last executing test programs:

3m10.8426897s ago: executing program 32 (id=1884):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[], 0x0, 0x102, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
syz_usb_connect(0x5, 0x24, &(0x7f0000002040)=ANY=[@ANYBLOB="12010000fe76181004160780a6af011703010902120001000000000904"], 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x535, 0x200)
ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0x80dc5521, &(0x7f0000000300)=""/161)

2m18.17732076s ago: executing program 2 (id=2752):
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xb)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xd, 0x10012, r1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f0000000000)={0x0})

2m17.866644469s ago: executing program 2 (id=2757):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$rds(0x15, 0x5, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x80, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xffff}, 0x1c)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)

2m17.676292881s ago: executing program 2 (id=2760):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="12010000000000408c0d220000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000740)={0x2c, &(0x7f0000000980)=ANY=[@ANYBLOB="00000001000000090090"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0)
preadv(r1, &(0x7f0000002480)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1, 0x0, 0x0)

2m17.647897409s ago: executing program 3 (id=2761):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
rseq(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
mq_open(&(0x7f0000000300)='eth0\x00.\x19\xfd\x01v]\xd8\xb8PX\xe3=\x84@(N@\xa3\xac\v\x8f<\x8bz\xcb\xffP\xa8\x95\x92\xa3\x85\xb9\n\xd8\xb5\xd9-/\xf5f\xdfw\t\xba\x7f\x12C\xb6\x03S\xebJS\n\xd2\xe6\xf8X\x00\x84\xdb\xd7\xe9i\x11\xda\xc1\x89\x98\xb6\xa7\xe1\xb0\xf1\'\xf9\x8cC:\xc2S\xa2\x81O\v\xaf_^\xa4=^\x05\xe4\x1eo_\x015\xcb-n\xc3,\x87{cX<5=\xb0X\xb6\xee8\x0f\x80\xc8\b\x1b\x13\xe5\xc0N\x81\x00I5R\xf3om\x15\x16\x9d\x10\xf1\xca\xd1\xb8\x01(\xd4v\xdfjz\x11k\xe9\x88MhJw', 0x42, 0x0, 0x0)

2m16.927040049s ago: executing program 4 (id=2762):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000300)=ANY=[@ANYBLOB="0100000000000000014d564b00000000af"])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m15.567860546s ago: executing program 5 (id=2765):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x27, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0x0, 0xe, 0xfffffffffffffd85, &(0x7f00000000c0)="61df712bc884fed5722780b6c2a7", 0x0, 0x739d, 0x0, 0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0x2f000000}, 0x28)

2m15.564390672s ago: executing program 3 (id=2766):
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480), &(0x7f0000000040)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

2m15.562356494s ago: executing program 4 (id=2767):
r0 = socket$igmp6(0xa, 0x3, 0x2)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SIOCGSTAMPNS(r0, 0x8907, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaac11286dd6000000000300200fe8000000000000000000000000000aafe8000000000000000000000000000aa"], 0x0)
ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000000))

2m15.326869284s ago: executing program 3 (id=2769):
mkdir(&(0x7f0000000080)='./file0\x00', 0x9)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
rename(&(0x7f0000000100)='./file0/../file0/file0\x00', &(0x7f0000000140)='./file0/../file0/file0\x00')
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x145825, 0x0)

2m15.130691799s ago: executing program 5 (id=2770):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x5885}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

2m15.01514374s ago: executing program 5 (id=2771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}, [{0x0, 0x0, 0x0, 0x200000}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xe}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {}, {}, {0x0, 0x1, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x10001}, {0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {0xfffffffe}, {}, {0xd5}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x5}, {}, {}, {}, {0x0, 0x10}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x800, 0x6}, {0x20000000}, {}, {}, {0x0, 0x4}, {}, {0x0, 0x5, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {}, {}, {0xffffffff}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x800000}, {}, {0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x2}, {}, {}, {0x0, 0x0, 0x1000}, {0x0, 0x0, 0x3}, {}, {}, {}, {0xfffffffe}, {0x4, 0x0, 0x0, 0x0, 0x1}, {}, {0x4, 0x9}, {}, {0xfffffffe, 0x0, 0x0, 0xffffff01, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x10000000}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}], [{}, {}, {}, {}, {0x2}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {0x3}, {}, {0x5, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {0x5}, {0x5}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0)

2m14.938592274s ago: executing program 5 (id=2772):
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x4000001, 0x0)
write$vga_arbiter(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, 0x0)

2m14.804090677s ago: executing program 2 (id=2773):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6, "a05c7b5d00008023e9c5bcf5ff7700"})
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

2m14.795933088s ago: executing program 5 (id=2774):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x800)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000900)={0x0, 0xd000, 0x1, r2})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000080)={0x11400, 0xd000, 0x1, r2, 0x4})

2m14.726794027s ago: executing program 2 (id=2775):
socket$inet6(0xa, 0x1, 0x84)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c020000", @ANYRES16=r1, @ANYBLOB="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", @ANYRES16=r0], 0x21c}, 0x1, 0x0, 0x0, 0x200c4034}, 0x0)

2m14.666819062s ago: executing program 4 (id=2776):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000880)=ANY=[@ANYBLOB="c40000001900674c0000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000021000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffffffffffff0000000000000000000000000000000001000000000000000a00100001"], 0xc4}}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001e40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

2m14.622069357s ago: executing program 2 (id=2777):
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_io_uring_setup(0xf00, &(0x7f0000000080), 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000080)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005020524", @ANYRES8=r0, @ANYBLOB="05"], 0x0)

2m14.592781915s ago: executing program 1 (id=2778):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x5d031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000})

2m14.47297942s ago: executing program 4 (id=2779):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x802, 0x0)
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2m14.431063296s ago: executing program 3 (id=2780):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000900)={0x0, 0x0, 0x4, r2, 0x1})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x7a2, 0x0, 0x4, r2})

2m14.316712216s ago: executing program 1 (id=2781):
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {0x0}, {&(0x7f0000001480)}], 0x3)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000800000000000000000000000000000002"])
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_timeval(r0, 0x1, 0x2, 0x0, 0x0)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x4, &(0x7f0000000000)=""/152, &(0x7f00000000c0)=0x98)

2m14.225547234s ago: executing program 5 (id=2782):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000000)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

2m14.19276237s ago: executing program 1 (id=2783):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000000)={@remote, @multicast1, 0x4, "d30f388c52647612d91de4353d68b0fa00", 0x0, 0x0, 0x4000000, 0x8}, 0x3c)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000280)={@multicast2, @multicast1, 0x0, "7ea97ddb2ac127ffa5b7216fe75ebaa2855a422a8bf8ec7caf003751804500"}, 0x3c)
setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, &(0x7f0000000200)={@empty, @private, 0x0, "606b177019716ea6ff1f4d7ed79c31e2e0f1da00000000230000002000", 0x3e1f}, 0x3c)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000140)=0x7, 0x4)

2m14.159116923s ago: executing program 4 (id=2784):
r0 = syz_usb_connect(0x0, 0x5a, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000060f94d100d05020027230102030109024840020000000009047d04031d5abf0009050400005539000009050b00000000000009050200000005000009047d01013481af0009a00e00230000690009047dbe"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000140)={0x14, 0x0, 0x0}, 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000840)={0x14, 0x0, 0x0}, &(0x7f0000000980)={0x1c, &(0x7f0000000300)={0x40, 0x8, 0x3, "c9d256"}, 0x0, 0x0})

2m14.074275976s ago: executing program 3 (id=2785):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
tee(r1, r0, 0x80000001, 0x0)
vmsplice(r2, &(0x7f0000000380)=[{&(0x7f0000013580)="0dd2", 0x2}], 0x1, 0x0)

2m13.964670269s ago: executing program 1 (id=2786):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f00000003c0)={0xa, 0x3, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000001500)=ANY=[], 0x10)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240)='batadv0\x00', 0x10)
write(r0, &(0x7f00000000c0)="8f2a0a65", 0x4)

2m13.914423748s ago: executing program 1 (id=2787):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x0, {0x0, 0xff, 0x1}}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18)
sendmsg$can_j1939(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)='d', 0x1}}, 0x0)

2m13.855449286s ago: executing program 3 (id=2788):
r0 = socket(0x10, 0x3, 0x0)
r1 = epoll_create1(0x0)
r2 = fanotify_init(0x200, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0))
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000140)={0xe000001a})

2m6.335055983s ago: executing program 1 (id=2789):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x1})
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0xb1, 0xbd, 0x2f, 0x8, 0x47d, 0x5003, 0x2f8c, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xa0, 0x58, 0xb7}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r1, &(0x7f00000000c0)={0x14, &(0x7f0000000100)=ANY=[@ANYBLOB="0000f50000000341"], 0x0}, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)

1m58.118782467s ago: executing program 4 (id=2790):
r0 = io_uring_setup(0x4f04, &(0x7f0000000180))
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
listen(r1, 0x0)
accept(r1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1m50.719086711s ago: executing program 33 (id=2782):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000000)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

1m2.725357942s ago: executing program 34 (id=2777):
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_io_uring_setup(0xf00, &(0x7f0000000080), 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000080)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005020524", @ANYRES8=r0, @ANYBLOB="05"], 0x0)

30.208833308s ago: executing program 35 (id=2788):
r0 = socket(0x10, 0x3, 0x0)
r1 = epoll_create1(0x0)
r2 = fanotify_init(0x200, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0))
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000140)={0xe000001a})

29.212486149s ago: executing program 36 (id=2789):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x1})
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0xb1, 0xbd, 0x2f, 0x8, 0x47d, 0x5003, 0x2f8c, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xa0, 0x58, 0xb7}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r1, &(0x7f00000000c0)={0x14, &(0x7f0000000100)=ANY=[@ANYBLOB="0000f50000000341"], 0x0}, 0x0)
syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0)

29.17107068s ago: executing program 37 (id=2790):
r0 = io_uring_setup(0x4f04, &(0x7f0000000180))
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
listen(r1, 0x0)
accept(r1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

21.255618662s ago: executing program 8 (id=2813):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000001afc1801000020207025000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0xff32, 0x0, 0x0, &(0x7f0000000000)=""/10, 0x17}}], 0x400000000000078, 0x2, 0x0)
write$bt_hci(r0, &(0x7f0000000200)={0x1, @accept_logical_link={{0x439, 0x21}, {0xc8, {0x10, 0xf, 0x8001, 0xef8, 0x0, 0x6}, {0x0, 0x5, 0x4, 0x80000001, 0x3, 0x5}}}}, 0x25)

21.222093094s ago: executing program 8 (id=2814):
socket$packet(0x11, 0x3, 0x300)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
getgid()

20.414130756s ago: executing program 8 (id=2821):
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@bloom_filter={0x1e, 0x0, 0x59, 0x0, 0x200, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5, 0xa, @void, @value, @void, @value}, 0x48)
r0 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0x0, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0x34000}], 0x8, 0x0, 0x0, 0x2044}, 0x60)
sendmsg$inet(r0, &(0x7f0000000580)={&(0x7f0000000340)={0x2, 0x0, @local}, 0x10, &(0x7f0000000440)=[{&(0x7f00000003c0)='\f', 0x1}], 0x1}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000400)={&(0x7f00000000c0)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000002740)=[{&(0x7f0000002780)='\f', 0x1}], 0x1}, 0x4040040)

20.411768481s ago: executing program 0 (id=2822):
r0 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000200)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000002240)=""/237, 0xed, 0x619)

20.185791327s ago: executing program 0 (id=2824):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$afs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f00000002c0)={[{@dyn}]})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

19.670033666s ago: executing program 0 (id=2828):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000104000072000040"])

19.505849716s ago: executing program 8 (id=2831):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6(0xa, 0x6, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000f59ffc)=0x4, 0x4)
listen(r1, 0x82)
close_range(r0, 0xffffffffffffffff, 0x0)

19.43571014s ago: executing program 8 (id=2832):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
r1 = syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)

19.373994668s ago: executing program 0 (id=2833):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c)
listen(r0, 0x3)
setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000100)=0x400, 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000440)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

19.364181702s ago: executing program 8 (id=2834):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffe1a, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x6c}}, 0x0)

19.321905867s ago: executing program 0 (id=2835):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)
ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f0000000080)=0xb309)
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f0000000080)=ANY=[])
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000040)={0xbba97f4b14704c5e, 0x1, 0x2005, 0x0, 0xffffffffffffff92, 0x6, 0x0})
syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x8, &(0x7f0000000040)=ANY=[])

17.588477755s ago: executing program 0 (id=2840):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="190000000400000004000000020000"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

15.653364954s ago: executing program 7 (id=2841):
r0 = syz_io_uring_setup(0xe42, &(0x7f0000000140)={0x0, 0x2119, 0x400}, &(0x7f0000000240)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)={0x0, 0x0, 0x32}, 0x0, 0x18})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x280000d, 0xc3072, 0xffffffffffffffff, 0x200000000000000)
io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0)

15.612726297s ago: executing program 7 (id=2842):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000e45f39bb850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./bus\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./bus\x00', &(0x7f0000000040)='smb3\x00', 0x0, &(0x7f00000000c0)='rdma')

15.585214633s ago: executing program 7 (id=2843):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0x2, 0x3a0, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000280), &(0x7f00000002c0)}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)

15.565690033s ago: executing program 7 (id=2844):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x3, {0x42, 0x4000000, 0xfffffffd}}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
bind$tipc(r0, 0x0, 0x0)

15.54298924s ago: executing program 7 (id=2845):
socket$packet(0x11, 0x3, 0x300)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
getgid()

15.414806449s ago: executing program 7 (id=2846):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x40, r1, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x2000000}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x40}, 0x4, 0x700000002000000, 0x0, 0x4000050}, 0x0)

4.006594472s ago: executing program 38 (id=2834):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffe1a, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[], 0x6c}}, 0x0)

2.506319857s ago: executing program 39 (id=2840):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="190000000400000004000000020000"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

0s ago: executing program 40 (id=2846):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x40, r1, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x2000000}}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x40}, 0x4, 0x700000002000000, 0x0, 0x4000050}, 0x0)

kernel console output (not intermixed with test programs):

e2, bcdDevice=70.8b
[  129.855827][ T5916] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.898709][ T5916] usb 6-1: Product: syz
[  129.912715][ T5916] usb 6-1: Manufacturer: syz
[  129.919438][ T5916] usb 6-1: SerialNumber: syz
[  129.935709][ T5916] usb 6-1: config 0 descriptor??
[  129.943989][ T5916] option 6-1:0.0: GSM modem (1-port) converter detected
[  130.161019][    T9] usb 6-1: USB disconnect, device number 3
[  130.172710][    T9] option 6-1:0.0: device disconnected
[  130.258228][ T5874] aquacomputer_d5next 0003:0C70:F001.0024: unknown main item tag 0x0
[  130.269076][ T5874] aquacomputer_d5next 0003:0C70:F001.0024: unknown main item tag 0x0
[  130.277587][ T5826] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  130.285940][ T5874] aquacomputer_d5next 0003:0C70:F001.0024: unknown main item tag 0x0
[  130.295947][ T5874] aquacomputer_d5next 0003:0C70:F001.0024: unknown main item tag 0x0
[  130.304456][ T5874] aquacomputer_d5next 0003:0C70:F001.0024: unknown main item tag 0x0
[  130.314522][ T5874] aquacomputer_d5next 0003:0C70:F001.0024: hidraw0: USB HID v0.00 Device [HID 0c70:f001] on usb-dummy_hcd.3-1/input0
[  130.439546][ T5826] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  130.453135][ T5826] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x1D, changing to 0xD
[  130.464838][ T5826] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0
[  130.465347][ T5916] usb 4-1: USB disconnect, device number 23
[  130.476094][ T5826] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  130.497618][ T5915] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  130.508896][ T5826] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  130.524935][ T5826] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  130.535164][ T5826] usb 5-1: Manufacturer: syz
[  130.545191][ T5826] usb 5-1: config 0 descriptor??
[  130.554417][ T5826] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  130.649001][ T5915] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  130.658220][ T5915] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.669228][ T5915] usb 2-1: config 0 descriptor??
[  130.675304][ T5915] cp210x 2-1:0.0: cp210x converter detected
[  130.758809][ T5826] usb 5-1: USB disconnect, device number 14
[  131.077042][ T5915] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32
[  131.300162][ T5915] usb 2-1: cp210x converter now attached to ttyUSB0
[  131.408498][T11497] netlink: 'syz.2.2320': attribute type 2 has an invalid length.
[  131.428134][ T5916] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  131.504643][ T5874] usb 2-1: USB disconnect, device number 15
[  131.512162][ T5874] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  131.531290][ T5874] cp210x 2-1:0.0: device disconnected
[  131.577416][ T5916] usb 6-1: Using ep0 maxpacket: 32
[  131.591344][ T5916] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  131.607726][ T5916] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.625948][ T5916] usb 6-1: Product: syz
[  131.644726][ T5916] usb 6-1: Manufacturer: syz
[  131.657221][ T5916] usb 6-1: SerialNumber: syz
[  131.657221][ T5872] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  131.688067][ T5915] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  131.807237][ T5872] usb 5-1: Using ep0 maxpacket: 32
[  131.814829][ T5872] usb 5-1: config 0 has no interfaces?
[  131.830082][ T5872] usb 5-1: New USB device found, idVendor=0572, idProduct=58a5, bcdDevice=27.0a
[  131.839350][ T5872] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.849994][ T5915] usb 3-1: Using ep0 maxpacket: 16
[  131.857196][ T5872] usb 5-1: Product: syz
[  131.859617][ T5915] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.861409][ T5872] usb 5-1: Manufacturer: syz
[  131.888997][ T5915] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  131.897124][ T5872] usb 5-1: SerialNumber: syz
[  131.903609][ T5872] usb 5-1: config 0 descriptor??
[  131.911402][ T5915] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.936574][ T5915] usb 3-1: config 0 descriptor??
[  132.142099][ T5872] usb 5-1: USB disconnect, device number 15
[  132.373880][ T5915] mcp2221 0003:04D8:00DD.0025: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  132.522214][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  132.537583][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  132.579337][    C1] usb 3-1: input irq status -75 received
[  132.691848][ T5916] cdc_ncm 6-1:1.0: failed to get mac address
[  132.707909][ T5916] cdc_ncm 6-1:1.0: bind() failure
[  132.740020][ T5916] cdc_ncm 6-1:1.1: probe with driver cdc_ncm failed with error -71
[  132.784494][ T5916] cdc_mbim 6-1:1.1: probe with driver cdc_mbim failed with error -71
[  132.788184][    T9] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  132.794457][   T25] usb 3-1: USB disconnect, device number 22
[  132.832097][ T5916] usbtest 6-1:1.1: probe with driver usbtest failed with error -71
[  132.870588][ T5916] usb 6-1: USB disconnect, device number 4
[  133.039454][    T9] usb 4-1: Using ep0 maxpacket: 32
[  133.073120][    T9] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  133.107249][    T9] usb 4-1: config 0 has no interface number 0
[  133.147618][    T9] usb 4-1: config 0 interface 12 has no altsetting 0
[  133.240922][    T9] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  133.267764][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.288206][T11592] random: crng reseeded on system resumption
[  133.300541][    T9] usb 4-1: Product: syz
[  133.307416][    T9] usb 4-1: Manufacturer: syz
[  133.312020][    T9] usb 4-1: SerialNumber: syz
[  133.330499][    T9] usb 4-1: config 0 descriptor??
[  133.922603][   T29] kauditd_printk_skb: 34 callbacks suppressed
[  133.922618][   T29] audit: type=1400 audit(2000000065.420:1104): avc:  denied  { watch_reads } for  pid=11623 comm="syz.2.2335" path="/403" dev="tmpfs" ino=2072 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  134.342947][T11641] netlink: 'syz.4.2341': attribute type 14 has an invalid length.
[  134.456174][    T9] f81534 4-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  134.471558][    T9] f81534 4-1:0.12: f81534_find_config_idx: read failed: -71
[  134.487175][    T9] f81534 4-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  134.496998][    T9] f81534 4-1:0.12: probe with driver f81534 failed with error -71
[  134.515236][T11648] blktrace: Concurrent blktraces are not allowed on sg0
[  134.610821][   T29] audit: type=1400 audit(2000000066.109:1105): avc:  denied  { read } for  pid=11651 comm="syz.2.2355" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  134.655866][    T9] usb 4-1: USB disconnect, device number 24
[  134.972046][T11661] vlan2: entered promiscuous mode
[  134.988019][T11661] vlan2: entered allmulticast mode
[  135.022665][   T29] audit: type=1400 audit(2000000066.519:1106): avc:  denied  { connect } for  pid=11667 comm="syz.3.2353" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  135.094736][   T29] audit: type=1400 audit(2000000066.589:1107): avc:  denied  { sqpoll } for  pid=11670 comm="syz.2.2354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  135.137948][   T25] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  135.166819][   T29] audit: type=1400 audit(2000000066.589:1108): avc:  denied  { lock } for  pid=11670 comm="syz.2.2354" path="socket:[32704]" dev="sockfs" ino=32704 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  135.307821][   T25] usb 2-1: Using ep0 maxpacket: 32
[  135.320911][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  135.361429][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  135.406157][   T25] usb 2-1: New USB device found, idVendor=056a, idProduct=033e, bcdDevice= 0.00
[  135.432380][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.445633][   T25] usb 2-1: config 0 descriptor??
[  135.680388][   T25] usbhid 2-1:0.0: can't add hid device: -71
[  135.696512][   T25] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  135.718671][   T25] usb 2-1: USB disconnect, device number 16
[  135.736304][T11698] netlink: 'syz.3.2364': attribute type 10 has an invalid length.
[  135.771206][T11698] syz_tun: entered promiscuous mode
[  135.839360][T11698] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  136.078580][   T29] audit: type=1400 audit(2000000067.579:1109): avc:  denied  { write } for  pid=11708 comm="syz.2.2369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  136.193371][   T29] audit: type=1400 audit(2000000067.689:1110): avc:  denied  { open } for  pid=11713 comm="syz.4.2372" path="/dev/ptyqc" dev="devtmpfs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  136.301586][   T29] audit: type=1400 audit(2000000067.719:1111): avc:  denied  { ioctl } for  pid=11713 comm="syz.4.2372" path="/dev/ptyqc" dev="devtmpfs" ino=131 ioctlcmd=0x5420 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  136.401463][   T29] audit: type=1400 audit(2000000067.729:1112): avc:  denied  { mount } for  pid=11714 comm="syz.2.2373" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  136.425077][   T29] audit: type=1400 audit(2000000067.729:1113): avc:  denied  { read } for  pid=11714 comm="syz.2.2373" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  136.665769][T11739] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  136.827958][   T25] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  136.988622][   T25] usb 5-1: Using ep0 maxpacket: 8
[  137.004946][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  137.032189][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  137.054626][   T25] usb 5-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[  137.075247][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.123125][   T25] usb 5-1: config 0 descriptor??
[  137.149089][T11751] openvswitch: netlink: nsh attr 0 has unexpected len 108 expected 0
[  137.180903][T11751] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  137.559835][   T25] ortek 0003:1223:3F07.0026: unknown main item tag 0x0
[  137.574985][   T25] ortek 0003:1223:3F07.0026: hidraw0: USB HID v0.00 Device [HID 1223:3f07] on usb-dummy_hcd.4-1/input0
[  137.659956][T11762] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  137.710940][T11762] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  137.835939][T11765] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2392'.
[  137.848948][   T25] usb 5-1: USB disconnect, device number 16
[  137.889790][T11765] netlink: 'syz.2.2392': attribute type 7 has an invalid length.
[  137.916445][T11765] netlink: 'syz.2.2392': attribute type 8 has an invalid length.
[  137.932642][T11748] IPVS: You probably need to specify IP address on multicast interface.
[  137.943794][T11765] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2392'.
[  137.954850][T11748] IPVS: Error connecting to the multicast addr
[  139.186968][   T29] kauditd_printk_skb: 11 callbacks suppressed
[  139.186982][   T29] audit: type=1326 audit(2000000070.679:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  139.302175][   T29] audit: type=1326 audit(2000000070.719:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  139.440262][   T29] audit: type=1326 audit(2000000070.729:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  139.561817][T11840] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock
[  139.620596][   T29] audit: type=1326 audit(2000000070.729:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  139.702749][   T29] audit: type=1326 audit(2000000070.729:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  139.763910][   T29] audit: type=1326 audit(2000000070.729:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  139.787402][    C1] vkms_vblank_simulate: vblank timer overrun
[  139.826721][   T29] audit: type=1326 audit(2000000070.729:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  139.942574][   T29] audit: type=1326 audit(2000000070.729:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  140.024451][   T29] audit: type=1326 audit(2000000070.729:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  140.100682][   T29] audit: type=1326 audit(2000000070.729:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11828 comm="syz.1.2420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb2258cd29 code=0x7ffc0000
[  140.124141][    C1] vkms_vblank_simulate: vblank timer overrun
[  140.687485][   T25] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  140.847488][   T25] usb 3-1: Using ep0 maxpacket: 32
[  140.855770][   T25] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  140.882131][   T25] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  140.909216][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  140.924203][   T25] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  140.943553][   T25] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  141.005376][   T25] usb 3-1: New USB device found, idVendor=072f, idProduct=2200, bcdDevice=3f.bf
[  141.061859][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.119766][   T25] usb 3-1: Product: syz
[  141.155615][   T25] usb 3-1: Manufacturer: syz
[  141.183149][   T25] usb 3-1: SerialNumber: syz
[  141.220288][   T25] usb 3-1: config 0 descriptor??
[  141.247506][T11876] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  141.261493][   T25] pn533_usb 3-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  141.584490][ T5916] usb 3-1: USB disconnect, device number 23
[  142.149690][ T5916] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  142.387247][ T5916] usb 5-1: Using ep0 maxpacket: 32
[  142.417289][ T5916] usb 5-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=67.9b
[  142.455891][ T5916] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.475965][T11936] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  142.524011][ T5916] usb 5-1: Product: syz
[  142.543973][ T5916] usb 5-1: Manufacturer: syz
[  142.558145][T11936] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  142.582775][ T5916] usb 5-1: SerialNumber: syz
[  142.601032][ T5916] usb 5-1: config 0 descriptor??
[  143.217019][ T5916] peak_usb 5-1:0.0 can0: unable to request usb[type=2 value=5] err=-71
[  143.293869][   T25] kernel write not supported for file /dsp1 (pid: 25 comm: kworker/1:0)
[  143.328139][ T5916] peak_usb 5-1:0.0: probe with driver peak_usb failed with error -71
[  143.362761][ T5916] usb 5-1: USB disconnect, device number 17
[  143.557236][ T5915] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  143.717521][ T5915] usb 6-1: Using ep0 maxpacket: 32
[  143.733595][ T5915] usb 6-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  143.782833][ T5915] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.833228][ T5915] usb 6-1: config 0 descriptor??
[  143.875883][ T5915] gspca_main: sq930x-2.14.0 probing 041e:403c
[  144.225980][   T29] kauditd_printk_skb: 35 callbacks suppressed
[  144.225996][   T29] audit: type=1400 audit(2000000075.719:1170): avc:  denied  { ioctl } for  pid=12010 comm="syz.3.2499" path="/dev/binderfs/binder0" dev="binder" ino=10 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  144.261780][T12011] binder: 12010:12011 ioctl c0306201 200001c0 returned -14
[  144.362661][T12013] vivid-003: disconnect
[  144.373046][T12012] vivid-003: reconnect
[  144.720608][   T29] audit: type=1400 audit(2000000076.219:1171): avc:  denied  { ioctl } for  pid=12024 comm="syz.4.2506" path="/dev/nullb0" dev="devtmpfs" ino=696 ioctlcmd=0x127f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  144.850572][T12000] syz.2.2493 (12000) used greatest stack depth: 21856 bytes left
[  144.881994][ T5915] gspca_sq930x: ucbus_write failed -71
[  144.890455][ T5915] sq930x 6-1:0.0: probe with driver sq930x failed with error -71
[  144.929343][ T5915] usb 6-1: USB disconnect, device number 5
[  145.350003][T12041] netlink: 'syz.4.2511': attribute type 9 has an invalid length.
[  145.361556][T12041] netlink: 61951 bytes leftover after parsing attributes in process `syz.4.2511'.
[  145.487506][   T29] audit: type=1326 audit(2000000076.979:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12022 comm="syz.3.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae198cd29 code=0x7fc00000
[  145.885057][   T29] audit: type=1400 audit(2000000077.379:1173): avc:  denied  { view } for  pid=12060 comm="syz.2.2521" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  145.981434][T12066] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  146.025673][   T29] audit: type=1400 audit(2000000077.439:1174): avc:  denied  { setopt } for  pid=12063 comm="syz.4.2522" lport=49167 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  146.068377][T12066] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  146.083642][T12066] gretap1: entered promiscuous mode
[  146.090979][T12066] gretap1: entered allmulticast mode
[  146.497440][   T29] audit: type=1400 audit(2000000077.989:1175): avc:  denied  { getopt } for  pid=12088 comm="syz.2.2532" lport=51 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  146.607248][   T29] audit: type=1400 audit(2000000078.069:1176): avc:  denied  { create } for  pid=12092 comm="syz.5.2533" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  146.685565][   T29] audit: type=1400 audit(2000000078.099:1177): avc:  denied  { write } for  pid=12092 comm="syz.5.2533" path="socket:[33124]" dev="sockfs" ino=33124 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  146.852589][T12105] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  147.289833][T12113] input: syz1 as /devices/virtual/input/input23
[  147.341902][   T29] audit: type=1400 audit(2000000078.839:1178): avc:  denied  { ioctl } for  pid=5178 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=3140 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  147.794230][T12131] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  147.886558][ T5916] IPVS: starting estimator thread 0...
[  148.017302][T12134] IPVS: using max 57 ests per chain, 136800 per kthread
[  148.236795][   T29] audit: type=1400 audit(2000000079.729:1179): avc:  denied  { block_suspend } for  pid=12145 comm="syz.4.2555" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  148.633667][ T5872] kernel read not supported for file /video7 (pid: 5872 comm: kworker/0:4)
[  148.747239][ T5916] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  148.918840][ T5916] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  148.937517][ T5916] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  148.950687][ T5916] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  148.963966][ T5916] usb 2-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00
[  148.975897][ T5916] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.989077][ T5916] usb 2-1: config 0 descriptor??
[  149.167313][   T46] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  149.210700][ T5908] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  149.331417][   T46] usb 6-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice=a5.ed
[  149.343308][   T46] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.352927][   T46] usb 6-1: Product: syz
[  149.357338][   T46] usb 6-1: Manufacturer: syz
[  149.361982][   T46] usb 6-1: SerialNumber: syz
[  149.382798][   T46] usb 6-1: config 0 descriptor??
[  149.402112][   T46] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[  149.423042][ T5916] chicony 0003:04F2:1421.0027: item fetching failed at offset 5/7
[  149.442566][   T46] ftdi_sio ttyUSB0: unknown device type: 0xa5ed
[  149.454270][ T5916] chicony 0003:04F2:1421.0027: Chicony hid parse failed: -22
[  149.472826][ T5916] chicony 0003:04F2:1421.0027: probe with driver chicony failed with error -22
[  149.520637][ T5908] usb 5-1: Using ep0 maxpacket: 32
[  149.550140][ T5908] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 62, changing to 9
[  149.577881][ T5908] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  149.598395][ T5908] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  149.662571][ T5916] usb 2-1: USB disconnect, device number 17
[  149.677190][ T5915] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  149.678423][ T5908] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  149.718255][ T5908] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.726280][ T5908] usb 5-1: Product: syz
[  149.787427][ T5908] usb 5-1: Manufacturer: syz
[  149.810453][ T5908] usb 5-1: SerialNumber: syz
[  149.811364][T12191] syzkaller1: entered promiscuous mode
[  149.823631][T12191] syzkaller1: entered allmulticast mode
[  149.838651][ T5915] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.854994][   T46] usb 6-1: USB disconnect, device number 6
[  149.874187][   T46] ftdi_sio 6-1:0.0: device disconnected
[  149.880248][ T5915] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.901478][ T5915] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  149.917839][ T5915] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  149.926975][ T5915] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.943384][ T5915] usb 3-1: config 0 descriptor??
[  150.258991][ T5144] Bluetooth: hci4: link tx timeout
[  150.264182][ T5144] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  150.279522][   T46] IPVS: starting estimator thread 0...
[  150.285953][T12199] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  150.371853][ T5915] plantronics 0003:047F:FFFF.0028: No inputs registered, leaving
[  150.384033][T12201] IPVS: using max 54 ests per chain, 129600 per kthread
[  150.422081][ T5915] plantronics 0003:047F:FFFF.0028: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  150.444600][   T29] kauditd_printk_skb: 6 callbacks suppressed
[  150.444615][   T29] audit: type=1400 audit(2000000081.939:1186): avc:  denied  { bind } for  pid=12204 comm="syz.1.2578" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  150.517276][ T5829] Bluetooth: hci1: command 0x0405 tx timeout
[  150.559673][   T29] audit: type=1400 audit(2000000081.979:1187): avc:  denied  { write } for  pid=12204 comm="syz.1.2578" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  150.638709][   T29] audit: type=1400 audit(2000000081.979:1188): avc:  denied  { getopt } for  pid=12204 comm="syz.1.2578" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  150.685802][ T5915] usb 3-1: USB disconnect, device number 24
[  150.889297][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[  150.901079][T12217] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  151.013019][ T5908] cdc_ncm 5-1:1.0: SET_NTB_FORMAT failed
[  151.041756][ T5908] cdc_ncm 5-1:1.0: bind() failure
[  151.060994][ T5908] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  151.087841][ T5908] cdc_ncm 5-1:1.1: bind() failure
[  151.099845][ T5908] usb 5-1: USB disconnect, device number 18
[  151.586735][T12232] syzkaller1: entered promiscuous mode
[  151.592428][T12232] syzkaller1: entered allmulticast mode
[  151.997824][ T5915] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  152.170396][ T5915] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  152.186212][ T5915] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  152.196383][ T5915] usb 2-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00
[  152.205855][   T29] audit: type=1400 audit(2000000083.699:1189): avc:  denied  { append } for  pid=12253 comm="syz.4.2599" name="ppp" dev="devtmpfs" ino=709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  152.235023][ T5915] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.244309][ T5915] usb 2-1: config 0 descriptor??
[  152.321853][   T29] audit: type=1400 audit(2000000083.819:1190): avc:  denied  { append } for  pid=12256 comm="syz.2.2600" name="loop5" dev="devtmpfs" ino=652 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  152.347636][T12257] loop5: detected capacity change from 0 to 8
[  152.354530][    C1] blk_print_req_error: 9 callbacks suppressed
[  152.354544][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.369795][    C1] buffer_io_error: 8 callbacks suppressed
[  152.369808][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.400621][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.409802][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.421920][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.431105][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.441330][ T5144] Bluetooth: hci4: command 0x0419 tx timeout
[  152.448025][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.457192][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.470359][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.479550][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.497759][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.506930][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.517772][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.526924][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.537852][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.547006][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.555897][T12257] ldm_validate_partition_table(): Disk read failed.
[  152.573676][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.582884][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.593334][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.602503][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  152.635993][T12257] Dev loop5: unable to read RDB block 0
[  152.655248][T12257]  loop5: unable to read partition table
[  152.671686][ T5915] cypress 0003:04B4:DE61.0029: collection stack underflow
[  152.687328][T12257] loop5: partition table beyond EOD, truncated
[  152.694311][ T5915] cypress 0003:04B4:DE61.0029: item 0 0 0 12 parsing failed
[  152.708357][T12257] loop_reread_partitions: partition scan of loop5 (3Ÿ¾‚³˜) failed (rc=-5)
[  152.722517][ T5915] cypress 0003:04B4:DE61.0029: parse failed
[  152.761787][ T5915] cypress 0003:04B4:DE61.0029: probe with driver cypress failed with error -22
[  152.809044][T12266] netlink: 'syz.3.2603': attribute type 3 has an invalid length.
[  152.862397][T12266] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2603'.
[  152.910280][ T5915] usb 2-1: USB disconnect, device number 18
[  152.918290][ T5144] Bluetooth: hci5: command 0x1003 tx timeout
[  152.922117][ T5830] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  153.110652][   T29] audit: type=1400 audit(2000000084.609:1191): avc:  denied  { connect } for  pid=12274 comm="syz.3.2608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  153.221129][   T29] audit: type=1400 audit(2000000084.609:1192): avc:  denied  { write } for  pid=12274 comm="syz.3.2608" path="socket:[36458]" dev="sockfs" ino=36458 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  153.308252][ T5916] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  153.349514][   T29] audit: type=1400 audit(2000000084.679:1193): avc:  denied  { shutdown } for  pid=12279 comm="syz.2.2609" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  153.509942][ T5916] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  153.540041][ T5916] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  153.584324][ T5916] usb 6-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  153.621934][ T5916] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.680668][ T5916] usb 6-1: config 0 descriptor??
[  153.817608][   T29] audit: type=1400 audit(2000000085.309:1194): avc:  denied  { mount } for  pid=12307 comm="syz.4.2618" name="/" dev="autofs" ino=36533 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1
[  153.959800][   T29] audit: type=1400 audit(2000000085.379:1195): avc:  denied  { connect } for  pid=12309 comm="syz.1.2619" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  154.502377][ T5916] hid-led 0003:27B8:01ED.002A: hidraw0: USB HID v0.00 Device [HID 27b8:01ed] on usb-dummy_hcd.5-1/input0
[  154.579683][ T5916] hid-led 0003:27B8:01ED.002A: ThingM blink(1) initialized
[  154.804522][   T25] usb 6-1: USB disconnect, device number 7
[  155.051993][T12343] loop5: detected capacity change from 0 to 8
[  155.091973][T12343] ldm_validate_partition_table(): Disk read failed.
[  155.126192][T12343] Dev loop5: unable to read RDB block 0
[  155.147889][T12343]  loop5: unable to read partition table
[  155.185990][T12343] loop5: partition table beyond EOD, truncated
[  155.223052][T12343] loop_reread_partitions: partition scan of loop5 (3Ÿ¾‚³˜) failed (rc=-5)
[  155.350824][ T5193] ldm_validate_partition_table(): Disk read failed.
[  155.386167][ T5193] Dev loop5: unable to read RDB block 0
[  155.405598][ T5193]  loop5: unable to read partition table
[  155.421960][ T5193] loop5: partition table beyond EOD, truncated
[  155.638541][    T0] NOHZ tick-stop error: local softirq work is pending, handler #4a!!!
[  155.657570][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  155.666466][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  155.667658][    T0] NOHZ tick-stop error: local softirq work is pending, handler #0a!!!
[  155.674977][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  155.692221][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  155.700685][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  155.700696][   T29] audit: type=1400 audit(2000000087.189:1198): avc:  denied  { read } for  pid=12359 comm="syz.4.2632" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  156.018608][   T29] audit: type=1400 audit(2000000087.189:1199): avc:  denied  { open } for  pid=12359 comm="syz.4.2632" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  156.117258][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  156.332300][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  156.400035][   T29] audit: type=1400 audit(2000000087.869:1200): avc:  denied  { execute } for  pid=12359 comm="syz.4.2632" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=33168 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  156.458392][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2ca!!!
[  156.614267][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  157.936900][T12406] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2635'.
[  158.135314][T12406] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.142465][T12406] bridge0: port 2(bridge_slave_1) entered forwarding state
[  158.149848][T12406] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.156916][T12406] bridge0: port 1(bridge_slave_0) entered forwarding state
[  158.191016][T12416] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  158.226236][ T9128] Bluetooth: hci5: Frame reassembly failed (-84)
[  158.567364][T12406] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  158.770398][   T29] audit: type=1400 audit(2000000090.269:1201): avc:  denied  { module_load } for  pid=12435 comm="syz.5.2652" path="/sys/kernel/notes" dev="sysfs" ino=1382 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  158.796369][T12436] Invalid ELF header magic: != ELF
[  159.427355][   T25] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  159.608379][   T25] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  159.632943][   T25] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  159.672378][   T25] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  159.696717][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.724802][   T25] usb 5-1: Product: syz
[  159.734821][   T25] usb 5-1: Manufacturer: syz
[  159.745140][   T25] usb 5-1: SerialNumber: syz
[  159.765982][   T25] usb 5-1: config 0 descriptor??
[  159.783120][T12455] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  159.794805][T12455] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  160.051705][T12455] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  160.075543][T12455] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  160.198164][ T5144] Bluetooth: hci5: command 0x1003 tx timeout
[  160.204318][ T5830] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  160.530608][T12499] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2665'.
[  160.767771][   T29] audit: type=1400 audit(2000000092.259:1202): avc:  denied  { read } for  pid=12510 comm="syz.2.2668" name="loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  160.792128][    C1] vkms_vblank_simulate: vblank timer overrun
[  160.918938][   T25] dm9601 5-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[  160.948387][   T29] audit: type=1400 audit(2000000092.299:1203): avc:  denied  { open } for  pid=12510 comm="syz.2.2668" path="/dev/loop-control" dev="devtmpfs" ino=646 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  160.973185][    C1] vkms_vblank_simulate: vblank timer overrun
[  161.032544][   T25] dm9601 5-1:0.0 eth5: register 'dm9601' at usb-dummy_hcd.4-1, Davicom DM96xx USB 10/100 Ethernet, 8e:75:bc:b6:ad:45
[  161.090523][   T25] usb 5-1: USB disconnect, device number 19
[  161.159000][   T25] dm9601 5-1:0.0 eth5: unregister 'dm9601' usb-dummy_hcd.4-1, Davicom DM96xx USB 10/100 Ethernet
[  161.179371][   T29] audit: type=1400 audit(2000000092.309:1204): avc:  denied  { ioctl } for  pid=12510 comm="syz.2.2668" path="/dev/loop-control" dev="devtmpfs" ino=646 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  161.205650][    C1] vkms_vblank_simulate: vblank timer overrun
[  161.292014][   T29] audit: type=1400 audit(2000000092.569:1205): avc:  denied  { execute } for  pid=12517 comm="syz.2.2670" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  161.626622][   T29] audit: type=1400 audit(2000000093.119:1206): avc:  denied  { read } for  pid=12532 comm="syz.1.2675" name="ptp0" dev="devtmpfs" ino=1265 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  161.771246][   T29] audit: type=1400 audit(2000000093.199:1207): avc:  denied  { ioctl } for  pid=12532 comm="syz.1.2675" path="/dev/ptp0" dev="devtmpfs" ino=1265 ioctlcmd=0x3d06 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  162.394345][T12555] vlan0: entered allmulticast mode
[  162.423661][T12555] veth0_vlan: entered allmulticast mode
[  162.465749][T12555] team0: Port device vlan0 added
[  162.850963][   T29] audit: type=1400 audit(2000000094.349:1208): avc:  denied  { setopt } for  pid=12563 comm="syz.3.2687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  162.870480][    C1] vkms_vblank_simulate: vblank timer overrun
[  162.954517][   T29] audit: type=1400 audit(2000000094.399:1209): avc:  denied  { write } for  pid=12563 comm="syz.3.2687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  162.978521][T12564] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-11)
[  163.067177][T12564] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-11)
[  163.197516][T12577] loop2: detected capacity change from 0 to 7
[  163.226449][T12577] Dev loop2: unable to read RDB block 7
[  163.236498][T12577]  loop2: unable to read partition table
[  163.254581][T12577] loop2: partition table beyond EOD, truncated
[  163.267659][T12577] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  163.375866][T12580] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2705'.
[  163.457294][   T25] usb 5-1: new full-speed USB device number 20 using dummy_hcd
[  163.517177][   T29] audit: type=1400 audit(2000000094.999:1210): avc:  denied  { write } for  pid=12583 comm="syz.3.2695" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  163.540391][    C1] vkms_vblank_simulate: vblank timer overrun
[  163.602367][T12586] vivid-000: disconnect
[  163.665862][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  163.681637][   T29] audit: type=1400 audit(2000000095.159:1211): avc:  denied  { create } for  pid=12587 comm="syz.5.2697" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  163.722018][   T25] usb 5-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.00
[  163.760637][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.803466][   T25] usb 5-1: config 0 descriptor??
[  163.815471][T12578] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  163.872194][T12594] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  164.024606][ T5915] IPVS: starting estimator thread 0...
[  164.054268][T12596] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  164.072252][T12602] tipc: Resetting bearer <eth:vlan0>
[  164.085196][T12602] vlan0: entered promiscuous mode
[  164.098760][T12585] vivid-000: reconnect
[  164.118169][T12602] vlan0: entered allmulticast mode
[  164.127241][T12601] IPVS: using max 57 ests per chain, 136800 per kthread
[  164.161991][T12602] veth0_vlan: entered allmulticast mode
[  164.245944][   T25] elo 0003:04E7:0009.002B: unknown main item tag 0x0
[  164.259432][   T25] elo 0003:04E7:0009.002B: item fetching failed at offset 3/7
[  164.275859][   T25] elo 0003:04E7:0009.002B: parse failed
[  164.290703][   T25] elo 0003:04E7:0009.002B: probe with driver elo failed with error -22
[  164.394537][T12602] team0: Port device vlan0 added
[  164.533244][   T25] usb 5-1: USB disconnect, device number 20
[  165.167556][   T25] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  165.338279][   T25] usb 2-1: Using ep0 maxpacket: 16
[  165.379126][   T25] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  165.430924][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  165.464571][   T25] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  165.484222][   T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.499719][   T25] usb 2-1: Product: syz
[  165.507534][   T25] usb 2-1: Manufacturer: syz
[  165.518210][   T25] usb 2-1: SerialNumber: syz
[  165.533946][   T25] usb 2-1: config 0 descriptor??
[  165.551706][   T25] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  165.573726][   T25] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  166.100149][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  166.100165][   T29] audit: type=1326 audit(2000000097.599:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12668 comm="syz.4.2734" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe9a678cd29 code=0x0
[  166.162941][   T25] em28xx 2-1:0.0: chip ID is em2800
[  166.187506][ T5915] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  166.347229][ T5915] usb 4-1: Using ep0 maxpacket: 16
[  166.359817][ T5915] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  166.402150][   T25] em28xx 2-1:0.0: Config register raw data: 0xfffffffb
[  166.412144][   T29] audit: type=1400 audit(2000000097.879:1217): avc:  denied  { read } for  pid=12671 comm="syz.5.2735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  166.444704][   T25] em28xx 2-1:0.0: AC97 chip type couldn't be determined
[  166.460642][ T5915] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  166.477972][   T25] em28xx 2-1:0.0: No AC97 audio processor
[  166.493896][ T5915] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  166.523902][   T25] usb 2-1: USB disconnect, device number 19
[  166.554469][   T25] em28xx 2-1:0.0: Disconnecting em28xx
[  166.581279][ T5915] usb 4-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice= 0.00
[  166.600842][   T25] em28xx 2-1:0.0: Freeing device
[  166.606779][T12675] loop6: detected capacity change from 0 to 64
[  166.646429][ T5915] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.674083][   T29] audit: type=1400 audit(2000000098.169:1218): avc:  denied  { map } for  pid=12674 comm="syz.2.2736" path="/dev/loop6" dev="devtmpfs" ino=653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  166.705395][    C1] blk_print_req_error: 38 callbacks suppressed
[  166.705411][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 5 prio class 0
[  166.723628][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  166.732812][    C1] buffer_io_error: 38 callbacks suppressed
[  166.732825][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  166.747526][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  166.756703][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  166.792425][ T5915] usb 4-1: config 0 descriptor??
[  166.829840][   T29] audit: type=1400 audit(2000000098.199:1219): avc:  denied  { execute } for  pid=12674 comm="syz.2.2736" path="/dev/loop6" dev="devtmpfs" ino=653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  166.876564][T12679] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2738'.
[  167.219894][ T5915] input: HID 0955:7214 Haptics as /devices/virtual/input/input24
[  167.249925][ T5915] shield 0003:0955:7214.002C: Registered Thunderstrike controller
[  167.260351][ T5915] shield 0003:0955:7214.002C: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.3-1/input0
[  167.437253][ T5916] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  167.520950][   T25] shield 0003:0955:7214.002C: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  167.534053][ T5915] usb 4-1: USB disconnect, device number 25
[  167.549047][   T25] shield 0003:0955:7214.002C: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  167.574193][   T25] shield 0003:0955:7214.002C: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  167.586513][   T25] shield 0003:0955:7214.002C: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  167.620707][ T5916] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  167.631441][ T5916] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  167.645222][ T5916] usb 5-1: config 1 has no interface number 0
[  167.651767][ T5916] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  167.664437][ T5916] usb 5-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  167.673764][ T5916] usb 5-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  167.692955][ T5916] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  167.702603][ T5916] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.712075][ T5916] usb 5-1: Product: syz
[  167.716386][ T5916] usb 5-1: Manufacturer: syz
[  167.722492][ T5916] usb 5-1: SerialNumber: syz
[  168.277972][T12705] vlan0: entered promiscuous mode
[  168.301019][T12705] vlan0: entered allmulticast mode
[  168.332399][T12705] veth0_vlan: entered allmulticast mode
[  168.340387][   T29] audit: type=1400 audit(2000000099.829:1220): avc:  denied  { mount } for  pid=12707 comm="syz.2.2749" name="/" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  168.389020][T12705] team0: Port device vlan0 added
[  168.488308][   T29] audit: type=1400 audit(2000000099.879:1221): avc:  denied  { search } for  pid=12707 comm="syz.2.2749" name="/" dev="configfs" ino=209 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  168.535915][T12712] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2751'.
[  168.590252][ T5916] cdc_ncm 5-1:1.1: bind() failure
[  168.884696][ T5916] usb 5-1: USB disconnect, device number 21
[  169.427202][   T25] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  169.757470][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.768840][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  169.778935][   T25] usb 3-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  169.788256][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.803294][   T25] usb 3-1: config 0 descriptor??
[  170.443437][ T5827] Bluetooth: hci0: command 0x0406 tx timeout
[  170.449565][ T5829] Bluetooth: hci2: command 0x0406 tx timeout
[  170.975832][   T25] cm6533_jd 0003:0D8C:0022.002D: unknown main item tag 0x0
[  170.999267][   T25] cm6533_jd 0003:0D8C:0022.002D: unknown main item tag 0x0
[  171.032424][   T25] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0D8C:0022.002D/input/input25
[  171.089327][   T25] cm6533_jd 0003:0D8C:0022.002D: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.2-1/input0
[  171.148715][   T29] audit: type=1400 audit(2000000102.639:1222): avc:  denied  { read } for  pid=12743 comm="syz.4.2767" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  171.191278][   T25] usb 3-1: USB disconnect, device number 25
[  171.224621][   T29] audit: type=1400 audit(2000000102.709:1223): avc:  denied  { append } for  pid=12747 comm="syz.1.2768" name="rtc0" dev="devtmpfs" ino=921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  171.411197][   T29] audit: type=1400 audit(2000000102.909:1224): avc:  denied  { remount } for  pid=12752 comm="syz.3.2769" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  171.752773][   T29] audit: type=1400 audit(2000000103.249:1225): avc:  denied  { write } for  pid=12759 comm="syz.5.2772" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  171.775584][    C1] vkms_vblank_simulate: vblank timer overrun
[  172.306452][   T29] audit: type=1400 audit(2000000103.799:1226): avc:  denied  { write } for  pid=12774 comm="syz.4.2779" name="binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  172.361475][ T5873] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  172.508819][T12783] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2782'.
[  172.553404][ T5873] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  172.583787][ T5873] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  172.613365][T12783] bridge_slave_1: left allmulticast mode
[  172.628463][ T5873] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  172.649284][ T5873] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  172.657896][T12783] bridge_slave_1: left promiscuous mode
[  172.673258][ T5873] usb 3-1: SerialNumber: syz
[  172.685350][T12783] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.790058][T12783] bridge_slave_0: left allmulticast mode
[  172.811136][T12783] bridge_slave_0: left promiscuous mode
[  172.910012][ T5872] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  176.117128][    C1] sched: DL replenish lagged too much
[  180.757927][T12783] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.417544][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  194.470340][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  214.300640][ T5873] usb 3-1: 0:2 : does not exist
[  248.145752][ T5830] Bluetooth: hci1: command 0x0405 tx timeout
[  255.559034][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  255.631199][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  273.526055][    C1] syz.5.2782: page allocation failure: order:0, mode:0x40820(GFP_ATOMIC|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1
[  273.526185][    C0] SLUB: Unable to allocate memory on CPU 0 (of node 0) on node -1, gfp=0x820(GFP_ATOMIC)
[  273.539272][    C1] CPU: 1 UID: 0 PID: 12783 Comm: syz.5.2782 Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  273.539291][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  273.539300][    C1] Call Trace:
[  273.539305][    C1]  <IRQ>
[  273.539311][    C1]  dump_stack_lvl+0x16c/0x1f0
[  273.539334][    C1]  warn_alloc+0x24d/0x3a0
[  273.539356][    C1]  ? __pfx_warn_alloc+0x10/0x10
[  273.539377][    C1]  ? wakeup_kswapd+0x169/0x640
[  273.539395][    C1]  ? __pfx_get_page_from_freelist+0x10/0x10
[  273.539416][    C1]  ? wake_all_kswapds+0x182/0x2e0
[  273.539435][    C1]  __alloc_pages_noprof+0xf2f/0x2470
[  273.539456][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.539471][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.539485][    C1]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  273.539505][    C1]  ? __pfx_lock_release+0x10/0x10
[  273.539523][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  273.539539][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.539553][    C1]  ? __pfx_lock_release+0x10/0x10
[  273.539570][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  273.539584][    C1]  ? get_stack_info+0x30/0xb0
[  273.539600][    C1]  ? is_bpf_text_address+0x30/0x1a0
[  273.539626][    C1]  ? lock_acquire+0x2f/0xb0
[  273.539643][    C1]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  273.539665][    C1]  ? policy_nodemask+0xea/0x4e0
[  273.539688][    C1]  alloc_pages_mpol_noprof+0x2c8/0x620
[  273.539706][    C1]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  273.539720][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.539733][    C1]  ? lock_release+0x4e2/0x6f0
[  273.539752][    C1]  ? __pfx_lock_release+0x10/0x10
[  273.539769][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  273.539785][    C1]  new_slab+0x2e7/0x410
[  273.539801][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.539815][    C1]  ___slab_alloc+0xc5d/0x1720
[  273.539832][    C1]  ? skb_free_head+0x18a/0x1d0
[  273.539849][    C1]  ? skb_release_data+0x560/0x730
[  273.539869][    C1]  ? __alloc_skb+0x2b1/0x380
[  273.539887][    C1]  ? __kasan_slab_free+0x51/0x70
[  273.539906][    C1]  ? kmem_cache_free+0x152/0x4c0
[  273.539925][    C1]  ? kfree_skbmem+0x1a4/0x1f0
[  273.539940][    C1]  ? consume_skb+0xcc/0x100
[  273.539959][    C1]  ? can_receive+0x361/0x5c0
[  273.539979][    C1]  ? can_rcv+0x1e2/0x280
[  273.539997][    C1]  ? __netif_receive_skb_one_core+0x1b1/0x1e0
[  273.540014][    C1]  ? __netif_receive_skb+0x1d/0x160
[  273.540030][    C1]  ? process_backlog+0x443/0x15f0
[  273.540047][    C1]  ? __alloc_skb+0x2b1/0x380
[  273.540064][    C1]  ? __slab_alloc.constprop.0+0x56/0xb0
[  273.540082][    C1]  __slab_alloc.constprop.0+0x56/0xb0
[  273.540101][    C1]  kmem_cache_alloc_node_noprof+0xfc/0x3c0
[  273.540121][    C1]  ? do_syscall_64+0xcd/0x250
[  273.540138][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.540158][    C1]  ? __alloc_skb+0x2b1/0x380
[  273.540177][    C1]  __alloc_skb+0x2b1/0x380
[  273.540195][    C1]  ? __pfx___alloc_skb+0x10/0x10
[  273.540217][    C1]  skb_copy+0x1c9/0x3a0
[  273.540235][    C1]  can_can_gw_rcv+0x384/0xac0
[  273.540252][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  273.540267][    C1]  ? __pfx_can_can_gw_rcv+0x10/0x10
[  273.540284][    C1]  can_rcv_filter+0x15e/0x900
[  273.540305][    C1]  can_receive+0x320/0x5c0
[  273.540326][    C1]  ? __pfx_can_rcv+0x10/0x10
[  273.540345][    C1]  can_rcv+0x1e2/0x280
[  273.540364][    C1]  __netif_receive_skb_one_core+0x1b1/0x1e0
[  273.540382][    C1]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  273.540400][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.540414][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  273.540433][    C1]  ? process_backlog+0x3f1/0x15f0
[  273.540450][    C1]  ? process_backlog+0x3f1/0x15f0
[  273.540466][    C1]  __netif_receive_skb+0x1d/0x160
[  273.540482][    C1]  process_backlog+0x443/0x15f0
[  273.540501][    C1]  __napi_poll.constprop.0+0xb7/0x550
[  273.540519][    C1]  net_rx_action+0xa94/0x1010
[  273.540537][    C1]  ? lock_release+0x4e2/0x6f0
[  273.540556][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  273.540574][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.540589][    C1]  ? tmigr_handle_remote+0x133/0x380
[  273.540618][    C1]  ? run_timer_base+0x121/0x190
[  273.540637][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.540651][    C1]  handle_softirqs+0x213/0x8f0
[  273.540672][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  273.540692][    C1]  ? addrconf_ifdown.isra.0+0x59d/0x1af0
[  273.540708][    C1]  do_softirq+0xb2/0xf0
[  273.540726][    C1]  </IRQ>
[  273.540731][    C1]  <TASK>
[  273.540736][    C1]  __local_bh_enable_ip+0x100/0x120
[  273.540755][    C1]  addrconf_ifdown.isra.0+0x59d/0x1af0
[  273.540774][    C1]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  273.540794][    C1]  addrconf_notify+0x220/0x19c0
[  273.540811][    C1]  ? ip6mr_device_event+0x1bc/0x230
[  273.540831][    C1]  notifier_call_chain+0xb7/0x410
[  273.540853][    C1]  ? __pfx_addrconf_notify+0x10/0x10
[  273.540872][    C1]  call_netdevice_notifiers_info+0xbe/0x140
[  273.540895][    C1]  dev_close_many+0x333/0x6a0
[  273.540918][    C1]  ? __pfx_dev_close_many+0x10/0x10
[  273.540942][    C1]  unregister_netdevice_many_notify+0x48a/0x21a0
[  273.540965][    C1]  ? trace_irq_enable.constprop.0+0xea/0x140
[  273.540987][    C1]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  273.541011][    C1]  ? mutex_is_locked+0x17/0x60
[  273.541030][    C1]  ? unregister_netdevice_queue+0x22f/0x3f0
[  273.541051][    C1]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  273.541071][    C1]  ? sysfs_remove_group+0xc6/0x180
[  273.541089][    C1]  ? br_dev_delete+0x116/0x1a0
[  273.541110][    C1]  rtnl_dellink+0x3d7/0xaa0
[  273.541126][    C1]  ? __pfx_br_dev_delete+0x10/0x10
[  273.541145][    C1]  ? kasan_save_stack+0x42/0x60
[  273.541163][    C1]  ? kasan_save_stack+0x33/0x60
[  273.541181][    C1]  ? kasan_save_track+0x14/0x30
[  273.541199][    C1]  ? kasan_save_free_info+0x3b/0x60
[  273.541215][    C1]  ? __pfx_rtnl_dellink+0x10/0x10
[  273.541232][    C1]  ? consume_skb+0xcc/0x100
[  273.541252][    C1]  ? __dev_queue_xmit+0x7f0/0x43e0
[  273.541267][    C1]  ? netlink_deliver_tap+0xa87/0xd30
[  273.541302][    C1]  ? cred_has_capability.isra.0+0x192/0x2f0
[  273.541325][    C1]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  273.541347][    C1]  ? lock_release+0x4e2/0x6f0
[  273.541364][    C1]  ? __dev_queue_xmit+0x89b/0x43e0
[  273.541381][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.541394][    C1]  ? lock_release+0x4e2/0x6f0
[  273.541411][    C1]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  273.541429][    C1]  ? __pfx_lock_release+0x10/0x10
[  273.541446][    C1]  ? trace_lock_acquire+0x14e/0x1f0
[  273.541461][    C1]  ? bpf_lsm_capable+0x9/0x10
[  273.541475][    C1]  ? security_capable+0x7e/0x260
[  273.541493][    C1]  ? rtnetlink_rcv_msg+0x205/0xea0
[  273.541511][    C1]  ? lock_acquire+0x2f/0xb0
[  273.541528][    C1]  ? rtnetlink_rcv_msg+0x205/0xea0
[  273.541546][    C1]  ? __pfx_rtnl_dellink+0x10/0x10
[  273.541564][    C1]  rtnetlink_rcv_msg+0x95b/0xea0
[  273.541583][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  273.541607][    C1]  netlink_rcv_skb+0x16b/0x440
[  273.541630][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  273.541650][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  273.541666][    C1]  ? lock_release+0x4e2/0x6f0
[  273.541690][    C1]  ? netlink_deliver_tap+0x1ae/0xd30
[  273.541709][    C1]  netlink_unicast+0x53c/0x7f0
[  273.541728][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  273.541748][    C1]  netlink_sendmsg+0x8b8/0xd70
[  273.541768][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  273.541790][    C1]  sock_write_iter+0x4fe/0x5b0
[  273.541805][    C1]  ? __pfx_sock_write_iter+0x10/0x10
[  273.541823][    C1]  ? bpf_lsm_file_permission+0x9/0x10
[  273.541844][    C1]  ? security_file_permission+0x71/0x210
[  273.541869][    C1]  vfs_write+0x5ae/0x1150
[  273.541887][    C1]  ? __pfx_sock_write_iter+0x10/0x10
[  273.541902][    C1]  ? __pfx_vfs_write+0x10/0x10
[  273.541918][    C1]  ? do_futex+0x123/0x350
[  273.541934][    C1]  ? __fget_files+0x40/0x3a0
[  273.541958][    C1]  ksys_write+0x207/0x250
[  273.541974][    C1]  ? __pfx_ksys_write+0x10/0x10
[  273.541991][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.542004][    C1]  ? rcu_is_watching+0x12/0xc0
[  273.542019][    C1]  do_syscall_64+0xcd/0x250
[  273.542037][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.542056][    C1] RIP: 0033:0x7feef538cd29
[  273.542069][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.542083][    C1] RSP: 002b:00007feef6234038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  273.542098][    C1] RAX: ffffffffffffffda RBX: 00007feef55a5fa0 RCX: 00007feef538cd29
[  273.542108][    C1] RDX: 0000000000000024 RSI: 0000000020000000 RDI: 0000000000000005
[  273.542117][    C1] RBP: 00007feef540e2a0 R08: 0000000000000000 R09: 0000000000000000
[  273.542127][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  273.542136][    C1] R13: 0000000000000000 R14: 00007feef55a5fa0 R15: 00007ffc0d7738a8
[  273.542149][    C1]  </TASK>
[  273.542155][    C1] Mem-Info:
[  273.549037][    C0]   cache: skbuff_head_cache, object size: 240, buffer size: 320, default order: 0, min order: 0
[  273.559432][    C1] active_anon:13299 inactive_anon:4 isolated_anon:0
[  273.559432][    C1]  active_file:6008 inactive_file:47889 isolated_file:0
[  273.559432][    C1]  unevictable:753 dirty:3 writeback:0
[  273.559432][    C1]  slab_reclaimable:11372 slab_unreclaimable:1399793
[  273.559432][    C1]  mapped:24689 shmem:8380 pagetables:921
[  273.559432][    C1]  sec_pagetables:0 bounce:0
[  273.559432][    C1]  kernel_misc_reclaimable:0
[  273.559432][    C1]  free:10626 free_pcp:4729 free_cma:0
[  273.569486][    C0]   node 0: slabs: 172474, objs: 2069688, free: 0
[  273.572752][    C1] Node 0 active_anon:53164kB inactive_anon:16kB active_file:24032kB inactive_file:191160kB unevictable:1508kB isolated(anon):0kB isolated(file):0kB mapped:98756kB dirty:12kB writeback:0kB shmem:31984kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12816kB pagetables:3676kB sec_pagetables:0kB all_unreclaimable? no
[  273.575580][    C0]   node 1: slabs: 447197, objs: 5366364, free: 38
[  273.580238][    C1] Node 1 active_anon:32kB inactive_anon:0kB active_file:0kB inactive_file:396kB unevictable:1504kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:8kB sec_pagetables:0kB all_unreclaimable? no
[  274.530597][    C1] Node 0 DMA free:9912kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:152kB local_pcp:28kB free_cma:0kB
[  274.557823][    C1] lowmem_reserve[]: 0 2487 2487 0 0
[  274.563060][    C1] Node 0 DMA32 free:182600kB boost:74788kB min:108940kB low:117476kB high:126012kB reserved_highatomic:0KB active_anon:36664kB inactive_anon:16kB active_file:24032kB inactive_file:190868kB unevictable:1508kB writepending:12kB present:3129332kB managed:2547052kB mlocked:0kB bounce:0kB free_pcp:10996kB local_pcp:8284kB free_cma:0kB
[  274.594043][    C1] lowmem_reserve[]: 0 0 0 0 0
[  274.598781][    C1] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:92kB unevictable:0kB writepending:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  274.625410][    C1] lowmem_reserve[]: 0 0 0 0 0
[  274.630146][    C1] Node 1 Normal free:460960kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:2048KB active_anon:16kB inactive_anon:16kB active_file:16kB inactive_file:84kB unevictable:1504kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:1976kB local_pcp:1776kB free_cma:0kB
[  274.659815][    C1] lowmem_reserve[]: 0 0 0 0 0
[  274.664529][    C1] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 1*32kB (U) 0*64kB 1*128kB (U) 0*256kB 1*512kB (U) 1*1024kB (U) 2*2048kB (UM) 1*4096kB (M) = 9912kB
[  274.678980][    C1] Node 0 DMA32: 3796*4kB (UME) 1624*8kB (UM) 1450*16kB (UM) 1423*32kB (UM) 294*64kB (UM) 115*128kB (UM) 75*256kB (UM) 48*512kB (UM) 21*1024kB (UM) 5*2048kB (UM) 0*4096kB = 205968kB
[  274.696982][    C1] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  274.708497][    C1] Node 1 Normal: 174*4kB (UME) 181*8kB (UME) 301*16kB (UME) 316*32kB (UMEH) 291*64kB (UMEH) 266*128kB (UME) 228*256kB (UM) 182*512kB (UM) 125*1024kB (UME) 52*2048kB (UME) 10*4096kB (UM) = 496752kB
[  274.727890][    C1] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  274.737469][    C1] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  274.746767][    C1] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  274.756349][    C1] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  274.765662][    C1] 57562 total pagecache pages
[  274.770353][    C1] 1 pages in swap cache
[  274.774493][    C1] Free swap  = 124428kB
[  274.778655][    C1] Total swap = 124996kB
[  274.782801][    C1] 2097051 pages RAM
[  274.786598][    C1] 0 pages HighMem/MovableOnly
[  274.791282][    C1] 428630 pages reserved
[  274.795421][    C1] 0 pages cma reserved
[  274.799498][    C1] SLUB: Unable to allocate memory on CPU 1 (of node 0) on node -1, gfp=0x820(GFP_ATOMIC)
[  274.809310][    C1]   cache: skbuff_head_cache, object size: 240, buffer size: 320, default order: 0, min order: 0
[  274.819934][    C1]   node 0: slabs: 150909, objs: 1810908, free: 7618
[  274.826623][    C1]   node 1: slabs: 387024, objs: 4644288, free: 1771
[  277.267306][ T5873] usb 3-1: USB disconnect, device number 26
[  277.483811][ T6038] udevd[6038]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  278.077280][ T5830] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  278.084463][ T5830] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  278.092362][ T5830] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  278.099737][ T5830] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  278.107520][ T5830] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  278.114627][ T5830] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  278.137856][   T29] audit: type=1400 audit(2000000209.629:1227): avc:  denied  { mounton } for  pid=12807 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  278.172543][ T5829] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  278.179652][ T5829] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  278.186731][ T5832] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  278.193845][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  278.201304][ T5832] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  278.208379][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  278.215600][ T5832] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  278.222766][ T5832] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  278.225396][ T5840] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  278.230337][ T5832] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  278.244342][ T5832] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  278.251478][ T5832] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  278.257136][ T5840] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  278.258595][ T5832] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  278.266336][T12817] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  278.277243][ T5144] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  278.280230][ T5840] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  278.286598][ T5144] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  278.295464][T12817] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  278.308451][ T5144] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  278.309300][T12817] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  278.325835][T12817] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  278.333095][ T5830] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  278.349662][ T5830] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  278.605840][ T9272] bond0: (slave syz_tun): Releasing backup interface
[  278.620749][ T9158] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.720487][ T9158] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.821816][T12807] chnl_net:caif_netlink_parms(): no params data found
[  278.842087][ T9158] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.953260][T12814] chnl_net:caif_netlink_parms(): no params data found
[  278.972946][T12807] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.980967][T12807] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.989447][T12807] bridge_slave_0: entered allmulticast mode
[  278.995897][T12807] bridge_slave_0: entered promiscuous mode
[  279.020387][ T9158] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.052557][T12807] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.068423][T12807] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.075540][T12807] bridge_slave_1: entered allmulticast mode
[  279.083423][T12807] bridge_slave_1: entered promiscuous mode
[  279.149163][T12807] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  279.164877][T12811] chnl_net:caif_netlink_parms(): no params data found
[  279.179901][T12814] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.186987][T12814] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.194181][T12814] bridge_slave_0: entered allmulticast mode
[  279.200421][T12814] bridge_slave_0: entered promiscuous mode
[  279.207841][T12807] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  279.227608][T12814] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.234669][T12814] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.242099][T12814] bridge_slave_1: entered allmulticast mode
[  279.248404][T12814] bridge_slave_1: entered promiscuous mode
[  279.277536][T12807] team0: Port device team_slave_0 added
[  279.305751][T12814] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  279.315460][T12807] team0: Port device team_slave_1 added
[  279.355481][T12814] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  279.367446][ T9158] bridge_slave_1: left promiscuous mode
[  279.374648][ T9158] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.382697][ T9158] bridge_slave_0: left allmulticast mode
[  279.388700][ T9158] bridge_slave_0: left promiscuous mode
[  279.394302][ T9158] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.415159][T12811] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.422852][T12811] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.430133][T12811] bridge_slave_0: entered allmulticast mode
[  279.436369][T12811] bridge_slave_0: entered promiscuous mode
[  279.444660][T12811] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.452116][T12811] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.459256][T12811] bridge_slave_1: entered allmulticast mode
[  279.465508][T12811] bridge_slave_1: entered promiscuous mode
[  279.481501][T12811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  279.543161][ T9158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  279.552665][ T9158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  279.561801][ T9158] bond0 (unregistering): Released all slaves
[  279.569778][T12807] batman_adv: batadv0: Adding interface: batadv_slave_0
[  279.576717][T12807] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.603721][T12807] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  279.615247][T12807] batman_adv: batadv0: Adding interface: batadv_slave_1
[  279.622275][T12807] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.648564][T12807] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  279.662143][T12809] chnl_net:caif_netlink_parms(): no params data found
[  279.682060][T12811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  279.716684][T12807] hsr_slave_0: entered promiscuous mode
[  279.722760][T12807] hsr_slave_1: entered promiscuous mode
[  279.729149][T12807] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  279.736707][T12807] Cannot create hsr debugfs directory
[  279.749663][T12814] team0: Port device team_slave_0 added
[  279.755968][T12811] team0: Port device team_slave_0 added
[  279.777955][T12814] team0: Port device team_slave_1 added
[  279.787845][T12811] team0: Port device team_slave_1 added
[  279.799038][T12812] chnl_net:caif_netlink_parms(): no params data found
[  279.808234][ T9158] team0: Port device wlan1 removed
[  279.840184][T12814] batman_adv: batadv0: Adding interface: batadv_slave_0
[  279.847773][T12814] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.873864][T12814] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  279.885364][T12814] batman_adv: batadv0: Adding interface: batadv_slave_1
[  279.892627][T12814] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.918667][T12814] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  279.932089][T12811] batman_adv: batadv0: Adding interface: batadv_slave_0
[  279.939112][T12811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.965709][T12811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  279.980211][T12809] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.987382][T12809] bridge0: port 1(bridge_slave_0) entered disabled state
[  279.994461][T12809] bridge_slave_0: entered allmulticast mode
[  280.001121][T12809] bridge_slave_0: entered promiscuous mode
[  280.008050][T12809] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.015079][T12809] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.022312][T12809] bridge_slave_1: entered allmulticast mode
[  280.028851][T12809] bridge_slave_1: entered promiscuous mode
[  280.042688][T12811] batman_adv: batadv0: Adding interface: batadv_slave_1
[  280.049806][T12811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.076126][T12811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.108209][T12809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  280.131913][T12809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  280.153618][T12814] hsr_slave_0: entered promiscuous mode
[  280.160125][T12814] hsr_slave_1: entered promiscuous mode
[  280.165974][T12814] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  280.173886][T12814] Cannot create hsr debugfs directory
[  280.195090][T12812] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.202347][T12812] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.207232][T12817] Bluetooth: hci2: command tx timeout
[  280.212160][T12812] bridge_slave_0: entered allmulticast mode
[  280.221339][T12812] bridge_slave_0: entered promiscuous mode
[  280.236401][T12809] team0: Port device team_slave_0 added
[  280.249760][T12812] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.256859][T12812] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.264263][T12812] bridge_slave_1: entered allmulticast mode
[  280.270665][T12812] bridge_slave_1: entered promiscuous mode
[  280.277646][T12817] Bluetooth: hci5: command tx timeout
[  280.315283][ T9158] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  280.322828][ T9158] batman_adv: batadv0: Removing interface: batadv_slave_0
[  280.330365][ T9158] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  280.339630][ T9158] batman_adv: batadv0: Removing interface: batadv_slave_1
[  280.349238][ T9158] veth1_macvtap: left promiscuous mode
[  280.354738][ T9158] veth0_macvtap: left promiscuous mode
[  280.357168][T12817] Bluetooth: hci3: command tx timeout
[  280.362402][ T9158] veth1_vlan: left promiscuous mode
[  280.370857][ T9158] veth0_vlan: left promiscuous mode
[  280.393389][T12809] team0: Port device team_slave_1 added
[  280.404621][T12811] hsr_slave_0: entered promiscuous mode
[  280.410725][T12811] hsr_slave_1: entered promiscuous mode
[  280.416436][T12811] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  280.424213][T12811] Cannot create hsr debugfs directory
[  280.434945][T12812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  280.444033][T12817] Bluetooth: hci6: command tx timeout
[  280.444057][T12817] Bluetooth: hci7: command tx timeout
[  280.457959][T12812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  280.501111][ T9158] team0 (unregistering): Port device team_slave_1 removed
[  280.515700][ T9158] team0 (unregistering): Port device team_slave_0 removed
[  280.585360][T12809] batman_adv: batadv0: Adding interface: batadv_slave_0
[  280.593662][T12809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.620199][T12809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  280.648319][T12809] batman_adv: batadv0: Adding interface: batadv_slave_1
[  280.655284][T12809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.681685][T12809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.703967][T12812] team0: Port device team_slave_0 added
[  280.725095][T12812] team0: Port device team_slave_1 added
[  280.761741][T12812] batman_adv: batadv0: Adding interface: batadv_slave_0
[  280.769079][T12812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.795292][T12812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  280.807337][T12812] batman_adv: batadv0: Adding interface: batadv_slave_1
[  280.814269][T12812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.840494][T12812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.854886][T12807] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  280.864472][T12807] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  280.875271][T12807] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  280.884870][T12807] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  280.894662][T12809] hsr_slave_0: entered promiscuous mode
[  280.900715][T12809] hsr_slave_1: entered promiscuous mode
[  280.906478][T12809] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  280.914137][T12809] Cannot create hsr debugfs directory
[  280.946708][T12812] hsr_slave_0: entered promiscuous mode
[  280.954504][T12812] hsr_slave_1: entered promiscuous mode
[  280.960572][T12812] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  280.968456][T12812] Cannot create hsr debugfs directory
[  281.143891][T12807] 8021q: adding VLAN 0 to HW filter on device bond0
[  281.161451][T12807] 8021q: adding VLAN 0 to HW filter on device team0
[  281.173315][ T4510] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.180422][ T4510] bridge0: port 1(bridge_slave_0) entered forwarding state
[  281.191622][ T4510] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.198722][ T4510] bridge0: port 2(bridge_slave_1) entered forwarding state
[  281.336660][T12814] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  281.349140][T12814] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  281.368518][T12811] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  281.380805][T12807] 8021q: adding VLAN 0 to HW filter on device batadv0
[  281.392737][T12814] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  281.413473][T12811] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  281.429529][T12814] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  281.444378][T12811] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  281.454116][T12811] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  281.507990][T12809] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  281.518463][T12809] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  281.540500][T12809] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  281.550212][T12809] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  281.633696][T12812] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  281.644341][T12807] veth0_vlan: entered promiscuous mode
[  281.667700][T12812] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  281.679089][T12807] veth1_vlan: entered promiscuous mode
[  281.690653][T12814] 8021q: adding VLAN 0 to HW filter on device bond0
[  281.698743][T12812] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  281.712984][ T9158] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.728597][T12812] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  281.740930][T12811] 8021q: adding VLAN 0 to HW filter on device bond0
[  281.752953][T12814] 8021q: adding VLAN 0 to HW filter on device team0
[  281.774746][T12811] 8021q: adding VLAN 0 to HW filter on device team0
[  281.788101][T12807] veth0_macvtap: entered promiscuous mode
[  281.795550][T12807] veth1_macvtap: entered promiscuous mode
[  281.809133][ T4510] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.816182][ T4510] bridge0: port 1(bridge_slave_0) entered forwarding state
[  281.828604][ T4510] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.835677][ T4510] bridge0: port 2(bridge_slave_1) entered forwarding state
[  281.846792][ T9158] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.868274][ T4510] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.875340][ T4510] bridge0: port 1(bridge_slave_0) entered forwarding state
[  281.884464][ T4510] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.891523][ T4510] bridge0: port 2(bridge_slave_1) entered forwarding state
[  281.924562][T12814] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  281.935138][T12814] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  281.958573][ T9158] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  281.974822][T12807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  281.989313][T12807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  281.999512][T12807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  282.010378][T12807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  282.020309][T12807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  282.030822][T12807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  282.041980][T12807] batman_adv: batadv0: Interface activated: batadv_slave_0
[  282.062966][T12807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  282.088219][T12807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  282.098427][T12807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  282.109478][T12807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  282.119572][T12807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  282.130541][T12807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  282.140902][T12807] batman_adv: batadv0: Interface activated: batadv_slave_1
[  282.149817][ T9158] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.162723][T12809] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.176195][T12807] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  282.185376][T12807] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  282.194331][T12807] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  282.204266][T12807] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  282.253215][T12809] 8021q: adding VLAN 0 to HW filter on device team0
[  282.270190][T12814] 8021q: adding VLAN 0 to HW filter on device batadv0
[  282.277797][ T5827] Bluetooth: hci2: command tx timeout
[  282.285974][T12811] 8021q: adding VLAN 0 to HW filter on device batadv0
[  282.322493][ T3472] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.329622][ T3472] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.349524][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.356601][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.368257][ T5827] Bluetooth: hci5: command tx timeout
[  282.413136][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  282.438967][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  282.439690][ T5827] Bluetooth: hci3: command tx timeout
[  282.478655][ T9158] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.496536][T12814] veth0_vlan: entered promiscuous mode
[  282.517238][ T5827] Bluetooth: hci7: command tx timeout
[  282.519417][ T9146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  282.522636][ T5827] Bluetooth: hci6: command tx timeout
[  282.542427][T12809] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  282.553418][T12809] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  282.554320][ T9146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  282.584274][T12812] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.593724][T12814] veth1_vlan: entered promiscuous mode
[  282.607300][ T9158] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.617476][   T29] audit: type=1400 audit(2000000214.099:1228): avc:  denied  { mounton } for  pid=12807 comm="syz-executor" path="/root/syzkaller.6C9Bmf/syz-tmp" dev="sda1" ino=1956 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  282.674341][   T29] audit: type=1400 audit(2000000214.149:1229): avc:  denied  { mount } for  pid=12807 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  282.705497][   T29] audit: type=1400 audit(2000000214.149:1230): avc:  denied  { mounton } for  pid=12807 comm="syz-executor" path="/root/syzkaller.6C9Bmf/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  282.708472][T12812] 8021q: adding VLAN 0 to HW filter on device team0
[  282.741316][   T29] audit: type=1400 audit(2000000214.149:1231): avc:  denied  { mounton } for  pid=12807 comm="syz-executor" path="/root/syzkaller.6C9Bmf/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=39535 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  282.775232][T12814] veth0_macvtap: entered promiscuous mode
[  282.801689][ T9158] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.816306][   T29] audit: type=1400 audit(2000000214.169:1232): avc:  denied  { mounton } for  pid=12807 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2724 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  282.841016][   T29] audit: type=1400 audit(2000000214.169:1233): avc:  denied  { mount } for  pid=12807 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  282.865637][T12811] veth0_vlan: entered promiscuous mode
[  282.875017][T12814] veth1_macvtap: entered promiscuous mode
[  282.889643][T12809] 8021q: adding VLAN 0 to HW filter on device batadv0
[  282.900803][ T9107] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.907888][ T9107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.939028][   T29] audit: type=1400 audit(2000000214.169:1234): avc:  denied  { mounton } for  pid=12807 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  282.946835][ T9107] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.970110][ T9107] bridge0: port 2(bridge_slave_1) entered forwarding state
[  283.003523][T12811] veth1_vlan: entered promiscuous mode
[  283.053945][T12814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.064581][T12814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.098769][T12814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.124545][T12814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.143595][T12814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.157177][T12814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.166990][T12814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.180166][T12814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.191039][T12814] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.216699][ T9158] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.250889][T12814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.265765][T12814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.276200][T12814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.286998][T12814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.296903][T12814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.307620][T12814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.317929][T12814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.329056][T12814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.339648][T12814] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.349534][T12814] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.358294][T12814] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.366965][T12814] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.375897][T12814] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.436996][ T9158] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.454771][T12811] veth0_macvtap: entered promiscuous mode
[  283.478109][ T5835] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  283.499531][T12811] veth1_macvtap: entered promiscuous mode
[  283.521454][ T9158] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.545407][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.557700][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.571060][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.582210][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.592301][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.602908][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.613232][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.623888][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.633911][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.646201][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.656739][ T5835] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  283.669467][ T5835] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  283.679488][ T5835] usb 8-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  283.690483][ T5835] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  283.699390][T12811] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.706677][ T5835] usb 8-1: SerialNumber: syz
[  283.714431][T12809] veth0_vlan: entered promiscuous mode
[  283.741634][ T9158] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.763525][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.774038][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.784151][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.794824][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.805479][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.817935][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.829883][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.841205][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.851152][T12811] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.861882][T12811] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.872580][T12811] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.891608][T12812] 8021q: adding VLAN 0 to HW filter on device batadv0
[  283.900411][T12811] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.915143][T12811] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.924366][T12811] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.935534][ T5835] usb 8-1: 0:2 : does not exist
[  283.944382][T12811] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.951293][ T5835] usb 8-1: USB disconnect, device number 2
[  283.963360][T12809] veth1_vlan: entered promiscuous mode
[  283.991335][ T9107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  284.018398][ T9107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.031291][T12809] veth0_macvtap: entered promiscuous mode
[  284.042685][ T9158] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.069741][T12809] veth1_macvtap: entered promiscuous mode
[  284.108713][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.124093][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.140055][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.151385][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.163476][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.173974][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.184124][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.194554][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.205068][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.215502][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.225372][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  284.235902][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.246539][T12809] batman_adv: batadv0: Interface activated: batadv_slave_0
[  284.257300][ T3472] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  284.280861][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.291510][ T3472] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.294969][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.309930][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.320528][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.330876][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.341434][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.351950][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.363044][ T5827] Bluetooth: hci2: command tx timeout
[  284.365054][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.378564][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.389196][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.399101][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  284.409577][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  284.420180][T12809] batman_adv: batadv0: Interface activated: batadv_slave_1
[  284.435733][T12812] veth0_vlan: entered promiscuous mode
[  284.448259][ T5827] Bluetooth: hci5: command tx timeout
[  284.470704][T12809] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  284.480137][T12809] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  284.489754][T12809] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  284.498529][T12809] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  284.517376][ T5827] Bluetooth: hci3: command tx timeout
[  284.519702][ T9107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  284.534272][ T9107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.551225][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  284.566201][T12812] veth1_vlan: entered promiscuous mode
[  284.580435][ T9158] bridge_slave_1: left allmulticast mode
[  284.586741][ T9158] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.596532][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.608101][T12817] Bluetooth: hci7: command tx timeout
[  284.613537][ T5827] Bluetooth: hci6: command tx timeout
[  284.630001][ T9158] bridge_slave_0: left allmulticast mode
[  284.635742][ T9158] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.659380][ T9158] bridge_slave_1: left allmulticast mode
[  284.673449][ T9158] bridge_slave_1: left promiscuous mode
[  284.684398][ T9158] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.707353][ T9158] bridge_slave_0: left allmulticast mode
[  284.713021][ T9158] bridge_slave_0: left promiscuous mode
[  284.725271][ T9158] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.736537][ T9158] bridge_slave_1: left allmulticast mode
[  284.745253][ T9158] bridge_slave_1: left promiscuous mode
[  284.751775][ T9158] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.767763][ T9158] bridge_slave_0: left allmulticast mode
[  284.773723][ T9158] bridge_slave_0: left promiscuous mode
[  284.787394][ T9158] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.877823][T13045] tipc: Started in network mode
[  284.883134][T13045] tipc: Node identity 7, cluster identity 4711
[  284.898671][T13045] tipc: Node number set to 7
[  284.903475][T13045] tipc: Cannot configure node identity twice
[  285.026798][ T9158] erspan0 (unregistering): left allmulticast mode
[  285.136910][   T29] audit: type=1400 audit(2000000216.629:1235): avc:  denied  { bind } for  pid=13071 comm="syz.8.2807" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  285.444292][ T9158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  285.468366][ T9158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  285.498084][ T9158] bond0 (unregistering): Released all slaves
[  285.515703][ T9158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  285.535573][ T9158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  285.555459][ T9158] bond0 (unregistering): Released all slaves
[  285.600626][T13076] netlink: 132 bytes leftover after parsing attributes in process `syz.7.2808'.
[  285.649316][ T9158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  285.683789][ T9158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  285.701383][ T9158] bond0 (unregistering): Released all slaves
[  285.739685][T12812] veth0_macvtap: entered promiscuous mode
[  285.801637][T12812] veth1_macvtap: entered promiscuous mode
[  285.854405][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.876559][   T29] audit: type=1400 audit(2000000217.369:1236): avc:  denied  { connect } for  pid=13109 comm="syz.7.2819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  285.898778][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.908966][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.919600][   T29] audit: type=1400 audit(2000000217.369:1237): avc:  denied  { write } for  pid=13109 comm="syz.7.2819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  285.939299][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.949340][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.960003][   T29] audit: type=1400 audit(2000000217.399:1238): avc:  denied  { getopt } for  pid=13109 comm="syz.7.2819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  285.967129][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.011933][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  286.034359][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.056275][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  286.084404][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.096941][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  286.111767][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.130393][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  286.141349][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.154033][T12812] batman_adv: batadv0: Interface activated: batadv_slave_0
[  286.196853][ T9146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  286.222446][ T9146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  286.255223][ T9158] tipc: Disabling bearer <eth:vlan0>
[  286.301986][ T9158] tipc: Left network mode
[  286.320425][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.349113][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.367183][   T29] audit: type=1400 audit(2000000217.859:1239): avc:  denied  { mount } for  pid=13136 comm="syz.0.2822" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  286.407662][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.438405][ T5827] Bluetooth: hci2: command tx timeout
[  286.448602][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.478821][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.507252][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.517443][ T5827] Bluetooth: hci5: command tx timeout
[  286.549386][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.577116][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.607239][ T5827] Bluetooth: hci3: command tx timeout
[  286.613305][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.634239][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.646064][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.656854][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.677300][ T5827] Bluetooth: hci6: command tx timeout
[  286.682750][T12817] Bluetooth: hci7: command tx timeout
[  286.688248][T12812] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.700316][T12812] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.714553][T12812] batman_adv: batadv0: Interface activated: batadv_slave_1
[  286.735992][T12812] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  286.777380][T12812] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  286.786104][T12812] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  286.805867][T12812] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  286.825502][ T3472] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  286.845406][ T3472] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  286.863588][T13163] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  286.907862][ T9158] mac80211_hwsim hwsim2 wlan0 (unregistering): left allmulticast mode
[  287.512523][   T29] audit: type=1400 audit(2000000219.009:1240): avc:  denied  { create } for  pid=13223 comm="syz.7.2837" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  287.535928][   T29] audit: type=1400 audit(2000000219.029:1241): avc:  denied  { setopt } for  pid=13223 comm="syz.7.2837" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  287.563174][   T29] audit: type=1400 audit(2000000219.029:1242): avc:  denied  { write } for  pid=13223 comm="syz.7.2837" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  287.617105][    T9] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  287.767172][    T9] usb 1-1: Using ep0 maxpacket: 8
[  287.773362][    T9] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  287.781779][    T9] usb 1-1: config 179 has no interface number 0
[  287.788085][    T9] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  287.800167][    T9] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  287.811394][    T9] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  287.823078][    T9] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  287.827158][ T5875] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  287.834992][    T9] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  287.855473][    T9] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  287.864609][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.873916][T13207] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  287.988210][ T5875] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  287.999655][ T5875] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  288.009637][ T5875] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  288.018748][ T5875] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.031349][T13230] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[  288.041281][ T5875] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  288.123660][ T5826] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input26
[  288.271347][ T5826] usb 8-1: USB disconnect, device number 3
[  288.543130][ T5875] usb 1-1: USB disconnect, device number 16
[  288.543185][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  288.557767][    C0] dummy_hcd dummy_hcd.0: timer fired with no URBs pending?
[  289.070655][T13235] netlink: 'syz.0.2840': attribute type 39 has an invalid length.
[  289.237206][ T1199] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  289.407375][ T1199] usb 8-1: Using ep0 maxpacket: 32
[  289.413552][ T1199] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  289.424446][ T1199] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  289.434242][ T1199] usb 8-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  289.443317][ T1199] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.452060][ T1199] usb 8-1: config 0 descriptor??
[  289.864186][ T1199] ft260 0003:0403:6030.002E: unknown main item tag 0x0
[  290.064118][ T1199] ft260 0003:0403:6030.002E: chip code: 5e81 abf2
[  290.478503][ T1199] usb 8-1: USB disconnect, device number 4
[  291.047714][T13239] smb3: Unknown parameter 'rdma'
[  296.693169][ T5827] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  296.701539][ T5827] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  296.709087][ T5827] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  296.716469][ T5827] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  296.723791][ T5827] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  296.731030][ T5827] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  298.757218][ T5827] Bluetooth: hci0: command tx timeout
[  300.837256][T12817] Bluetooth: hci0: command tx timeout
[  302.704537][ T5827] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  302.711956][ T5827] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  302.719194][ T5827] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  302.726686][ T5827] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  302.733945][ T5827] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  302.741247][ T5827] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  302.917192][T12817] Bluetooth: hci0: command tx timeout
[  304.201989][ T5827] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  304.209284][ T5827] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  304.216417][ T5827] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  304.224504][ T5827] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  304.232711][ T5827] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  304.239885][ T5827] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  304.757244][T12817] Bluetooth: hci1: command tx timeout
[  304.997451][T12817] Bluetooth: hci0: command tx timeout
[  306.277137][T12817] Bluetooth: hci4: command tx timeout
[  306.706183][ T5827] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  306.713434][ T5827] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  306.720616][ T5827] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  306.728102][ T5827] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  306.735415][ T5827] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  306.742684][ T5827] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  306.837165][ T5827] Bluetooth: hci1: command tx timeout
[  308.357202][ T5827] Bluetooth: hci4: command tx timeout
[  308.757189][ T5827] Bluetooth: hci8: command tx timeout
[  308.917287][ T5827] Bluetooth: hci1: command tx timeout
[  310.438354][ T5827] Bluetooth: hci4: command tx timeout
[  310.837204][ T5827] Bluetooth: hci8: command tx timeout
[  310.997163][ T5827] Bluetooth: hci1: command tx timeout
[  312.517095][ T5827] Bluetooth: hci4: command tx timeout
[  312.917136][ T5827] Bluetooth: hci8: command tx timeout
[  314.997141][ T5827] Bluetooth: hci8: command tx timeout
[  316.838114][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  316.844411][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  337.784091][T12817] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  337.791363][T12817] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  337.798791][T12817] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  337.808173][T12817] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  337.815441][T12817] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  337.822757][T12817] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  339.877625][T12817] Bluetooth: hci9: command tx timeout
[  341.957223][T12817] Bluetooth: hci9: command tx timeout
[  344.037342][T12817] Bluetooth: hci9: command tx timeout
[  346.117189][T12817] Bluetooth: hci9: command tx timeout
[  356.790688][ T5827] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  356.798044][ T5827] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  356.805280][ T5827] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  356.813178][ T5827] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  356.820602][ T5827] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  356.828421][ T5827] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  358.837469][T12817] Bluetooth: hci10: command tx timeout
[  360.917248][T12817] Bluetooth: hci10: command tx timeout
[  362.822666][ T5827] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  362.832134][ T5827] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  362.839598][ T5827] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  362.847281][ T5827] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  362.854679][ T5827] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  362.862250][ T5827] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  362.997076][ T5827] Bluetooth: hci10: command tx timeout
[  364.818964][T12817] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  364.826252][T12817] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  364.834009][T12817] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  364.842399][T12817] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  364.849814][T12817] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  364.857375][T12817] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  364.917418][ T5827] Bluetooth: hci11: command tx timeout
[  365.077114][ T5827] Bluetooth: hci10: command tx timeout
[  366.829897][T12817] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  366.837547][T12817] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  366.844780][T12817] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  366.852619][T12817] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  366.860006][T12817] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  366.867250][T12817] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  366.917082][T12817] Bluetooth: hci12: command tx timeout
[  366.997172][T12817] Bluetooth: hci11: command tx timeout
[  368.917111][T12817] Bluetooth: hci13: command tx timeout
[  368.997171][T12817] Bluetooth: hci12: command tx timeout
[  369.087156][T12817] Bluetooth: hci11: command tx timeout
[  370.997302][T12817] Bluetooth: hci13: command tx timeout
[  371.077321][T12817] Bluetooth: hci12: command tx timeout
[  371.157120][T12817] Bluetooth: hci11: command tx timeout
[  373.077099][T12817] Bluetooth: hci13: command tx timeout
[  373.157564][T12817] Bluetooth: hci12: command tx timeout
[  375.157169][T12817] Bluetooth: hci13: command tx timeout
[  378.278363][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  378.284661][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  397.919181][ T5827] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  397.926462][ T5827] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  397.933996][ T5827] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  397.942290][ T5827] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  397.949681][ T5827] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  397.956858][ T5827] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  400.037110][ T5832] Bluetooth: hci14: command tx timeout
[  400.838701][ T5832] Bluetooth: hci6: command 0x0406 tx timeout
[  400.838713][ T5840] Bluetooth: hci3: command 0x0406 tx timeout
[  400.844735][ T5840] Bluetooth: hci7: command 0x0406 tx timeout
[  400.850802][   T54] Bluetooth: hci5: command 0x0406 tx timeout
[  400.850827][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[  402.117074][T12817] Bluetooth: hci14: command tx timeout
[  404.197347][T12817] Bluetooth: hci14: command tx timeout
[  406.277497][T12817] Bluetooth: hci14: command tx timeout
[  416.850371][ T5830] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  416.859344][ T5830] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  416.866588][ T5830] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  416.874461][ T5830] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  416.881969][ T5830] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  416.889281][ T5830] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  418.917136][ T5830] Bluetooth: hci15: command tx timeout
[  420.997136][ T5830] Bluetooth: hci15: command tx timeout
[  421.317593][ T5830] Bluetooth: hci0: command 0x0406 tx timeout
[  422.840455][ T5830] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  422.847951][ T5830] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  422.855178][ T5830] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  422.863200][ T5830] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  422.870709][ T5830] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  422.878002][ T5830] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  423.077128][T12817] Bluetooth: hci15: command tx timeout
[  424.846621][ T5829] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  424.853936][ T5829] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  424.861268][ T5829] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  424.868785][ T5829] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  424.876083][ T5829] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[  424.883432][ T5829] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  424.917088][ T5829] Bluetooth: hci16: command tx timeout
[  425.157033][ T5829] Bluetooth: hci15: command tx timeout
[  426.437964][ T5829] Bluetooth: hci4: command 0x0406 tx timeout
[  426.438500][ T5144] Bluetooth: hci1: command 0x0406 tx timeout
[  426.846179][T12817] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  426.853522][T12817] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  426.861023][T12817] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  426.868473][T12817] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  426.875844][T12817] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[  426.883543][T12817] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  426.917188][T12817] Bluetooth: hci17: command tx timeout
[  426.997093][T12817] Bluetooth: hci16: command tx timeout
[  428.917093][T12817] Bluetooth: hci18: command tx timeout
[  428.997234][T12817] Bluetooth: hci17: command tx timeout
[  429.077083][T12817] Bluetooth: hci16: command tx timeout
[  430.997067][ T5830] Bluetooth: hci18: command tx timeout
[  431.077137][ T5830] Bluetooth: hci17: command tx timeout
[  431.157148][ T5830] Bluetooth: hci16: command tx timeout
[  431.557570][ T5830] Bluetooth: hci8: command 0x0406 tx timeout
[  433.077127][T12817] Bluetooth: hci18: command tx timeout
[  433.157087][T12817] Bluetooth: hci17: command tx timeout
[  435.157082][T12817] Bluetooth: hci18: command tx timeout
[  439.718161][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  439.724476][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  450.599464][   T30] INFO: task dhcpcd:5487 blocked for more than 143 seconds.
[  450.606784][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  450.614122][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  450.623110][   T30] task:dhcpcd          state:D stack:23376 pid:5487  tgid:5487  ppid:5486   flags:0x00000002
[  450.633342][   T30] Call Trace:
[  450.636608][   T30]  <TASK>
[  450.639544][   T30]  __schedule+0x1142/0x5b60
[  450.644059][   T30]  ? rcu_is_watching+0x12/0xc0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  450.648990][   T30]  ? __pfx___schedule+0x10/0x10
[  450.655665][   T29] audit: type=1400 audit(2000000382.149:1243): avc:  denied  { write } for  pid=5811 comm="syz-executor" path="pipe:[5219]" dev="pipefs" ino=5219 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  450.655918][   T30]  ? lock_release+0x4e2/0x6f0
[  450.684135][   T30]  ? schedule+0x298/0x350
[  450.715706][   T30]  ? __pfx_lock_release+0x10/0x10
[  450.720923][   T30]  ? __mutex_trylock_common+0x78/0x250
[  450.726387][   T30]  ? schedule+0x1fd/0x350
[  450.730738][   T30]  ? lock_acquire+0x2f/0xb0
[  450.735223][   T30]  ? schedule+0x1fd/0x350
[  450.739789][   T30]  schedule+0xe7/0x350
[  450.743835][   T30]  schedule_preempt_disabled+0x13/0x30
[  450.749289][   T30]  __mutex_lock+0x6bd/0xb10
[  450.754122][   T30]  ? inet_rtm_deladdr+0x15e/0x7c0
[  450.759231][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  450.764251][   T30]  ? __pfx___nla_validate_parse+0x10/0x10
[  450.770180][   T30]  ? avc_has_perm_noaudit+0x61/0x3a0
[  450.775449][   T30]  ? inet_rtm_deladdr+0x15e/0x7c0
[  450.780536][   T30]  ? rtnl_lock+0x9/0x20
[  450.784693][   T30]  inet_rtm_deladdr+0x15e/0x7c0
[  450.789567][   T30]  ? __pfx_inet_rtm_deladdr+0x10/0x10
[  450.794941][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  450.800288][   T30]  ? lock_acquire+0x2f/0xb0
[  450.804820][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  450.809952][   T30]  ? __pfx_inet_rtm_deladdr+0x10/0x10
[  450.815324][   T30]  rtnetlink_rcv_msg+0x95b/0xea0
[  450.820289][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  450.825752][   T30]  ? __pfx_avc_has_perm+0x10/0x10
[  450.830973][   T30]  netlink_rcv_skb+0x16b/0x440
[  450.835730][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  450.841221][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  450.846497][   T30]  ? lock_release+0x4e2/0x6f0
[  450.851180][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  450.856847][   T30]  netlink_unicast+0x53c/0x7f0
[  450.861831][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  450.867119][   T30]  netlink_sendmsg+0x8b8/0xd70
[  450.871875][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  450.877189][   T30]  ____sys_sendmsg+0xaaf/0xc90
[  450.881962][   T30]  ? copy_msghdr_from_user+0x10b/0x160
[  450.887693][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  450.893071][   T30]  ? __pfx_netlink_insert+0x10/0x10
[  450.898289][   T30]  ? __rhashtable_lookup.constprop.0+0x397/0x710
[  450.904627][   T30]  ___sys_sendmsg+0x135/0x1e0
[  450.909325][   T30]  ? __pfx____sys_sendmsg+0x10/0x10
[  450.914519][   T30]  __sys_sendmsg+0x16e/0x220
[  450.919309][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  450.924412][   T30]  ? rcu_is_watching+0x12/0xc0
[  450.929191][   T30]  ? rcu_is_watching+0x12/0xc0
[  450.933949][   T30]  do_syscall_64+0xcd/0x250
[  450.938470][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.944366][   T30] RIP: 0033:0x7fc904523a4b
[  450.948983][   T30] RSP: 002b:00007ffd3ac817f8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  450.957395][   T30] RAX: ffffffffffffffda RBX: 00007fc90444b6c0 RCX: 00007fc904523a4b
[  450.965868][   T30] RDX: 0000000000000000 RSI: 00007ffd3ac959a8 RDI: 0000000000000014
[  450.973856][   T30] RBP: 0000000000000014 R08: 0000000000000000 R09: 00007ffd3ac959a8
[  450.981979][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[  450.989963][   T30] R13: 00007ffd3ac959a8 R14: 0000000000000020 R15: 0000000000000001
[  450.998097][   T30]  </TASK>
[  451.001131][   T30] INFO: task kworker/u8:40:9146 blocked for more than 143 seconds.
[  451.009261][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  451.016717][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  451.025401][   T30] task:kworker/u8:40   state:D stack:26336 pid:9146  tgid:9146  ppid:2      flags:0x00004000
[  451.035609][   T30] Workqueue: ipv6_addrconf addrconf_dad_work
[  451.041793][   T30] Call Trace:
[  451.045048][   T30]  <TASK>
[  451.047994][   T30]  __schedule+0x1142/0x5b60
[  451.052509][   T30]  ? __pfx_try_to_wake_up+0x10/0x10
[  451.057718][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.062827][   T30]  ? __pfx___schedule+0x10/0x10
[  451.067912][   T30]  ? lock_release+0x4e2/0x6f0
[  451.072570][   T30]  ? schedule+0x298/0x350
[  451.076867][   T30]  ? __pfx_lock_release+0x10/0x10
[  451.081921][   T30]  ? __mutex_trylock_common+0x78/0x250
[  451.087393][   T30]  ? schedule+0x1fd/0x350
[  451.091696][   T30]  ? lock_acquire+0x2f/0xb0
[  451.096170][   T30]  ? schedule+0x1fd/0x350
[  451.100725][   T30]  schedule+0xe7/0x350
[  451.104796][   T30]  schedule_preempt_disabled+0x13/0x30
[  451.110246][   T30]  __mutex_lock+0x6bd/0xb10
[  451.114741][   T30]  ? addrconf_dad_work+0x121/0x14e0
[  451.119956][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  451.124967][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.129949][   T30]  ? debug_object_deactivate+0x1ef/0x370
[  451.135562][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  451.140943][   T30]  ? lock_acquire+0x2f/0xb0
[  451.145524][   T30]  ? addrconf_dad_work+0x121/0x14e0
[  451.150728][   T30]  ? rtnl_lock+0x9/0x20
[  451.154879][   T30]  addrconf_dad_work+0x121/0x14e0
[  451.160201][   T30]  ? __pfx_addrconf_dad_work+0x10/0x10
[  451.166037][   T30]  ? _raw_spin_unlock+0x28/0x50
[  451.170939][   T30]  ? process_one_work+0x921/0x1ba0
[  451.176051][   T30]  ? lock_acquire+0x2f/0xb0
[  451.180570][   T30]  ? process_one_work+0x921/0x1ba0
[  451.185688][   T30]  process_one_work+0x9c5/0x1ba0
[  451.190828][   T30]  ? __pfx_addrconf_dad_work+0x10/0x10
[  451.196277][   T30]  ? __pfx_process_one_work+0x10/0x10
[  451.201654][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.206406][   T30]  ? assign_work+0x1a0/0x250
[  451.210990][   T30]  worker_thread+0x6c8/0xf00
[  451.215573][   T30]  ? __kthread_parkme+0x148/0x220
[  451.220784][   T30]  ? __pfx_worker_thread+0x10/0x10
[  451.225869][   T30]  kthread+0x3af/0x750
[  451.229949][   T30]  ? __pfx_kthread+0x10/0x10
[  451.234537][   T30]  ? lock_acquire+0x2f/0xb0
[  451.239246][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.244008][   T30]  ? __pfx_kthread+0x10/0x10
[  451.248854][   T30]  ret_from_fork+0x45/0x80
[  451.253269][   T30]  ? __pfx_kthread+0x10/0x10
[  451.257870][   T30]  ret_from_fork_asm+0x1a/0x30
[  451.262638][   T30]  </TASK>
[  451.266001][   T30] INFO: task kworker/u8:44:9158 blocked for more than 144 seconds.
[  451.273943][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  451.281355][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  451.290050][   T30] task:kworker/u8:44   state:D stack:23648 pid:9158  tgid:9158  ppid:2      flags:0x00004000
[  451.300244][   T30] Workqueue: netns cleanup_net
[  451.305038][   T30] Call Trace:
[  451.308526][   T30]  <TASK>
[  451.311435][   T30]  __schedule+0x1142/0x5b60
[  451.315909][   T30]  ? finish_task_switch.isra.0+0x217/0xcc0
[  451.321740][   T30]  ? __switch_to+0x749/0x1190
[  451.326412][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.331180][   T30]  ? synchronize_rcu_expedited+0x424/0x450
[  451.337273][   T30]  ? __pfx___schedule+0x10/0x10
[  451.342117][   T30]  ? lock_release+0x4e2/0x6f0
[  451.346765][   T30]  ? schedule+0x298/0x350
[  451.351109][   T30]  ? __pfx_lock_release+0x10/0x10
[  451.356129][   T30]  ? __mutex_trylock_common+0x78/0x250
[  451.361599][   T30]  ? schedule+0x1fd/0x350
[  451.365914][   T30]  ? lock_acquire+0x2f/0xb0
[  451.370992][   T30]  ? schedule+0x1fd/0x350
[  451.375337][   T30]  schedule+0xe7/0x350
[  451.379407][   T30]  schedule_preempt_disabled+0x13/0x30
[  451.384854][   T30]  __mutex_lock+0x6bd/0xb10
[  451.389366][   T30]  ? unregister_netdevice_many_notify+0x1a51/0x21a0
[  451.395953][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  451.401167][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  451.407336][   T30]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  451.412643][   T30]  ? __pfx___might_resched+0x10/0x10
[  451.417955][   T30]  ? unregister_netdevice_many_notify+0x959/0x21a0
[  451.424474][   T30]  ? unregister_netdevice_many_notify+0x1a51/0x21a0
[  451.431315][   T30]  ? rtnl_lock+0x9/0x20
[  451.435470][   T30]  unregister_netdevice_many_notify+0x1a51/0x21a0
[  451.441908][   T30]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  451.448686][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  451.454643][   T30]  ? kfree+0x14f/0x4b0
[  451.458954][   T30]  ? macsec_notify+0x3fe/0x690
[  451.463712][   T30]  macsec_notify+0x406/0x690
[  451.468329][   T30]  ? rt_flush_dev+0x15e/0x620
[  451.473341][   T30]  ? ipvtap_device_event+0xce/0x3e0
[  451.478803][   T30]  ? __pfx_macsec_notify+0x10/0x10
[  451.483914][   T30]  ? xsk_notifier+0x58/0x3d0
[  451.488686][   T30]  ? bond_netdev_event+0xe7/0xd30
[  451.493748][   T30]  notifier_call_chain+0xb7/0x410
[  451.498779][   T30]  ? __pfx_macsec_notify+0x10/0x10
[  451.503879][   T30]  call_netdevice_notifiers_info+0xbe/0x140
[  451.509786][   T30]  unregister_netdevice_many_notify+0xd06/0x21a0
[  451.516119][   T30]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  451.523075][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.527848][   T30]  ? lock_release+0x4e2/0x6f0
[  451.532531][   T30]  ? kernfs_remove_by_name_ns+0xc4/0x130
[  451.538177][   T30]  ? __pfx_lock_release+0x10/0x10
[  451.543192][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  451.549426][   T30]  unregister_netdevice_queue+0x307/0x3f0
[  451.555142][   T30]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  451.561653][   T30]  _cfg80211_unregister_wdev+0x64b/0x830
[  451.567319][   T30]  ieee80211_remove_interfaces+0x34f/0x720
[  451.573578][   T30]  ? __pfx_ieee80211_remove_interfaces+0x10/0x10
[  451.580171][   T30]  ieee80211_unregister_hw+0x55/0x3a0
[  451.585523][   T30]  hwsim_exit_net+0x3ad/0x7d0
[  451.590203][   T30]  ? __pfx_hwsim_exit_net+0x10/0x10
[  451.595403][   T30]  ? ip_vs_sync_net_cleanup+0x72/0xb0
[  451.600820][   T30]  ? __ip_vs_dev_cleanup_batch+0xb1/0x290
[  451.606538][   T30]  ? __pfx_hwsim_exit_net+0x10/0x10
[  451.611945][   T30]  ops_exit_list+0xb0/0x180
[  451.616452][   T30]  cleanup_net+0x5c6/0xbf0
[  451.620884][   T30]  ? __pfx_cleanup_net+0x10/0x10
[  451.625817][   T30]  ? lock_acquire+0x2f/0xb0
[  451.630322][   T30]  ? process_one_work+0x921/0x1ba0
[  451.635445][   T30]  process_one_work+0x9c5/0x1ba0
[  451.641263][   T30]  ? __pfx_nsim_dev_trap_report_work+0x10/0x10
[  451.647439][   T30]  ? __pfx_process_one_work+0x10/0x10
[  451.652814][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.657581][   T30]  ? assign_work+0x1a0/0x250
[  451.662160][   T30]  worker_thread+0x6c8/0xf00
[  451.666724][   T30]  ? __pfx_worker_thread+0x10/0x10
[  451.672077][   T30]  kthread+0x3af/0x750
[  451.676484][   T30]  ? __pfx_kthread+0x10/0x10
[  451.681114][   T30]  ? lock_acquire+0x2f/0xb0
[  451.685607][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.690395][   T30]  ? __pfx_kthread+0x10/0x10
[  451.694975][   T30]  ret_from_fork+0x45/0x80
[  451.699585][   T30]  ? __pfx_kthread+0x10/0x10
[  451.704150][   T30]  ret_from_fork_asm+0x1a/0x30
[  451.708958][   T30]  </TASK>
[  451.711990][   T30] INFO: task syz-executor:12809 blocked for more than 144 seconds.
[  451.720041][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  451.727420][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  451.736269][   T30] task:syz-executor    state:D stack:24736 pid:12809 tgid:12809 ppid:1      flags:0x00004004
[  451.746762][   T30] Call Trace:
[  451.750050][   T30]  <TASK>
[  451.752967][   T30]  __schedule+0x1142/0x5b60
[  451.757479][   T30]  ? __pfx___schedule+0x10/0x10
[  451.762329][   T30]  ? lock_release+0x4e2/0x6f0
[  451.767393][   T30]  ? schedule+0x298/0x350
[  451.771734][   T30]  ? __pfx_lock_release+0x10/0x10
[  451.777222][   T30]  ? __mutex_trylock_common+0x78/0x250
[  451.782683][   T30]  ? schedule+0x1fd/0x350
[  451.787025][   T30]  ? lock_acquire+0x2f/0xb0
[  451.791515][   T30]  ? schedule+0x1fd/0x350
[  451.795815][   T30]  schedule+0xe7/0x350
[  451.800106][   T30]  schedule_preempt_disabled+0x13/0x30
[  451.805570][   T30]  __mutex_lock+0x6bd/0xb10
[  451.810101][   T30]  ? cgrp_css_online+0xa9/0x200
[  451.814945][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  451.819983][   T30]  ? __pfx_idr_alloc_u32+0x10/0x10
[  451.825084][   T30]  ? delete_node+0x207/0x8e0
[  451.829860][   T30]  ? rcu_is_watching+0x12/0xc0
[  451.834600][   T30]  ? lock_release+0x4e2/0x6f0
[  451.839281][   T30]  ? cgrp_css_online+0xa9/0x200
[  451.844138][   T30]  ? rtnl_lock+0x9/0x20
[  451.848300][   T30]  cgrp_css_online+0xa9/0x200
[  451.852965][   T30]  ? __pfx_cgrp_css_online+0x10/0x10
[  451.858539][   T30]  online_css+0xaf/0x350
[  451.862771][   T30]  cgroup_apply_control_enable+0x6d7/0xc80
[  451.868588][   T30]  cgroup_mkdir+0x398/0x1150
[  451.873172][   T30]  ? __pfx_cgroup_mkdir+0x10/0x10
[  451.878355][   T30]  kernfs_iop_mkdir+0x14a/0x1d0
[  451.883724][   T30]  ? bpf_lsm_inode_mkdir+0x9/0x10
[  451.889058][   T30]  vfs_mkdir+0x57d/0x860
[  451.893305][   T30]  do_mkdirat+0x301/0x3a0
[  451.897650][   T30]  ? __pfx_do_mkdirat+0x10/0x10
[  451.902495][   T30]  ? getname_flags.part.0+0x1c5/0x550
[  451.907873][   T30]  __x64_sys_mkdirat+0x83/0xb0
[  451.912622][   T30]  do_syscall_64+0xcd/0x250
[  451.917382][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.923273][   T30] RIP: 0033:0x7fbe38f8b597
[  451.927685][   T30] RSP: 002b:00007ffc5f3ee038 EFLAGS: 00000202 ORIG_RAX: 0000000000000102
[  451.936085][   T30] RAX: ffffffffffffffda RBX: 00007fbe3900e517 RCX: 00007fbe38f8b597
[  451.944079][   T30] RDX: 00000000000001ff RSI: 00007ffc5f3ee080 RDI: 00000000ffffff9c
[  451.952185][   T30] RBP: 0000000000000001 R08: 0000000000000013 R09: 00007ffc5f3edd87
[  451.960158][   T30] R10: 0000000000000000 R11: 0000000000000202 R12: 00007fbe3900f9b5
[  451.968141][   T30] R13: 0000000000000003 R14: 00007ffc5f3ee080 R15: 00007ffc5f3ee0c0
[  451.976107][   T30]  </TASK>
[  451.979354][   T30] INFO: task syz-executor:12812 blocked for more than 144 seconds.
[  451.987689][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  451.994962][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  452.003657][   T30] task:syz-executor    state:D stack:24208 pid:12812 tgid:12812 ppid:1      flags:0x00000004
[  452.014107][   T30] Call Trace:
[  452.017403][   T30]  <TASK>
[  452.020322][   T30]  __schedule+0x1142/0x5b60
[  452.024801][   T30]  ? rcu_is_watching+0x12/0xc0
[  452.029566][   T30]  ? lock_release+0x4e2/0x6f0
[  452.034232][   T30]  ? __pfx_lock_release+0x10/0x10
[  452.039585][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  452.044960][   T30]  ? __pfx___schedule+0x10/0x10
[  452.049831][   T30]  ? lock_release+0x4e2/0x6f0
[  452.054494][   T30]  ? schedule+0x298/0x350
[  452.058833][   T30]  ? __pfx_lock_release+0x10/0x10
[  452.063849][   T30]  ? __mutex_trylock_common+0x78/0x250
[  452.069501][   T30]  ? schedule+0x1fd/0x350
[  452.073805][   T30]  ? lock_acquire+0x2f/0xb0
[  452.078301][   T30]  ? schedule+0x1fd/0x350
[  452.082624][   T30]  schedule+0xe7/0x350
[  452.087060][   T30]  schedule_preempt_disabled+0x13/0x30
[  452.092513][   T30]  __mutex_lock+0x6bd/0xb10
[  452.097203][   T30]  ? reg_process_self_managed_hints+0x95/0x1f0
[  452.103332][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  452.108382][   T30]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  452.114370][   T30]  ? reg_process_self_managed_hints+0x95/0x1f0
[  452.120529][   T30]  reg_process_self_managed_hints+0x95/0x1f0
[  452.126509][   T30]  wiphy_register+0x1e45/0x2860
[  452.131623][   T30]  ? __pfx__dev_printk+0x10/0x10
[  452.136558][   T30]  ? __pfx_wiphy_register+0x10/0x10
[  452.141789][   T30]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  452.147863][   T30]  ieee80211_register_hw+0x2455/0x4060
[  452.153383][   T30]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  452.159416][   T30]  ? net_generic+0xea/0x2a0
[  452.163906][   T30]  ? lockdep_init_map_type+0x16d/0x7d0
[  452.169378][   T30]  ? net_generic+0x30/0x2a0
[  452.173866][   T30]  ? __asan_memset+0x23/0x50
[  452.178485][   T30]  ? __hrtimer_init+0x106/0x2c0
[  452.183329][   T30]  mac80211_hwsim_new_radio+0x304e/0x54d0
[  452.189594][   T30]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  452.195662][   T30]  hwsim_new_radio_nl+0xb42/0x12b0
[  452.200776][   T30]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  452.206313][   T30]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  452.213686][   T30]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  452.221206][   T30]  genl_family_rcv_msg_doit+0x202/0x2f0
[  452.226742][   T30]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  452.232834][   T30]  ? bpf_lsm_capable+0x9/0x10
[  452.237530][   T30]  ? security_capable+0x7e/0x260
[  452.242472][   T30]  ? ns_capable+0xd7/0x110
[  452.246860][   T30]  genl_rcv_msg+0x565/0x800
[  452.251608][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  452.256617][   T30]  ? __pfx___dev_queue_xmit+0x10/0x10
[  452.262009][   T30]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  452.267579][   T30]  netlink_rcv_skb+0x16b/0x440
[  452.272342][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  452.277698][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  452.283010][   T30]  ? down_read+0xc9/0x330
[  452.287448][   T30]  ? __pfx_down_read+0x10/0x10
[  452.292558][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  452.297878][   T30]  genl_rcv+0x28/0x40
[  452.301853][   T30]  netlink_unicast+0x53c/0x7f0
[  452.306589][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  452.312117][   T30]  netlink_sendmsg+0x8b8/0xd70
[  452.316856][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  452.322158][   T30]  __sys_sendto+0x488/0x4f0
[  452.326658][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  452.331691][   T30]  ? lock_release+0x4e2/0x6f0
[  452.336362][   T30]  ? lock_acquire+0x2f/0xb0
[  452.341060][   T30]  ? fd_install+0xba/0x750
[  452.345461][   T30]  ? __pfx___sys_socket+0x10/0x10
[  452.350498][   T30]  __x64_sys_sendto+0xe0/0x1c0
[  452.355251][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  452.361246][   T30]  do_syscall_64+0xcd/0x250
[  452.365744][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.371872][   T30] RIP: 0033:0x7f768af8ebbc
[  452.376271][   T30] RSP: 002b:00007ffea7452730 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  452.384698][   T30] RAX: ffffffffffffffda RBX: 00007f768bcd4620 RCX: 00007f768af8ebbc
[  452.393044][   T30] RDX: 0000000000000024 RSI: 00007f768bcd4670 RDI: 0000000000000003
[  452.401363][   T30] RBP: 0000000000000000 R08: 00007ffea7452784 R09: 000000000000000c
[  452.409364][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  452.417353][   T30] R13: 0000000000000000 R14: 00007f768bcd4670 R15: 0000000000000000
[  452.425320][   T30]  </TASK>
[  452.428593][   T30] INFO: task syz.8.2834:13202 blocked for more than 145 seconds.
[  452.436282][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  452.443572][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  452.452255][   T30] task:syz.8.2834      state:D stack:29056 pid:13202 tgid:13201 ppid:12811  flags:0x00000004
[  452.462637][   T30] Call Trace:
[  452.465951][   T30]  <TASK>
[  452.468921][   T30]  __schedule+0x1142/0x5b60
[  452.473426][   T30]  ? __pfx___schedule+0x10/0x10
[  452.478299][   T30]  ? lock_release+0x4e2/0x6f0
[  452.482971][   T30]  ? schedule+0x298/0x350
[  452.487580][   T30]  ? __pfx_lock_release+0x10/0x10
[  452.492604][   T30]  ? __mutex_trylock_common+0x78/0x250
[  452.498493][   T30]  ? schedule+0x1fd/0x350
[  452.502816][   T30]  ? lock_acquire+0x2f/0xb0
[  452.507338][   T30]  ? schedule+0x1fd/0x350
[  452.511686][   T30]  schedule+0xe7/0x350
[  452.515734][   T30]  schedule_preempt_disabled+0x13/0x30
[  452.521665][   T30]  __mutex_lock+0x6bd/0xb10
[  452.526175][   T30]  ? rcu_is_watching+0x12/0xc0
[  452.531111][   T30]  ? genl_rcv_msg+0x580/0x800
[  452.535793][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  452.541038][   T30]  ? __dev_queue_xmit+0x89b/0x43e0
[  452.546158][   T30]  ? __local_bh_enable_ip+0xa4/0x120
[  452.551941][   T30]  ? __dev_queue_xmit+0x89b/0x43e0
[  452.557198][   T30]  ? __radix_tree_lookup+0x21f/0x2c0
[  452.562496][   T30]  ? genl_rcv_msg+0x580/0x800
[  452.567376][   T30]  genl_rcv_msg+0x580/0x800
[  452.571872][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  452.576868][   T30]  ? __pfx___dev_queue_xmit+0x10/0x10
[  452.582494][   T30]  netlink_rcv_skb+0x16b/0x440
[  452.587275][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  452.592304][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  452.598174][   T30]  ? down_read+0xc9/0x330
[  452.602514][   T30]  ? __pfx_down_read+0x10/0x10
[  452.607552][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  452.612828][   T30]  genl_rcv+0x28/0x40
[  452.616788][   T30]  netlink_unicast+0x53c/0x7f0
[  452.621572][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  452.626849][   T30]  netlink_sendmsg+0x8b8/0xd70
[  452.631628][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  452.637196][   T30]  __sys_sendto+0x488/0x4f0
[  452.641690][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  452.646709][   T30]  ? rcu_is_watching+0x12/0xc0
[  452.651479][   T30]  ? rcu_is_watching+0x12/0xc0
[  452.656228][   T30]  __x64_sys_sendto+0xe0/0x1c0
[  452.661001][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  452.667242][   T30]  do_syscall_64+0xcd/0x250
[  452.671744][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.679282][   T30] RIP: 0033:0x7f8f12b8ebbc
[  452.683685][   T30] RSP: 002b:00007f8f13a1bec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  452.692144][   T30] RAX: ffffffffffffffda RBX: 00007f8f13a1bfc0 RCX: 00007f8f12b8ebbc
[  452.700588][   T30] RDX: 000000000000001c RSI: 00007f8f13a1c010 RDI: 0000000000000003
[  452.708584][   T30] RBP: 0000000000000000 R08: 00007f8f13a1bf14 R09: 000000000000000c
[  452.716569][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  452.724549][   T30] R13: 00007f8f13a1bf68 R14: 00007f8f13a1c010 R15: 0000000000000000
[  452.732657][   T30]  </TASK>
[  452.735659][   T30] INFO: task syz.0.2840:13235 blocked for more than 145 seconds.
[  452.743379][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  452.750660][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  452.759641][   T30] task:syz.0.2840      state:D stack:26504 pid:13235 tgid:13234 ppid:12814  flags:0x00004004
[  452.769848][   T30] Call Trace:
[  452.773114][   T30]  <TASK>
[  452.776027][   T30]  __schedule+0x1142/0x5b60
[  452.780562][   T30]  ? irq_work_queue+0x2a/0x80
[  452.785235][   T30]  ? __wake_up_klogd.part.0+0x99/0xf0
[  452.790826][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[  452.796032][   T30]  ? __pfx___schedule+0x10/0x10
[  452.801364][   T30]  ? lock_release+0x4e2/0x6f0
[  452.806049][   T30]  ? schedule+0x298/0x350
[  452.810393][   T30]  ? __pfx_lock_release+0x10/0x10
[  452.815589][   T30]  ? __mutex_trylock_common+0x78/0x250
[  452.821297][   T30]  ? schedule+0x1fd/0x350
[  452.825634][   T30]  ? lock_acquire+0x2f/0xb0
[  452.830163][   T30]  ? schedule+0x1fd/0x350
[  452.834487][   T30]  schedule+0xe7/0x350
[  452.838650][   T30]  schedule_preempt_disabled+0x13/0x30
[  452.844104][   T30]  __mutex_lock+0x6bd/0xb10
[  452.848959][   T30]  ? rtnl_dellink+0x281/0xaa0
[  452.853628][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  452.858925][   T30]  ? __nla_parse+0x40/0x60
[  452.863350][   T30]  ? rtnl_dellink+0x281/0xaa0
[  452.868033][   T30]  rtnl_dellink+0x281/0xaa0
[  452.872538][   T30]  ? kasan_save_stack+0x33/0x60
[  452.877594][   T30]  ? kasan_save_track+0x14/0x30
[  452.882425][   T30]  ? kasan_save_free_info+0x3b/0x60
[  452.887644][   T30]  ? __kasan_slab_free+0x51/0x70
[  452.892585][   T30]  ? __pfx_rtnl_dellink+0x10/0x10
[  452.897634][   T30]  ? nlmon_xmit+0xa5/0xe0
[  452.901975][   T30]  ? dev_hard_start_xmit+0x9a/0x7b0
[  452.907914][   T30]  ? __dev_queue_xmit+0x7f0/0x43e0
[  452.913029][   T30]  ? netlink_deliver_tap+0xa87/0xd30
[  452.918359][   T30]  ? netlink_unicast+0x5e1/0x7f0
[  452.923313][   T30]  ? cred_has_capability.isra.0+0x192/0x2f0
[  452.929234][   T30]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  452.935471][   T30]  ? lock_release+0x4e2/0x6f0
[  452.940340][   T30]  ? __dev_queue_xmit+0x89b/0x43e0
[  452.945429][   T30]  ? rcu_is_watching+0x12/0xc0
[  452.950195][   T30]  ? lock_release+0x4e2/0x6f0
[  452.954864][   T30]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  452.959994][   T30]  ? __pfx_lock_release+0x10/0x10
[  452.965007][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[  452.970392][   T30]  ? bpf_lsm_capable+0x9/0x10
[  452.975041][   T30]  ? security_capable+0x7e/0x260
[  452.979985][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  452.985116][   T30]  ? lock_acquire+0x2f/0xb0
[  452.989630][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  452.994740][   T30]  ? __pfx_rtnl_dellink+0x10/0x10
[  452.999973][   T30]  rtnetlink_rcv_msg+0x95b/0xea0
[  453.004890][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  453.010812][   T30]  netlink_rcv_skb+0x16b/0x440
[  453.015572][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  453.021046][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  453.026333][   T30]  ? lock_release+0x4e2/0x6f0
[  453.031202][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  453.036483][   T30]  netlink_unicast+0x53c/0x7f0
[  453.041279][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  453.046570][   T30]  netlink_sendmsg+0x8b8/0xd70
[  453.051401][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  453.056695][   T30]  ____sys_sendmsg+0xaaf/0xc90
[  453.061696][   T30]  ? copy_msghdr_from_user+0x10b/0x160
[  453.067181][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  453.072463][   T30]  ? try_to_wake_up+0x158/0x1490
[  453.077474][   T30]  ___sys_sendmsg+0x135/0x1e0
[  453.082151][   T30]  ? __pfx____sys_sendmsg+0x10/0x10
[  453.087723][   T30]  ? __pfx_lock_release+0x10/0x10
[  453.092744][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[  453.097960][   T30]  ? __fget_files+0x206/0x3a0
[  453.102640][   T30]  __sys_sendmsg+0x16e/0x220
[  453.107249][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  453.112716][   T30]  ? __x64_sys_futex+0x1e1/0x4c0
[  453.117971][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.122733][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.127520][   T30]  do_syscall_64+0xcd/0x250
[  453.132021][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.137923][   T30] RIP: 0033:0x7f9a2738cd29
[  453.142321][   T30] RSP: 002b:00007f9a282d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  453.150930][   T30] RAX: ffffffffffffffda RBX: 00007f9a275a5fa0 RCX: 00007f9a2738cd29
[  453.158953][   T30] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  453.166914][   T30] RBP: 00007f9a2740e2a0 R08: 0000000000000000 R09: 0000000000000000
[  453.175008][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  453.183231][   T30] R13: 0000000000000000 R14: 00007f9a275a5fa0 R15: 00007fff9bcb5008
[  453.191334][   T30]  </TASK>
[  453.194401][   T30] INFO: task syz.7.2846:13248 blocked for more than 145 seconds.
[  453.202211][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  453.209624][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  453.218750][   T30] task:syz.7.2846      state:D stack:28944 pid:13248 tgid:13247 ppid:12807  flags:0x00000004
[  453.228968][   T30] Call Trace:
[  453.232233][   T30]  <TASK>
[  453.235139][   T30]  __schedule+0x1142/0x5b60
[  453.239892][   T30]  ? lock_release+0x4e2/0x6f0
[  453.244553][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.249361][   T30]  ? page_ext_put+0x3e/0xd0
[  453.253858][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.258639][   T30]  ? is_bpf_text_address+0x8a/0x1a0
[  453.263830][   T30]  ? trace_lock_acquire+0x14e/0x1f0
[  453.269243][   T30]  ? __pfx___schedule+0x10/0x10
[  453.274074][   T30]  ? lock_release+0x4e2/0x6f0
[  453.278773][   T30]  ? schedule+0x298/0x350
[  453.283088][   T30]  ? __pfx_lock_release+0x10/0x10
[  453.288123][   T30]  ? __mutex_trylock_common+0x78/0x250
[  453.293576][   T30]  ? schedule+0x1fd/0x350
[  453.298174][   T30]  ? lock_acquire+0x2f/0xb0
[  453.302666][   T30]  ? schedule+0x1fd/0x350
[  453.307042][   T30]  schedule+0xe7/0x350
[  453.311103][   T30]  schedule_preempt_disabled+0x13/0x30
[  453.316882][   T30]  __mutex_lock+0x6bd/0xb10
[  453.321625][   T30]  ? genl_rcv_msg+0x580/0x800
[  453.326292][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  453.331533][   T30]  ? stack_depot_save_flags+0x28/0x9c0
[  453.337034][   T30]  ? __pfx_stack_trace_save+0x10/0x10
[  453.342398][   T30]  ? kasan_save_stack+0x42/0x60
[  453.347262][   T30]  ? kasan_save_stack+0x33/0x60
[  453.352107][   T30]  ? kasan_save_track+0x14/0x30
[  453.357231][   T30]  ? __kasan_slab_alloc+0x89/0x90
[  453.362276][   T30]  ? kmem_cache_alloc_node_noprof+0x223/0x3c0
[  453.368373][   T30]  ? __radix_tree_lookup+0x21f/0x2c0
[  453.373653][   T30]  ? genl_rcv_msg+0x580/0x800
[  453.378331][   T30]  genl_rcv_msg+0x580/0x800
[  453.382826][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  453.388163][   T30]  netlink_rcv_skb+0x16b/0x440
[  453.392920][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  453.397961][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  453.403242][   T30]  ? down_read+0xc9/0x330
[  453.407595][   T30]  ? __pfx_down_read+0x10/0x10
[  453.412350][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  453.418486][   T30]  genl_rcv+0x28/0x40
[  453.422472][   T30]  netlink_unicast+0x53c/0x7f0
[  453.427250][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  453.432581][   T30]  netlink_sendmsg+0x8b8/0xd70
[  453.437358][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  453.442635][   T30]  __sys_sendto+0x488/0x4f0
[  453.447420][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  453.452479][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.457256][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.462008][   T30]  __x64_sys_sendto+0xe0/0x1c0
[  453.466742][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  453.472726][   T30]  do_syscall_64+0xcd/0x250
[  453.477564][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.483455][   T30] RIP: 0033:0x7ff79938ebbc
[  453.487891][   T30] RSP: 002b:00007ff79a2beec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  453.496288][   T30] RAX: ffffffffffffffda RBX: 00007ff79a2befc0 RCX: 00007ff79938ebbc
[  453.504273][   T30] RDX: 0000000000000028 RSI: 00007ff79a2bf010 RDI: 0000000000000004
[  453.513187][   T30] RBP: 0000000000000000 R08: 00007ff79a2bef14 R09: 000000000000000c
[  453.521707][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004
[  453.529722][   T30] R13: 00007ff79a2bef68 R14: 00007ff79a2bf010 R15: 0000000000000000
[  453.538134][   T30]  </TASK>
[  453.541139][   T30] INFO: task syz-executor:13251 blocked for more than 146 seconds.
[  453.549081][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  453.556350][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  453.565153][   T30] task:syz-executor    state:D stack:27608 pid:13251 tgid:13251 ppid:1      flags:0x00004004
[  453.575736][   T30] Call Trace:
[  453.579054][   T30]  <TASK>
[  453.581977][   T30]  __schedule+0x1142/0x5b60
[  453.586470][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.591244][   T30]  ? lock_release+0x4e2/0x6f0
[  453.595928][   T30]  ? __pfx_lock_release+0x10/0x10
[  453.601189][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.605934][   T30]  ? __pfx___schedule+0x10/0x10
[  453.610806][   T30]  ? lock_release+0x4e2/0x6f0
[  453.615479][   T30]  ? schedule+0x298/0x350
[  453.620323][   T30]  ? __pfx_lock_release+0x10/0x10
[  453.625345][   T30]  ? __mutex_trylock_common+0x78/0x250
[  453.631015][   T30]  ? schedule+0x1fd/0x350
[  453.635319][   T30]  ? lock_acquire+0x2f/0xb0
[  453.640004][   T30]  ? schedule+0x1fd/0x350
[  453.644348][   T30]  schedule+0xe7/0x350
[  453.648642][   T30]  schedule_preempt_disabled+0x13/0x30
[  453.654117][   T30]  __mutex_lock+0x6bd/0xb10
[  453.658858][   T30]  ? inet_rtm_newaddr+0x316/0x1560
[  453.663946][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  453.668969][   T30]  ? __pfx___nla_validate_parse+0x10/0x10
[  453.674685][   T30]  ? inet_rtm_newaddr+0x316/0x1560
[  453.679814][   T30]  ? rtnl_lock+0x9/0x20
[  453.683976][   T30]  inet_rtm_newaddr+0x316/0x1560
[  453.689197][   T30]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  453.695467][   T30]  ? finish_task_switch.isra.0+0x212/0xcc0
[  453.701307][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  453.706677][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  453.711816][   T30]  ? lock_acquire+0x2f/0xb0
[  453.716311][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  453.722921][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  453.728347][   T30]  rtnetlink_rcv_msg+0x95b/0xea0
[  453.733311][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  453.738859][   T30]  ? __pfx_avc_has_perm+0x10/0x10
[  453.743879][   T30]  netlink_rcv_skb+0x16b/0x440
[  453.748843][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  453.754281][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  453.759580][   T30]  ? lock_release+0x4e2/0x6f0
[  453.764250][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  453.769548][   T30]  netlink_unicast+0x53c/0x7f0
[  453.774303][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  453.779781][   T30]  netlink_sendmsg+0x8b8/0xd70
[  453.784524][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  453.789935][   T30]  __sys_sendto+0x488/0x4f0
[  453.794439][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  453.799620][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.804386][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.809679][   T30]  __x64_sys_sendto+0xe0/0x1c0
[  453.814510][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  453.820563][   T30]  do_syscall_64+0xcd/0x250
[  453.825468][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  453.831416][   T30] RIP: 0033:0x7fe25278ebbc
[  453.835818][   T30] RSP: 002b:00007fff2ab7e6a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  453.844297][   T30] RAX: ffffffffffffffda RBX: 00007fe2534d4620 RCX: 00007fe25278ebbc
[  453.852280][   T30] RDX: 0000000000000028 RSI: 00007fe2534d4670 RDI: 0000000000000003
[  453.860285][   T30] RBP: 0000000000000000 R08: 00007fff2ab7e6f4 R09: 000000000000000c
[  453.868263][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  453.876207][   T30] R13: 0000000000000000 R14: 00007fe2534d4670 R15: 0000000000000000
[  453.884297][   T30]  </TASK>
[  453.887376][   T30] INFO: task syz-executor:13255 blocked for more than 146 seconds.
[  453.895252][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  453.902627][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  453.911301][   T30] task:syz-executor    state:D stack:27608 pid:13255 tgid:13255 ppid:1      flags:0x00000004
[  453.921615][   T30] Call Trace:
[  453.924879][   T30]  <TASK>
[  453.928326][   T30]  __schedule+0x1142/0x5b60
[  453.932829][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.937703][   T30]  ? lock_release+0x4e2/0x6f0
[  453.942376][   T30]  ? __pfx_lock_release+0x10/0x10
[  453.947445][   T30]  ? rcu_is_watching+0x12/0xc0
[  453.952210][   T30]  ? __pfx___schedule+0x10/0x10
[  453.957116][   T30]  ? lock_release+0x4e2/0x6f0
[  453.961784][   T30]  ? schedule+0x298/0x350
[  453.966083][   T30]  ? __pfx_lock_release+0x10/0x10
[  453.971127][   T30]  ? __mutex_trylock_common+0x78/0x250
[  453.976574][   T30]  ? schedule+0x1fd/0x350
[  453.980932][   T30]  ? lock_acquire+0x2f/0xb0
[  453.985427][   T30]  ? schedule+0x1fd/0x350
[  453.989765][   T30]  schedule+0xe7/0x350
[  453.993820][   T30]  schedule_preempt_disabled+0x13/0x30
[  453.999332][   T30]  __mutex_lock+0x6bd/0xb10
[  454.003834][   T30]  ? inet_rtm_newaddr+0x316/0x1560
[  454.008983][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  454.013999][   T30]  ? __pfx___nla_validate_parse+0x10/0x10
[  454.019758][   T30]  ? inet_rtm_newaddr+0x316/0x1560
[  454.024870][   T30]  ? rtnl_lock+0x9/0x20
[  454.029138][   T30]  inet_rtm_newaddr+0x316/0x1560
[  454.034459][   T30]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  454.040818][   T30]  ? stack_trace_save+0x95/0xd0
[  454.045669][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  454.051061][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  454.056171][   T30]  ? lock_acquire+0x2f/0xb0
[  454.060712][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  454.065817][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  454.071195][   T30]  rtnetlink_rcv_msg+0x95b/0xea0
[  454.076125][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  454.081639][   T30]  ? __pfx_avc_has_perm+0x10/0x10
[  454.086664][   T30]  netlink_rcv_skb+0x16b/0x440
[  454.091431][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  454.096886][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  454.102196][   T30]  ? lock_release+0x4e2/0x6f0
[  454.106867][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  454.112161][   T30]  netlink_unicast+0x53c/0x7f0
[  454.117210][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  454.122673][   T30]  netlink_sendmsg+0x8b8/0xd70
[  454.127512][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  454.133239][   T30]  __sys_sendto+0x488/0x4f0
[  454.137992][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  454.143028][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.147804][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.152557][   T30]  __x64_sys_sendto+0xe0/0x1c0
[  454.157375][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  454.163362][   T30]  do_syscall_64+0xcd/0x250
[  454.167897][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.173788][   T30] RIP: 0033:0x7fb0e478ebbc
[  454.178233][   T30] RSP: 002b:00007ffdf3120b50 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  454.186653][   T30] RAX: ffffffffffffffda RBX: 00007fb0e54d4620 RCX: 00007fb0e478ebbc
[  454.194642][   T30] RDX: 0000000000000028 RSI: 00007fb0e54d4670 RDI: 0000000000000003
[  454.202693][   T30] RBP: 0000000000000000 R08: 00007ffdf3120ba4 R09: 000000000000000c
[  454.210692][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  454.218674][   T30] R13: 0000000000000000 R14: 00007fb0e54d4670 R15: 0000000000000000
[  454.226632][   T30]  </TASK>
[  454.229657][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  454.239072][   T30] INFO: task syz-executor:13260 blocked for more than 147 seconds.
[  454.247101][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  454.254367][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  454.263145][   T30] task:syz-executor    state:D stack:28104 pid:13260 tgid:13260 ppid:1      flags:0x00000004
[  454.273345][   T30] Call Trace:
[  454.276596][   T30]  <TASK>
[  454.279677][   T30]  __schedule+0x1142/0x5b60
[  454.284185][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.288974][   T30]  ? lock_release+0x4e2/0x6f0
[  454.293651][   T30]  ? __pfx_lock_release+0x10/0x10
[  454.298718][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.303470][   T30]  ? __pfx___schedule+0x10/0x10
[  454.308339][   T30]  ? lock_release+0x4e2/0x6f0
[  454.313007][   T30]  ? schedule+0x298/0x350
[  454.317344][   T30]  ? __pfx_lock_release+0x10/0x10
[  454.322362][   T30]  ? __mutex_trylock_common+0x78/0x250
[  454.327832][   T30]  ? schedule+0x1fd/0x350
[  454.332151][   T30]  ? lock_acquire+0x2f/0xb0
[  454.337210][   T30]  ? schedule+0x1fd/0x350
[  454.341538][   T30]  schedule+0xe7/0x350
[  454.345578][   T30]  schedule_preempt_disabled+0x13/0x30
[  454.351067][   T30]  __mutex_lock+0x6bd/0xb10
[  454.355562][   T30]  ? inet_rtm_newaddr+0x316/0x1560
[  454.360881][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  454.365900][   T30]  ? __pfx___nla_validate_parse+0x10/0x10
[  454.371643][   T30]  ? inet_rtm_newaddr+0x316/0x1560
[  454.376760][   T30]  ? rtnl_lock+0x9/0x20
[  454.380915][   T30]  inet_rtm_newaddr+0x316/0x1560
[  454.385841][   T30]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  454.392099][   T30]  ? stack_trace_save+0x95/0xd0
[  454.396980][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  454.402351][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  454.407481][   T30]  ? lock_acquire+0x2f/0xb0
[  454.411995][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  454.417142][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  454.422502][   T30]  rtnetlink_rcv_msg+0x95b/0xea0
[  454.427466][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  454.432923][   T30]  ? __pfx_avc_has_perm+0x10/0x10
[  454.438014][   T30]  netlink_rcv_skb+0x16b/0x440
[  454.443160][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  454.448656][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  454.453931][   T30]  ? lock_release+0x4e2/0x6f0
[  454.458620][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  454.463900][   T30]  netlink_unicast+0x53c/0x7f0
[  454.468802][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  454.474080][   T30]  netlink_sendmsg+0x8b8/0xd70
[  454.478877][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  454.484155][   T30]  __sys_sendto+0x488/0x4f0
[  454.488671][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  454.493704][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.498480][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.503234][   T30]  __x64_sys_sendto+0xe0/0x1c0
[  454.508005][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  454.513977][   T30]  do_syscall_64+0xcd/0x250
[  454.518527][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.524410][   T30] RIP: 0033:0x7f92f7d8ebbc
[  454.528842][   T30] RSP: 002b:00007ffd9dd5f800 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  454.537272][   T30] RAX: ffffffffffffffda RBX: 00007f92f8ad4620 RCX: 00007f92f7d8ebbc
[  454.545739][   T30] RDX: 0000000000000028 RSI: 00007f92f8ad4670 RDI: 0000000000000003
[  454.553746][   T30] RBP: 0000000000000000 R08: 00007ffd9dd5f854 R09: 000000000000000c
[  454.561751][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  454.569727][   T30] R13: 0000000000000000 R14: 00007f92f8ad4670 R15: 0000000000000000
[  454.577830][   T30]  </TASK>
[  454.580838][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  454.589875][   T30] INFO: task syz-executor:13263 blocked for more than 147 seconds.
[  454.597976][   T30]       Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  454.605286][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  454.613963][   T30] task:syz-executor    state:D stack:27784 pid:13263 tgid:13263 ppid:1      flags:0x00000004
[  454.624160][   T30] Call Trace:
[  454.627450][   T30]  <TASK>
[  454.630387][   T30]  __schedule+0x1142/0x5b60
[  454.634865][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.639638][   T30]  ? lock_release+0x4e2/0x6f0
[  454.644795][   T30]  ? __pfx_lock_release+0x10/0x10
[  454.649878][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.654823][   T30]  ? __pfx___schedule+0x10/0x10
[  454.659715][   T30]  ? lock_release+0x4e2/0x6f0
[  454.664389][   T30]  ? schedule+0x298/0x350
[  454.668747][   T30]  ? __pfx_lock_release+0x10/0x10
[  454.673774][   T30]  ? __mutex_trylock_common+0x78/0x250
[  454.679348][   T30]  ? schedule+0x1fd/0x350
[  454.683664][   T30]  ? lock_acquire+0x2f/0xb0
[  454.688325][   T30]  ? schedule+0x1fd/0x350
[  454.692709][   T30]  schedule+0xe7/0x350
[  454.696754][   T30]  schedule_preempt_disabled+0x13/0x30
[  454.702233][   T30]  __mutex_lock+0x6bd/0xb10
[  454.706727][   T30]  ? inet_rtm_newaddr+0x316/0x1560
[  454.711860][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  454.716884][   T30]  ? __pfx___nla_validate_parse+0x10/0x10
[  454.722655][   T30]  ? inet_rtm_newaddr+0x316/0x1560
[  454.727799][   T30]  ? rtnl_lock+0x9/0x20
[  454.731954][   T30]  inet_rtm_newaddr+0x316/0x1560
[  454.736868][   T30]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  454.743136][   T30]  ? stack_trace_save+0x95/0xd0
[  454.748492][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  454.753870][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  454.759223][   T30]  ? lock_acquire+0x2f/0xb0
[  454.763731][   T30]  ? rtnetlink_rcv_msg+0x205/0xea0
[  454.768888][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  454.774254][   T30]  rtnetlink_rcv_msg+0x95b/0xea0
[  454.779201][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  454.784650][   T30]  ? __pfx_avc_has_perm+0x10/0x10
[  454.789720][   T30]  netlink_rcv_skb+0x16b/0x440
[  454.794499][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  454.800119][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  454.805399][   T30]  ? lock_release+0x4e2/0x6f0
[  454.810122][   T30]  ? netlink_deliver_tap+0x1ae/0xd30
[  454.815410][   T30]  netlink_unicast+0x53c/0x7f0
[  454.820211][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  454.825546][   T30]  netlink_sendmsg+0x8b8/0xd70
[  454.830340][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  454.835618][   T30]  __sys_sendto+0x488/0x4f0
[  454.840165][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  454.845181][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.850444][   T30]  ? rcu_is_watching+0x12/0xc0
[  454.855279][   T30]  __x64_sys_sendto+0xe0/0x1c0
[  454.860489][   T30]  ? trace_irq_enable.constprop.0+0xea/0x140
[  454.866477][   T30]  do_syscall_64+0xcd/0x250
[  454.871003][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  454.876895][   T30] RIP: 0033:0x7f8cc618ebbc
[  454.881359][   T30] RSP: 002b:00007fffe120e840 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  454.889933][   T30] RAX: ffffffffffffffda RBX: 00007f8cc6ed4620 RCX: 00007f8cc618ebbc
[  454.898350][   T30] RDX: 0000000000000028 RSI: 00007f8cc6ed4670 RDI: 0000000000000003
[  454.906312][   T30] RBP: 0000000000000000 R08: 00007fffe120e894 R09: 000000000000000c
[  454.914349][   T30] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  454.922637][   T30] R13: 0000000000000000 R14: 00007f8cc6ed4670 R15: 0000000000000000
[  454.930660][   T30]  </TASK>
[  454.933663][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  454.942715][   T30] INFO: lockdep is turned off.
[  454.947606][   T30] NMI backtrace for cpu 1
[  454.947612][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  454.947622][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  454.947627][   T30] Call Trace:
[  454.947630][   T30]  <TASK>
[  454.947633][   T30]  dump_stack_lvl+0x116/0x1f0
[  454.947647][   T30]  nmi_cpu_backtrace+0x27b/0x390
[  454.947660][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  454.947671][   T30]  nmi_trigger_cpumask_backtrace+0x29c/0x300
[  454.947683][   T30]  watchdog+0xf14/0x1240
[  454.947696][   T30]  ? __pfx_watchdog+0x10/0x10
[  454.947707][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  454.947717][   T30]  ? __kthread_parkme+0x148/0x220
[  454.947730][   T30]  ? __pfx_watchdog+0x10/0x10
[  454.947741][   T30]  kthread+0x3af/0x750
[  454.947754][   T30]  ? __pfx_kthread+0x10/0x10
[  454.947764][   T30]  ? __pfx_kthread+0x10/0x10
[  454.947772][   T30]  ret_from_fork+0x45/0x80
[  454.947781][   T30]  ? __pfx_kthread+0x10/0x10
[  454.947790][   T30]  ret_from_fork_asm+0x1a/0x30
[  454.947805][   T30]  </TASK>
[  454.947808][   T30] Sending NMI from CPU 1 to CPUs 0:
[  455.060066][    C0] NMI backtrace for cpu 0
[  455.060078][    C0] CPU: 0 UID: 0 PID: 3472 Comm: kworker/u8:6 Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  455.060095][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  455.060104][    C0] Workqueue: events_unbound cfg80211_wiphy_work
[  455.060127][    C0] RIP: 0010:unwind_next_frame+0x6c/0x20c0
[  455.060147][    C0] Code: c4 38 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc 49 8d 6d 48 48 b8 00 00 00 00 00 fc ff df 48 89 ea 48 c1 ea 03 80 3c 02 00 <0f> 85 00 18 00 00 49 8b 45 48 48 89 44 24 08 49 8d 45 38 48 89 c2
[  455.060160][    C0] RSP: 0018:ffffc9000cfdee58 EFLAGS: 00000246
[  455.060170][    C0] RAX: dffffc0000000000 RBX: 0000000000000001 RCX: 0000000000000000
[  455.060179][    C0] RDX: 1ffff920019fbde2 RSI: ffffffff8aa8bd81 RDI: ffffc9000cfdeec8
[  455.060188][    C0] RBP: ffffc9000cfdef10 R08: ffffc9000cfdeefc R09: ffffffff919c29be
[  455.060197][    C0] R10: ffffc9000cfdeec8 R11: 0000000000098a75 R12: ffffffff8185c170
[  455.060205][    C0] R13: ffffc9000cfdeec8 R14: 0000000000000000 R15: ffff88803276c880
[  455.060214][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  455.060228][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  455.060237][    C0] CR2: 00007fc3b2cd7d60 CR3: 000000000df80000 CR4: 00000000003526f0
[  455.060246][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  455.060254][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  455.060262][    C0] Call Trace:
[  455.060266][    C0]  <NMI>
[  455.060272][    C0]  ? nmi_cpu_backtrace+0x1d8/0x390
[  455.060292][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  455.060305][    C0]  ? nmi_handle+0x1ac/0x5d0
[  455.060321][    C0]  ? unwind_next_frame+0x6c/0x20c0
[  455.060337][    C0]  ? default_do_nmi+0x6a/0x160
[  455.060355][    C0]  ? exc_nmi+0x170/0x1e0
[  455.060373][    C0]  ? end_repeat_nmi+0xf/0x53
[  455.060391][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  455.060407][    C0]  ? ieee80211_bss_info_update+0x311/0xab0
[  455.060426][    C0]  ? unwind_next_frame+0x6c/0x20c0
[  455.060442][    C0]  ? unwind_next_frame+0x6c/0x20c0
[  455.060457][    C0]  ? unwind_next_frame+0x6c/0x20c0
[  455.060472][    C0]  </NMI>
[  455.060477][    C0]  <TASK>
[  455.060481][    C0]  ? cfg80211_inform_bss_frame_data+0x272/0x7a0
[  455.060503][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  455.060517][    C0]  arch_stack_walk+0x95/0x100
[  455.060540][    C0]  ? ieee80211_bss_info_update+0x311/0xab0
[  455.060559][    C0]  ? cfg80211_inform_single_bss_data+0x543/0x1df0
[  455.060573][    C0]  stack_trace_save+0x95/0xd0
[  455.060584][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  455.060600][    C0]  kasan_save_stack+0x33/0x60
[  455.060616][    C0]  ? kasan_save_stack+0x33/0x60
[  455.060631][    C0]  ? kasan_save_track+0x14/0x30
[  455.060646][    C0]  ? __kasan_kmalloc+0xaa/0xb0
[  455.060660][    C0]  ? __kmalloc_noprof+0x21c/0x510
[  455.060677][    C0]  ? cfg80211_inform_single_bss_data+0x543/0x1df0
[  455.060690][    C0]  ? cfg80211_inform_bss_data+0x205/0x3ba0
[  455.060702][    C0]  ? cfg80211_inform_bss_frame_data+0x272/0x7a0
[  455.060716][    C0]  ? ieee80211_bss_info_update+0x311/0xab0
[  455.060747][    C0]  kasan_save_track+0x14/0x30
[  455.060763][    C0]  __kasan_kmalloc+0xaa/0xb0
[  455.060779][    C0]  __kmalloc_noprof+0x21c/0x510
[  455.060795][    C0]  ? rcu_is_watching+0x12/0xc0
[  455.060809][    C0]  cfg80211_inform_single_bss_data+0x543/0x1df0
[  455.060823][    C0]  ? unwind_next_frame+0xe5d/0x20c0
[  455.060838][    C0]  ? arch_stack_walk+0x74/0x100
[  455.060856][    C0]  ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[  455.060877][    C0]  ? ieee802_11_parse_elems_full+0xf2/0x18c0
[  455.060896][    C0]  ? stack_trace_save+0x95/0xd0
[  455.060908][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  455.060919][    C0]  ? __asan_memset+0x23/0x50
[  455.060935][    C0]  ? stack_depot_save_flags+0x28/0x9c0
[  455.060949][    C0]  ? ieee80211_parse_ch_switch_ie+0xdb2/0x1fb0
[  455.060971][    C0]  ? cfg80211_inform_bss_data+0x205/0x3ba0
[  455.060984][    C0]  cfg80211_inform_bss_data+0x205/0x3ba0
[  455.060997][    C0]  ? __kasan_kmalloc+0xaa/0xb0
[  455.061011][    C0]  ? __kmalloc_noprof+0x21c/0x510
[  455.061027][    C0]  ? ieee802_11_parse_elems_full+0xf2/0x18c0
[  455.061048][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0xc4f/0x2f50
[  455.061066][    C0]  ? cfg80211_wiphy_work+0x3ed/0x570
[  455.061081][    C0]  ? kthread+0x3af/0x750
[  455.061094][    C0]  ? ret_from_fork+0x45/0x80
[  455.061107][    C0]  ? ret_from_fork_asm+0x1a/0x30
[  455.061127][    C0]  ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[  455.061142][    C0]  ? cfg80211_defragment_element+0x243/0x2e0
[  455.061162][    C0]  ? ieee80211_mle_parse_link+0x83c/0xfb0
[  455.061184][    C0]  ? __kmalloc_noprof+0x23b/0x510
[  455.061199][    C0]  ? cfg80211_defragment_element+0x243/0x2e0
[  455.061219][    C0]  ? rcu_is_watching+0x12/0xc0
[  455.061230][    C0]  ? lock_release+0x4e2/0x6f0
[  455.061245][    C0]  ? ieee80211_bss_info_update+0x2cb/0xab0
[  455.061263][    C0]  cfg80211_inform_bss_frame_data+0x272/0x7a0
[  455.061278][    C0]  ieee80211_bss_info_update+0x311/0xab0
[  455.061296][    C0]  ? __pfx_ieee80211_bss_info_update+0x10/0x10
[  455.061313][    C0]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  455.061330][    C0]  ? ieee80211_ibss_rx_queued_mgmt+0x1862/0x2f50
[  455.061349][    C0]  ? ieee80211_mandatory_rates+0x1ab/0x220
[  455.061369][    C0]  ieee80211_ibss_rx_queued_mgmt+0x189c/0x2f50
[  455.061390][    C0]  ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10
[  455.061407][    C0]  ? __pfx___mutex_trylock_common+0x10/0x10
[  455.061424][    C0]  ? cfg80211_wiphy_work+0x9d/0x570
[  455.061439][    C0]  ? rcu_is_watching+0x12/0xc0
[  455.061450][    C0]  ? lock_release+0x4e2/0x6f0
[  455.061464][    C0]  ? kcov_remote_start+0x370/0x6e0
[  455.061482][    C0]  ? lock_acquire+0x2f/0xb0
[  455.061501][    C0]  ? rcu_is_watching+0x12/0xc0
[  455.061512][    C0]  ? trace_irq_enable.constprop.0+0xea/0x140
[  455.061531][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  455.061546][    C0]  ieee80211_iface_work+0xc15/0xf50
[  455.061566][    C0]  cfg80211_wiphy_work+0x3ed/0x570
[  455.061582][    C0]  process_one_work+0x9c5/0x1ba0
[  455.061601][    C0]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  455.061615][    C0]  ? __pfx_process_one_work+0x10/0x10
[  455.061629][    C0]  ? rcu_is_watching+0x12/0xc0
[  455.061643][    C0]  ? assign_work+0x1a0/0x250
[  455.061657][    C0]  worker_thread+0x6c8/0xf00
[  455.061676][    C0]  ? __pfx_worker_thread+0x10/0x10
[  455.061690][    C0]  kthread+0x3af/0x750
[  455.061703][    C0]  ? __pfx_kthread+0x10/0x10
[  455.061715][    C0]  ? lock_acquire+0x2f/0xb0
[  455.061731][    C0]  ? __pfx_kthread+0x10/0x10
[  455.061745][    C0]  ret_from_fork+0x45/0x80
[  455.061758][    C0]  ? __pfx_kthread+0x10/0x10
[  455.061771][    C0]  ret_from_fork_asm+0x1a/0x30
[  455.061793][    C0]  </TASK>
[  455.062070][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  455.715185][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0
[  455.725317][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  455.735350][   T30] Call Trace:
[  455.738617][   T30]  <TASK>
[  455.741530][   T30]  dump_stack_lvl+0x3d/0x1f0
[  455.746108][   T30]  panic+0x71d/0x800
[  455.749983][   T30]  ? __pfx_panic+0x10/0x10
[  455.754374][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  455.759731][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  455.765693][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  455.771053][   T30]  ? watchdog+0xd7e/0x1240
[  455.775496][   T30]  ? watchdog+0xd71/0x1240
[  455.779909][   T30]  watchdog+0xd8f/0x1240
[  455.784158][   T30]  ? __pfx_watchdog+0x10/0x10
[  455.788822][   T30]  ? lockdep_hardirqs_on+0x7c/0x110
[  455.794004][   T30]  ? __kthread_parkme+0x148/0x220
[  455.799015][   T30]  ? __pfx_watchdog+0x10/0x10
[  455.803679][   T30]  kthread+0x3af/0x750
[  455.807726][   T30]  ? __pfx_kthread+0x10/0x10
[  455.812302][   T30]  ? __pfx_kthread+0x10/0x10
[  455.816871][   T30]  ret_from_fork+0x45/0x80
[  455.821267][   T30]  ? __pfx_kthread+0x10/0x10
[  455.825840][   T30]  ret_from_fork_asm+0x1a/0x30
[  455.830592][   T30]  </TASK>
[  455.833816][   T30] Kernel Offset: disabled
[  455.838113][   T30] Rebooting in 86400 seconds..