs_print_info+0x20/0x20
[  279.822038][ T4200]  ? load_image+0x3b0/0x3b0
[  279.826554][ T4200]  sysfs_create_dir_ns+0x252/0x280
[  279.831681][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  279.836710][ T4200]  ? sysfs_warn_dup+0xa0/0xa0
[  279.841393][ T4200]  ? le_conn_complete_evt+0xcbc/0x1590
[  279.846848][ T4200]  ? hci_event_packet+0xe05/0x12f0
[  279.851960][ T4200]  ? process_one_work+0x863/0x1000
[  279.857070][ T4200]  ? do_raw_spin_unlock+0x11d/0x230
[  279.862274][ T4200]  kobject_add_internal+0x662/0xd00
[  279.867563][ T4200]  kobject_add+0x152/0x210
[  279.871984][ T4200]  ? kobject_init+0x1d0/0x1d0
[  279.876669][ T4200]  ? klist_children_get+0x50/0x50
[  279.881693][ T4200]  ? get_device_parent+0x121/0x3f0
[  279.886813][ T4200]  device_add+0x483/0xfb0
[  279.891153][ T4200]  hci_conn_add_sysfs+0xd1/0x1e0
[  279.896094][ T4200]  le_conn_complete_evt+0xcbc/0x1590
[  279.901398][ T4200]  ? cs_le_create_conn+0x5e0/0x5e0
[  279.906512][ T4200]  ? __mutex_trylock_common+0x14f/0x250
[  279.912068][ T4200]  hci_le_meta_evt+0x289/0x3b80
[  279.916925][ T4200]  ? hci_event_packet+0x36d/0x12f0
[  279.922037][ T4200]  ? hci_event_packet+0x2e2/0x12f0
[  279.927153][ T4200]  ? __lock_acquire+0x7c60/0x7c60
[  279.932189][ T4200]  ? hci_remote_host_features_evt+0x280/0x280
[  279.938274][ T4200]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  279.943923][ T4200]  ? mark_lock+0x94/0x320
[  279.948266][ T4200]  ? mutex_unlock+0x10/0x10
[  279.952773][ T4200]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  279.958962][ T4200]  ? lock_chain_count+0x20/0x20
[  279.963820][ T4200]  ? __rwlock_init+0x140/0x140
[  279.968584][ T4200]  hci_event_packet+0xe05/0x12f0
[  279.973520][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  279.978733][ T4200]  ? rcu_lock_release+0x20/0x20
[  279.983599][ T4200]  ? hci_send_to_monitor+0x9c/0x4a0
[  279.988808][ T4200]  hci_rx_work+0x255/0xa10
[  279.993244][ T4200]  process_one_work+0x863/0x1000
[  279.998202][ T4200]  ? worker_detach_from_pool+0x240/0x240
[  280.003835][ T4200]  ? lockdep_hardirqs_off+0x70/0x100
[  280.006230][ T6989] loop4: partition table beyond EOD, 
[  280.009121][ T4200]  ? _raw_spin_lock_irq+0xab/0xe0
[  280.009145][ T4200]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  280.009166][ T4200]  ? wq_worker_running+0x97/0x170
[  280.009186][ T4200]  worker_thread+0xaa8/0x12a0
[  280.026010][ T6989] truncated
[  280.029915][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  280.029951][ T4200]  ? lockdep_hardirqs_on+0x94/0x140
[  280.029970][ T4200]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  280.053969][ T4200]  kthread+0x436/0x520
[  280.055035][ T6989] loop_reread_partitions: partition scan of loop4 () failed (rc=-5)
[  280.058040][ T4200]  ? rcu_lock_release+0x20/0x20
[  280.058061][ T4200]  ? kthread_blkcg+0xd0/0xd0
[  280.058078][ T4200]  ret_from_fork+0x1f/0x30
[  280.058110][ T4200]  </TASK>
[  280.091922][ T4200] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  280.105492][ T4200] Bluetooth: hci4: failed to register connection device
[  280.312512][ T3562]  loop4: unable to read partition table
[  280.326643][ T3562] loop4: partition table beyond EOD, truncated
[  280.675100][ T7018] virt_wifi0 speed is unknown, defaulting to 1000
[  281.873078][ T2409] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[  282.703122][ T2409] usb 4-1: config 0 has an invalid interface number: 156 but max is 0
[  282.736568][ T2409] usb 4-1: config 0 has an invalid descriptor of length 150, skipping remainder of the config
[  282.747931][ T2409] usb 4-1: config 0 has no interface number 0
[  282.754726][ T2409] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid maxpacket 37888, setting to 64
[  282.766618][ T2409] usb 4-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  282.780522][ T2409] usb 4-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  282.790571][ T2409] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.814282][  T263] block nbd4: Attempted send on invalid socket
[  282.820593][  T263] blk_update_request: I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  282.839722][ T7031] MINIX-fs: unable to read superblock
[  282.876123][ T2409] usb 4-1: config 0 descriptor??
[  282.954828][ T7008] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  282.990089][ T1108] usb 1-1: new low-speed USB device number 6 using dummy_hcd
[  283.015440][ T2409] gspca_main: spca561-2.14.0 probing abcd:cdee
[  283.037600][ T7036] netlink: 40 bytes leftover after parsing attributes in process `syz.2.818'.
[  283.046714][ T7036] netlink: 32 bytes leftover after parsing attributes in process `syz.2.818'.
[  283.327241][ T2409] spca561: probe of 4-1:0.156 failed with error -22
[  283.467548][ T2409] usb 4-1: MIDIStreaming interface descriptor not found
[  283.947378][ T2409] usb 4-1: USB disconnect, device number 10
[  283.957862][ T7053] netlink: 40 bytes leftover after parsing attributes in process `syz.4.824'.
[  283.966954][ T7053] netlink: 32 bytes leftover after parsing attributes in process `syz.4.824'.
[  283.976022][ T1108] usb 1-1: config 0 has an invalid interface number: 190 but max is 0
[  284.051750][ T7057] devpts: called with bogus options
[  284.055016][ T1108] usb 1-1: config 0 has no interface number 0
[  284.093143][ T1108] usb 1-1: New USB device found, idVendor=0686, idProduct=4017, bcdDevice= 0.01
[  284.125858][ T1108] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.196706][ T1108] usb 1-1: config 0 descriptor??
[  284.649213][ T4346] udevd[4346]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  285.158959][ T1108] usb-storage 1-1:0.190: USB Mass Storage device detected
[  285.197111][ T7075] netlink: 40 bytes leftover after parsing attributes in process `syz.1.830'.
[  285.197236][ T7075] netlink: 32 bytes leftover after parsing attributes in process `syz.1.830'.
[  285.277189][ T1108] usb 1-1: USB disconnect, device number 6
[  285.462147][  T150] block nbd1: Attempted send on invalid socket
[  285.468823][  T150] blk_update_request: I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  285.481358][ T7086] MINIX-fs: unable to read superblock
[  286.233305][ T2409] Bluetooth: hci4: command 0x0406 tx timeout
[  286.260698][ T7091] netlink: 40 bytes leftover after parsing attributes in process `syz.3.836'.
[  286.269882][ T7091] netlink: 32 bytes leftover after parsing attributes in process `syz.3.836'.
[  288.536827][ T7116] netlink: 40 bytes leftover after parsing attributes in process `syz.0.844'.
[  288.545932][ T7116] netlink: 32 bytes leftover after parsing attributes in process `syz.0.844'.
[  288.727792][ T7127] netlink: 40 bytes leftover after parsing attributes in process `syz.2.847'.
[  288.737071][ T7127] netlink: 32 bytes leftover after parsing attributes in process `syz.2.847'.
[  289.636659][  T150] block nbd2: Attempted send on invalid socket
[  289.643264][  T150] blk_update_request: I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  289.655445][ T7132] MINIX-fs: unable to read superblock
[  289.801756][ T7135] loop3: detected capacity change from 0 to 1024
[  290.816012][   T26] audit: type=1800 audit(1764015678.954:42): pid=7135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.852" name="file1" dev="loop3" ino=20 res=0 errno=0
[  290.859072][ T7135] attempt to access beyond end of device
[  290.859072][ T7135] loop3: rw=34817, want=5780, limit=1024
[  290.916641][ T7135] attempt to access beyond end of device
[  290.916641][ T7135] loop3: rw=34817, want=2046, limit=1024
[  290.971557][ T7135] attempt to access beyond end of device
[  290.971557][ T7135] loop3: rw=34817, want=2560, limit=1024
[  291.195504][ T7158] netlink: 40 bytes leftover after parsing attributes in process `syz.0.859'.
[  291.204777][ T7158] netlink: 32 bytes leftover after parsing attributes in process `syz.0.859'.
[  291.297326][ T7160] netlink: 40 bytes leftover after parsing attributes in process `syz.1.860'.
[  291.306820][ T7160] netlink: 32 bytes leftover after parsing attributes in process `syz.1.860'.
[  292.921161][ T7169] virt_wifi0 speed is unknown, defaulting to 1000
[  293.093524][  T263] block nbd0: Attempted send on invalid socket
[  293.099849][  T263] blk_update_request: I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  293.111436][ T7175] MINIX-fs: unable to read superblock
[  296.884416][ T7195] nfs: Unknown parameter 'Ÿë
'
[  299.735958][ T7211] netlink: 40 bytes leftover after parsing attributes in process `syz.2.874'.
[  299.745805][ T7211] netlink: 32 bytes leftover after parsing attributes in process `syz.2.874'.
[  304.237322][ T7233] virt_wifi0 speed is unknown, defaulting to 1000
[  306.946966][ T2409] Bluetooth: hci5: command 0x0409 tx timeout
[  306.974999][ T7233] chnl_net:caif_netlink_parms(): no params data found
[  307.528100][ T7233] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.529355][ T4196] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  307.545083][ T4196] CPU: 1 PID: 4196 Comm: kworker/u5:4 Not tainted syzkaller #0
[  307.551160][ T7233] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.552641][ T4196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  307.552655][ T4196] Workqueue: hci4 hci_rx_work
[  307.574576][ T4196] Call Trace:
[  307.577857][ T4196]  <TASK>
[  307.580787][ T4196]  dump_stack_lvl+0x168/0x230
[  307.585561][ T4196]  ? show_regs_print_info+0x20/0x20
[  307.590769][ T4196]  ? load_image+0x3b0/0x3b0
[  307.595301][ T4196]  sysfs_create_dir_ns+0x252/0x280
[  307.600427][ T4196]  ? __lock_acquire+0x7c60/0x7c60
[  307.605466][ T4196]  ? sysfs_warn_dup+0xa0/0xa0
[  307.610156][ T4196]  ? le_conn_complete_evt+0xcbc/0x1590
[  307.615627][ T4196]  ? hci_event_packet+0xe05/0x12f0
[  307.620751][ T4196]  ? process_one_work+0x863/0x1000
[  307.625889][ T4196]  ? do_raw_spin_unlock+0x11d/0x230
[  307.631109][ T4196]  kobject_add_internal+0x662/0xd00
[  307.636334][ T4196]  kobject_add+0x152/0x210
[  307.639770][ T7233] device bridge_slave_0 entered promiscuous mode
[  307.640765][ T4196]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  307.652720][ T4196]  ? kobject_init+0x1d0/0x1d0
[  307.657954][ T4196]  device_add+0x483/0xfb0
[  307.662321][ T4196]  hci_conn_add_sysfs+0xd1/0x1e0
[  307.667279][ T4196]  le_conn_complete_evt+0xcbc/0x1590
[  307.672585][ T4196]  ? __switch_to_asm+0x34/0x60
[  307.677369][ T4196]  ? cs_le_create_conn+0x5e0/0x5e0
[  307.682502][ T4196]  ? __schedule+0x11c3/0x4390
[  307.687199][ T4196]  ? __mutex_trylock_common+0x14f/0x250
[  307.692764][ T4196]  hci_le_meta_evt+0x289/0x3b80
[  307.692357][ T7233] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.697625][ T4196]  ? hci_event_packet+0x36d/0x12f0
[  307.697651][ T4196]  ? hci_event_packet+0x2e2/0x12f0
[  307.714841][ T4196]  ? __lock_acquire+0x7c60/0x7c60
[  307.719884][ T4196]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  307.725884][ T4196]  ? lock_chain_count+0x20/0x20
[  307.730749][ T4196]  ? hci_remote_host_features_evt+0x280/0x280
[  307.736840][ T4196]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  307.742500][ T4196]  ? mutex_unlock+0x10/0x10
[  307.747017][ T4196]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  307.750179][ T7233] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.752671][ T4196]  hci_event_packet+0xe05/0x12f0
[  307.752698][ T4196]  ? lockdep_hardirqs_on+0x94/0x140
[  307.769995][ T4196]  ? rcu_lock_release+0x20/0x20
[  307.774868][ T4196]  ? lock_acquire+0x1f2/0x3f0
[  307.779568][ T4196]  ? hci_send_to_monitor+0x9c/0x4a0
[  307.784784][ T4196]  hci_rx_work+0x255/0xa10
[  307.789230][ T4196]  process_one_work+0x863/0x1000
[  307.794249][ T4196]  ? worker_detach_from_pool+0x240/0x240
[  307.799898][ T4196]  ? lockdep_hardirqs_off+0x70/0x100
[  307.805218][ T4196]  ? _raw_spin_lock_irq+0xab/0xe0
[  307.810258][ T4196]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  307.815651][ T4196]  ? wq_worker_running+0x97/0x170
[  307.820688][ T4196]  worker_thread+0xaa8/0x12a0
[  307.825398][ T4196]  kthread+0x436/0x520
[  307.829477][ T4196]  ? rcu_lock_release+0x20/0x20
[  307.831815][ T7233] device bridge_slave_1 entered promiscuous mode
[  307.834341][ T4196]  ? kthread_blkcg+0xd0/0xd0
[  307.834367][ T4196]  ret_from_fork+0x1f/0x30
[  307.834397][ T4196]  </TASK>
[  307.835953][ T4196] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  307.866739][ T4196] Bluetooth: hci4: failed to register connection device
[  310.690963][ T2409] Bluetooth: hci5: command 0x041b tx timeout
[  311.064436][ T7233] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  311.121250][ T7233] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  312.688409][ T7295] netlink: 40 bytes leftover after parsing attributes in process `syz.0.902'.
[  312.697447][ T7295] netlink: 32 bytes leftover after parsing attributes in process `syz.0.902'.
[  312.723203][   T24] Bluetooth: hci5: command 0x040f tx timeout
[  314.393233][ T2409] Bluetooth: hci4: command 0x0406 tx timeout
[  314.442891][ T7302] loop3: detected capacity change from 0 to 1024
[  314.586659][ T7302] EXT4-fs (loop3): Ignoring removed bh option
[  314.730117][ T7302] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsv1,nombcache,barrier,delalloc,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,usrquota,noauto_da_alloc,bh,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  314.765125][ T7233] team0: Port device team_slave_0 added
[  314.793310][ T7233] team0: Port device team_slave_1 added
[  314.804779][ T2409] Bluetooth: hci5: command 0x0419 tx timeout
[  314.804979][ T7302] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2229: inode #15: comm syz.3.907: corrupted in-inode xattr
[  316.776740][ T7233] batman_adv: batadv0: Adding interface: batadv_slave_0
[  316.790802][ T7233] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.882520][ T7233] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  316.898515][ T7233] batman_adv: batadv0: Adding interface: batadv_slave_1
[  316.906341][ T7233] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.933194][ T7233] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  317.037332][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  317.057810][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  317.349565][ T7333] netlink: 40 bytes leftover after parsing attributes in process `syz.0.914'.
[  317.360029][ T7333] netlink: 32 bytes leftover after parsing attributes in process `syz.0.914'.
[  317.418527][ T7334] loop2: detected capacity change from 0 to 16
[  317.641925][ T7334] erofs: (device loop2): mounted with root inode @ nid 36.
[  317.677546][ T7334] erofs: (device loop2): z_erofs_readahead: readahead error at page 2 @ nid 89
[  317.723298][ T7334] erofs: (device loop2): z_erofs_extent_lookback: invalid lookback distance 0 @ nid 89
[  317.759569][ T7334] erofs: (device loop2): z_erofs_readahead: readahead error at page 1 @ nid 89
[  318.132064][ T7233] device hsr_slave_0 entered promiscuous mode
[  318.943074][ T7334] erofs: (device loop2): z_erofs_map_blocks_iter: invalid logical cluster 0 at nid 89
[  318.953485][ T7334] erofs: (device loop2): z_erofs_readahead: readahead error at page 0 @ nid 89
[  319.209379][ T7233] device hsr_slave_1 entered promiscuous mode
[  319.241318][ T7233] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  319.249157][   T26] audit: type=1800 audit(1764015707.354:43): pid=7334 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.915" name="file3" dev="loop2" ino=89 res=0 errno=0
[  319.333157][ T7233] Cannot create hsr debugfs directory
[  320.742268][ T7233] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  320.780594][ T7233] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  320.857878][ T7233] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  320.915924][ T7233] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  320.931638][ T4199] erofs: (device loop2): z_erofs_lz4_decompress: failed to decompress -1027 in[4096, 0] out[3968]
[  320.989240][ T7355] xt_CT: You must specify a L4 protocol and not use inversions on it
[  321.333973][ T7233] 8021q: adding VLAN 0 to HW filter on device bond0
[  321.350135][ T5885] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  321.388259][ T5885] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  321.607669][ T7233] 8021q: adding VLAN 0 to HW filter on device team0
[  321.813173][ T5885] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  321.885581][ T5885] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  322.084414][ T5885] bridge0: port 1(bridge_slave_0) entered blocking state
[  322.091530][ T5885] bridge0: port 1(bridge_slave_0) entered forwarding state
[  322.199549][ T7371] loop1: detected capacity change from 0 to 1024
[  322.363144][ T5885] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  323.054638][   T26] audit: type=1800 audit(1764015711.184:44): pid=7371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.924" name="file1" dev="loop1" ino=20 res=0 errno=0
[  323.264017][ T7371] attempt to access beyond end of device
[  323.264017][ T7371] loop1: rw=34817, want=5780, limit=1024
[  323.982997][ T7371] attempt to access beyond end of device
[  323.982997][ T7371] loop1: rw=34817, want=2046, limit=1024
[  324.068428][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  324.130290][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  324.273202][ T5864] bridge0: port 2(bridge_slave_1) entered blocking state
[  324.280299][ T5864] bridge0: port 2(bridge_slave_1) entered forwarding state
[  324.352568][ T7371] attempt to access beyond end of device
[  324.352568][ T7371] loop1: rw=34817, want=2558, limit=1024
[  324.533356][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  324.613483][   T24] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  324.664557][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  324.697025][ T7383] netlink: 40 bytes leftover after parsing attributes in process `syz.2.929'.
[  324.717381][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  324.809263][ T7383] netlink: 32 bytes leftover after parsing attributes in process `syz.2.929'.
[  324.849051][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  324.913188][   T24] usb 1-1: Using ep0 maxpacket: 8
[  324.927781][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  324.963607][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  324.998594][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  325.133867][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  325.178566][   T24] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  325.194352][   T24] usb 1-1: config 179 has no interface number 0
[  325.200655][   T24] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  325.204956][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  325.212236][   T24] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  325.231115][   T24] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  325.245265][   T24] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  325.256900][   T24] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  325.270550][   T24] usb 1-1: config 179 interface 65 has no altsetting 0
[  325.277853][   T24] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  325.288146][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  325.302674][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  325.317804][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  325.338942][ T7233] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  325.397940][   T24] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input6
[  325.414259][ T7402] netlink: 40 bytes leftover after parsing attributes in process `syz.3.937'.
[  325.423416][ T7402] netlink: 32 bytes leftover after parsing attributes in process `syz.3.937'.
[  325.815634][   T24] usb 1-1: USB disconnect, device number 7
[  325.835673][   T24] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  325.861494][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  325.873233][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  325.892487][ T7233] 8021q: adding VLAN 0 to HW filter on device batadv0
[  326.293456][ T7416] capability: warning: `syz.2.940' uses 32-bit capabilities (legacy support in use)
[  327.345977][ T7436] loop1: detected capacity change from 0 to 512
[  327.384490][ T7434] netlink: 40 bytes leftover after parsing attributes in process `syz.2.945'.
[  327.394200][ T7434] netlink: 32 bytes leftover after parsing attributes in process `syz.2.945'.
[  327.431112][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  327.454393][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  327.608026][ T7436] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.947: inode has both inline data and extents flags
[  327.965066][ T7436] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.947: couldn't read orphan inode 15 (err -117)
[  328.162041][ T5857] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  328.194890][ T5857] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  328.205881][ T7436] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  328.238009][ T7233] device veth0_vlan entered promiscuous mode
[  328.330710][ T5857] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  328.366108][ T5857] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  328.405417][ T7233] device veth1_vlan entered promiscuous mode
[  328.434109][ T5864] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  328.547919][ T5857] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  328.583521][ T5857] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  328.624697][ T7233] device veth0_macvtap entered promiscuous mode
[  328.644547][ T7233] device veth1_macvtap entered promiscuous mode
[  328.718737][ T7233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  328.753694][ T7233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  328.785438][ T7465] netlink: 40 bytes leftover after parsing attributes in process `syz.1.957'.
[  328.794509][ T7465] netlink: 32 bytes leftover after parsing attributes in process `syz.1.957'.
[  328.804514][ T7233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  328.847784][ T7233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  328.876293][ T7233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  328.887733][ T7233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  328.897918][ T7233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  328.908928][ T7233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  328.955696][ T7233] batman_adv: batadv0: Interface activated: batadv_slave_0
[  328.965888][ T7233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.019554][ T7233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.060328][ T7233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.280051][ T7233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.300294][ T7233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.432338][ T7233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.566339][ T7233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.686853][ T7233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.850389][ T7233] batman_adv: batadv0: Interface activated: batadv_slave_1
[  330.216152][ T7233] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  330.266416][ T7233] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  330.321380][ T7233] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  330.360858][ T7233] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  330.611597][ T7479] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  331.207077][ T7496] netlink: 40 bytes leftover after parsing attributes in process `syz.0.967'.
[  331.216391][ T7496] netlink: 32 bytes leftover after parsing attributes in process `syz.0.967'.
[  331.464402][ T7500] netlink: 40 bytes leftover after parsing attributes in process `syz.2.969'.
[  331.473774][ T7500] netlink: 32 bytes leftover after parsing attributes in process `syz.2.969'.
[  332.599394][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  332.645354][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  332.686607][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  332.744768][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  332.766743][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  332.775530][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  332.951662][ T4312] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  333.012381][ T4312] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  333.045000][ T5857] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  333.234031][ T5857] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  333.253963][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  333.292237][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  334.574589][  T150] block nbd5: Attempted send on invalid socket
[  334.580863][  T150] blk_update_request: I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  334.591799][ T7522] MINIX-fs: unable to read superblock
[  335.637139][ T5873] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.812279][ T5873] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.893112][ T4916] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  335.919999][ T5873] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.994209][ T5873] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.417345][ T7552] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  336.426145][ T7552] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  336.433730][ T7552] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  336.965962][ T7554] netlink: 40 bytes leftover after parsing attributes in process `syz.2.989'.
[  336.975203][ T7554] netlink: 32 bytes leftover after parsing attributes in process `syz.2.989'.
[  336.983152][ T4915] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  337.283437][ T4916] usb 6-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  337.306998][ T4916] usb 6-1: config 0 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  337.325188][ T4916] usb 6-1: config 0 interface 0 has no altsetting 0
[  337.332266][ T4916] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  337.342480][ T4916] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.381193][ T4916] usb 6-1: config 0 descriptor??
[  337.413554][ T4915] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  337.429227][ T4915] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 65535, setting to 64
[  337.461146][ T4915] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  337.471031][ T4915] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.484807][ T4915] usb 4-1: config 0 descriptor??
[  337.503634][ T7543] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  337.512050][ T7543] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  337.749799][   T13] usb 4-1: USB disconnect, device number 11
[  337.967826][ T4916] wacom 0003:056A:0331.0003: unknown main item tag 0x0
[  337.998539][ T4916] wacom 0003:056A:0331.0003: unknown main item tag 0x0
[  338.017693][ T4916] wacom 0003:056A:0331.0003: unknown main item tag 0x0
[  338.064435][ T7597] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1001'.
[  338.074164][ T7597] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1001'.
[  338.099343][ T4916] wacom 0003:056A:0331.0003: hidraw0: USB HID v0.00 Device [HID 056a:0331] on usb-dummy_hcd.5-1/input0
[  338.200449][ T7599] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  338.241129][ T7599] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  338.256815][ T4916] usb 6-1: USB disconnect, device number 2
[  338.356794][ T7599] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  338.422265][ T7602] fido_id[7602]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  338.606898][ T5873] IPVS: stopping master sync thread 5375 ...
[  338.628577][ T7612] netlink: 'syz.3.1007': attribute type 16 has an invalid length.
[  338.662402][ T7612] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.1007'.
[  338.746420][ T7615] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1006'.
[  338.788651][ T7615] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  338.833760][ T7615] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  338.928299][ T7628] loop5: detected capacity change from 0 to 512
[  338.989476][ T7632] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1013'.
[  338.999076][ T7632] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1013'.
[  341.829722][ T7628] FAT-fs (loop5): Directory bread(block 199916) failed
[  341.874349][ T7628] FAT-fs (loop5): Directory bread(block 199917) failed
[  341.944600][ T7653] x_tables: ip_tables: TPROXY target: only valid in mangle table, not 
[  341.950990][ T7628] FAT-fs (loop5): Directory bread(block 199918) failed
[  341.956731][ T7654] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  341.979371][ T7654] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  342.000210][ T7654] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  342.017101][ T7628] FAT-fs (loop5): Directory bread(block 199919) failed
[  342.035676][ T7628] FAT-fs (loop5): Directory bread(block 199920) failed
[  342.063272][ T7628] FAT-fs (loop5): Directory bread(block 199921) failed
[  342.082347][ T7628] FAT-fs (loop5): Directory bread(block 199922) failed
[  342.133122][ T7628] FAT-fs (loop5): Directory bread(block 199923) failed
[  342.210167][ T5873] device hsr_slave_0 left promiscuous mode
[  342.230125][ T5873] device hsr_slave_1 left promiscuous mode
[  342.247272][ T5873] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  342.260792][ T5873] batman_adv: batadv0: Removing interface: batadv_slave_0
[  342.282620][ T5873] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  342.292528][ T5873] batman_adv: batadv0: Removing interface: batadv_slave_1
[  342.340601][ T7668] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1025'.
[  342.367970][ T5873] device bridge_slave_1 left promiscuous mode
[  342.384560][ T5873] bridge0: port 2(bridge_slave_1) entered disabled state
[  342.453845][ T5873] device bridge_slave_0 left promiscuous mode
[  342.481014][ T5873] bridge0: port 1(bridge_slave_0) entered disabled state
[  342.549645][ T5873] device veth1_macvtap left promiscuous mode
[  342.776032][ T5873] device veth0_macvtap left promiscuous mode
[  342.903999][ T5873] device veth1_vlan left promiscuous mode
[  343.012519][ T5873] device veth0_vlan left promiscuous mode
[  343.298225][ T7681] loop3: detected capacity change from 0 to 4096
[  343.526308][ T7681] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  344.511269][ T5873] team0 (unregistering): Port device team_slave_1 removed
[  344.543271][ T5873] team0 (unregistering): Port device team_slave_0 removed
[  344.610087][ T5873] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  344.672435][ T5873] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  347.383325][ T5873] bond0 (unregistering): Released all slaves
[  351.409921][ T7730] loop5: detected capacity change from 0 to 16
[  359.673158][ T1111] Bluetooth: hci6: command 0x0409 tx timeout
[  361.033132][ T4270] Bluetooth: hci7: command 0x0409 tx timeout
[  361.113083][ T4270] Bluetooth: hci8: command 0x0409 tx timeout
[  361.673201][ T4270] Bluetooth: hci9: command 0x0409 tx timeout
[  361.753179][ T4270] Bluetooth: hci6: command 0x041b tx timeout
[  363.113597][ T4270] Bluetooth: hci7: command 0x041b tx timeout
[  363.193068][ T4270] Bluetooth: hci8: command 0x041b tx timeout
[  363.753362][ T4270] Bluetooth: hci9: command 0x041b tx timeout
[  363.833139][ T4270] Bluetooth: hci6: command 0x040f tx timeout
[  365.193117][ T1111] Bluetooth: hci7: command 0x040f tx timeout
[  365.273251][ T1111] Bluetooth: hci8: command 0x040f tx timeout
[  365.833301][ T1111] Bluetooth: hci9: command 0x040f tx timeout
[  365.913234][ T1111] Bluetooth: hci6: command 0x0419 tx timeout
[  367.273133][ T4270] Bluetooth: hci7: command 0x0419 tx timeout
[  367.353322][ T4270] Bluetooth: hci8: command 0x0419 tx timeout
[  367.913263][ T4270] Bluetooth: hci9: command 0x0419 tx timeout
[  369.193145][ T4270] Bluetooth: hci10: command 0x0409 tx timeout
[  371.273115][ T1111] Bluetooth: hci10: command 0x041b tx timeout
[  373.353162][ T1111] Bluetooth: hci10: command 0x040f tx timeout
[  375.433107][ T1111] Bluetooth: hci10: command 0x0419 tx timeout
[  412.230201][ T3562] udevd[3562]: worker [4177] /devices/virtual/block/loop5 is taking a long time
[  419.676145][ T4270] Bluetooth: hci11: command 0x0409 tx timeout
[  421.353073][ T4270] Bluetooth: hci12: command 0x0409 tx timeout
[  421.433073][ T4270] Bluetooth: hci13: command 0x0409 tx timeout
[  421.753119][ T4270] Bluetooth: hci14: command 0x0409 tx timeout
[  421.759354][ T4270] Bluetooth: hci11: command 0x041b tx timeout
[  423.433137][ T4270] Bluetooth: hci12: command 0x041b tx timeout
[  423.513118][ T4270] Bluetooth: hci13: command 0x041b tx timeout
[  423.833183][ T4270] Bluetooth: hci11: command 0x040f tx timeout
[  423.840558][ T4270] Bluetooth: hci14: command 0x041b tx timeout
[  425.513095][ T4270] Bluetooth: hci12: command 0x040f tx timeout
[  425.593063][ T4270] Bluetooth: hci13: command 0x040f tx timeout
[  425.913072][ T4270] Bluetooth: hci14: command 0x040f tx timeout
[  425.919267][ T4270] Bluetooth: hci11: command 0x0419 tx timeout
[  426.633164][ T4270] Bluetooth: hci5: command 0x0406 tx timeout
[  427.593054][   T24] Bluetooth: hci12: command 0x0419 tx timeout
[  427.673080][   T24] Bluetooth: hci13: command 0x0419 tx timeout
[  427.993046][   T24] Bluetooth: hci14: command 0x0419 tx timeout
[  429.193176][   T24] Bluetooth: hci15: command 0x0409 tx timeout
[  431.273157][   T24] Bluetooth: hci15: command 0x041b tx timeout
[  433.353123][   T24] Bluetooth: hci15: command 0x040f tx timeout
[  435.433093][   T24] Bluetooth: hci15: command 0x0419 tx timeout
[  450.972978][    C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[  450.979591][    C0] rcu: 	0-....: (1 GPs behind) idle=dc1/1/0x4000000000000000 softirq=17629/17630 fqs=5019 
[  450.990689][    C0] 	(t=10500 jiffies g=20853 q=1900)
[  450.995877][    C0] NMI backtrace for cpu 0
[  451.000179][    C0] CPU: 0 PID: 7704 Comm: syz.3.1037 Not tainted syzkaller #0
[  451.007608][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  451.017645][    C0] Call Trace:
[  451.020921][    C0]  <IRQ>
[  451.023753][    C0]  dump_stack_lvl+0x168/0x230
[  451.028423][    C0]  ? show_regs_print_info+0x20/0x20
[  451.033596][    C0]  ? load_image+0x3b0/0x3b0
[  451.038078][    C0]  ? vprintk_emit+0x150/0x150
[  451.042733][    C0]  nmi_cpu_backtrace+0x397/0x3d0
[  451.047649][    C0]  ? nmi_trigger_cpumask_backtrace+0x280/0x280
[  451.053776][    C0]  ? vprintk_emit+0xf9/0x150
[  451.058349][    C0]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[  451.063693][    C0]  ? _raw_spin_lock+0x40/0x40
[  451.068341][    C0]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  451.074389][    C0]  nmi_trigger_cpumask_backtrace+0x163/0x280
[  451.080341][    C0]  rcu_dump_cpu_stacks+0x22f/0x380
[  451.085428][    C0]  print_cpu_stall+0x31d/0x5f0
[  451.090162][    C0]  rcu_sched_clock_irq+0x6d8/0x1110
[  451.095334][    C0]  ? rcutree_dead_cpu+0x20/0x20
[  451.100158][    C0]  ? account_process_tick+0x227/0x3a0
[  451.105500][    C0]  update_process_times+0x193/0x200
[  451.110672][    C0]  tick_sched_timer+0x37d/0x560
[  451.115496][    C0]  __hrtimer_run_queues+0x4fe/0xc40
[  451.120671][    C0]  ? tick_setup_sched_timer+0x2c0/0x2c0
[  451.126194][    C0]  ? hrtimer_interrupt+0x8d0/0x8d0
[  451.131279][    C0]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  451.137321][    C0]  hrtimer_interrupt+0x3bb/0x8d0
[  451.142241][    C0]  __sysvec_apic_timer_interrupt+0x137/0x4a0
[  451.148208][    C0]  sysvec_apic_timer_interrupt+0x9b/0xc0
[  451.153816][    C0]  </IRQ>
[  451.156727][    C0]  <TASK>
[  451.159637][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  451.165598][    C0] RIP: 0010:syscall_enter_from_user_mode+0x2a/0x70
[  451.172072][    C0] Code: 41 56 53 48 89 f3 49 89 fe 48 8b 7c 24 10 e8 3d f6 ff ff eb 31 eb 35 e8 e4 72 d4 f7 e8 df 70 d4 f7 fb 65 48 8b 05 a6 f6 58 76 <48> 8b 70 08 40 f6 c6 3f 74 0b 4c 89 f7 5b 41 5e e9 91 b4 bc f7 48
[  451.191653][    C0] RSP: 0018:ffffc900038d7f08 EFLAGS: 00000286
[  451.197696][    C0] RAX: ffff888073dd3b80 RBX: 000000000000000f RCX: 702b1755e2121b00
[  451.205642][    C0] RDX: dffffc0000000000 RSI: ffffffff8a0b1c60 RDI: ffffffff8a59e580
[  451.213589][    C0] RBP: ffffc900038d7f48 R08: dffffc0000000000 R09: fffffbfff1ad33a6
[  451.221551][    C0] R10: fffffbfff1ad33a6 R11: 1ffffffff1ad33a5 R12: 0000000000000000
[  451.229600][    C0] R13: 0000000000000000 R14: ffffc900038d7f58 R15: 0000000000000000
[  451.237556][    C0]  ? syscall_enter_from_user_mode+0x21/0x70
[  451.243425][    C0]  do_syscall_64+0x24/0xa0
[  451.247814][    C0]  ? clear_bhb_loop+0x30/0x80
[  451.252466][    C0]  ? clear_bhb_loop+0x30/0x80
[  451.257115][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  451.262980][    C0] RIP: 0033:0x7f860e287829
[  451.267370][    C0] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  451.287036][    C0] RSP: 002b:00007ffd974af280 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  451.295421][    C0] RAX: ffffffffffffffda RBX: 0000000000054159 RCX: 00007f860e287829
[  451.303366][    C0] RDX: 00007ffd974af280 RSI: 00007ffd974af3b0 RDI: 0000000000000021
[  451.311403][    C0] RBP: 0000000000000032 R08: 0017af4f91e32d17 R09: 00000005974afaff
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  451.319351][    C0] R10: 00007ffd974af900 R11: 0000000000000202 R12: 00007f860e541fac
[  451.327297][    C0] R13: 00007ffd974af900 R14: 000000000005418b R15: 00007ffd974af920
[  451.335340][    C0]  </TASK>