last executing test programs:

4m42.027208259s ago: executing program 3 (id=722):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
read(r2, &(0x7f0000000240)=""/123, 0x7b)

4m38.23913956s ago: executing program 3 (id=731):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x37, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$packet(0x11, 0x3, 0x300)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000400)={0xa, 0x2, 0xf, @loopback, 0x9}, 0x1c)
sendto$inet6(r4, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

4m35.885921707s ago: executing program 3 (id=739):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CAP_DISABLE_QUIRKS(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000200)={0x74, 0x0, 0x10})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='dax_insert_mapping\x00', r2, 0x0, 0x6826}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setfsuid(0xffffffffffffffff)
syz_clone(0x100011, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x11, 0x3, 0x10)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00')
preadv(r3, &(0x7f0000000280)=[{&(0x7f0000000180)=""/193, 0xc1}], 0x1, 0x6, 0x0)

4m31.681110913s ago: executing program 3 (id=777):
r0 = openat$comedi(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000040)={0xc000003, 0xf, &(0x7f0000000180)=[0x1c, 0xa, 0xf909, 0x200005, 0x80, 0x1, 0x7, 0x10, 0xfffffe01, 0x4d, 0x4, 0x2, 0x88, 0x8811, 0x2], 0x1, 0x4000007})

4m31.418786467s ago: executing program 3 (id=781):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, 0x0, &(0x7f00000002c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4)
r1 = socket(0x2, 0x80805, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, 0x0, 0x0)
recvmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)}, 0x10160)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000040)=0x6, 0x4)
syz_open_procfs(0xffffffffffffffff, 0x0)
r7 = openat$sysctl(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendfile(r7, r7, 0x0, 0x1)

4m30.322348909s ago: executing program 3 (id=784):
socket$netlink(0x10, 0x3, 0x10)
syz_open_dev$dri(0x0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000600)=""/102400, 0x19000)
sendmsg$nl_crypto(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)

4m14.833363153s ago: executing program 32 (id=784):
socket$netlink(0x10, 0x3, 0x10)
syz_open_dev$dri(0x0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000600)=""/102400, 0x19000)
sendmsg$nl_crypto(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)

25.014038516s ago: executing program 2 (id=2074):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x3a, &(0x7f0000000040)=0x8, 0x4)
recvmmsg(r0, &(0x7f0000001ac0)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

24.642751945s ago: executing program 2 (id=2079):
r0 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
fdatasync(r0)
r1 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x3)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@map=r2, 0x2b, 0x0, 0xb, &(0x7f0000000080)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
socket(0x400000000010, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c)
listen(r7, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_clock_offset={{0x1c, 0x5}, {0x0, 0xc9, 0x81ad}}}, 0x8)
openat$vsock(0xffffffffffffff9c, 0x0, 0x400, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x8000000004)
setsockopt$inet6_tcp_TCP_MD5SIG(r7, 0x6, 0xe, &(0x7f0000000440)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x27, 0x0, "a58fc096f80633b333145c32b45013f5547000229e90bfdd2cbb775085438751fa41b217c492169b0cb51256adc3e5baedfa65fd3c4429b247e9dc51c16f89c5a42145bb09f23ab88b0bd564fd44893a"}, 0xd8)
writev(r8, &(0x7f0000000080), 0x0)
syz_usb_connect(0x3, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x38, 0x6c, 0xfc, 0x8, 0x50d, 0x122, 0x5b65, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x18, 0x0, 0x0, 0xf8, 0xda, 0xc2}}]}}]}}, 0x0)

20.75256521s ago: executing program 2 (id=2089):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1ffffffffffffe31, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000900008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r4}, 0x18)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

20.64338596s ago: executing program 2 (id=2091):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)

16.375390749s ago: executing program 4 (id=2100):
socket$can_bcm(0x1d, 0x2, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$alg(0x26, 0x5, 0x0)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x40484)
open(0x0, 0x10400, 0x8a)
clock_nanosleep(0xfffffff2, 0x3, &(0x7f0000000400), 0x0)

15.946274178s ago: executing program 2 (id=2103):
r0 = socket$packet(0x11, 0x2, 0x300)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x6, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1e, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r4, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, 0x0, &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

12.339274047s ago: executing program 4 (id=2104):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f00000000c0)={0x5c, 0x3, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x80d}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x23}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000004}, 0x44080)
setrlimit(0xb, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)={0x28, 0x2, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x0, 0x2}}, @NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0xb}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000010}, 0x20040020)

11.21096613s ago: executing program 4 (id=2106):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
setsockopt$inet6_int(r0, 0x29, 0x3a, &(0x7f0000000040)=0x8, 0x4)
recvmmsg(r0, &(0x7f0000001ac0)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

11.20195621s ago: executing program 1 (id=2107):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r1, 0x6)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = accept(r0, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x1802, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r5, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}, 0x1, 0xff07}, 0x2000000)

10.830530985s ago: executing program 1 (id=2108):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100"/260], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r0, 0x1000)
r1 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
r2 = dup3(r1, r0, 0x80000)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, 0x0)

10.00254829s ago: executing program 0 (id=2110):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(0xffffffffffffffff)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1a1)
fcntl$setlease(r3, 0x400, 0x1)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

9.838818834s ago: executing program 4 (id=2111):
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x10)
readv(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e24, 0x0, @rand_addr, 0x8000}, 0x1c)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f00000014c0)=@nat={'nat\x00', 0x62, 0x5, 0x430, 0x398, 0x2a0, 0xffffffff, 0xe0, 0x188, 0x398, 0x398, 0xffffffff, 0x398, 0x398, 0x5, 0x0, {[{{@ip={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'veth0_to_bond\x00', 'wg1\x00'}, 0x0, 0xa8, 0xe0, 0x0, {0x22e}, [@common=@unspec=@statistic={{0x38}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @multicast1, @remote, @icmp_id, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @multicast1, @empty, @gre_key, @icmp_id}}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_hsr\x00', 'ipvlan0\x00'}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={{0x20}}, @common=@osf={{0x50}, {'syz0\x00'}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @private, @multicast2, @gre_key}}}}, {{@ip={@remote, @empty, 0x0, 0x0, 'veth1_to_batadv\x00', 'pim6reg\x00', {0xff}}, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@ttl={{0x28}}, @common=@inet=@tcpmss={{0x28}, {0xf}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x16, @remote, @broadcast, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x490)
sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0xfdff)

8.504754389s ago: executing program 0 (id=2113):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socket(0x840000000002, 0x3, 0x100)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = syz_open_dev$sndpcmc(&(0x7f0000000040), 0x1, 0x149881)
ioctl$SNDRV_PCM_IOCTL_READN_FRAMES(r2, 0x80184153, 0x0)
sendmsg$key(r1, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYRESDEC], 0x10}}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@local, @in6=@mcast2, 0x0, 0x0, 0xffff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x28c, 0x6}, {0x7}, 0x0, 0x0, 0x1, 0x0, 0x3}, {{@in6=@local, 0x2000400, 0x33}, 0x0, @in=@broadcast, 0x0, 0x6, 0x0, 0xb7, 0x0, 0x8000000}}, 0xe8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002000)=""/102400, 0x19000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000007040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000000a00ecff0800010073797a300000000074000000160a010100000000000000000a00000008000740000000"], 0xbc}}, 0x0)
socket$inet6(0xa, 0x3, 0x3a)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MIF(r5, 0x29, 0xc8, 0x0, 0xc000000)
setsockopt$MRT6_ADD_MFC(r5, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}}, 0x5c)
setsockopt$MRT6_ADD_MFC_PROXY(r5, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x1}, 0x5c)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}}, 0x5c)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f0000000240)=0x2, 0x4)

8.024512431s ago: executing program 1 (id=2116):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000002d80)={&(0x7f00000000c0)={0x5c, 0x3, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x80d}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x23}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000004}, 0x44080)
setrlimit(0xb, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)={0x28, 0x2, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x0, 0x2}}, @NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0xb}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000010}, 0x20040020)

7.310890947s ago: executing program 1 (id=2117):
r0 = syz_open_dev$evdev(0x0, 0x0, 0x2002)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES16=r0, @ANYBLOB='\x00'/25], 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
sync_file_range(r1, 0x0, 0x0, 0x0)
eventfd(0x80200003)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x6, 0x100000b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r2 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$6lowpan_control(r2, 0x0, 0x0)
r3 = syz_io_uring_setup(0x286, &(0x7f0000000440)={0x0, 0xfad9, 0x400, 0x0, 0x0, 0x0, r2}, &(0x7f0000000340)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r6, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000980)={0x38, 0x1412, 0x1, 0x70bd27, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x8000001}]}, 0x38}, 0x1, 0x0, 0x0, 0x40084}, 0x810)
syz_io_uring_submit(r4, r5, 0x0)
r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r7, 0x0, 0x0)
prctl$PR_GET_TSC(0x43, &(0x7f0000000040))
write$sysctl(r7, &(0x7f0000000000)='2\x00', 0x2)
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x154)
openat$fuse(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)

6.990308719s ago: executing program 0 (id=2119):
r0 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
fdatasync(r0)
r1 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x3)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@map=r2, 0x2b, 0x0, 0xb, &(0x7f0000000080)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
socket(0x400000000010, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000080)={0xa, 0x14e22, 0x0, @ipv4}, 0x1c)
listen(r7, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_clock_offset={{0x1c, 0x5}, {0x0, 0xc9, 0x81ad}}}, 0x8)
openat$vsock(0xffffffffffffff9c, 0x0, 0x400, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x8000000004)
setsockopt$inet6_tcp_TCP_MD5SIG(r7, 0x6, 0xe, &(0x7f0000000440)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x27, 0x0, "a58fc096f80633b333145c32b45013f5547000229e90bfdd2cbb775085438751fa41b217c492169b0cb51256adc3e5baedfa65fd3c4429b247e9dc51c16f89c5a42145bb09f23ab88b0bd564fd44893a"}, 0xd8)
writev(r8, &(0x7f0000000080), 0x0)
syz_usb_connect(0x3, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x38, 0x6c, 0xfc, 0x8, 0x50d, 0x122, 0x5b65, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x18, 0x0, 0x0, 0xf8, 0xda, 0xc2}}]}}]}}, 0x0)

6.921770008s ago: executing program 1 (id=2120):
socket$packet(0x11, 0x3, 0x300)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYRES32=r0, @ANYBLOB="7b4300000000000000000000000000ebcf236751", @ANYRES32=0x0, @ANYRES32], 0x50)
mount$9p_unix(&(0x7f0000000480)='./file0\x00', 0x0, 0x0, 0xa0040, &(0x7f0000000780)=ANY=[])
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000380)=@o_path={&(0x7f0000000340)='./cgroup\x00', 0x0, 0x4010}, 0x18)

5.656328953s ago: executing program 5 (id=2121):
prlimit64(0x0, 0x2, &(0x7f0000000040)={0x1000000000000009, 0xffffffffffffffff}, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001480)='/proc/bus/input/handlers\x00', 0x0, 0x0)
read$hiddev(r0, &(0x7f00000000c0)=""/4079, 0xfef)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x34, 0xd, 0x6, 0x3, 0x0, 0x0, {0x230e3fbb2e9b3af1, 0x0, 0x1}, [@IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x90024}, 0x880)
preadv(r0, &(0x7f0000001300)=[{&(0x7f0000000040)=""/17, 0x11}], 0x1, 0x0, 0x0)
read$hiddev(r0, &(0x7f0000001100)=""/234, 0xea)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000409000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
brk(0x200000ff8000)
io_setup(0xd6, &(0x7f0000000200))
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x8, 0x3, 0x268, 0x100, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1f0, 0xffffffff, 0xffffffff, 0x1f0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, [], [], 'batadv0\x00', 'wg1\x00', {}, {0x101}, 0x6}, 0x0, 0xa8, 0xd0, 0x0, {0x0, 0x4c00}}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@uncond, 0x0, 0xa8, 0xc8}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2c8)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
accept4(r6, 0x0, 0x0, 0x800)
close_range(r5, 0xffffffffffffffff, 0x0)

4.315634688s ago: executing program 5 (id=2122):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, 0x0, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000180)={@empty}, 0x14)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4)

3.918114477s ago: executing program 5 (id=2123):
socket$kcm(0x11, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000001000000850000000e000000850000002a00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8e, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000001}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe315}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8}]}, 0x3c}}, 0x0)
mknod(&(0x7f00000048c0)='./file0\x00', 0x0, 0xffffffff)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r4, &(0x7f0000008380)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008df76a250000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea21056000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000131a5d9400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r4, &(0x7f0000004900)="fac4e7c21565f79b73d8d7dcc36944c7d36505ed55b2c535ba5bc78cc94f55e518d13a9f4dd794ecf1b09fe12f2893933931db285710f8c78793ddf30ff7dd86203ab0177f8aa062d6fe9529d65fab047ca34c6840b505eee9082e8ccf311bfb84ee46c0d0dd466ba326c6410b06b48ffc309ddd9fcdd816ded9830e41f8cce8d3bc31a817f29e3ecdd0329aadc8b022c55c70eff8905b9bf223ea44cbb290ffe098bb78fcc9e39f16f4f0e8d60e440abc192d530e146bdb59e9e522668bebec672a965ee7bdb300ab4314235dc0e62e94e398742cfeee3b92ce29e1a62fd8375d95ef502ebc1f04959d83a15ee9496198f0b3440b80cb9950324c9d4dfa69381c5c0920e307ab1528efe02739c2a49fc4cf09ff76c165d5005234b8f9378c74040d212eed9e7485cdd758bf4d34c2cf52b278eb3114b13b43214814ba2e2a357c028c737892d0e8ab1f1d009a00ad0dcdb9ffd0f4fa0b03d3b006fd66e8faa4fd44b64dcb92cbb5e9da64165ef01602538708e5dad3c0986a2b03d4d4276c9268af76d300b01ceef84e2a501e2c3d04e31875d1a81270409516d4272d73e9899c5a939c03be73352b61cf32ea1f6cc2d31847703843cd2e54de294b1c957ae618dddd7fdb018908dd7be379fb3db575b0859d9f2a190d8f7abc8400bbcfc866c8f8454102a5b0c215f140cb17677556241e33443aacb35073752aa65f450b2d03750ebbc07ed809f97b5a55a4f11b920cc9bf0a1db7fce63718f85c3326120c8b774ec22ff9c1b7e9114c0b931b6805fa672b53a6a617881fd73dc1b79fbeade0120e08c7abbba9bed82e9700bbf779328ce0a73f7e60459ecfc3f0daf26da8d1b57c1536ec967fdcab8cca66aab0ce0a02320c0090c78511b1672d65b3d62ed38e2655bc6ebfb2480a0c33fc68bba5c444d8cde3f977a382d6413947fcb25e3e9330f45b8874463e2a3fab87d877652de9c2d35208ad5d3e59ee9e63061af0b119d8174e7eaf71551b1f3551d0247717b5bb7d4db41767e2608a2472c7258932e22eb591c957da5fad5732c86cf18ec338e83ed25e41a2e500360c7ea86755efe0962f0d1d4cc945645e01b5a34fc74630c91cd02c5932f2df9ec1e090dd83bda328a7c8d1b8a8294c3c551c1954a7f024eb7ac01e35538612f2f23a6c52c59beab75910c5abad25a3789baa0001569e93561a8992450bdb0a757b916af413d63badc4aeeb9489357ff7fdb27e913278dbb5f2d69bc196d110638601f31fb4db2b301faa7516955d6971b562288328e14c7957696eaa03d3911ec661279e37a850b7515fb4e122c39fd6dc3af40980173e6324ee678b47f74428a593827d75aae3368e661dbe9738a2704d8f7a086e77b9ffb3eb0e16199c58eff45dbe628d268e88bb2d69a310b60db0a850afcb08a2a7b316c70209ecf034d484a6b1f68de857d4ebfd45936c04b532202bea6b3a6d3751cf73db4ca0a76faf7a972f8a68a523b0a51d593436aed65999fe96058e085b4352c0d5603365ae4cf724e5801da03665ee2071e04b45c6de0a59afc376e3ce2ef206c3161f235049d7e0b52e04ccac4f1699629b3f8736601a6dadfd00dd9545cb7cabd1cba12ddb2a23c58b1da9c69ee4ec9853aaa81e1cf7a169f91a1c077fd6c5c2fd366c9a2a285420d5633bf0544003251768db01281f8259a0d0c489f7f7cfc0fa7ff2878fb0cea89ddb3593539a1184e667f3840e8e5043508777dcef371e2ea3cf489fcfd60066a8dcfc9d0fbc21aac05f24a88ceb5c186326d1fe5b6cb4a40d25e6f847f7a4030d0a9cd29b0f9e3b49471730df5c5d1e172376ab2a27f3aaa3d1c5f354952745db1c54464e9f4d224ca1bcc7a4004bbba7a21d60a1fd5a35c1179738fbcb61241f38703610d51b18afc0e0bce11564167344568875374c6114c64b7cd25cb3c005b2577afe3c0f528d5c838152fe7b307d743596c91f43f3958e1f25f741aa4b30baa4063d0d9c3453fa18de83f744786c7b4294415e0222ecd9bd9a115663f32e9505d3618f9c716f23d9e536d429557774f7910aded24931f373507dba89766d760b714da6e264492ffee985422e60da15b7ea862935d21bb878560b0f8270f82cb3a8fc99ac35c30038b95532fe848f8a2876f5782acbad93f1426fee13fa4f0b778950bb2096c7d1c5bdd481ecae83254800f78a762983418c3fd673deda93c206ad399144b141db743640e3102fb453d553f939ad643ce9faabbb01bfad49cd30a61cce67fd46782447e14c7b2d2dc1df244cd7d72404a0f5b54187c75aa45b9b2a73727de0ce187b7e9cfd471efb73e9a84971185cf335cb33fce92e06992398e53be779782a436579bef6d7b0d93915e758fde3fd67b9a964d5a8ddc5950cb2a78262d0e36d329f9ba56b06266a126334c56852b290937423bc178a575a442046a8a4406e88b829d36bea6786774b0c513dc951b330eb5dd914a907b97e83db55cf73c2897dc3d6944dac797b8b1434327fc15caa6b309b62e1aa52d4e8ca7a7db6f99e423489951961f147b3cb14956e801f7b1a15b959546ea229898ab9b99c9a080f5d9176c59ace26b72e620b9ff6e558bfe7808a7b430c414ab90cb0f1e4101be46dc360928797171922d41bcc8c12d17375222c706b3f864f8937ca947b33eb13216b1cd1d4119fa6de7e1a07c652671d20b1930ccf14c443223a4fb93848969465feaffc703347a5d5a9b68339e3951d3b8fc17c6045201af7e84a7026bc741592bd47768a793abe5009eb9427dfcfc4e4a9b9ae71f8582b0cd9c28c6270d5bbdf0f1415c722384808cc8fdaea65eb97d5fda8dd2014163598411c51495fd9fea5ae48c9e0d158217335c0181db4d196af623b5de7ebb1a0a71090e896c11b33cccd4515d1370b00ca48df5b855b8942cf35a8da12d4eb68b52ad786e2146383c54a13a3de979d03039e42a440c6d0db2a1509ccd1aa5097af5b15b49b90928d82e7b944d0750ac6d9433526e65d3ae79201b4a20175aa12692e4ba41c4733673a47e8ea44ed2b34d3ae80ca8b05aa159662f75ba748ef793aa184c8405796185ffb25ca4cb324f4f77610a3b372f5fad04ef85ab771f2f5efa3d95ca0074b9363b3b4095dacc04d48b9c86ebdfd94981a33b2fdb712409462aca416079a5daf92fd24374b6f3f76277fc36bd6d38832ae14db4711b0503fe12b647516d1df64c11962219c17ecc60fd25704a94742d6655e57ac9f89ae1db77fe8679b7f84b403e101d70352f1d80bba74c4aefe14cec35f4168d2e9c2625a0e692504299cf8ca875e7b45fd3c71df003628c3ac6616b3b1a8edb7879e5781877a9873b3885958edec9d1a7d24cc22c49047335dec3cf9b2821c267ac8dfaea3bdb3dde0fc7d1c1c96ce04f3bd5ddd7ec3ba253cc34e7df4a03d58e716b5bf8d681c65931407a60c28922aceff1edb45417bae99167d99e97669d68efddd00a867f5b3ce5763be30e07ff2cf8b15c90a6f656f717bc1b590231f48e3fc4a85124d43a1a811b6043604870e56b81f127db36a686eb77d612609f44b0fb262b17739fbb36c67ed305e114b7b595626e897af9d59acee1af38295c366bc32e3af59427dc11d5cd594add4e226d947ff26a2140f476a43695ebc8f73cf5b7efeb2ce46d63484b9f3ded774088a0a31cb2eeae9538bf0c071f572657f905b33d4b3fb5280879cab0bc5fc7a89be10a9118c419f974c454a37bb934bd488cb1ecbdcb2ac26094f90b8093fc75454317b92278eff430f6622cbb2c4f6a8a2ef5c7388b504a6cf89bf889990977fd4f5ea1a530131a8e2356e3f1db0d9f93d7a65af79f1fadc0b40279965522d47dfe154d62036ce4e53eeb6e96473d3e2f59ce1f54414af8bada3d9b6089e7a670c7418d0f906ddd8494bbea718fb91acd0fdd0f2c19746f4c1ff87167987f056a86f03aad8c11aec6ea967383c29b9c8bc6d4f46c9c2f44fa5a43f52cda78cf36f270a7a9c77c7007a55b6770847aa8cf4676ea9abcbb91ca9a41ad56682f3dae20ed1a67d75391caabdb66808b91e86b9db4a13f7935fff256b54818a589402967c2242a70afffbc7ca73116a1ca81a126d2d609174a93b16d1fa4d18bd6a4e277aa42a8551765b241d1e54174ba7993d1694d5a191b3036cab5eed5311403ba6de613b73beddc753359f7339417e4f07724c6ba1ce99a55c6b8ec72c0a4df4776146877309382d3af87c204ce86f54c2a7c1027adee9ab2e4f6bd205fb41d7d6b2fabf7308ced5c870f156aaa9dbd24f232ad85d6123426c5e5264b4418ebc7acf1cac380212f48dd87c2000f0f0c7e4a54c04523fb7cebbc50c26691ca8ab9748831851392864c02166f5e2f0c7d5d76b71908de9ba69a88b0bbaad0dcfb9e3ad8680275e35218a60227bfb6f773fea9570831db671ec8912abe6c6190499e0100232aba631b9ab148547041f1bfabec860d19ce987c019249f07bf3effcff35a6c5402a584f0a55a3a580aa8303aa9a67856f8cc27abdfde11fd2b8c5432a46fe2c3c08ae53ff42d1c545fb890d097d9b31437c53f6563fe416570b4cb3d5fb084d9ad4165e6eaa6a24a5b77dfd6c0962d233a2030427dcab08660143dc3853d3ae8907a21f812501b1e96fca4e4c73226827477ae9e5e87f88be74228afc7393d7ed98f090577db9d70158e3acc36e07f959d32de1e34b471e2732e384d6cc6fa6d3a218d0abd71af71993cff9e47793dc72d00c5d5079ad76e935c58d349f03c6a976ac204b4663324b63fba9fb7b4a048186d53f72012779b02ecc61faeed40494538a2df95f14be70f80e2c1072f56ccf59ff5d75dea6652ef90138b22c943fd4863e90216cf9ba84e69cbf43661031720bbc22e94bf2fa1dbfe8313487b4cf6cb31e9d26995471ab64a120e0eef82d95620890aaa48afa7acf4ba274dba1b5a1e37c1062fd70fab8218ceddaa8d10154e567c7cb8e5f4bb07c6c6065164c0b374b17c555f9c1ec8d108ae7ada1913db7a447e8ea3713d6e2fd6384ac3286d9941523e01d3fefb32cd65922f2113a5de4c7334657106a2c97a6282b22d7d67f39fd6601916b0d5bdcbe382fa786a3cf74b24cdbb5a2843b56ddb14d5514139b1cffcd68d45f9f082186e2ea8f774c899cbbaac2e6207cbe86645fb346fd360d94a2b61e0cf9d33778cf3b3aac5fbf29288fc065ea5a218b404b82c79098b48a8051d03b6f8c4df4843b665eaf6935ad0e703cd928d228a48b51d23afa1bde22b7655dd4d8fb73b2b10533d6da9b9fe6aac3d1e73e5157c0e33bae4f31f10212d7f87d9341e3090b3c7c8ef79efae8bb744a5f8db2bcedeceea81e8c23716e113bbd24722d6f33dfe6438006fadc9bab9809c5c5b3371994a55263a52e9bcdcd3665f8472bbc0c59d27c0a7d023763ca55f80b7a20014636be698a2f1e0a5ed5320b1591e0c1350fe41593942495ba1a214cf18dee3c73635d208a60737b253cc716d1cdf0c7546dab111bfdc0777c4ae297e9a35153e84d7c5411df5e134f2a128d5c0240aff77e076a1113214ee68fe0c294996944180a7a5c4c35ce341682cb31607c3cf5514b1f1035673f3475376a8cbf20b50cf3272a49c8aafda33fef13aa90781f9c14741886fbdda634205fa98c94dfe5f06533d17d772ec5be90243a24f1db46530fc8b8e167cec2276dc16cd755e371f85827f44da53114333abd41b2ea70faac6762d38b5751e243b2e01ce7d00dce1069419fde74c49ebfabf86eb696fc6f07a8b4f95683449416c9633f3ef6a2eba6a687291e2e7f48a3fd15bdd2187e7790fbfe684b5764d7ef0bb3ba99c2e120300cf58c408608ba6090e15539024787a0290083d808380214a8ecd11effcc05149e476b1ea5b82047411050068806e331171513c57713f0987133e155d3b312aadc9f243f8533fb07ce208d46c42604669ff4b8a28be3bc71f38b45081d262ec130a818d05d8a8b52cf923727f59380441524be1d3448223a2cccaabe7d86a88c4a9ad8683a42cadc41b4f26faa91d9c927edf30cb8137e74d7c8b40a9adc2567de40144ba8f86776a1ee234d02c56fbfecdc636aac44aa59d0392d8e8c13531350f2c4b5b6417db0667a557acca8f931d31a56c3b55f603e9646cc409dd54db6d89be0a7a5b5459639915bacc24885e4a1e2f3a805cd7a315f71601d5fcb2b658deaa676d77ad646003770df1be040641ff3391c4770e5461c38eb2b0eb58e9134de52e78d36c3dfd1ef42d9561b78116e70b3658ba7ff9411a7085b80a8082977d57e9df4851e5f7da33f06f7c47447bab0b4c7d3b9c9a511ff6d8ed4a26287d9ed154302ff6ed1aecaa226d60ded733eebc924ce2df1f7ada22a10db46e768918178cffc926b61544f59f6b0be26900a5204e97b6b91b16c227796f903e5e1d3924a4f3286579507a30a1486d7d186a2fd5059b2e83cecae0c7ae26dc7c262e717263c1599e7da38f3e3ce06abaf77876979c0835c859e101ff6fa4ab2a96e65a497cdf27b1df052d07bbe1bd4284d8f817d586667dca367a668a1904430ee1ca62098d919f0a4eea1244a8e4a7792c86165fdd8b9be99262d2f40ecda00a9a5afc1bde0e630814e8aef82176dcd37463e34e63c115d9d33012e497c41c22e98978ee1e4d44becb9df7920d9f8490427d020d602cc741a03284d01e81804714d46f13ac08e2a6a8677286fd66c528b985dc51d7b150417ce8fe991e2db228bca99fa6eecfe654307fda8a227ce880e7da556ffd3ed3adca545953da9c369033f2e819a1d66636fd1e9794bbd0d7a75e68c44c632eef85b205cab173aa5a9023ecbcdbdd43e4afc7ee5346075ee1bd79795245a8437d41496d3a25144af27fa026fc1b4135e28c753127fa19c147bc14c68b15fe170fff5b916eb069a414c069da3dd2640ddde8e819ae37b670ff42dca8010cced7373d0ee0c2fb05de16dc8959d172c4f467a25038b97fbf9e60bd3c40c73871d4114d6d81acb7d57552495c336e5da9b71b7872e9ebdf082023674118c3f94af6f05ab5e19ecd8ec055dd6eece56f850e902745173f758e2387c1464866348bbb5d436937192371564fd9769eb4542444ef4e60701594fbd6afc80fc7e0f7616ec8286fa1059395a2ff7ffd3fc434b84f23ca88fe44c8cf21e1b13b3f3f66543e71b855f3f785dfe1f954462fbcf57b591c0a725d27381251828d7fdf7e09bdbd625e89e98f61fb76d56ad69106510ecefa93853f0da630f7b4f324c17494d1fa51f94e9daa978b572065f6396a7f3d649060798b32b61ee7bc7ff03fdfd800e8dba8c9b0c8d51433972db34e0cc2666d54dacc4c1da366bfd58f5321f6daa88d4e49a450a75e2ae935471886bda66022b4167a743d8e7518fa2b427408f5c3278152f3d97404e34c2e0531a322518bea013e44c82546b135398263854cc3fa21f72389170c4e422e2e221c43634442eec3712c172f3b9a4e29c43d59ed1715391dc27f7254ac5918f9985288b5ff44a52c93c5663312331a3341fdff4d24607f91c4fc0cce634a4f69f686ab52ec6e36e41a1fc87af4eba40ab2da228194a6cc9b98f271f74666c47a3e371e866dd8a41293dd6474b2dde3f6bc452b010490e17cc4e7df92e7436788e7e60dda166a38314f18e631656862ff7ecdbb85cdad2dea4365443da5617877df6bad1abc1be597a2961df6cf34f5f110a60694b406e4ae9e48077132ed583f76b54f3c37108b19c47acc4bc02072a64a0da39bbbbd6f2110a8e925a63389d963057f466d02a10f6a6ba2112b74e28e0aae33b0f028c2270f1f07c42b25c812c3dc34f811b862c3485b4396cceca3ec6a62e47bd519533c30f3d9cf05b0ec9886f8abb796ce31b290ab6b515dcc7d7f3ab11582fff535ffe2746333c1d288f7a22ee36ed232f1a7d6dc3c825d86d211af3eecdfdea7cb7a4e5139ebec4a3b7e81518e76a6d8951bfb090705f21d158d89061815e7dba1cc8134e2f80955dc63f3fc0a5fb953b4ab05c22ca761092418c32725732e54dcf086430f6b114761b745ae8ab00127ca375ca08d7c4ff7e306f7bfeab6d87a7e43218c267ef145095fc7a1ad58a283007734de55aea229a24c63372ae40e32618468612464d61840d79d837722d8204ed09b9bda9f438df009c9a2e4584755dd4ad91a3378255e0b104258baf6175e7d9df45c3caa2aebfb5866e4d20fa09e06ab689903a1c1b622ea04f1208adbf7cd6ab7a53068441eab17dafb00a07bbd5083a6691f6f34a9fa82b1ded4660deaf67343ab9aaae5f70c0b5a287ba669f32a1431ede98ac58bb4f42ef2a23122cd6a3da7658174853a7400bbda3ea58ce0f5589a6d5eb45e0a17aedf12bb175a8d083492e768f52b23881e61f3492fc039e478a712918ff2b1721b9e6e7911e16539f6104fbd0457b5521391672f1e57cdc2632ace97d4e21372213d1546578f7c8c12218600d85bd53cc6a5f2a2b1e88400c55f13703df10ab28a327112404f4663b19c4e938acd3917bfa5580845d0060a9136dfd88000bc05d07476bda0742ced80e1f61103ac1a501cb648ec6ffcfb0c1ce6fcce6e97832a720eb621091f2bb8ca2535e4c4c2335d6cf8a88cdc484b19dd12a0cad69bcef70f1c5a416ea21ccdbaef497a4ae417370531e48fc48fd01106934b6fc6cfae0acfe78f208d5ecbb773707484b57768781f57126d774a75099b308035862572d3fbf86692d474bd92850405bfbb80dc8a525ff594bb0d908ceaa9f51b2ac7b41a2b4c45621b62b1e1ba55e394ee15c4c222598b4e58b8addf87474a3aa94e9233d36520ded5f6ede8be6c32d38af2f8a0fb27562b2e3330490d46047e0a2d383830c2b0525c049d3005888bbbd247162275b157e440942b37eaf4abb9a4d22ef15d6d3009096d9b3d6732c35c2878e4c2fc905f2d961bf3700f0c08740249b57a18be63a18ff2fd7340fa3baa719839cf8eaa389a2f3b81af202c4a9abbdd030bfaef70cb65fc961bb579ed400e648cd8c1b100b289c38067a6d422c1a0a9f027795eecdaa7230d6e0662d0f59ab1cb0671b3b99ec12b65771f0c7416456b99537d10779d496f17e0c04160e879a5d089adf6f8060d92c44039ef2475f4647b5f3b30335ba2a50403d09644a00122d3bf7553c8eccb0e8dc612a83e6e5a7acab9f014fbbc712623ea86edc9bec0e4c392efaea3c56bb5ec45832ccbe6329509a6800ee36e85bb3b65dcf5aff9aa2db6569a230cdf1296e815d717191bad83ba31c1e42b69c6a5cd214739b1af105a244283c59c4f60d730fe6835ca983f3bea050012d6b6bc13a70591950de0d0d8857c200b61158a13f2c2d2536a379b7b4ac302ffbc78e9769e324c6ebfd567f5f4c2b053f7b59b6b07285194526d40ca6a5c4c376fa127b6b100489ce5266ebafa0cdec24b5bd7a22f295402303f8d1ddc3d1427d4c3beece3309d55f138d878c8054b259c53e59489f5f3610b3784489cdfa6083867a92a5f7e30826a6f590b9c809020c0f8eb73b70a971c050a70af2ca3a70573554b97c60037872df3e5c3f2e91103827306e72fbf1b072250e432b7bf8a5540783a2848724989eb86670e1f5b0675a39f7b1548260fd211d9c05e48e1a3df852842c477a36bbbac07317246dc8b4c3383227485556992735bfea38ef7a8a3a372464dc0ee6b9a09548a37dce62d563d04eaec5cb54c9614170e0811b53fd05dbd192744f74b5e0e3cc1b29dc0755ae4fc0c14ae8927f72864a796e65130e05d012336a96e5b15f17ae6258c67ecab6505bc1a26c00d5010e86f243412ca4264da4ed41670238faca1d7c7ed6ae74cc104ff3f9c045ce7efad15db83c3f5bbf001507caf3e6ee0a11a9c10205d91a7bbc12b2a91065352440a18493315df7dfa671bf8e1bd6d67119fbc3bb69d5661a43481b00ee60dab9d725f7f166ff989a0cbe21ec7f0007bf09cf5b5bc65b5835c4d0bfe6981616dffe0eae36d5b8c39d14645801919bc537212fb941ebe346bcb5037cf8b894ca92a0682fb2b37f08609a4a9465f0c423250343fc2367da64b690e273293431a36813cea94de5cf411c5c3c0265239aafb8fbe45c55fabd94baf7053023d1b0f647abcc07be35fa5a0c3aba2da35f6c2d8a739beccd96916cd30bdd8533411a425ae30b5d02b8d79c3622118641fb8551a31e1c1f4a0551d2b57eeee4097e9c48e09481c228bef6aa3c4aa7b9e72e8731cbc57a20a9e3417ec718c6d57a401d3c04ee2e4066d6d950149e277dc2bdaa23879b2c5135611d82ad8d20a4b2235c09da69fbd9878cbc52b25622165e0ab3bffe476eb2884629596dc865f6b13ba510cb375e59195636deeeb06786a7c9904ccdc58eb8664fe7b4d32bcb9fc8ab135c25ee2c22837c6c3a8c116e8fdcfc310799d0fc974e43d3a73fa0f8bd9057a1465823567f681c1d2e6c4a33770a4dccd06bce94b0af0e4d198b040d8094d610bbbd4501d8da6028b5e73f135cba6a8d7bb6cab2f06576eacd823e520282f9f883634a6dd4cc4810cba3f760b9842a0acae7a396892b658e3b6c84d0e75196b4e6a3240e9d2aadf257ae970153238e347d3cbcbfabae300494ea0d1bf292799e09b8064ed885cce1574ee94c216c50017c43b3407716e5919fa0706fc9e9c382bb321e8d6fa2520543d0427a620bb45c56d3f7e66aa025f17863024a2bd693d932bacfa516fec791e86982d020faa819bf2264f8606ef260a29af16300971d0ec49d6f5a21f9c437b75b44eb59bbaf71947621a1e78c68e2767dd42c7f6e3dd6faeebfc8fdfe4dec6db3fdd2d53c906f6040278ea235b37442f34cfa1a1f1064acce6a7cdb9657c1ea2def6c1f2220ab57ececfe53b4bdb6e57afaac1c055f25202c1efa65b3e48f5b57dcd2b7f3572d1d96a736813ca6acc75c967a89edc5dd62eea64cd46eeab6aa879887360aec466dd287705497e832bd4eb3d73524e4847c18f8b46de1a88a00dfa43acf51fe97288d53e30c6f2739b4532c6e8f7286a25c5f5f10532fee71d7c1c1f6a1c56f2535d94e2dd774f424cab2bf3673e097fd3cfb55ba1f29a6d03dc31abc214a6dc5950824f05f0a3036690120684a7117d42e9d40b56f3738428540c27f25ce4130966fc9b08f831756d5448be9ad7d07b95bfe61fb396438bba4ccaffa7a8a21edc5324d72514427a75a3619e48400e1b13a97ae7097f87c9253035ac3a1e3bf6d22725d22e31b7e0c9515f98f34ba357cc136190f81c010f83306d97a89184656bef128a648b9878bbefc508a631f949d8540ed16aead49d51911901d74d7aa9649317356ebd2ac0441be95291c1c2ba803b2e4604ac4b09e29fc6200819fb2603b46dbe929e4cc661c4f31a6cdc94a81fa62eb28bf447fe2ddbbb3d5f2b97d4189ffe5d83bc8be19ee5c92b958488a55c859d7eb5885674bd351c4125a02151529e9ab01685f2e4bba3aef0d5e9ad8678dab470d761beb8785424d51c4aa728417d1edc7cc44d8c7f2f5a09c68f940fc72a4ed2952e1985b2727befdf551d95e8d43e4dcab6f65b12ea706cbc10e5354a894e7646118e60", 0x2000, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x78, 0x0, 0xfffffffffffffffe, {0xfff, 0xc, 0x0, {0x5, 0x6, 0x1, 0x2c58c9da, 0x1e93, 0x4, 0x200, 0x8002, 0xe26, 0x8000, 0x4, 0x0, 0x0, 0xc8, 0x80000003}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
lseek(0xffffffffffffffff, 0x0, 0x2)

2.039727769s ago: executing program 0 (id=2124):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x1ffffffffffffe31, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000900008500000043000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r4}, 0x18)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.824309168s ago: executing program 5 (id=2125):
clock_nanosleep(0xfffffff2, 0x3, &(0x7f0000000400), 0x0)

1.742291206s ago: executing program 2 (id=2126):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100"/260], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r0, 0x1000)
r1 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
r2 = dup3(r1, r0, 0x80000)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(r2, 0x3ba0, 0x0)

1.172896964s ago: executing program 0 (id=2127):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = getpid()
setrlimit(0xb, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)={0x28, 0x2, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0x9}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x0, 0x2}}, @NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0xb}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000010}, 0x20040020)

1.166380327s ago: executing program 5 (id=2128):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x15)
syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1.151807101s ago: executing program 4 (id=2129):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-avx2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f00000009c0)=[{0x0}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722", 0x44}], 0x2}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f0000000200)=""/83, 0x53}], 0x2}, 0x2003)

1.040238163s ago: executing program 4 (id=2130):
r0 = syz_open_dev$evdev(0x0, 0x0, 0x2002)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES16=r0, @ANYBLOB='\x00'/25], 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
sync_file_range(r1, 0x0, 0x0, 0x0)
eventfd(0x80200003)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x6, 0x100000b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r2 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000100), 0x8001, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write$6lowpan_control(r2, 0x0, 0x0)
r3 = syz_io_uring_setup(0x286, &(0x7f0000000440)={0x0, 0xfad9, 0x400, 0x0, 0x0, 0x0, r2}, &(0x7f0000000340)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r6, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000980)={0x38, 0x1412, 0x1, 0x70bd27, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x8000001}]}, 0x38}, 0x1, 0x0, 0x0, 0x40084}, 0x810)
syz_io_uring_submit(r4, r5, 0x0)
r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r7, 0x0, 0x0)
prctl$PR_GET_TSC(0x43, &(0x7f0000000040))
write$sysctl(r7, &(0x7f0000000000)='2\x00', 0x2)
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x154)
openat$fuse(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)

725.234661ms ago: executing program 1 (id=2131):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000003, 0x13, r2, 0x0)
ioperm(0x284, 0x7f, 0xe3)
ioperm(0x7fffffff, 0x1, 0x8)
r3 = socket$netlink(0x10, 0x3, 0x0)
gettid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = dup(0xffffffffffffffff)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x7aad, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r4}, 0x0, &(0x7f00000001c0))
recvmsg(r3, &(0x7f00000006c0)={&(0x7f0000000200)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000680)=[{&(0x7f0000000480)=""/232, 0xe8}, {&(0x7f0000000580)=""/252, 0xfc}, {&(0x7f0000000280)=""/42, 0x2a}, {&(0x7f00000007c0)=""/209, 0xd1}, {0x0}, {&(0x7f0000000380)=""/178, 0xb2}, {&(0x7f00000008c0)=""/232, 0xe8}], 0x7, &(0x7f00000009c0)=""/194, 0xc2}, 0x2001)
r5 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r6 = add_key$keyring(&(0x7f0000002900), &(0x7f0000002940)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f00000028c0)='asymmetric\x00', &(0x7f0000002980)=@keyring={'key_or_keyring:', r6})

150.868752ms ago: executing program 0 (id=2132):
prlimit64(0x0, 0x2, &(0x7f0000000040)={0x1000000000000009, 0xffffffffffffffff}, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001480)='/proc/bus/input/handlers\x00', 0x0, 0x0)
read$hiddev(r0, &(0x7f00000000c0)=""/4079, 0xfef)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x34, 0xd, 0x6, 0x3, 0x0, 0x0, {0x230e3fbb2e9b3af1, 0x0, 0x1}, [@IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x90024}, 0x880)
preadv(r0, &(0x7f0000001300)=[{&(0x7f0000000040)=""/17, 0x11}], 0x1, 0x0, 0x0)
read$hiddev(r0, &(0x7f0000001100)=""/234, 0xea)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000409000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
brk(0x200000ff8000)
io_setup(0xd6, &(0x7f0000000200))
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x8, 0x3, 0x268, 0x100, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1f0, 0xffffffff, 0xffffffff, 0x1f0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev, [], [], 'batadv0\x00', 'wg1\x00', {}, {0x101}, 0x6}, 0x0, 0xa8, 0xd0, 0x0, {0x0, 0x4c00}}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@uncond, 0x0, 0xa8, 0xc8}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2c8)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c)
r7 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r7, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c)
accept4(r6, 0x0, 0x0, 0x800)
close_range(r5, 0xffffffffffffffff, 0x0)

0s ago: executing program 5 (id=2133):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, 0x0, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000180)={@empty}, 0x14)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.155' (ED25519) to the list of known hosts.
[   80.487508][ T5784] cgroup: Unknown subsys name 'net'
[   80.738298][ T5784] cgroup: Unknown subsys name 'cpuset'
[   80.794626][ T5784] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   82.649923][ T5784] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   86.362610][ T5808] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   86.398503][ T5818] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   86.407929][ T5811] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   86.411685][ T5811] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   86.412500][ T5811] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   86.418094][ T5811] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   86.425928][ T5811] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   86.429163][ T5821] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   86.430699][ T5821] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   86.432429][ T5821] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   86.433324][ T5821] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   86.434750][ T5821] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   86.440071][ T5821] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   86.441356][ T5821] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   86.442030][ T5821] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   86.442259][ T5821] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   86.445613][ T5821] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   86.453011][ T5820] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   86.479574][ T5811] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   86.485712][ T5811] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   86.491049][ T5822] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   86.492266][ T5811] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   86.497966][ T5808] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   86.500116][ T5822] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   86.554221][ T5816] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.940247][   T31] cfg80211: failed to load regulatory.db
[   87.498711][ T5803] chnl_net:caif_netlink_parms(): no params data found
[   87.526324][ T5801] chnl_net:caif_netlink_parms(): no params data found
[   87.828149][ T5806] chnl_net:caif_netlink_parms(): no params data found
[   87.832637][ T5802] chnl_net:caif_netlink_parms(): no params data found
[   87.864939][ T5804] chnl_net:caif_netlink_parms(): no params data found
[   88.442309][ T5803] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.443142][ T5803] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.444466][ T5803] bridge_slave_0: entered allmulticast mode
[   88.447310][ T5803] bridge_slave_0: entered promiscuous mode
[   88.475510][ T5801] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.475607][ T5801] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.475729][ T5801] bridge_slave_0: entered allmulticast mode
[   88.477115][ T5801] bridge_slave_0: entered promiscuous mode
[   88.491643][ T5803] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.491764][ T5803] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.492020][ T5803] bridge_slave_1: entered allmulticast mode
[   88.495416][ T5803] bridge_slave_1: entered promiscuous mode
[   88.518150][ T5801] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.518517][ T5801] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.518690][ T5801] bridge_slave_1: entered allmulticast mode
[   88.521479][ T5801] bridge_slave_1: entered promiscuous mode
[   88.535295][ T5116] Bluetooth: hci2: command tx timeout
[   88.615168][ T5116] Bluetooth: hci0: command tx timeout
[   88.693663][ T5116] Bluetooth: hci1: command tx timeout
[   88.704148][ T5822] Bluetooth: hci4: command tx timeout
[   88.704398][ T5116] Bluetooth: hci3: command tx timeout
[   89.259140][ T5803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.259383][ T5806] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.259574][ T5806] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.260060][ T5806] bridge_slave_0: entered allmulticast mode
[   89.261541][ T5806] bridge_slave_0: entered promiscuous mode
[   89.289616][ T5802] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.289734][ T5802] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.289909][ T5802] bridge_slave_0: entered allmulticast mode
[   89.292386][ T5802] bridge_slave_0: entered promiscuous mode
[   89.301275][ T5801] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.302899][ T5804] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.303016][ T5804] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.303191][ T5804] bridge_slave_0: entered allmulticast mode
[   89.308461][ T5804] bridge_slave_0: entered promiscuous mode
[   89.317085][ T5803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.376265][ T5806] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.376413][ T5806] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.376562][ T5806] bridge_slave_1: entered allmulticast mode
[   89.378042][ T5806] bridge_slave_1: entered promiscuous mode
[   89.379142][ T5802] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.379242][ T5802] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.379353][ T5802] bridge_slave_1: entered allmulticast mode
[   89.380770][ T5802] bridge_slave_1: entered promiscuous mode
[   89.438674][ T5801] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.439090][ T5804] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.439203][ T5804] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.439339][ T5804] bridge_slave_1: entered allmulticast mode
[   89.440740][ T5804] bridge_slave_1: entered promiscuous mode
[   90.277167][ T5803] team0: Port device team_slave_0 added
[   90.280186][ T5806] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.283149][ T5802] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.286339][ T5801] team0: Port device team_slave_0 added
[   90.290460][ T5804] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.292916][ T5803] team0: Port device team_slave_1 added
[   90.297399][ T5806] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.300231][ T5801] team0: Port device team_slave_1 added
[   90.546958][ T5802] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.549140][ T5804] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.615042][ T5116] Bluetooth: hci2: command tx timeout
[   90.693801][ T5116] Bluetooth: hci0: command tx timeout
[   90.773769][ T5822] Bluetooth: hci4: command tx timeout
[   90.773803][ T5822] Bluetooth: hci1: command tx timeout
[   90.774830][ T5116] Bluetooth: hci3: command tx timeout
[   90.866128][ T5803] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.866141][ T5803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.866159][ T5803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.869868][ T5806] team0: Port device team_slave_0 added
[   90.870806][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.870820][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   90.870842][ T5801] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.215411][ T5803] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.215429][ T5803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.215453][ T5803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.217740][ T5806] team0: Port device team_slave_1 added
[   91.218416][ T5801] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.218427][ T5801] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.218440][ T5801] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.220221][ T5802] team0: Port device team_slave_0 added
[   91.221782][ T5804] team0: Port device team_slave_0 added
[   91.422295][ T5802] team0: Port device team_slave_1 added
[   91.425002][ T5804] team0: Port device team_slave_1 added
[   91.636548][ T5806] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.636561][ T5806] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.636574][ T5806] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.897415][ T5806] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.897428][ T5806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.897442][ T5806] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.005011][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.005023][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.005037][ T5802] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.006102][ T5804] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.006116][ T5804] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.006140][ T5804] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.235344][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.235360][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.235383][ T5802] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.236342][ T5804] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.236352][ T5804] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.236365][ T5804] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.370172][ T5803] hsr_slave_0: entered promiscuous mode
[   92.371273][ T5803] hsr_slave_1: entered promiscuous mode
[   92.390210][ T5801] hsr_slave_0: entered promiscuous mode
[   92.391012][ T5801] hsr_slave_1: entered promiscuous mode
[   92.391684][ T5801] debugfs: 'hsr0' already exists in 'hsr'
[   92.391770][ T5801] Cannot create hsr debugfs directory
[   92.693679][ T5116] Bluetooth: hci2: command tx timeout
[   92.773717][ T5116] Bluetooth: hci0: command tx timeout
[   92.826197][ T5806] hsr_slave_0: entered promiscuous mode
[   92.827238][ T5806] hsr_slave_1: entered promiscuous mode
[   92.827755][ T5806] debugfs: 'hsr0' already exists in 'hsr'
[   92.827777][ T5806] Cannot create hsr debugfs directory
[   92.853625][ T5822] Bluetooth: hci1: command tx timeout
[   92.853635][ T5816] Bluetooth: hci4: command tx timeout
[   92.853719][ T5116] Bluetooth: hci3: command tx timeout
[   93.110230][ T5802] hsr_slave_0: entered promiscuous mode
[   93.114965][ T5802] hsr_slave_1: entered promiscuous mode
[   93.115928][ T5802] debugfs: 'hsr0' already exists in 'hsr'
[   93.115951][ T5802] Cannot create hsr debugfs directory
[   93.125519][ T5804] hsr_slave_0: entered promiscuous mode
[   93.126835][ T5804] hsr_slave_1: entered promiscuous mode
[   93.127777][ T5804] debugfs: 'hsr0' already exists in 'hsr'
[   93.127803][ T5804] Cannot create hsr debugfs directory
[   94.466609][ T5803] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   94.512736][ T5803] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   94.547875][ T5803] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   94.595847][ T5803] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   94.729959][ T5806] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   94.769648][ T5806] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   94.773740][ T5116] Bluetooth: hci2: command tx timeout
[   94.832703][ T5806] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   94.853823][ T5116] Bluetooth: hci0: command tx timeout
[   94.858569][ T5806] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   94.933637][ T5116] Bluetooth: hci4: command tx timeout
[   94.934301][ T5816] Bluetooth: hci1: command tx timeout
[   94.934343][ T5116] Bluetooth: hci3: command tx timeout
[   95.011661][ T5804] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   95.037476][ T5804] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   95.077347][ T5804] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   95.125540][ T5804] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   95.284407][ T5802] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   95.330618][ T5802] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   95.373217][ T5802] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   95.412507][ T5802] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   95.481395][ T5803] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.522563][ T5801] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   95.550003][ T5801] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   95.592725][ T5801] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   95.638294][ T5801] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   95.700320][ T5803] 8021q: adding VLAN 0 to HW filter on device team0
[   95.741494][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.742420][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.776307][ T5806] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.781555][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.781682][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.879862][ T5806] 8021q: adding VLAN 0 to HW filter on device team0
[   95.902459][ T5804] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.944395][  T992] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.944624][  T992] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.991245][ T3765] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.991375][ T3765] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.030146][ T5804] 8021q: adding VLAN 0 to HW filter on device team0
[   96.056865][ T5802] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.069959][  T992] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.071528][  T992] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.112159][ T3765] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.112250][ T3765] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.191911][ T5802] 8021q: adding VLAN 0 to HW filter on device team0
[   96.248845][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.249058][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.271377][ T5801] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.325419][ T3498] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.325649][ T3498] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.417160][ T5801] 8021q: adding VLAN 0 to HW filter on device team0
[   96.455226][  T992] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.456695][  T992] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.527784][  T992] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.527954][  T992] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.571575][ T5803] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.902471][ T5803] veth0_vlan: entered promiscuous mode
[   96.939738][ T5806] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.956587][ T5804] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.979250][ T5803] veth1_vlan: entered promiscuous mode
[   97.149664][ T5803] veth0_macvtap: entered promiscuous mode
[   97.179748][ T5806] veth0_vlan: entered promiscuous mode
[   97.190761][ T5803] veth1_macvtap: entered promiscuous mode
[   97.192011][ T5804] veth0_vlan: entered promiscuous mode
[   97.198525][ T5802] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.237273][ T5806] veth1_vlan: entered promiscuous mode
[   97.252729][ T5804] veth1_vlan: entered promiscuous mode
[   97.278986][ T5801] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.296772][ T5803] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.333034][ T5803] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.385834][  T992] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.389739][  T992] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.392651][  T992] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.444165][  T992] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.536194][ T5806] veth0_macvtap: entered promiscuous mode
[   97.611773][ T5804] veth0_macvtap: entered promiscuous mode
[   97.628161][ T5806] veth1_macvtap: entered promiscuous mode
[   97.689856][ T5804] veth1_macvtap: entered promiscuous mode
[   97.748864][ T5801] veth0_vlan: entered promiscuous mode
[   97.801720][ T5806] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.838158][ T2085] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.838185][ T2085] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.865079][ T5806] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.866568][ T5804] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.876332][ T5801] veth1_vlan: entered promiscuous mode
[   97.907595][ T5804] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.941023][  T992] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.959997][  T992] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.965969][  T992] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.982938][  T992] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.994546][ T2085] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.994564][ T2085] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.051939][  T992] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.052707][ T5802] veth0_vlan: entered promiscuous mode
[   98.105641][  T992] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.107489][  T992] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.111952][  T992] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.207870][ T5802] veth1_vlan: entered promiscuous mode
[   98.395535][ T5801] veth0_macvtap: entered promiscuous mode
[   98.483238][ T5801] veth1_macvtap: entered promiscuous mode
[   98.508793][  T815] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.508815][  T815] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.597782][ T3547] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.597809][ T3547] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.627447][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.628387][ T5802] veth0_macvtap: entered promiscuous mode
[   98.684679][ T5801] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.702541][ T5802] veth1_macvtap: entered promiscuous mode
[   98.727495][ T3498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.727517][ T3498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.991562][ T3547] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.002743][ T3547] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.013601][ T3547] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.013907][ T3498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.013924][ T3498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.606948][ T3547] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.786095][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.893268][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.923584][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   99.933561][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   99.943532][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   99.953547][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   99.959762][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   99.963517][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   99.973536][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   99.983511][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   99.993516][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  100.003540][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  101.472708][ T5929] serio: Serial port ptm0
[  101.618732][ T3498] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.618781][ T3498] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.618814][ T3498] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.618855][ T3498] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.049927][  T815] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.049948][  T815] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.269480][ T3498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.269496][ T3498] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.438404][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.438424][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.686825][   T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.686846][   T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.186419][ T5997] netlink: 32 bytes leftover after parsing attributes in process `syz.0.31'.
[  110.289321][ T6051] sit0: entered promiscuous mode
[  110.312201][ T6051] netlink: 'syz.3.47': attribute type 1 has an invalid length.
[  110.312227][ T6051] netlink: 1 bytes leftover after parsing attributes in process `syz.3.47'.
[  110.532902][  T805] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  110.928616][  T805] usb 2-1: Using ep0 maxpacket: 16
[  110.948427][  T805] usb 2-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[  110.948458][  T805] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.948477][  T805] usb 2-1: Product: syz
[  110.948491][  T805] usb 2-1: Manufacturer: syz
[  110.948505][  T805] usb 2-1: SerialNumber: syz
[  112.026585][  T805] usb 2-1: config 0 descriptor??
[  112.146675][ T6066] netlink: 12 bytes leftover after parsing attributes in process `syz.4.54'.
[  112.263846][ T6022] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  112.337669][  T805] speedtch 2-1:0.0: speedtch_bind: data interface not found!
[  112.337695][  T805] speedtch 2-1:0.0: usbatm_usb_probe: bind failed: -19!
[  112.443765][ T6022] usb 3-1: Using ep0 maxpacket: 8
[  112.447890][ T6022] usb 3-1: config 0 has an invalid interface number: 24 but max is 0
[  112.447918][ T6022] usb 3-1: config 0 has no interface number 0
[  112.557342][ T6022] usb 3-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65
[  112.557370][ T6022] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.557388][ T6022] usb 3-1: Product: syz
[  112.557401][ T6022] usb 3-1: Manufacturer: syz
[  112.557414][ T6022] usb 3-1: SerialNumber: syz
[  112.592215][   T10] usb 2-1: USB disconnect, device number 2
[  113.287357][ T6077] netlink: 14560 bytes leftover after parsing attributes in process `syz.4.58'.
[  113.906321][ T6022] usb 3-1: config 0 descriptor??
[  113.925733][ T6022] usb 3-1: can't set config #0, error -71
[  113.966925][ T6022] usb 3-1: USB disconnect, device number 2
[  115.454663][ T6111] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  115.745032][ T6119] netlink: 40 bytes leftover after parsing attributes in process `syz.2.73'.
[  116.979713][ T6131] netlink: 348 bytes leftover after parsing attributes in process `syz.0.75'.
[  117.463771][ T6011] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  117.783616][ T6011] usb 3-1: Using ep0 maxpacket: 8
[  117.787481][ T6011] usb 3-1: config 0 has an invalid interface number: 24 but max is 0
[  117.787506][ T6011] usb 3-1: config 0 has no interface number 0
[  117.793034][ T6011] usb 3-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65
[  117.793055][ T6011] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.793065][ T6011] usb 3-1: Product: syz
[  117.793073][ T6011] usb 3-1: Manufacturer: syz
[  117.793080][ T6011] usb 3-1: SerialNumber: syz
[  118.406743][ T6011] usb 3-1: config 0 descriptor??
[  119.892623][ T6011] pegasus 3-1:0.24: probe with driver pegasus failed with error -32
[  120.085623][ T6011] usb 3-1: USB disconnect, device number 3
[  120.325660][ T6167] netlink: 40 bytes leftover after parsing attributes in process `syz.1.84'.
[  121.718544][ T6182] IPv6: addrconf: prefix option has invalid lifetime
[  122.084987][ T6011] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  122.198490][ T6194] netlink: 'syz.2.91': attribute type 2 has an invalid length.
[  122.996087][ T6011] usb 5-1: config 0 has an invalid interface number: 189 but max is 0
[  122.996115][ T6011] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  122.996134][ T6011] usb 5-1: config 0 has no interface number 0
[  123.000903][ T6011] usb 5-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  123.000931][ T6011] usb 5-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  123.000950][ T6011] usb 5-1: Product: syz
[  123.000964][ T6011] usb 5-1: SerialNumber: syz
[  124.312419][ T6011] usb 5-1: config 0 descriptor??
[  124.312990][ T6011] usb 5-1: can't set config #0, error -71
[  124.327560][ T6011] usb 5-1: USB disconnect, device number 2
[  124.423633][   T31] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  124.573599][   T31] usb 2-1: Using ep0 maxpacket: 8
[  124.576233][   T31] usb 2-1: config 0 has an invalid interface number: 24 but max is 0
[  124.576260][   T31] usb 2-1: config 0 has no interface number 0
[  124.579474][   T31] usb 2-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65
[  124.579502][   T31] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.579521][   T31] usb 2-1: Product: syz
[  124.579535][   T31] usb 2-1: Manufacturer: syz
[  124.579549][   T31] usb 2-1: SerialNumber: syz
[  124.590847][   T31] usb 2-1: config 0 descriptor??
[  125.696714][   T31] pegasus 2-1:0.24: probe with driver pegasus failed with error -32
[  125.867570][ T6220] netlink: 40 bytes leftover after parsing attributes in process `syz.3.99'.
[  125.983237][ T6224] IPv6: addrconf: prefix option has invalid lifetime
[  126.715745][ T6235] netlink: 'syz.2.105': attribute type 2 has an invalid length.
[  127.295411][   T56] usb 2-1: USB disconnect, device number 3
[  128.391272][ T6245] bridge0: port 3(gretap0) entered blocking state
[  128.391393][ T6245] bridge0: port 3(gretap0) entered disabled state
[  128.391594][ T6245] gretap0: entered allmulticast mode
[  128.393379][ T6245] gretap0: entered promiscuous mode
[  128.436533][ T6245] bridge0: port 3(gretap0) entered blocking state
[  128.494986][ T6245] bridge0: port 3(gretap0) entered forwarding state
[  129.571425][ T5888] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  129.609753][ T6262] loop9: detected capacity change from 0 to 7
[  129.659630][ T6262]  loop9: [POWERTEC] p1
[  129.661094][ T6262] loop9: p1 start 1986342512 is beyond EOD, truncated
[  129.805822][ T6266] netlink: 40 bytes leftover after parsing attributes in process `syz.0.114'.
[  129.924443][ T6268] IPv6: addrconf: prefix option has invalid lifetime
[  129.986217][ T5888] usb 2-1: config 0 has an invalid interface number: 189 but max is 0
[  129.986244][ T5888] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  129.986261][ T5888] usb 2-1: config 0 has no interface number 0
[  129.988509][ T5888] usb 2-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  129.988540][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  129.988558][ T5888] usb 2-1: Product: syz
[  129.988571][ T5888] usb 2-1: SerialNumber: syz
[  130.101136][ T5888] usb 2-1: config 0 descriptor??
[  130.119048][ T5888] ums-alauda 2-1:0.189: USB Mass Storage device detected
[  131.917654][ T5932] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  132.387182][ T5932] usb 1-1: Using ep0 maxpacket: 8
[  132.391955][ T5932] usb 1-1: config 0 has an invalid interface number: 24 but max is 0
[  132.391981][ T5932] usb 1-1: config 0 has no interface number 0
[  132.432929][ T5932] usb 1-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65
[  132.432958][ T5932] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.432976][ T5932] usb 1-1: Product: syz
[  132.432990][ T5932] usb 1-1: Manufacturer: syz
[  132.433003][ T5932] usb 1-1: SerialNumber: syz
[  132.472608][ T5932] usb 1-1: config 0 descriptor??
[  132.586250][ T5888] usb 2-1: USB disconnect, device number 4
[  133.037871][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  133.038038][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  134.408477][ T5932] pegasus 1-1:0.24: probe with driver pegasus failed with error -71
[  134.426552][ T5932] usb 1-1: USB disconnect, device number 2
[  134.470415][ T6189] udevd[6189]: setting owner of /dev/bus/usb/001/002 to uid=0, gid=0 failed: No such file or directory
[  134.928566][ T6308] IPv6: addrconf: prefix option has invalid lifetime
[  134.997706][ T6307] netlink: 40 bytes leftover after parsing attributes in process `syz.2.126'.
[  135.523086][ T6323] netlink: 'syz.0.130': attribute type 2 has an invalid length.
[  138.847961][ T6343] bridge0: port 3(gretap0) entered blocking state
[  138.849382][ T6343] bridge0: port 3(gretap0) entered disabled state
[  138.849598][ T6343] gretap0: entered allmulticast mode
[  138.852109][ T6343] gretap0: entered promiscuous mode
[  138.853122][ T6343] bridge0: port 3(gretap0) entered blocking state
[  138.853245][ T6343] bridge0: port 3(gretap0) entered forwarding state
[  139.351478][ T5888] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  139.713599][ T5888] usb 1-1: device not accepting address 3, error -71
[  139.757394][ T6364] IPv6: addrconf: prefix option has invalid lifetime
[  139.761373][ T6365] netlink: 40 bytes leftover after parsing attributes in process `syz.1.143'.
[  141.923611][ T5786] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  142.083952][ T5786] usb 4-1: config 0 has an invalid interface number: 189 but max is 0
[  142.083980][ T5786] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  142.083998][ T5786] usb 4-1: config 0 has no interface number 0
[  142.086281][ T5786] usb 4-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  142.086308][ T5786] usb 4-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  142.086326][ T5786] usb 4-1: Product: syz
[  142.086339][ T5786] usb 4-1: SerialNumber: syz
[  142.151258][ T5786] usb 4-1: config 0 descriptor??
[  142.178937][ T5786] ums-alauda 4-1:0.189: USB Mass Storage device detected
[  144.061085][ T6407] bridge0: port 3(gretap0) entered blocking state
[  144.063050][ T6407] bridge0: port 3(gretap0) entered disabled state
[  144.067270][ T6407] gretap0: entered allmulticast mode
[  144.090778][ T6407] gretap0: entered promiscuous mode
[  144.104926][ T6407] bridge0: port 3(gretap0) entered blocking state
[  144.108608][ T6407] bridge0: port 3(gretap0) entered forwarding state
[  144.653749][    T9] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  144.696890][ T5786] usb 4-1: USB disconnect, device number 2
[  144.804818][    T9] usb 1-1: Using ep0 maxpacket: 8
[  144.810345][    T9] usb 1-1: config 0 has an invalid interface number: 24 but max is 0
[  144.810371][    T9] usb 1-1: config 0 has no interface number 0
[  144.817407][    T9] usb 1-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65
[  144.817435][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.817453][    T9] usb 1-1: Product: syz
[  144.817466][    T9] usb 1-1: Manufacturer: syz
[  144.817479][    T9] usb 1-1: SerialNumber: syz
[  144.836171][    T9] usb 1-1: config 0 descriptor??
[  145.005090][    T9] pegasus 1-1:0.24: probe with driver pegasus failed with error -71
[  145.073839][    T9] usb 1-1: USB disconnect, device number 5
[  145.126086][ T6412] IPv6: addrconf: prefix option has invalid lifetime
[  145.212464][ T6415] netlink: 24 bytes leftover after parsing attributes in process `syz.4.157'.
[  145.682704][ T6422] netlink: 4 bytes leftover after parsing attributes in process `syz.0.158'.
[  145.721875][ T6422] netlink: 4 bytes leftover after parsing attributes in process `syz.0.158'.
[  146.654643][ T6431] hub 6-0:1.0: USB hub found
[  146.667066][ T6431] hub 6-0:1.0: 1 port detected
[  149.464278][ T6456] IPv6: addrconf: prefix option has invalid lifetime
[  149.680098][ T6023] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  150.397002][ T6023] usb 2-1: config 0 has an invalid interface number: 189 but max is 0
[  150.397036][ T6023] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  150.397054][ T6023] usb 2-1: config 0 has no interface number 0
[  150.399537][ T6023] usb 2-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  150.399564][ T6023] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  150.399583][ T6023] usb 2-1: Product: syz
[  150.399596][ T6023] usb 2-1: SerialNumber: syz
[  150.406988][ T6463] netlink: 24 bytes leftover after parsing attributes in process `syz.4.172'.
[  150.606722][ T6023] usb 2-1: config 0 descriptor??
[  150.623623][ T6023] usb 2-1: can't set config #0, error -71
[  150.642563][ T6023] usb 2-1: USB disconnect, device number 6
[  151.001313][ T6475] hub 6-0:1.0: USB hub found
[  151.008618][ T6475] hub 6-0:1.0: 1 port detected
[  152.115439][ T6485] Zero length message leads to an empty skb
[  152.317536][ T6489] netlink: 4 bytes leftover after parsing attributes in process `syz.2.173'.
[  152.318451][ T6489] netlink: 4 bytes leftover after parsing attributes in process `syz.2.173'.
[  153.567884][ T6498] IPv6: addrconf: prefix option has invalid lifetime
[  155.218349][ T5923] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  155.367692][ T5923] usb 1-1: config 0 has an invalid interface number: 189 but max is 0
[  155.367719][ T5923] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.367735][ T5923] usb 1-1: config 0 has no interface number 0
[  155.369498][ T5923] usb 1-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  155.369524][ T5923] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  155.369543][ T5923] usb 1-1: Product: syz
[  155.369556][ T5923] usb 1-1: SerialNumber: syz
[  155.439106][ T5923] usb 1-1: config 0 descriptor??
[  155.442546][ T5923] ums-alauda 1-1:0.189: USB Mass Storage device detected
[  157.266817][ T5972] usb 1-1: USB disconnect, device number 6
[  157.317912][ T6547] IPv6: addrconf: prefix option has invalid lifetime
[  157.987095][ T6562] netlink: 4 bytes leftover after parsing attributes in process `syz.1.201'.
[  157.999146][ T6562] netlink: 4 bytes leftover after parsing attributes in process `syz.1.201'.
[  159.086862][ T6584] IPv6: addrconf: prefix option has invalid lifetime
[  160.121467][ T5923] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  160.296483][ T5923] usb 3-1: config 0 has an invalid interface number: 189 but max is 0
[  160.296509][ T5923] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  160.296526][ T5923] usb 3-1: config 0 has no interface number 0
[  160.298625][ T5923] usb 3-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  160.298651][ T5923] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  160.298668][ T5923] usb 3-1: Product: syz
[  160.298681][ T5923] usb 3-1: SerialNumber: syz
[  160.368356][ T5923] usb 3-1: config 0 descriptor??
[  160.371774][ T5923] ums-alauda 3-1:0.189: USB Mass Storage device detected
[  161.436234][ T6611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.218'.
[  161.451561][ T6611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.218'.
[  162.248099][    T9] usb 3-1: USB disconnect, device number 4
[  164.270961][ T6653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.233'.
[  164.272000][ T6653] netlink: 4 bytes leftover after parsing attributes in process `syz.0.233'.
[  166.340666][ T6658] netlink: 12 bytes leftover after parsing attributes in process `syz.0.235'.
[  166.433806][ T6080] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  166.599247][ T6080] usb 2-1: config 0 has an invalid interface number: 189 but max is 0
[  166.599274][ T6080] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  166.599291][ T6080] usb 2-1: config 0 has no interface number 0
[  166.601877][ T6080] usb 2-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  166.601901][ T6080] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  166.601919][ T6080] usb 2-1: Product: syz
[  166.601930][ T6080] usb 2-1: SerialNumber: syz
[  166.678805][ T6080] usb 2-1: config 0 descriptor??
[  166.692452][ T6080] ums-alauda 2-1:0.189: USB Mass Storage device detected
[  166.984017][ T6080] usb 2-1: USB disconnect, device number 7
[  167.617621][ T6674] hub 6-0:1.0: USB hub found
[  167.628900][ T6674] hub 6-0:1.0: 1 port detected
[  169.443133][ T6694] netlink: 'syz.1.247': attribute type 2 has an invalid length.
[  169.493902][ T6692] netlink: 4 bytes leftover after parsing attributes in process `syz.2.245'.
[  169.531313][ T6692] netlink: 4 bytes leftover after parsing attributes in process `syz.2.245'.
[  172.283656][ T6080] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  172.445952][ T6080] usb 2-1: config 0 has an invalid interface number: 189 but max is 0
[  172.445978][ T6080] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  172.447260][ T6080] usb 2-1: config 0 has no interface number 0
[  172.454565][ T6080] usb 2-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  172.454591][ T6080] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  172.454610][ T6080] usb 2-1: Product: syz
[  172.454623][ T6080] usb 2-1: SerialNumber: syz
[  172.595288][ T6080] usb 2-1: config 0 descriptor??
[  172.619226][ T6080] ums-alauda 2-1:0.189: USB Mass Storage device detected
[  174.011316][ T5807] usb 2-1: USB disconnect, device number 8
[  174.202262][ T6739] netlink: 'syz.3.260': attribute type 2 has an invalid length.
[  175.333984][ T6744] netlink: 4 bytes leftover after parsing attributes in process `syz.3.262'.
[  175.346006][ T6744] netlink: 4 bytes leftover after parsing attributes in process `syz.3.262'.
[  177.993341][ T5817] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  178.493609][ T6776] netlink: 'syz.4.272': attribute type 2 has an invalid length.
[  179.079299][ T5817] usb 1-1: config 0 has an invalid interface number: 189 but max is 0
[  179.079326][ T5817] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.079343][ T5817] usb 1-1: config 0 has no interface number 0
[  179.081104][ T5817] usb 1-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  179.081128][ T5817] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  179.081146][ T5817] usb 1-1: Product: syz
[  179.081158][ T5817] usb 1-1: SerialNumber: syz
[  179.103423][ T5817] usb 1-1: config 0 descriptor??
[  179.117156][ T5817] ums-alauda 1-1:0.189: USB Mass Storage device detected
[  179.933997][ T6789] netlink: 4 bytes leftover after parsing attributes in process `syz.1.274'.
[  179.950375][ T6789] netlink: 4 bytes leftover after parsing attributes in process `syz.1.274'.
[  181.725006][ T5972] usb 1-1: USB disconnect, device number 7
[  182.403352][ T6819] netlink: 'syz.4.283': attribute type 2 has an invalid length.
[  185.055994][ T6834] netlink: 4 bytes leftover after parsing attributes in process `syz.4.287'.
[  185.057024][ T6834] netlink: 4 bytes leftover after parsing attributes in process `syz.4.287'.
[  185.919625][ T6847] capability: warning: `syz.4.290' uses deprecated v2 capabilities in a way that may be insecure
[  191.873733][ T6011] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  192.026512][ T6011] usb 5-1: config 0 has an invalid interface number: 189 but max is 0
[  192.026538][ T6011] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  192.026555][ T6011] usb 5-1: config 0 has no interface number 0
[  192.028709][ T6011] usb 5-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  192.028734][ T6011] usb 5-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  192.028753][ T6011] usb 5-1: Product: syz
[  192.028766][ T6011] usb 5-1: SerialNumber: syz
[  192.052745][ T6011] usb 5-1: config 0 descriptor??
[  192.092081][ T6011] ums-alauda 5-1:0.189: USB Mass Storage device detected
[  194.364377][ T5887] usb 5-1: USB disconnect, device number 3
[  194.457779][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  194.460279][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  195.064004][ T6940] netlink: 60 bytes leftover after parsing attributes in process `syz.4.322'.
[  195.064459][ T6936] netlink: 60 bytes leftover after parsing attributes in process `syz.4.322'.
[  200.066332][ T7012] netlink: 4 bytes leftover after parsing attributes in process `syz.4.349'.
[  200.073889][ T7012] netlink: 4 bytes leftover after parsing attributes in process `syz.4.349'.
[  200.994354][ T7021] fuse: Bad value for 'fd'
[  203.668962][ T7061] netlink: 4 bytes leftover after parsing attributes in process `syz.1.365'.
[  203.676607][ T7061] netlink: 4 bytes leftover after parsing attributes in process `syz.1.365'.
[  204.464523][ T7066] fuse: Bad value for 'fd'
[  205.453652][ T7082] netlink: 'syz.4.372': attribute type 2 has an invalid length.
[  208.282267][ T7109] netlink: 4 bytes leftover after parsing attributes in process `syz.2.379'.
[  208.288890][ T7109] netlink: 4 bytes leftover after parsing attributes in process `syz.2.379'.
[  208.974697][ T7108] fuse: Unknown parameter '0x0000000000000003'
[  211.978172][ T7155] hub 6-0:1.0: USB hub found
[  211.981718][ T7155] hub 6-0:1.0: 1 port detected
[  212.051214][ T5820] Bluetooth: hci1: command 0x0406 tx timeout
[  212.051281][ T5820] Bluetooth: hci3: command 0x0406 tx timeout
[  212.069936][ T5820] Bluetooth: hci4: command 0x0406 tx timeout
[  212.080631][ T5820] Bluetooth: hci0: command 0x0406 tx timeout
[  212.095132][ T5818] Bluetooth: hci2: command 0x0406 tx timeout
[  212.693675][ T5887] usb 2-1: new low-speed USB device number 9 using dummy_hcd
[  212.867528][ T5887] usb 2-1: config 0 has an invalid interface number: 55 but max is 0
[  212.867555][ T5887] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  212.867572][ T5887] usb 2-1: config 0 has no interface number 0
[  212.867623][ T5887] usb 2-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  212.867644][ T5887] usb 2-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[  212.867679][ T5887] usb 2-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  212.867699][ T5887] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.955340][ T5887] usb 2-1: config 0 descriptor??
[  212.978599][ T5887] ldusb 2-1:0.55: Interrupt in endpoint not found
[  213.186284][ T6656] usb 2-1: USB disconnect, device number 9
[  213.478988][ T7165] netlink: 16 bytes leftover after parsing attributes in process `syz.3.404'.
[  213.547660][ T6656] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  213.639431][ T7165] bond1: option primary_reselect: invalid value (8)
[  213.693717][ T6656] usb 2-1: Using ep0 maxpacket: 8
[  213.698588][ T6656] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  213.698613][ T6656] usb 2-1: config 0 has no interface number 0
[  213.698669][ T6656] usb 2-1: config 0 interface 1 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  213.698689][ T6656] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[  213.702749][ T6656] usb 2-1: New USB device found, idVendor=0af0, idProduct=6751, bcdDevice=75.8b
[  213.702776][ T6656] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  213.702790][ T6656] usb 2-1: SerialNumber: syz
[  215.313743][ T6656] usb 2-1: config 0 descriptor??
[  215.317166][ T7165] bond1 (unregistering): Released all slaves
[  215.394796][ T6656] usb 2-1: can't set config #0, error -71
[  215.417099][ T6656] usb 2-1: USB disconnect, device number 10
[  216.288785][ T7204] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  216.288785][ T7204] The task syz.3.418 (7204) triggered the difference, watch for misbehavior.
[  224.498541][ T7365] process 'syz.4.485' launched './file2' with NULL argv: empty string added
[  225.398072][ T7380] random: crng reseeded on system resumption
[  227.089276][ T7383] netlink: 180 bytes leftover after parsing attributes in process `syz.0.491'.
[  228.663858][ T7408] overlayfs: failed to clone upperpath
[  238.935205][ T7599] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  241.325637][ T7635] netlink: 12 bytes leftover after parsing attributes in process `syz.2.597'.
[  243.954418][ T7659] netlink: 4 bytes leftover after parsing attributes in process `syz.4.608'.
[  245.414368][ T5807] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  246.087554][ T5807] usb 1-1: config 6 has an invalid interface number: 2 but max is 0
[  246.087580][ T5807] usb 1-1: config 6 has no interface number 0
[  246.087624][ T5807] usb 1-1: config 6 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  246.087645][ T5807] usb 1-1: config 6 interface 2 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  246.087669][ T5807] usb 1-1: config 6 interface 2 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  246.090711][ T5807] usb 1-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  246.090737][ T5807] usb 1-1: New USB device strings: Mfr=17, Product=2, SerialNumber=3
[  246.090756][ T5807] usb 1-1: Product: syz
[  246.090768][ T5807] usb 1-1: Manufacturer: syz
[  246.090781][ T5807] usb 1-1: SerialNumber: syz
[  246.428866][ T5807] hso 1-1:6.2: Failed to find INT IN ep
[  246.540982][ T7716] overlayfs: failed to clone upperpath
[  247.357022][ T6022] usb 1-1: USB disconnect, device number 8
[  247.651324][ T7726] netlink: 12 bytes leftover after parsing attributes in process `syz.3.624'.
[  248.745028][ T7745] netlink: 'syz.3.635': attribute type 2 has an invalid length.
[  249.258293][ T7755] overlayfs: failed to clone upperpath
[  254.623660][ T7815] syz.2.664 (7815) used greatest stack depth: 18656 bytes left
[  255.501863][ T7842] 9p: Bad value for 'wfdno'
[  256.689835][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  256.689904][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  256.815987][ T7853] netlink: 'syz.4.678': attribute type 2 has an invalid length.
[  261.832576][ T7910] netlink: 8 bytes leftover after parsing attributes in process `syz.0.705'.
[  262.050400][ T7915] tmpfs: Unsupported parameter 'huge'
[  263.686622][ T7935] netlink: 4 bytes leftover after parsing attributes in process `syz.2.713'.
[  264.497237][ T7951] netlink: 40 bytes leftover after parsing attributes in process `syz.0.720'.
[  271.182911][   T37] audit: type=1326 audit(1767739607.346:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56e0ef749 code=0x7ffc0000
[  271.182964][   T37] audit: type=1326 audit(1767739607.346:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7fa56e0ef749 code=0x7ffc0000
[  271.183005][   T37] audit: type=1326 audit(1767739607.346:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56e0ef749 code=0x7ffc0000
[  271.183044][   T37] audit: type=1326 audit(1767739607.346:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fa56e0ef749 code=0x7ffc0000
[  271.463504][   T37] audit: type=1326 audit(1767739607.626:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56e0ef749 code=0x7ffc0000
[  271.483761][   T37] audit: type=1326 audit(1767739607.626:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56e0ef749 code=0x7ffc0000
[  271.487872][   T37] audit: type=1326 audit(1767739607.626:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8014 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa56e122005 code=0x7ffc0000
[  271.487917][   T37] audit: type=1326 audit(1767739607.646:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa56e0edf90 code=0x7ffc0000
[  271.487944][   T37] audit: type=1326 audit(1767739607.646:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa56e0edf90 code=0x7ffc0000
[  271.487966][   T37] audit: type=1326 audit(1767739607.646:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7999 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa56e0ef749 code=0x7ffc0000
[  272.600303][ T8042] =======================================================
[  272.600303][ T8042] WARNING: The mand mount option has been deprecated and
[  272.600303][ T8042]          and is ignored by this kernel. Remove the mand
[  272.600303][ T8042]          option from the mount to silence this warning.
[  272.600303][ T8042] =======================================================
[  276.495051][ T8106] netlink: 16 bytes leftover after parsing attributes in process `syz.3.784'.
[  282.376794][   T61] Bluetooth: Wrong link type (-71)
[  283.285238][ T8174] fuse: Bad value for 'user_id'
[  283.285810][ T8174] fuse: Bad value for 'user_id'
[  285.190253][ T8195] netlink: 12 bytes leftover after parsing attributes in process `syz.0.820'.
[  293.193396][ T8303] overlayfs: failed to clone upperpath
[  293.245095][ T5822] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  293.321383][ T5822] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  293.334809][ T5822] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  293.336994][ T5822] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  293.337960][ T5822] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  295.414421][ T5822] Bluetooth: hci5: command tx timeout
[  296.504404][ T8351] netlink: 12 bytes leftover after parsing attributes in process `syz.4.881'.
[  296.504555][ T8351] netlink: 4 bytes leftover after parsing attributes in process `syz.4.881'.
[  296.504590][ T8351] netlink: 20 bytes leftover after parsing attributes in process `syz.4.881'.
[  296.510348][ T8351] netlink: 12 bytes leftover after parsing attributes in process `syz.4.881'.
[  296.510458][ T8351] netlink: 4 bytes leftover after parsing attributes in process `syz.4.881'.
[  296.510493][ T8351] netlink: 20 bytes leftover after parsing attributes in process `syz.4.881'.
[  297.619621][ T8343] infiniband syz2: set active
[  297.619641][ T8343] infiniband syz2: added syz_tun
[  297.628086][ T8343] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[  297.633338][ T8343] infiniband syz2: Couldn't open port 1
[  297.672312][ T5822] Bluetooth: hci5: command tx timeout
[  297.710545][ T8343] RDS/IB: syz2: added
[  297.711265][ T8343] smc: adding ib device syz2 with port count 1
[  297.711469][ T8343] smc:    ib device syz2 port 1 has no pnetid
[  299.733923][ T5822] Bluetooth: hci5: command tx timeout
[  301.732110][  T815] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.813661][ T5822] Bluetooth: hci5: command tx timeout
[  302.736812][ T8301] chnl_net:caif_netlink_parms(): no params data found
[  305.093030][ T8432] overlayfs: failed to clone lowerpath
[  305.127327][  T815] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.681498][ T8446] syz.2.915 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  305.732223][ T8446] ptrace attach of "./syz-executor exec"[5804] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  308.439643][  T815] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.992997][  T815] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.344620][ T8301] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.344835][ T8301] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.345034][ T8301] bridge_slave_0: entered allmulticast mode
[  313.350615][ T8301] bridge_slave_0: entered promiscuous mode
[  313.384642][ T8301] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.384836][ T8301] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.385011][ T8301] bridge_slave_1: entered allmulticast mode
[  313.420093][ T8301] bridge_slave_1: entered promiscuous mode
[  315.785429][ T8301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  315.890633][ T8301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  316.394470][ T8301] team0: Port device team_slave_0 added
[  316.398640][ T8301] team0: Port device team_slave_1 added
[  317.464819][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  317.464887][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  318.697967][ T8301] batman_adv: batadv0: Adding interface: batadv_slave_0
[  318.697983][ T8301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  318.698015][ T8301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  318.705775][ T8301] batman_adv: batadv0: Adding interface: batadv_slave_1
[  318.705788][ T8301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  318.705810][ T8301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  318.931239][  T815] gretap0: left allmulticast mode
[  318.931349][  T815] gretap0: left promiscuous mode
[  318.933421][  T815] bridge0: port 3(gretap0) entered disabled state
[  319.391066][  T815] bridge_slave_1: left allmulticast mode
[  319.391149][  T815] bridge_slave_1: left promiscuous mode
[  319.391403][  T815] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.559994][  T815] bridge_slave_0: left allmulticast mode
[  319.560021][  T815] bridge_slave_0: left promiscuous mode
[  319.560670][  T815] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.414348][  T815] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  326.494746][  T815] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  326.541611][  T815] bond0 (unregistering): Released all slaves
[  326.822088][ T8301] hsr_slave_0: entered promiscuous mode
[  326.823317][ T8301] hsr_slave_1: entered promiscuous mode
[  326.834786][ T8301] debugfs: 'hsr0' already exists in 'hsr'
[  326.834809][ T8301] Cannot create hsr debugfs directory
[  330.686676][ T8839] bridge0: port 3(gretap0) entered blocking state
[  330.686785][ T8839] bridge0: port 3(gretap0) entered disabled state
[  330.686944][ T8839] gretap0: entered allmulticast mode
[  330.689828][ T8839] gretap0: entered promiscuous mode
[  330.690800][ T8839] bridge0: port 3(gretap0) entered blocking state
[  330.690926][ T8839] bridge0: port 3(gretap0) entered forwarding state
[  331.461865][ T5822] Bluetooth: Wrong link type (-71)
[  333.883622][ T5822] Bluetooth: Wrong link type (-71)
[  334.693223][ T8908] rdma_rxe: rxe_newlink: failed to add syz_tun
[  335.598203][  T815] hsr_slave_0: left promiscuous mode
[  335.643620][  T815] hsr_slave_1: left promiscuous mode
[  335.649883][  T815] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  335.652969][  T815] batman_adv: batadv0: Removing interface: batadv_slave_0
[  335.713614][  T815] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  335.713640][  T815] batman_adv: batadv0: Removing interface: batadv_slave_1
[  336.464319][ T8935] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  336.464524][ T8935] overlayfs: missing 'lowerdir'
[  336.994111][  T815] veth1_macvtap: left promiscuous mode
[  336.994376][  T815] veth0_macvtap: left promiscuous mode
[  336.994680][  T815] veth1_vlan: left promiscuous mode
[  336.994998][  T815] veth0_vlan: left promiscuous mode
[  338.843838][ T8966] 9p: Bad value for 'wfdno'
[  340.668196][  T815] team0 (unregistering): Port device team_slave_1 removed
[  340.894170][  T815] team0 (unregistering): Port device team_slave_0 removed
[  342.371639][ T5822] Bluetooth: Wrong link type (-71)
[  344.985875][ T8301] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  345.106697][ T5822] Bluetooth: Wrong link type (-71)
[  345.559533][ T8301] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  347.003891][ T8301] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  347.194226][ T8301] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  348.331623][ T8301] 8021q: adding VLAN 0 to HW filter on device bond0
[  348.480880][ T8301] 8021q: adding VLAN 0 to HW filter on device team0
[  348.536607][ T5922] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.543687][ T5922] bridge0: port 1(bridge_slave_0) entered forwarding state
[  348.594880][ T3498] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.595011][ T3498] bridge0: port 2(bridge_slave_1) entered forwarding state
[  352.112674][ T9188] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1199'.
[  353.312300][ T5822] Bluetooth: Wrong link type (-71)
[  353.880882][   T61] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  353.895431][   T61] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  353.898800][   T61] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  353.900366][   T61] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  353.901353][   T61] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  355.975116][   T61] Bluetooth: hci4: command tx timeout
[  357.336192][   T61] Bluetooth: Wrong link type (-71)
[  358.053591][   T61] Bluetooth: hci4: command tx timeout
[  359.739512][ T9321] ptrace attach of "./syz-executor exec"[5804] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  360.180182][   T61] Bluetooth: hci4: command tx timeout
[  360.814054][ T9223] chnl_net:caif_netlink_parms(): no params data found
[  361.836468][ T9356] ptrace attach of "./syz-executor exec"[5804] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  362.231286][   T61] Bluetooth: hci4: command tx timeout
[  362.644927][ T9366] binder: BINDER_SET_CONTEXT_MGR already set
[  362.644942][ T9366] binder: 9365:9366 ioctl 4018620d 200000000040 returned -16
[  362.652259][ T9366] binder: 9365:9366 ioctl c0306201 200000000240 returned -11
[  363.261096][ T9223] bridge0: port 1(bridge_slave_0) entered blocking state
[  363.261292][ T9223] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.261487][ T9223] bridge_slave_0: entered allmulticast mode
[  363.284182][ T9223] bridge_slave_0: entered promiscuous mode
[  363.287344][ T9223] bridge0: port 2(bridge_slave_1) entered blocking state
[  363.287469][ T9223] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.287637][ T9223] bridge_slave_1: entered allmulticast mode
[  363.290137][ T9223] bridge_slave_1: entered promiscuous mode
[  363.604503][ T9223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  363.761576][ T9223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  364.227502][ T9223] team0: Port device team_slave_0 added
[  364.318315][ T9223] team0: Port device team_slave_1 added
[  364.907947][ T9434] ptrace attach of "./syz-executor exec"[5803] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  364.935359][  T992] bridge_slave_1: left allmulticast mode
[  364.935385][  T992] bridge_slave_1: left promiscuous mode
[  364.935640][  T992] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.243286][  T992] bridge_slave_0: left allmulticast mode
[  365.243312][  T992] bridge_slave_0: left promiscuous mode
[  365.276679][  T992] bridge0: port 1(bridge_slave_0) entered disabled state
[  369.466485][  T992] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  369.545851][  T992] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  369.620260][  T992] bond0 (unregistering): Released all slaves
[  369.680399][ T9223] batman_adv: batadv0: Adding interface: batadv_slave_0
[  369.680415][ T9223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  369.680438][ T9223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  370.145054][ T9223] batman_adv: batadv0: Adding interface: batadv_slave_1
[  370.145072][ T9223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  370.145097][ T9223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  371.482920][   T61] Bluetooth: Wrong link type (-71)
[  374.324067][ T9223] hsr_slave_0: entered promiscuous mode
[  374.326939][ T9223] hsr_slave_1: entered promiscuous mode
[  374.327840][ T9223] debugfs: 'hsr0' already exists in 'hsr'
[  374.327863][ T9223] Cannot create hsr debugfs directory
[  375.728158][  T992] hsr_slave_0: left promiscuous mode
[  375.773744][  T992] hsr_slave_1: left promiscuous mode
[  375.774745][  T992] batman_adv: batadv0: Removing interface: batadv_slave_0
[  375.804183][  T992] batman_adv: batadv0: Removing interface: batadv_slave_1
[  378.788680][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  378.788748][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  379.314332][  T992] team0 (unregistering): Port device team_slave_1 removed
[  379.618488][  T992] team0 (unregistering): Port device team_slave_0 removed
[  384.637479][ T9840] fuse: Bad value for 'fd'
[  388.595605][ T9925] capability: warning: `syz.2.1489' uses 32-bit capabilities (legacy support in use)
[  393.108379][   T61] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  393.108425][   T61] CPU: 1 UID: 0 PID: 61 Comm: kworker/u9:0 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  393.108453][   T61] Tainted: [L]=SOFTLOCKUP
[  393.108460][   T61] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  393.108473][   T61] Workqueue: hci3 hci_rx_work
[  393.108499][   T61] Call Trace:
[  393.108510][   T61]  <TASK>
[  393.108518][   T61]  dump_stack_lvl+0xe8/0x150
[  393.108547][   T61]  sysfs_create_dir_ns+0x259/0x280
[  393.108574][   T61]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  393.108601][   T61]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  393.108631][   T61]  ? rt_spin_unlock+0x161/0x200
[  393.108658][   T61]  kobject_add_internal+0x6b1/0xcd0
[  393.108689][   T61]  kobject_add+0x155/0x220
[  393.108716][   T61]  ? __pfx_kobject_add+0x10/0x10
[  393.108746][   T61]  ? get_device_parent+0x370/0x3a0
[  393.108771][   T61]  device_add+0x408/0xb80
[  393.108796][   T61]  hci_conn_add_sysfs+0xd5/0x210
[  393.108828][   T61]  le_conn_complete_evt+0xf1d/0x1420
[  393.108862][   T61]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  393.108886][   T61]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  393.108906][   T61]  ? lockdep_hardirqs_on+0x7b/0x110
[  393.108925][   T61]  ? skb_pull_data+0xfb/0x200
[  393.108956][   T61]  hci_le_enh_conn_complete_evt+0x189/0x4a0
[  393.108981][   T61]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  393.109009][   T61]  hci_event_packet+0x78f/0x1260
[  393.109042][   T61]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  393.109067][   T61]  ? __pfx_hci_event_packet+0x10/0x10
[  393.109095][   T61]  ? rt_spin_unlock+0x150/0x200
[  393.109129][   T61]  ? hci_send_to_monitor+0xe2/0x590
[  393.109163][   T61]  hci_rx_work+0x3ee/0x1060
[  393.109191][   T61]  ? process_scheduled_works+0x9ef/0x1770
[  393.109215][   T61]  process_scheduled_works+0xad1/0x1770
[  393.109266][   T61]  ? __pfx_process_scheduled_works+0x10/0x10
[  393.109285][   T61]  ? do_raw_spin_lock+0x121/0x290
[  393.109324][   T61]  worker_thread+0x8a0/0xda0
[  393.109373][   T61]  kthread+0x711/0x8a0
[  393.109402][   T61]  ? __pfx_worker_thread+0x10/0x10
[  393.109423][   T61]  ? __pfx_kthread+0x10/0x10
[  393.109446][   T61]  ? rt_spin_unlock+0x150/0x200
[  393.109475][   T61]  ? rt_spin_unlock+0x161/0x200
[  393.109497][   T61]  ? __pfx_kthread+0x10/0x10
[  393.109523][   T61]  ret_from_fork+0x510/0xa50
[  393.109547][   T61]  ? __pfx_ret_from_fork+0x10/0x10
[  393.109565][   T61]  ? __switch_to+0xc9e/0x1480
[  393.109595][   T61]  ? __pfx_kthread+0x10/0x10
[  393.109621][   T61]  ret_from_fork_asm+0x1a/0x30
[  393.109663][   T61]  </TASK>
[  393.109693][   T61] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  393.109733][   T61] Bluetooth: hci3: failed to register connection device
[  400.351011][ T9223] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  400.395282][ T9223] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  400.448357][ T9223] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  400.506421][ T9223] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  400.827945][T10147] netlink: 'syz.4.1566': attribute type 4 has an invalid length.
[  401.881782][T10152] befs: (nullb0): invalid magic header
[  402.285678][ T9223] 8021q: adding VLAN 0 to HW filter on device bond0
[  402.429054][ T9223] 8021q: adding VLAN 0 to HW filter on device team0
[  402.494162][ T3595] bridge0: port 1(bridge_slave_0) entered blocking state
[  402.494480][ T3595] bridge0: port 1(bridge_slave_0) entered forwarding state
[  402.538932][ T1500] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.539067][ T1500] bridge0: port 2(bridge_slave_1) entered forwarding state
[  402.846781][T10195] netlink: 'syz.0.1581': attribute type 10 has an invalid length.
[  402.846804][T10195] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1581'.
[  402.982512][T10195] team0: Failed to send options change via netlink (err -105)
[  402.982634][T10195] team0: Port device geneve0 added
[  404.428495][T10223] befs: (nullb0): invalid magic header
[  405.183106][ T9223] 8021q: adding VLAN 0 to HW filter on device batadv0
[  406.811854][ T9223] veth0_vlan: entered promiscuous mode
[  406.822852][ T9223] veth1_vlan: entered promiscuous mode
[  407.201893][ T9223] veth0_macvtap: entered promiscuous mode
[  407.217131][ T9223] veth1_macvtap: entered promiscuous mode
[  407.327521][T10296] overlayfs: failed to clone upperpath
[  407.872429][ T9223] batman_adv: batadv0: Interface activated: batadv_slave_0
[  407.894196][ T9223] batman_adv: batadv0: Interface activated: batadv_slave_1
[  408.127157][   T13] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  408.144531][ T6998] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  408.146398][ T6998] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  408.146438][ T6998] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  408.606467][ T3595] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  408.606487][ T3595] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  408.683775][ T5922] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  408.683795][ T5922] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  409.984449][ T5822] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  410.080514][ T5822] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  410.098221][ T5822] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  410.099447][ T5822] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  410.100716][ T5822] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  411.220547][T10383] overlayfs: failed to clone upperpath
[  412.213675][ T5822] Bluetooth: hci5: command tx timeout
[  414.301083][ T5822] Bluetooth: hci5: command tx timeout
[  414.751844][ T2085] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  415.209014][ T2085] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  415.518542][T10461] debugfs: 'netdev:nicvf0' already exists in 'phy3'
[  415.865209][ T2085] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.312230][ T2085] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.590088][ T5822] Bluetooth: hci5: command tx timeout
[  417.414309][T10348] chnl_net:caif_netlink_parms(): no params data found
[  418.614078][ T5822] Bluetooth: hci5: command tx timeout
[  420.788350][T10348] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.788843][T10348] bridge0: port 1(bridge_slave_0) entered disabled state
[  420.789052][T10348] bridge_slave_0: entered allmulticast mode
[  420.812086][T10348] bridge_slave_0: entered promiscuous mode
[  420.940394][T10348] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.940529][T10348] bridge0: port 2(bridge_slave_1) entered disabled state
[  420.940702][T10348] bridge_slave_1: entered allmulticast mode
[  420.954216][T10348] bridge_slave_1: entered promiscuous mode
[  423.125128][ T2085] bridge_slave_1: left allmulticast mode
[  423.125155][ T2085] bridge_slave_1: left promiscuous mode
[  423.125392][ T2085] bridge0: port 2(bridge_slave_1) entered disabled state
[  423.567038][T10575] rdma_rxe: rxe_newlink: failed to add syz_tun
[  424.293655][ T2085] bridge_slave_0: left allmulticast mode
[  424.293683][ T2085] bridge_slave_0: left promiscuous mode
[  424.293930][ T2085] bridge0: port 1(bridge_slave_0) entered disabled state
[  424.415302][T10584] overlayfs: failed to clone upperpath
[  428.871958][T10617] rdma_rxe: rxe_newlink: failed to add syz_tun
[  431.074226][ T2085] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  431.114001][ T2085] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  431.137410][ T2085] bond0 (unregistering): Released all slaves
[  431.206985][T10621] macvtap1: entered promiscuous mode
[  431.207247][T10621] macvtap1: entered allmulticast mode
[  431.207261][T10621] veth1_vlan: entered allmulticast mode
[  431.291555][T10348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  431.347201][T10348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  432.993567][   T37] kauditd_printk_skb: 6 callbacks suppressed
[  432.993584][   T37] audit: type=1326 audit(1767739769.146:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  432.993628][   T37] audit: type=1326 audit(1767739769.146:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fae228cdf90 code=0x7ffc0000
[  432.993675][   T37] audit: type=1326 audit(1767739769.156:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  432.993715][   T37] audit: type=1326 audit(1767739769.156:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  432.993754][   T37] audit: type=1326 audit(1767739769.156:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  432.993793][   T37] audit: type=1326 audit(1767739769.156:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  432.993831][   T37] audit: type=1326 audit(1767739769.156:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  432.993869][   T37] audit: type=1326 audit(1767739769.156:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  432.993907][   T37] audit: type=1326 audit(1767739769.156:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  432.993946][   T37] audit: type=1326 audit(1767739769.156:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10647 comm="syz.5.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae228cf749 code=0x7ffc0000
[  434.560447][T10348] team0: Port device team_slave_0 added
[  434.606770][T10348] team0: Port device team_slave_1 added
[  435.309556][T10348] batman_adv: batadv0: Adding interface: batadv_slave_0
[  435.309571][T10348] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  435.309591][T10348] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  435.336411][T10348] batman_adv: batadv0: Adding interface: batadv_slave_1
[  435.336425][T10348] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  435.336455][T10348] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  436.420735][T10348] hsr_slave_0: entered promiscuous mode
[  436.422067][T10348] hsr_slave_1: entered promiscuous mode
[  436.422947][T10348] debugfs: 'hsr0' already exists in 'hsr'
[  436.422969][T10348] Cannot create hsr debugfs directory
[  437.079839][ T2085] hsr_slave_0: left promiscuous mode
[  437.095195][T10714] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1748'.
[  437.096147][ T2085] hsr_slave_1: left promiscuous mode
[  437.097063][ T2085] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  437.097085][ T2085] batman_adv: batadv0: Removing interface: batadv_slave_0
[  437.140134][ T2085] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  437.140157][ T2085] batman_adv: batadv0: Removing interface: batadv_slave_1
[  437.564198][ T2085] veth1_macvtap: left promiscuous mode
[  437.564303][ T2085] veth0_macvtap: left promiscuous mode
[  437.566061][ T2085] veth1_vlan: left promiscuous mode
[  437.566240][ T2085] veth0_vlan: left promiscuous mode
[  440.224053][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  440.224130][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  440.374723][ T2085] team0 (unregistering): Port device team_slave_1 removed
[  440.593957][ T2085] team0 (unregistering): Port device team_slave_0 removed
[  445.242923][   T37] kauditd_printk_skb: 42 callbacks suppressed
[  445.242940][   T37] audit: type=1326 audit(1767739781.406:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c1e6f749 code=0x7ffc0000
[  445.275696][   T37] audit: type=1326 audit(1767739781.406:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc5c1e6df90 code=0x7ffc0000
[  445.275730][   T37] audit: type=1326 audit(1767739781.416:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c1e6f749 code=0x7ffc0000
[  445.275752][   T37] audit: type=1326 audit(1767739781.416:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc5c1e6f749 code=0x7ffc0000
[  445.275773][   T37] audit: type=1326 audit(1767739781.416:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c1e6f749 code=0x7ffc0000
[  445.275794][   T37] audit: type=1326 audit(1767739781.416:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7fc5c1e6f749 code=0x7ffc0000
[  445.275814][   T37] audit: type=1326 audit(1767739781.416:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c1e6f749 code=0x7ffc0000
[  445.275835][   T37] audit: type=1326 audit(1767739781.416:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fc5c1e6f749 code=0x7ffc0000
[  445.275856][   T37] audit: type=1326 audit(1767739781.416:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5c1e6f749 code=0x7ffc0000
[  445.275877][   T37] audit: type=1326 audit(1767739781.416:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10793 comm="syz.4.1769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc5c1e6df90 code=0x7ffc0000
[  446.719663][T10826] ptrace attach of "./syz-executor exec"[5802] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  448.334533][T10348] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  449.156185][T10348] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  449.273737][T10348] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  449.469154][T10348] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  449.876687][T10348] 8021q: adding VLAN 0 to HW filter on device bond0
[  449.915171][T10348] 8021q: adding VLAN 0 to HW filter on device team0
[  449.996025][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  449.996292][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  449.998989][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  449.999123][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  450.921592][T10876] ptrace attach of "./syz-executor exec"[5804] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  451.392651][T10348] 8021q: adding VLAN 0 to HW filter on device batadv0
[  451.604440][T10348] veth0_vlan: entered promiscuous mode
[  451.643258][T10348] veth1_vlan: entered promiscuous mode
[  451.783053][T10348] veth0_macvtap: entered promiscuous mode
[  451.793448][T10348] veth1_macvtap: entered promiscuous mode
[  451.857779][T10348] batman_adv: batadv0: Interface activated: batadv_slave_0
[  451.907281][T10348] batman_adv: batadv0: Interface activated: batadv_slave_1
[  451.956421][ T6998] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  451.958276][ T6998] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  451.958481][ T6998] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  451.958517][ T6998] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  452.513590][ T7624] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[  452.665476][ T7624] usb 1-1: config 0 has an invalid interface number: 189 but max is 0
[  452.665501][ T7624] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  452.665518][ T7624] usb 1-1: config 0 has no interface number 0
[  452.667266][ T7624] usb 1-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02
[  452.667297][ T7624] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  452.667315][ T7624] usb 1-1: Product: syz
[  452.667328][ T7624] usb 1-1: SerialNumber: syz
[  452.740776][ T7624] usb 1-1: config 0 descriptor??
[  452.777064][ T7624] ums-alauda 1-1:0.189: USB Mass Storage device detected
[  452.930558][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  452.930579][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  453.162061][ T1500] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  453.162081][ T1500] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  454.514424][ T6011] usb 1-1: USB disconnect, device number 9
[  459.657882][T11035] rdma_rxe: rxe_newlink: failed to add syz_tun
[  461.434970][T11054] ptrace attach of "./syz-executor exec"[9223] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  462.144316][ T5923] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  463.233607][ T5923] usb 2-1: Using ep0 maxpacket: 32
[  463.237786][ T5923] usb 2-1: config 0 interface 0 has no altsetting 0
[  463.242156][ T5923] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  463.242190][ T5923] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  463.242209][ T5923] usb 2-1: Product: syz
[  463.242222][ T5923] usb 2-1: Manufacturer: syz
[  463.242236][ T5923] usb 2-1: SerialNumber: syz
[  463.306955][ T5923] usb 2-1: config 0 descriptor??
[  463.417682][T11076] rdma_rxe: rxe_newlink: failed to add syz_tun
[  464.152499][ T5923] gs_usb 2-1:0.0: Configuring for 1 interfaces
[  465.439824][ T5923] gs_usb 2-1:0.0: Disabling termination support for channel 0 (-ETIMEDOUT)
[  465.523107][ T5822] Bluetooth: Wrong link type (-71)
[  465.655540][ T5923] usb 2-1: USB disconnect, device number 11
[  468.116815][T11123] rdma_rxe: rxe_newlink: failed to add syz_tun
[  471.939274][   T37] kauditd_printk_skb: 53 callbacks suppressed
[  471.939291][   T37] audit: type=1326 audit(1767739808.116:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.942150][   T37] audit: type=1326 audit(1767739808.116:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.942899][   T37] audit: type=1326 audit(1767739808.116:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.943162][   T37] audit: type=1326 audit(1767739808.116:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.943838][   T37] audit: type=1326 audit(1767739808.126:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.944380][   T37] audit: type=1326 audit(1767739808.126:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.944655][   T37] audit: type=1326 audit(1767739808.126:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.945001][   T37] audit: type=1326 audit(1767739808.126:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.945689][   T37] audit: type=1326 audit(1767739808.126:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  471.946255][   T37] audit: type=1326 audit(1767739808.126:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11157 comm="syz.1.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc708cbf749 code=0x7ffc0000
[  473.080078][ T5822] Bluetooth: Wrong link type (-71)
[  478.105626][   T61] Bluetooth: Wrong link type (-71)
[  478.135577][ T5116] Bluetooth: hci4: command 0x0406 tx timeout
[  479.217002][ T5822] Bluetooth: Wrong link type (-71)
[  480.044182][T11239] netlink: 'syz.1.1907': attribute type 10 has an invalid length.
[  480.044202][T11239] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1907'.
[  482.524564][T11239] team0: Port device geneve0 added
[  482.536026][T11243] macvtap2: entered promiscuous mode
[  482.536230][T11243] macvtap2: entered allmulticast mode
[  484.478480][T11280] netlink: 'syz.0.1920': attribute type 10 has an invalid length.
[  484.478501][T11280] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1920'.
[  487.788109][T11325] overlayfs: failed to clone upperpath
[  493.383368][T11393] netlink: 'syz.0.1961': attribute type 10 has an invalid length.
[  493.383388][T11393] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1961'.
[  497.608982][T11439] 9p: Bad value for 'wfdno'
[  499.234691][T11461] overlayfs: failed to clone upperpath
[  500.606894][T11469] bridge0: entered promiscuous mode
[  500.607155][T11469] macvlan2: entered promiscuous mode
[  501.280266][T11484] 9p: Bad value for 'wfdno'
[  501.512883][T11490] mmap: syz.2.1996 (11490): VmData 37466112 exceed data ulimit 6. Update limits or use boot option ignore_rlimit_data.
[  501.944972][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  501.952481][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  502.256885][T11492] ptrace attach of "./syz-executor exec"[10348] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                             
[  503.977225][T11508] overlayfs: failed to clone upperpath
[  505.860431][T11523] 9p: Bad value for 'wfdno'
[  507.493589][ T5822] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  508.504620][T11550] netlink: 'syz.2.2014': attribute type 10 has an invalid length.
[  508.504641][T11550] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2014'.
[  508.621672][T11550] team0: Port device geneve0 added
[  508.902761][T11568] 9p: Bad value for 'rfdno'
[  512.873836][T11601] ptrace attach of "./syz-executor exec"[5802] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  513.186213][T11606] netlink: 'syz.2.2029': attribute type 10 has an invalid length.
[  513.186236][T11606] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2029'.
[  513.768248][T11613] 9p: Bad value for 'rfdno'
[  516.608685][T11650] 9p: Bad value for 'rfdno'
[  518.303561][ T6080] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  518.454017][ T6080] usb 2-1: Using ep0 maxpacket: 8
[  518.455795][ T6080] usb 2-1: config 0 has an invalid interface number: 24 but max is 0
[  518.455817][ T6080] usb 2-1: config 0 has no interface number 0
[  518.458733][ T6080] usb 2-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65
[  518.458756][ T6080] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  518.458775][ T6080] usb 2-1: Product: syz
[  518.458788][ T6080] usb 2-1: Manufacturer: syz
[  518.458801][ T6080] usb 2-1: SerialNumber: syz
[  518.488861][ T6080] usb 2-1: config 0 descriptor??
[  518.761394][T11682] 9p: Bad value for 'rfdno'
[  518.853781][T11676] netlink: 'syz.4.2052': attribute type 10 has an invalid length.
[  518.853801][T11676] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2052'.
[  518.944445][T11676] team0: Port device geneve0 added
[  519.586719][ T6080] pegasus 2-1:0.24: probe with driver pegasus failed with error -32
[  520.099784][ T5116] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  520.099814][ T5116] CPU: 1 UID: 0 PID: 5116 Comm: kworker/u9:1 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  520.099842][ T5116] Tainted: [L]=SOFTLOCKUP
[  520.099850][ T5116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  520.099863][ T5116] Workqueue: hci2 hci_rx_work
[  520.099888][ T5116] Call Trace:
[  520.099896][ T5116]  <TASK>
[  520.099906][ T5116]  dump_stack_lvl+0xe8/0x150
[  520.099936][ T5116]  sysfs_create_dir_ns+0x259/0x280
[  520.099963][ T5116]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[  520.099991][ T5116]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  520.100021][ T5116]  ? rt_spin_unlock+0x161/0x200
[  520.100050][ T5116]  kobject_add_internal+0x6b1/0xcd0
[  520.100081][ T5116]  kobject_add+0x155/0x220
[  520.100109][ T5116]  ? __pfx_kobject_add+0x10/0x10
[  520.100140][ T5116]  ? get_device_parent+0x370/0x3a0
[  520.100166][ T5116]  device_add+0x408/0xb80
[  520.100192][ T5116]  hci_conn_add_sysfs+0xd5/0x210
[  520.100224][ T5116]  le_conn_complete_evt+0xf1d/0x1420
[  520.100258][ T5116]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  520.100283][ T5116]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  520.100303][ T5116]  ? lockdep_hardirqs_on+0x7b/0x110
[  520.100325][ T5116]  ? skb_pull_data+0xfb/0x200
[  520.100357][ T5116]  hci_le_enh_conn_complete_evt+0x189/0x4a0
[  520.100382][ T5116]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  520.100411][ T5116]  hci_event_packet+0x78f/0x1260
[  520.100443][ T5116]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  520.100469][ T5116]  ? __pfx_hci_event_packet+0x10/0x10
[  520.100531][ T5116]  ? rt_spin_unlock+0x150/0x200
[  520.100567][ T5116]  ? hci_send_to_monitor+0xe2/0x590
[  520.100595][ T5116]  hci_rx_work+0x3ee/0x1060
[  520.100623][ T5116]  ? process_scheduled_works+0x9ef/0x1770
[  520.100648][ T5116]  process_scheduled_works+0xad1/0x1770
[  520.100702][ T5116]  ? __pfx_process_scheduled_works+0x10/0x10
[  520.100722][ T5116]  ? do_raw_spin_lock+0x121/0x290
[  520.100761][ T5116]  worker_thread+0x8a0/0xda0
[  520.100812][ T5116]  kthread+0x711/0x8a0
[  520.100842][ T5116]  ? __pfx_worker_thread+0x10/0x10
[  520.100864][ T5116]  ? __pfx_kthread+0x10/0x10
[  520.100886][ T5116]  ? rt_spin_unlock+0x150/0x200
[  520.100916][ T5116]  ? rt_spin_unlock+0x161/0x200
[  520.100938][ T5116]  ? __pfx_kthread+0x10/0x10
[  520.100966][ T5116]  ret_from_fork+0x510/0xa50
[  520.100990][ T5116]  ? __pfx_ret_from_fork+0x10/0x10
[  520.101010][ T5116]  ? __switch_to+0xc9e/0x1480
[  520.101042][ T5116]  ? __pfx_kthread+0x10/0x10
[  520.101069][ T5116]  ret_from_fork_asm+0x1a/0x30
[  520.101116][ T5116]  </TASK>
[  520.101685][ T5116] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  520.101725][ T5116] Bluetooth: hci2: failed to register connection device
[  520.204900][T11712] overlayfs: failed to clone upperpath
[  520.836162][ T6080] usb 2-1: USB disconnect, device number 12
[  535.088992][T11812] nvme_fabrics: missing parameter 'transport=%s'
[  535.089003][T11812] nvme_fabrics: missing parameter 'nqn=%s'
[  535.116619][ T5116] Bluetooth: hci5: command 0x0406 tx timeout
[  535.193720][ T6011] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  535.795222][T11843] syz.1.2107 (11843) used greatest stack depth: 15584 bytes left
[  539.681264][T11886] nvme_fabrics: missing parameter 'transport=%s'
[  539.681276][T11886] nvme_fabrics: missing parameter 'nqn=%s'
[  541.104992][ T5932] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  541.453575][ T5932] usb 1-1: Using ep0 maxpacket: 8
[  541.455378][ T5932] usb 1-1: config 0 has an invalid interface number: 24 but max is 0
[  541.455402][ T5932] usb 1-1: config 0 has no interface number 0
[  541.457805][ T5932] usb 1-1: New USB device found, idVendor=050d, idProduct=0122, bcdDevice=5b.65
[  541.457830][ T5932] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  541.457857][ T5932] usb 1-1: Product: syz
[  541.457870][ T5932] usb 1-1: Manufacturer: syz
[  541.457883][ T5932] usb 1-1: SerialNumber: syz
[  541.465744][ T5932] usb 1-1: config 0 descriptor??
[  542.536762][ T5932] pegasus 1-1:0.24: probe with driver pegasus failed with error -32
[  544.579125][ T6570] usb 1-1: USB disconnect, device number 10
[  545.922450][ T7936] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  546.751634][ T5116] ==================================================================
[  546.751649][ T5116] BUG: KASAN: vmalloc-out-of-bounds in __list_del_entry_valid_or_report+0xb5/0x190
[  546.751680][ T5116] Read of size 8 at addr ffffc9000de9c008 by task kworker/u9:1/5116
[  546.751695][ T5116] 
[  546.751709][ T5116] CPU: 1 UID: 0 PID: 5116 Comm: kworker/u9:1 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  546.751735][ T5116] Tainted: [L]=SOFTLOCKUP
[  546.751742][ T5116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  546.751754][ T5116] Workqueue: hci1 hci_rx_work
[  546.751773][ T5116] Call Trace:
[  546.751780][ T5116]  <TASK>
[  546.751788][ T5116]  dump_stack_lvl+0xe8/0x150
[  546.751814][ T5116]  print_report+0xca/0x240
[  546.751835][ T5116]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  546.751855][ T5116]  kasan_report+0x118/0x150
[  546.751880][ T5116]  ? rt_spin_lock+0x1f4/0x3e0
[  546.751904][ T5116]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  546.751930][ T5116]  __list_del_entry_valid_or_report+0xb5/0x190
[  546.751953][ T5116]  kcov_remote_start+0x2b0/0x710
[  546.751973][ T5116]  hci_rx_work+0x10f/0x1060
[  546.751994][ T5116]  ? process_scheduled_works+0x9ef/0x1770
[  546.752015][ T5116]  process_scheduled_works+0xad1/0x1770
[  546.752048][ T5116]  ? __pfx_process_scheduled_works+0x10/0x10
[  546.752067][ T5116]  ? do_raw_spin_lock+0x121/0x290
[  546.752095][ T5116]  worker_thread+0x8a0/0xda0
[  546.752127][ T5116]  kthread+0x711/0x8a0
[  546.752152][ T5116]  ? __pfx_worker_thread+0x10/0x10
[  546.752171][ T5116]  ? __pfx_kthread+0x10/0x10
[  546.752193][ T5116]  ? rt_spin_unlock+0x150/0x200
[  546.752217][ T5116]  ? rt_spin_unlock+0x161/0x200
[  546.752238][ T5116]  ? __pfx_kthread+0x10/0x10
[  546.752262][ T5116]  ret_from_fork+0x510/0xa50
[  546.752283][ T5116]  ? __pfx_ret_from_fork+0x10/0x10
[  546.752300][ T5116]  ? __switch_to+0xc9e/0x1480
[  546.752327][ T5116]  ? __pfx_kthread+0x10/0x10
[  546.752356][ T5116]  ret_from_fork_asm+0x1a/0x30
[  546.752389][ T5116]  </TASK>
[  546.752396][ T5116] 
[  546.752400][ T5116] The buggy address belongs to a vmalloc virtual mapping
[  546.752416][ T5116] Memory state around the buggy address:
[  546.752426][ T5116]  ffffc9000de9bf00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  546.752439][ T5116]  ffffc9000de9bf80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  546.752451][ T5116] >ffffc9000de9c000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  546.752460][ T5116]                       ^
[  546.752470][ T5116]  ffffc9000de9c080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  546.752481][ T5116]  ffffc9000de9c100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  546.752491][ T5116] ==================================================================
[  546.752509][ T5116] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  546.752528][ T5116] CPU: 1 UID: 0 PID: 5116 Comm: kworker/u9:1 Tainted: G             L      syzkaller #0 PREEMPT_{RT,(full)} 
[  546.752554][ T5116] Tainted: [L]=SOFTLOCKUP
[  546.752560][ T5116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  546.752572][ T5116] Workqueue: hci1 hci_rx_work
[  546.752587][ T5116] Call Trace:
[  546.752593][ T5116]  <TASK>
[  546.752601][ T5116]  vpanic+0x1e0/0x670
[  546.752626][ T5116]  panic+0xb9/0xc0
[  546.752648][ T5116]  ? __pfx_panic+0x10/0x10
[  546.752672][ T5116]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  546.752694][ T5116]  ? rcu_is_watching+0x15/0xb0
[  546.752714][ T5116]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  546.752736][ T5116]  check_panic_on_warn+0x89/0xb0
[  546.752761][ T5116]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  546.752783][ T5116]  end_report+0x6f/0x140
[  546.752807][ T5116]  kasan_report+0x129/0x150
[  546.752831][ T5116]  ? rt_spin_lock+0x1f4/0x3e0
[  546.752854][ T5116]  ? __list_del_entry_valid_or_report+0xb5/0x190
[  546.752880][ T5116]  __list_del_entry_valid_or_report+0xb5/0x190
[  546.752903][ T5116]  kcov_remote_start+0x2b0/0x710
[  546.752923][ T5116]  hci_rx_work+0x10f/0x1060
[  546.752944][ T5116]  ? process_scheduled_works+0x9ef/0x1770
[  546.752965][ T5116]  process_scheduled_works+0xad1/0x1770
[  546.752998][ T5116]  ? __pfx_process_scheduled_works+0x10/0x10
[  546.753016][ T5116]  ? do_raw_spin_lock+0x121/0x290
[  546.753042][ T5116]  worker_thread+0x8a0/0xda0
[  546.753074][ T5116]  kthread+0x711/0x8a0
[  546.753098][ T5116]  ? __pfx_worker_thread+0x10/0x10
[  546.753118][ T5116]  ? __pfx_kthread+0x10/0x10
[  546.753140][ T5116]  ? rt_spin_unlock+0x150/0x200
[  546.753164][ T5116]  ? rt_spin_unlock+0x161/0x200
[  546.753185][ T5116]  ? __pfx_kthread+0x10/0x10
[  546.753208][ T5116]  ret_from_fork+0x510/0xa50
[  546.753228][ T5116]  ? __pfx_ret_from_fork+0x10/0x10
[  546.753246][ T5116]  ? __switch_to+0xc9e/0x1480
[  546.753272][ T5116]  ? __pfx_kthread+0x10/0x10
[  546.753295][ T5116]  ret_from_fork_asm+0x1a/0x30
[  546.753327][ T5116]  </TASK>
[  546.753688][ T5116] Kernel Offset: disabled