last executing test programs:

4m6.136839915s ago: executing program 4 (id=892):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, 0x0, 0x0)
syz_io_uring_setup(0x1e82, &(0x7f0000000180)={0x0, 0x58d4, 0x10406, 0x0, 0x321}, 0x0, 0x0)

4m5.220000357s ago: executing program 4 (id=895):
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="f9000300001100000008000300", @ANYRES32=0x0, @ANYBLOB="5c002a008456000600080211000001090000001e0040ffffffffffff0700000008021100000037000008021100000001000080210000080211000000000400003f000008021100000109000000310000ffffffffffffff0f00001900"], 0x78}, 0x1, 0x0, 0x0, 0x50800}, 0x0)
syz_pidfd_open(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, 0x2}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x9c, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x44, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4041}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={0xa0, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa, 0x0, 0x5}, [@CTA_TUPLE_ORIG={0x44, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0xa0}}, 0x0)

3m58.574017076s ago: executing program 4 (id=920):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000240)=0x3)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0))
read$dsp(r0, &(0x7f00000001c0)=""/95, 0x5f)

3m57.528074241s ago: executing program 4 (id=925):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="6c0000000206050000000000000000000000000012000300626974"], 0x6c}}, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000540)=@gcm_128={{0x303}, "ffffffffffffffe2", "8e083700daf38a6d69e9b5e9c2f133d7", "6a3a05b9", "12772541f8eb02bb"}, 0x28)
shutdown(r0, 0x1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='freezer.state\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000000), 0xffffff6a)
r3 = syz_io_uring_setup(0x7b, &(0x7f0000000540)={0x0, 0x3bce, 0x8000, 0x0, 0x313}, 0x0, &(0x7f0000000100)=<r4=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_io_uring_submit(0x0, r4, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x40, 0x0, r5, 0x0, 0x0, 0x0, 0x40000103})
io_uring_enter(r3, 0x46f3, 0x0, 0x0, 0x0, 0x0)
sendfile(r0, r2, 0x0, 0xffffffff004)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)

3m56.200762562s ago: executing program 4 (id=931):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
io_setup(0x4, &(0x7f00000014c0)=<r0=>0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000002c0)='mounts\x00')
io_submit(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0xfffe, r1, 0x0}])
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

3m54.578375242s ago: executing program 4 (id=938):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='illinois', 0x8)
sendmmsg$inet(r0, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000f80)="985e44efeabe001caacf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bc8b122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c0827686e59209d2e02c9210fd8048f04ad6c42200fd9232f5aa6a361816bf21afb8473a064f1988536d78e6724b5888807b3aaafaf59f53121782a0a9370dc0feae13c8c2a1dcc8a3122aaa3dcd5b9247a915378e6492e5b94073dcdc87e7c794fb262a7e9ee0b9432f74331c6e9412ac6557c54c6ac72bc24ff70ca2f8ef53773c5cbdf4a583f81fdc8719dbe967b0690a3ed3f314c3e2ceebb3e29d00c2c1053d1e8b32d8a8be1bb9786746e0ee564365005fa3528b5ac1e35e03b69cb54111dfcebc6d585aacdd57c351ef1aa8050274b122a21b47432f17a0cacfd9524d9cb09029e4daefaea47f8cd5a4f1dee71093ebc076363e14f78dd3b129ed488606feb4b3ae5a7a085297416f1f1a8aeefa517ed1525ec76469b8b469851cc56c6016d9067dac3de3818856014c98ce8f36dac4d8cdb1f25e3c5de7bdab78066d2418c12e0acde73c05fc80a0658c7fbc52812a8423323a80e8a968e0ace13290fe8f862c1e7233c26f73ca24e5e441dd406e136df3a3996865e0693d955c691c675c3f6191b225d82ea4c6a7b2c1ed690c17768cd2b21ab0ac2ca7673eb9c00d635e146555db84b8a9061c3ca8bbefd2ae2b80f4a09561a098815c1357c4a7bca20712834842f171f5872668e88c7fcfe0bf526adcc84c5b1d7ca1b6486f25a2de3ad25173c2e3539f2a3642d825bdff3684ca6d0236cdd1cf93086b4574c588bb30275bcc87cc28ca453dcd07e3b2de929e898f0db8bb69e3725b2097abfb64d5bd000000000000000000", 0x28a}], 0x1}}], 0x1, 0x480e0)

3m39.450214757s ago: executing program 32 (id=938):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='illinois', 0x8)
sendmmsg$inet(r0, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000f80)="985e44efeabe001caacf3d8673c3a254a9a2d3197970cb347b70a243bf77139a94bc3ae91684aaf7b7dff691deb8f8aef2d915fb3a0794a9a9b431a819bc8b122c350637808dde804a048fd8696e524b2934126c443ce93d82e931eb9918e6c0827686e59209d2e02c9210fd8048f04ad6c42200fd9232f5aa6a361816bf21afb8473a064f1988536d78e6724b5888807b3aaafaf59f53121782a0a9370dc0feae13c8c2a1dcc8a3122aaa3dcd5b9247a915378e6492e5b94073dcdc87e7c794fb262a7e9ee0b9432f74331c6e9412ac6557c54c6ac72bc24ff70ca2f8ef53773c5cbdf4a583f81fdc8719dbe967b0690a3ed3f314c3e2ceebb3e29d00c2c1053d1e8b32d8a8be1bb9786746e0ee564365005fa3528b5ac1e35e03b69cb54111dfcebc6d585aacdd57c351ef1aa8050274b122a21b47432f17a0cacfd9524d9cb09029e4daefaea47f8cd5a4f1dee71093ebc076363e14f78dd3b129ed488606feb4b3ae5a7a085297416f1f1a8aeefa517ed1525ec76469b8b469851cc56c6016d9067dac3de3818856014c98ce8f36dac4d8cdb1f25e3c5de7bdab78066d2418c12e0acde73c05fc80a0658c7fbc52812a8423323a80e8a968e0ace13290fe8f862c1e7233c26f73ca24e5e441dd406e136df3a3996865e0693d955c691c675c3f6191b225d82ea4c6a7b2c1ed690c17768cd2b21ab0ac2ca7673eb9c00d635e146555db84b8a9061c3ca8bbefd2ae2b80f4a09561a098815c1357c4a7bca20712834842f171f5872668e88c7fcfe0bf526adcc84c5b1d7ca1b6486f25a2de3ad25173c2e3539f2a3642d825bdff3684ca6d0236cdd1cf93086b4574c588bb30275bcc87cc28ca453dcd07e3b2de929e898f0db8bb69e3725b2097abfb64d5bd000000000000000000", 0x28a}], 0x1}}], 0x1, 0x480e0)

1m17.068238453s ago: executing program 6 (id=1534):
openat2(0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x20c0, 0x108, 0x37}, 0x18)
syz_clone3(&(0x7f0000000140)={0x4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x2}, 0x7a)

1m16.53656241s ago: executing program 3 (id=1538):
syz_emit_ethernet(0x206, &(0x7f00000000c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "000210", 0x1d0, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, "8bb91d", 0x0, 0x11, 0x0, @local, @empty, [@fragment={0x87}, @hopopts={0x0, 0x32, '\x00', [@ra, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @generic={0x0, 0xb6, "a17e9ab13f6e142b20582c8d220c698a74dbf13dfc0ad1f526dfc43313759300929090dd4792ce67ea9f8769d3246f94412c56e0247939ed4b318e4b6066b72d91d9aff97fcf30977dfd4028dea535a8e9d1682c4794d255d62089716f2f97577f9bef264da3cfd3e5511fb253122f61808a73cc2e760f93ceb68a0db2613cf0956b23235f057c2f980a19266a6bb4a33a17f550a571c5b4211c5ba371f095c6624e16a2475c542d70b53ac9ef0c62c49dd5aa8ee516"}, @ra, @generic={0x0, 0x8c, "65fd1a52737fa1ec91495f4d25a766a5dd36bcffb376f4b35d4a5bc51b0f8fb9a273282a9c8ef192a4de26c8732765dbeb6ce083e81cebf0612d1cc7956b78fb34ce0e4a867c8b4094bab04b23680ba97ad5c624055e8504a7a121cf38a402a7aa80e05dbe56fecab8b014420231c0e997cbfda9bdc7f29e3a8b13dcfc396cf6ff1fcd8a7f43a107871fdd7e"}, @generic={0x0, 0x32, "8b168e4b48529453d91cea424030c8b200632af95e7c30322241dd567db14507f8b523b418a0edc41397a2f639f9f6c3b379"}, @pad1, @jumbo]}]}}}}}}}, 0x0)

1m16.284864103s ago: executing program 6 (id=1539):
syz_open_dev$vcsa(&(0x7f0000000300), 0xc, 0x4c0300)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000200)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
creat(0x0, 0x122)
r2 = semget$private(0x0, 0x5, 0x206)
semctl$IPC_STAT(r2, 0x0, 0x2, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000080)=0x1, 0x4)
bind$inet(r3, 0x0, 0x0)
sendto$inet(r3, 0x0, 0x0, 0x28040041, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
sendmsg$inet(r3, 0x0, 0x8c0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000440))
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r4, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000340)=[@sack_perm, @window={0x3, 0x6, 0x7}, @mss={0x2, 0x7}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @timestamp, @window={0x3, 0xfffe}, @sack_perm], 0x200000000000005e)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r4, &(0x7f0000000100)="fd0a0fc6dd4887c6048236609465f2e31c82c5f6be73b435a314bd11a3ccedb8ec4c8219ed81f552d8a12b9b15cdca91b058fbff98d619438ad5aaebb6ed6b54", 0xfffffffffffffe4f, 0x404c801, 0x0, 0x0)

1m14.208177295s ago: executing program 3 (id=1551):
bpf$MAP_CREATE(0xe4ffffff00000000, &(0x7f0000000280)=@base={0x4, 0x9, 0x4, 0x1, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50)

1m8.721065729s ago: executing program 3 (id=1557):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2b, 0x801, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x17, &(0x7f00000000c0)=@gcm_256={{0x303}, "b00dea55fe1c39c5", "0b59a18dc565492a7257f7bc0cf24d6568d8ca8aced6a5f94de56e4a39ffae42", "e60a84b0", "48f7cfcde39d035d"}, 0x38)

1m7.996998406s ago: executing program 6 (id=1560):
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x79})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x64a, &(0x7f0000000040)={0x0, 0x8835c, 0xc000, 0x20000a, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x8, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0x3}, {0xe, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, 0x0)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1m7.565579191s ago: executing program 6 (id=1563):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$bind(&(0x7f0000000300)='.\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x185093, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000008080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x152)

1m7.112340935s ago: executing program 6 (id=1565):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x3, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xfb}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet_opts(r1, 0x0, 0xd, 0x0, 0x0)
ioctl$SIOCGSTAMPNS(r0, 0x8907, 0x0)
recvmmsg$unix(r1, &(0x7f0000000fc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10003, 0x0)

1m6.049873256s ago: executing program 3 (id=1570):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
write$binfmt_aout(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="03000000b500000001000000feefffff"], 0xc8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e"], 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003d0000003d000000050000000a0000000400000f74feffff05000000250b00000e00000002000000ae0000000100000004000000ffffffff00000000"], 0x0, 0x5d, 0x0, 0x6}, 0x28)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r2 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002)
write$binfmt_aout(r2, &(0x7f0000000380)=ANY=[@ANYBLOB="03070000b5"], 0xc8)
write$binfmt_aout(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="03040000b500000001008aea0000feff"], 0xc8)
dup3(r2, r1, 0x0)

1m4.840709717s ago: executing program 6 (id=1575):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f0000002300)=[@in={0x2, 0x4e22, @remote}]}, &(0x7f0000000440)=0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000001c0)={r1, 0x2}, 0x8)

1m4.045451027s ago: executing program 33 (id=1575):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f0000002300)=[@in={0x2, 0x4e22, @remote}]}, &(0x7f0000000440)=0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000001c0)={r1, 0x2}, 0x8)

1m4.039972603s ago: executing program 3 (id=1580):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x38, r0, 0x801, 0x70bd26, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x1c, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "0fd693f959"}]}]}, 0x38}}, 0x40000)

1m2.087976687s ago: executing program 3 (id=1587):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000047000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a876d839240d29c035055b67db3e6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7e8dc34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bb44b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334583239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bf4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc508afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd360000000000000000ae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c97a088a22e8b15c3e233db00002e30d46a0024d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c29c5c0ed5bcdf510c3c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ced92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f68fa8d7c2dfb28e1f05e46b0933c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b19abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d588afd80e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda6900002a070886df42b27098773b45198b4a34ac97febd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f0000000000f8e10238d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d63521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07afef12ef060cd4403a099f32468f658000b4082d43e12186195cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea209b53b230ef0f2ab85cbdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bd3339403004b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab900000000000000000000d71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdbf24a0c5441ce046078492b53467cfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89cb349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb15f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c00c57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137df47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b558982016b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8b49e3d0168bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85a3009a5d30f479e293a3302e11350ea857b37e76ca3f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c8ffe0d508dcee3070e8b42ac38545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f98117919472b61b20026d7e646174b55d251f7f8ca5ccc22a5efb33b217eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4444e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24000000000000000000000000000000000000cd3211b3842b68a4eddca2eae28529e97a98d7ec3fd902df1ba8fc2ad2377e72d4e7aeacbbccef5614cd965511558f40720025c022bc9c213e407f6bc4b673c55aa8e729299a37fd6339acd906ac861ba56c9fa9b8b12b5e68a3cdadb906355e1f1d336a243172affe50d0fb36c3718a7498eed3d398f405a34d494414e87ef1ce1845510d43d00171d6b4b762f89564c22d542a119878709cd6822c3a3eb47a849b0737929fe9e1eecd1bff5a2b9880e2a6d8a3b3b7e88a673c96cda4455eff1c530db0e6598a2686aa09aeaf0f1aed95aeb8b0a2cc5ca31c0f56285cc05f7090a0e0583cf540d18cd8817e685c7b4ff176178ac1234f23e54445ec20b2689832d78409897a0307e89ebcd5f4ba042a3d10237a5a8a9a6eda36d2f337dc54537b80e8433341b135b4c5bb0173ffde46ccd260e1d4f2c51e8b07bb256f1317912cb1fc9e491e0bb9109e475cc795c23ad9f4f0042c5e9c655a4d865bc4a266e6a1d3d2b7ee53be9efb33a98933b5ba74ee3ac8d34b6af8c1fdbffade3abc80842b74354162f5b994ab5254cb068bc5e2ae242a1d37d0d49947c9317fa1a46c9e259ce0e1f9db992c53f7830a5e8f4fac6b187eb9f15ba61f730f86d7d7b63bbc7a1d9ff37e87a90a14e0655304da069f9009b62717649b6c6af94fcba713f8ee6fcce25aef44d009966614b61be9369ffc589a79051b0a0000000000000003ebd34c41afe268c33c9322c3a783772aec998f51a6e70fb932a8019e72ef5ab127bb30c79ebfd867441083546305fb39449c40a166ea389a6b77b7c87f66e8bf5806726b8fc50b943627314803a12c33312dce0a10f852da3e000000000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x8, 0x0, 0xee, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001a00)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000001840)="b9ff0307683a268cb8091a990053", 0x0, 0xfe, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x98)

46.84276925s ago: executing program 34 (id=1587):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x8, 0x0, 0xee, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x7}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001a00)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000001840)="b9ff0307683a268cb8091a990053", 0x0, 0xfe, 0x60000009, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x98)

16.81207492s ago: executing program 1 (id=1708):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
r1 = syz_io_uring_setup(0x3bd4, &(0x7f0000000180)={0x0, 0xcc19, 0x130c8, 0x6, 0x30e}, &(0x7f0000000100), &(0x7f0000000200))
io_uring_register$IORING_REGISTER_RESTRICTIONS(r1, 0xb, &(0x7f00000003c0), 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r1, 0xc, 0x0, 0x0)
io_uring_enter(r1, 0x2e6f, 0x8555, 0x2, 0x0, 0x0)

12.174979267s ago: executing program 0 (id=1722):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'sit0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@ipv6_newnexthop={0x28, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_ID={0x8, 0x1, 0x1}, @NHA_OIF={0x8, 0x5, r6}]}, 0x28}}, 0x0)
syz_open_dev$usbfs(0x0, 0x20000007d, 0x0)

10.707399401s ago: executing program 1 (id=1727):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, 0x0, 0x0}, 0x94)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r0, 0x90004)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
ppoll(&(0x7f00000000c0)=[{r0, 0x260}], 0x1, 0x0, 0x0, 0x0)

9.044221697s ago: executing program 1 (id=1730):
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
writev(r1, &(0x7f0000000440)=[{0x0}], 0x1)

8.744493869s ago: executing program 1 (id=1733):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
unshare(0x48000000)

8.505539445s ago: executing program 0 (id=1734):
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0)
iopl(0x3)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f0000000080), 0x7fff, 0x0)
getpid()
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x4014)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000002000)=""/102400, 0x19000)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r4 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r4, 0xaf01, 0x0)
rt_sigqueueinfo(0x0, 0x0, &(0x7f0000000fc0)={0x0, 0x0, 0x200})

6.716769115s ago: executing program 0 (id=1739):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi4\x00', 0x80001, 0x0)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000280)={0x8000001, 0x0, 0x0, 0x0, 0x4})

6.450297277s ago: executing program 2 (id=1740):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, 0x0, 0x0}, 0x94)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r0, 0x90004)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
ppoll(&(0x7f00000000c0)=[{r0, 0x260}], 0x1, 0x0, 0x0, 0x0)

5.685654431s ago: executing program 1 (id=1741):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffffe, 0x0, 0x3, 0x6c4ba42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xcd, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x7fffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x7cdd141a, 0x3, 0x7f, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfffffffffffffffd, 0x9, 0x0, 0xfffffffffffffffb, 0xfffffffffffffffd, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80003, 0x0, 0x0, 0x400000, 0x200, 0x0, 0x40000000000, 0x801, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x6, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x2, 0x0, 0x3, 0x10, 0x4000100000001]})
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0)
ioctl$RTC_AIE_ON(r4, 0x7001)

4.858906841s ago: executing program 5 (id=1743):
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
writev(r1, &(0x7f0000000440)=[{0x0}], 0x1)

4.64083918s ago: executing program 1 (id=1744):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'sit0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@ipv6_newnexthop={0x28, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_ID={0x8, 0x1, 0x1}, @NHA_OIF={0x8, 0x5, r6}]}, 0x28}}, 0x0)
syz_open_dev$usbfs(0x0, 0x20000007d, 0x0)

4.576752567s ago: executing program 2 (id=1745):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
pipe(&(0x7f0000000080))
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000004"], 0x50)
io_uring_enter(r0, 0x221c, 0x134d, 0x16, 0x0, 0x0)

4.472532745s ago: executing program 5 (id=1746):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040)=0x7)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x40000000141301, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x1000000000000, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0884113, &(0x7f0000000080)={0x1, 0x7, 0xfffffffc, 0x8, 0x8000, 0x5, 0x1, 0x0, 0xfffffffffffffffc, 0x1, 0x1, 0x2})

4.440187851s ago: executing program 2 (id=1747):
r0 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)

4.204825206s ago: executing program 2 (id=1748):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0xab, @loopback, 0x10001}, 0x1c)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @loopback, 0x23}, 0x1c)
fcntl$setstatus(r0, 0x4, 0x42800)
r1 = dup(r0)
r2 = socket(0xa, 0x3, 0xff)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty, 0x4000002}, 0x1c)
syz_emit_ethernet(0x6e, &(0x7f00000001c0)={@random="cfb14e407d33", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@ipv6={0x86dd, @icmpv6={0x9, 0x6, 'z&-', 0x38, 0x3a, 0x1, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x8001, {0x2, 0x6, "081331", 0x9, 0xff, 0x0, @loopback, @loopback, [@fragment={0x3b, 0x0, 0xe, 0x0, 0x0, 0x3, 0x65}]}}}}}}}, 0x0)
sendmsg$TIPC_NL_NODE_GET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x44, 0x0, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x28, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}]}, @TIPC_NLA_SOCK={0x4}, @TIPC_NLA_NET={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x88d0}, 0x40480d4)
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f00000000c0)={0x7, 0xffffffffffffffa0, 0xfa00, {0xffffffffffffffff, 0x10c}}, 0xfffffd88)

3.732428147s ago: executing program 2 (id=1749):
mknodat(0xffffffffffffff9c, 0x0, 0x21c0, 0x103)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$video4linux(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000100), 0x0, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={0x0}, 0x1, 0x6c00}, 0x0)
r1 = syz_io_uring_setup(0x810, &(0x7f0000000480)={0x0, 0x5c2d, 0x80, 0x2, 0x12c}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x28, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0xda1a0b6210925d15, 0x0, @fd=r1, 0x0, 0x0, 0x1, 0x1})
io_uring_enter(r1, 0x22d0, 0x20, 0x0, 0x0, 0x0)

3.540063208s ago: executing program 5 (id=1750):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x200a4800)
recvmsg$kcm(r0, 0x0, 0x42)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a1d0100000000000000000200"], 0xfc}}, 0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, 0x0, 0x8000)

3.089443045s ago: executing program 0 (id=1751):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000400)={'#! ', './file1/../file0', [{0x20, '-!)\x00\x9a+(V^!'}, {0x20, '*+(+'}, {}, {0x20, '\a\x00\x00\x00/'}, {0x20, '\xcf(\x03!'}], 0xa, "008b3d5978e08402783366b29e7bca03b6000092b929f38db16e33a080046801b0728381f07c35183b8242af772d"}, 0x5e)
write$UHID_INPUT(r1, &(0x7f00000007c0)={0x8, {"dc5d3b0169633d3eba3eabbc09167be55101d4af4b22a373236464d2dbfaa84399b77bd438a54364a7ebc5bdaab4f9decb7c044318cd59a0af8279bcab35dd7daf7a0ceb381df2c32eff45b13e2c8f40e1895355bf6f165200cb1ca41a155730ee2e9f83183f9fafe029d0401b0770618254a8b2dc87b630072b1e2de160d1afed51b74c14b71ec1b226a324482d14ad586b1a4ce80e458fe45244c01eddeddf3564af838d6d5324f8a77023d6eb7aa14397a0e1413ea1c3dfdf063a35b709e627f36fe403ee3117365be5017682f53595f28543062c740a94a794312f5cebc315044b8ea000a5d0f27812ab0ce149d11e6f6f7620c5f3e250bf67d13a1ca39dbb7b8b5a31e3d7ba7ebe5849a7a09b61fc9f2cfc54b89e9cd0105bca49483ce55e0187ce2ad692a18219d881057c838587b915337169ee054655f26a04df913a658fccbf4def6aad750ca4796b74d322c67e9d4ee6a530a22dcc35db850b424d6ec9f62495b9f9fd2b000feadd57d26dbd505798c208d91eb0aab0fd97537631b8bf81ce0e2241c4272be4ff69b390e4485d574146b76d1fdbf7fc5334906805534cdae1e47240af7761a18fc8bd0a694be47529da98bc0f98eb7db3fc4a74cbb6e486f4de90fbf2452e72c2e1dca44543ad9ad094b8bc861eef1e814662d0b350339e3a510d459c6f83aabd5fd3dcb38224056d761e7df9b482b9905f1e2135c1929be328ecdb69c007a3efd548502c83106f6df1ab1178fac499eda92ad4373155227ec2df150c919d322ecb3ea37e659285f18a3e2f79b59900ca438df3a1381380a12d3ad7678e0a8d3bdfb40651389b4ac8c66138d442d70eafdc2df8b080028006b124e4ebe0d9883ef100f1934e42794146382c1d628fd2ebe5859b6c243824903d056d800975675bb1913142adbc039a9c68c2f146a0e8903447313f5e5549905f397a9b1f21a93b80c4d04a8ea7a29a50fbc5407a9305bba420edf898ea678d6879489c39692c99bb6dacf61f5f97637b94c1031d635b5423b38b9196fafaaf87b2796eadc21466af5a10281e6a808748969d29efb444c99a4cb2111732a792dbca4376a125a68f7cdac065cc6173dc21caafba48c742d9a7df2f771ff2f5725b22c247d4e0c6106f9f5f6929b69929ab37e9a9b326ce618bb702b883b12026f1300f21f2c7440cac8c5f1210a78aa067211d2827f5dcc7578252c2ccc3f67bab9d1bb6939b21b550788ef550acfed4bf50c0b4fb3ca4d2872ee64f95d611a317d9daaf373a10d868680b2226396c95fa2b0ab4d6fce06c3b42cb97d17a7b5089061537fdeb1a53040869f7befca330358fdba86754fc2e46c2113e1484cb37534af8f0408a7ee313778dab49f08229964298f847ea66c4ec319f64b6a12da585bc59e82e0263c507b397d3efee3b4066f4d25566aa1549f6185f6375f84b65fa8945148b90430c86a5b6fdf58d5c812b98d9dc621fd9a3d9f1a577495356516d1cbcf5e8bb8923b54b247225b9c3892b18a9e137f3620c734052af9dc8f1ea36f0d4592d5ee32e35676a84dc891f97456f2ac3a4ab58a42bcdc221a4ac8bb28d428add2fcbe5b110a8afd5d23b31e827bd16167b2d88cae024afc04a722ac0b4d45c52512e6b6f102aac4be21bc89ce246539048370553665b0a4336a6db99d0d19399be6437bf21419304331b4342b2c1db580f0c9bf681fdb8e9fa3e025454197bbc82ef93ee2f385660818ec5127080675a8013766469afe3b1e36e81bf2f04c3a26eaf4517551e734d21ba3bc90e48aea0891792970c39f3f528397e9b7ae190f1760fe5960dc763ee0a17939c60bfcac0a8914be82c749e4fe85d1ac5fa733413468fb8941085e8c4d6e0b6d1e62e20da58440facd640ddbb6c1f694b3ca48757a34c5a11668368711a1d4f3a81d31ac30d71277d7ae77882b6841cfa6289e6cce84a3ad57eeb328f831888ac7d3cfcd3a472a48d903f20cec8c8ae8d0bea04ebf7413ef7693f8ed876e49bd5f89d7e1078208ff62712e330fc0341b9ccf26845578d44b1e0c66d1bebc14742baedfabb8e9a2c8f42730360c72997efe0ce786ff330c2eb6e0ff20896f813c2a515ce76f826c11a1c1588eb369231ddeb4a2f9f9591ecdecc74d20aeb50047beb3ab89a9e4e1b805a20b645c79d0bc5d0247fab8ba46a97a07630b1f1cb69b42b568af746733d2c581f057873d64fe6e659b00b4a26745f5fba1fe7406a86b007936c7cfdac53a4c5b0ea9f6604863c8e3f174eddbb09175f6e13cda9a860cf400ef9ed02b895502ac6e6de6a658249c3c6e8a653517eae2231e56e0f120547923c6549ebc1ed14c623637ce3d96af5c93a32e58e2d9659d8b5b145888b52d9a5b5cb3cdf594eb137bcef2ba068cfd2c6ccf7ab6e5b4ec55e9197bfb91c9b8729f7b50cf0b0326f7ea3e712c77674d48545ca2a86744c3c38f149d69cf811beacf7e5f49c7bfba20f1dcf3d7bc0b9c796016820a46495d244c9606a06fe2e14233eda78d69ae4523ad7b708b0c7ead44d7fd376fed60e3cc2ee25e9600adfbe87ac7c8fb8269aec9459602af0f420becda6120ce7d9626c65ae7f860639e8bf664eb4301ec18add0e436c0356c12ab6b4ca35da2b43c4a8c239fd0b59a2ce94843cdfa1667053165053633b062844dbb0d00070fde74fa3178eb5f1f5fd02e2088d8690379f39ab22c080cdcb29d700bac74fabd8a356fe99afe83a5d99aa5024e9158a299eda6c99b6701e64f1d68e7e2c0c6e88396bb535a02d0948f0a250a6e090041c96d9c9acd6134d44d516fd1010c39e572b86b05bb1326a2a4f23f11181186f9c2a01dc7b58c0129f4b851ca9b1e3dc35db7364e29ef646211796b1651511e041345abce427fa5d6e48b8fb078c8432061a4cc518a8f2a2caf709a5c1473a62112a6650afc64eec12f8f9c08cff1b6fbf7a1209fc8661f62303b7c5d49c1d0b32a9f37e81ed9ab6193816d40995ed49c10b9f5752e04d57535a3d16f06c65d32846c31ec9787ec4a965679eb804e86b45d007f38d8104550770dc6f313bc846e43a14a8c21d0628c744e3e83cb998d1b7acfe996541a8c03852dadf9326444c582b481cae844e4f3fe3d638903b38f24633b63adbad841ac6c4c1169d781a0e271e8a967b1c7e986fcb3a66168e86e3559a44fcfa92452260491da9397659af60453f4cd4be2d15439445ec2b4366a79d3283da912d9d499df1242bd174edc235848caa21d2c997aff0e95c7e5cc0803c90fab84e7be7b37909d0e2f3bc9974e3388acb6800baba183ecc8eea8c71c0d65d669e41f99ceae523b7a6b772f3b8ebba1d2127ccc3ddb7ddcb4ec73cbdc26fc87c3848e258a0b5484d3a13e40ec4e4a65dd92f09e9fe1e3e2f8b96c4e363aa3683860dee62dfcf8823ee4a3593a092e0bd9c4cedacf44a272faa164447b01f46a7795642a40c61b0034a37f0e9b792428a0ddcd144fe8263088eaac8016f8f1cd30b55ac90a8f10d785b7570dd9e639a4a068d3fe98a420b9f72e79de817f676c2a224300d749571ad43f49d1fbe838f4566bc7b5f104c384ad87189213152b644d9fcbdf98bafeee569d640ce9045779f1d90024c023a7480a358dee276fba139c14b4fdb12885240903d0e61dc161659a68f62c92b899007e0f2b65bf0a069e9e57c9b6ae50a3b30dd1003fb0eead73ae2f6010b3b356b4060579a4f29935e1f00c01d12e5f44e8e3163d81dfef7ca8560604240c7e96e4454c6971614df306c768121abb3f628e3f1d2d026f58d1087334c5bdb74d7c949b0ee66a4531ba4e9b922aee3d0f802ed034734507a5913c52966f1f8bd4577840de0253aabc23299dced2a299859c07af9fb0f9c29b6533b9d84d471390d59ab315f5ddb226f6b8dd7889295f0fb1f7bd1adafe4cc520a1e84bf2a59d5b9795aeafc8d6fd66a8228aba8653b98622617ddfeb5d6795c9bd2f35d4a0c386e862675a50e3314c3fbb17aca151c13c7fc8b1d1b72ed0a958537b5ddc9e74bddc2b9571ec3f2b7775b125338d4852a75a63941564c65bb36dfb6bea4aab1ae7a4f285c2177aa98406eb2cc10934aa92d5a9612d4455c84ad200841d289b5c2d5deab0d8e2459598ef183d3dc47f6bad0b9513710600cfa4d69fcd5763cdcc4f2c2b7cd7d4491fd52f4aec82ce846c0988f6f0123e21e900d39c61085e68c9badc350b44004f6c042d64b0d0cbf91ad0592b198f1eeea1e52200bc8e6d62848d6884b10bdde72466039da488be6b340c23148f666f2fe6e032c07dac43586df182aca9116f4600313fa8375c76337ba86bdc391dae6450218f58f047ced64befc6bb5c2a60024669630a6279fedf2fe45e7e19ce582ad96ae0d023eb9b39f5f1e666e73bb038ae38157275be5eb3e7cbc8b05adf53e817646bdc2cfce98e5d162bf7faaca787db8717ab8b27b9e35609c5fb9fe9def07f010df8b43cf5c96851eadfdeff0b7bc5826e7e15490ae9c3d14166ee81bef007070e7981235a673804ad89943ee6b51ac63364f7870e121e6ff23a0c7d179527cd58dd7a4ca37247c2bd9efc79b720bb1ee2d39862e98cb81e93cf5b48d5d02ee8ac737ab504c867a1c49e678300803c94fbe978dea918a1e71b9791ee1e4d30056e86c26a4675a8b090be2365c0b451a13ece52a89a7057fe2052e11c6666eb916d823ea66bf217c320acba3b714910734b2d27c2fa586bd7f7664b0d1422adabad2ce2afc10270057f11940fac1a51d023ce48bd04ea39b7f99381b239fd0ddeea0dce7863ec1f8f61775013b6414ecf86e686a340a3148f87a9d7d60a1f2da53436d16fc88d6a4e7c3d55e0dd004cbecc15a5558eb705d82aacb1862ddc251dd5d9cbf1d78f97900ce6e8dab0ea678cb823bd1e7bbd1e927841af08f5427878c19f4f322228f9b36287fc13e7c1293ea875ae73815e052d6c2ebc40df8f7b9d1f76e0b10e35aa160944983d8e6b790df0d9b13f3460657336d81f7d83c0350324b930ec9c7557ce12887f76372e126f504b0980fea27f31a780c05187b9b5353dafc6b101543b24332b96e15bc26b19062e52fa9f86d260ee3a3bc92a133e328407bb85357ee5c45cb87228f44888b14941b5911b050e9319fe88033f830a8490917a9c0572ebbc5492b4e1083a2e3d77215a34abef947b5b9a950e780662de18873e55899c92db3ad3d437e8407890afa6b0c04ef861b8bc85fbbe1bb67b3d9ef001409f84b8ec4f01d861cecc143a805b981ab5cf5b605057b63cb2c84ec358e510a69cd8c33a8a62fe4680d0c980145cc709157832bfaef261cb0466c237376ca2944ce9affffd4b1dc7cc9511da0b34bffb9ac216fb8cf7c6572d95627787720d1ba67c6512fcdb16f6329e9668681c404efebad559f81f05971b5efb6b4cca97ad0346753cc0a40a877242d8a808c602b03dc962cee38e646cb18abb079c70d357c30738a70f55cd3c5956a83a1bfcd6649dd765f16bfe968066345df7380bbc0c16b3b5af513d6458c791343952f33a051c5d711c1f35af1b47f3db9bbfb5c7c636b3a2b52805d606479879be0b404a28ade5649a3185e0f85a85fc15cd824671c2befdd0da509597c87d869f0bd7ad163ad93ca28fc0c4025eccaafe385ec3fc06c54ebcd7b07b6c7e0197c5b9ef886159a1585ae45248f865be760db6f5bc8f868fc6aefd04e34ecb51159e4cdcc2214b42b1ca9caec13ba3e1b2e7a3c736977b226213d265c2873195122a9b448088c8b50edd549be41c38ab176807b75e7267f86e4", 0x1000}}, 0x1006)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xc, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "9001001c781265406c7f306003d8a0f4bd0000000300000000002f59911800"}})

2.365447569s ago: executing program 2 (id=1752):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000000), 0x106, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
socket$inet6(0xa, 0x3, 0x2f)
sysinfo(&(0x7f0000000000)=""/196)
socket$kcm(0x11, 0x3, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r1, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x1, 0x400000, 0x12, "3eccd8fd0000000000000010000000040100"})
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x0, 0x0)
getpid()

2.296310184s ago: executing program 5 (id=1753):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
userfaultfd(0x801)
open(&(0x7f0000000280)='.\x00', 0x0, 0x126)
socket$nl_route(0x10, 0x3, 0x0)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0xa8041, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$xdp(0x2c, 0x3, 0x0)
close(0x3)
socket(0xa, 0x2, 0x0)
socket$kcm(0xa, 0x5, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
pipe(&(0x7f0000000100))
socket$can_j1939(0x1d, 0x2, 0x7)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08001400fc000000080011000700000008000e00800000000800", @ANYRES64=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

2.110084947s ago: executing program 0 (id=1754):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffffe, 0x0, 0x3, 0x6c4ba42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xcd, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x7fffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x7cdd141a, 0x3, 0x7f, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3, 0x4, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfffffffffffffffd, 0x9, 0x0, 0xfffffffffffffffb, 0xfffffffffffffffd, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80003, 0x0, 0x0, 0x400000, 0x200, 0x0, 0x40000000000, 0x801, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x6, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x2, 0x0, 0x3, 0x10, 0x4000100000001]})
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0)
ioctl$RTC_AIE_ON(r4, 0x7001)

1.46707024s ago: executing program 5 (id=1755):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, 0x0, 0x0}, 0x94)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r0, 0x90004)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
ppoll(&(0x7f00000000c0)=[{r0, 0x260}], 0x1, 0x0, 0x0, 0x0)

565.220339ms ago: executing program 0 (id=1756):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x9, 0x0, 0x81, 0x6}]})
r0 = syz_open_dev$dmmidi(&(0x7f0000000300), 0x2, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r0, 0x40045702, &(0x7f0000000000))
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000380)={0x1, 0x6, 0x6, 0x1, 0x1})

0s ago: executing program 5 (id=1757):
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
writev(r1, &(0x7f0000000440)=[{0x0}], 0x1)

kernel console output (not intermixed with test programs):

devsim netdevsim4 netdevsim2: renamed from eth2
[   92.703676][ T5824] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   92.731659][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.833622][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[   92.849789][ T5823] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   92.873125][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.883631][ T3956] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.890953][ T3956] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.905099][ T5823] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   92.916406][ T5823] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   92.929802][ T5823] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   92.958688][ T2969] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.965816][ T2969] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.006714][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   93.024027][ T2969] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.031205][ T2969] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.063021][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.070136][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.115221][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.186377][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[   93.222611][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.254622][ T3956] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.261815][ T3956] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.308256][ T5828] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   93.324619][ T3956] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.331756][ T3956] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.344383][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[   93.394012][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.410403][ T3956] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.417556][ T3956] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.452822][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[   93.472658][ T3956] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.479775][ T3956] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.515728][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.556908][ T3956] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.564081][ T3956] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.656499][ T3956] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.663651][ T3956] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.715888][ T5823] 8021q: adding VLAN 0 to HW filter on device team0
[   93.758468][ T3956] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.765587][ T3956] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.798313][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.805463][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.915757][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.933380][ T5827] Bluetooth: hci3: command tx timeout
[   93.933431][ T5840] Bluetooth: hci5: command tx timeout
[   93.938817][ T5846] Bluetooth: hci0: command tx timeout
[   93.946064][ T5845] Bluetooth: hci4: command tx timeout
[   93.952525][ T5841] Bluetooth: hci2: command tx timeout
[   93.956169][ T5831] Bluetooth: hci1: command tx timeout
[   93.985320][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.239434][ T5828] veth0_vlan: entered promiscuous mode
[   94.266157][ T5832] veth0_vlan: entered promiscuous mode
[   94.314804][ T5828] veth1_vlan: entered promiscuous mode
[   94.340462][ T5832] veth1_vlan: entered promiscuous mode
[   94.425260][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.481858][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.503690][ T5828] veth0_macvtap: entered promiscuous mode
[   94.554649][ T5828] veth1_macvtap: entered promiscuous mode
[   94.573278][ T5832] veth0_macvtap: entered promiscuous mode
[   94.604194][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.624865][ T5837] veth0_vlan: entered promiscuous mode
[   94.634402][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.643460][ T5832] veth1_macvtap: entered promiscuous mode
[   94.664494][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.693821][ T1123] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.715334][ T1123] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.739000][ T5837] veth1_vlan: entered promiscuous mode
[   94.752641][ T1123] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.765637][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.778515][ T1123] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.793975][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.830064][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.942968][ T1123] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.972060][ T1123] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.984451][ T5837] veth0_macvtap: entered promiscuous mode
[   94.998692][ T1123] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.058885][ T1123] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.112793][ T5837] veth1_macvtap: entered promiscuous mode
[   95.156986][ T2969] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.167888][ T2969] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.169267][ T5823] veth0_vlan: entered promiscuous mode
[   95.255208][ T5823] veth1_vlan: entered promiscuous mode
[   95.275984][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.283810][ T1123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.303863][ T1123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.339465][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.349042][ T5833] veth0_vlan: entered promiscuous mode
[   95.388190][ T2969] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.397197][ T5824] veth0_vlan: entered promiscuous mode
[   95.403368][ T2969] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.418027][ T1097] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.424475][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   95.431547][ T1097] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.455812][ T1097] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.466505][ T1097] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.529332][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.539807][ T5833] veth1_vlan: entered promiscuous mode
[   95.551139][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.584652][ T5823] veth0_macvtap: entered promiscuous mode
[   95.596801][ T5824] veth1_vlan: entered promiscuous mode
[   95.625589][ T5823] veth1_macvtap: entered promiscuous mode
[   95.658002][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.674222][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.762502][   T60] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.824084][   T60] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.882530][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.010904][ T5840] Bluetooth: hci5: command tx timeout
[   96.016381][ T5845] Bluetooth: hci4: command tx timeout
[   96.022112][ T5831] Bluetooth: hci1: command tx timeout
[   96.028231][ T5840] Bluetooth: hci0: command tx timeout
[   96.033880][ T5845] Bluetooth: hci2: command tx timeout
[   96.039414][ T5831] Bluetooth: hci3: command tx timeout
[   96.075614][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.468010][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.483373][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.613212][ T5833] veth0_macvtap: entered promiscuous mode
[   96.666281][ T5833] veth1_macvtap: entered promiscuous mode
[   96.697553][ T5824] veth0_macvtap: entered promiscuous mode
[   96.719990][ T1097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.737450][ T5824] veth1_macvtap: entered promiscuous mode
[   96.756836][ T1097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.876495][ T1123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.897632][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.918705][ T1123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.086136][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.579806][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.697145][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.771651][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.793200][ T1123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.806656][ T1123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.813519][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.845162][    T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   97.897739][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.934691][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.945955][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.976526][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.989039][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.016709][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.030935][    T9] usb 4-1: Using ep0 maxpacket: 32
[   98.039987][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   98.077186][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   98.112617][ T3956] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.116197][    T9] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[   98.120444][ T3956] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.168596][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.204795][    T9] usb 4-1: config 0 descriptor??
[   98.233516][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.246672][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.297187][ T2969] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.309791][ T2969] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.392027][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.403817][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.670109][    T9] savu 0003:1E7D:2D5A.0001: unknown main item tag 0x0
[   98.680924][ T5994] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   98.703742][    T9] savu 0003:1E7D:2D5A.0001: unknown main item tag 0x0
[   98.728326][    T9] savu 0003:1E7D:2D5A.0001: unknown main item tag 0x0
[   98.777559][    T9] savu 0003:1E7D:2D5A.0001: unknown main item tag 0x0
[   98.815974][    T9] savu 0003:1E7D:2D5A.0001: unknown main item tag 0x0
[   98.836202][    T9] savu 0003:1E7D:2D5A.0001: unbalanced collection at end of report description
[   98.871230][ T5994] usb 1-1: Using ep0 maxpacket: 32
[   98.892984][ T5994] usb 1-1: config 0 has an invalid interface number: 63 but max is 0
[   98.913915][    T9] savu 0003:1E7D:2D5A.0001: parse failed
[   98.930304][ T5994] usb 1-1: config 0 has no interface number 0
[   98.946925][    T9] savu 0003:1E7D:2D5A.0001: probe with driver savu failed with error -22
[   98.957120][ T5994] usb 1-1: config 0 interface 63 has no altsetting 0
[   98.998341][ T5994] usb 1-1: New USB device found, idVendor=17a1, idProduct=0128, bcdDevice=3b.9a
[   99.027209][    T9] usb 4-1: USB disconnect, device number 2
[   99.056016][ T5994] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.105483][ T5994] usb 1-1: config 0 descriptor??
[   99.881976][ T5994] usb 1-1: string descriptor 0 read error: -71
[   99.890502][ T5994] gspca_main: t613-2.14.0 probing 17a1:0128
[   99.982378][ T5994] gspca_t613: unknown sensor 0000
[   99.987497][ T5994] t613 1-1:0.63: probe with driver t613 failed with error -22
[   99.997204][ T5994] usb 1-1: USB disconnect, device number 2
[  103.786677][ T6068] mmap: syz.0.30 (6068) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  104.587030][    T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!!
[  104.596993][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  104.881906][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  105.170372][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  105.179175][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  105.195284][    T0] NOHZ tick-stop error: local softirq work is pending, handler #342!!!
[  105.205215][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[  105.292117][    T0] NOHZ tick-stop error: local softirq work is pending, handler #108!!!
[  105.302651][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  105.371625][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  112.783391][   T31] audit: type=1326 audit(1765817510.192:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  112.868093][   T31] audit: type=1326 audit(1765817510.192:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  112.960950][   T31] audit: type=1326 audit(1765817510.192:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  113.063541][   T31] audit: type=1326 audit(1765817510.192:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  113.205882][   T31] audit: type=1326 audit(1765817510.202:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  113.459658][   T31] audit: type=1326 audit(1765817510.202:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f7a511915dc code=0x7ffc0000
[  113.747923][   T31] audit: type=1326 audit(1765817510.202:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f7a51191514 code=0x7ffc0000
[  113.844361][   T31] audit: type=1326 audit(1765817510.202:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f7a51191514 code=0x7ffc0000
[  113.937021][   T31] audit: type=1326 audit(1765817510.202:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  114.025604][   T31] audit: type=1326 audit(1765817510.202:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.1.52" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  114.981037][ T5994] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  115.377347][ T6165] =======================================================
[  115.377347][ T6165] WARNING: The mand mount option has been deprecated and
[  115.377347][ T6165]          and is ignored by this kernel. Remove the mand
[  115.377347][ T6165]          option from the mount to silence this warning.
[  115.377347][ T6165] =======================================================
[  116.230747][ T5994] usb 2-1: Using ep0 maxpacket: 16
[  116.521139][ T6162] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  118.390103][ T5994] usb 2-1: device descriptor read/all, error -71
[  118.485111][ T6190] netlink: 8 bytes leftover after parsing attributes in process `syz.3.71'.
[  120.185228][    T9] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  120.430776][    T9] usb 3-1: Using ep0 maxpacket: 32
[  121.410052][    T9] usb 3-1: unable to read config index 0 descriptor/start: -71
[  121.450889][    T9] usb 3-1: can't read configurations, error -71
[  122.630787][    T9] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  124.821072][    T9] usb 3-1: Using ep0 maxpacket: 32
[  124.858150][    T9] usb 3-1: config 0 has an invalid interface number: 63 but max is 0
[  124.885380][ T6244] netlink: 4 bytes leftover after parsing attributes in process `syz.2.83'.
[  124.945127][    T9] usb 3-1: config 0 has no interface number 0
[  124.972690][ T6244] veth1_to_hsr: entered promiscuous mode
[  124.978657][ T6244] veth1_to_hsr: entered allmulticast mode
[  124.991544][    T9] usb 3-1: config 0 interface 63 has no altsetting 0
[  124.998375][    T9] usb 3-1: New USB device found, idVendor=17a1, idProduct=0128, bcdDevice=3b.9a
[  125.039715][ T6247] veth1_to_hsr: left promiscuous mode
[  125.047819][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.080491][    T9] usb 3-1: config 0 descriptor??
[  125.086920][ T6247] veth1_to_hsr: left allmulticast mode
[  125.092450][   T31] kauditd_printk_skb: 33 callbacks suppressed
[  125.092466][   T31] audit: type=1326 audit(1765817522.512:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07f5b8f749 code=0x7ffc0000
[  125.092523][   T31] audit: type=1326 audit(1765817522.512:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f07f5b8f749 code=0x7ffc0000
[  125.092570][   T31] audit: type=1326 audit(1765817522.512:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07f5b8f749 code=0x7ffc0000
[  125.092616][   T31] audit: type=1326 audit(1765817522.512:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f07f5b915dc code=0x7ffc0000
[  125.092662][   T31] audit: type=1326 audit(1765817522.512:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f07f5b91514 code=0x7ffc0000
[  125.092708][   T31] audit: type=1326 audit(1765817522.512:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f07f5b91514 code=0x7ffc0000
[  125.092754][   T31] audit: type=1326 audit(1765817522.512:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07f5b8f749 code=0x7ffc0000
[  125.097468][   T31] audit: type=1326 audit(1765817522.512:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f07f5b8f749 code=0x7ffc0000
[  125.460770][   T31] audit: type=1326 audit(1765817522.702:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07f5b8f749 code=0x7ffc0000
[  125.520835][   T31] audit: type=1326 audit(1765817522.702:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6249 comm="syz.5.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07f5b8f749 code=0x7ffc0000
[  125.543427][    T9] usb 3-1: string descriptor 0 read error: -71
[  125.555933][    T9] gspca_main: t613-2.14.0 probing 17a1:0128
[  125.584834][    T9] gspca_t613: unknown sensor 0000
[  125.598773][    T9] t613 3-1:0.63: probe with driver t613 failed with error -22
[  125.627243][    T9] usb 3-1: USB disconnect, device number 3
[  126.160760][    T9] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  126.338372][    T9] usb 6-1: Using ep0 maxpacket: 16
[  126.379140][    T9] usb 6-1: unable to get BOS descriptor or descriptor too short
[  126.432909][    T9] usb 6-1: config 1 interface 0 has no altsetting 0
[  126.468203][    T9] usb 6-1: New USB device found, idVendor=05ac, idProduct=0242, bcdDevice= 0.40
[  126.511450][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.535224][    T9] usb 6-1: Product: syz
[  126.544685][    T9] usb 6-1: Manufacturer: syz
[  126.554586][    T9] usb 6-1: SerialNumber: syz
[  128.816679][    T9] usbhid 6-1:1.0: can't add hid device: -71
[  128.837348][    T9] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  128.884713][ T6279] netlink: 12 bytes leftover after parsing attributes in process `syz.0.99'.
[  128.902525][    T9] usb 6-1: USB disconnect, device number 2
[  129.012751][ T6118] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  129.672313][ T6118] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  129.692223][ T6118] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  129.726791][ T6118] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.773114][ T6118] usb 5-1: config 0 descriptor??
[  129.821113][ T6118] usb 5-1: can't set config #0, error -71
[  129.833557][ T6292] netlink: 8 bytes leftover after parsing attributes in process `syz.5.104'.
[  129.917852][ T6118] usb 5-1: USB disconnect, device number 2
[  132.095223][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  132.130143][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  132.173498][   T31] kauditd_printk_skb: 50 callbacks suppressed
[  132.173515][   T31] audit: type=1326 audit(1765817529.592:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3dd8f749 code=0x7ffc0000
[  132.317090][   T31] audit: type=1326 audit(1765817529.622:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbb3dd8f749 code=0x7ffc0000
[  132.397963][   T31] audit: type=1326 audit(1765817529.622:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3dd8f749 code=0x7ffc0000
[  132.956009][   T31] audit: type=1326 audit(1765817529.632:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fbb3dd915dc code=0x7ffc0000
[  132.978200][   T31] audit: type=1326 audit(1765817529.632:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fbb3dd91514 code=0x7ffc0000
[  133.040816][   T31] audit: type=1326 audit(1765817529.632:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fbb3dd91514 code=0x7ffc0000
[  133.141493][   T31] audit: type=1326 audit(1765817529.632:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3dd8f749 code=0x7ffc0000
[  133.262665][   T31] audit: type=1326 audit(1765817529.642:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fbb3dd8f749 code=0x7ffc0000
[  133.320885][   T31] audit: type=1326 audit(1765817529.642:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb3dd8f749 code=0x7ffc0000
[  133.399515][   T31] audit: type=1326 audit(1765817529.642:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6323 comm="syz.4.116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbb3dd8f749 code=0x7ffc0000
[  133.610831][ T5816] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  133.774082][ T5816] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  133.821929][ T5816] usb 2-1: config 0 has no interface number 0
[  133.851282][ T5816] usb 2-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  133.888138][ T5816] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.926766][ T5816] usb 2-1: Product: syz
[  134.010494][ T5816] usb 2-1: Manufacturer: syz
[  134.120475][ T5816] usb 2-1: SerialNumber: syz
[  134.643915][ T5816] usb 2-1: config 0 descriptor??
[  135.047840][ T5816] dvb_usb_ec168 2-1:0.1: probe with driver dvb_usb_ec168 failed with error -32
[  135.096529][ T5816] usb 2-1: USB disconnect, device number 4
[  137.776442][ T6407] program syz.2.147 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  141.081384][ T6447] binder: 6446:6447 ioctl c018620c 200000000240 returned -1
[  142.521630][ T5839] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  142.730944][ T5839] usb 3-1: Using ep0 maxpacket: 32
[  142.949516][ T5839] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  143.101821][ T5839] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  143.150795][ T5839] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.244394][ T5839] usb 3-1: config 0 descriptor??
[  143.291120][ T6000] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  145.015027][ T6000] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  145.026960][ T6000] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.035072][ T6000] usb 2-1: Product: syz
[  145.039855][ T6000] usb 2-1: Manufacturer: syz
[  145.044584][ T6000] usb 2-1: SerialNumber: syz
[  145.061006][ T6461] usb 3-1: USB disconnect, device number 4
[  145.148687][ T6000] usb 2-1: config 0 descriptor??
[  145.477369][ T6000] dvb_usb_rtl28xxu 2-1:0.0: chip type detection failed -71
[  145.513877][ T6000] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  145.589623][ T6000] usb 2-1: USB disconnect, device number 5
[  146.697603][ T6504] comedi comedi3: multiq3: a I/O base address must be specified
[  146.859418][ T6507] netlink: 8 bytes leftover after parsing attributes in process `syz.3.183'.
[  149.971643][ T6526] binder: 6519:6526 ioctl 4018620d 0 returned -22
[  150.216634][ T6530] netlink: 24 bytes leftover after parsing attributes in process `syz.5.191'.
[  150.266777][ T6530] netlink: 24 bytes leftover after parsing attributes in process `syz.5.191'.
[  150.286855][ T6526] binder: 6519:6526 ioctl 4018620d 0 returned -22
[  150.695145][   T31] kauditd_printk_skb: 30 callbacks suppressed
[  150.695161][   T31] audit: type=1326 audit(1765817548.102:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  150.798768][   T31] audit: type=1326 audit(1765817548.102:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  150.901775][ T6530] Zero length message leads to an empty skb
[  151.150808][   T31] audit: type=1326 audit(1765817548.102:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  152.120657][   T31] audit: type=1326 audit(1765817548.102:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f7a511915dc code=0x7ffc0000
[  152.275018][   T31] audit: type=1326 audit(1765817548.102:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f7a51191514 code=0x7ffc0000
[  152.734149][   T31] audit: type=1326 audit(1765817548.102:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f7a51191514 code=0x7ffc0000
[  153.404744][   T31] audit: type=1326 audit(1765817548.102:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  153.661594][   T31] audit: type=1326 audit(1765817548.102:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  153.740800][ T6554] netlink: 32 bytes leftover after parsing attributes in process `syz.0.198'.
[  153.771089][   T31] audit: type=1326 audit(1765817548.102:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  153.840860][ T6118] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  153.848608][   T31] audit: type=1326 audit(1765817548.102:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a5118f749 code=0x7ffc0000
[  153.983070][ T6526] syz.2.188 (6526): drop_caches: 2
[  154.241993][ T6118] usb 2-1: Using ep0 maxpacket: 16
[  155.035136][ T6118] usb 2-1: unable to get BOS descriptor or descriptor too short
[  155.053829][ T6118] usb 2-1: unable to read config index 0 descriptor/start: -71
[  155.082998][ T6118] usb 2-1: can't read configurations, error -71
[  155.545885][ T6577] netlink: 24 bytes leftover after parsing attributes in process `syz.5.206'.
[  155.629669][ T6577] netlink: 24 bytes leftover after parsing attributes in process `syz.5.206'.
[  156.300764][ T5967] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  156.370872][ T6461] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  156.420392][ T6595] Bluetooth: MGMT ver 1.23
[  156.470761][ T5967] usb 3-1: Using ep0 maxpacket: 8
[  156.484580][ T6595] Bluetooth: hci0: invalid length 0, exp 2 for type 13
[  156.487036][ T5967] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  156.540467][ T5967] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  156.568575][ T5967] usb 3-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[  156.581627][ T6461] usb 1-1: Using ep0 maxpacket: 16
[  156.600063][ T5932] kernel write not supported for file bpf-prog (pid: 5932 comm: kworker/0:6)
[  156.601316][ T5967] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.775017][ T5967] usb 3-1: Product: syz
[  156.779965][ T5967] usb 3-1: Manufacturer: syz
[  156.797639][ T6461] usb 1-1: config 0 has an invalid interface number: 249 but max is 0
[  156.801509][ T5967] usb 3-1: SerialNumber: syz
[  156.819439][ T5967] usb 3-1: config 0 descriptor??
[  156.824599][ T6461] usb 1-1: config 0 has no interface number 0
[  156.824640][ T6461] usb 1-1: config 0 interface 249 has no altsetting 0
[  157.595273][ T6461] usb 1-1: New USB device found, idVendor=16ca, idProduct=1502, bcdDevice= 5.c1
[  157.604490][ T6461] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.612907][ T6461] usb 1-1: Product: syz
[  157.617064][ T6461] usb 1-1: Manufacturer: syz
[  157.624532][ T6461] usb 1-1: SerialNumber: syz
[  157.671797][ T6461] usb 1-1: config 0 descriptor??
[  157.892626][ T5967] usb 3-1: USB disconnect, device number 5
[  158.127708][   T30] usb 1-1: USB disconnect, device number 3
[  159.992815][ T6461] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  160.042352][   T31] kauditd_printk_skb: 32 callbacks suppressed
[  160.042371][   T31] audit: type=1326 audit(1765817557.462:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  160.174811][   T31] audit: type=1326 audit(1765817557.492:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  160.232442][ T6461] usb 6-1: config 0 has an invalid interface number: 132 but max is 0
[  160.240635][ T6461] usb 6-1: config 0 has no interface number 0
[  160.454112][   T31] audit: type=1326 audit(1765817557.492:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  160.528302][ T6461] usb 6-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[  160.563667][ T6461] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.579208][   T31] audit: type=1326 audit(1765817557.492:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fee607915dc code=0x7ffc0000
[  160.631127][ T6461] usb 6-1: Product: syz
[  160.635312][ T6461] usb 6-1: Manufacturer: syz
[  160.672786][ T6622] netlink: 24 bytes leftover after parsing attributes in process `syz.2.225'.
[  160.697843][ T6461] usb 6-1: SerialNumber: syz
[  160.700952][   T31] audit: type=1326 audit(1765817557.492:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fee60791514 code=0x7ffc0000
[  160.740917][ T6622] netlink: 24 bytes leftover after parsing attributes in process `syz.2.225'.
[  160.751081][ T6461] usb 6-1: config 0 descriptor??
[  160.784372][ T6461] hub 6-1:0.132: bad descriptor, ignoring hub
[  160.808799][   T31] audit: type=1326 audit(1765817557.492:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fee60791514 code=0x7ffc0000
[  160.840835][ T6461] hub 6-1:0.132: probe with driver hub failed with error -5
[  160.872832][ T6461] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.132/input/input5
[  160.933654][   T31] audit: type=1326 audit(1765817557.492:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  161.050820][   T31] audit: type=1326 audit(1765817557.502:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  161.058109][ T6461] usb 6-1: USB disconnect, device number 3
[  161.167831][   T31] audit: type=1326 audit(1765817557.502:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  161.279461][   T31] audit: type=1326 audit(1765817557.502:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6614 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  161.639069][ T6637] netlink: 8 bytes leftover after parsing attributes in process `syz.4.231'.
[  161.754529][ T6637] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.762484][ T6637] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.880765][ T6613] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  162.060864][ T6613] usb 1-1: Using ep0 maxpacket: 16
[  162.083468][ T6613] usb 1-1: unable to get BOS descriptor or descriptor too short
[  162.117710][ T6613] usb 1-1: config 1 interface 0 has no altsetting 0
[  162.198272][ T6613] usb 1-1: New USB device found, idVendor=05ac, idProduct=0242, bcdDevice= 0.40
[  162.230910][ T6613] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.272588][ T6613] usb 1-1: Product: syz
[  162.276756][ T6613] usb 1-1: Manufacturer: syz
[  162.300835][ T6613] usb 1-1: SerialNumber: syz
[  164.506049][ T6613] usbhid 1-1:1.0: can't add hid device: -71
[  164.537361][ T6613] usbhid 1-1:1.0: probe with driver usbhid failed with error -71
[  164.866070][ T6613] usb 1-1: USB disconnect, device number 4
[  167.089832][ T6669] netlink: 24 bytes leftover after parsing attributes in process `syz.1.239'.
[  167.105130][ T6669] netlink: 24 bytes leftover after parsing attributes in process `syz.1.239'.
[  167.705067][ T6675] tmpfs: Bad value for 'mpol'
[  167.774143][ T6678] syz.2.244 uses obsolete (PF_INET,SOCK_PACKET)
[  170.059022][   T31] kauditd_printk_skb: 71 callbacks suppressed
[  170.059042][   T31] audit: type=1326 audit(1765817567.472:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  170.141806][   T31] audit: type=1326 audit(1765817567.472:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  170.225082][   T31] audit: type=1326 audit(1765817567.492:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  170.329845][   T31] audit: type=1326 audit(1765817567.492:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  170.422099][   T31] audit: type=1326 audit(1765817567.492:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  170.491167][   T31] audit: type=1326 audit(1765817567.522:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1db71915dc code=0x7ffc0000
[  170.601183][   T31] audit: type=1326 audit(1765817567.522:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1db7191514 code=0x7ffc0000
[  170.684154][   T31] audit: type=1326 audit(1765817567.522:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1db7191514 code=0x7ffc0000
[  170.807052][   T31] audit: type=1326 audit(1765817567.522:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  171.291053][   T31] audit: type=1326 audit(1765817567.522:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6689 comm="syz.2.248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  171.578895][ T6706] netlink: 20 bytes leftover after parsing attributes in process `syz.4.253'.
[  172.880762][ T6118] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  172.958926][ T6706] netlink: 20 bytes leftover after parsing attributes in process `syz.4.253'.
[  173.038019][ T6547] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  173.046828][ T6118] usb 3-1: Using ep0 maxpacket: 16
[  173.084880][ T6547] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  173.121099][ T6547] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  173.157672][ T6547] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  175.228647][ T6118] usb 3-1: device descriptor read/all, error -71
[  175.244387][ T6724] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  182.100799][ T6776] netlink: 4 bytes leftover after parsing attributes in process `syz.2.273'.
[  182.924725][ T6782] netlink: 20 bytes leftover after parsing attributes in process `syz.1.274'.
[  183.023197][ T6782] netlink: 20 bytes leftover after parsing attributes in process `syz.1.274'.
[  183.023206][   T12] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  183.088695][   T12] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  183.128761][   T12] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  183.914508][   T12] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  186.552714][ T6818] loop5: detected capacity change from 0 to 7
[  186.630040][ T6818] Dev loop5: unable to read RDB block 7
[  186.688514][ T6818]  loop5: unable to read partition table
[  186.772773][ T6818] loop5: partition table beyond EOD, truncated
[  186.831742][ T6818] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  187.135530][ T6824] process 'syz.3.287' launched '/dev/fd/3' with NULL argv: empty string added
[  187.700835][  T788] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  187.891009][  T788] usb 5-1: Using ep0 maxpacket: 32
[  187.947256][  T788] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.002608][  T788] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  189.649240][ T6848] capability: warning: `syz.2.297' uses 32-bit capabilities (legacy support in use)
[  189.662884][ T6848] program syz.2.297 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  189.670259][  T788] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  189.700753][  T788] usb 5-1: Product: syz
[  189.704940][  T788] usb 5-1: Manufacturer: syz
[  190.084994][  T788] hub 5-1:4.0: bad descriptor, ignoring hub
[  190.114358][  T788] hub 5-1:4.0: probe with driver hub failed with error -5
[  190.145008][  T788] usbhid 5-1:4.0: couldn't find an input interrupt endpoint
[  190.447443][ T6854] netlink: 12 bytes leftover after parsing attributes in process `syz.2.300'.
[  191.238128][ T6828] loop6: detected capacity change from 0 to 524287999
[  191.399748][ T6861] Bluetooth: hci0: invalid length 0, exp 2 for type 5
[  191.568829][ T6055] usb 5-1: USB disconnect, device number 3
[  192.216032][ T6881] overlayfs: upper fs does not support file handles, falling back to index=off.
[  194.303809][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  194.310204][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  195.310779][ T6246] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  195.483137][ T6246] usb 5-1: unable to get BOS descriptor or descriptor too short
[  195.512212][ T6246] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  195.531385][ T6246] usb 5-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  195.564852][ T6246] usb 5-1: config 1 interface 0 has no altsetting 1
[  195.581180][ T6246] usb 5-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75
[  195.600761][ T6246] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.626911][ T6246] usb 5-1: Product: syz
[  195.644773][ T6246] usb 5-1: Manufacturer: syz
[  195.676520][ T6246] usb 5-1: SerialNumber: syz
[  195.718710][ T6246] smsusb:smsusb_probe: board id=8, interface number 0
[  197.434028][ T6246] smsusb:smsusb_probe: usb_set_interface failed, rc -71
[  197.461152][ T6246] smsusb 5-1:1.0: probe with driver smsusb failed with error -71
[  197.470823][  T788] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  197.492382][ T6246] usb 5-1: USB disconnect, device number 4
[  197.533420][ T6930] program syz.1.330 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  197.580766][ T6648] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  197.680036][  T788] usb 1-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  197.721068][  T788] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  197.729069][  T788] usb 1-1: Product: syz
[  197.761034][ T6648] usb 6-1: Using ep0 maxpacket: 16
[  197.770809][  T788] usb 1-1: Manufacturer: syz
[  197.782075][  T788] usb 1-1: SerialNumber: syz
[  197.786842][ T6648] usb 6-1: config 0 has an invalid interface number: 126 but max is 0
[  197.812538][  T788] usb 1-1: config 0 descriptor??
[  197.830741][ T6648] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  197.854470][  T788] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  197.873866][ T6648] usb 6-1: config 0 has no interface number 0
[  197.879961][ T6648] usb 6-1: config 0 interface 126 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  197.920716][ T6648] usb 6-1: config 0 interface 126 altsetting 0 endpoint 0x87 has invalid maxpacket 34328, setting to 1024
[  197.950784][ T6648] usb 6-1: config 0 interface 126 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64
[  197.983398][ T6648] usb 6-1: config 0 interface 126 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  198.010995][ T6648] usb 6-1: config 0 interface 126 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[  198.057838][ T6246] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  198.070753][ T6648] usb 6-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88
[  198.109360][ T6648] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.141089][ T6648] usb 6-1: config 0 descriptor??
[  198.146779][ T6924] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  198.184784][ T6648] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  198.254011][ T6246] usb 2-1: Using ep0 maxpacket: 8
[  198.274198][ T6246] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  198.331485][ T6246] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  198.379235][ T6246] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  198.422224][ T6246] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  198.483913][ T6246] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  198.558106][ T6246] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  198.578812][ T6246] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.602932][ T6648] usb 6-1: USB disconnect, device number 4
[  198.929082][ T6246] usb 2-1: GET_CAPABILITIES returned 0
[  198.952354][ T6246] usbtmc 2-1:16.0: can't read capabilities
[  199.101238][ T6246] usb 2-1: USB disconnect, device number 8
[  199.180926][  T788] gspca_sunplus: reg_w_riv err -71
[  199.187616][  T788] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[  199.254203][  T788] usb 1-1: USB disconnect, device number 5
[  200.412313][ T6961] netlink: 'syz.4.344': attribute type 2 has an invalid length.
[  201.660794][ T6246] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  201.864327][ T6246] usb 6-1: Using ep0 maxpacket: 32
[  201.895855][ T6246] usb 6-1: config 0 has an invalid interface number: 119 but max is 0
[  201.928119][ T6246] usb 6-1: config 0 has no interface number 0
[  201.956877][ T6246] usb 6-1: config 0 interface 119 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  202.005664][ T6981] netlink: 8 bytes leftover after parsing attributes in process `syz.3.354'.
[  202.009196][ T6246] usb 6-1: config 0 interface 119 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  202.026681][ T6981] netlink: 40 bytes leftover after parsing attributes in process `syz.3.354'.
[  202.057924][ T6981] geneve2: entered promiscuous mode
[  202.076798][ T6981] geneve2: entered allmulticast mode
[  202.111172][ T6246] usb 6-1: config 0 interface 119 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  202.158880][ T6246] usb 6-1: config 0 interface 119 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  202.180078][ T6246] usb 6-1: config 0 interface 119 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  202.257594][ T6246] usb 6-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73
[  202.277458][ T6246] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.305418][ T6246] usb 6-1: Product: syz
[  202.313170][ T6246] usb 6-1: Manufacturer: syz
[  202.361015][ T6246] usb 6-1: SerialNumber: syz
[  202.377437][ T6246] usb 6-1: config 0 descriptor??
[  202.400543][ T6970] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  202.419281][ T6246] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.119/input/input6
[  202.450984][ T5179] usb 6-1: BOGUS urb xfer, pipe 1 != type 3
[  202.501577][    C0] bcm5974 6-1:0.119: trackpad urb failed: -1
[  202.865243][ T5816] usb 6-1: USB disconnect, device number 5
[  202.871202][    C1] bcm5974 6-1:0.119: trackpad urb failed: -19
[  205.112880][ T7041] binder: 7036:7041 ioctl 4018620d 0 returned -22
[  206.062292][ T7048] program syz.2.380 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  206.329392][   T31] kauditd_printk_skb: 43 callbacks suppressed
[  207.015571][ T7051] netlink: 'syz.4.382': attribute type 6 has an invalid length.
[  207.080351][   T31] audit: type=1326 audit(1765817603.572:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  207.136512][   T31] audit: type=1326 audit(1765817603.572:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  207.210865][   T31] audit: type=1326 audit(1765817603.572:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  207.328259][   T31] audit: type=1326 audit(1765817603.572:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  207.410808][   T31] audit: type=1326 audit(1765817603.572:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  209.155840][   T31] audit: type=1326 audit(1765817603.572:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  209.230898][   T31] audit: type=1326 audit(1765817603.572:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  209.350771][   T31] audit: type=1326 audit(1765817603.572:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  209.461219][   T31] audit: type=1326 audit(1765817603.572:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  210.382515][   T31] audit: type=1326 audit(1765817603.572:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.0.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6078f749 code=0x7ffc0000
[  210.592670][ T7097] program syz.1.399 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  211.130861][ T5827] Bluetooth: hci1: command 0x0406 tx timeout
[  211.151377][ T5827] Bluetooth: hci3: command 0x0406 tx timeout
[  211.155934][ T5844] Bluetooth: hci5: command 0x0406 tx timeout
[  211.163593][ T5836] Bluetooth: hci4: command 0x0406 tx timeout
[  211.169770][ T5144] Bluetooth: hci2: command 0x0406 tx timeout
[  211.266463][ T7120] overlayfs: upper fs does not support file handles, falling back to index=off.
[  211.623243][ T7131] 9pnet_virtio: no channels available for device syz
[  212.393960][ T7133] warning: `syz.1.416' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  212.426465][ T7134] binder: 7123:7134 ioctl 4018620d 0 returned -22
[  212.588634][ T7137] program syz.2.418 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  220.045764][ T7187] program syz.3.433 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  220.197423][ T7134] syz.5.412 (7134): drop_caches: 2
[  222.733636][ T7205] lo speed is unknown, defaulting to 1000
[  222.740390][ T7205] lo speed is unknown, defaulting to 1000
[  222.762493][ T7205] lo speed is unknown, defaulting to 1000
[  222.823574][ T7205] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  222.958892][ T7205] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  223.190575][ T7205] lo speed is unknown, defaulting to 1000
[  223.219761][ T7205] lo speed is unknown, defaulting to 1000
[  223.248024][ T7205] lo speed is unknown, defaulting to 1000
[  223.267097][ T7205] lo speed is unknown, defaulting to 1000
[  223.274765][ T7205] lo speed is unknown, defaulting to 1000
[  223.282640][ T7205] lo speed is unknown, defaulting to 1000
[  225.574209][ T7228] program syz.1.447 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  226.070811][ T6000] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  226.250748][ T6000] usb 5-1: Using ep0 maxpacket: 16
[  226.268853][ T6000] usb 5-1: config 0 has an invalid interface number: 105 but max is 0
[  226.291984][ T6000] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  226.342514][ T6000] usb 5-1: config 0 has no interface number 0
[  226.362516][ T6000] usb 5-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  226.377847][ T6000] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.397929][ T6000] usb 5-1: Product: syz
[  226.405879][ T6000] usb 5-1: Manufacturer: syz
[  226.436255][ T6000] usb 5-1: SerialNumber: syz
[  226.455941][ T6000] usb 5-1: config 0 descriptor??
[  227.116172][ T6000] uvcvideo 5-1:0.105: Found UVC 0.00 device syz (046d:08d3)
[  227.123694][ T6000] uvcvideo 5-1:0.105: No valid video chain found.
[  227.174472][ T7259] binder: 7248:7259 ioctl 4018620d 0 returned -22
[  227.695781][ T6117] usb 5-1: USB disconnect, device number 5
[  229.618345][ T7274] program syz.5.462 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  230.255434][ T7281] netlink: 4 bytes leftover after parsing attributes in process `syz.5.468'.
[  231.123767][ T7281] netlink: 4 bytes leftover after parsing attributes in process `syz.5.468'.
[  232.417904][ T7310] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  234.298662][ T7259] syz.2.455 (7259): drop_caches: 2
[  235.840808][ T6000] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  235.980814][ T6000] usb 2-1: device descriptor read/64, error -71
[  236.060784][ T5911] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  236.375358][ T6000] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  236.403344][ T5911] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  236.413859][ T5911] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  236.424692][ T5911] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  236.456031][ T5911] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice=20.41
[  236.548717][ T6000] usb 2-1: device descriptor read/64, error -71
[  236.701024][ T5911] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  236.754228][ T6000] usb usb2-port1: attempt power cycle
[  236.862054][ T5911] usb 3-1: Product: syz
[  236.942933][ T5911] usb 3-1: Manufacturer: syz
[  237.031828][ T5911] usb 3-1: SerialNumber: syz
[  237.280917][ T6000] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  237.325520][ T6000] usb 2-1: device descriptor read/8, error -71
[  237.361246][ T5911] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 8 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  237.555086][ T7386] netlink: 4 bytes leftover after parsing attributes in process `syz.0.507'.
[  237.572980][ T6000] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  237.587721][ T7386] netlink: 4 bytes leftover after parsing attributes in process `syz.0.507'.
[  237.621736][ T6000] usb 2-1: device descriptor read/8, error -71
[  237.741670][ T6000] usb usb2-port1: unable to enumerate USB device
[  238.377523][ T5967] usb 3-1: USB disconnect, device number 8
[  238.430278][ T5967] usblp0: removed
[  242.430066][ T7414] trusted_key: syz.2.520 sent an empty control message without MSG_MORE.
[  242.652108][ T7424] 9p: Bad value for 'wfdno'
[  243.371900][ T7438] capability: warning: `syz.4.530' uses deprecated v2 capabilities in a way that may be insecure
[  244.338357][ T7456] netlink: 40 bytes leftover after parsing attributes in process `syz.3.535'.
[  244.370782][ T7456] netlink: 12 bytes leftover after parsing attributes in process `syz.3.535'.
[  244.701884][ T7465] 9p: Bad value for 'wfdno'
[  249.437911][ T7530] netlink: 32 bytes leftover after parsing attributes in process `syz.0.560'.
[  249.741525][ T7535] netlink: 24 bytes leftover after parsing attributes in process `syz.1.564'.
[  250.156039][ T7545] 9p: Bad value for 'wfdno'
[  251.287927][ T6002] kernel read not supported for file /slabinfo (pid: 6002 comm: kworker/0:8)
[  254.351383][ T7597] netlink: 16 bytes leftover after parsing attributes in process `syz.4.592'.
[  255.021637][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[  255.197214][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  256.945215][ T7626] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  257.159428][ T7633] program syz.4.605 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  259.276249][ T7678] program syz.2.622 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  259.629209][ T6613] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  260.492138][ T6613] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  260.533182][ T6613] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  260.558296][ T6613] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  260.588979][ T6613] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  260.602220][ T6613] usb 6-1: SerialNumber: syz
[  261.014137][ T6613] usb 6-1: 0:2 : does not exist
[  261.694635][ T6613] usb 6-1: unit 255 not found!
[  261.826441][ T6613] usb 6-1: 5:0: cannot get min/max values for control 5 (id 5)
[  261.881460][ T6613] usb 6-1: 5:0: cannot get min/max values for control 6 (id 5)
[  261.933207][ T6613] usb 6-1: 5:0: cannot get min/max values for control 12 (id 5)
[  261.965173][ T6613] usb 6-1: 5:0: cannot get min/max values for control 15 (id 5)
[  261.998059][ T6613] usb 6-1: 5:0: cannot get min/max values for control 18 (id 5)
[  262.062198][ T6613] usb 6-1: USB disconnect, device number 6
[  262.173765][ T6034] udevd[6034]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  262.245485][ T7717] program syz.0.637 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  264.068248][ T7756] program syz.5.654 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  266.472144][ T7785] syz.0.663 (7785): drop_caches: 2
[  267.170776][ T7796] netlink: 88 bytes leftover after parsing attributes in process `syz.0.668'.
[  267.398168][ T7798] program syz.5.671 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  268.074900][ T7806] lo speed is unknown, defaulting to 1000
[  270.356056][ T7829] syz.2.679 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  270.745395][ T7832] netlink: 8 bytes leftover after parsing attributes in process `syz.1.681'.
[  272.569385][ T7858] Bluetooth: hci0: unsupported parameter 255
[  272.599305][ T7858] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  273.440736][ T7872] netlink: 12 bytes leftover after parsing attributes in process `syz.2.697'.
[  273.635780][ T7872] netlink: 12 bytes leftover after parsing attributes in process `syz.2.697'.
[  273.796618][ T7886] Driver unsupported XDP return value 0 on prog  (id 76) dev N/A, expect packet loss!
[  275.103815][ T7915] netlink: 12 bytes leftover after parsing attributes in process `syz.3.714'.
[  275.697260][ T7915] netlink: 12 bytes leftover after parsing attributes in process `syz.3.714'.
[  277.678594][ T7956] overlayfs: failed to resolve './file1': -2
[  277.925984][ T7967] netlink: 12 bytes leftover after parsing attributes in process `syz.4.733'.
[  278.306202][ T7967] netlink: 12 bytes leftover after parsing attributes in process `syz.4.733'.
[  282.535647][ T8018] netlink: 12 bytes leftover after parsing attributes in process `syz.5.750'.
[  282.586185][ T8021] program syz.4.751 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  282.687933][ T8024] 9p: Bad value for 'wfdno'
[  282.772799][ T8018] netlink: 12 bytes leftover after parsing attributes in process `syz.5.750'.
[  284.078101][ T8044] block device autoloading is deprecated and will be removed.
[  284.330062][ T8056] program syz.5.766 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  285.418626][ T8071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.769'.
[  285.641788][ T8071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.769'.
[  286.031618][ T8083] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  287.126261][ T8110] program syz.3.780 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  288.630917][ T5841] Bluetooth: Wrong link type (-71)
[  290.293655][ T8138] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  290.570646][ T8150] 9p: Bad value for 'wfdno'
[  291.932417][ T8163] program syz.1.800 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  293.769910][ T8192] overlayfs: failed to resolve './file1': -2
[  293.899551][ T8194] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  294.110708][ T8208] program syz.2.815 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  294.270732][ T8212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.816'.
[  294.664668][ T6000] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  294.774104][ T8231] netlink: 4 bytes leftover after parsing attributes in process `syz.2.821'.
[  295.045993][ T6000] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  295.062315][ T6000] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  295.074655][ T6000] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  295.086211][ T6000] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  295.111262][ T6000] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  295.140099][ T6000] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.163914][ T6000] usb 5-1: config 0 descriptor??
[  295.185349][ T8217] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  295.629034][ T6000] plantronics 0003:047F:FFFF.0002: reserved main item tag 0xd
[  295.674591][ T6000] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  295.867280][ T8248] program syz.5.829 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  296.272308][ T6000] usb 5-1: USB disconnect, device number 6
[  296.396096][ T8257] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  297.966939][ T8305] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  298.510284][ T8325] binder_alloc: 8321: binder_alloc_buf, no vma
[  301.760640][ T8358] tmpfs: Bad value for 'mpol'
[  302.196943][ T8365] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  312.043501][ T8454] program syz.5.893 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  315.653591][ T8499] program syz.0.909 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  317.285770][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  318.641250][ T6246] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  318.814078][ T6246] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[  318.851128][ T6246] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  318.880614][ T6246] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  318.926901][ T6246] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  318.963860][ T6246] usb 2-1: Manufacturer: syz
[  318.990021][ T6246] usb 2-1: config 0 descriptor??
[  319.221061][ T6246] rc_core: IR keymap rc-hauppauge not found
[  319.246362][ T6246] Registered IR keymap rc-empty
[  319.273342][ T6246] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  319.319029][ T6246] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input8
[  319.576730][    C1] igorplugusb 2-1:0.0: receive overflow invalid: 232
[  319.761591][ T8549] netlink: 68 bytes leftover after parsing attributes in process `syz.4.925'.
[  319.788407][    T9] usb 2-1: USB disconnect, device number 13
[  322.408005][ T8574] netlink: 4 bytes leftover after parsing attributes in process `syz.3.935'.
[  323.165097][ T8592] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.943'.
[  326.250868][ T8624] overlayfs: missing 'lowerdir'
[  328.773987][ T8655] vcan0: tx drop: invalid sa for name 0x0000000000000001
[  331.512643][   T31] kauditd_printk_skb: 26 callbacks suppressed
[  331.512663][   T31] audit: type=1326 audit(6057220027.968:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  331.640782][   T31] audit: type=1326 audit(6057220028.008:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  331.840658][   T31] audit: type=1326 audit(6057220028.008:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  332.625083][   T31] audit: type=1326 audit(6057220028.008:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  332.647907][   T31] audit: type=1326 audit(6057220028.008:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  332.670412][   T31] audit: type=1326 audit(6057220028.008:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1db71915dc code=0x7ffc0000
[  332.727142][   T31] audit: type=1326 audit(6057220028.008:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1db7191514 code=0x7ffc0000
[  332.824311][   T31] audit: type=1326 audit(6057220028.008:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1db7191514 code=0x7ffc0000
[  333.038385][   T31] audit: type=1326 audit(6057220028.008:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  333.061010][   T31] audit: type=1326 audit(6057220028.018:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f1db718f749 code=0x7ffc0000
[  333.803654][ T8688] sd 0:0:1:0: device reset
[  335.167318][ T8704] overlayfs: missing 'lowerdir'
[  337.689834][ T8747] overlayfs: missing 'lowerdir'
[  338.158005][ T5831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  338.166422][ T5831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  338.174122][ T5831] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  338.184063][ T5831] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  338.195329][ T5831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  338.322486][ T8757] lo speed is unknown, defaulting to 1000
[  341.333511][ T5831] Bluetooth: hci6: command tx timeout
[  343.273609][ T8757] chnl_net:caif_netlink_parms(): no params data found
[  343.409582][ T5831] Bluetooth: hci6: command tx timeout
[  343.613877][ T6115] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  343.669365][ T6115] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  343.818641][ T5967] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[  343.826359][ T6115] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  343.889001][ T6115] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  344.010213][ T5967] usb 2-1: config 7 has an invalid interface number: 101 but max is 0
[  344.018392][ T5967] usb 2-1: config 7 has no interface number 0
[  344.026937][ T5967] usb 2-1: New USB device found, idVendor=0fd9, idProduct=002c, bcdDevice= 6.6b
[  344.041042][ T5967] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.050957][ T5967] usb 2-1: Product: syz
[  344.055108][ T5967] usb 2-1: Manufacturer: syz
[  344.060038][ T5967] usb 2-1: SerialNumber: syz
[  344.389517][ T6115] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  344.458547][ T6115] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.286778][ T5967] as10x_usb: device has been detected
[  345.312305][ T5967] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT Deluxe)
[  345.351879][ T5967] usb 2-1: DVB: registering adapter 1 frontend 0 (Elgato EyeTV DTT Deluxe)...
[  345.449767][ T8757] bridge0: port 1(bridge_slave_0) entered blocking state
[  345.461495][ T5967] as10x_usb: error during firmware upload part1
[  345.488361][ T5831] Bluetooth: hci6: command tx timeout
[  345.553791][ T8757] bridge0: port 1(bridge_slave_0) entered disabled state
[  345.562410][ T5967] Registered device Elgato EyeTV DTT Deluxe
[  345.563376][ T8815] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  345.578039][ T5967] usb 2-1: USB disconnect, device number 14
[  345.588963][ T8757] bridge_slave_0: entered allmulticast mode
[  346.447108][ T5967] Unregistered device Elgato EyeTV DTT Deluxe
[  346.462647][ T5967] as10x_usb: device has been disconnected
[  346.482327][ T8757] bridge_slave_0: entered promiscuous mode
[  347.038678][ T6115] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  347.049032][ T6115] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  347.077276][ T8757] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.085769][ T8832] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1027'.
[  347.098553][ T8757] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.105745][ T8757] bridge_slave_1: entered allmulticast mode
[  347.128906][ T8757] bridge_slave_1: entered promiscuous mode
[  347.314527][ T8757] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  347.352674][ T8757] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  347.539878][ T8757] team0: Port device team_slave_0 added
[  347.566968][ T5831] Bluetooth: hci6: command tx timeout
[  347.578569][ T8757] team0: Port device team_slave_1 added
[  347.617044][ T5816] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  347.792732][ T5816] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  347.836143][ T5816] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  347.900070][ T5816] usb 3-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  348.101000][ T5816] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.115307][ T5816] usb 3-1: config 0 descriptor??
[  348.910338][ T8757] batman_adv: batadv0: Adding interface: batadv_slave_0
[  348.926306][ T8757] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  349.010375][ T8757] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  349.057153][ T6115] bridge_slave_1: left allmulticast mode
[  349.063623][ T6115] bridge_slave_1: left promiscuous mode
[  349.101244][ T6115] bridge0: port 2(bridge_slave_1) entered disabled state
[  349.157728][ T5816] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0
[  349.178862][ T5816] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0
[  349.198763][ T5816] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0
[  349.223146][ T5816] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0
[  349.236188][ T5816] cm6533_jd 0003:0D8C:0022.0003: unknown main item tag 0x0
[  349.317340][ T5816] cm6533_jd 0003:0D8C:0022.0003: hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.2-1/input0
[  349.434209][ T6115] bridge_slave_0: left allmulticast mode
[  350.274587][ T8859] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1036'.
[  350.591032][ T6115] bridge_slave_0: left promiscuous mode
[  350.925656][ T5816] usb 3-1: USB disconnect, device number 9
[  350.945287][ T6115] bridge0: port 1(bridge_slave_0) entered disabled state
[  351.070963][ T8855] fido_id[8855]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  351.124651][ T8863] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  351.602936][ T8875] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1043'.
[  352.622932][ T8889] overlayfs: missing 'lowerdir'
[  352.772879][ T8895] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  352.905796][ T6115] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  352.929176][ T6115] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  352.950081][ T6115] bond0 (unregistering): Released all slaves
[  352.978278][ T8757] batman_adv: batadv0: Adding interface: batadv_slave_1
[  352.989886][ T8757] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  353.021330][ T8757] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  353.091478][ T8875] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1043'.
[  353.114220][ T6648] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  353.282720][ T8757] hsr_slave_0: entered promiscuous mode
[  353.288565][ T6648] usb 6-1: Using ep0 maxpacket: 8
[  353.308967][ T6648] usb 6-1: config 0 has an invalid interface number: 31 but max is 0
[  353.326686][ T8757] hsr_slave_1: entered promiscuous mode
[  353.335137][ T6648] usb 6-1: config 0 has no interface number 0
[  353.354734][ T8757] debugfs: 'hsr0' already exists in 'hsr'
[  353.364666][ T6648] usb 6-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  353.383863][ T8757] Cannot create hsr debugfs directory
[  353.389306][ T6648] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.428082][ T6648] usb 6-1: Product: syz
[  353.463827][ T6648] usb 6-1: Manufacturer: syz
[  353.468551][ T6648] usb 6-1: SerialNumber: syz
[  353.492819][ T5841] Bluetooth: hci6: command 0x0405 tx timeout
[  353.513847][ T6648] usb 6-1: config 0 descriptor??
[  353.544128][ T8911] qrtr: Invalid version 0
[  353.729597][ T6648] uvcvideo 6-1:0.31: probe with driver uvcvideo failed with error -22
[  353.734357][ T6648] usb 6-1: USB disconnect, device number 7
[  354.884123][ T8925] overlayfs: missing 'lowerdir'
[  355.264643][ T6115] hsr_slave_0: left promiscuous mode
[  355.314606][ T6115] hsr_slave_1: left promiscuous mode
[  355.364404][ T6115] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  355.433021][ T6115] batman_adv: batadv0: Removing interface: batadv_slave_0
[  355.523110][ T6115] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  355.562914][ T6115] batman_adv: batadv0: Removing interface: batadv_slave_1
[  355.747406][ T6115] veth1_macvtap: left promiscuous mode
[  355.766192][ T6115] veth0_macvtap: left promiscuous mode
[  355.782171][ T6115] veth1_vlan: left promiscuous mode
[  355.797786][ T6115] veth0_vlan: left promiscuous mode
[  356.185210][ T8958] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1071'.
[  357.131733][ T8969] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  357.171676][ T8971] overlayfs: missing 'lowerdir'
[  358.784072][ T6115] team0 (unregistering): Port device team_slave_1 removed
[  358.918637][ T6115] team0 (unregistering): Port device team_slave_0 removed
[  360.441950][ T9011] overlayfs: missing 'workdir'
[  364.359115][ T6055] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  364.528595][ T6055] usb 6-1: Using ep0 maxpacket: 16
[  364.548305][ T6055] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  364.560543][ T8958] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1071'.
[  364.599803][ T6055] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  364.650639][ T6055] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.668542][ T6055] usb 6-1: Product: syz
[  364.691076][ T6055] usb 6-1: Manufacturer: syz
[  364.718556][ T6055] usb 6-1: SerialNumber: syz
[  364.742940][ T6055] usb 6-1: config 0 descriptor??
[  364.780231][ T6055] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  364.812521][ T6055] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  364.814345][ T8757] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  364.906041][ T8757] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  364.979905][ T8757] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  365.030790][ T6055] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  365.061305][ T8757] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  365.094482][ T9039] program syz.3.1102 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  365.177124][ T6055] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  365.210019][ T6055] em28xx 6-1:0.0: board has no eeprom
[  365.298562][ T6055] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  365.307356][ T9053] overlayfs: missing 'workdir'
[  365.347512][ T6055] em28xx 6-1:0.0: dvb set to bulk mode.
[  365.367761][  T789] em28xx 6-1:0.0: Binding DVB extension
[  365.404590][ T6055] usb 6-1: USB disconnect, device number 8
[  365.454985][ T6055] em28xx 6-1:0.0: Disconnecting em28xx
[  365.456871][ T8757] 8021q: adding VLAN 0 to HW filter on device bond0
[  365.606425][ T8757] 8021q: adding VLAN 0 to HW filter on device team0
[  365.649648][  T789] em28xx 6-1:0.0: Registering input extension
[  365.650633][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.662885][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  365.667959][ T6055] em28xx 6-1:0.0: Closing input extension
[  365.719623][ T6055] em28xx 6-1:0.0: Freeing device
[  365.793862][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.801021][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  366.182906][  T789] kernel read not supported for file /input/mouse0 (pid: 789 comm: kworker/0:2)
[  366.268770][ T6055] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  366.450052][ T6055] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  366.474664][ T6055] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.488389][ T9084] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1110'.
[  366.512003][ T9084] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1110'.
[  366.548077][ T8757] 8021q: adding VLAN 0 to HW filter on device batadv0
[  366.556058][ T6055] usb 6-1: config 0 descriptor??
[  366.587046][ T6055] cp210x 6-1:0.0: cp210x converter detected
[  367.757465][ T9097] syz.0.1112 (9097): drop_caches: 2
[  367.967960][ T6055] usb 6-1: cp210x converter now attached to ttyUSB0
[  368.000104][ T6055] usb 6-1: USB disconnect, device number 9
[  368.010589][ T6055] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  368.029780][ T6055] cp210x 6-1:0.0: device disconnected
[  368.179534][ T9107] overlayfs: missing 'workdir'
[  368.723587][ T8757] veth0_vlan: entered promiscuous mode
[  368.794554][ T8757] veth1_vlan: entered promiscuous mode
[  368.932608][ T8757] veth0_macvtap: entered promiscuous mode
[  368.974663][ T8757] veth1_macvtap: entered promiscuous mode
[  369.070459][ T8757] batman_adv: batadv0: Interface activated: batadv_slave_0
[  369.115529][ T8757] batman_adv: batadv0: Interface activated: batadv_slave_1
[  369.151013][ T2969] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  369.246825][ T2969] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  369.370842][ T8404] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  369.409839][ T8404] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  369.485966][ T9137] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1123'.
[  369.786790][ T9137] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1123'.
[  370.986740][ T8404] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  371.004301][ T8404] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  371.685769][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  371.718219][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  373.474031][ T6613] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  373.578093][ T9175] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1136'.
[  373.613897][ T9175] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1136'.
[  373.655752][ T6613] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  373.678248][ T9175] netlink: 'syz.3.1136': attribute type 12 has an invalid length.
[  373.693937][ T6613] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  373.711785][ T9175] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1136'.
[  373.732471][ T6613] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  373.769510][ T9178] mkiss: ax0: crc mode is auto.
[  373.787558][ T6613] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  373.812049][ T6613] usb 1-1: SerialNumber: syz
[  373.837960][ T9182] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1139'.
[  373.941960][ T9182] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1139'.
[  374.080808][ T6613] usb 1-1: 0:2 : does not exist
[  374.110529][ T6613] usb 1-1: unit 255 not found!
[  374.174745][ T6613] usb 1-1: 5:0: cannot get min/max values for control 6 (id 5)
[  374.247261][ T6613] usb 1-1: 5:0: cannot get min/max values for control 13 (id 5)
[  374.304285][ T6613] usb 1-1: 5:0: cannot get min/max values for control 16 (id 5)
[  374.363246][ T6613] usb 1-1: 5:0: cannot get min/max values for control 19 (id 5)
[  374.455868][ T6613] usb 1-1: USB disconnect, device number 6
[  374.651880][ T9022] udevd[9022]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  377.806182][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  378.661770][ T9236] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1153'.
[  378.680577][ T9236] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1153'.
[  378.942897][ T9243] program syz.3.1157 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  379.001151][ T9250] comedi: No check for data length of config insn id 3 is implemented
[  379.011071][ T9250] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  379.031412][ T9250] comedi: Assuming n=95 is correct
[  379.191022][ T6246] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  379.982913][ T6246] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  380.050566][ T6246] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  380.153016][ T6246] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  380.228642][ T6246] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  380.303587][ T6246] usb 3-1: SerialNumber: syz
[  380.759980][ T6246] usb 3-1: 0:2 : does not exist
[  380.830438][ T6246] usb 3-1: USB disconnect, device number 10
[  380.887654][ T9272] tmpfs: Bad value for 'mpol'
[  380.903983][ T9022] udevd[9022]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  381.339977][ T9285] netlink: 'syz.0.1166': attribute type 29 has an invalid length.
[  381.348050][ T9285] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1166'.
[  381.879952][ T9284] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1169'.
[  381.921814][ T9284] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1169'.
[  382.057657][   T24] hid-generic 0005:0B57:0009.0004: unknown main item tag 0x0
[  382.169235][   T24] hid-generic 0005:0B57:0009.0004: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  382.256029][ T9297] program syz.2.1171 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  384.198627][ T6088] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  384.388473][ T6088] usb 4-1: Using ep0 maxpacket: 8
[  384.424951][ T6088] usb 4-1: config 127 has an invalid interface number: 171 but max is 1
[  384.451257][ T6088] usb 4-1: config 127 has no interface number 1
[  384.469338][ T6088] usb 4-1: config 127 interface 0 altsetting 10 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  384.487622][ T9323] input: syz1 as /devices/virtual/input/input11
[  384.512537][ T6088] usb 4-1: config 127 interface 0 altsetting 10 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  384.558245][ T6088] usb 4-1: config 127 interface 0 altsetting 10 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  384.581520][ T6088] usb 4-1: config 127 interface 171 has no altsetting 0
[  384.596261][ T6088] usb 4-1: config 127 interface 0 has no altsetting 0
[  384.617260][ T6088] usb 4-1: New USB device found, idVendor=04e2, idProduct=1414, bcdDevice=c5.b9
[  384.637134][ T9329] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1186'.
[  384.646460][ T6088] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  384.654766][ T9329] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1186'.
[  384.664916][ T6088] usb 4-1: Product: syz
[  384.671144][ T6088] usb 4-1: Manufacturer: syz
[  384.682016][ T6088] usb 4-1: SerialNumber: syz
[  384.954274][ T6088] xr_serial 4-1:127.171: xr_serial converter detected
[  384.982367][ T9337] program syz.2.1190 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  385.012439][ T6088] xr_serial ttyUSB0: Failed to set reg 0x1a: -71
[  385.035209][ T6088] xr_serial ttyUSB0: probe with driver xr_serial failed with error -71
[  385.108661][ T6088] usb 4-1: USB disconnect, device number 3
[  385.172967][ T6088] xr_serial 4-1:127.171: device disconnected
[  385.994564][ T9370] tmpfs: Bad value for 'mpol'
[  386.125998][ T9378] program syz.3.1208 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  387.860416][ T6088] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  389.168887][ T6088] usb 3-1: device descriptor read/all, error -71
[  389.206987][   T24] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  389.361095][ T9407] tmpfs: Bad value for 'mpol'
[  389.397829][   T24] usb 6-1: config 0 has no interfaces?
[  389.403324][   T24] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  389.466068][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.494287][   T24] usb 6-1: config 0 descriptor??
[  389.569662][ T9412] program syz.6.1221 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  389.743425][   T24] usb 6-1: USB disconnect, device number 10
[  389.900737][ T9419] delete_channel: no stack
[  393.539553][ T9451] 9p: Bad value for 'rfdno'
[  393.684469][ T9456] overlayfs: missing 'workdir'
[  394.715894][ T9467] program syz.2.1238 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  395.255776][ T9479] nr0: tun_chr_ioctl cmd 1074025673
[  399.446471][ T9507] 9p: Bad value for 'rfdno'
[  399.604819][ T9513] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1247'.
[  401.350393][ T9537] binder: 9530:9537 ioctl 4018620d 0 returned -22
[  401.511071][ T9537] binder: 9530:9537 ioctl 4018620d 0 returned -22
[  401.711810][ T9537] syz.3.1255 (9537): drop_caches: 2
[  402.024767][ T9549] tmpfs: Bad value for 'mpol'
[  404.211479][ T9578] overlayfs: missing 'workdir'
[  406.664143][ T9614] tmpfs: Bad value for 'mpol'
[  409.801995][ T9645] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1280'.
[  409.989840][ T9652] binder: 9647:9652 ioctl 4018620d 0 returned -22
[  409.997895][ T9652] binder: 9647:9652 ioctl 4018620d 0 returned -22
[  410.034261][ T9652] syz.1.1281 (9652): drop_caches: 2
[  412.117119][ T9676] tmpfs: Bad value for 'mpol'
[  413.604903][ T5831] Bluetooth: hci3: Unknown advertising packet type: 0x14
[  414.479161][ T9689] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  415.934815][   T31] kauditd_printk_skb: 31 callbacks suppressed
[  415.934834][   T31] audit: type=1326 audit(6057220112.430:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9698 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1db718f749 code=0x7fc00000
[  418.991845][ T9726] tmpfs: Bad value for 'mpol'
[  421.205323][ T9743] 9p: Bad value for 'wfdno'
[  424.180020][ T6246] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  424.445466][ T6246] usb 6-1: Using ep0 maxpacket: 32
[  424.745715][ T6246] usb 6-1: device descriptor read/all, error -71
[  425.018546][ T9775] tmpfs: Bad value for 'mpol'
[  425.779253][ T9791] 9p: Bad value for 'wfdno'
[  425.817656][ T6007] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  426.057832][ T6007] usb 3-1: Using ep0 maxpacket: 16
[  426.141998][ T6007] usb 3-1: unable to get BOS descriptor or descriptor too short
[  426.173431][ T6007] usb 3-1: config 6 has an invalid interface number: 228 but max is 0
[  426.206472][ T6007] usb 3-1: config 6 has no interface number 0
[  426.237317][ T6007] usb 3-1: config 6 interface 228 altsetting 14 endpoint 0xB has invalid maxpacket 1024, setting to 64
[  426.877447][ T6007] usb 3-1: config 6 interface 228 has no altsetting 0
[  426.917848][ T6007] usb 3-1: New USB device found, idVendor=0403, idProduct=f3c2, bcdDevice=60.22
[  426.926889][ T6007] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  426.988838][ T6007] usb 3-1: Product: syz
[  426.993023][ T6007] usb 3-1: Manufacturer: syz
[  427.024891][ T6007] usb 3-1: SerialNumber: syz
[  427.310757][ T6007] usb 3-1: bad CDC descriptors
[  427.342953][ T6007] ftdi_sio 3-1:6.228: FTDI USB Serial Device converter detected
[  427.391808][ T6007] ftdi_sio ttyUSB0: unknown device type: 0x6022
[  427.460387][ T6007] usb 3-1: USB disconnect, device number 13
[  428.653416][ T6007] ftdi_sio 3-1:6.228: device disconnected
[  429.615791][ T9837] tmpfs: Bad value for 'mpol'
[  439.991103][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  441.270436][ T9899] futex_wake_op: syz.0.1354 tries to shift op by -1; fix this program
[  441.862575][ T9912] input: syz1 as /devices/virtual/input/input12
[  442.396989][ T9914] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1371'.
[  442.941592][ T9931] tmpfs: Bad value for 'mpol'
[  444.984870][ T9970] input: syz1 as /devices/virtual/input/input13
[  447.229140][ T9997] vcan0: tx drop: invalid da for name 0x00000000000000c7
[  448.225798][T10018] input: syz1 as /devices/virtual/input/input14
[  450.175088][   T10] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  450.345477][   T10] usb 2-1: Using ep0 maxpacket: 32
[  450.705328][   T10] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  450.713515][   T10] usb 2-1: config 0 has no interface number 0
[  450.747669][   T10] usb 2-1: config 0 interface 184 has no altsetting 0
[  450.792268][   T10] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  450.825115][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.845363][   T10] usb 2-1: Product: syz
[  450.849525][   T10] usb 2-1: Manufacturer: syz
[  450.854147][   T10] usb 2-1: SerialNumber: syz
[  450.891385][   T10] usb 2-1: config 0 descriptor??
[  450.924750][   T10] smsc75xx v1.0.0
[  451.702128][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  451.834881][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  452.076637][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -71
[  452.130775][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -71
[  452.177578][   T10] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  452.207396][   T10] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -71
[  452.246194][   T10] usb 2-1: USB disconnect, device number 15
[  453.319963][T10084] netlink: 'syz.2.1428': attribute type 3 has an invalid length.
[  453.327898][T10084] netlink: 'syz.2.1428': attribute type 3 has an invalid length.
[  453.347596][T10084] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1428'.
[  456.416764][T10113] lo speed is unknown, defaulting to 1000
[  456.717200][T10121] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  456.792769][   T31] audit: type=1800 audit(6057220153.250:399): pid=10108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1436" name="/" dev="fuse" ino=4 res=0 errno=0
[  458.707517][T10150] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1453'.
[  460.625433][T10170] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1460'.
[  461.696428][   T10] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  461.913372][   T10] usb 6-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  461.973588][   T10] usb 6-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  462.033487][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.113045][   T10] gspca_main: stv0680-2.14.0 probing 041e:4007
[  463.789139][   T10] stv0680 6-1:4.0: STV(e): camera ping failed!!
[  464.017712][   T10] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  464.028924][   T10] stv0680 6-1:4.0: last error: 0,  command = 0x0
[  464.084577][   T10] usb 6-1: USB disconnect, device number 13
[  465.828353][T10218] veth1_macvtap: left promiscuous mode
[  465.863877][T10218] macsec0: entered allmulticast mode
[  466.439037][   T30] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  466.781054][   T30] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  466.808023][   T30] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  466.839590][   T30] usb 3-1: Product: syz
[  466.868586][   T30] usb 3-1: Manufacturer: syz
[  466.881710][T10231] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1482'.
[  466.900737][   T30] usb 3-1: SerialNumber: syz
[  466.917479][T10231] nbd: socks must be embedded in a SOCK_ITEM attr
[  467.542009][   T30] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000098. ret = -EPROTO
[  467.574584][   T30] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPROTO
[  467.597725][   T30] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPROTO
[  467.698229][   T30] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  467.719586][   T30] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  467.762410][   T30] lan78xx 3-1:1.0: probe with driver lan78xx failed with error -71
[  467.818525][   T30] usb 3-1: USB disconnect, device number 14
[  470.815939][T10276] affs: No valid root block on device nullb0
[  472.924097][ T6118] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  473.123129][ T6118] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  473.164521][ T6118] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  473.231931][ T6118] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  473.273657][ T6118] usb 6-1: config 0 descriptor??
[  473.292490][ T6118] pwc: Askey VC010 type 2 USB webcam detected.
[  473.693478][ T6118] pwc: recv_control_msg error -32 req 02 val 2b00
[  473.900554][ T6118] pwc: recv_control_msg error -32 req 02 val 2700
[  474.415810][ T6118] pwc: recv_control_msg error -71 req 04 val 1000
[  474.490248][ T6118] pwc: recv_control_msg error -71 req 04 val 1300
[  474.512602][ T6118] pwc: recv_control_msg error -71 req 04 val 1400
[  474.531818][ T6118] pwc: recv_control_msg error -71 req 02 val 2000
[  474.545300][ T6118] pwc: recv_control_msg error -71 req 02 val 2100
[  474.552706][ T6118] pwc: recv_control_msg error -71 req 04 val 1500
[  474.569807][ T6118] pwc: recv_control_msg error -71 req 02 val 2500
[  474.594402][ T6118] pwc: recv_control_msg error -71 req 02 val 2400
[  474.611506][ T6118] pwc: recv_control_msg error -71 req 02 val 2600
[  474.663945][ T6118] pwc: recv_control_msg error -71 req 02 val 2900
[  474.702040][ T6118] pwc: recv_control_msg error -71 req 02 val 2800
[  474.763333][ T6118] pwc: recv_control_msg error -71 req 04 val 1100
[  474.803696][ T6118] pwc: recv_control_msg error -71 req 04 val 1200
[  474.843304][ T6118] pwc: Registered as video103.
[  474.875704][ T6118] input: PWC snapshot button as /devices/platform/dummy_hcd.5/usb6/6-1/input/input15
[  475.441849][ T6118] usb 6-1: USB disconnect, device number 14
[  478.638175][ T6118] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  478.863877][ T6118] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  479.062671][ T6118] usb 6-1: config 0 interface 0 has no altsetting 0
[  479.729639][ T6118] usb 6-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=b1.f9
[  479.739770][ T6118] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  479.856342][ T6118] usb 6-1: Product: syz
[  479.860537][ T6118] usb 6-1: Manufacturer: syz
[  479.903399][ T6118] usb 6-1: SerialNumber: syz
[  479.931719][ T6118] usb 6-1: config 0 descriptor??
[  479.960317][ T6118] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state.
[  479.981039][T10374] netlink: 'syz.3.1528': attribute type 12 has an invalid length.
[  479.984720][ T6118] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  480.009777][ T6118] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0)
[  480.022920][T10374] netlink: 'syz.3.1528': attribute type 29 has an invalid length.
[  480.025767][ T6118] usb 6-1: media controller created
[  480.073296][T10374] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1528'.
[  480.095499][ T6118] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  480.264888][ T6118] DVB: Unable to find symbol tda10046_attach()
[  480.280161][ T6118] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0'
[  480.307912][ T6118] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected.
[  480.585248][ T6118] dvb_usb_m920x 6-1:0.0: probe with driver dvb_usb_m920x failed with error -71
[  480.604066][ T6118] usb 6-1: USB disconnect, device number 15
[  492.578975][ T3956] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  492.948086][ T3956] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  494.711684][ T3956] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  494.783756][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  494.793568][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  494.801115][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  494.817007][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  494.824586][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  495.005339][T10504] lo speed is unknown, defaulting to 1000
[  495.109547][ T3956] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  495.182986][    T9] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  496.112553][    T9] usb 3-1: Using ep0 maxpacket: 16
[  496.146534][    T9] usb 3-1: unable to get BOS descriptor or descriptor too short
[  496.194000][    T9] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  496.232236][    T9] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  496.302488][    T9] usb 3-1: too many endpoints for config 1 interface 0 altsetting 168: 93, using maximum allowed: 30
[  496.383354][    T9] usb 3-1: config 1 interface 0 altsetting 168 endpoint 0x4 has invalid wMaxPacketSize 0
[  498.097586][ T5841] Bluetooth: hci1: command tx timeout
[  498.099017][    T9] usb 3-1: config 1 interface 0 altsetting 168 has 1 endpoint descriptor, different from the interface descriptor's value: 93
[  498.141462][    T9] usb 3-1: config 1 interface 0 has no altsetting 0
[  498.150300][    T9] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  498.210910][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  498.407296][    T9] usb 3-1: Product: syz
[  498.427589][ T3956] bridge_slave_1: left allmulticast mode
[  499.051318][ T3956] bridge_slave_1: left promiscuous mode
[  499.057103][ T3956] bridge0: port 2(bridge_slave_1) entered disabled state
[  499.085330][    T9] usb 3-1: Manufacturer: syz
[  499.206063][    T9] usb 3-1: SerialNumber: syz
[  499.260378][    T9] usb 3-1: can't set config #1, error -71
[  499.282117][ T3956] bridge_slave_0: left allmulticast mode
[  499.287752][ T3956] bridge_slave_0: left promiscuous mode
[  499.313816][    T9] usb 3-1: USB disconnect, device number 15
[  499.344912][ T3956] bridge0: port 1(bridge_slave_0) entered disabled state
[  501.360512][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[  501.373101][ T5841] Bluetooth: hci1: command tx timeout
[  504.704869][ T5841] Bluetooth: hci1: command tx timeout
[  505.340461][ T3956] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  505.399606][ T3956] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  505.499640][ T3956] bond0 (unregistering): Released all slaves
[  506.018128][T10585] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1609'.
[  506.021485][T10504] chnl_net:caif_netlink_parms(): no params data found
[  506.774887][ T5841] Bluetooth: hci1: command tx timeout
[  508.443665][T10504] bridge0: port 1(bridge_slave_0) entered blocking state
[  508.477680][T10504] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.516473][T10504] bridge_slave_0: entered allmulticast mode
[  508.545652][T10504] bridge_slave_0: entered promiscuous mode
[  508.696224][T10504] bridge0: port 2(bridge_slave_1) entered blocking state
[  508.751148][T10504] bridge0: port 2(bridge_slave_1) entered disabled state
[  508.958325][T10504] bridge_slave_1: entered allmulticast mode
[  508.994154][T10504] bridge_slave_1: entered promiscuous mode
[  510.489432][ T3956] hsr_slave_0: left promiscuous mode
[  513.215134][ T3956] hsr_slave_1: left promiscuous mode
[  513.221299][ T3956] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  513.243973][ T3956] batman_adv: batadv0: Removing interface: batadv_slave_0
[  513.418148][ T3956] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  513.435874][ T5831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  513.438344][ T3956] batman_adv: batadv0: Removing interface: batadv_slave_1
[  513.456798][ T5831] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  513.464468][ T5831] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  513.472323][ T5831] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  513.487772][ T5831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  513.812887][ T3956] veth1_macvtap: left promiscuous mode
[  513.846076][ T3956] veth0_macvtap: left promiscuous mode
[  513.872007][ T3956] veth1_vlan: left promiscuous mode
[  514.674521][ T3956] veth0_vlan: left promiscuous mode
[  515.563669][ T5831] Bluetooth: hci6: command tx timeout
[  517.642077][ T5831] Bluetooth: hci6: command tx timeout
[  518.966073][ T3956] team0 (unregistering): Port device team_slave_1 removed
[  519.301089][ T3956] team0 (unregistering): Port device team_slave_0 removed
[  519.720715][ T5831] Bluetooth: hci6: command tx timeout
[  519.937904][T10722] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1651'.
[  520.724526][T10504] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  521.187524][T10504] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  521.478303][T10504] team0: Port device team_slave_0 added
[  521.529641][T10504] team0: Port device team_slave_1 added
[  521.827542][T10754] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size.
[  521.923244][ T5831] Bluetooth: hci6: command tx timeout
[  522.404635][T10655] lo speed is unknown, defaulting to 1000
[  522.541640][T10504] batman_adv: batadv0: Adding interface: batadv_slave_0
[  522.578187][T10504] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  522.706945][T10759] loop5: detected capacity change from 0 to 7
[  522.715027][T10759] Dev loop5: unable to read RDB block 7
[  522.720753][T10759]  loop5: AHDI p1 p2 p3
[  522.728788][T10504] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  522.728791][T10759] loop5: partition table partially beyond EOD, 
[  522.873039][T10504] batman_adv: batadv0: Adding interface: batadv_slave_1
[  522.899157][T10504] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  522.930680][T10759] truncated
[  522.933995][T10759] loop5: p1 start 50331648 is beyond EOD, truncated
[  522.967704][T10504] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  522.987226][T10759] loop5: p2 start 1702059890 is beyond EOD, truncated
[  523.728243][T10504] hsr_slave_0: entered promiscuous mode
[  523.757934][T10504] hsr_slave_1: entered promiscuous mode
[  523.801842][T10504] debugfs: 'hsr0' already exists in 'hsr'
[  523.821003][T10504] Cannot create hsr debugfs directory
[  524.293365][ T3956] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  525.040137][ T3956] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  525.974522][T10655] chnl_net:caif_netlink_parms(): no params data found
[  527.363311][ T3956] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  528.565486][ T3956] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.558139][T10655] bridge0: port 1(bridge_slave_0) entered blocking state
[  529.586034][T10655] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.668480][T10655] bridge_slave_0: entered allmulticast mode
[  529.689574][T10655] bridge_slave_0: entered promiscuous mode
[  529.821044][T10655] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.130628][T10655] bridge0: port 2(bridge_slave_1) entered disabled state
[  531.760429][T10655] bridge_slave_1: entered allmulticast mode
[  531.768106][T10655] bridge_slave_1: entered promiscuous mode
[  532.124824][ T5994] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  532.164143][T10504] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  532.246147][T10655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  532.293698][T10504] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  532.331424][ T5994] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  532.356846][ T5994] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  532.388938][T10655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  532.412404][ T5994] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  532.467126][T10504] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  532.492161][ T5994] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  532.523175][T10504] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  532.530062][ T5994] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  532.558669][ T5994] usb 6-1: Product: syz
[  532.562861][ T5994] usb 6-1: Manufacturer: syz
[  532.625092][ T5994] cdc_wdm 6-1:1.0: skipping garbage
[  532.650296][ T5994] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22
[  532.811455][ T3956] bridge_slave_1: left allmulticast mode
[  532.850745][ T3956] bridge_slave_1: left promiscuous mode
[  532.877825][ T3956] bridge0: port 2(bridge_slave_1) entered disabled state
[  532.938172][T10896] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  532.961189][T10896] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  532.970509][ T3956] bridge_slave_0: left allmulticast mode
[  533.006733][ T3956] bridge_slave_0: left promiscuous mode
[  533.033914][ T3956] bridge0: port 1(bridge_slave_0) entered disabled state
[  535.811969][T10280] usb 6-1: USB disconnect, device number 16
[  537.155200][ T3956] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  537.166965][ T3956] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  537.199229][ T3956] bond0 (unregistering): Released all slaves
[  537.224563][T10655] team0: Port device team_slave_0 added
[  537.292807][T10655] team0: Port device team_slave_1 added
[  537.475423][T10655] batman_adv: batadv0: Adding interface: batadv_slave_0
[  537.492429][T10655] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  537.555698][T10655] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  537.584355][T10655] batman_adv: batadv0: Adding interface: batadv_slave_1
[  537.600901][T10655] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  537.653775][T10655] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  540.327605][T10655] hsr_slave_0: entered promiscuous mode
[  540.372139][T10655] hsr_slave_1: entered promiscuous mode
[  540.401409][T10655] debugfs: 'hsr0' already exists in 'hsr'
[  540.407164][T10655] Cannot create hsr debugfs directory
[  541.572916][ T3956] hsr_slave_0: left promiscuous mode
[  541.635118][ T3956] hsr_slave_1: left promiscuous mode
[  541.657322][ T3956] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  541.705734][ T3956] batman_adv: batadv0: Removing interface: batadv_slave_0
[  541.746628][ T3956] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  541.779655][ T3956] batman_adv: batadv0: Removing interface: batadv_slave_1
[  541.909003][ T3956] veth1_macvtap: left promiscuous mode
[  542.377675][ T3956] veth0_macvtap: left promiscuous mode
[  542.391673][ T3956] veth1_vlan: left promiscuous mode
[  542.408266][ T3956] veth0_vlan: left promiscuous mode
[  542.796974][ T5831] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  542.806784][ T5831] CPU: 1 UID: 0 PID: 5831 Comm: kworker/u9:3 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  542.806819][ T5831] Tainted: [L]=SOFTLOCKUP
[  542.806828][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  542.806844][ T5831] Workqueue: hci2 hci_rx_work
[  542.806873][ T5831] Call Trace:
[  542.806883][ T5831]  <TASK>
[  542.806893][ T5831]  dump_stack_lvl+0x189/0x250
[  542.806929][ T5831]  ? __pfx_dump_stack_lvl+0x10/0x10
[  542.806959][ T5831]  ? __pfx__printk+0x10/0x10
[  542.807003][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.807031][ T5831]  ? kernfs_path_from_node+0x250/0x290
[  542.807057][ T5831]  ? kernfs_path_from_node+0x2f/0x290
[  542.807088][ T5831]  sysfs_create_dir_ns+0x259/0x280
[  542.807117][ T5831]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  542.807145][ T5831]  ? do_raw_spin_unlock+0x122/0x240
[  542.807186][ T5831]  kobject_add_internal+0x6ab/0xcc0
[  542.807226][ T5831]  kobject_add+0x155/0x220
[  542.807254][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.807287][ T5831]  ? __pfx_kobject_add+0x10/0x10
[  542.807315][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.807343][ T5831]  ? _raw_spin_unlock+0x28/0x50
[  542.807378][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.807410][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.807436][ T5831]  ? get_device_parent+0x366/0x3a0
[  542.807465][ T5831]  device_add+0x408/0xb80
[  542.807492][ T5831]  hci_conn_add_sysfs+0xd5/0x210
[  542.807521][ T5831]  le_conn_complete_evt+0xf1d/0x1420
[  542.807562][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.807600][ T5831]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  542.807631][ T5831]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  542.807656][ T5831]  ? __asan_memcpy+0x40/0x70
[  542.807684][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.807710][ T5831]  ? skb_pull_data+0xfb/0x200
[  542.807751][ T5831]  hci_le_conn_complete_evt+0x187/0x480
[  542.807791][ T5831]  hci_event_packet+0x78f/0x1260
[  542.807825][ T5831]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  542.807859][ T5831]  ? __pfx_hci_event_packet+0x10/0x10
[  542.807889][ T5831]  ? kcov_remote_start+0x4d3/0x7f0
[  542.807920][ T5831]  ? __entry_text_end+0x1020b5/0x1020b9
[  542.807947][ T5831]  ? lockdep_hardirqs_on+0x98/0x140
[  542.807974][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.808001][ T5831]  ? hci_send_to_monitor+0xe2/0x590
[  542.808041][ T5831]  hci_rx_work+0x3ee/0x1060
[  542.808076][ T5831]  ? process_scheduled_works+0x9ef/0x1770
[  542.808105][ T5831]  process_scheduled_works+0xad1/0x1770
[  542.808165][ T5831]  ? __pfx_process_scheduled_works+0x10/0x10
[  542.808199][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.808238][ T5831]  worker_thread+0x8a0/0xda0
[  542.808280][ T5831]  ? __kthread_parkme+0x7b/0x200
[  542.808320][ T5831]  kthread+0x711/0x8a0
[  542.808357][ T5831]  ? __pfx_worker_thread+0x10/0x10
[  542.808382][ T5831]  ? __pfx_kthread+0x10/0x10
[  542.808412][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.808444][ T5831]  ? _raw_spin_unlock_irq+0x23/0x50
[  542.808480][ T5831]  ? srso_alias_return_thunk+0x5/0xfbef5
[  542.808507][ T5831]  ? lockdep_hardirqs_on+0x98/0x140
[  542.808529][ T5831]  ? __pfx_kthread+0x10/0x10
[  542.808567][ T5831]  ret_from_fork+0x599/0xb30
[  542.808595][ T5831]  ? __pfx_ret_from_fork+0x10/0x10
[  542.808632][ T5831]  ? __switch_to_asm+0x39/0x70
[  542.808663][ T5831]  ? __switch_to_asm+0x33/0x70
[  542.808694][ T5831]  ? __pfx_kthread+0x10/0x10
[  542.808728][ T5831]  ret_from_fork_asm+0x1a/0x30
[  542.808782][ T5831]  </TASK>
[  543.143138][ T5831] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  543.157188][ T5831] Bluetooth: hci2: failed to register connection device
[  545.524978][ T3956] team0 (unregistering): Port device team_slave_1 removed
[  545.582682][ T3956] team0 (unregistering): Port device team_slave_0 removed
[  547.082693][T11026] loop5: detected capacity change from 0 to 7
[  547.111845][T11026] Dev loop5: unable to read RDB block 7
[  547.127083][T11026]  loop5: AHDI p1 p2 p3
[  547.140422][T11026] loop5: partition table partially beyond EOD, truncated
[  547.148680][T11026] loop5: p1 start 1601398130 is beyond EOD, truncated
[  547.156003][T11026] loop5: p2 start 1702059890 is beyond EOD, truncated
[  548.589970][T11042] lo speed is unknown, defaulting to 1000
[  548.601543][T10504] 8021q: adding VLAN 0 to HW filter on device bond0
[  549.825239][ T5841] Bluetooth: hci2: command 0x0406 tx timeout
[  550.145753][T10655] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  550.430082][T10655] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  550.588854][T10655] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  550.758000][T10504] 8021q: adding VLAN 0 to HW filter on device team0
[  550.780967][T10655] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  550.949718][ T5841] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  551.081455][ T2969] bridge0: port 1(bridge_slave_0) entered blocking state
[  551.088636][ T2969] bridge0: port 1(bridge_slave_0) entered forwarding state
[  551.163684][ T2969] bridge0: port 2(bridge_slave_1) entered blocking state
[  551.170865][ T2969] bridge0: port 2(bridge_slave_1) entered forwarding state
[  552.495649][T10655] 8021q: adding VLAN 0 to HW filter on device bond0
[  552.615878][T10655] 8021q: adding VLAN 0 to HW filter on device team0
[  552.672910][ T8357] bridge0: port 1(bridge_slave_0) entered blocking state
[  552.680131][ T8357] bridge0: port 1(bridge_slave_0) entered forwarding state
[  552.738037][ T8357] bridge0: port 2(bridge_slave_1) entered blocking state
[  552.745232][ T8357] bridge0: port 2(bridge_slave_1) entered forwarding state
[  553.215289][T10504] 8021q: adding VLAN 0 to HW filter on device batadv0
[  554.494069][T10655] 8021q: adding VLAN 0 to HW filter on device batadv0
[  554.573097][T11131] loop8: detected capacity change from 0 to 8
[  554.582706][T11131] Dev loop8: unable to read RDB block 8
[  554.606235][T11131]  loop8: unable to read partition table
[  554.622110][T11131] loop8: partition table beyond EOD, truncated
[  554.781563][T11131] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  554.975759][ T5831] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  554.993794][T11027] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  555.001979][T11027] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  555.010972][T11027] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  555.019014][T11027] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  555.262041][T11136] lo speed is unknown, defaulting to 1000
[  556.692260][T11027] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  556.701921][T11027] CPU: 0 UID: 0 PID: 11027 Comm: kworker/u9:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  556.701956][T11027] Tainted: [L]=SOFTLOCKUP
[  556.701965][T11027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  556.701982][T11027] Workqueue: hci3 hci_rx_work
[  556.702011][T11027] Call Trace:
[  556.702020][T11027]  <TASK>
[  556.702029][T11027]  dump_stack_lvl+0x189/0x250
[  556.702065][T11027]  ? __pfx_dump_stack_lvl+0x10/0x10
[  556.702095][T11027]  ? __pfx__printk+0x10/0x10
[  556.702136][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.702169][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.702196][T11027]  ? kernfs_path_from_node+0x250/0x290
[  556.702222][T11027]  ? kernfs_path_from_node+0x2f/0x290
[  556.702253][T11027]  sysfs_create_dir_ns+0x259/0x280
[  556.702281][T11027]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  556.702309][T11027]  ? do_raw_spin_unlock+0x122/0x240
[  556.702349][T11027]  kobject_add_internal+0x6ab/0xcc0
[  556.702390][T11027]  kobject_add+0x155/0x220
[  556.702417][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.702455][T11027]  ? __pfx_kobject_add+0x10/0x10
[  556.702483][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.702511][T11027]  ? _raw_spin_unlock+0x28/0x50
[  556.702545][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.702585][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.702612][T11027]  ? get_device_parent+0x366/0x3a0
[  556.702642][T11027]  device_add+0x408/0xb80
[  556.702669][T11027]  hci_conn_add_sysfs+0xd5/0x210
[  556.702699][T11027]  le_conn_complete_evt+0xf1d/0x1420
[  556.702732][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.702771][T11027]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  556.702802][T11027]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  556.702828][T11027]  ? __asan_memcpy+0x40/0x70
[  556.702856][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.702883][T11027]  ? skb_pull_data+0xfb/0x200
[  556.702924][T11027]  hci_le_conn_complete_evt+0x187/0x480
[  556.702966][T11027]  hci_event_packet+0x78f/0x1260
[  556.702997][T11027]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  556.703032][T11027]  ? __pfx_hci_event_packet+0x10/0x10
[  556.703061][T11027]  ? kcov_remote_start+0x4d3/0x7f0
[  556.703094][T11027]  ? __entry_text_end+0x1020b5/0x1020b9
[  556.703120][T11027]  ? lockdep_hardirqs_on+0x98/0x140
[  556.703147][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.703175][T11027]  ? hci_send_to_monitor+0xe2/0x590
[  556.703215][T11027]  hci_rx_work+0x3ee/0x1060
[  556.703250][T11027]  ? process_scheduled_works+0x9ef/0x1770
[  556.703279][T11027]  process_scheduled_works+0xad1/0x1770
[  556.703339][T11027]  ? __pfx_process_scheduled_works+0x10/0x10
[  556.703374][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.703412][T11027]  worker_thread+0x8a0/0xda0
[  556.703442][T11027]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  556.703489][T11027]  ? __kthread_parkme+0x7b/0x200
[  556.703528][T11027]  kthread+0x711/0x8a0
[  556.703570][T11027]  ? __pfx_worker_thread+0x10/0x10
[  556.703596][T11027]  ? __pfx_kthread+0x10/0x10
[  556.703624][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.703656][T11027]  ? _raw_spin_unlock_irq+0x23/0x50
[  556.703692][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.703720][T11027]  ? lockdep_hardirqs_on+0x98/0x140
[  556.703742][T11027]  ? __pfx_kthread+0x10/0x10
[  556.703776][T11027]  ret_from_fork+0x599/0xb30
[  556.703804][T11027]  ? __pfx_ret_from_fork+0x10/0x10
[  556.703841][T11027]  ? __switch_to_asm+0x39/0x70
[  556.703873][T11027]  ? __switch_to_asm+0x33/0x70
[  556.703904][T11027]  ? __pfx_kthread+0x10/0x10
[  556.703939][T11027]  ret_from_fork_asm+0x1a/0x30
[  556.703992][T11027]  </TASK>
[  557.056385][T11027] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  557.070499][ T5841] Bluetooth: hci4: command tx timeout
[  557.076670][T11027] Bluetooth: hci3: failed to register connection device
[  557.117681][T11027] ==================================================================
[  557.125773][T11027] BUG: KASAN: slab-use-after-free in l2cap_connect_cfm+0x6d0/0x10e0
[  557.133781][T11027] Read of size 8 at addr ffff888076a86480 by task kworker/u9:0/11027
[  557.141850][T11027] 
[  557.144175][T11027] CPU: 0 UID: 0 PID: 11027 Comm: kworker/u9:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  557.144211][T11027] Tainted: [L]=SOFTLOCKUP
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  557.144221][T11027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  557.144238][T11027] Workqueue: hci3 hci_rx_work
[  557.144267][T11027] Call Trace:
[  557.144276][T11027]  <TASK>
[  557.144285][T11027]  dump_stack_lvl+0x189/0x250
[  557.144316][T11027]  ? __kasan_check_byte+0x12/0x40
[  557.144348][T11027]  ? __pfx_dump_stack_lvl+0x10/0x10
[  557.144378][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.144407][T11027]  ? lock_release+0x4b/0x3b0
[  557.144436][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.144464][T11027]  ? __virt_addr_valid+0x4a5/0x5c0
[  557.144501][T11027]  print_report+0xca/0x240
[  557.144527][T11027]  ? l2cap_connect_cfm+0x6d0/0x10e0
[  557.144571][T11027]  kasan_report+0x118/0x150
[  557.144602][T11027]  ? l2cap_connect_cfm+0x6d0/0x10e0
[  557.144642][T11027]  l2cap_connect_cfm+0x6d0/0x10e0
[  557.144684][T11027]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  557.144726][T11027]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  557.144762][T11027]  hci_connect_cfm+0x95/0x140
[  557.144795][T11027]  le_conn_complete_evt+0xf65/0x1420
[  557.144829][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.144862][T11027]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  557.144895][T11027]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  557.144922][T11027]  ? __asan_memcpy+0x40/0x70
[  557.144946][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.144975][T11027]  ? skb_pull_data+0xfb/0x200
[  557.145012][T11027]  hci_le_conn_complete_evt+0x187/0x480
[  557.145049][T11027]  hci_event_packet+0x78f/0x1260
[  557.145078][T11027]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  557.145110][T11027]  ? __pfx_hci_event_packet+0x10/0x10
[  557.145137][T11027]  ? kcov_remote_start+0x4d3/0x7f0
[  557.145171][T11027]  ? __entry_text_end+0x1020b5/0x1020b9
[  557.145198][T11027]  ? lockdep_hardirqs_on+0x98/0x140
[  557.145224][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.145253][T11027]  ? hci_send_to_monitor+0xe2/0x590
[  557.145291][T11027]  hci_rx_work+0x3ee/0x1060
[  557.145322][T11027]  ? process_scheduled_works+0x9ef/0x1770
[  557.145349][T11027]  process_scheduled_works+0xad1/0x1770
[  557.145391][T11027]  ? __pfx_process_scheduled_works+0x10/0x10
[  557.145420][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.145451][T11027]  worker_thread+0x8a0/0xda0
[  557.145478][T11027]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  557.145523][T11027]  ? __kthread_parkme+0x7b/0x200
[  557.145565][T11027]  kthread+0x711/0x8a0
[  557.145599][T11027]  ? __pfx_worker_thread+0x10/0x10
[  557.145624][T11027]  ? __pfx_kthread+0x10/0x10
[  557.145653][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.145684][T11027]  ? _raw_spin_unlock_irq+0x23/0x50
[  557.145726][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.145753][T11027]  ? lockdep_hardirqs_on+0x98/0x140
[  557.145776][T11027]  ? __pfx_kthread+0x10/0x10
[  557.145807][T11027]  ret_from_fork+0x599/0xb30
[  557.145832][T11027]  ? __pfx_ret_from_fork+0x10/0x10
[  557.145861][T11027]  ? __switch_to_asm+0x39/0x70
[  557.145893][T11027]  ? __switch_to_asm+0x33/0x70
[  557.145925][T11027]  ? __pfx_kthread+0x10/0x10
[  557.145957][T11027]  ret_from_fork_asm+0x1a/0x30
[  557.146000][T11027]  </TASK>
[  557.146008][T11027] 
[  557.461884][T11027] Allocated by task 11027:
[  557.466278][T11027]  kasan_save_track+0x3e/0x80
[  557.470945][T11027]  __kasan_kmalloc+0x93/0xb0
[  557.475524][T11027]  __kmalloc_cache_noprof+0x3e2/0x700
[  557.480884][T11027]  l2cap_chan_create+0x51/0x790
[  557.485717][T11027]  l2cap_sock_new_connection_cb+0x182/0x2e0
[  557.491592][T11027]  l2cap_connect_cfm+0x367/0x10e0
[  557.496612][T11027]  hci_connect_cfm+0x95/0x140
[  557.501277][T11027]  le_conn_complete_evt+0xf65/0x1420
[  557.506556][T11027]  hci_le_conn_complete_evt+0x187/0x480
[  557.512089][T11027]  hci_event_packet+0x78f/0x1260
[  557.517009][T11027]  hci_rx_work+0x3ee/0x1060
[  557.521497][T11027]  process_scheduled_works+0xad1/0x1770
[  557.527027][T11027]  worker_thread+0x8a0/0xda0
[  557.531602][T11027]  kthread+0x711/0x8a0
[  557.535659][T11027]  ret_from_fork+0x599/0xb30
[  557.540228][T11027]  ret_from_fork_asm+0x1a/0x30
[  557.544984][T11027] 
[  557.547286][T11027] Freed by task 11150:
[  557.551329][T11027]  kasan_save_track+0x3e/0x80
[  557.555992][T11027]  kasan_save_free_info+0x46/0x50
[  557.561012][T11027]  __kasan_slab_free+0x5c/0x80
[  557.565757][T11027]  kfree+0x1c0/0x660
[  557.569649][T11027]  l2cap_sock_cleanup_listen+0xf0/0x450
[  557.575181][T11027]  l2cap_sock_release+0x6a/0x230
[  557.580113][T11027]  sock_close+0xc3/0x240
[  557.584347][T11027]  __fput+0x44c/0xa70
[  557.588321][T11027]  task_work_run+0x1d4/0x260
[  557.592903][T11027]  exit_to_user_mode_loop+0xff/0x4f0
[  557.598176][T11027]  do_syscall_64+0x2d0/0xf80
[  557.602751][T11027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.608625][T11027] 
[  557.610927][T11027] The buggy address belongs to the object at ffff888076a86000
[  557.610927][T11027]  which belongs to the cache kmalloc-2k of size 2048
[  557.624961][T11027] The buggy address is located 1152 bytes inside of
[  557.624961][T11027]  freed 2048-byte region [ffff888076a86000, ffff888076a86800)
[  557.638915][T11027] 
[  557.641220][T11027] The buggy address belongs to the physical page:
[  557.647607][T11027] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x76a80
[  557.656352][T11027] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  557.664835][T11027] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  557.672803][T11027] page_type: f5(slab)
[  557.676768][T11027] raw: 00fff00000000040 ffff88813ffa7000 0000000000000000 dead000000000001
[  557.685332][T11027] raw: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  557.693899][T11027] head: 00fff00000000040 ffff88813ffa7000 0000000000000000 dead000000000001
[  557.702557][T11027] head: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  557.711210][T11027] head: 00fff00000000003 ffffea0001daa001 00000000ffffffff 00000000ffffffff
[  557.720211][T11027] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  557.728860][T11027] page dumped because: kasan: bad access detected
[  557.735248][T11027] page_owner tracks the page as allocated
[  557.740937][T11027] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5823, tgid 5823 (syz-executor), ts 96136096042, free_ts 96120884232
[  557.762288][T11027]  post_alloc_hook+0x234/0x290
[  557.767042][T11027]  get_page_from_freelist+0x2365/0x2440
[  557.772577][T11027]  __alloc_frozen_pages_noprof+0x181/0x370
[  557.778373][T11027]  alloc_pages_mpol+0x232/0x4a0
[  557.783218][T11027]  allocate_slab+0x86/0x3b0
[  557.787716][T11027]  ___slab_alloc+0xf2b/0x1960
[  557.792377][T11027]  __slab_alloc+0x65/0x100
[  557.796783][T11027]  __kmalloc_noprof+0x47d/0x800
[  557.801617][T11027]  rfkill_alloc+0xad/0x2f0
[  557.806029][T11027]  wiphy_new_nm+0x11a3/0x19e0
[  557.810695][T11027]  ieee80211_alloc_hw_nm+0x3f3/0x1f60
[  557.816053][T11027]  mac80211_hwsim_new_radio+0x1ea/0x5320
[  557.821668][T11027]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  557.826761][T11027]  genl_family_rcv_msg_doit+0x215/0x300
[  557.832290][T11027]  genl_rcv_msg+0x60e/0x790
[  557.836775][T11027]  netlink_rcv_skb+0x208/0x470
[  557.841544][T11027] page last free pid 10 tgid 10 stack trace:
[  557.847525][T11027]  __free_frozen_pages+0xbc8/0xd30
[  557.852636][T11027]  __slab_free+0x21b/0x2a0
[  557.857049][T11027]  qlist_free_all+0x97/0x100
[  557.861627][T11027]  kasan_quarantine_reduce+0x148/0x160
[  557.867078][T11027]  __kasan_slab_alloc+0x22/0x80
[  557.871920][T11027]  kmem_cache_alloc_node_noprof+0x43c/0x720
[  557.877813][T11027]  __alloc_skb+0x255/0x430
[  557.882214][T11027]  mld_newpack+0x13c/0xc40
[  557.886620][T11027]  add_grhead+0x5a/0x2a0
[  557.890849][T11027]  add_grec+0x1452/0x1740
[  557.895170][T11027]  mld_ifc_work+0x6ed/0xd60
[  557.899666][T11027]  process_scheduled_works+0xad1/0x1770
[  557.905196][T11027]  worker_thread+0x8a0/0xda0
[  557.909775][T11027]  kthread+0x711/0x8a0
[  557.913838][T11027]  ret_from_fork+0x599/0xb30
[  557.918411][T11027]  ret_from_fork_asm+0x1a/0x30
[  557.923166][T11027] 
[  557.925469][T11027] Memory state around the buggy address:
[  557.931079][T11027]  ffff888076a86380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  557.939125][T11027]  ffff888076a86400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  557.947174][T11027] >ffff888076a86480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  557.955219][T11027]                    ^
[  557.959271][T11027]  ffff888076a86500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  557.967337][T11027]  ffff888076a86580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  557.975388][T11027] ==================================================================
[  557.989796][T11027] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  557.997021][T11027] CPU: 0 UID: 0 PID: 11027 Comm: kworker/u9:0 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  558.008142][T11027] Tainted: [L]=SOFTLOCKUP
[  558.012459][T11027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  558.022511][T11027] Workqueue: hci3 hci_rx_work
[  558.027205][T11027] Call Trace:
[  558.030478][T11027]  <TASK>
[  558.033401][T11027]  dump_stack_lvl+0x99/0x250
[  558.038003][T11027]  ? __asan_memcpy+0x40/0x70
[  558.042589][T11027]  ? __pfx_dump_stack_lvl+0x10/0x10
[  558.047798][T11027]  ? __pfx__printk+0x10/0x10
[  558.052394][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  558.058021][T11027]  vpanic+0x237/0x6d0
[  558.061997][T11027]  ? __pfx_vpanic+0x10/0x10
[  558.066493][T11027]  ? preempt_schedule+0xae/0xc0
[  558.071326][T11027]  ? __pfx_preempt_schedule+0x10/0x10
[  558.076684][T11027]  panic+0xb9/0xc0
[  558.080396][T11027]  ? __pfx_panic+0x10/0x10
[  558.084804][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  558.090426][T11027]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  558.096325][T11027]  ? l2cap_connect_cfm+0x6d0/0x10e0
[  558.101521][T11027]  check_panic_on_warn+0x89/0xb0
[  558.106462][T11027]  ? l2cap_connect_cfm+0x6d0/0x10e0
[  558.111654][T11027]  end_report+0x6f/0x140
[  558.115893][T11027]  kasan_report+0x129/0x150
[  558.120393][T11027]  ? l2cap_connect_cfm+0x6d0/0x10e0
[  558.125594][T11027]  l2cap_connect_cfm+0x6d0/0x10e0
[  558.130622][T11027]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  558.136082][T11027]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  558.141539][T11027]  hci_connect_cfm+0x95/0x140
[  558.146214][T11027]  le_conn_complete_evt+0xf65/0x1420
[  558.151493][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  558.157308][T11027]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  558.163019][T11027]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  558.168645][T11027]  ? __asan_memcpy+0x40/0x70
[  558.173218][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  558.178841][T11027]  ? skb_pull_data+0xfb/0x200
[  558.183514][T11027]  hci_le_conn_complete_evt+0x187/0x480
[  558.189061][T11027]  hci_event_packet+0x78f/0x1260
[  558.193990][T11027]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  558.199266][T11027]  ? __pfx_hci_event_packet+0x10/0x10
[  558.204625][T11027]  ? kcov_remote_start+0x4d3/0x7f0
[  558.209735][T11027]  ? __entry_text_end+0x1020b5/0x1020b9
[  558.215276][T11027]  ? lockdep_hardirqs_on+0x98/0x140
[  558.220463][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  558.226087][T11027]  ? hci_send_to_monitor+0xe2/0x590
[  558.231283][T11027]  hci_rx_work+0x3ee/0x1060
[  558.235780][T11027]  ? process_scheduled_works+0x9ef/0x1770
[  558.241490][T11027]  process_scheduled_works+0xad1/0x1770
[  558.247038][T11027]  ? __pfx_process_scheduled_works+0x10/0x10
[  558.253008][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  558.258635][T11027]  worker_thread+0x8a0/0xda0
[  558.263214][T11027]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  558.269549][T11027]  ? __kthread_parkme+0x7b/0x200
[  558.274486][T11027]  kthread+0x711/0x8a0
[  558.278554][T11027]  ? __pfx_worker_thread+0x10/0x10
[  558.283651][T11027]  ? __pfx_kthread+0x10/0x10
[  558.288232][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  558.293858][T11027]  ? _raw_spin_unlock_irq+0x23/0x50
[  558.299055][T11027]  ? srso_alias_return_thunk+0x5/0xfbef5
[  558.304676][T11027]  ? lockdep_hardirqs_on+0x98/0x140
[  558.309859][T11027]  ? __pfx_kthread+0x10/0x10
[  558.314447][T11027]  ret_from_fork+0x599/0xb30
[  558.319031][T11027]  ? __pfx_ret_from_fork+0x10/0x10
[  558.324136][T11027]  ? __switch_to_asm+0x39/0x70
[  558.328892][T11027]  ? __switch_to_asm+0x33/0x70
[  558.333647][T11027]  ? __pfx_kthread+0x10/0x10
[  558.338230][T11027]  ret_from_fork_asm+0x1a/0x30
[  558.343000][T11027]  </TASK>
[  558.346213][T11027] Kernel Offset: disabled
[  558.350530][T11027] Rebooting in 86400 seconds..