last executing test programs:

6m56.660495295s ago: executing program 1 (id=1910):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000480), 0x129540, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000008c0), 0x1, 0x400)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000d40)={0x0, 0x0, r5, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000340)={r6, 0x200, 0x0, 0x0, 0x1, [<r7=>0x0], [0x0, 0x7], [0xdb3, 0x80000002, 0x2], [0x0, 0x4, 0x1, 0x1]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0x806})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000080)={r7})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
write$qrtrtun(r1, &(0x7f0000000400), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x20000000000001a2, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x54}, 0x1, 0x0, 0x0, 0x40c4}, 0x20040840)

6m55.232773484s ago: executing program 1 (id=1911):
openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f1, &(0x7f0000000340)={'ip6tnl0\x00', 0x0})
mmap$xdp(&(0x7f0000016000/0x4000)=nil, 0x4000, 0x700000d, 0x811, 0xffffffffffffffff, 0x180000000)
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r2 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r4, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r4, 0x3)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
close(0x3)
syz_io_uring_setup(0x8d6, &(0x7f00000000c0)={0x0, 0x0, 0x1000, 0x0, 0x379}, &(0x7f0000000040)=<r6=>0x0, &(0x7f0000000080)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000240)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00'})
r8 = syz_usb_connect$lan78xx(0x5, 0x3f, &(0x7f0000000dc0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
syz_usb_control_io$lan78xx(r8, 0x0, &(0x7f0000001140)={0x34, &(0x7f0000000fc0)={0x20, 0x16}, 0x0, 0x0, 0x0, 0x0, 0x0})

6m52.066219634s ago: executing program 1 (id=1919):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000480), 0x129540, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000008c0), 0x1, 0x400)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000d40)={0x0, 0x0, r5, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000340)={r6, 0x200, 0x0, 0x0, 0x1, [<r7=>0x0], [0x0, 0x7], [0xdb3, 0x80000002, 0x2], [0x0, 0x4, 0x1, 0x1]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0x806})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000080)={r7})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
write$qrtrtun(r1, &(0x7f0000000400), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x20000000000001a2, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x54}, 0x1, 0x0, 0x0, 0x40c4}, 0x20040840)

6m50.462334074s ago: executing program 1 (id=1922):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x2, 0x4, 0x4, 0x5, 0x884}, 0x50)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r4}}, 0x58)

6m46.227459601s ago: executing program 1 (id=1931):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x801, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000480), 0x129540, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000008c0), 0x1, 0x400)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000d40)={0x0, 0x0, r5, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000340)={r6, 0x200, 0x0, 0x0, 0x1, [<r7=>0x0], [0x0, 0x7], [0xdb3, 0x80000002, 0x2], [0x0, 0x4, 0x1, 0x1]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0x806})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000080)={r7, 0x0, <r8=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r8})
close_range(r2, 0xffffffffffffffff, 0x0)
write$qrtrtun(r1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x20000000000001a2, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x54}, 0x1, 0x0, 0x0, 0x40c4}, 0x20040840)

6m45.879233273s ago: executing program 1 (id=1932):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(r2, 0x89e9)

6m30.358449552s ago: executing program 32 (id=1932):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25SENDCALLACCPT(r2, 0x89e9)

58.145150654s ago: executing program 2 (id=2866):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000340)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3fd7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, 0x0, 0x0, 0x0, 0xfffffffe}, 0xdf)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)

57.917606185s ago: executing program 2 (id=2869):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
r1 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x200079af, 0x3180, 0x8000, 0x400246}, &(0x7f0000000340)=<r2=>0x0, &(0x7f00000006c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r1, 0x1, 0x0, 0x0, 0x2})
io_uring_enter(r1, 0x4c6e, 0xc67a, 0xc, 0x0, 0x0)

57.486635818s ago: executing program 2 (id=2872):
sched_setscheduler(0x0, 0x2, 0x0)
syz_init_net_socket$ax25(0x3, 0x2, 0x6)
setsockopt(0xffffffffffffffff, 0x84, 0x80, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0401273, &(0x7f0000000500)={'\x00', 0x9, 0x3, 0x1, 0x56, 0x3})
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002580)=[{0x0, 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, 0x0, 0x0)
mlockall(0x1)
mlockall(0x5)

55.44750061s ago: executing program 2 (id=2886):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl$int_in(r0, 0x5452, &(0x7f0000000080)=0x1494)
fcntl$setstatus(r0, 0x4, 0x0)

55.341571561s ago: executing program 2 (id=2887):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000340)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3fd7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}]}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, 0x0, 0x0, 0x0, 0xfffffffe}, 0xdf)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, 0x0, 0x0)
sendmsg$inet(r2, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000)

55.211966242s ago: executing program 2 (id=2890):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0xfc1d2000)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000100)='./file0\x00')
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r4}, 0x38)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004"], 0x48)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
set_mempolicy(0x8006, 0x0, 0x5)
r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000280), 0xffffffffffffffff)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r7, 0x11b, 0x3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYRESDEC=r2, @ANYRESOCT=r5, @ANYRESHEX=r1, @ANYRES64=r4, @ANYRES64=r6, @ANYRES8=r1], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = epoll_create1(0x0)
r9 = timerfd_create(0x0, 0x0)
timerfd_settime(r9, 0x0, &(0x7f0000000200)={{}, {0x0, 0x989680}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f00000001c0)={0x1})
r10 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r10, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TCSETSW2(r10, 0x402c542c, &(0x7f00000000c0)={0xfffffff8, 0x0, 0xfffbfffd, 0x3, 0x4f, "0c41920887e8d2b791f19dd026d76d7fcb366b", 0x4, 0x200})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')

39.194989359s ago: executing program 33 (id=2890):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0xfc1d2000)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r1, &(0x7f00000000c0)=ANY=[], 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000100)='./file0\x00')
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r4}, 0x38)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004"], 0x48)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
set_mempolicy(0x8006, 0x0, 0x5)
r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000280), 0xffffffffffffffff)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r7, 0x11b, 0x3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYRESDEC=r2, @ANYRESOCT=r5, @ANYRESHEX=r1, @ANYRES64=r4, @ANYRES64=r6, @ANYRES8=r1], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = epoll_create1(0x0)
r9 = timerfd_create(0x0, 0x0)
timerfd_settime(r9, 0x0, &(0x7f0000000200)={{}, {0x0, 0x989680}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f00000001c0)={0x1})
r10 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r10, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TCSETSW2(r10, 0x402c542c, &(0x7f00000000c0)={0xfffffff8, 0x0, 0xfffbfffd, 0x3, 0x4f, "0c41920887e8d2b791f19dd026d76d7fcb366b", 0x4, 0x200})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')

7.517878226s ago: executing program 3 (id=3053):
syz_open_dev$usbmon(&(0x7f0000000080), 0x6a2, 0x20000)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x8001, 0x0, 0x81, 0xffffffff})
fsopen(0x0, 0x0)
r0 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x400, 0x8000, 0x40024e}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd_index=0x3, 0x6, 0x0, 0x0, 0x2, 0x1})
io_uring_enter(r0, 0x627, 0x4c1, 0x43, 0x0, 0x0)

7.326934577s ago: executing program 3 (id=3054):
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000000000/0x3000)=nil)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000600)={0x14, 0x0, 0x1, 0x0, 0x0, {0x2d}}, 0x14}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x4}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f00)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000440)="83", 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x4, @local}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)="b6", 0x1}], 0x1}}], 0x2, 0x0)
getsockopt$sock_buf(r5, 0x1, 0x1c, 0x0, &(0x7f0000000140))

7.092053759s ago: executing program 4 (id=3055):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="50000000010101020000000000deffff090000000c0019800800020005000000300002"], 0x50}}, 0x0)

6.597795911s ago: executing program 3 (id=3056):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

6.526308042s ago: executing program 4 (id=3057):
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000140)=@req3={0xcc42, 0x800, 0x2, 0x81, 0x1fd, 0x1, 0x1}, 0x1c)
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000140)=@assoc_value, &(0x7f0000000180)=0x8)
socket$netlink(0x10, 0x3, 0xf)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
setxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0/file0\x00', 0x0, &(0x7f0000000080), 0x2, 0x0)
r2 = gettid()
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x0, r2, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket(0x1e, 0x4, 0x0)
connect$tipc(r4, &(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e24}}, 0x10)
r5 = openat$audio1(0xffffffffffffff9c, 0x0, 0x129202, 0x0)
readv(r5, &(0x7f0000001400)=[{&(0x7f0000001440)=""/4096, 0x1000}, {0x0, 0xe0ff}], 0x2)
sendmmsg$unix(r4, 0x0, 0x0, 0x101d0)

6.496997792s ago: executing program 3 (id=3058):
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x10, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = io_uring_setup(0x34b, &(0x7f0000000300)={0x0, 0x4, 0x100, 0x0, 0x10})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0x12, 0x20000019, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x28, 0x0, 0x1, 0x20, 0x8000000, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_TX_RATES={0xc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x8, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x4}]}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4810}, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r1, &(0x7f0000000d80)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000440)={0x8d8, 0x0, 0x300, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x18}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x6007}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_FRAME={0x891, 0x33, @data_frame={@a_msdu=@type01={{0x0, 0x2, 0x8, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x8}, @broadcast, @from_mac, @from_mac=@device_b, {0x9, 0x1}, "", @value={0xa, 0x0, 0x3, 0x1, 0x81}}, @random="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"}}]}, 0x8d8}, 0x1, 0x0, 0x0, 0x10}, 0x88c0)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x15)
writev(r9, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80fae0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6811778581acb6c0101ff0000000309", 0x48}], 0x1)
setsockopt$MISDN_TIME_STAMP(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000180), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r8, 0x0)
memfd_create(&(0x7f00000000c0)='\xe9`\x10\x98[\x82?O3#\xfa\x02\xdc\x96\xa1\xbc\x80\x00+\xb6O', 0x0)
sendfile(r8, r8, 0x0, 0x40008)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r2, @ANYBLOB="08002600940900000800b7"], 0x2c}, 0x1, 0x0, 0x0, 0x805}, 0x0)

4.259144846s ago: executing program 5 (id=3060):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_sfeatures={0x33, 0x1, [{0xfe, 0x40000}]}})

3.022223613s ago: executing program 5 (id=3062):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000f0ffffff7a0af0ff0200000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7050000030000006a0af2fe000000008500000009000000b700000000000000950000000000000000e154cd8445974b26c933f7ffffffffe4fbffffff55bb2007ee51050512b5b42128aa090a79507df79f298129daa7a6b2f91af50342115e17392ac627c87881c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b85b941092314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d62058d0a413b2173619ccf55520f22c9ca8b6712f3024b7041b1df65b3e1b9bf115646d14ce53d13d0ccacda1ef0900094fa737c28b99938512c816fdcceaede3faedc51d29a47fc813a2ec00f4c7a53ac271d6d7f4ea6bf97f2f33e2ea2e534300bcb3fdc4b4861004eefbda7f54f82a804da4f85db47a4a69bf9bc5fa96ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8db03d4b7745fef1d04ec633dee254a6d491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db4bf23242a1f2c28159f09943b1b0452d1b72183aacf4a84f9130b775dd4e9e3070756f97ad791fa99dac06b57479321a0574fb30ff0000001989425f5d0b79f6584d0416d7c4bb9f547b328c8ddc20ea011bf5742e0e0d4334db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b94c461d7962b0d2277a84af326f37f3e2c25a61ec45c3af97a8f17da954aff3fc8c108755f01000000010000006e7dac1aba4b20dc7de058a4dfa7e85a8bdf1d41a2d8bda74d66f47cc180f82c5f573c6d294d3665016ac59dda0fde4745db06753a7ac74a2d32f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c958559b7dcb98a6273b8c651e24d9f679e4fbe948dfb4cc4a389469608241730459f0123fd39206000000000000eb55dad46de56ef907b059b90b8aa49afb9a79ae5498f6589880ed6eea7f9c670012be05e7de0940313c5870786554df26236ebced9390cb6941b8375d936a7d2120eca291963eb2d537d8ee4de5c183c960119451c31539b22809e1d7f0cda06a9fa87d64cb77872a2cd8a104e16bb1a2bacf13464ca03aff14a9aa4bd9539f5096412b92012e095b84c20243ff98df3347f0e399d1b9f27e3c33269c0e153b28b2d4410572bc45b98d2de10c21d3ea02208d304d455c36300000000022320178b00cc6ed7966130b547dbf8b497af002000000cd1d000000200008000000000000001abc11c800000000000000000000000928ee53595a779d243a48cea769470424d20a04c04b2c4324ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3bf2c4af38ffb7d748308eea09fc361b4735efbf3411718d6ee7aebf9ef679dbfae9fb4a79f8a836804ed3a1079b0282a12043408cd60b687dcff91af19010000000000000000456f7d2a42bd13da202274f20675eb781925441578e93046aaddea8ec4ca37f71c2710a7ea8ae0dc214e1cc275b26adfa892e6de92000000000000000000ddff004cff9ec7ffff35e62f4eeee50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e93311ab5009c68c73de2f04f15d005387577f480000ea65559eb00e76e9d0ada201bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd5ffb6151d79c1cee1cd102e3c8e63e9fba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2b485185cc92fe7f791e8f6429309d6adab4b7e508e5bf024ed8f8a005f2bbf96c89739f5cf1e750d50517a59a3ad09e8802e8f4f535447cc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f58d81f2f2653c4d9818708e27c89b552d7fcd116bce9c764c714c9402c21d181aac59efb28d4f91652f6750b6ec962802c0320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a570f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4100000000000000749efd3763655500344bae34137f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419adc16e2055b85058f793484305d7a1759782e4c571ee855a47bc00edf5e9020c09ab004321610b857e8717764b633b21cb32f0eb3280e09758bd445ab91d20baca005472b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92fe8bad99ca332af00f191b66b6a6f732a91f0e2e9190e4b448da7de018c58e950767f9b320be61e58c79d497247d278888901d442ad7f8536605a644e9e3d769db497c3960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2c4f63902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026888c8ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca211c28ed61c52573d9308a13d115b43f8b1894c8fa8a14dc4810f61ae96bf704526a8919bc700002100000000000000000001000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77819ee214e49666c464d35ca9b5143ed3b3dc8c17a23692759ccf5a205311b7ab22532697b861dfb54609fd88e6043bd52ae84c1bb0c8a6c769f952283a1f4e3842edb3d42c68a27ef6a1296dfff4a979369b0e8ebc62887aa46e820a74f91381ccc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde261fd00000000007271e28ef6806bc8e139c49b91c76bea3858f78fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7d116d2b0976cf2ec447c030931651dd315003b7a6a5433a2bb3c035fc6846abe389b25c988f0bbb889560ae99ec4b227eda2e63a1c31a2c2bd48a822cbe92b6524e0cd8020ecaa34e19e7141d5e221509342bfe7d294d1eb3de6a50ca0301f89c2ee627e949c68b3a4a426a9b7d503a26e9a714ee5f72d8805dd1bfbd081f6a5d1f1289dfe14cb9194e26a44fac273461fc5c0e0a33db7f2d43ea8086cf059f40fa2640b6bfb74dd35f5a31059c01517cf4b6641fce9a24b96767b837ca037a1199735c375c705c798e0e208e4a5259d0bfa526b462af45a6eab34000000000000000000000000c4426344ec1a3366515dee221e747f55d7dd02534bc503b9b28277c253e410986bef2111a99cc448d652929f8a67a6a1d3f00dcad91aff428aade3f85714a1d3ef29acd4d49b62339c10c2ec0dac4728288e78980c1184d8223edbccbf9258b7374e79a1f8bf3fb73cfd1e76982f3d899f71e495f0ba8c6dbb7bbdfc399847a11921f97eba0ea14c4fed9a71eedb97c02461792e4a48dac16c60c3fcaab222025d78963c3ac899fa8b63f58a30212c9b2d7fe751e2046b78f86e22861b6504c667350244dd6d9189a8b9c45f8aaff9db694811ca86ed978f23eed7459c0382074170cf1e25b0e9ba3d1cc309353eea4cd8ab96bafda393276bdd8d32ead8db9e1b54d2d3d50e2815268fc1a6ec566981bc8ca2a4583f3d40e817433d0f4f25cfe6cc1897449ba5f26a9d66ac73e6f5c401376f23a314e0b9ff997d22f3e34b7524642c248aa813edaa626f00000021f8547d393dabe616fbbde21c90be00b5a22671395c7a69c6dd4d022ffc97ddb6aa025131652d409da1d8cfc3d219d4b1c1b7b8170d7c33d91db2b73f7ae02485a209a2474b5d0790d05c01bec623056e4d3f4d3149373a28b26a15a1fcce73d57e6eaf7e6f315fe275ebc9ef7aeca277dde01dde724f419803a2172a7833ceab38d21ca4f1dea5e1f4d8824167b21dd289dd4e6ecfba9e163bdbc48e1e758ecde05c10809c9edfa6d77c652fd742e6dad13d2a397bebe3ea8bc087d3720e2202f36c7719ae34f042e19dc08a3323a3d94098a7ec171469352bab1662c3e4d4803c565cfcce32dad628fade43a4844abb230ce608726fd87e93c405a96cf638c41510f26e9da5f316"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)=@newtfilter={0x44, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r3, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_FD={0x8, 0x6, r0}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x0)

2.932227543s ago: executing program 4 (id=3063):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000380)=r1}, 0x20)
recvmsg$unix(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000009c0)=""/181, 0xb5}], 0x1, 0x0, 0x0, 0x1000000}, 0x0)
shutdown(r0, 0x0)

2.929699823s ago: executing program 0 (id=3064):
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000000000/0x3000)=nil)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000600)={0x14, 0x0, 0x1, 0x0, 0x0, {0x2d}}, 0x14}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x4}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f00)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000440)="83", 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x4, @local}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)="b6", 0x1}], 0x1}}], 0x2, 0x0)
getsockopt$sock_buf(r5, 0x1, 0x1c, 0x0, &(0x7f0000000140))

2.375133466s ago: executing program 4 (id=3065):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x2c020400)
sendmsg$rds(0xffffffffffffffff, 0x0, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0xa007ca, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x483, &(0x7f0000001040)="$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")

2.350303416s ago: executing program 5 (id=3066):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.157601308s ago: executing program 5 (id=3067):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x3, &(0x7f0000000140)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
syz_emit_ethernet(0x3b6, &(0x7f0000000b40)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaabb86dd60122d9203803afffe8000000000000000000000000000bbff020000000000000000000000000001860090780000f5000000000000000000000aa78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af180200010000000500000000260004000118fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a70080000000000000a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978001d06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c02"], 0x0)
futex(&(0x7f000000cffc)=0x2, 0x189, 0x2, 0x0, 0x0, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
mkdir(0x0, 0x0)
rmdir(0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000440), 0x2, 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x50)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x9)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
write$cgroup_freezer_state(r1, &(0x7f00000000c0)='FROZEN\x00', 0x7)
gettid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r2}, 0x18)
r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, &(0x7f0000000000)={0x4, 0x1, 0x4}, 0xc)
fsmount(r3, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)
sendfile(r1, r1, 0x0, 0x8000002)

2.133241888s ago: executing program 0 (id=3068):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x50)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32], 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0xa, 0x0, 0x0, 0x2, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
getpriority(0x0, 0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1801)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x8, 0x0)
mq_timedreceive(0xffffffffffffffff, &(0x7f0000000340)=""/200, 0xc8, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.82539059s ago: executing program 0 (id=3069):
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x1)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
r2 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)

1.409738892s ago: executing program 4 (id=3070):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1a, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @tracing=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f0000000380)='memory.stat\x00', 0x275a, 0x0)
read(r3, &(0x7f0000000040)=""/190, 0xbe)

1.286274273s ago: executing program 0 (id=3071):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)={0x214, 0x14, 0x1, 0x70bd2d, 0x0, "", [@nested={0x202, 0x0, 0x0, 0x1, [@generic="77273e417b3009a815e9152ce966702165ea3196bcec6ba4b0abf0018731d3d736", @generic="03b2b242f8c762d187a6852402a2c22160fd08cf61bc87c3158ca503f693d5fda534b375397d94e7a5", @generic="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", @generic="c6f7c5b183f7d0af47c5916b9f7e9017db195533c508ee7ad2c777e1eaf08d4b92281ead73ccbf53c3d41fb4d13dfa94f7c6ff516316f6170e9739a40ec3ac4b628c875b5b611834dad89811b2b747c3d36c2a0a3a30d908bd13fdd53ed8869babfb5cb1d290684d2cec34c5e7d358893ab00aa53800f024a51999d48f1f7c01b9d46406b900a0037a91a2393784ff82194712f19dd145bce5a08a827ecdca9eccc2d28f9f8f3976d16bd15cea091f358d2f63bededc8669"]}]}, 0x214}], 0x1}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000340), 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$sg(0x0, 0x0, 0x800)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x10, @scatter={0x1, 0xcc, &(0x7f00000006c0)=[{&(0x7f0000000080)=""/210, 0xd2}]}, &(0x7f0000000240)="128d7acf0800", 0x0, 0x0, 0x0, 0xffffffff, 0x0})
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00000000c0))
read$sequencer(0xffffffffffffffff, &(0x7f00000003c0)=""/130, 0x82)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa04, &(0x7f0000000000)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x0, 0x2})
syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000019080), &(0x7f0000000100))

1.203395224s ago: executing program 5 (id=3072):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x1ff003, 0x4, 0x7f, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={r0, &(0x7f0000000380), 0x0}, 0x20)

317.979289ms ago: executing program 4 (id=3073):
openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f1, &(0x7f0000000340)={'ip6tnl0\x00', 0x0})
mmap$xdp(&(0x7f0000016000/0x4000)=nil, 0x4000, 0x700000d, 0x811, 0xffffffffffffffff, 0x180000000)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r1 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0)
socket$key(0xf, 0x3, 0x2)
syz_open_dev$video4linux(0x0, 0x5, 0x1a9a00)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r2, 0x3)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
close(0x3)
syz_io_uring_setup(0x8d6, 0x0, &(0x7f0000000040)=<r4=>0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000240)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'lo\x00'})
r5 = syz_usb_connect$lan78xx(0x5, 0x3f, &(0x7f0000000dc0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0)
syz_usb_control_io$lan78xx(r5, 0x0, &(0x7f0000001140)={0x34, &(0x7f0000000fc0)={0x20, 0x16}, 0x0, 0x0, 0x0, 0x0, 0x0})

221.9225ms ago: executing program 3 (id=3074):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, 0x0, 0x0)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000140)=0xfffffffc, 0x4)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)

166.350569ms ago: executing program 0 (id=3075):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffc01, 0x0)

61.8798ms ago: executing program 3 (id=3076):
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000000000/0x3000)=nil)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000600)={0x14, r1, 0x1, 0x0, 0x0, {0x2d}}, 0x14}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x4}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f00)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000440)="83", 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x4, @local}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)="b6", 0x1}], 0x1}}], 0x2, 0x0)
getsockopt$sock_buf(r5, 0x1, 0x1c, 0x0, &(0x7f0000000140))

1.56117ms ago: executing program 0 (id=3077):
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a0101"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

0s ago: executing program 5 (id=3078):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

kernel console output (not intermixed with test programs):

 try to register things with the same name in the same directory.
[  991.549340][T13173] Bluetooth: hci4: failed to register connection device
[  992.501754][T13442] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2096'.
[  992.869023][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  992.875342][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  994.665839][ T5793] Bluetooth: hci4: command tx timeout
[  995.946188][T13462] random: crng reseeded on system resumption
[  998.210344][T13465] binder: 13464:13465 ioctl c0306201 0 returned -14
[ 1000.284537][T13480] random: crng reseeded on system resumption
[ 1000.953217][T13477] vivid-007: kernel_thread() failed
[ 1000.967496][T13173] Bluetooth: hci2: ACL packet for unknown connection handle 200
[ 1001.706403][T13500] random: crng reseeded on system resumption
[ 1002.387864][T13496] vivid-007: kernel_thread() failed
[ 1003.561416][T13510] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2116'.
[ 1005.023580][T13523] random: crng reseeded on system resumption
[ 1007.772583][T13173] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[ 1007.783226][T13173] CPU: 1 PID: 13173 Comm: kworker/u5:0 Not tainted syzkaller #0
[ 1007.790887][T13173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1007.800962][T13173] Workqueue: hci4 hci_rx_work
[ 1007.805708][T13173] Call Trace:
[ 1007.809000][T13173]  <TASK>
[ 1007.811943][T13173]  dump_stack_lvl+0x16c/0x230
[ 1007.816651][T13173]  ? show_regs_print_info+0x20/0x20
[ 1007.821873][T13173]  ? load_image+0x3b0/0x3b0
[ 1007.826434][T13173]  sysfs_create_dir_ns+0x256/0x280
[ 1007.831589][T13173]  ? hci_rx_work+0x43a/0xd80
[ 1007.836200][T13173]  ? sysfs_warn_dup+0xa0/0xa0
[ 1007.840907][T13173]  ? do_raw_spin_unlock+0x121/0x230
[ 1007.846133][T13173]  kobject_add_internal+0x6b8/0xc70
[ 1007.851360][T13173]  kobject_add+0x156/0x220
[ 1007.855796][T13173]  ? __rwlock_init+0x150/0x150
[ 1007.860587][T13173]  ? kobject_init+0x1e0/0x1e0
[ 1007.865282][T13173]  ? _raw_spin_unlock+0x28/0x40
[ 1007.870153][T13173]  ? get_device_parent+0x366/0x390
[ 1007.875297][T13173]  device_add+0x408/0xc20
[ 1007.879655][T13173]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1007.884628][T13173]  le_conn_complete_evt+0xf36/0x1500
[ 1007.889937][T13173]  ? hci_event_packet+0x4a7/0x1210
[ 1007.895185][T13173]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1007.901476][T13173]  ? __copy_skb_header+0xa7/0x550
[ 1007.906536][T13173]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1007.912202][T13173]  ? skb_pull_data+0xfb/0x200
[ 1007.916990][T13173]  hci_le_conn_complete_evt+0x187/0x440
[ 1007.922571][T13173]  ? hci_remote_host_features_evt+0x160/0x160
[ 1007.928659][T13173]  hci_event_packet+0x795/0x1210
[ 1007.933632][T13173]  ? bis_list+0x290/0x290
[ 1007.937993][T13173]  ? lockdep_hardirqs_on+0x98/0x150
[ 1007.943240][T13173]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1007.948485][T13173]  hci_rx_work+0x43a/0xd80
[ 1007.952941][T13173]  ? process_scheduled_works+0x957/0x15b0
[ 1007.958700][T13173]  process_scheduled_works+0xa45/0x15b0
[ 1007.964335][T13173]  ? assign_work+0x400/0x400
[ 1007.968959][T13173]  ? assign_work+0x39e/0x400
[ 1007.973588][T13173]  worker_thread+0xa55/0xfc0
[ 1007.978217][T13173]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 1007.984153][T13173]  ? _raw_spin_unlock+0x40/0x40
[ 1007.989056][T13173]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 1007.994993][T13173]  kthread+0x2fa/0x390
[ 1007.999078][T13173]  ? pr_cont_work+0x560/0x560
[ 1008.003784][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1008.008403][T13173]  ret_from_fork+0x48/0x80
[ 1008.012866][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1008.017481][T13173]  ret_from_fork_asm+0x11/0x20
[ 1008.022296][T13173]  </TASK>
[ 1008.129282][T13173] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1008.144720][T13173] Bluetooth: hci4: failed to register connection device
[ 1010.225943][T13173] Bluetooth: hci4: command tx timeout
[ 1010.344727][T13558] random: crng reseeded on system resumption
[ 1011.255902][T13555] vivid-007: kernel_thread() failed
[ 1013.896875][T13566] random: crng reseeded on system resumption
[ 1014.536929][T13563] vivid-007: kernel_thread() failed
[ 1016.701576][T13581] lo speed is unknown, defaulting to 1000
[ 1019.553284][T13621] random: crng reseeded on system resumption
[ 1021.906489][T13173] Bluetooth: hci0: unexpected event for opcode 0x0402
[ 1022.405568][T13637] overlayfs: missing 'lowerdir'
[ 1023.124725][T13656] afs: Unknown parameter 'dy'
[ 1026.751689][T13677] random: crng reseeded on system resumption
[ 1027.897000][T13686] random: crng reseeded on system resumption
[ 1028.644246][T13682] vivid-007: kernel_thread() failed
[ 1028.751746][T13688] random: crng reseeded on system resumption
[ 1029.650046][T13694] random: crng reseeded on system resumption
[ 1032.141046][T13725] random: crng reseeded on system resumption
[ 1032.820457][T13722] vivid-007: kernel_thread() failed
[ 1033.299935][T13735] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2174'.
[ 1034.481496][T13744] random: crng reseeded on system resumption
[ 1034.687249][T13745] fuse: Bad value for 'fd'
[ 1036.055985][T10670] usb 1-1: new full-speed USB device number 28 using dummy_hcd
[ 1037.034384][T13766] random: crng reseeded on system resumption
[ 1037.945626][T10670] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1038.027778][T10670] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1038.103638][T10670] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1038.113515][T10670] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1038.140087][T10670] usb 1-1: Product: syz
[ 1038.144308][T10670] usb 1-1: Manufacturer: syz
[ 1038.158209][T10670] usb 1-1: SerialNumber: syz
[ 1038.173646][T10670] usb 1-1: config 0 descriptor??
[ 1038.193333][T10670] usb 1-1: selecting invalid altsetting 0
[ 1038.860505][T13776] binder: 13773:13776 ioctl 0 200000000040 returned -22
[ 1039.869385][ T5835] usb 1-1: USB disconnect, device number 28
[ 1043.363799][T13795] overlayfs: missing 'lowerdir'
[ 1047.376398][T13825] overlayfs: missing 'lowerdir'
[ 1047.406192][ T1208] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[ 1049.909382][ T1208] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1049.933615][ T1208] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1049.945897][ T1208] usb 1-1: Product: syz
[ 1049.950089][ T1208] usb 1-1: Manufacturer: syz
[ 1049.954696][ T1208] usb 1-1: SerialNumber: syz
[ 1050.120934][ T1208] usb 1-1: can't set config #1, error -71
[ 1050.132673][ T1208] usb 1-1: USB disconnect, device number 29
[ 1050.579685][T13838] random: crng reseeded on system resumption
[ 1051.276417][T13835] vivid-007: kernel_thread() failed
[ 1051.414624][ T1083] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1051.496196][ T1083] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1051.512447][T13841] lo speed is unknown, defaulting to 1000
[ 1051.998795][ T5793] Bluetooth: hci4: command 0x0406 tx timeout
[ 1052.106561][T13852] syzkaller0: entered promiscuous mode
[ 1052.140936][T13852] syzkaller0: entered allmulticast mode
[ 1053.086194][ T5856] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1053.307197][ T5856] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1053.366987][ T5856] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1053.449717][ T5856] usb 3-1: Product: syz
[ 1053.464059][ T5856] usb 3-1: Manufacturer: syz
[ 1053.490704][ T5856] usb 3-1: SerialNumber: syz
[ 1053.733398][T13880] random: crng reseeded on system resumption
[ 1054.459804][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.475624][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.609168][ T5856] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1054.673212][ T5856] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1054.715923][ T5856] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1054.751277][ T5856] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1054.784574][ T5856] lan78xx: probe of 3-1:1.0 failed with error -71
[ 1054.834181][ T5856] usb 3-1: USB disconnect, device number 15
[ 1055.095400][T13888] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1055.159487][T13883] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1055.169060][T13883] kvm: requested 13409 ns i8254 timer period limited to 200000 ns
[ 1055.177157][T13883] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1055.185518][T13883] kvm: requested 41904 ns i8254 timer period limited to 200000 ns
[ 1055.193946][T13883] kvm: requested 64533 ns i8254 timer period limited to 200000 ns
[ 1055.202117][T13883] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1055.211303][T13883] kvm: requested 96381 ns i8254 timer period limited to 200000 ns
[ 1055.219876][T13883] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1055.228030][T13883] kvm: requested 29333 ns i8254 timer period limited to 200000 ns
[ 1057.272861][ T1208] Process accounting resumed
[ 1058.902545][T13173] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[ 1058.912184][T13173] CPU: 0 PID: 13173 Comm: kworker/u5:0 Not tainted syzkaller #0
[ 1058.919844][T13173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1058.929922][T13173] Workqueue: hci4 hci_rx_work
[ 1058.934633][T13173] Call Trace:
[ 1058.937944][T13173]  <TASK>
[ 1058.940907][T13173]  dump_stack_lvl+0x16c/0x230
[ 1058.945616][T13173]  ? show_regs_print_info+0x20/0x20
[ 1058.950824][T13173]  ? load_image+0x3b0/0x3b0
[ 1058.955340][T13173]  sysfs_create_dir_ns+0x256/0x280
[ 1058.960459][T13173]  ? hci_rx_work+0x43a/0xd80
[ 1058.965058][T13173]  ? sysfs_warn_dup+0xa0/0xa0
[ 1058.969753][T13173]  ? do_raw_spin_unlock+0x121/0x230
[ 1058.974984][T13173]  kobject_add_internal+0x6b8/0xc70
[ 1058.980187][T13173]  kobject_add+0x156/0x220
[ 1058.984604][T13173]  ? __rwlock_init+0x150/0x150
[ 1058.989371][T13173]  ? kobject_init+0x1e0/0x1e0
[ 1058.994044][T13173]  ? _raw_spin_unlock+0x28/0x40
[ 1058.998907][T13173]  ? get_device_parent+0x366/0x390
[ 1059.004026][T13173]  device_add+0x408/0xc20
[ 1059.008378][T13173]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1059.013338][T13173]  le_conn_complete_evt+0xf36/0x1500
[ 1059.018627][T13173]  ? hci_event_packet+0x4a7/0x1210
[ 1059.023741][T13173]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1059.029984][T13173]  ? __copy_skb_header+0xa7/0x550
[ 1059.035098][T13173]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1059.040735][T13173]  ? skb_pull_data+0xfb/0x200
[ 1059.045424][T13173]  hci_le_conn_complete_evt+0x187/0x440
[ 1059.050994][T13173]  ? hci_remote_host_features_evt+0x160/0x160
[ 1059.057065][T13173]  hci_event_packet+0x795/0x1210
[ 1059.062021][T13173]  ? bis_list+0x290/0x290
[ 1059.066363][T13173]  ? kcov_remote_start+0x2b/0x7f0
[ 1059.071402][T13173]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1059.076608][T13173]  hci_rx_work+0x43a/0xd80
[ 1059.081033][T13173]  ? process_scheduled_works+0x957/0x15b0
[ 1059.086754][T13173]  process_scheduled_works+0xa45/0x15b0
[ 1059.092334][T13173]  ? assign_work+0x400/0x400
[ 1059.096947][T13173]  ? assign_work+0x39e/0x400
[ 1059.101538][T13173]  worker_thread+0xa55/0xfc0
[ 1059.106127][T13173]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 1059.112014][T13173]  ? _raw_spin_unlock+0x40/0x40
[ 1059.116881][T13173]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 1059.122805][T13173]  kthread+0x2fa/0x390
[ 1059.126891][T13173]  ? pr_cont_work+0x560/0x560
[ 1059.131569][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1059.136154][T13173]  ret_from_fork+0x48/0x80
[ 1059.140587][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1059.145169][T13173]  ret_from_fork_asm+0x11/0x20
[ 1059.149942][T13173]  </TASK>
[ 1059.157709][T13173] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1059.172282][T13173] Bluetooth: hci4: failed to register connection device
[ 1059.656069][ T6233] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[ 1059.891420][ T6233] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1059.912332][ T6233] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1059.954458][ T6233] usb 1-1: Product: syz
[ 1059.961920][ T6233] usb 1-1: Manufacturer: syz
[ 1059.979212][ T6233] usb 1-1: SerialNumber: syz
[ 1060.437173][ T6233] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1060.483056][ T6233] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1060.501726][ T6233] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1060.525109][ T6233] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1060.539974][ T6233] lan78xx: probe of 1-1:1.0 failed with error -71
[ 1060.554838][ T6233] usb 1-1: USB disconnect, device number 30
[ 1061.186012][T13173] Bluetooth: hci4: command 0x0406 tx timeout
[ 1061.836949][T13940] random: crng reseeded on system resumption
[ 1063.530348][T13946] syzkaller0: entered promiscuous mode
[ 1063.571298][T13946] syzkaller0: entered allmulticast mode
[ 1063.638005][T13948] fuse: Unknown parameter 'grou00000000000000000000'
[ 1063.969468][T13173] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[ 1063.980343][T13173] CPU: 0 PID: 13173 Comm: kworker/u5:0 Not tainted syzkaller #0
[ 1063.987997][T13173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1063.998087][T13173] Workqueue: hci4 hci_rx_work
[ 1064.002801][T13173] Call Trace:
[ 1064.006074][T13173]  <TASK>
[ 1064.009001][T13173]  dump_stack_lvl+0x16c/0x230
[ 1064.013682][T13173]  ? show_regs_print_info+0x20/0x20
[ 1064.018880][T13173]  ? load_image+0x3b0/0x3b0
[ 1064.023385][T13173]  sysfs_create_dir_ns+0x256/0x280
[ 1064.028497][T13173]  ? hci_rx_work+0x43a/0xd80
[ 1064.033083][T13173]  ? sysfs_warn_dup+0xa0/0xa0
[ 1064.037793][T13173]  ? do_raw_spin_unlock+0x121/0x230
[ 1064.043152][T13173]  kobject_add_internal+0x6b8/0xc70
[ 1064.048391][T13173]  kobject_add+0x156/0x220
[ 1064.052804][T13173]  ? __rwlock_init+0x150/0x150
[ 1064.057572][T13173]  ? kobject_init+0x1e0/0x1e0
[ 1064.062338][T13173]  ? _raw_spin_unlock+0x28/0x40
[ 1064.067199][T13173]  ? get_device_parent+0x366/0x390
[ 1064.072321][T13173]  device_add+0x408/0xc20
[ 1064.076659][T13173]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1064.081621][T13173]  le_conn_complete_evt+0xf36/0x1500
[ 1064.086925][T13173]  ? hci_event_packet+0x4a7/0x1210
[ 1064.092074][T13173]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1064.098351][T13173]  ? __copy_skb_header+0xa7/0x550
[ 1064.103437][T13173]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1064.109112][T13173]  ? skb_pull_data+0xfb/0x200
[ 1064.113823][T13173]  hci_le_conn_complete_evt+0x187/0x440
[ 1064.119407][T13173]  ? hci_remote_host_features_evt+0x160/0x160
[ 1064.125501][T13173]  hci_event_packet+0x795/0x1210
[ 1064.130474][T13173]  ? bis_list+0x290/0x290
[ 1064.134830][T13173]  ? lockdep_hardirqs_on+0x98/0x150
[ 1064.140050][T13173]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1064.145293][T13173]  hci_rx_work+0x43a/0xd80
[ 1064.149758][T13173]  ? process_scheduled_works+0x957/0x15b0
[ 1064.155498][T13173]  process_scheduled_works+0xa45/0x15b0
[ 1064.161067][T13173]  ? assign_work+0x400/0x400
[ 1064.165744][T13173]  ? assign_work+0x39e/0x400
[ 1064.170335][T13173]  worker_thread+0xa55/0xfc0
[ 1064.174918][T13173]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 1064.180806][T13173]  ? _raw_spin_unlock+0x40/0x40
[ 1064.185645][T13173]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 1064.191549][T13173]  kthread+0x2fa/0x390
[ 1064.195702][T13173]  ? pr_cont_work+0x560/0x560
[ 1064.200380][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1064.204978][T13173]  ret_from_fork+0x48/0x80
[ 1064.209405][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1064.213988][T13173]  ret_from_fork_asm+0x11/0x20
[ 1064.218759][T13173]  </TASK>
[ 1064.228885][T13173] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1064.243261][T13173] Bluetooth: hci4: failed to register connection device
[ 1065.595963][ T1208] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[ 1065.860690][ T1208] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1065.898309][ T1208] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1066.028485][ T1208] usb 3-1: Product: syz
[ 1066.139554][ T1208] usb 3-1: Manufacturer: syz
[ 1066.212484][ T1208] usb 3-1: SerialNumber: syz
[ 1066.306265][T13173] Bluetooth: hci4: command 0x0406 tx timeout
[ 1067.183996][T13985] create_pit_timer: 12 callbacks suppressed
[ 1067.184011][T13985] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1067.390096][ T1208] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1067.456301][ T1208] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1067.494074][ T1208] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1067.523849][ T1208] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1067.564861][ T1208] lan78xx: probe of 3-1:1.0 failed with error -71
[ 1067.615771][ T1208] usb 3-1: USB disconnect, device number 16
[ 1069.442885][T14001] random: crng reseeded on system resumption
[ 1071.915937][T10670] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 1072.134658][T10670] usb 5-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1072.156086][T10670] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1072.175280][T10670] usb 5-1: Product: syz
[ 1072.186050][T10670] usb 5-1: Manufacturer: syz
[ 1072.190855][T10670] usb 5-1: SerialNumber: syz
[ 1072.624885][T10670] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1072.648039][T10670] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1072.764334][T10670] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1072.782118][T10670] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1072.837119][T10670] lan78xx: probe of 5-1:1.0 failed with error -71
[ 1072.899959][T10670] usb 5-1: USB disconnect, device number 2
[ 1073.539639][T14046] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1073.546193][T14046] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1073.822297][T14049] random: crng reseeded on system resumption
[ 1073.888135][T14046] vhci_hcd vhci_hcd.0: Device attached
[ 1074.293650][T10670] usb 33-1: new low-speed USB device number 3 using vhci_hcd
[ 1074.797097][T14047] vhci_hcd: connection reset by peer
[ 1074.811770][ T1106] vhci_hcd: stop threads
[ 1074.816379][ T1106] vhci_hcd: release socket
[ 1074.825919][ T1106] vhci_hcd: disconnect device
[ 1075.008797][T14056] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1075.453716][T14070] overlayfs: missing 'workdir'
[ 1076.727143][T14091] random: crng reseeded on system resumption
[ 1077.390927][T14088] vivid-007: kernel_thread() failed
[ 1077.964140][T14101] overlayfs: missing 'workdir'
[ 1078.609896][T13173] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[ 1078.619639][T13173] CPU: 1 PID: 13173 Comm: kworker/u5:0 Not tainted syzkaller #0
[ 1078.627306][T13173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1078.637410][T13173] Workqueue: hci4 hci_rx_work
[ 1078.642132][T13173] Call Trace:
[ 1078.645429][T13173]  <TASK>
[ 1078.648395][T13173]  dump_stack_lvl+0x16c/0x230
[ 1078.653106][T13173]  ? show_regs_print_info+0x20/0x20
[ 1078.658351][T13173]  ? load_image+0x3b0/0x3b0
[ 1078.662939][T13173]  sysfs_create_dir_ns+0x256/0x280
[ 1078.668111][T13173]  ? hci_rx_work+0x43a/0xd80
[ 1078.672741][T13173]  ? sysfs_warn_dup+0xa0/0xa0
[ 1078.677464][T13173]  ? do_raw_spin_unlock+0x121/0x230
[ 1078.682704][T13173]  kobject_add_internal+0x6b8/0xc70
[ 1078.687942][T13173]  kobject_add+0x156/0x220
[ 1078.692385][T13173]  ? __rwlock_init+0x150/0x150
[ 1078.697219][T13173]  ? kobject_init+0x1e0/0x1e0
[ 1078.701930][T13173]  ? _raw_spin_unlock+0x28/0x40
[ 1078.706814][T13173]  ? get_device_parent+0x366/0x390
[ 1078.711966][T13173]  device_add+0x408/0xc20
[ 1078.716337][T13173]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1078.721313][T13173]  le_conn_complete_evt+0xf36/0x1500
[ 1078.726638][T13173]  ? hci_event_packet+0x4a7/0x1210
[ 1078.731794][T13173]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1078.738073][T13173]  ? __copy_skb_header+0xa7/0x550
[ 1078.743138][T13173]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1078.748796][T13173]  ? skb_pull_data+0xfb/0x200
[ 1078.753571][T13173]  hci_le_conn_complete_evt+0x187/0x440
[ 1078.759133][T13173]  ? hci_remote_host_features_evt+0x160/0x160
[ 1078.765205][T13173]  hci_event_packet+0x795/0x1210
[ 1078.770171][T13173]  ? bis_list+0x290/0x290
[ 1078.774515][T13173]  ? lockdep_hardirqs_on+0x98/0x150
[ 1078.779719][T13173]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1078.784932][T13173]  hci_rx_work+0x43a/0xd80
[ 1078.789371][T13173]  ? process_scheduled_works+0x957/0x15b0
[ 1078.795096][T13173]  process_scheduled_works+0xa45/0x15b0
[ 1078.800692][T13173]  ? assign_work+0x400/0x400
[ 1078.805300][T13173]  ? assign_work+0x39e/0x400
[ 1078.809897][T13173]  worker_thread+0xa55/0xfc0
[ 1078.814490][T13173]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 1078.820390][T13173]  ? _raw_spin_unlock+0x40/0x40
[ 1078.825243][T13173]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 1078.831158][T13173]  kthread+0x2fa/0x390
[ 1078.835237][T13173]  ? pr_cont_work+0x560/0x560
[ 1078.839926][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1078.844532][T13173]  ret_from_fork+0x48/0x80
[ 1078.848961][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1078.853560][T13173]  ret_from_fork_asm+0x11/0x20
[ 1078.858354][T13173]  </TASK>
[ 1078.868133][T13173] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1078.883541][T13173] Bluetooth: hci4: failed to register connection device
[ 1079.858462][T14126] random: crng reseeded on system resumption
[ 1080.014165][T10670] vhci_hcd: vhci_device speed not set
[ 1080.749760][T14130] overlayfs: missing 'lowerdir'
[ 1080.761372][T14131] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2288'.
[ 1080.946107][T13173] Bluetooth: hci4: command 0x0406 tx timeout
[ 1081.235130][T14144] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1081.990257][T14153] random: crng reseeded on system resumption
[ 1082.668732][T14150] vivid-007: kernel_thread() failed
[ 1083.484868][T14162] random: crng reseeded on system resumption
[ 1084.489297][T14173] netlink: 'syz.4.2302': attribute type 7 has an invalid length.
[ 1084.616015][ T5835] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[ 1084.647027][T14176] netlink: 'syz.2.2303': attribute type 21 has an invalid length.
[ 1084.654937][T14176] netlink: 'syz.2.2303': attribute type 6 has an invalid length.
[ 1084.678322][T14178] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1084.686054][T14176] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2303'.
[ 1084.816432][ T5835] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1084.841558][ T5835] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1084.865231][ T5835] usb 1-1: Product: syz
[ 1084.904951][ T5835] usb 1-1: Manufacturer: syz
[ 1084.980245][ T5835] usb 1-1: SerialNumber: syz
[ 1085.007216][T14186] random: crng reseeded on system resumption
[ 1086.280907][ T5835] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1086.435638][ T5835] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1086.448564][ T5835] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1086.458441][ T5835] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1086.607750][ T5835] lan78xx: probe of 1-1:1.0 failed with error -71
[ 1086.650428][ T5835] usb 1-1: USB disconnect, device number 31
[ 1087.783558][T14213] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1088.184283][T14223] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2317'.
[ 1088.662991][T14225] lo speed is unknown, defaulting to 1000
[ 1089.340996][T14240] random: crng reseeded on system resumption
[ 1090.023677][T14237] vivid-007: kernel_thread() failed
[ 1090.396558][T14248] fuse: Bad value for 'user_id'
[ 1090.901727][T14260] lo speed is unknown, defaulting to 1000
[ 1091.198988][T14268] random: crng reseeded on system resumption
[ 1091.889751][T14265] vivid-007: kernel_thread() failed
[ 1092.539292][T14287] random: crng reseeded on system resumption
[ 1093.638123][T14294] random: crng reseeded on system resumption
[ 1094.654844][T14303] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2337'.
[ 1095.727248][T14306] lo speed is unknown, defaulting to 1000
[ 1095.845320][T14317] random: crng reseeded on system resumption
[ 1096.830724][T14324] random: crng reseeded on system resumption
[ 1099.131831][T14327] random: crng reseeded on system resumption
[ 1100.376483][T14341] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2349'.
[ 1100.724902][T14347] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2352'.
[ 1101.167033][T14355] random: crng reseeded on system resumption
[ 1101.842323][T14352] vivid-007: kernel_thread() failed
[ 1102.521358][T14374] random: crng reseeded on system resumption
[ 1103.745436][T14381] syzkaller0: tun_chr_ioctl cmd 1074025688
[ 1105.419679][T14401] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1111.069866][T13173] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[ 1111.082106][T13173] CPU: 0 PID: 13173 Comm: kworker/u5:0 Not tainted syzkaller #0
[ 1111.089763][T13173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1111.099820][T13173] Workqueue: hci2 hci_rx_work
[ 1111.104512][T13173] Call Trace:
[ 1111.107798][T13173]  <TASK>
[ 1111.110735][T13173]  dump_stack_lvl+0x16c/0x230
[ 1111.115424][T13173]  ? show_regs_print_info+0x20/0x20
[ 1111.120630][T13173]  ? load_image+0x3b0/0x3b0
[ 1111.125144][T13173]  sysfs_create_dir_ns+0x256/0x280
[ 1111.130265][T13173]  ? hci_rx_work+0x43a/0xd80
[ 1111.134898][T13173]  ? sysfs_warn_dup+0xa0/0xa0
[ 1111.139590][T13173]  ? do_raw_spin_unlock+0x121/0x230
[ 1111.144797][T13173]  kobject_add_internal+0x6b8/0xc70
[ 1111.150002][T13173]  kobject_add+0x156/0x220
[ 1111.154436][T13173]  ? __rwlock_init+0x150/0x150
[ 1111.159208][T13173]  ? kobject_init+0x1e0/0x1e0
[ 1111.163889][T13173]  ? _raw_spin_unlock+0x28/0x40
[ 1111.168754][T13173]  ? get_device_parent+0x366/0x390
[ 1111.173888][T13173]  device_add+0x408/0xc20
[ 1111.178235][T13173]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1111.183212][T13173]  le_conn_complete_evt+0xf36/0x1500
[ 1111.188519][T13173]  ? hci_event_packet+0x4a7/0x1210
[ 1111.193647][T13173]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1111.199909][T13173]  ? __copy_skb_header+0xa7/0x550
[ 1111.204956][T13173]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1111.210604][T13173]  ? skb_pull_data+0xfb/0x200
[ 1111.215291][T13173]  hci_le_conn_complete_evt+0x187/0x440
[ 1111.220862][T13173]  ? hci_remote_host_features_evt+0x160/0x160
[ 1111.226935][T13173]  hci_event_packet+0x795/0x1210
[ 1111.231883][T13173]  ? bis_list+0x290/0x290
[ 1111.236217][T13173]  ? lockdep_hardirqs_on+0x98/0x150
[ 1111.241420][T13173]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1111.246630][T13173]  hci_rx_work+0x43a/0xd80
[ 1111.251077][T13173]  ? process_scheduled_works+0x957/0x15b0
[ 1111.256809][T13173]  process_scheduled_works+0xa45/0x15b0
[ 1111.262383][T13173]  ? assign_work+0x400/0x400
[ 1111.266985][T13173]  ? assign_work+0x39e/0x400
[ 1111.271592][T13173]  worker_thread+0xa55/0xfc0
[ 1111.276190][T13173]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 1111.282093][T13173]  ? _raw_spin_unlock+0x40/0x40
[ 1111.286948][T13173]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 1111.292873][T13173]  kthread+0x2fa/0x390
[ 1111.296964][T13173]  ? pr_cont_work+0x560/0x560
[ 1111.301647][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1111.306241][T13173]  ret_from_fork+0x48/0x80
[ 1111.310681][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1111.315277][T13173]  ret_from_fork_asm+0x11/0x20
[ 1111.320064][T13173]  </TASK>
[ 1111.328649][T13173] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1111.342725][T13173] Bluetooth: hci2: failed to register connection device
[ 1112.767117][T14463] fuse: Bad value for 'fd'
[ 1113.292248][T14441] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2379'.
[ 1113.426102][T13173] Bluetooth: hci2: command 0x0406 tx timeout
[ 1114.783582][T14498] random: crng reseeded on system resumption
[ 1115.544023][T14496] vivid-007: kernel_thread() failed
[ 1115.766888][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.790714][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[ 1115.866474][T14502] fuse: Bad value for 'fd'
[ 1116.155485][T14509] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2399'.
[ 1117.214298][T14516] syzkaller0: entered promiscuous mode
[ 1117.220035][T14516] syzkaller0: entered allmulticast mode
[ 1117.658993][T14527] fuse: Bad value for 'fd'
[ 1118.168229][T14535] random: crng reseeded on system resumption
[ 1118.838599][T14533] vivid-007: kernel_thread() failed
[ 1119.544217][T14549] syzkaller0: entered promiscuous mode
[ 1119.563781][T14549] syzkaller0: entered allmulticast mode
[ 1120.650615][T14565] syzkaller0: entered promiscuous mode
[ 1120.656722][T14565] syzkaller0: entered allmulticast mode
[ 1121.046807][T14574] random: crng reseeded on system resumption
[ 1127.795387][T14631] random: crng reseeded on system resumption
[ 1129.843035][ T5793] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1129.851735][ T5793] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1129.861720][ T5793] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1129.898267][ T5793] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1129.906644][ T5793] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1129.914454][ T5793] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1130.140061][ T8353] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1130.274921][T14640] lo speed is unknown, defaulting to 1000
[ 1130.408000][ T8353] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1130.582495][ T8353] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1130.791161][ T8353] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1131.221209][T14640] chnl_net:caif_netlink_parms(): no params data found
[ 1131.937224][T14640] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1131.986066][T14640] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1131.991519][ T5793] Bluetooth: hci1: command tx timeout
[ 1132.020709][T14640] bridge_slave_0: entered allmulticast mode
[ 1132.028452][T14640] bridge_slave_0: entered promiscuous mode
[ 1132.038574][T14640] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1132.226219][T14640] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1132.275126][T14640] bridge_slave_1: entered allmulticast mode
[ 1132.376851][T14640] bridge_slave_1: entered promiscuous mode
[ 1133.031725][T14640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1133.069077][T14640] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1133.464733][T14640] team0: Port device team_slave_0 added
[ 1133.481729][T14640] team0: Port device team_slave_1 added
[ 1133.998236][ T8353] batman_adv: batadv0: Interface deactivated: gretap1
[ 1134.061870][ T8353] batman_adv: batadv0: Removing interface: gretap1
[ 1134.072002][ T5793] Bluetooth: hci1: command tx timeout
[ 1134.126582][T14640] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1134.133869][T14640] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1134.192728][T14640] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1134.228930][T14640] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1134.251098][T14640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1134.314417][T14640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1134.392169][ T8353] dvmrp8 (unregistering): left allmulticast mode
[ 1134.459842][T14640] hsr_slave_0: entered promiscuous mode
[ 1134.474562][T14640] hsr_slave_1: entered promiscuous mode
[ 1134.481779][T14640] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1134.489568][T14640] Cannot create hsr debugfs directory
[ 1135.013361][ T8353] hsr_slave_0: left promiscuous mode
[ 1135.062655][ T8353] hsr_slave_1: left promiscuous mode
[ 1135.142770][ T8353] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1135.180361][ T8353] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1135.188675][ T8353] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1135.196636][ T8353] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1135.206457][ T8353] bridge_slave_1: left allmulticast mode
[ 1135.212177][ T8353] bridge_slave_1: left promiscuous mode
[ 1135.218106][ T8353] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1135.231515][ T8353] bridge_slave_0: left allmulticast mode
[ 1135.237290][ T8353] bridge_slave_0: left promiscuous mode
[ 1135.242988][ T8353] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1135.525987][ T8353] veth0_macvtap: left promiscuous mode
[ 1135.531601][ T8353] veth1_vlan: left promiscuous mode
[ 1135.559411][ T8353] veth0_vlan: left promiscuous mode
[ 1136.146168][ T5793] Bluetooth: hci1: command tx timeout
[ 1136.197066][ T8353] bond6 (unregistering): (slave veth3): Releasing active interface
[ 1136.480464][ T8353] bond6 (unregistering): Released all slaves
[ 1136.680299][T14724] random: crng reseeded on system resumption
[ 1136.691395][ T8353] bond5 (unregistering): Released all slaves
[ 1136.972027][ T8353] bond4 (unregistering): Released all slaves
[ 1137.128090][ T8353] bond3 (unregistering): Released all slaves
[ 1137.295730][ T8353] bond2 (unregistering): Released all slaves
[ 1137.480123][ T8353] bond1 (unregistering): Released all slaves
[ 1138.236046][T13173] Bluetooth: hci1: command tx timeout
[ 1138.466320][T13173] Bluetooth: hci0: command 0x0406 tx timeout
[ 1140.319285][ T8353] team0 (unregistering): Port device team_slave_1 removed
[ 1140.563442][ T8353] team0 (unregistering): Port device team_slave_0 removed
[ 1140.770979][ T8353] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1141.038611][ T8353] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1141.497944][ T8353] bond0 (unregistering): Released all slaves
[ 1141.966249][T13173] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[ 1141.975765][T13173] CPU: 0 PID: 13173 Comm: kworker/u5:0 Not tainted syzkaller #0
[ 1141.983436][T13173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1141.993777][T13173] Workqueue: hci4 hci_rx_work
[ 1141.998504][T13173] Call Trace:
[ 1142.001807][T13173]  <TASK>
[ 1142.004764][T13173]  dump_stack_lvl+0x16c/0x230
[ 1142.009480][T13173]  ? show_regs_print_info+0x20/0x20
[ 1142.014694][T13173]  ? load_image+0x3b0/0x3b0
[ 1142.019215][T13173]  sysfs_create_dir_ns+0x256/0x280
[ 1142.024339][T13173]  ? hci_rx_work+0x43a/0xd80
[ 1142.028936][T13173]  ? sysfs_warn_dup+0xa0/0xa0
[ 1142.033626][T13173]  ? do_raw_spin_unlock+0x121/0x230
[ 1142.038843][T13173]  kobject_add_internal+0x6b8/0xc70
[ 1142.044049][T13173]  kobject_add+0x156/0x220
[ 1142.048479][T13173]  ? __rwlock_init+0x150/0x150
[ 1142.053254][T13173]  ? kobject_init+0x1e0/0x1e0
[ 1142.057940][T13173]  ? _raw_spin_unlock+0x28/0x40
[ 1142.062800][T13173]  ? get_device_parent+0x366/0x390
[ 1142.067927][T13173]  device_add+0x408/0xc20
[ 1142.072278][T13173]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1142.077253][T13173]  le_conn_complete_evt+0xf36/0x1500
[ 1142.082559][T13173]  ? hci_event_packet+0x4a7/0x1210
[ 1142.087689][T13173]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1142.093944][T13173]  ? __copy_skb_header+0xa7/0x550
[ 1142.098979][T13173]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1142.104644][T13173]  ? skb_pull_data+0xfb/0x200
[ 1142.109326][T13173]  hci_le_conn_complete_evt+0x187/0x440
[ 1142.114888][T13173]  ? hci_remote_host_features_evt+0x160/0x160
[ 1142.120971][T13173]  hci_event_packet+0x795/0x1210
[ 1142.125922][T13173]  ? bis_list+0x290/0x290
[ 1142.130261][T13173]  ? lockdep_hardirqs_on+0x98/0x150
[ 1142.135465][T13173]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1142.140678][T13173]  hci_rx_work+0x43a/0xd80
[ 1142.145110][T13173]  ? process_scheduled_works+0x957/0x15b0
[ 1142.150840][T13173]  process_scheduled_works+0xa45/0x15b0
[ 1142.156413][T13173]  ? assign_work+0x400/0x400
[ 1142.161016][T13173]  ? assign_work+0x39e/0x400
[ 1142.165616][T13173]  worker_thread+0xa55/0xfc0
[ 1142.170214][T13173]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 1142.176111][T13173]  ? _raw_spin_unlock+0x40/0x40
[ 1142.180985][T13173]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 1142.186895][T13173]  kthread+0x2fa/0x390
[ 1142.190961][T13173]  ? pr_cont_work+0x560/0x560
[ 1142.195641][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1142.200229][T13173]  ret_from_fork+0x48/0x80
[ 1142.204671][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1142.209262][T13173]  ret_from_fork_asm+0x11/0x20
[ 1142.214042][T13173]  </TASK>
[ 1142.219364][T13173] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1142.233897][T13173] Bluetooth: hci4: failed to register connection device
[ 1142.505710][T14640] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1142.627718][T14640] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1142.741774][T14640] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1142.818502][T14640] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1143.071695][T14747] random: crng reseeded on system resumption
[ 1143.103575][T14640] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1143.340986][T14640] 8021q: adding VLAN 0 to HW filter on device team0
[ 1143.424668][T14766] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2474'.
[ 1143.476264][ T8353] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1143.483424][ T8353] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1143.593494][ T8353] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1143.600628][ T8353] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1144.306469][T13173] Bluetooth: hci4: command 0x0406 tx timeout
[ 1144.493737][T14640] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1144.582797][T14640] veth0_vlan: entered promiscuous mode
[ 1144.608533][T14640] veth1_vlan: entered promiscuous mode
[ 1144.860599][T14640] veth0_macvtap: entered promiscuous mode
[ 1144.873337][T14786] lo speed is unknown, defaulting to 1000
[ 1144.888259][T14640] veth1_macvtap: entered promiscuous mode
[ 1144.913072][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1144.924375][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1144.934810][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1144.946604][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1144.956912][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1144.967641][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1144.980539][T14640] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1145.011874][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1145.025160][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1145.038241][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1145.049239][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1145.059443][T14640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1145.070207][T14640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1145.082410][T14640] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1145.112847][T14640] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.132495][T14640] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.160896][T14640] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.172526][T14640] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1145.343076][T12799] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1145.365241][T12799] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1145.445228][T14798] random: crng reseeded on system resumption
[ 1145.456150][T12799] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1145.499795][T12799] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1148.552145][T14819] lo speed is unknown, defaulting to 1000
[ 1149.753154][T14834] random: crng reseeded on system resumption
[ 1151.171288][T14854] random: crng reseeded on system resumption
[ 1152.237623][T14869] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2508'.
[ 1152.363368][T14869] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2508'.
[ 1152.442560][T14865] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2508'.
[ 1155.453166][T14878] random: crng reseeded on system resumption
[ 1155.456529][T14881] lo speed is unknown, defaulting to 1000
[ 1156.029126][T14896] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2519'.
[ 1157.000416][T14901] random: crng reseeded on system resumption
[ 1158.989834][T14917] lo speed is unknown, defaulting to 1000
[ 1161.430694][T14924] random: crng reseeded on system resumption
[ 1163.546828][T14940] netlink: 'syz.0.2533': attribute type 1 has an invalid length.
[ 1163.554732][T14940] netlink: 'syz.0.2533': attribute type 4 has an invalid length.
[ 1163.562564][T14940] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.2533'.
[ 1164.959282][T14958] netlink: 'syz.0.2540': attribute type 1 has an invalid length.
[ 1165.027462][T14959] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2539'.
[ 1165.879371][T14970] random: crng reseeded on system resumption
[ 1166.218348][T14975] random: crng reseeded on system resumption
[ 1166.925061][T14974] vivid-007: kernel_thread() failed
[ 1167.237834][T14982] netlink: 'syz.0.2548': attribute type 10 has an invalid length.
[ 1167.336415][T14982] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1169.448012][T14982] bridge_slave_1: left allmulticast mode
[ 1169.468707][T14982] bridge_slave_1: left promiscuous mode
[ 1169.492252][T14982] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1169.827119][T14989] random: crng reseeded on system resumption
[ 1171.125430][T15007] random: crng reseeded on system resumption
[ 1172.561598][T15044] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2567'.
[ 1176.034314][T15054] random: crng reseeded on system resumption
[ 1176.040754][T15059] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2572'.
[ 1176.052003][T15059] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2572'.
[ 1176.062915][T15059] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2572'.
[ 1176.332254][T15062] overlayfs: failed to resolve './file0': -2
[ 1177.259729][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.274895][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.717978][T15071] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2577'.
[ 1178.810085][T15077] fuse: Unknown parameter '0x0000000000000003'
[ 1181.810000][T15092] random: crng reseeded on system resumption
[ 1184.399974][ T5793] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1184.414542][ T5793] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1184.429760][ T5793] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1184.439684][ T5793] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1184.454095][ T5793] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1184.461724][ T5793] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1184.523764][T10321] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1184.534929][T15098] random: crng reseeded on system resumption
[ 1184.620205][T15104] overlayfs: failed to resolve './file0': -2
[ 1186.556013][ T5793] Bluetooth: hci0: command tx timeout
[ 1186.639810][T10321] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1186.695007][T15091] lo speed is unknown, defaulting to 1000
[ 1187.540995][T10321] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1188.131351][T10321] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1188.152102][T15110] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2586'.
[ 1188.374721][T15116] fuse: Unknown parameter '0x0000000000000003'
[ 1188.471205][T10321] tipc: Left network mode
[ 1188.626297][ T5793] Bluetooth: hci0: command tx timeout
[ 1188.711161][T15091] chnl_net:caif_netlink_parms(): no params data found
[ 1189.118558][T15091] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1189.138018][T15091] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1189.166779][T15091] bridge_slave_0: entered allmulticast mode
[ 1189.173830][T15091] bridge_slave_0: entered promiscuous mode
[ 1189.225636][T15091] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1189.239862][T15091] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1189.250353][T15091] bridge_slave_1: entered allmulticast mode
[ 1189.260799][T15091] bridge_slave_1: entered promiscuous mode
[ 1189.697087][T15091] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1189.720027][T15091] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1189.862325][T15091] team0: Port device team_slave_0 added
[ 1190.043005][T15091] team0: Port device team_slave_1 added
[ 1190.112556][T15150] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2598'.
[ 1190.706016][ T5793] Bluetooth: hci0: command tx timeout
[ 1190.933197][T15153] random: crng reseeded on system resumption
[ 1191.253157][T15091] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1191.271058][T15091] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1191.297593][T15091] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1191.310542][T15091] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1191.318139][T15091] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1191.344169][T15091] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1191.443534][T10321] hsr_slave_0: left promiscuous mode
[ 1191.457355][T10321] hsr_slave_1: left promiscuous mode
[ 1191.463431][T10321] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1191.471578][T10321] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1191.482231][T10321] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1191.491485][T10321] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1191.499645][T10321] bridge_slave_0: left allmulticast mode
[ 1191.510456][T10321] bridge_slave_0: left promiscuous mode
[ 1191.535141][T10321] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1191.634728][T10321] veth0_macvtap: left promiscuous mode
[ 1191.644190][T10321] veth1_vlan: left promiscuous mode
[ 1191.660911][T10321] veth0_vlan: left promiscuous mode
[ 1191.807723][T15162] fuse: Unknown parameter '0x0000000000000003'
[ 1191.933192][T10321] bond2 (unregistering): (slave veth3): Releasing active interface
[ 1192.341781][T10321] bond2 (unregistering): Released all slaves
[ 1192.787650][ T5793] Bluetooth: hci0: command tx timeout
[ 1193.039854][T10321] bond1 (unregistering): Released all slaves
[ 1193.792297][T10321] team0 (unregistering): Port device team_slave_1 removed
[ 1193.835317][T10321] team0 (unregistering): Port device team_slave_0 removed
[ 1193.872453][T10321] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1193.915022][T10321] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1194.337052][T10321] bond0 (unregistering): Released all slaves
[ 1194.450198][  T788] lo speed is unknown, defaulting to 1000
[ 1194.454821][T15091] hsr_slave_0: entered promiscuous mode
[ 1194.471973][T15091] hsr_slave_1: entered promiscuous mode
[ 1194.519264][T15184] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2608'.
[ 1194.718489][ T5793] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[ 1194.728148][ T5793] CPU: 0 PID: 5793 Comm: kworker/u5:3 Not tainted syzkaller #0
[ 1194.735727][ T5793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1194.745801][ T5793] Workqueue: hci4 hci_rx_work
[ 1194.750509][ T5793] Call Trace:
[ 1194.753790][ T5793]  <TASK>
[ 1194.756734][ T5793]  dump_stack_lvl+0x16c/0x230
[ 1194.761439][ T5793]  ? show_regs_print_info+0x20/0x20
[ 1194.766646][ T5793]  ? load_image+0x3b0/0x3b0
[ 1194.771172][ T5793]  sysfs_create_dir_ns+0x256/0x280
[ 1194.776297][ T5793]  ? hci_rx_work+0x43a/0xd80
[ 1194.780900][ T5793]  ? sysfs_warn_dup+0xa0/0xa0
[ 1194.785594][ T5793]  ? do_raw_spin_unlock+0x121/0x230
[ 1194.790811][ T5793]  kobject_add_internal+0x6b8/0xc70
[ 1194.796051][ T5793]  kobject_add+0x156/0x220
[ 1194.800476][ T5793]  ? __rwlock_init+0x150/0x150
[ 1194.805255][ T5793]  ? kobject_init+0x1e0/0x1e0
[ 1194.809949][ T5793]  ? _raw_spin_unlock+0x28/0x40
[ 1194.814810][ T5793]  ? get_device_parent+0x366/0x390
[ 1194.819935][ T5793]  device_add+0x408/0xc20
[ 1194.824278][ T5793]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1194.829243][ T5793]  le_conn_complete_evt+0xf36/0x1500
[ 1194.834539][ T5793]  ? hci_event_packet+0x4a7/0x1210
[ 1194.839661][ T5793]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1194.845911][ T5793]  ? __copy_skb_header+0xa7/0x550
[ 1194.850955][ T5793]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1194.856620][ T5793]  ? skb_pull_data+0xfb/0x200
[ 1194.861306][ T5793]  hci_le_conn_complete_evt+0x187/0x440
[ 1194.866871][ T5793]  ? hci_remote_host_features_evt+0x160/0x160
[ 1194.872947][ T5793]  hci_event_packet+0x795/0x1210
[ 1194.877904][ T5793]  ? bis_list+0x290/0x290
[ 1194.882261][ T5793]  ? lockdep_hardirqs_on+0x98/0x150
[ 1194.887471][ T5793]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1194.892686][ T5793]  hci_rx_work+0x43a/0xd80
[ 1194.897121][ T5793]  ? process_scheduled_works+0x957/0x15b0
[ 1194.902853][ T5793]  process_scheduled_works+0xa45/0x15b0
[ 1194.908438][ T5793]  ? assign_work+0x400/0x400
[ 1194.913049][ T5793]  ? assign_work+0x39e/0x400
[ 1194.917656][ T5793]  worker_thread+0xa55/0xfc0
[ 1194.922280][ T5793]  kthread+0x2fa/0x390
[ 1194.926353][ T5793]  ? pr_cont_work+0x560/0x560
[ 1194.931046][ T5793]  ? kthread_blkcg+0xd0/0xd0
[ 1194.935637][ T5793]  ret_from_fork+0x48/0x80
[ 1194.940064][ T5793]  ? kthread_blkcg+0xd0/0xd0
[ 1194.944658][ T5793]  ret_from_fork_asm+0x11/0x20
[ 1194.949447][ T5793]  </TASK>
[ 1194.961053][ T5793] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1195.000111][ T5793] Bluetooth: hci4: failed to register connection device
[ 1195.360953][T15207] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2616'.
[ 1196.309996][T15091] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1196.321166][T13173] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[ 1196.330825][T13173] CPU: 0 PID: 13173 Comm: kworker/u5:0 Not tainted syzkaller #0
[ 1196.338495][T13173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1196.348569][T13173] Workqueue: hci3 hci_rx_work
[ 1196.353283][T13173] Call Trace:
[ 1196.356581][T13173]  <TASK>
[ 1196.359529][T13173]  dump_stack_lvl+0x16c/0x230
[ 1196.364247][T13173]  ? show_regs_print_info+0x20/0x20
[ 1196.369480][T13173]  ? load_image+0x3b0/0x3b0
[ 1196.374032][T13173]  sysfs_create_dir_ns+0x256/0x280
[ 1196.379191][T13173]  ? hci_rx_work+0x43a/0xd80
[ 1196.383801][T13173]  ? sysfs_warn_dup+0xa0/0xa0
[ 1196.388512][T13173]  ? do_raw_spin_unlock+0x121/0x230
[ 1196.393722][T13173]  kobject_add_internal+0x6b8/0xc70
[ 1196.398936][T13173]  kobject_add+0x156/0x220
[ 1196.403353][T13173]  ? __rwlock_init+0x150/0x150
[ 1196.408134][T13173]  ? kobject_init+0x1e0/0x1e0
[ 1196.412818][T13173]  ? _raw_spin_unlock+0x28/0x40
[ 1196.417679][T13173]  ? get_device_parent+0x366/0x390
[ 1196.422811][T13173]  device_add+0x408/0xc20
[ 1196.427152][T13173]  hci_conn_add_sysfs+0xd5/0x1e0
[ 1196.432117][T13173]  le_conn_complete_evt+0xf36/0x1500
[ 1196.437415][T13173]  ? hci_event_packet+0x4a7/0x1210
[ 1196.442539][T13173]  ? hci_le_big_info_adv_report_evt+0x8e0/0x8e0
[ 1196.448784][T13173]  ? __copy_skb_header+0xa7/0x550
[ 1196.453823][T13173]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 1196.459466][T13173]  ? skb_pull_data+0xfb/0x200
[ 1196.464147][T13173]  hci_le_conn_complete_evt+0x187/0x440
[ 1196.469703][T13173]  ? hci_remote_host_features_evt+0x160/0x160
[ 1196.475772][T13173]  hci_event_packet+0x795/0x1210
[ 1196.480734][T13173]  ? bis_list+0x290/0x290
[ 1196.485069][T13173]  ? lockdep_hardirqs_on+0x98/0x150
[ 1196.490268][T13173]  ? hci_send_to_monitor+0xd7/0x4f0
[ 1196.495477][T13173]  hci_rx_work+0x43a/0xd80
[ 1196.499908][T13173]  ? process_scheduled_works+0x957/0x15b0
[ 1196.505636][T13173]  process_scheduled_works+0xa45/0x15b0
[ 1196.511209][T13173]  ? assign_work+0x400/0x400
[ 1196.515814][T13173]  ? assign_work+0x39e/0x400
[ 1196.520415][T13173]  worker_thread+0xa55/0xfc0
[ 1196.525010][T13173]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 1196.530909][T13173]  ? _raw_spin_unlock+0x40/0x40
[ 1196.535762][T13173]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 1196.541672][T13173]  kthread+0x2fa/0x390
[ 1196.545743][T13173]  ? pr_cont_work+0x560/0x560
[ 1196.550423][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1196.555061][T13173]  ret_from_fork+0x48/0x80
[ 1196.559491][T13173]  ? kthread_blkcg+0xd0/0xd0
[ 1196.564091][T13173]  ret_from_fork_asm+0x11/0x20
[ 1196.568880][T13173]  </TASK>
[ 1196.575825][T13173] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1196.590366][T13173] Bluetooth: hci3: failed to register connection device
[ 1196.632961][T15091] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1196.654784][T15091] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1196.671272][T15091] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1196.897463][T15091] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1196.939863][T15091] 8021q: adding VLAN 0 to HW filter on device team0
[ 1196.954706][ T1106] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1196.961910][ T1106] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1196.999433][T10321] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1197.006597][T10321] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1197.030579][ T5793] Bluetooth: hci4: command 0x0406 tx timeout
[ 1197.791131][T15248] overlayfs: failed to resolve './file1': -2
[ 1197.925672][T15091] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1198.051539][T15091] veth0_vlan: entered promiscuous mode
[ 1198.082634][T15091] veth1_vlan: entered promiscuous mode
[ 1198.176230][T15091] veth0_macvtap: entered promiscuous mode
[ 1198.198429][T15091] veth1_macvtap: entered promiscuous mode
[ 1198.310397][T15091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1198.325076][T15091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1198.345510][T15091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1198.366843][T15091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1198.387804][T15091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1198.414311][T15091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1198.439928][T15091] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1198.482551][T15091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1198.494998][T15091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1198.505025][T15091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1198.515693][T15091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1198.526724][T15091] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1198.540452][T15091] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1198.554829][T15091] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1198.615270][T15091] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1198.624309][T15091] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1198.635964][ T5793] Bluetooth: hci3: command 0x0406 tx timeout
[ 1198.651691][T15091] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1198.661044][T15091] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1198.872377][ T8353] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1198.896680][ T8353] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1198.946791][ T8353] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1198.958152][ T8353] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1199.296144][T15278] random: crng reseeded on system resumption
[ 1202.791965][   T60] kworker/dying (60) used greatest stack depth: 20464 bytes left
[ 1203.240332][T15317] lo speed is unknown, defaulting to 1000
[ 1203.254262][T15317] lo speed is unknown, defaulting to 1000
[ 1203.268703][T15317] lo speed is unknown, defaulting to 1000
[ 1203.313939][T15317] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1203.360957][T15317] lo speed is unknown, defaulting to 1000
[ 1203.368976][T15317] lo speed is unknown, defaulting to 1000
[ 1203.380101][T15317] lo speed is unknown, defaulting to 1000
[ 1203.391018][T15317] lo speed is unknown, defaulting to 1000
[ 1203.580548][T15351] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.2667'.
[ 1204.387242][T15382] wg2: entered promiscuous mode
[ 1204.395001][T15382] wg2: entered allmulticast mode
[ 1204.534889][T15386] syzkaller0: entered promiscuous mode
[ 1204.540867][T15386] syzkaller0: entered allmulticast mode
[ 1204.913926][T15402] fuse: Bad value for 'group_id'
[ 1205.496705][T15408] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2691'.
[ 1207.315761][T15400] sit0: entered promiscuous mode
[ 1207.321084][T15400] sit0: entered allmulticast mode
[ 1207.469835][T15415] random: crng reseeded on system resumption
[ 1207.764976][T15426] fuse: Bad value for 'group_id'
[ 1207.971065][T15433] lo speed is unknown, defaulting to 1000
[ 1208.015883][   T43] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[ 1208.224509][   T43] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1208.244031][   T43] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1208.252994][   T43] usb 1-1: Product: syz
[ 1208.302028][   T43] usb 1-1: Manufacturer: syz
[ 1208.306881][   T43] usb 1-1: SerialNumber: syz
[ 1210.528158][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1210.547710][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1210.559678][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1210.572223][T15447] random: crng reseeded on system resumption
[ 1210.697086][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1210.720274][   T43] lan78xx: probe of 1-1:1.0 failed with error -71
[ 1210.731855][   T43] usb 1-1: USB disconnect, device number 32
[ 1211.408804][T15462] fuse: Bad value for 'group_id'
[ 1211.729727][T15477] random: crng reseeded on system resumption
[ 1212.344161][T15471] vivid-007: kernel_thread() failed
[ 1212.410925][T15464] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1212.439909][T15464] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1212.459972][T15464] kvm: requested 13409 ns i8254 timer period limited to 200000 ns
[ 1212.471846][T15464] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1212.480017][T15464] kvm: requested 41904 ns i8254 timer period limited to 200000 ns
[ 1212.491207][T15464] kvm: requested 64533 ns i8254 timer period limited to 200000 ns
[ 1212.499857][T15464] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1212.516547][T15464] kvm: requested 96381 ns i8254 timer period limited to 200000 ns
[ 1212.536312][T15464] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1212.551192][T15464] kvm: requested 29333 ns i8254 timer period limited to 200000 ns
[ 1213.225897][   T43] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[ 1215.746155][   T43] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1215.755335][   T43] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1215.763701][   T43] usb 1-1: Product: syz
[ 1215.771204][   T43] usb 1-1: Manufacturer: syz
[ 1215.776119][   T43] usb 1-1: SerialNumber: syz
[ 1215.777774][T15502] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2719'.
[ 1216.238724][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1216.275979][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1216.311104][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1216.683442][T15510] siw: device registration error -23
[ 1217.177708][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1217.316257][   T43] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1217.408416][   T43] lan78xx: probe of 1-1:1.0 failed with error -71
[ 1217.464812][   T43] usb 1-1: USB disconnect, device number 33
[ 1220.068627][T15546] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.2738'.
[ 1220.095761][T15560] lo speed is unknown, defaulting to 1000
[ 1220.237745][T15564] random: crng reseeded on system resumption
[ 1221.159142][T15586] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.2752'.
[ 1222.555415][T15611] create_pit_timer: 12 callbacks suppressed
[ 1222.555429][T15611] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1222.579575][T15615] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.2763'.
[ 1222.728024][T15611] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1222.756876][T15611] kvm: requested 13409 ns i8254 timer period limited to 200000 ns
[ 1222.764939][T15611] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1222.803990][T15611] kvm: requested 41904 ns i8254 timer period limited to 200000 ns
[ 1222.826377][T15611] kvm: requested 64533 ns i8254 timer period limited to 200000 ns
[ 1222.835055][T15611] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1222.853332][T15611] kvm: requested 96381 ns i8254 timer period limited to 200000 ns
[ 1222.863625][T15611] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1222.871911][T15611] kvm: requested 29333 ns i8254 timer period limited to 200000 ns
[ 1223.122299][T15618] lo speed is unknown, defaulting to 1000
[ 1223.553546][T15627] random: crng reseeded on system resumption
[ 1225.816173][T15635] random: crng reseeded on system resumption
[ 1226.452951][T15658] random: crng reseeded on system resumption
[ 1227.286136][T10352] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[ 1227.607038][T10352] usb 5-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1227.695137][T10352] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1227.755019][T10352] usb 5-1: Product: syz
[ 1227.775133][T10352] usb 5-1: Manufacturer: syz
[ 1227.780358][T10352] usb 5-1: SerialNumber: syz
[ 1227.889518][T15672] random: crng reseeded on system resumption
[ 1228.126529][T15677] lo speed is unknown, defaulting to 1000
[ 1228.218622][T15674] lo speed is unknown, defaulting to 1000
[ 1228.273601][T10352] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1228.295386][T10352] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1228.311368][T10352] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1228.321104][T10352] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1228.337126][T10352] lan78xx: probe of 5-1:1.0 failed with error -71
[ 1228.376182][T10352] usb 5-1: USB disconnect, device number 3
[ 1228.437429][T15682] lo speed is unknown, defaulting to 1000
[ 1231.449718][T15705] syzkaller0: entered promiscuous mode
[ 1231.455282][T15705] syzkaller0: entered allmulticast mode
[ 1231.615199][T15709] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.2797'.
[ 1235.214330][T15727] random: crng reseeded on system resumption
[ 1235.785458][T15739] random: crng reseeded on system resumption
[ 1235.939233][T15740] syzkaller0: entered promiscuous mode
[ 1235.944749][T15740] syzkaller0: entered allmulticast mode
[ 1239.295560][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[ 1239.305364][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[ 1242.713604][T15774] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[ 1242.720163][T15774] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1242.755174][T15774] vhci_hcd vhci_hcd.0: Device attached
[ 1242.777341][T15774] loop2: detected capacity change from 0 to 1024
[ 1242.792525][   T28] audit: type=1326 audit(1761881917.751:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1242.809499][T15779] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2821'.
[ 1242.824964][T15774] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1242.855214][   T28] audit: type=1326 audit(1761881917.751:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1242.868500][T15779] loop3: detected capacity change from 0 to 128
[ 1242.901071][   T28] audit: type=1326 audit(1761881917.751:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1242.924669][T15774] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #11: comm syz.2.2820: iget: bogus i_mode (1)
[ 1242.938950][   T28] audit: type=1326 audit(1761881917.751:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1242.962634][   T28] audit: type=1326 audit(1761881917.751:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1242.985746][   T28] audit: type=1326 audit(1761881917.751:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1243.010313][T15774] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2820: couldn't read orphan inode 11 (err -117)
[ 1243.046477][   T27] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[ 1243.057069][T15774] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1243.087290][   T28] audit: type=1326 audit(1761881917.751:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1243.115666][T15774] EXT4-fs error (device loop2): ext4_search_dir:1549: inode #2: block 16: comm syz.2.2820: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[ 1243.141301][T15784] syz.3.2821: attempt to access beyond end of device
[ 1243.141301][T15784] loop3: rw=2049, sector=145, nr_sectors = 472 limit=128
[ 1243.154979][   T28] audit: type=1326 audit(1761881917.751:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1243.200026][   T28] audit: type=1326 audit(1761881917.751:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1243.230497][   T28] audit: type=1326 audit(1761881917.751:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15778 comm="syz.3.2821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1243.253092][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.253092][T15779] loop3: rw=524288, sector=145, nr_sectors = 224 limit=128
[ 1243.277110][T15775] vhci_hcd: connection reset by peer
[ 1243.287551][ T8353] vhci_hcd: stop threads
[ 1243.303833][ T8353] vhci_hcd: release socket
[ 1243.317826][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.317826][T15779] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1243.319157][ T8353] vhci_hcd: disconnect device
[ 1243.370664][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.370664][T15779] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1243.393557][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.393557][T15779] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1243.409473][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.409473][T15779] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1243.420876][T15786] syzkaller0: entered promiscuous mode
[ 1243.423229][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.423229][T15779] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1243.430721][T15786] syzkaller0: entered allmulticast mode
[ 1243.466409][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.466409][T15779] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1243.481036][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.481036][T15779] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1243.499987][T15779] syz.3.2821: attempt to access beyond end of device
[ 1243.499987][T15779] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[ 1244.166907][T14640] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1246.103036][T15810] random: crng reseeded on system resumption
[ 1246.497484][T15819] lo speed is unknown, defaulting to 1000
[ 1246.917943][T10352] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 1247.390197][T10352] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1247.413788][T10352] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1248.119029][T10352] usb 1-1: Product: syz
[ 1248.132782][T10352] usb 1-1: Manufacturer: syz
[ 1248.156248][   T27] vhci_hcd: vhci_device speed not set
[ 1248.309111][T10352] usb 1-1: SerialNumber: syz
[ 1248.782360][T10352] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1248.797052][T10352] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1248.825276][T10352] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1248.869706][T15844] random: crng reseeded on system resumption
[ 1249.007783][T10352] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1249.038296][T10352] lan78xx: probe of 1-1:1.0 failed with error -71
[ 1249.054400][T10352] usb 1-1: USB disconnect, device number 34
[ 1253.633296][T15882] loop0: detected capacity change from 0 to 512
[ 1253.716216][T14847] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[ 1253.796599][T15882] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.2859: bad orphan inode 11862016
[ 1253.827741][T15882] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1253.864126][T15882] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1253.940643][T14847] usb 5-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1254.048565][T14847] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1254.093024][T14847] usb 5-1: Product: syz
[ 1254.106608][T14847] usb 5-1: Manufacturer: syz
[ 1254.111229][T14847] usb 5-1: SerialNumber: syz
[ 1254.813755][T15091] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1254.954869][T15897] syz_tun: entered allmulticast mode
[ 1255.116467][T14847] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1255.154474][T14847] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1255.212512][T14847] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1255.229773][T15905] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2867'.
[ 1255.256499][T14847] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1255.312994][T14847] lan78xx: probe of 5-1:1.0 failed with error -71
[ 1255.359715][T14847] usb 5-1: USB disconnect, device number 4
[ 1255.409010][T15907] random: crng reseeded on system resumption
[ 1255.634618][T15905] syz.0.2867 (15905) used greatest stack depth: 17960 bytes left
[ 1255.856278][T15915] fuse: Bad value for 'fd'
[ 1256.192960][ T5793] Bluetooth: hci1: command 0x0406 tx timeout
[ 1256.261419][T15916] random: crng reseeded on system resumption
[ 1256.767707][T15927] random: crng reseeded on system resumption
[ 1257.137129][T15935] random: crng reseeded on system resumption
[ 1257.458199][T15943] loop3: detected capacity change from 0 to 128
[ 1257.625071][T15948] random: crng reseeded on system resumption
[ 1258.156382][T15960] random: crng reseeded on system resumption
[ 1258.924691][   T28] kauditd_printk_skb: 49 callbacks suppressed
[ 1258.924706][   T28] audit: type=1326 audit(1761881933.781:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1258.957008][   T28] audit: type=1326 audit(1761881933.791:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1258.980136][   T28] audit: type=1326 audit(1761881933.811:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1259.026257][   T28] audit: type=1326 audit(1761881933.811:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1259.048910][   T28] audit: type=1326 audit(1761881933.831:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1259.072320][   T28] audit: type=1326 audit(1761881933.831:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1259.101239][   T28] audit: type=1326 audit(1761881933.851:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1259.125631][   T28] audit: type=1326 audit(1761881933.861:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1259.148237][   T28] audit: type=1326 audit(1761881933.861:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1259.148288][   T28] audit: type=1326 audit(1761881933.881:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15961 comm="syz.2.2890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f867f58efc9 code=0x7ffc0000
[ 1259.216386][T15965] random: crng reseeded on system resumption
[ 1259.496569][T15963] tty tty25: ldisc open failed (-12), clearing slot 24
[ 1260.046607][T15981] random: crng reseeded on system resumption
[ 1260.352820][T10670] kernel write not supported for file /164/clear_refs (pid: 10670 comm: kworker/1:4)
[ 1260.638077][T15991] loop0: detected capacity change from 0 to 128
[ 1261.304317][T16007] loop3: detected capacity change from 0 to 128
[ 1261.677095][ T3472] bio_check_eod: 1197 callbacks suppressed
[ 1261.677110][ T3472] kworker/u4:11: attempt to access beyond end of device
[ 1261.677110][ T3472] loop0: rw=1, sector=145, nr_sectors = 896 limit=128
[ 1261.721844][T15962] syz.2.2890: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[ 1261.744554][T15962] CPU: 0 PID: 15962 Comm: syz.2.2890 Not tainted syzkaller #0
[ 1261.752047][T15962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1261.762123][T15962] Call Trace:
[ 1261.765442][T15962]  <TASK>
[ 1261.768414][T15962]  dump_stack_lvl+0x16c/0x230
[ 1261.773148][T15962]  ? show_regs_print_info+0x20/0x20
[ 1261.778395][T15962]  ? load_image+0x3b0/0x3b0
[ 1261.782931][T15962]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1261.789370][T15962]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[ 1261.795902][T15962]  warn_alloc+0x210/0x300
[ 1261.800278][T15962]  ? zone_watermark_ok_safe+0x230/0x230
[ 1261.805869][T15962]  ? _raw_spin_unlock+0x28/0x40
[ 1261.810762][T15962]  __vmalloc_node_range+0x662/0x1320
[ 1261.816172][T15962]  ? free_vm_area+0x50/0x50
[ 1261.820701][T15962]  ? _raw_spin_unlock+0x28/0x40
[ 1261.825580][T15962]  ? __kasan_kmalloc+0x8f/0xa0
[ 1261.830365][T15962]  __vmalloc_node_range+0x568/0x1320
[ 1261.835763][T15962]  ? hash_netiface_create+0x361/0xff0
[ 1261.841157][T15962]  ? __asan_memset+0x22/0x40
[ 1261.845794][T15962]  ? free_vm_area+0x50/0x50
[ 1261.850329][T15962]  ? kvmalloc_node+0x70/0x180
[ 1261.855028][T15962]  ? rcu_is_watching+0x15/0xb0
[ 1261.859833][T15962]  ? kvmalloc_node+0x70/0x180
[ 1261.864542][T15962]  ? trace_kmalloc+0x1f/0xa0
[ 1261.869165][T15962]  kvmalloc_node+0x13f/0x180
[ 1261.873775][T15962]  ? hash_netiface_create+0x361/0xff0
[ 1261.879171][T15962]  hash_netiface_create+0x361/0xff0
[ 1261.884387][T15962]  ? __lock_acquire+0x7c80/0x7c80
[ 1261.889436][T15962]  ? __nla_parse+0x40/0x50
[ 1261.893877][T15962]  ? hash_netport6_gc+0x570/0x570
[ 1261.898927][T15962]  ip_set_create+0xa87/0x18e0
[ 1261.903628][T15962]  ? ip_set_create+0x4b2/0x18e0
[ 1261.908511][T15962]  ? ip_set_protocol+0x5d0/0x5d0
[ 1261.913474][T15962]  ? trace_contention_end+0x39/0xe0
[ 1261.918729][T15962]  nfnetlink_rcv_msg+0xb49/0x1130
[ 1261.923789][T15962]  ? nfnetlink_rcv_msg+0x20e/0x1130
[ 1261.929032][T15962]  ? nfnetlink_unbind+0x160/0x160
[ 1261.934096][T15962]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1261.940119][T15962]  ? __schedule+0x14da/0x44d0
[ 1261.944839][T15962]  ? mark_lock+0x94/0x320
[ 1261.949198][T15962]  netlink_rcv_skb+0x216/0x480
[ 1261.953990][T15962]  ? nfnetlink_unbind+0x160/0x160
[ 1261.959032][T15962]  ? netlink_ack+0x1110/0x1110
[ 1261.963825][T15962]  ? apparmor_capable+0x137/0x1a0
[ 1261.968881][T15962]  ? bpf_lsm_capable+0x9/0x10
[ 1261.973582][T15962]  ? security_capable+0x89/0xb0
[ 1261.978460][T15962]  nfnetlink_rcv+0x274/0x2180
[ 1261.983167][T15962]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1261.989165][T15962]  ? lock_chain_count+0x20/0x20
[ 1261.994033][T15962]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 1261.999944][T15962]  ? lockdep_hardirqs_on+0x98/0x150
[ 1262.005161][T15962]  ? nfnetlink_net_exit_batch+0xa0/0xa0
[ 1262.010824][T15962]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 1262.016723][T15962]  ? _raw_spin_unlock+0x40/0x40
[ 1262.021581][T15962]  ? rcu_preempt_deferred_qs_irqrestore+0x86a/0xcc0
[ 1262.028206][T15962]  ? rcu_read_unlock_special+0x460/0x460
[ 1262.033877][T15962]  ? __netlink_deliver_tap+0x7e8/0x830
[ 1262.039343][T15962]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1262.044546][T15962]  ? __lock_acquire+0x7c80/0x7c80
[ 1262.049596][T15962]  ? __rcu_read_unlock+0x7c/0xd0
[ 1262.054552][T15962]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1262.059765][T15962]  netlink_unicast+0x751/0x8d0
[ 1262.064552][T15962]  netlink_sendmsg+0x8c1/0xbe0
[ 1262.069338][T15962]  ? netlink_getsockopt+0x580/0x580
[ 1262.074546][T15962]  ? aa_sock_msg_perm+0x94/0x150
[ 1262.079511][T15962]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 1262.084810][T15962]  ? security_socket_sendmsg+0x80/0xa0
[ 1262.090275][T15962]  ? netlink_getsockopt+0x580/0x580
[ 1262.095484][T15962]  ____sys_sendmsg+0x5bf/0x950
[ 1262.100272][T15962]  ? __asan_memset+0x22/0x40
[ 1262.104871][T15962]  ? __sys_sendmsg_sock+0x30/0x30
[ 1262.109905][T15962]  ? __import_iovec+0x5f2/0x860
[ 1262.114773][T15962]  ? import_iovec+0x73/0xa0
[ 1262.119294][T15962]  ___sys_sendmsg+0x220/0x290
[ 1262.123987][T15962]  ? __sys_sendmsg+0x270/0x270
[ 1262.128794][T15962]  __se_sys_sendmsg+0x1a5/0x270
[ 1262.133661][T15962]  ? __x64_sys_sendmsg+0x80/0x80
[ 1262.138623][T15962]  ? lockdep_hardirqs_on+0x98/0x150
[ 1262.143835][T15962]  do_syscall_64+0x55/0xb0
[ 1262.148278][T15962]  ? clear_bhb_loop+0x40/0x90
[ 1262.152966][T15962]  ? clear_bhb_loop+0x40/0x90
[ 1262.157661][T15962]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1262.163566][T15962] RIP: 0033:0x7f867f58efc9
[ 1262.168009][T15962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1262.187626][T15962] RSP: 002b:00007f8680443038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1262.196047][T15962] RAX: ffffffffffffffda RBX: 00007f867f7e5fa0 RCX: 00007f867f58efc9
[ 1262.204016][T15962] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[ 1262.211983][T15962] RBP: 00007f867f611f91 R08: 0000000000000000 R09: 0000000000000000
[ 1262.219948][T15962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1262.227919][T15962] R13: 00007f867f7e6038 R14: 00007f867f7e5fa0 R15: 00007fff85c04828
[ 1262.235909][T15962]  </TASK>
[ 1262.461088][T15962] Mem-Info:
[ 1262.464266][T15962] active_anon:8220 inactive_anon:1 isolated_anon:0
[ 1262.464266][T15962]  active_file:446 inactive_file:57111 isolated_file:0
[ 1262.464266][T15962]  unevictable:768 dirty:135 writeback:0
[ 1262.464266][T15962]  slab_reclaimable:9403 slab_unreclaimable:94756
[ 1262.464266][T15962]  mapped:27196 shmem:4231 pagetables:441
[ 1262.464266][T15962]  sec_pagetables:0 bounce:0
[ 1262.464266][T15962]  kernel_misc_reclaimable:0
[ 1262.464266][T15962]  free:1311214 free_pcp:9774 free_cma:0
[ 1262.536466][T15962] Node 0 active_anon:32980kB inactive_anon:4kB active_file:1784kB inactive_file:228244kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108784kB dirty:536kB writeback:0kB shmem:15388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10880kB pagetables:1764kB sec_pagetables:0kB all_unreclaimable? no
[ 1262.546298][ T5793] Bluetooth: hci4: command 0x0406 tx timeout
[ 1262.580177][T15962] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 1262.586748][T16018] random: crng reseeded on system resumption
[ 1262.745173][T15962] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1262.809386][T15962] lowmem_reserve[]: 0 2525 2526 2526 2526
[ 1262.816001][T15962] Node 0 DMA32 free:1324440kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:33012kB inactive_anon:4kB active_file:1784kB inactive_file:226864kB unevictable:1536kB writepending:536kB present:3129332kB managed:2589600kB mlocked:0kB bounce:0kB free_pcp:25700kB local_pcp:18140kB free_cma:0kB
[ 1262.902790][T16021] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2912'.
[ 1262.935867][T15962] lowmem_reserve[]: 0 0 1 1 1
[ 1262.940679][T15962] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1324kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1262.989773][T15962] lowmem_reserve[]: 0 0 0 0 0
[ 1263.014347][T15962] Node 1 Normal free:3904788kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:13240kB local_pcp:8536kB free_cma:0kB
[ 1263.586475][ T5793] Bluetooth: hci3: command 0x0406 tx timeout
[ 1265.123113][T15962] lowmem_reserve[]: 0 0 0 0 0
[ 1265.128273][T15962] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1265.141357][T15962] Node 0 DMA32: 2*4kB (ME) 616*8kB (ME) 263*16kB (UME) 287*32kB (UME) 226*64kB (ME) 37*128kB (UME) 23*256kB (ME) 18*512kB (UME) 12*1024kB (UM) 7*2048kB (M) 304*4096kB (M) = 1324440kB
[ 1265.159850][T15962] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[ 1265.172225][T15962] Node 1 Normal: 173*4kB (UME) 50*8kB (UME) 47*16kB (UME) 229*32kB (UME) 79*64kB (UME) 19*128kB (U) 2*256kB (UE) 3*512kB (UM) 1*1024kB (U) 1*2048kB (U) 948*4096kB (M) = 3904788kB
[ 1265.190466][T15962] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1265.200917][T15962] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1265.210454][T15962] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1265.220294][T15962] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1265.229818][T15962] 61659 total pagecache pages
[ 1265.234612][T15962] 1 pages in swap cache
[ 1265.238987][T15962] Free swap  = 124512kB
[ 1265.243198][T15962] Total swap = 124996kB
[ 1265.247665][T15962] 2097051 pages RAM
[ 1265.251526][T15962] 0 pages HighMem/MovableOnly
[ 1265.256408][T15962] 416137 pages reserved
[ 1265.261628][T15962] 0 pages cma reserved
[ 1265.842195][T16039] create_pit_timer: 12 callbacks suppressed
[ 1265.842207][T16039] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1265.944289][T16034] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1265.996738][T16034] kvm: requested 13409 ns i8254 timer period limited to 200000 ns
[ 1266.004987][T16034] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1266.013115][T16034] kvm: requested 41904 ns i8254 timer period limited to 200000 ns
[ 1266.022042][T16034] kvm: requested 64533 ns i8254 timer period limited to 200000 ns
[ 1266.030293][T16034] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1266.039743][T16034] kvm: requested 96381 ns i8254 timer period limited to 200000 ns
[ 1266.048641][T16034] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1266.056756][T16034] kvm: requested 29333 ns i8254 timer period limited to 200000 ns
[ 1266.815311][T16044] afs: Unknown parameter 'dy'
[ 1266.998769][T16047] siw: device registration error -23
[ 1267.443926][T16049] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1267.490499][T16049] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1267.642993][T16052] random: crng reseeded on system resumption
[ 1268.040352][T16057] loop0: detected capacity change from 0 to 2048
[ 1268.085010][T16059] loop4: detected capacity change from 0 to 128
[ 1268.169027][T16057] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1268.872757][T16057] EXT4-fs error (device loop0): ext4_find_extent:936: inode #2: comm syz.0.2925: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[ 1270.152789][T15091] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1274.350824][T16087] loop0: detected capacity change from 0 to 1024
[ 1274.389292][T16087] EXT4-fs: Ignoring removed orlov option
[ 1274.535293][T16091] lo speed is unknown, defaulting to 1000
[ 1274.571620][T16087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1274.679724][   T28] kauditd_printk_skb: 28 callbacks suppressed
[ 1274.679738][   T28] audit: type=1800 audit(1761881949.621:168): pid=16087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2936" name="bus" dev="loop0" ino=18 res=0 errno=0
[ 1274.794512][   T28] audit: type=1804 audit(1761881949.691:169): pid=16087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2936" name="/newroot/68/bus/bus" dev="loop0" ino=18 res=1 errno=0
[ 1274.941593][T13173] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1274.951682][T13173] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1274.959762][T13173] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1274.969093][T13173] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1274.987180][T14640] syz_tun (unregistering): left allmulticast mode
[ 1274.995286][T13173] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1275.003006][T13173] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1275.038233][T16099] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2249: inode #15: comm syz.0.2936: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[ 1275.079606][T16099] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2249: inode #15: comm syz.0.2936: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[ 1275.118250][T16101] lo speed is unknown, defaulting to 1000
[ 1275.352603][T15091] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1276.517207][T16101] chnl_net:caif_netlink_parms(): no params data found
[ 1276.851606][T16101] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1276.893106][T16101] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1276.907399][   T28] audit: type=1326 audit(1761881951.851:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16124 comm="syz.0.2945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1276.956624][T16101] bridge_slave_0: entered allmulticast mode
[ 1277.016388][T16101] bridge_slave_0: entered promiscuous mode
[ 1277.089876][   T28] audit: type=1326 audit(1761881951.861:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16124 comm="syz.0.2945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1277.105949][T13173] Bluetooth: hci1: command tx timeout
[ 1277.146303][T16101] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1277.220404][T16101] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1277.327366][T16101] bridge_slave_1: entered allmulticast mode
[ 1277.367909][   T28] audit: type=1326 audit(1761881951.901:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16124 comm="syz.0.2945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1277.452312][T16101] bridge_slave_1: entered promiscuous mode
[ 1277.599430][   T28] audit: type=1326 audit(1761881951.911:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16124 comm="syz.0.2945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1277.621965][   T28] audit: type=1326 audit(1761881951.911:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16124 comm="syz.0.2945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1277.644849][   T28] audit: type=1326 audit(1761881951.921:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16124 comm="syz.0.2945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1277.667582][   T28] audit: type=1326 audit(1761881951.921:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16124 comm="syz.0.2945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1277.695939][   T28] audit: type=1326 audit(1761881951.931:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16124 comm="syz.0.2945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1277.784323][T16101] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1277.839265][T16101] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1277.901038][T16133] lo speed is unknown, defaulting to 1000
[ 1277.968528][T16101] team0: Port device team_slave_0 added
[ 1277.999459][T16101] team0: Port device team_slave_1 added
[ 1278.199646][T16140] loop3: detected capacity change from 0 to 2048
[ 1278.297373][T16145] random: crng reseeded on system resumption
[ 1278.761234][T16101] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1278.800664][T16101] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1278.915689][T16101] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1279.028191][T16101] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1279.074653][T16101] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1279.183595][T16140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1279.211275][T16101] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1279.237969][T16140] ext4 filesystem being mounted at /352/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1279.238176][T13173] Bluetooth: hci1: command tx timeout
[ 1279.524213][T11831] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1279.540760][T11797] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1279.683380][T16101] hsr_slave_0: entered promiscuous mode
[ 1279.706259][T16101] hsr_slave_1: entered promiscuous mode
[ 1279.714577][T16101] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1279.731623][T16101] Cannot create hsr debugfs directory
[ 1279.955388][T11797] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1280.054251][T16159] netlink: 16158 bytes leftover after parsing attributes in process `syz.3.2956'.
[ 1280.492356][T11797] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1280.659402][T11797] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1280.696685][T16166] loop4: detected capacity change from 0 to 512
[ 1280.750457][T16166] EXT4-fs error (device loop4): ext4_orphan_get:1425: comm syz.4.2959: bad orphan inode 11862016
[ 1280.829649][T16166] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1280.870861][T16171] random: crng reseeded on system resumption
[ 1280.965490][T16166] ext4 filesystem being mounted at /254/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1281.498371][T13173] Bluetooth: hci1: command tx timeout
[ 1281.734068][T12957] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1282.445993][T16180] create_pit_timer: 12 callbacks suppressed
[ 1282.446005][T16180] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1282.556220][T16178] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1282.565607][T16178] kvm: requested 13409 ns i8254 timer period limited to 200000 ns
[ 1282.573776][T16178] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1282.581798][T16178] kvm: requested 41904 ns i8254 timer period limited to 200000 ns
[ 1282.590223][T16178] kvm: requested 64533 ns i8254 timer period limited to 200000 ns
[ 1282.598405][T16178] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[ 1282.606839][T16178] kvm: requested 96381 ns i8254 timer period limited to 200000 ns
[ 1282.615645][T16178] kvm: requested 53638 ns i8254 timer period limited to 200000 ns
[ 1282.623815][T16178] kvm: requested 29333 ns i8254 timer period limited to 200000 ns
[ 1282.787872][T16189] fuse: Bad value for 'rootmode'
[ 1282.929771][T16101] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1282.990100][T16101] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1283.176710][T16101] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1283.232109][T16101] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1283.337412][T16194] netlink: 'syz.0.2969': attribute type 10 has an invalid length.
[ 1283.509713][T16204] loop4: detected capacity change from 0 to 512
[ 1283.517792][T13173] Bluetooth: hci1: command tx timeout
[ 1283.530023][T16204] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 1283.576783][T16204] EXT4-fs (loop4): revision level too high, forcing read-only mode
[ 1283.585187][T16204] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1283.662491][T16204] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #16: comm syz.4.2971: corrupted inode contents
[ 1283.682925][T16204] EXT4-fs (loop4): Remounting filesystem read-only
[ 1283.684577][T16194] team0 (unregistering): Port device team_slave_0 removed
[ 1283.692647][T16204] EXT4-fs (loop4): 1 truncate cleaned up
[ 1283.703893][   T50] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[ 1283.714834][   T50] __quota_error: 12 callbacks suppressed
[ 1283.714845][   T50] Quota error (device loop4): write_blk: dquota write failed
[ 1283.727873][T16194] team0 (unregistering): Port device team_slave_1 removed
[ 1283.732474][   T50] Quota error (device loop4): remove_free_dqentry: Can't write block (5) with free entries
[ 1283.747874][   T50] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[ 1283.768187][   T50] Quota error (device loop4): write_blk: dquota write failed
[ 1283.775603][   T50] Quota error (device loop4): free_dqentry: Can't move quota data block (5) to free list
[ 1283.789299][   T50] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[ 1283.799570][   T50] Quota error (device loop4): v2_write_file_info: Can't write info structure
[ 1283.811994][   T50] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1283.832798][T16204] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1284.010973][   T28] audit: type=1326 audit(1761881958.961:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16203 comm="syz.4.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7316b8efc9 code=0x7ffc0000
[ 1284.034927][   T28] audit: type=1326 audit(1761881958.961:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16203 comm="syz.4.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7316b8efc9 code=0x7ffc0000
[ 1284.058854][   T28] audit: type=1326 audit(1761881958.971:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16203 comm="syz.4.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f7316b8efc9 code=0x7ffc0000
[ 1284.120733][T16101] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1284.184512][T16101] 8021q: adding VLAN 0 to HW filter on device team0
[ 1284.191983][T16212] syzkaller0: entered allmulticast mode
[ 1284.200478][T16212] syzkaller0: entered promiscuous mode
[ 1284.233858][ T1096] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1284.241040][ T1096] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1284.272583][T16212] syzkaller0 (unregistering): left promiscuous mode
[ 1284.283668][T16212] syzkaller0 (unregistering): left allmulticast mode
[ 1284.411131][ T1083] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1284.418379][ T1083] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1284.603218][T11797] hsr_slave_0: left promiscuous mode
[ 1284.617897][T11797] hsr_slave_1: left promiscuous mode
[ 1284.637214][T11797] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1284.644667][T11797] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1284.652772][T11797] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1284.665611][T11797] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1284.680711][T11797] bridge_slave_1: left allmulticast mode
[ 1284.687825][T11797] bridge_slave_1: left promiscuous mode
[ 1284.693575][T11797] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1284.712439][T11797] bridge_slave_0: left allmulticast mode
[ 1284.715869][   T28] audit: type=1326 audit(1761881959.671:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16203 comm="syz.4.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7316b8efc9 code=0x7ffc0000
[ 1284.718583][T11797] bridge_slave_0: left promiscuous mode
[ 1284.746645][T11797] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1284.790422][T11797] veth1_macvtap: left promiscuous mode
[ 1284.800198][T11797] veth0_macvtap: left promiscuous mode
[ 1284.808126][T11797] veth1_vlan: left promiscuous mode
[ 1284.813553][T11797] veth0_vlan: left promiscuous mode
[ 1285.241028][T12957] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1285.533141][T11797] team0 (unregistering): Port device team_slave_1 removed
[ 1285.575682][T11797] team0 (unregistering): Port device team_slave_0 removed
[ 1285.621836][T11797] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1285.663634][T11797] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1286.121957][T11797] bond0 (unregistering): Released all slaves
[ 1286.204815][T16217] lo speed is unknown, defaulting to 1000
[ 1286.439714][T16101] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1286.911061][T16239] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2976'.
[ 1287.176723][T16101] veth0_vlan: entered promiscuous mode
[ 1287.236928][T16101] veth1_vlan: entered promiscuous mode
[ 1287.559707][T16101] veth0_macvtap: entered promiscuous mode
[ 1287.569396][T16101] veth1_macvtap: entered promiscuous mode
[ 1287.585301][T16101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1287.596380][T16101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1287.609473][T16101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1287.620490][T16101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1287.631014][T16101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1287.657138][T16101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1287.703004][T16101] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1287.794413][T16101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1287.805125][T16101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1287.815252][T16101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1287.825813][T16101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1287.837888][T16101] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1287.874015][T16101] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1287.910174][T16101] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1288.003380][T16101] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1288.025717][T16101] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1288.046156][T16101] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1288.068777][T16101] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1288.389815][T16247] random: crng reseeded on system resumption
[ 1288.529159][T10321] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1288.590243][T10321] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1288.966961][T16261] random: crng reseeded on system resumption
[ 1289.471104][T11797] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1289.528152][T11797] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1290.496506][T16270] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2934'.
[ 1290.849160][T16276] lo speed is unknown, defaulting to 1000
[ 1290.966966][T16281] loop5: detected capacity change from 0 to 2048
[ 1291.065233][T16281] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1291.134433][T16281] EXT4-fs error (device loop5): ext4_find_extent:936: inode #2: comm syz.5.2988: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[ 1291.164993][T16287] loop0: detected capacity change from 0 to 512
[ 1291.233132][T16287] EXT4-fs (loop0): too many log groups per flexible block group
[ 1291.242432][T16287] EXT4-fs (loop0): failed to initialize mballoc (-12)
[ 1291.251647][T16287] EXT4-fs (loop0): mount failed
[ 1291.275206][T16101] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1291.392221][T16292] loop5: detected capacity change from 0 to 512
[ 1291.552588][T16297] random: crng reseeded on system resumption
[ 1291.602506][T16292] EXT4-fs (loop5): 1 orphan inode deleted
[ 1291.667192][T16292] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1291.769008][T16292] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1292.450676][T16101] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1293.029302][   T28] kauditd_printk_skb: 1 callbacks suppressed
[ 1293.029315][   T28] audit: type=1326 audit(1761881967.981:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.059518][T16316] loop0: detected capacity change from 0 to 2048
[ 1293.132765][T16316] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1293.170897][   T28] audit: type=1326 audit(1761881967.981:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.201463][   T28] audit: type=1326 audit(1761881967.981:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.223955][   T28] audit: type=1326 audit(1761881967.981:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.246478][   T28] audit: type=1326 audit(1761881968.031:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.270363][   T28] audit: type=1326 audit(1761881968.031:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.293500][   T28] audit: type=1326 audit(1761881968.031:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.322215][   T28] audit: type=1326 audit(1761881968.031:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.344828][   T28] audit: type=1326 audit(1761881968.031:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.439659][   T28] audit: type=1326 audit(1761881968.031:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16317 comm="syz.3.3000" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce1d18efc9 code=0x7ffc0000
[ 1293.471627][T16325] random: crng reseeded on system resumption
[ 1293.497036][T16316] EXT4-fs error (device loop0): ext4_find_extent:936: inode #2: comm syz.0.2999: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[ 1294.248517][T15091] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1294.487146][T16337] siw: device registration error -23
[ 1295.417090][T16355] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3009'.
[ 1295.786254][T16364] random: crng reseeded on system resumption
[ 1296.996546][T16368] loop4: detected capacity change from 0 to 1024
[ 1297.083226][T16368] EXT4-fs: Ignoring removed orlov option
[ 1297.122341][T16368] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1297.376954][T16376] siw: device registration error -23
[ 1298.057281][T16368] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.3015: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[ 1298.082191][T16368] tipc: Started in network mode
[ 1298.089866][T16368] tipc: Node identity ac14140f, cluster identity 4711
[ 1298.151695][T16368] tipc: New replicast peer: 255.255.255.255
[ 1298.175932][T16368] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1298.300629][T12957] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1298.493970][T16385] loop4: detected capacity change from 0 to 764
[ 1298.544575][T16385] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1299.007601][T16395] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3024'.
[ 1299.016340][   T28] kauditd_printk_skb: 27 callbacks suppressed
[ 1299.016355][   T28] audit: type=1326 audit(1761881973.961:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1299.044826][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1299.081806][T16395] loop5: detected capacity change from 0 to 128
[ 1299.135696][   T28] audit: type=1326 audit(1761881973.961:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1299.141962][T16400] netlink: 56 bytes leftover after parsing attributes in process `syz.4.3022'.
[ 1299.158173][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1299.158382][ T1208] tipc: Node number set to 2886997007
[ 1299.385990][   T28] audit: type=1326 audit(1761881973.961:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1299.644881][   T28] audit: type=1326 audit(1761881973.961:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1299.765894][   T28] audit: type=1326 audit(1761881973.961:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1300.071459][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.077930][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.252270][   T28] audit: type=1326 audit(1761881973.961:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1300.573896][   T28] audit: type=1326 audit(1761881973.961:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1300.574105][   T28] audit: type=1326 audit(1761881973.961:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1300.574226][   T28] audit: type=1326 audit(1761881973.961:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1300.574405][   T28] audit: type=1326 audit(1761881973.961:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16393 comm="syz.5.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794278efc9 code=0x7ffc0000
[ 1300.624852][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1302.199970][T16429] loop5: detected capacity change from 0 to 512
[ 1302.208401][T16429] EXT4-fs: Ignoring removed orlov option
[ 1302.222448][T16429] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.3034: inode has both inline data and extents flags
[ 1302.239843][T16429] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.3034: couldn't read orphan inode 15 (err -117)
[ 1302.253543][T16429] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1302.365051][T16101] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1302.417332][T16440] loop0: detected capacity change from 0 to 2048
[ 1302.441582][T16440] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1302.462817][T16440] EXT4-fs error (device loop0): ext4_find_extent:936: inode #2: comm syz.0.3038: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[ 1302.509868][T15091] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1302.861668][T16454] netlink: 56 bytes leftover after parsing attributes in process `syz.5.3041'.
[ 1304.458950][T16471] random: crng reseeded on system resumption
[ 1305.227259][T16473] syz.4.3048[16473] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1305.227377][T16473] syz.4.3048[16473] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1305.287967][T16475] loop5: detected capacity change from 0 to 2048
[ 1305.388592][T16475] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1305.431613][   T28] kauditd_printk_skb: 60 callbacks suppressed
[ 1305.431627][   T28] audit: type=1326 audit(1761881980.391:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7316b8efc9 code=0x7ffc0000
[ 1305.460779][T16479] loop4: detected capacity change from 0 to 1024
[ 1305.473268][   T28] audit: type=1326 audit(1761881980.411:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7316b8efc9 code=0x7ffc0000
[ 1305.495375][T16479] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[ 1305.510911][T16475] EXT4-fs error (device loop5): ext4_find_extent:936: inode #2: comm syz.5.3049: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[ 1305.529968][   T28] audit: type=1326 audit(1761881980.411:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7316b8f003 code=0x7ffc0000
[ 1305.556167][   T28] audit: type=1326 audit(1761881980.411:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7316b8da7f code=0x7ffc0000
[ 1305.619147][   T28] audit: type=1326 audit(1761881980.421:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f7316b8f057 code=0x7ffc0000
[ 1305.642775][   T28] audit: type=1326 audit(1761881980.421:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7316b8d810 code=0x7ffc0000
[ 1305.682387][T16479] loop4: detected capacity change from 0 to 512
[ 1305.707333][T16101] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1305.725616][   T28] audit: type=1326 audit(1761881980.421:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7316b8ebcb code=0x7ffc0000
[ 1305.742192][T16479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1305.793383][   T28] audit: type=1326 audit(1761881980.431:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f7316b8dc2a code=0x7ffc0000
[ 1305.825962][T16479] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1305.856441][   T28] audit: type=1326 audit(1761881980.431:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f7316b8dc2a code=0x7ffc0000
[ 1305.886769][   T28] audit: type=1326 audit(1761881980.431:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16478 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f7316b8d717 code=0x7ffc0000
[ 1306.386144][T12957] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1306.560992][T16499] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3055'.
[ 1307.265930][ T5793] Bluetooth: hci0: command 0x0406 tx timeout
[ 1309.042766][T16511] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3058'.
[ 1309.081222][T16513] netdevsim netdevsim5: Direct firmware load for þ failed with error -2
[ 1309.091157][T16513] netdevsim netdevsim5: Falling back to sysfs fallback for: þ
[ 1309.509061][T16520] random: crng reseeded on system resumption
[ 1311.041794][T16535] loop4: detected capacity change from 0 to 512
[ 1311.109795][T16535] EXT4-fs warning (device loop4): ext4_xattr_inode_get:563: inode #11: comm syz.4.3065: EA inode hash validation failed
[ 1311.146298][T16535] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 1311.174015][T16535] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #15: comm syz.4.3065: corrupted inode contents
[ 1311.216342][   T28] kauditd_printk_skb: 49 callbacks suppressed
[ 1311.216352][   T28] audit: type=1326 audit(1761881986.181:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.326939][   T28] audit: type=1326 audit(1761881986.221:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.357556][T16535] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #15: comm syz.4.3065: mark_inode_dirty error
[ 1311.374722][   T28] audit: type=1326 audit(1761881986.221:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.394786][T16535] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #15: comm syz.4.3065: corrupted inode contents
[ 1311.416169][   T28] audit: type=1326 audit(1761881986.221:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.447222][T16535] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3017: inode #15: comm syz.4.3065: mark_inode_dirty error
[ 1311.447256][   T28] audit: type=1326 audit(1761881986.221:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.481974][   T28] audit: type=1326 audit(1761881986.221:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.507827][   T28] audit: type=1326 audit(1761881986.241:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.530297][   T28] audit: type=1326 audit(1761881986.241:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.552672][   T28] audit: type=1326 audit(1761881986.241:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.575125][   T28] audit: type=1326 audit(1761881986.241:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16540 comm="syz.0.3068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4bddf8efc9 code=0x7ffc0000
[ 1311.603894][T16535] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3020: inode #15: comm syz.4.3065: mark inode dirty (error -117)
[ 1311.621522][T16535] EXT4-fs warning (device loop4): ext4_evict_inode:272: xattr delete (err -117)
[ 1311.632153][T16535] EXT4-fs (loop4): 1 orphan inode deleted
[ 1311.642955][T16535] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1311.696695][T16535] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1312.034784][T16548] netlink: 512 bytes leftover after parsing attributes in process `syz.0.3071'.
[ 1313.218193][T16560] netlink: 'syz.0.3077': attribute type 4 has an invalid length.
[ 1313.253242][   T27] lo speed is unknown, defaulting to 1000
[ 1313.272757][T16564] 
[ 1313.275549][T16564] =============================
[ 1313.280837][T16564] WARNING: suspicious RCU usage
[ 1313.282177][T16560] netlink: 'syz.0.3077': attribute type 4 has an invalid length.
[ 1313.285703][T16564] syzkaller #0 Not tainted
[ 1313.298035][T16564] -----------------------------
[ 1313.302899][T16564] kernel/events/callchain.c:161 suspicious rcu_dereference_check() usage!
[ 1313.311543][T16564] 
[ 1313.311543][T16564] other info that might help us debug this:
[ 1313.311543][T16564] 
[ 1313.315911][  T788] lo speed is unknown, defaulting to 1000
[ 1313.321832][T16564] 
[ 1313.321832][T16564] rcu_scheduler_active = 2, debug_locks = 1
[ 1313.336740][T16564] 1 lock held by syz.5.3078/16564:
[ 1313.341879][T16564]  #0: ffffffff8cd30100 (rcu_read_lock_trace){....}-{0:0}, at: rcu_read_lock_trace+0x37/0x70
[ 1313.352314][T16564] 
[ 1313.352314][T16564] stack backtrace:
[ 1313.358387][T16564] CPU: 0 PID: 16564 Comm: syz.5.3078 Not tainted syzkaller #0
[ 1313.365881][T16564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1313.375955][T16564] Call Trace:
[ 1313.379261][T16564]  <TASK>
[ 1313.382194][T16564]  dump_stack_lvl+0x16c/0x230
[ 1313.386881][T16564]  ? show_regs_print_info+0x20/0x20
[ 1313.392082][T16564]  ? load_image+0x3b0/0x3b0
[ 1313.396596][T16564]  lockdep_rcu_suspicious+0x1e1/0x300
[ 1313.401974][T16564]  get_callchain_entry+0x2a9/0x3c0
[ 1313.407094][T16564]  get_perf_callchain+0xa3/0x4b0
[ 1313.412033][T16564]  ? put_callchain_entry+0xb0/0xb0
[ 1313.417157][T16564]  ? plist_add+0x3d8/0x490
[ 1313.421588][T16564]  __bpf_get_stack+0x2d7/0x510
[ 1313.426373][T16564]  ? stack_map_get_build_id_offset+0x720/0x720
[ 1313.432546][T16564]  ? __cant_sleep+0x210/0x210
[ 1313.437233][T16564]  ? bpf_prog_b8a90dd1efcc4ad9+0x45/0x49
[ 1313.442868][T16564]  bpf_get_stack_raw_tp+0x1a9/0x210
[ 1313.448080][T16564]  bpf_prog_b8a90dd1efcc4ad9+0x45/0x49
[ 1313.453545][T16564]  bpf_prog_run_pin_on_cpu+0x63/0x140
[ 1313.458920][T16564]  bpf_prog_test_run_syscall+0x311/0x490
[ 1313.464556][T16564]  ? sock_gen_cookie+0x60/0x60
[ 1313.469323][T16564]  ? sock_gen_cookie+0x60/0x60
[ 1313.474082][T16564]  bpf_prog_test_run+0x321/0x390
[ 1313.479026][T16564]  __sys_bpf+0x440/0x800
[ 1313.483273][T16564]  ? bpf_link_show_fdinfo+0x350/0x350
[ 1313.488656][T16564]  ? lock_chain_count+0x20/0x20
[ 1313.493511][T16564]  __x64_sys_bpf+0x7c/0x90
[ 1313.497931][T16564]  do_syscall_64+0x55/0xb0
[ 1313.502373][T16564]  ? clear_bhb_loop+0x40/0x90
[ 1313.507052][T16564]  ? clear_bhb_loop+0x40/0x90
[ 1313.511730][T16564]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1313.517633][T16564] RIP: 0033:0x7f794278efc9
[ 1313.522059][T16564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1313.541678][T16564] RSP: 002b:00007f7943684038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1313.550100][T16564] RAX: ffffffffffffffda RBX: 00007f79429e5fa0 RCX: 00007f794278efc9
[ 1313.558083][T16564] RDX: 000000000000000c RSI: 00002000000004c0 RDI: 000000000000000a
[ 1313.566070][T16564] RBP: 00007f7942811f91 R08: 0000000000000000 R09: 0000000000000000
[ 1313.574039][T16564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1313.582007][T16564] R13: 00007f79429e6038 R14: 00007f79429e5fa0 R15: 00007ffc44d3b6f8
[ 1313.589995][T16564]  </TASK>
[ 1313.665935][   T43] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[ 1313.870467][   T43] usb 5-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1313.879729][   T43] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1313.891056][   T43] usb 5-1: Product: syz
[ 1313.895529][   T43] usb 5-1: Manufacturer: syz
[ 1313.901187][   T43] usb 5-1: SerialNumber: syz
[ 1314.329344][   T43] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71
[ 1314.341238][   T43] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71
[ 1314.353626][   T43] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1314.363448][   T43] lan78xx 5-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1314.373337][   T43] lan78xx: probe of 5-1:1.0 failed with error -71
[ 1314.384545][   T43] usb 5-1: USB disconnect, device number 5