last executing test programs:

24m45.148192711s ago: executing program 3 (id=31):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000300)={@cgroup=r0, r0, 0x2e}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000180)={0x0, <r2=>0x0}, 0x0)
close(0x3)
r3 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=r2, 0x4)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={r3, r1, 0x0, r1}, 0x5)

24m44.697296937s ago: executing program 3 (id=33):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xe8}}, 0x0)

24m44.468355273s ago: executing program 3 (id=34):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x2000000000000005, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x5, 0x1, 0x0, "bb1e000064000080007f28becf0500063475de71000077a16c80b6db943400"})

24m43.101310438s ago: executing program 3 (id=35):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000580)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1b5008, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
mount$bpf(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0)

24m42.633555633s ago: executing program 3 (id=38):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
ioprio_set$pid(0x1, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, r1, 0x0, 0x39000, 0x0)

24m36.07736995s ago: executing program 3 (id=55):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000740)=0xffffffffffffffff)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000000480)=""/53, 0x0, 0xd000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000440)={0x1, 0x0, [{0xf000, 0x1000, &(0x7f0000001600)=""/4096}]})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000000c0)={0x1, 0x1, 0x0, 0x0, 0x0, 0x8080000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

24m35.680021018s ago: executing program 32 (id=55):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000740)=0xffffffffffffffff)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000000480)=""/53, 0x0, 0xd000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000440)={0x1, 0x0, [{0xf000, 0x1000, &(0x7f0000001600)=""/4096}]})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000000c0)={0x1, 0x1, 0x0, 0x0, 0x0, 0x8080000})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

23m51.760163157s ago: executing program 2 (id=117):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x10)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
io_setup(0x42, &(0x7f0000000100)=<r2=>0x0)
io_submit(r2, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f00000043c0)=[{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000005c0)="2d8d06ed4ac243f98da0015435ed748318", 0x11}], 0x1, 0x0, 0x0, 0x20040090}], 0x1, 0x0)

23m48.952598618s ago: executing program 2 (id=121):
landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x18, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r4, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000080)=0x1f6, 0x4)
sendmmsg$inet(r4, &(0x7f0000003240)=[{{0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000001540)="94", 0x1}], 0x1}}], 0x1, 0x4000800)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000340)={'gretap0\x00', &(0x7f0000000280)={'syztnl1\x00', <r5=>0x0, 0x10, 0x20, 0x46, 0x208, {{0xe, 0x4, 0x3, 0x2c, 0x38, 0x65, 0x0, 0xe1, 0x29, 0x0, @multicast2, @loopback, {[@ra={0x94, 0x4, 0x1}, @timestamp_addr={0x44, 0xc, 0x3c, 0x1, 0x9, [{@local, 0x7ff}]}, @rr={0x7, 0xb, 0xc4, [@loopback, @remote]}, @noop, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4, 0x2}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000100)={'ip6tnl0\x00', <r6=>r5, 0x2f, 0x8, 0xe, 0xfffffffc, 0x2b, @remote, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xdb00cf8c363082d, 0x40, 0x3, 0x81}})
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback, r6}, 0xc)
r7 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
readv(r7, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/66, 0x42}], 0x1)
socket$netlink(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route_sched(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000d40)=@newqdisc={0x14c, 0x24, 0x3fe3aa0262d8c5a3, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x11c, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfc}}, @TCA_CHOKE_STAB={0x104, 0x2, "dc542b4e237011fb38ddb228806571a8633206e26df63a43bbc516382325dedd79c1cf0a26379dfaf72cb5ab9ab7efe16f312ee9ab598d1ac0d7903ac69c51f1b6842ebecf00dec5deff737b59f0c1f0b57cc6c2b7b8c5b2c527aafa57222f4bd2355ccab39fa20d4033b6b687491532080101805feb9c6fa8a56a77186efcb394ce1a1cd7f2130835e3bf9e3ac25d0a102a808be13beb51f37da6d10046f131834545ee5013f43e41e91eb18a12c28540ab4106286e0f7568f6a9cd0c0da51df08e42848096b25d455ebec9adfd6e493d8c9725bc2d49bbbae0a5375b359f91d9dad20ed109ffbc52469cffd2cf5df7773f7a4c72ae167485315c326281efc4"}]}}]}, 0x14c}}, 0x0)

23m38.073614543s ago: executing program 2 (id=132):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
accept4$unix(r3, &(0x7f0000000280)=@abs, 0x0, 0x80000)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xc, 0x4, 0xc4f, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000100), 0x6c7, r5}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000440), 0x23, r5}, 0x38)

23m28.240930823s ago: executing program 2 (id=152):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000580)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1b5008, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
mount$bpf(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0)

23m27.505572335s ago: executing program 2 (id=153):
landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x18, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r4, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000080)=0x1f6, 0x4)
sendmmsg$inet(r4, &(0x7f0000003240)=[{{&(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10, 0x0}}], 0x1, 0x4000800)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000340)={'gretap0\x00', &(0x7f0000000280)={'syztnl1\x00', <r5=>0x0, 0x10, 0x20, 0x46, 0x208, {{0xe, 0x4, 0x3, 0x2c, 0x38, 0x65, 0x0, 0xe1, 0x29, 0x0, @multicast2, @loopback, {[@ra={0x94, 0x4, 0x1}, @timestamp_addr={0x44, 0xc, 0x3c, 0x1, 0x9, [{@local, 0x7ff}]}, @rr={0x7, 0xb, 0xc4, [@loopback, @remote]}, @noop, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4, 0x2}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000100)={'ip6tnl0\x00', <r6=>r5, 0x2f, 0x8, 0xe, 0xfffffffc, 0x2b, @remote, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xdb00cf8c363082d, 0x40, 0x3, 0x81}})
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback, r6}, 0xc)
r7 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
readv(r7, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/66, 0x42}], 0x1)
socket$netlink(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route_sched(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000d40)=@newqdisc={0x14c, 0x24, 0x3fe3aa0262d8c5a3, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x11c, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfc}}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}]}}]}, 0x14c}}, 0x0)

23m19.621127058s ago: executing program 2 (id=161):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
accept4$unix(r1, &(0x7f0000000280)=@abs, 0x0, 0x80000)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xc, 0x4, 0xc4f, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000100), 0x6c7, r3}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000440), 0x23, r3}, 0x38)

23m18.216238765s ago: executing program 33 (id=161):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
accept4$unix(r1, &(0x7f0000000280)=@abs, 0x0, 0x80000)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xc, 0x4, 0xc4f, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000100), 0x6c7, r3}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180), &(0x7f0000000440), 0x23, r3}, 0x38)

7m47.387303706s ago: executing program 4 (id=2196):
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, 0xffffffffffffffff, 0x100000000)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r1, 0xc040aed5, &(0x7f0000000240)={0x8000000000000, 0x315000})

7m47.163859114s ago: executing program 4 (id=2197):
openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x1, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
getrlimit(0xd, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100})

7m46.183162557s ago: executing program 4 (id=2200):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000040)={0x12, 0xffffffe, 0x0, 0x10013, 0x8, "e28f000001040001000000000500"})
write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000380)={0x0, 0x40000000, 0x4, 0x8, 0x1a, "00000000000000000000ffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
read$FUSE(r2, &(0x7f0000002840)={0x2020}, 0x2020)

7m43.869405166s ago: executing program 4 (id=2207):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
read(r0, 0x0, 0x0)

7m43.336517724s ago: executing program 4 (id=2211):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x2}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x800}, 0x10)
sendmsg$nl_route(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000005e00010027bd70000000", @ANYRES32=0x0, @ANYBLOB="01"], 0x1c}, 0x1, 0x0, 0x0, 0x4040084}, 0x0)

7m43.053256047s ago: executing program 4 (id=2214):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000f40)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)

7m40.555281601s ago: executing program 1 (id=2224):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x3, 0xfd, 0x3, 0x200}})
ioctl$TIOCL_SETSEL(r1, 0x541c, 0x0)

7m37.332662891s ago: executing program 1 (id=2229):
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xc)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000019380)=""/102400, 0x19000)
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, &(0x7f00000000c0)={'comedi_parport\x00', [0x4f27, 0x1f, 0x10000, 0x4, 0x3, 0xcc7, 0x4, 0x80008, 0xe, 0x6, 0x2, 0x1, 0x1, 0x1, 0x6, 0x10000105, 0x0, 0x1a44d, 0x3, 0x3fff7fff, 0x89, 0x10, 0x1, 0x20001e58, 0x80000b, 0xe69, 0x3c, 0x8, 0x6, 0x0, 0xfffffff8]})
r2 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r3)
mount(0x0, 0x0, &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r4 = syz_open_procfs(r2, &(0x7f0000000040)='status\x00')
read$FUSE(r4, &(0x7f0000001580)={0x2020}, 0x2020)

7m36.873007758s ago: executing program 1 (id=2233):
openat$mixer(0xffffffffffffff9c, &(0x7f0000002740), 0x0, 0x0)
r0 = syz_open_dev$amidi(&(0x7f0000000480), 0x2, 0x80042)
r1 = dup(r0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

7m36.369040227s ago: executing program 1 (id=2235):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x33)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000dc0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f00000000c0)='%ps    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x1c, &(0x7f0000000800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xf0000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r3}, 0x18)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)

7m36.167454789s ago: executing program 1 (id=2237):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe800000000000000000", @ANYRES32=0x41424344], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000180)=@gcm_256={{0x303}, "c4915c7f49541ce8", "9b84f987950ff3df25fa8f46983d34157e047d27ae4a66a6d15608a32cbaa5bc", '\x00', "be0ea450d5a50003"}, 0x38)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/12], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x4001, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x210020, 0x0)
openat$vimc1(0xffffffffffffff9c, 0x0, 0x2, 0x0)

7m35.047736948s ago: executing program 1 (id=2245):
socket$key(0xf, 0x3, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan0\x00'})
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
socket(0xa, 0x3, 0x3a)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000340))
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x44840)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
mknod$loop(0x0, 0x2000, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x30040043}, 0x240008c4)

7m19.637039803s ago: executing program 34 (id=2245):
socket$key(0xf, 0x3, 0x2)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan0\x00'})
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
socket(0xa, 0x3, 0x3a)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000340))
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x44840)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
mknod$loop(0x0, 0x2000, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x30040043}, 0x240008c4)

3m44.55420102s ago: executing program 0 (id=2738):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x3000009, 0x46031, 0xffffffffffffffff, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x80000)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r2, 0x0, 0x0})
io_uring_enter(0xffffffffffffffff, 0x40f9, 0x217, 0xa5, 0x0, 0xf5)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000002cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3m42.820826172s ago: executing program 0 (id=2741):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket(0x1f, 0x3, 0x2)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r0, 0x800442d4, &(0x7f0000000000)=0xffffffff)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$RXRPC_UPGRADEABLE_SERVICE(r0, 0x110, 0x5, &(0x7f0000000280)=[0x4, 0x3], 0x2)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = io_uring_setup(0x5b42, &(0x7f0000000640)={0x0, 0xfffffffe, 0x800, 0x103fc, 0x159})
r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
bind$ax25(r6, &(0x7f0000000080)={{0x3, @default, 0x1}, [@null, @default, @default, @null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
close_range(r5, 0xffffffffffffffff, 0x0)

3m39.56930212s ago: executing program 0 (id=2746):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0)={0xaa, 0x380})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000113000/0x3000)=nil, 0x400000, 0x0, 0x2})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r1, &(0x7f0000000580)='1\x00', 0x2)
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
write$sysctl(r1, &(0x7f00000000c0)='2\x00', 0x2)

3m38.289335519s ago: executing program 0 (id=2748):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f0000002300)='./file0\x00')
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
lstat(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200))

3m38.039349144s ago: executing program 0 (id=2749):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x3000009, 0x46031, 0xffffffffffffffff, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x80000)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x800, 0x3, 0x285}, &(0x7f00000004c0)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r2, 0x0, 0x0})
io_uring_enter(r3, 0x40f9, 0x217, 0xa5, 0x0, 0xf5)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000002cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3m34.972600084s ago: executing program 0 (id=2752):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x92, 0x5, 0x6, 0x4}, 0x3a, [0x8000, 0x2c95a, 0xf, 0x8, 0x80, 0x1, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x8, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x5, 0x3c5b, 0x1, 0x24, 0xd, 0x7, 0x0, 0x800, 0x4, 0x4, 0x7, 0x3, 0x8, 0x4c75, 0x80000000, 0x2, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x40017, 0x0, 0x7, 0x5, 0x3e, 0x3, 0x6, 0xffff, 0x0, 0x6, 0x4, 0x8008, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e6, 0x40c8, 0xf9, 0xe, 0x82c0, 0x6c7, 0x8, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x5, 0xea4, 0x0, 0xb94, 0x7, 0x7fff, 0x1c000, 0x3fe, 0x403, 0x200006, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0x2d, 0x4e2, 0x5, 0x4, 0xb, 0x2000004, 0x9, 0x80000001, 0x9, 0x6, 0x47, 0x8200, 0x1, 0xfe000000, 0x8, 0xffffffff, 0x4, 0x4, 0x3, 0x50, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x407, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0xa2, 0x8000, 0x0, 0x5, 0xb, 0x5, 0x5, 0x5, 0x4000000, 0x1eb, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0xfffffffe, 0x3, 0x20000008, 0x4, 0x6d01, 0x2, 0x38, 0x800083, 0x200, 0x80, 0x3, 0x8000004, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x4005, 0x6, 0x8, 0xca, 0x1ff, 0x3, 0x7ff, 0xbe, 0x4, 0x7, 0xe, 0x0, 0x5, 0x1c, 0x8, 0x4, 0x8, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x2, 0x5, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x9, 0x1, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x6, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xffffffd9, 0xfffff000, 0x10010000, 0x0, 0x7e, 0x9, 0x9602, 0x40007, 0xaf, 0x5, 0x6, 0x227, 0x2, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf3c, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x1, 0xb1e, 0xd7, 0x201, 0xffff3441, 0x4]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6161, 0x4d15, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}}}]}}]}}, 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x100000000000000, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f0000002880)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

3m33.034987096s ago: executing program 35 (id=2752):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x92, 0x5, 0x6, 0x4}, 0x3a, [0x8000, 0x2c95a, 0xf, 0x8, 0x80, 0x1, 0x3, 0x80000000, 0x20000006, 0x4d, 0x6, 0x5d, 0x8, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x5, 0x3c5b, 0x1, 0x24, 0xd, 0x7, 0x0, 0x800, 0x4, 0x4, 0x7, 0x3, 0x8, 0x4c75, 0x80000000, 0x2, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x40017, 0x0, 0x7, 0x5, 0x3e, 0x3, 0x6, 0xffff, 0x0, 0x6, 0x4, 0x8008, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x2008004, 0x5, 0xfffffff3, 0x129432e6, 0x40c8, 0xf9, 0xe, 0x82c0, 0x6c7, 0x8, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x5, 0xea4, 0x0, 0xb94, 0x7, 0x7fff, 0x1c000, 0x3fe, 0x403, 0x200006, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0x2d, 0x4e2, 0x5, 0x4, 0xb, 0x2000004, 0x9, 0x80000001, 0x9, 0x6, 0x47, 0x8200, 0x1, 0xfe000000, 0x8, 0xffffffff, 0x4, 0x4, 0x3, 0x50, 0x9, 0x1, 0x3, 0x3, 0x81, 0x48c93690, 0x42, 0x3], [0x7, 0x407, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0xa2, 0x8000, 0x0, 0x5, 0xb, 0x5, 0x5, 0x5, 0x4000000, 0x1eb, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0xfffffffe, 0x3, 0x20000008, 0x4, 0x6d01, 0x2, 0x38, 0x800083, 0x200, 0x80, 0x3, 0x8000004, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x4005, 0x6, 0x8, 0xca, 0x1ff, 0x3, 0x7ff, 0xbe, 0x4, 0x7, 0xe, 0x0, 0x5, 0x1c, 0x8, 0x4, 0x8, 0x80a2ed, 0x4, 0x3c484551], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x2, 0x5, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x9, 0x1, 0x101, 0x10000, 0x2000004, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x6, 0x2, 0x14c, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0xffffffd9, 0xfffff000, 0x10010000, 0x0, 0x7e, 0x9, 0x9602, 0x40007, 0xaf, 0x5, 0x6, 0x227, 0x2, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf3c, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x1, 0xb1e, 0xd7, 0x201, 0xffff3441, 0x4]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6161, 0x4d15, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}}}]}}]}}, 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x100000000000000, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f0000002880)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

2m36.586676264s ago: executing program 6 (id=2814):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x1c000)
socket$inet6(0xa, 0x2, 0x0)
socket$unix(0x1, 0x5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$unix(0x1, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=@newsa={0x138, 0x10, 0x713, 0x70bd28, 0x0, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in=@local, 0x4e23, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x84, 0x0, 0xffffffffffffffff}, {@in6=@remote, 0x0, 0x32}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {0x0, 0x0, 0x8, 0x100000001, 0x6}, {0x0, 0x0, 0x2, 0xfffffffffffffffc}, {0xc}, 0x70bd29, 0x0, 0x2}, [@algo_aead={0x4c, 0x12, {{'rfc4543(gcm(aes))\x00'}, 0x0, 0x80}}]}, 0x138}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xffffffff, 0x0, &(0x7f0000000540)=0x2)
lseek(r2, 0xa, 0x4)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x17)
userfaultfd(0x801)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mbind(&(0x7f00001fa000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x0, 0x1)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000480), 0x1, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, &(0x7f0000000240)={0x1f, 0xfffffffffffffffe, 0x0, 0x0, 0x7, 0x4, 0x0, 0xfffffffffffffffc}, 0x0, 0x0)
io_pgetevents(0x0, 0x0, 0x1, &(0x7f0000000040)=[{}], &(0x7f00000000c0)={0x77359400}, &(0x7f0000000200)={&(0x7f0000000140)={[0x2a2]}, 0x8})
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

2m31.501884782s ago: executing program 6 (id=2815):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x3000009, 0x46031, 0xffffffffffffffff, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x800, 0x3, 0x285}, &(0x7f00000004c0)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r2, 0x0, 0x0})
io_uring_enter(r3, 0x40f9, 0x217, 0xa5, 0x0, 0xf5)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000002cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2m29.98193232s ago: executing program 6 (id=2818):
bind$alg(0xffffffffffffffff, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni-avx2\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
pipe2$9p(&(0x7f0000000680)={<r1=>0xffffffffffffffff}, 0x4000)
mount$9p_fd(0x0, &(0x7f0000000600)='./file1\x00', &(0x7f0000000640), 0x1, &(0x7f00000006c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

2m29.545181643s ago: executing program 6 (id=2819):
syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semctl$SETALL(0x0, 0x0, 0x14, &(0x7f0000000740))

2m28.596494352s ago: executing program 6 (id=2820):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0xa0602, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0, 0xff2b}], 0x2)

2m28.426789126s ago: executing program 6 (id=2821):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x40, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000006900)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bcd4681f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b2c1ec000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008df76a250000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea21056000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000131a5d9400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x20, 0x0, 0xf098, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
lseek(r2, 0x8, 0x0)

2m12.716764658s ago: executing program 36 (id=2821):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x40, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000006900)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bcd4681f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b2c1ec000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008df76a250000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea21056000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000131a5d9400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x20, 0x0, 0xf098, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
lseek(r2, 0x8, 0x0)

12.897958984s ago: executing program 5 (id=2895):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x1c000)
socket$inet6(0xa, 0x2, 0x0)
socket$unix(0x1, 0x5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$unix(0x1, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=@newsa={0x138, 0x10, 0x713, 0x70bd28, 0x0, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in=@local, 0x4e23, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x84, 0x0, 0xffffffffffffffff}, {@in6=@remote, 0x0, 0x32}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {0x0, 0x0, 0x8, 0x100000001, 0x6}, {0x0, 0x0, 0x2, 0xfffffffffffffffc}, {0xc}, 0x70bd29, 0x0, 0x2}, [@algo_aead={0x4c, 0x12, {{'rfc4543(gcm(aes))\x00'}, 0x0, 0x80}}]}, 0x138}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xffffffff, 0x0, &(0x7f0000000540)=0x2)
lseek(r2, 0xa, 0x4)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x17)
userfaultfd(0x801)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000480), 0x1, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
io_pgetevents(0x0, 0x0, 0x1, &(0x7f0000000040)=[{}], &(0x7f00000000c0)={0x77359400}, &(0x7f0000000200)={&(0x7f0000000140)={[0x2a2]}, 0x8})
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

6.233267757s ago: executing program 5 (id=2896):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xaf4, 0x0)

3.280516253s ago: executing program 5 (id=2897):
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = fsopen(&(0x7f00000001c0)='smb3\x00', 0x0)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x80000239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x13b}, &(0x7f0000000180), &(0x7f0000000240))
pipe(0x0)
write(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x4, 0x80100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
ioctl$AUTOFS_IOC_FAIL(r3, 0x4c80, 0x7000000)
ioctl$sock_bt_hidp_HIDPCONNDEL(r1, 0x400448c9, &(0x7f0000000000)={@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}})
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000200)={&(0x7f00000006c0)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000003c0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000180)={&(0x7f00000000c0)=[0x0, 0x0], 0x2})
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000100)='c:::/', 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = openat$comedi(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/comedi4\x00', 0x101000, 0x0)
ioctl$COMEDI_SUBDINFO(r7, 0x80486402, &(0x7f0000000000))
sendmsg$nl_xfrm(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="b800000019000100fcffffff00000000ac14142c000000000000000000000000fe8000000000000000000000000000aa4e2200044e2400000a00006000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000104000000000010feffffffffffffff000000400000000000000000000000001a000010000000000100000000000000feffffffffffffff770000000000000005000000000000000000000000000000ff7f0000000000000800000000000000010103"], 0xb8}}, 0x0)

1.386192912s ago: executing program 5 (id=2898):
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="c00000000001050500000000000000000a0000003c0002802c00018014000300ff01000000000000000000000000010114000400ff0200000000000000000000000000010c00028005000100000000003c0001800c00028005000100000000002c00018014000300ff02000000000000000000000000000114000400fc0000000000000076c400000000000108000740000000002c00068014000500fe8000000000000000"], 0xc0}, 0x1, 0x0, 0x0, 0x4040081}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=@newsa={0x114, 0x10, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2, 0x0, 0x10000000}, {0x0, 0x200000, 0x7}, {0x40000, 0xfffffffd, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@lifetime_val={0x24, 0x9, {0xb4, 0x8000000000000001, 0xb4, 0x5}}]}, 0x114}}, 0x0)

241.2899ms ago: executing program 5 (id=2899):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
r0 = socket(0x1, 0x803, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x8008551d, &(0x7f0000000180)=ANY=[@ANYBLOB])
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080))
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="7fff0000000000002800128009000100766c616e000000001800028006000100340200000c0002001f0000001e00000008000500", @ANYRES32=r1], 0x50}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000300)=0x14)

0s ago: executing program 5 (id=2900):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0xfffffffffffffdee, &(0x7f0000000000)=0x8000000000005)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
syz_emit_ethernet(0x6e, &(0x7f0000000500)=ANY=[@ANYRES64=0x0, @ANYRESOCT=r3], 0x0)
dup3(r1, r5, 0x80000)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r8)
getsockname$packet(r8, &(0x7f00000002c0)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r9, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}, 0x1, 0x0, 0x0, 0x400c056}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x40044}, 0x2000c084)

kernel console output (not intermixed with test programs):

sb 1-1: Manufacturer: syz
[ 1255.836583][T12923] usb 1-1: SerialNumber: syz
[ 1255.880831][T12923] usb 1-1: config 0 descriptor??
[ 1255.885455][T15194] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1255.900798][T12923] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input6
[ 1256.102917][T15203] 9pnet: p9_errstr2errno: server reported unknown error �@í0x0000000000000007
[ 1256.722087][T15207] fuse: Unknown parameter 'rootmode00000000000000000000'
[ 1258.194406][ T6018] usb 1-1: USB disconnect, device number 35
[ 1258.194483][    C0] usbtouchscreen 1-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[ 1258.264026][T14995] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1258.264040][T14995] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1258.264055][T14995] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1258.265633][T14995] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1258.265642][T14995] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1258.265657][T14995] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1259.529946][T14995] hsr_slave_0: entered promiscuous mode
[ 1259.531739][T14995] hsr_slave_1: entered promiscuous mode
[ 1259.543944][T14995] debugfs: 'hsr0' already exists in 'hsr'
[ 1259.543973][T14995] Cannot create hsr debugfs directory
[ 1259.784987][  T815] bridge_slave_1: left allmulticast mode
[ 1259.785013][  T815] bridge_slave_1: left promiscuous mode
[ 1259.785187][  T815] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1259.925158][  T815] bridge_slave_0: left allmulticast mode
[ 1259.925184][  T815] bridge_slave_0: left promiscuous mode
[ 1259.927915][  T815] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1260.051557][  T815] bridge_slave_1: left allmulticast mode
[ 1260.051583][  T815] bridge_slave_1: left promiscuous mode
[ 1260.051773][  T815] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1260.169182][  T815] bridge_slave_0: left allmulticast mode
[ 1260.169222][  T815] bridge_slave_0: left promiscuous mode
[ 1260.169545][  T815] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1260.921119][T15246] 9pnet: p9_errstr2errno: server reported unknown error �@í0x0000000000000007
[ 1262.658141][  T815] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1262.853278][  T815] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1262.994462][  T815] bond0 (unregistering): Released all slaves
[ 1263.872771][T15261] netlink: 'syz.6.2501': attribute type 10 has an invalid length.
[ 1267.217072][T15284] 9pnet_virtio: no channels available for device syz
[ 1268.894691][T15291] fuse: root generation should be zero
[ 1268.922173][T14478] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1268.949238][T14478] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1268.963313][T14478] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1269.008240][T14478] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1269.009903][T14478] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1269.022317][ T8839] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1269.027395][ T8839] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1269.033026][ T8839] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1269.054953][ T8839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1269.058499][ T8839] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1269.204816][  T815] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1269.277497][  T815] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1269.319672][  T815] bond0 (unregistering): Released all slaves
[ 1270.501742][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1270.712995][  T815] hsr_slave_0: left promiscuous mode
[ 1270.752911][  T815] hsr_slave_1: left promiscuous mode
[ 1270.754151][  T815] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1270.796249][  T815] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1271.023000][  T815] hsr_slave_0: left promiscuous mode
[ 1271.062891][  T815] hsr_slave_1: left promiscuous mode
[ 1271.063974][  T815] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1271.238949][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1271.240262][ T8839] Bluetooth: hci2: command tx timeout
[ 1271.282470][  T815] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1271.800460][T15332] binder: 15331:15332 ioctl c0306201 0 returned -14
[ 1272.199302][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1272.517303][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1272.623946][  T815] team0 (unregistering): Port device team_slave_1 removed
[ 1272.688787][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1272.769437][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1272.863799][  T815] team0 (unregistering): Port device team_slave_0 removed
[ 1272.971278][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1273.251749][ T8839] Bluetooth: hci2: command tx timeout
[ 1273.335896][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1273.387528][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1274.469739][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1274.782016][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1274.837398][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1275.032746][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1275.154621][  T815] team0 (unregistering): Port device team_slave_1 removed
[ 1275.336205][ T8839] Bluetooth: hci2: command tx timeout
[ 1275.433613][  T815] team0 (unregistering): Port device team_slave_0 removed
[ 1277.402878][ T8839] Bluetooth: hci2: command tx timeout
[ 1278.106231][T15351] netlink: 'syz.0.2530': attribute type 3 has an invalid length.
[ 1278.106501][T15351] netlink: 'syz.0.2530': attribute type 3 has an invalid length.
[ 1278.298848][T15354] vlan2: entered promiscuous mode
[ 1278.299249][T15354] vlan2: entered allmulticast mode
[ 1278.299263][T15354] hsr_slave_1: entered allmulticast mode
[ 1279.123825][T15368] program syz.0.2533 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1281.726674][T15390] netlink: 'syz.0.2540': attribute type 3 has an invalid length.
[ 1281.726893][T15390] netlink: 'syz.0.2540': attribute type 3 has an invalid length.
[ 1282.213010][T15376] 9pnet_fd: p9_fd_create_tcp (15376): problem connecting socket to 127.0.0.1
[ 1282.433751][T15394] binder: 15393:15394 unknown command 0
[ 1282.433776][T15394] binder: 15393:15394 ioctl c0306201 200000000080 returned -22
[ 1283.022500][T15404] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1283.602793][ T6018] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[ 1283.710453][T12923] libceph: connect (1)[c::]:6789 error -101
[ 1283.710714][T12923] libceph: mon0 (1)[c::]:6789 connect error
[ 1283.738828][T12923] libceph: connect (1)[c::]:6789 error -101
[ 1283.739091][T12923] libceph: mon0 (1)[c::]:6789 connect error
[ 1283.809655][ T6018] usb 7-1: Using ep0 maxpacket: 16
[ 1283.813377][ T6018] usb 7-1: config 0 has an invalid interface number: 251 but max is 0
[ 1283.813406][ T6018] usb 7-1: config 0 has no interface number 0
[ 1283.813494][ T6018] usb 7-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[ 1283.813521][ T6018] usb 7-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1283.817699][ T6018] usb 7-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[ 1283.817725][ T6018] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1283.817743][ T6018] usb 7-1: Product: syz
[ 1283.817756][ T6018] usb 7-1: Manufacturer: syz
[ 1283.817769][ T6018] usb 7-1: SerialNumber: syz
[ 1283.836288][ T6018] usb 7-1: config 0 descriptor??
[ 1283.837515][T15411] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1283.837787][T15411] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1283.994408][T12923] libceph: connect (1)[c::]:6789 error -101
[ 1283.994659][T12923] libceph: mon0 (1)[c::]:6789 connect error
[ 1284.111930][T15411] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1284.112075][T15411] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1284.138317][T15416] ceph: No mds server is up or the cluster is laggy
[ 1286.140679][T15448] binder: 15442:15448 unknown command 0
[ 1286.140705][T15448] binder: 15442:15448 ioctl c0306201 200000000080 returned -22
[ 1286.144109][T15448] binder: BINDER_SET_CONTEXT_MGR already set
[ 1286.144124][T15448] binder: 15442:15448 ioctl 4018620d 200000000040 returned -16
[ 1286.150583][   T37] audit: type=1800 audit(1758005550.744:18): pid=15445 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.2553" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[ 1286.151372][T15445] faux_driver regulatory: loading /lib/firmware/regulatory.db failed with error -12
[ 1286.151423][T15445] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -12
[ 1286.151443][T15445] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[ 1286.260979][T15292] chnl_net:caif_netlink_parms(): no params data found
[ 1286.694265][T15411] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1286.694920][T15411] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1287.125017][T15411] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2550'.
[ 1287.344398][ T6018] asix 7-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0002: -71
[ 1287.408478][ T6018] asix 7-1:0.251 (unnamed net_device) (uninitialized): Could not register MDIO bus
[ 1287.408932][ T6018] asix 7-1:0.251: probe with driver asix failed with error -5
[ 1287.513305][ T6018] usb 7-1: USB disconnect, device number 7
[ 1287.785873][  T815] bridge_slave_1: left allmulticast mode
[ 1287.785909][  T815] bridge_slave_1: left promiscuous mode
[ 1287.786208][  T815] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1287.844765][T15468] fuse: Bad value for 'fd'
[ 1287.940792][  T815] bridge_slave_0: left allmulticast mode
[ 1287.940831][  T815] bridge_slave_0: left promiscuous mode
[ 1287.941200][  T815] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1288.180547][T14478] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1288.195322][T14478] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1288.200996][T14478] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1288.226272][T14478] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1288.227070][T14478] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1288.407175][    T9] libceph: connect (1)[c::]:6789 error -101
[ 1288.407435][    T9] libceph: mon0 (1)[c::]:6789 connect error
[ 1288.413235][    T9] libceph: connect (1)[c::]:6789 error -101
[ 1288.413458][    T9] libceph: mon0 (1)[c::]:6789 connect error
[ 1288.677239][ T6268] libceph: connect (1)[c::]:6789 error -101
[ 1288.677502][ T6268] libceph: mon0 (1)[c::]:6789 connect error
[ 1288.967967][T15476] ceph: No mds server is up or the cluster is laggy
[ 1289.434154][T15487] netlink: 'syz.6.2564': attribute type 27 has an invalid length.
[ 1289.705202][T15491] 9pnet_virtio: no channels available for device syz
[ 1290.446923][ T8839] Bluetooth: hci0: command tx timeout
[ 1290.680062][  T815] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1290.937987][  T815] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1291.044970][  T815] bond0 (unregistering): Released all slaves
[ 1291.547730][T15500] fuse: Bad value for 'fd'
[ 1292.532937][ T8839] Bluetooth: hci0: command tx timeout
[ 1292.798685][T15508] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1292.798717][T15508] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[ 1293.036077][T15508] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1293.036106][T15508] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[ 1293.099982][ T6018] libceph: connect (1)[c::]:6789 error -101
[ 1293.100243][ T6018] libceph: mon0 (1)[c::]:6789 connect error
[ 1293.161301][ T6018] libceph: connect (1)[c::]:6789 error -101
[ 1293.161554][ T6018] libceph: mon0 (1)[c::]:6789 connect error
[ 1293.413354][ T6018] libceph: connect (1)[c::]:6789 error -101
[ 1293.413680][ T6018] libceph: mon0 (1)[c::]:6789 connect error
[ 1293.639425][T15487] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1293.711394][T15516] ceph: No mds server is up or the cluster is laggy
[ 1293.758988][T15487] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1294.808301][T15529] netlink: 'syz.0.2577': attribute type 7 has an invalid length.
[ 1294.808325][T15529] netlink: 'syz.0.2577': attribute type 8 has an invalid length.
[ 1296.380987][T15533] fuse: Invalid rootmode
[ 1296.666242][T15487] vlan2: left promiscuous mode
[ 1296.666448][T15487] vlan2: left allmulticast mode
[ 1296.666457][T15487] hsr_slave_1: left allmulticast mode
[ 1296.872165][T15490] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1296.914199][T15490] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1296.917657][T15292] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1296.917786][T15292] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1296.917956][T15292] bridge_slave_0: entered allmulticast mode
[ 1296.921920][T15292] bridge_slave_0: entered promiscuous mode
[ 1296.970839][T14984] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1296.996994][T15292] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1296.997101][T15292] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1296.997271][T15292] bridge_slave_1: entered allmulticast mode
[ 1296.998958][T15292] bridge_slave_1: entered promiscuous mode
[ 1297.032930][T14984] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1297.235559][  T815] hsr_slave_0: left promiscuous mode
[ 1297.279065][  T815] hsr_slave_1: left promiscuous mode
[ 1297.280165][  T815] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1297.347152][  T815] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1297.485883][ T6268] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1297.936577][T15544] CIFS: VFS: Malformed UNC in devname
[ 1298.136213][ T6268] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1298.136249][ T6268] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1298.136273][ T6268] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1298.136318][ T6268] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1298.136343][ T6268] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1298.145922][ T6268] usb 6-1: config 0 descriptor??
[ 1298.612895][ T6268] usbhid 6-1:0.0: can't add hid device: -71
[ 1298.613055][ T6268] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1298.693346][ T6268] usb 6-1: USB disconnect, device number 9
[ 1299.028320][T15556] overlayfs: failed to resolve './file1': -2
[ 1300.532858][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.532947][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[ 1301.094099][  T815] team0 (unregistering): Port device team_slave_1 removed
[ 1301.192803][    T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[ 1301.369825][  T815] team0 (unregistering): Port device team_slave_0 removed
[ 1301.372807][    T9] usb 6-1: Using ep0 maxpacket: 16
[ 1301.375479][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1301.375508][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1301.375545][    T9] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1301.375566][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1301.381123][    T9] usb 6-1: config 0 descriptor??
[ 1301.791661][    T9] usbhid 6-1:0.0: can't add hid device: -32
[ 1301.791804][    T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[ 1301.841719][T15566] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2588'.
[ 1301.946693][T15568] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2588'.
[ 1302.025217][T15569] binder: 15565:15569 ioctl c0306201 200000000180 returned -14
[ 1302.025822][T15569] binder_alloc: 15565: binder_alloc_buf, no vma
[ 1302.534991][T14984] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1302.707997][T15566] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1302.733317][T15567] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1302.739466][T15567] bond1: (slave batadv0): Enslaving as an active interface with an up link
[ 1303.773478][T15568] bond1 (unregistering): (slave batadv0): Releasing backup interface
[ 1303.840145][T15568] bond1 (unregistering): Released all slaves
[ 1303.923113][T14984] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1304.095160][ T5886] usb 6-1: USB disconnect, device number 10
[ 1304.334989][T15292] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1304.461626][T15292] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1304.511627][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1304.640554][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1304.702717][ T5886] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 1304.762122][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1304.852736][ T5886] usb 1-1: Using ep0 maxpacket: 16
[ 1304.856439][ T5886] usb 1-1: config 0 has an invalid interface number: 251 but max is 0
[ 1304.856467][ T5886] usb 1-1: config 0 has no interface number 0
[ 1304.856523][ T5886] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[ 1304.856548][ T5886] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1304.861654][ T5886] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[ 1304.861682][ T5886] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1304.861703][ T5886] usb 1-1: Product: syz
[ 1304.861716][ T5886] usb 1-1: Manufacturer: syz
[ 1304.861730][ T5886] usb 1-1: SerialNumber: syz
[ 1304.945782][ T5886] usb 1-1: config 0 descriptor??
[ 1304.948759][T15584] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1304.948898][T15584] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1305.291545][T15584] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1305.292498][T15584] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1305.388573][T15594] syz.6.2597 (15594): attempted to duplicate a private mapping with mremap.  This is not supported.
[ 1305.451482][T15594] overlayfs: failed to resolve './file1': -2
[ 1306.289414][T15292] team0: Port device team_slave_0 added
[ 1306.430852][T15292] team0: Port device team_slave_1 added
[ 1306.960872][T15584] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1306.962186][T15584] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1307.235196][T15292] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1307.235218][T15292] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1307.235249][T15292] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1307.305896][T15292] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1307.305915][T15292] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1307.305954][T15292] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1307.367943][T15584] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2594'.
[ 1307.573896][ T5886] asix 1-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0002: -71
[ 1307.597450][ T5886] asix 1-1:0.251 (unnamed net_device) (uninitialized): Could not register MDIO bus
[ 1307.597906][ T5886] asix 1-1:0.251: probe with driver asix failed with error -5
[ 1307.646397][ T5886] usb 1-1: USB disconnect, device number 36
[ 1307.816238][T15607] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[ 1307.816309][T15607] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1307.822458][T15607] vhci_hcd vhci_hcd.0: Device attached
[ 1307.996566][  T815] bridge_slave_1: left allmulticast mode
[ 1307.996605][  T815] bridge_slave_1: left promiscuous mode
[ 1307.997024][  T815] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1308.063835][  T815] bridge_slave_0: left allmulticast mode
[ 1308.063861][  T815] bridge_slave_0: left promiscuous mode
[ 1308.064069][  T815] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1308.272114][T15608] vhci_hcd: connection closed
[ 1308.289803][T14986] vhci_hcd: stop threads
[ 1308.289825][T14986] vhci_hcd: release socket
[ 1308.305615][T14986] vhci_hcd: disconnect device
[ 1308.327616][ T5954] usb 44-1: enqueue for inactive port 0
[ 1308.894957][ T5954] usb usb44-port1: attempt power cycle
[ 1309.123101][  T815] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1309.243856][  T815] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1309.352823][  T815] bond0 (unregistering): Released all slaves
[ 1309.454755][ T5954] usb usb44-port1: unable to enumerate USB device
[ 1309.712858][T15292] hsr_slave_0: entered promiscuous mode
[ 1309.713770][T15292] hsr_slave_1: entered promiscuous mode
[ 1309.861414][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1310.063943][   T31] libceph: connect (1)[c::]:6789 error -101
[ 1310.064208][   T31] libceph: mon0 (1)[c::]:6789 connect error
[ 1310.064654][   T31] libceph: connect (1)[c::]:6789 error -101
[ 1310.064874][   T31] libceph: mon0 (1)[c::]:6789 connect error
[ 1310.451183][   T31] libceph: connect (1)[c::]:6789 error -101
[ 1310.451437][   T31] libceph: mon0 (1)[c::]:6789 connect error
[ 1310.609569][T15631] ceph: No mds server is up or the cluster is laggy
[ 1310.622759][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1312.008307][  T815] hsr_slave_0: left promiscuous mode
[ 1312.086088][  T815] hsr_slave_1: left promiscuous mode
[ 1312.087900][  T815] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1312.144481][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1312.189728][  T815] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1312.760451][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1313.059653][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1313.093254][  T815] team0 (unregistering): Port device team_slave_1 removed
[ 1313.133851][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1313.253071][  T815] team0 (unregistering): Port device team_slave_0 removed
[ 1313.359803][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1313.442945][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1313.576792][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1314.515589][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1314.693339][T15664] netlink: 'syz.0.2618': attribute type 1 has an invalid length.
[ 1314.766689][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1314.894891][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1314.925830][T15664] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1314.957149][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1315.027822][T15673] netlink: 'syz.6.2620': attribute type 3 has an invalid length.
[ 1315.028633][T15673] netlink: 'syz.6.2620': attribute type 3 has an invalid length.
[ 1315.053922][T15668] bond1: (slave geneve2): making interface the new active one
[ 1315.067056][T15668] bond1: (slave geneve2): Enslaving as an active interface with an up link
[ 1315.182768][T15671] bond1: entered promiscuous mode
[ 1315.182795][T15671] geneve2: entered promiscuous mode
[ 1315.297913][T15470] chnl_net:caif_netlink_parms(): no params data found
[ 1315.355723][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1315.629374][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1316.453889][T15688] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5)
[ 1316.453919][T15688] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1316.490133][T15688] vhci_hcd vhci_hcd.0: Device attached
[ 1316.656177][   T37] audit: type=1800 audit(1758005581.234:19): pid=15688 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.6.2621" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1316.755158][T12923] usb 46-1: SetAddress Request (2) to port 0
[ 1316.755255][T12923] usb 46-1: new SuperSpeed USB device number 2 using vhci_hcd
[ 1317.102963][    T9] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[ 1317.173762][T15694] vhci_hcd: connection reset by peer
[ 1317.194394][T14987] vhci_hcd: stop threads
[ 1317.194521][T14987] vhci_hcd: release socket
[ 1317.202753][T14987] vhci_hcd: disconnect device
[ 1317.432612][    T9] usb 6-1: Using ep0 maxpacket: 16
[ 1317.435123][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1317.435157][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1317.435195][    T9] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1317.435219][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1317.586530][T15470] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1317.586625][T15470] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1317.586794][T15470] bridge_slave_0: entered allmulticast mode
[ 1317.602325][T15470] bridge_slave_0: entered promiscuous mode
[ 1317.764813][T15470] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1317.765013][T15470] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1317.765279][T15470] bridge_slave_1: entered allmulticast mode
[ 1317.768703][T15470] bridge_slave_1: entered promiscuous mode
[ 1317.775033][    T9] usb 6-1: config 0 descriptor??
[ 1318.185518][T15701] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2629'.
[ 1318.185686][    T9] usbhid 6-1:0.0: can't add hid device: -32
[ 1318.185822][    T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[ 1318.243710][T15707] binder: 15700:15707 ioctl c0306201 200000000180 returned -14
[ 1318.714489][T15701] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1318.715255][T15292] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1318.720093][    T9] usb 6-1: USB disconnect, device number 11
[ 1318.829744][T15470] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1318.861910][T15705] netlink: zone id is out of range
[ 1318.868888][T15705] netlink: zone id is out of range
[ 1318.872076][T15705] netlink: zone id is out of range
[ 1318.894943][T15705] netlink: zone id is out of range
[ 1318.894959][T15705] netlink: zone id is out of range
[ 1318.894966][T15705] netlink: zone id is out of range
[ 1318.894974][T15705] netlink: zone id is out of range
[ 1318.976099][T15292] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1319.070620][T15470] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1319.112002][T15292] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1319.164572][T15705] netlink: zone id is out of range
[ 1319.164589][T15705] netlink: zone id is out of range
[ 1319.164597][T15705] netlink: zone id is out of range
[ 1319.628717][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1320.645047][T15292] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1321.213281][T15470] team0: Port device team_slave_0 added
[ 1321.234729][T15470] team0: Port device team_slave_1 added
[ 1321.809481][T12923] usb 46-1: device descriptor read/8, error -110
[ 1321.936735][T15470] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1321.936753][T15470] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1321.936783][T15470] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1322.031022][T15470] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1322.031041][T15470] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1322.031070][T15470] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1322.214904][T12923] usb usb46-port1: attempt power cycle
[ 1322.792458][T12923] usb usb46-port1: unable to enumerate USB device
[ 1322.921210][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1323.296390][T15470] hsr_slave_0: entered promiscuous mode
[ 1323.297227][T15470] hsr_slave_1: entered promiscuous mode
[ 1323.297758][T15470] debugfs: 'hsr0' already exists in 'hsr'
[ 1323.297774][T15470] Cannot create hsr debugfs directory
[ 1323.638529][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1323.905935][T15751] program syz.6.2639 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1323.915743][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1324.373323][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1324.526613][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1324.914482][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1325.769003][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1325.842788][T12923] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[ 1326.001260][T12923] usb 6-1: Using ep0 maxpacket: 32
[ 1326.011368][T12923] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[ 1326.011387][T12923] usb 6-1: config 0 has no interface number 0
[ 1326.037760][T12923] usb 6-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[ 1326.037793][T12923] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1326.037813][T12923] usb 6-1: Product: syz
[ 1326.037826][T12923] usb 6-1: Manufacturer: syz
[ 1326.037840][T12923] usb 6-1: SerialNumber: syz
[ 1326.088391][T12923] usb 6-1: config 0 descriptor??
[ 1326.101298][T12923] usb 6-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[ 1326.101317][T12923] usb 6-1: selecting invalid altsetting 1
[ 1326.101326][T12923] usb 6-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[ 1326.160465][T12923] usb 6-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1326.160742][T12923] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[ 1326.160778][T12923] usb 6-1: media controller created
[ 1326.251127][T12923] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1327.143013][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1327.310152][T15768] 9pnet_virtio: no channels available for device syz
[ 1327.546949][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1327.560300][T12923] usb 6-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[ 1327.560377][T12923] zl10353_read_register: readreg error (reg=127, ret==-110)
[ 1327.560429][T15759] usb 6-1: dvb_usb_ce6230: I2C read not implemented
[ 1327.576791][T12923] usb 6-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[ 1327.691626][T15769] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5)
[ 1327.691656][T15769] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1327.693662][T15769] vhci_hcd vhci_hcd.0: Device attached
[ 1327.746096][T15292] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1327.825414][   T37] audit: type=1800 audit(1758005592.384:20): pid=15769 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.6.2641" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1327.995672][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1328.093811][ T5886] usb 46-1: SetAddress Request (6) to port 0
[ 1328.093907][ T5886] usb 46-1: new SuperSpeed USB device number 6 using vhci_hcd
[ 1328.235584][T15770] vhci_hcd: connection closed
[ 1328.254197][T15772] vhci_hcd: sendmsg failed!, ret=-32 for 48
[ 1328.257400][  T815] vhci_hcd: stop threads
[ 1328.257420][  T815] vhci_hcd: release socket
[ 1328.287000][  T815] vhci_hcd: disconnect device
[ 1328.586980][T12923] usb 6-1: USB disconnect, device number 12
[ 1329.052649][T15470] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1329.622568][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1329.733909][T15470] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1329.873622][T15782] Bluetooth: MGMT ver 1.23
[ 1329.905365][T15470] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1330.135020][T15470] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1330.990440][T15470] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1331.064273][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1331.191398][T14478] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1331.218608][T14478] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1331.228341][T14478] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1331.229350][T14478] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1331.230516][T14478] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1331.305702][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1331.619385][ T8839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1331.620160][ T8839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1331.620507][ T8839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1331.621309][ T8839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1331.621802][ T8839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1331.831695][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1332.349127][T15470] 8021q: adding VLAN 0 to HW filter on device team0
[ 1332.381388][T14492] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.381675][T14492] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1332.458653][T14492] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.458830][T14492] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1333.388460][ T5886] usb 46-1: device descriptor read/8, error -110
[ 1333.638834][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1333.723110][ T8839] Bluetooth: hci1: command tx timeout
[ 1333.787594][ T5886] usb usb46-port1: attempt power cycle
[ 1333.903735][T15824] program syz.5.2654 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1333.999017][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1334.635084][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1334.658919][ T5886] usb usb46-port1: unable to enumerate USB device
[ 1335.161050][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1335.842624][ T8839] Bluetooth: hci1: command tx timeout
[ 1336.931871][T15841] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2657'.
[ 1336.992843][T15849] tipc: Started in network mode
[ 1336.992876][T15849] tipc: Node identity 3e11fdf2fcfc, cluster identity 4711
[ 1337.021849][T15849] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1337.086701][T15847] tipc: Resetting bearer <eth:syzkaller0>
[ 1337.828765][T15846] tipc: Disabling bearer <eth:syzkaller0>
[ 1337.882736][ T8839] Bluetooth: hci1: command tx timeout
[ 1338.688911][   T37] audit: type=1804 audit(1758005603.284:21): pid=15872 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.0.2660" name="/newroot/190/bus/file0" dev="overlay" ino=1049 res=1 errno=0
[ 1339.557877][T15798] chnl_net:caif_netlink_parms(): no params data found
[ 1339.622342][  T815] bridge_slave_1: left allmulticast mode
[ 1339.622382][  T815] bridge_slave_1: left promiscuous mode
[ 1339.641130][  T815] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1339.803892][  T815] bridge_slave_0: left allmulticast mode
[ 1339.803933][  T815] bridge_slave_0: left promiscuous mode
[ 1339.804262][  T815] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1339.963201][ T8839] Bluetooth: hci1: command tx timeout
[ 1341.606794][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1341.892721][    T9] usb 1-1: new full-speed USB device number 37 using dummy_hcd
[ 1342.044508][    T9] usb 1-1: config 0 has no interfaces?
[ 1342.044535][    T9] usb 1-1: New USB device found, idVendor=1a34, idProduct=f705, bcdDevice= 0.00
[ 1342.044548][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1342.048141][    T9] usb 1-1: config 0 descriptor??
[ 1342.229549][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1342.452094][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1342.511026][T15908] netlink: 84 bytes leftover after parsing attributes in process `syz.5.2669'.
[ 1342.551724][    T9] usb 1-1: USB disconnect, device number 37
[ 1342.629960][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1343.666330][T15919] netlink: 'syz.0.2673': attribute type 7 has an invalid length.
[ 1343.666345][T15919] netlink: 'syz.0.2673': attribute type 8 has an invalid length.
[ 1343.860875][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1344.079712][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1344.637290][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1345.292625][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1345.902719][   T31] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1346.062747][   T31] usb 1-1: Using ep0 maxpacket: 16
[ 1346.066038][   T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1346.066073][   T31] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1346.066114][   T31] usb 1-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1346.066138][   T31] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1346.077557][   T31] usb 1-1: config 0 descriptor??
[ 1346.511716][   T31] usbhid 1-1:0.0: can't add hid device: -32
[ 1346.511878][   T31] usbhid 1-1:0.0: probe with driver usbhid failed with error -32
[ 1346.583009][T15926] binder: 15924:15926 ioctl c0306201 200000000180 returned -14
[ 1346.592903][ T6626] usb 1-1: USB disconnect, device number 38
[ 1346.840954][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1347.104840][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1348.524714][  T815] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1348.889151][  T815] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1349.141566][  T815] bond0 (unregistering): Released all slaves
[ 1349.458417][T14478] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1349.478764][T14478] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1349.480194][T14478] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1349.481040][T14478] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1349.481605][T14478] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1349.776200][T15950] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2679'.
[ 1351.133851][T15942] bond1: entered promiscuous mode
[ 1351.134821][T15942] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1352.522765][ T8839] Bluetooth: hci2: command tx timeout
[ 1352.945154][  T815] hsr_slave_0: left promiscuous mode
[ 1353.073632][  T815] hsr_slave_1: left promiscuous mode
[ 1353.074707][  T815] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1353.159223][  T815] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1353.173029][T15957] netlink: 'syz.5.2683': attribute type 7 has an invalid length.
[ 1353.173051][T15957] netlink: 'syz.5.2683': attribute type 8 has an invalid length.
[ 1354.604429][T14478] Bluetooth: hci2: command tx timeout
[ 1355.252641][    T9] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1355.403913][    T9] usb 6-1: Using ep0 maxpacket: 16
[ 1355.414957][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1355.414989][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1355.415024][    T9] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1355.415045][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1355.514946][    T9] usb 6-1: config 0 descriptor??
[ 1355.527845][T15972] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1355.528005][T15972] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1355.532010][T15972] vhci_hcd vhci_hcd.0: Device attached
[ 1355.718236][   T37] audit: type=1800 audit(1758005620.304:22): pid=15972 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.0.2684" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1355.823200][   T31] usb 34-1: SetAddress Request (2) to port 0
[ 1355.823293][   T31] usb 34-1: new SuperSpeed USB device number 2 using vhci_hcd
[ 1355.966962][    T9] usbhid 6-1:0.0: can't add hid device: -32
[ 1355.967106][    T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -32
[ 1355.975007][T15965] binder: 15964:15965 ioctl c0306201 200000000180 returned -14
[ 1355.978868][    T9] usb 6-1: USB disconnect, device number 13
[ 1356.071294][T15973] vhci_hcd: connection reset by peer
[ 1356.079844][T14986] vhci_hcd: stop threads
[ 1356.079866][T14986] vhci_hcd: release socket
[ 1356.080058][T14986] vhci_hcd: disconnect device
[ 1356.366241][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1356.440121][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1356.465354][T15982] fuse: Bad value for 'fd'
[ 1356.684365][T14478] Bluetooth: hci2: command tx timeout
[ 1357.307054][  T815] team0 (unregistering): Port device team_slave_1 removed
[ 1357.759242][  T815] team0 (unregistering): Port device team_slave_0 removed
[ 1357.912327][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1358.022102][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1358.453228][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1358.676933][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1358.848995][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1358.860595][ T1232] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[ 1359.045956][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1359.162247][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1359.547018][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1359.616100][T14478] Bluetooth: hci2: command tx timeout
[ 1359.672199][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1359.738575][ T1232] usb 7-1: Using ep0 maxpacket: 16
[ 1359.773540][ T1232] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1359.773576][ T1232] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1359.773616][ T1232] usb 7-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1359.773639][ T1232] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1359.794356][ T1232] usb 7-1: config 0 descriptor??
[ 1359.927977][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1360.162218][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1360.230196][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1360.234756][ T1232] usbhid 7-1:0.0: can't add hid device: -32
[ 1360.234902][ T1232] usbhid 7-1:0.0: probe with driver usbhid failed with error -32
[ 1360.255249][T16003] binder: 16002:16003 ioctl c0306201 200000000180 returned -14
[ 1360.297751][ T1232] usb 7-1: USB disconnect, device number 8
[ 1360.410988][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1360.503806][T16018] fuse: Bad value for 'fd'
[ 1360.506474][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1360.931246][   T31] usb 34-1: device descriptor read/8, error -110
[ 1361.364820][   T31] usb usb34-port1: attempt power cycle
[ 1361.998029][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.998081][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[ 1362.239763][   T31] usb usb34-port1: unable to enumerate USB device
[ 1365.638761][T15798] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1365.638935][T15798] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1365.639187][T15798] bridge_slave_0: entered allmulticast mode
[ 1365.668493][T15798] bridge_slave_0: entered promiscuous mode
[ 1365.855401][T15798] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1365.855569][T15798] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1365.855825][T15798] bridge_slave_1: entered allmulticast mode
[ 1365.859231][T15798] bridge_slave_1: entered promiscuous mode
[ 1365.948438][T16051] fuse: Bad value for 'fd'
[ 1366.605504][T15798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1366.686565][T15798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1367.448529][T15798] team0: Port device team_slave_0 added
[ 1367.503287][T15798] team0: Port device team_slave_1 added
[ 1367.592614][ T6268] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[ 1367.744923][ T6268] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1367.744947][ T6268] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1367.744971][ T6268] usb 7-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[ 1367.744983][ T6268] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1367.748467][ T6268] usb 7-1: config 0 descriptor??
[ 1368.035575][ T6268] usbhid 7-1:0.0: can't add hid device: -71
[ 1368.035720][ T6268] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 1368.040630][ T6268] usb 7-1: USB disconnect, device number 9
[ 1368.236805][T15798] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1368.236824][T15798] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1368.236855][T15798] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1368.305337][T15798] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1368.305355][T15798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1368.305385][T15798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1370.087033][T16095] netlink: 'syz.5.2720': attribute type 7 has an invalid length.
[ 1370.087057][T16095] netlink: 'syz.5.2720': attribute type 8 has an invalid length.
[ 1370.131350][T15798] hsr_slave_0: entered promiscuous mode
[ 1370.158184][T15798] hsr_slave_1: entered promiscuous mode
[ 1370.377467][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1370.709998][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1371.001421][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1371.018561][   T37] audit: type=1326 audit(1758005635.614:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16098 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.019042][   T37] audit: type=1326 audit(1758005635.614:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16098 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.088733][   T37] audit: type=1326 audit(1758005635.684:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16098 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.089694][   T37] audit: type=1326 audit(1758005635.684:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16098 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.089747][   T37] audit: type=1326 audit(1758005635.684:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb5d7071465 code=0x7ffc0000
[ 1371.201666][   T37] audit: type=1326 audit(1758005635.794:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16098 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.202282][   T37] audit: type=1326 audit(1758005635.794:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16098 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.253958][   T37] audit: type=1326 audit(1758005635.854:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16101 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.255623][   T37] audit: type=1326 audit(1758005635.794:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16098 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.255931][   T37] audit: type=1326 audit(1758005635.854:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16098 comm="syz.6.2721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fb5d703eba9 code=0x7ffc0000
[ 1371.593398][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1371.739399][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1371.748002][T16109] fuse: Bad value for 'fd'
[ 1371.949709][T15945] chnl_net:caif_netlink_parms(): no params data found
[ 1372.034946][ T6268] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1372.185943][ T6268] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1372.185982][ T6268] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1372.186024][ T6268] usb 6-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[ 1372.186048][ T6268] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1372.197229][ T6268] usb 6-1: config 0 descriptor??
[ 1372.525432][ T6268] usbhid 6-1:0.0: can't add hid device: -71
[ 1372.525579][ T6268] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1372.542751][ T6268] usb 6-1: USB disconnect, device number 14
[ 1374.706336][T16119] vlan2: entered promiscuous mode
[ 1374.706617][T16119] vlan2: entered allmulticast mode
[ 1374.706632][T16119] hsr_slave_1: entered allmulticast mode
[ 1376.267044][T15945] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1376.267165][T15945] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1376.267389][T15945] bridge_slave_0: entered allmulticast mode
[ 1376.295779][T15945] bridge_slave_0: entered promiscuous mode
[ 1376.682757][T15945] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1376.682917][T15945] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1376.683157][T15945] bridge_slave_1: entered allmulticast mode
[ 1376.699594][T15945] bridge_slave_1: entered promiscuous mode
[ 1376.833502][T16147] netlink: 'syz.0.2732': attribute type 7 has an invalid length.
[ 1376.833526][T16147] netlink: 'syz.0.2732': attribute type 8 has an invalid length.
[ 1378.889992][T16163] fuse: Bad value for 'fd'
[ 1379.272736][ T1232] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 1379.308688][T15945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1379.425972][ T1232] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1379.426009][ T1232] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1379.426051][ T1232] usb 1-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[ 1379.426075][ T1232] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1379.478664][T15945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1379.501629][ T1232] usb 1-1: config 0 descriptor??
[ 1379.714679][ T1232] usbhid 1-1:0.0: can't add hid device: -71
[ 1379.714770][ T1232] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1379.773187][ T1232] usb 1-1: USB disconnect, device number 39
[ 1381.845819][T15945] team0: Port device team_slave_0 added
[ 1382.359979][T15945] team0: Port device team_slave_1 added
[ 1382.383433][T14983] bridge_slave_1: left allmulticast mode
[ 1382.383472][T14983] bridge_slave_1: left promiscuous mode
[ 1382.383799][T14983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1382.453031][T16194] trusted_key: encrypted_key: master key parameter 'default"uøÿÿÿsyz' is invalid
[ 1382.544676][T14983] bridge_slave_0: left allmulticast mode
[ 1382.544717][T14983] bridge_slave_0: left promiscuous mode
[ 1382.545045][T14983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1383.546185][T16202] fuse: Bad value for 'fd'
[ 1389.033661][T14983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1389.098816][T14983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1389.118395][T14983] bond0 (unregistering): Released all slaves
[ 1391.538151][T15945] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1391.538170][T15945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1391.538199][T15945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1391.559944][T15945] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1391.559960][T15945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1391.559985][T15945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1391.656750][T14478] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1391.684919][T14478] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1391.687100][T14478] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1391.705671][T14478] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1391.706561][T14478] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1392.555048][T14983] hsr_slave_0: left promiscuous mode
[ 1392.593988][T14983] hsr_slave_1: left promiscuous mode
[ 1392.597731][T14983] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1392.654182][T14983] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1393.251370][ T8839] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1393.276644][ T8839] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1393.278779][ T8839] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1393.280877][ T8839] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1393.281833][ T8839] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1393.552812][ T5954] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[ 1393.682764][ T5954] usb 7-1: device descriptor read/64, error -71
[ 1393.802772][T14478] Bluetooth: hci0: command tx timeout
[ 1393.922731][ T5954] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[ 1394.082716][ T5954] usb 7-1: device descriptor read/64, error -71
[ 1394.193270][ T5954] usb usb7-port1: attempt power cycle
[ 1394.478536][T14983] team0 (unregistering): Port device team_slave_1 removed
[ 1394.542578][ T5954] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 1394.586308][ T5954] usb 7-1: device descriptor read/8, error -71
[ 1394.783162][T14983] team0 (unregistering): Port device team_slave_0 removed
[ 1394.832840][ T5954] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[ 1394.884495][ T5954] usb 7-1: device descriptor read/8, error -71
[ 1395.016383][ T5954] usb usb7-port1: unable to enumerate USB device
[ 1395.402751][T14478] Bluetooth: hci5: command tx timeout
[ 1395.898347][T14478] Bluetooth: hci0: command tx timeout
[ 1397.800348][T14478] Bluetooth: hci5: command tx timeout
[ 1397.963167][T14478] Bluetooth: hci0: command tx timeout
[ 1399.802817][T14478] Bluetooth: hci5: command tx timeout
[ 1400.042728][T14478] Bluetooth: hci0: command tx timeout
[ 1400.754090][T16292] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5)
[ 1400.754120][T16292] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1400.754495][T16292] vhci_hcd vhci_hcd.0: Device attached
[ 1400.877581][   T37] kauditd_printk_skb: 44 callbacks suppressed
[ 1400.877602][   T37] audit: type=1800 audit(1758005665.464:77): pid=16292 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.6.2761" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1400.953648][T15945] hsr_slave_0: entered promiscuous mode
[ 1400.955137][T15945] hsr_slave_1: entered promiscuous mode
[ 1400.955706][T15945] debugfs: 'hsr0' already exists in 'hsr'
[ 1400.955723][T15945] Cannot create hsr debugfs directory
[ 1401.062716][   T31] usb 46-1: SetAddress Request (10) to port 0
[ 1401.062812][   T31] usb 46-1: new SuperSpeed USB device number 10 using vhci_hcd
[ 1401.159389][T16293] vhci_hcd: connection reset by peer
[ 1401.264401][ T7059] vhci_hcd: stop threads
[ 1401.264423][ T7059] vhci_hcd: release socket
[ 1401.264511][ T7059] vhci_hcd: disconnect device
[ 1401.427859][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1401.882641][T14478] Bluetooth: hci5: command tx timeout
[ 1402.345680][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1402.519794][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1402.642272][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1403.117626][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1404.754616][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1405.126191][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1406.127363][   T31] usb 46-1: device descriptor read/8, error -110
[ 1406.461217][T16347] netlink: 'syz.5.2773': attribute type 7 has an invalid length.
[ 1406.461242][T16347] netlink: 'syz.5.2773': attribute type 8 has an invalid length.
[ 1406.812733][   T31] usb usb46-port1: attempt power cycle
[ 1407.535576][   T31] usb usb46-port1: unable to enumerate USB device
[ 1410.019489][ T8839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1410.051154][ T8839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1410.059725][ T8839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1410.069857][ T8839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1410.077929][ T8839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1410.604385][T16385] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[ 1410.604414][T16385] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1410.604667][T16385] vhci_hcd vhci_hcd.0: Device attached
[ 1410.742708][   T37] audit: type=1800 audit(1758005675.334:78): pid=16385 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.5.2776" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1410.815880][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1411.108281][T16386] vhci_hcd: connection closed
[ 1411.122733][   T31] usb 44-1: SetAddress Request (6) to port 0
[ 1411.122828][   T31] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[ 1411.123004][   T13] vhci_hcd: stop threads
[ 1411.123101][   T13] vhci_hcd: release socket
[ 1411.180456][   T13] vhci_hcd: disconnect device
[ 1411.266179][T14983] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1411.523429][T16383] veth0: entered promiscuous mode
[ 1411.615926][T16383] veth0: left promiscuous mode
[ 1411.873883][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1412.101564][T14983] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1412.202991][ T8839] Bluetooth: hci1: command tx timeout
[ 1412.300066][T16249] chnl_net:caif_netlink_parms(): no params data found
[ 1412.632689][T16395] unknown channel width for channel at 909000KHz?
[ 1412.868953][T14983] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1413.561460][T16261] chnl_net:caif_netlink_parms(): no params data found
[ 1414.179443][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1414.226938][T14983] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1414.286726][ T8839] Bluetooth: hci1: command 0x041b tx timeout
[ 1414.339665][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1414.822640][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1415.266088][T16414] netlink: 'syz.5.2783': attribute type 7 has an invalid length.
[ 1415.266109][T16414] netlink: 'syz.5.2783': attribute type 8 has an invalid length.
[ 1415.440384][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1415.535690][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1415.663962][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1416.213174][   T31] usb 44-1: device descriptor read/8, error -110
[ 1416.274863][T16422] random: crng reseeded on system resumption
[ 1416.443777][T14478] Bluetooth: hci1: command 0x041b tx timeout
[ 1416.624684][   T31] usb usb44-port1: attempt power cycle
[ 1417.455070][   T31] usb usb44-port1: unable to enumerate USB device
[ 1418.017865][T16249] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1418.018018][T16249] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1418.018196][T16249] bridge_slave_0: entered allmulticast mode
[ 1418.019936][T16249] bridge_slave_0: entered promiscuous mode
[ 1418.538760][T14478] Bluetooth: hci1: command 0x041b tx timeout
[ 1418.804687][T16249] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1418.804858][T16249] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1418.805131][T16249] bridge_slave_1: entered allmulticast mode
[ 1418.811038][T16249] bridge_slave_1: entered promiscuous mode
[ 1419.811906][T16261] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1419.812081][T16261] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1419.812351][T16261] bridge_slave_0: entered allmulticast mode
[ 1419.816931][T16261] bridge_slave_0: entered promiscuous mode
[ 1419.855827][T16249] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1419.924757][T16261] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1419.924918][T16261] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1419.928213][T16261] bridge_slave_1: entered allmulticast mode
[ 1419.930488][T16261] bridge_slave_1: entered promiscuous mode
[ 1419.947227][T16249] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1420.602640][T14478] Bluetooth: hci1: command 0x041b tx timeout
[ 1421.418850][T16261] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1421.421373][T16249] team0: Port device team_slave_0 added
[ 1421.462582][T16261] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1421.465663][T16249] team0: Port device team_slave_1 added
[ 1421.544766][T14983] bridge_slave_1: left allmulticast mode
[ 1421.544806][T14983] bridge_slave_1: left promiscuous mode
[ 1421.545114][T14983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1421.633564][T14983] bridge_slave_0: left allmulticast mode
[ 1421.633590][T14983] bridge_slave_0: left promiscuous mode
[ 1421.633784][T14983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1421.748836][T14983] bridge_slave_1: left allmulticast mode
[ 1421.748876][T14983] bridge_slave_1: left promiscuous mode
[ 1421.749171][T14983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1421.915182][T14983] bridge_slave_0: left allmulticast mode
[ 1421.915219][T14983] bridge_slave_0: left promiscuous mode
[ 1421.915514][T14983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1423.046671][T16462] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5)
[ 1423.046702][T16462] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1423.047152][T16462] vhci_hcd vhci_hcd.0: Device attached
[ 1423.312866][ T6018] usb 46-1: SetAddress Request (14) to port 0
[ 1423.312975][ T6018] usb 46-1: new SuperSpeed USB device number 14 using vhci_hcd
[ 1423.343774][T14983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1423.349767][T16463] vhci_hcd: connection reset by peer
[ 1423.350111][T14986] vhci_hcd: stop threads
[ 1423.350128][T14986] vhci_hcd: release socket
[ 1423.350215][T14986] vhci_hcd: disconnect device
[ 1423.411204][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.411304][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.533629][T14983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1423.639369][T14983] bond0 (unregistering): Released all slaves
[ 1423.719872][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1423.860674][T16473] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2796'.
[ 1428.372851][ T6018] usb 46-1: device descriptor read/8, error -110
[ 1428.843609][ T6018] usb usb46-port1: attempt power cycle
[ 1429.464668][ T6018] usb usb46-port1: unable to enumerate USB device
[ 1430.400156][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1431.985647][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.119456][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.261384][T14983] bond1 (unregistering): (slave geneve2): Releasing active interface
[ 1432.261415][T14983] geneve2 (unregistering): left promiscuous mode
[ 1432.551167][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.556492][T16510] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2805'.
[ 1432.802643][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1433.542809][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1433.842996][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1436.130340][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1437.688271][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1437.838800][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1438.200978][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1438.734225][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1439.253647][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1439.587589][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1439.754337][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1439.974790][T14983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1440.045648][T14983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1440.149722][T14983] bond0 (unregistering): Released all slaves
[ 1440.366014][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1440.675108][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1440.984116][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1441.273105][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1441.749692][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1441.958502][T14983] bond1 (unregistering): Released all slaves
[ 1442.317304][T16521] vlan2: entered promiscuous mode
[ 1442.317446][T16521] vlan2: entered allmulticast mode
[ 1442.317454][T16521] hsr_slave_1: entered allmulticast mode
[ 1442.720600][T16533] 9pnet_fd: Insufficient options for proto=fd
[ 1442.893979][T16261] team0: Port device team_slave_0 added
[ 1442.901865][T14983] tipc: Left network mode
[ 1442.911479][T16249] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1442.911494][T16249] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1442.911519][T16249] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1443.049199][T16249] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1443.049212][T16249] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1443.049228][T16249] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1443.051219][T16261] team0: Port device team_slave_1 added
[ 1443.105242][T16534] netlink: 'syz.5.2809': attribute type 27 has an invalid length.
[ 1445.580877][T16553] random: crng reseeded on system resumption
[ 1446.323163][T16534] netdevsim netdevsim5 netdevsim0: left promiscuous mode
[ 1446.323187][T16534] netdevsim netdevsim5 netdevsim0: left allmulticast mode
[ 1446.974411][T16534] vlan2: left promiscuous mode
[ 1446.974579][T16534] vlan2: left allmulticast mode
[ 1446.974596][T16534] hsr_slave_1: left allmulticast mode
[ 1447.084442][T16538] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1447.085628][T16538] 8021q: adding VLAN 0 to HW filter on device team0
[ 1447.122804][T16538] net_ratelimit: 14 callbacks suppressed
[ 1447.122812][T16538] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1447.782673][T14986] netdevsim netdevsim5 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1447.782714][T14986] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1447.793968][T16261] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1447.793984][T16261] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1447.794008][T16261] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1447.915038][T14986] netdevsim netdevsim5 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1447.915075][T14986] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1448.075327][T16261] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1448.075347][T16261] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1448.075376][T16261] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1448.076437][T16377] chnl_net:caif_netlink_parms(): no params data found
[ 1448.156141][T14986] netdevsim netdevsim5 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1448.156170][T14986] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1448.740476][T16571] netlink: 72 bytes leftover after parsing attributes in process `syz.6.2814'.
[ 1453.337867][T14986] netdevsim netdevsim5 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1453.337906][T14986] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1454.044183][T14478] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1454.076815][T14478] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1454.081829][T14478] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1454.125388][T14478] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1454.129431][T14478] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1454.603797][T14983] hsr_slave_0: left promiscuous mode
[ 1454.652901][T14983] hsr_slave_1: left promiscuous mode
[ 1454.654167][T14983] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1454.718840][T14983] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1454.790058][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1454.851316][T14478] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1454.885040][T14478] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1454.893022][T14478] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1454.921725][T14478] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1454.932759][T14478] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1455.292714][T14983] hsr_slave_0: left promiscuous mode
[ 1455.309356][T16600] 9pnet_fd: Insufficient options for proto=fd
[ 1455.379298][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1455.411255][T14983] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1455.411291][T14983] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1455.464091][T14983] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1455.464126][T14983] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1455.609474][T14983] veth1_macvtap: left promiscuous mode
[ 1455.609627][T14983] veth0_macvtap: left promiscuous mode
[ 1455.609961][T14983] veth1_vlan: left promiscuous mode
[ 1455.610211][T14983] veth0_vlan: left promiscuous mode
[ 1456.282850][ T8839] Bluetooth: hci2: command tx timeout
[ 1456.628957][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.016247][ T8839] Bluetooth: hci6: command tx timeout
[ 1457.134911][T14983] team0 (unregistering): Port device team_slave_1 removed
[ 1457.297154][T14983] team0 (unregistering): Port device team_slave_0 removed
[ 1458.362880][ T8839] Bluetooth: hci2: command tx timeout
[ 1459.082812][ T8839] Bluetooth: hci6: command tx timeout
[ 1460.442807][ T8839] Bluetooth: hci2: command tx timeout
[ 1460.712865][T14983] team0 (unregistering): Port device team_slave_1 removed
[ 1460.953600][T14983] team0 (unregistering): Port device team_slave_0 removed
[ 1461.181366][ T8839] Bluetooth: hci6: command tx timeout
[ 1462.522992][ T8839] Bluetooth: hci2: command tx timeout
[ 1463.242840][ T8839] Bluetooth: hci6: command tx timeout
[ 1464.559466][T16377] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1464.559635][T16377] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1464.559841][T16377] bridge_slave_0: entered allmulticast mode
[ 1464.563484][T16377] bridge_slave_0: entered promiscuous mode
[ 1464.619680][T16377] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1464.619852][T16377] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1464.620121][T16377] bridge_slave_1: entered allmulticast mode
[ 1464.624639][T16377] bridge_slave_1: entered promiscuous mode
[ 1464.958923][T16377] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1465.013105][T16377] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1465.445162][T16377] team0: Port device team_slave_0 added
[ 1465.477510][T16377] team0: Port device team_slave_1 added
[ 1465.852713][T16377] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1465.852733][T16377] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1465.852760][T16377] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1465.856673][T16377] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1465.856688][T16377] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1465.856716][T16377] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1466.357647][T16377] hsr_slave_0: entered promiscuous mode
[ 1466.365068][T16377] hsr_slave_1: entered promiscuous mode
[ 1467.481382][T16597] chnl_net:caif_netlink_parms(): no params data found
[ 1467.501717][T16585] chnl_net:caif_netlink_parms(): no params data found
[ 1468.470114][T14983] bridge_slave_1: left allmulticast mode
[ 1468.470214][T14983] bridge_slave_1: left promiscuous mode
[ 1468.470559][T14983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1468.516184][T14983] bridge_slave_0: left allmulticast mode
[ 1468.516222][T14983] bridge_slave_0: left promiscuous mode
[ 1468.516548][T14983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1468.588667][T14983] bridge_slave_1: left allmulticast mode
[ 1468.588704][T14983] bridge_slave_1: left promiscuous mode
[ 1468.588991][T14983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1468.673679][T14983] bridge_slave_0: left allmulticast mode
[ 1468.673705][T14983] bridge_slave_0: left promiscuous mode
[ 1468.673889][T14983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1468.768485][T14983] bridge_slave_1: left allmulticast mode
[ 1468.768526][T14983] bridge_slave_1: left promiscuous mode
[ 1468.768846][T14983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1468.824688][T14983] bridge_slave_0: left allmulticast mode
[ 1468.824726][T14983] bridge_slave_0: left promiscuous mode
[ 1468.825022][T14983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1469.273924][T14983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1469.453774][T14983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1469.629153][T14983] bond0 (unregistering): Released all slaves
[ 1469.787220][T14478] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1469.793468][T14478] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1469.808366][T14478] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1469.834318][T14478] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1469.852755][T14478] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1470.355386][T14983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1470.476968][T14983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1470.541710][T14983] bond0 (unregistering): Released all slaves
[ 1470.863847][T14983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1470.943788][T14983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1471.007168][T14983] bond0 (unregistering): Released all slaves
[ 1471.757289][T16597] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1471.757570][T16597] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1471.757812][T16597] bridge_slave_0: entered allmulticast mode
[ 1471.761412][T16597] bridge_slave_0: entered promiscuous mode
[ 1471.903754][T16585] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1471.903916][T16585] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1471.904152][T16585] bridge_slave_0: entered allmulticast mode
[ 1471.906176][T16585] bridge_slave_0: entered promiscuous mode
[ 1471.909913][T16597] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1471.910100][T16597] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1471.910306][T16597] bridge_slave_1: entered allmulticast mode
[ 1471.915939][T16597] bridge_slave_1: entered promiscuous mode
[ 1471.918591][T16585] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1471.918734][T16585] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1471.918993][T16585] bridge_slave_1: entered allmulticast mode
[ 1471.921933][T16585] bridge_slave_1: entered promiscuous mode
[ 1471.962704][ T8839] Bluetooth: hci0: command tx timeout
[ 1472.708536][T16597] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1472.742755][T16585] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1472.795301][T16597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1472.811142][T16585] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1472.811233][T14983] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1472.876639][T14983] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1472.914152][T14983] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1472.957887][T14983] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1473.113009][T14983] hsr_slave_0: left promiscuous mode
[ 1473.152884][T14983] hsr_slave_1: left promiscuous mode
[ 1473.154019][T14983] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1473.183699][T14983] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1473.361694][T14478] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1473.432259][T14478] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1473.444983][T14478] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1473.503099][T14478] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1473.506144][T14478] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1473.884504][T14983] team0 (unregistering): Port device team_slave_1 removed
[ 1474.042609][T14478] Bluetooth: hci0: command tx timeout
[ 1474.124476][T14983] team0 (unregistering): Port device team_slave_0 removed
[ 1475.497720][T14983] team0 (unregistering): Port device team_slave_1 removed
[ 1475.642691][T14478] Bluetooth: hci5: command tx timeout
[ 1475.691510][T14983] team0 (unregistering): Port device team_slave_0 removed
[ 1476.122691][T14478] Bluetooth: hci0: command tx timeout
[ 1476.943717][T14983] team0 (unregistering): Port device team_slave_1 removed
[ 1477.115183][T14983] team0 (unregistering): Port device team_slave_0 removed
[ 1477.722775][T14478] Bluetooth: hci5: command tx timeout
[ 1478.203506][T14478] Bluetooth: hci0: command tx timeout
[ 1478.305791][T16684] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[ 1478.787296][T16597] team0: Port device team_slave_0 added
[ 1478.791704][T16585] team0: Port device team_slave_0 added
[ 1478.856076][T16597] team0: Port device team_slave_1 added
[ 1478.865212][T16585] team0: Port device team_slave_1 added
[ 1480.291085][T14478] Bluetooth: hci5: command tx timeout
[ 1484.862769][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.862859][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.944181][T14478] Bluetooth: hci5: command tx timeout
[ 1485.037529][T16597] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1485.037548][T16597] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.037575][T16597] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1485.043551][T16585] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1485.043568][T16585] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.043591][T16585] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1485.123801][T16597] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1485.123818][T16597] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.123842][T16597] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1485.126675][T16585] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1485.126688][T16585] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.126711][T16585] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1486.563988][T16597] hsr_slave_0: entered promiscuous mode
[ 1486.565649][T16597] hsr_slave_1: entered promiscuous mode
[ 1486.566690][T16597] debugfs: 'hsr0' already exists in 'hsr'
[ 1486.566718][T16597] Cannot create hsr debugfs directory
[ 1486.577563][T16585] hsr_slave_0: entered promiscuous mode
[ 1486.608134][T16585] hsr_slave_1: entered promiscuous mode
[ 1486.609229][T16585] debugfs: 'hsr0' already exists in 'hsr'
[ 1486.609257][T16585] Cannot create hsr debugfs directory
[ 1486.651179][T16720] random: crng reseeded on system resumption
[ 1488.181715][T16658] chnl_net:caif_netlink_parms(): no params data found
[ 1488.482744][T16544] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1488.632719][T16544] usb 6-1: Using ep0 maxpacket: 16
[ 1488.637355][T16544] usb 6-1: config 0 has an invalid interface number: 251 but max is 0
[ 1488.637386][T16544] usb 6-1: config 0 has no interface number 0
[ 1488.637444][T16544] usb 6-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[ 1488.637471][T16544] usb 6-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1488.642612][T16544] usb 6-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[ 1488.642640][T16544] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1488.642659][T16544] usb 6-1: Product: syz
[ 1488.642672][T16544] usb 6-1: Manufacturer: syz
[ 1488.642685][T16544] usb 6-1: SerialNumber: syz
[ 1488.650203][T16544] usb 6-1: config 0 descriptor??
[ 1488.653491][T16726] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1488.653686][T16726] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1488.863475][T16726] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1488.863792][T16726] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1489.544380][T16658] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1489.545226][T16658] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1489.546785][T16658] bridge_slave_0: entered allmulticast mode
[ 1489.566540][T16658] bridge_slave_0: entered promiscuous mode
[ 1489.575680][T16675] chnl_net:caif_netlink_parms(): no params data found
[ 1489.613500][T16658] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1489.613742][T16658] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1489.614244][T16658] bridge_slave_1: entered allmulticast mode
[ 1489.633479][T16658] bridge_slave_1: entered promiscuous mode
[ 1490.016815][T16658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1490.135776][T16658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1490.468301][T16585] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1490.499306][T16726] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1490.529356][T16726] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1490.825908][T16658] team0: Port device team_slave_0 added
[ 1490.842985][T16585] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1490.953767][T16726] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2839'.
[ 1491.054358][T16658] team0: Port device team_slave_1 added
[ 1491.058491][T16585] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1491.129709][T16675] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1491.130089][T16675] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1491.137112][T16675] bridge_slave_0: entered allmulticast mode
[ 1491.158483][T16544] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0002: -71
[ 1491.220864][T16544] asix 6-1:0.251 (unnamed net_device) (uninitialized): Could not register MDIO bus
[ 1491.221326][T16544] asix 6-1:0.251: probe with driver asix failed with error -5
[ 1491.233126][T16675] bridge_slave_0: entered promiscuous mode
[ 1491.273661][T16544] usb 6-1: USB disconnect, device number 15
[ 1491.646157][T16585] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1491.896853][T16675] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1491.897044][T16675] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1491.897322][T16675] bridge_slave_1: entered allmulticast mode
[ 1491.932685][T16675] bridge_slave_1: entered promiscuous mode
[ 1492.388756][T16755] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[ 1492.388789][T16755] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1492.410068][T16755] vhci_hcd vhci_hcd.0: Device attached
[ 1492.477526][T16658] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1492.477539][T16658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1492.477555][T16658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1492.580376][   T37] audit: type=1800 audit(1758005757.174:79): pid=16755 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.5.2840" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1492.685842][T16544] usb 44-1: SetAddress Request (10) to port 0
[ 1492.685973][T16544] usb 44-1: new SuperSpeed USB device number 10 using vhci_hcd
[ 1492.750478][T16658] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1492.750493][T16658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1492.750509][T16658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1492.805453][T16675] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1492.862224][T16756] vhci_hcd: connection reset by peer
[ 1492.878407][ T7059] vhci_hcd: stop threads
[ 1492.878427][ T7059] vhci_hcd: release socket
[ 1492.878521][ T7059] vhci_hcd: disconnect device
[ 1493.017449][T16675] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1493.645836][T16675] team0: Port device team_slave_0 added
[ 1493.655625][T16597] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1493.735215][T16658] hsr_slave_0: entered promiscuous mode
[ 1493.763107][T16658] hsr_slave_1: entered promiscuous mode
[ 1493.764280][T16658] debugfs: 'hsr0' already exists in 'hsr'
[ 1493.764309][T16658] Cannot create hsr debugfs directory
[ 1493.774691][T16675] team0: Port device team_slave_1 added
[ 1493.776856][T16597] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1494.130381][T16597] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1494.526946][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1494.617846][T16597] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1494.794577][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1495.085252][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1495.236676][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1495.278966][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1495.767048][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1495.971480][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1496.103148][T16675] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1496.103166][T16675] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1496.103191][T16675] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1496.243969][T16675] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1496.243989][T16675] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1496.244018][T16675] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1497.388918][T16675] hsr_slave_0: entered promiscuous mode
[ 1497.403335][T16675] hsr_slave_1: entered promiscuous mode
[ 1497.427085][T16675] debugfs: 'hsr0' already exists in 'hsr'
[ 1497.427109][T16675] Cannot create hsr debugfs directory
[ 1497.722914][T16544] usb 44-1: device descriptor read/8, error -110
[ 1498.115770][T14983] bridge_slave_1: left allmulticast mode
[ 1498.115811][T14983] bridge_slave_1: left promiscuous mode
[ 1498.116081][T14983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1498.710332][T16544] usb usb44-port1: attempt power cycle
[ 1499.162369][T14983] bridge_slave_0: left allmulticast mode
[ 1499.162408][T14983] bridge_slave_0: left promiscuous mode
[ 1499.162769][T14983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1499.533746][T14983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1499.613487][T14983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1499.688889][T14983] bond0 (unregistering): Released all slaves
[ 1499.753437][T16544] usb usb44-port1: unable to enumerate USB device
[ 1501.803860][   T37] audit: type=1326 audit(1758005766.394:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16786 comm="syz.5.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3540eeba9 code=0x7ffc0000
[ 1501.803920][   T37] audit: type=1326 audit(1758005766.394:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16786 comm="syz.5.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3540eeba9 code=0x7ffc0000
[ 1501.803969][   T37] audit: type=1326 audit(1758005766.404:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16786 comm="syz.5.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff3540eeba9 code=0x7ffc0000
[ 1501.804018][   T37] audit: type=1326 audit(1758005766.404:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16786 comm="syz.5.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3540eeba9 code=0x7ffc0000
[ 1501.804065][   T37] audit: type=1326 audit(1758005766.404:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16786 comm="syz.5.2844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3540eeba9 code=0x7ffc0000
[ 1501.816462][T14983] hsr_slave_0: left promiscuous mode
[ 1501.968809][T14983] hsr_slave_1: left promiscuous mode
[ 1501.969936][T14983] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1501.993640][T14983] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1502.763604][T14983] team0 (unregistering): Port device team_slave_1 removed
[ 1502.913655][T14983] team0 (unregistering): Port device team_slave_0 removed
[ 1503.593632][T16789] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[ 1504.325987][T16798] random: crng reseeded on system resumption
[ 1505.538924][T16585] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1505.749319][T16597] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1505.771683][T16585] 8021q: adding VLAN 0 to HW filter on device team0
[ 1505.845080][T14983] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1505.845336][T14983] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1506.256904][T14984] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1506.257159][T14984] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1507.286944][T16803] syz.5.2846 (16803) used greatest stack depth: 16040 bytes left
[ 1507.339100][T16597] 8021q: adding VLAN 0 to HW filter on device team0
[ 1508.737232][ T7059] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1508.737391][ T7059] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1511.745773][T14983] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1511.745951][T14983] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1511.775995][T16675] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1512.092307][T16675] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1512.283449][T16675] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1512.362982][T16675] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1513.052915][T16658] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1513.167798][T16658] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1513.325311][T16658] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1513.401373][T16658] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1514.371461][T16675] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1514.622825][T16675] 8021q: adding VLAN 0 to HW filter on device team0
[ 1514.651793][T16658] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1514.686771][T14983] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1514.692734][T14983] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1514.847441][T14983] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1514.852754][T14983] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1515.091669][T16658] 8021q: adding VLAN 0 to HW filter on device team0
[ 1515.243501][T14985] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1515.243679][T14985] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1515.371809][T14985] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1515.372714][T14985] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1515.927747][ T8839] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1515.947972][ T8839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1515.949343][ T8839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1515.950619][ T8839] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1515.951499][ T8839] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1516.570278][T14478] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1516.589272][T14478] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1516.591293][T14478] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1516.603002][T14478] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1516.632314][T14478] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1516.698874][T16873] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[ 1516.698903][T16873] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1516.698994][T16873] vhci_hcd vhci_hcd.0: Device attached
[ 1516.911840][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1517.059852][T16874] vhci_hcd: connection closed
[ 1517.077309][T14983] vhci_hcd: stop threads
[ 1517.077333][T14983] vhci_hcd: release socket
[ 1517.077423][T14983] vhci_hcd: disconnect device
[ 1517.102825][ T6018] usb 44-1: enqueue for inactive port 0
[ 1517.605705][ T6018] usb usb44-port1: attempt power cycle
[ 1518.196930][ T6018] usb usb44-port1: unable to enumerate USB device
[ 1518.206253][T14478] Bluetooth: hci1: command tx timeout
[ 1518.456350][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1518.763084][T14478] Bluetooth: hci2: command tx timeout
[ 1519.232219][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1519.405172][T16900] random: crng reseeded on system resumption
[ 1520.282850][T14478] Bluetooth: hci1: command tx timeout
[ 1520.323109][T16675] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1520.844628][T14478] Bluetooth: hci2: command tx timeout
[ 1521.886841][T16860] chnl_net:caif_netlink_parms(): no params data found
[ 1522.013364][  T815] bridge_slave_1: left allmulticast mode
[ 1522.013404][  T815] bridge_slave_1: left promiscuous mode
[ 1522.013727][  T815] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1522.174720][  T815] bridge_slave_0: left allmulticast mode
[ 1522.174757][  T815] bridge_slave_0: left promiscuous mode
[ 1522.175107][  T815] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1522.372599][T14478] Bluetooth: hci1: command tx timeout
[ 1523.472265][T14478] Bluetooth: hci2: command tx timeout
[ 1524.443005][ T8839] Bluetooth: hci1: command tx timeout
[ 1525.492772][ T8839] Bluetooth: hci2: command tx timeout
[ 1526.048456][  T815] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1526.105106][  T815] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1526.150223][  T815] bond0 (unregistering): Released all slaves
[ 1526.575403][T16869] chnl_net:caif_netlink_parms(): no params data found
[ 1526.598459][T16658] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1526.874414][  T815] hsr_slave_0: left promiscuous mode
[ 1526.912706][  T815] hsr_slave_1: left promiscuous mode
[ 1526.913767][  T815] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1526.953677][  T815] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1528.824923][  T815] team0 (unregistering): Port device team_slave_1 removed
[ 1529.107281][  T815] team0 (unregistering): Port device team_slave_0 removed
[ 1530.517314][T14478] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1530.523797][T14478] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1530.527568][T14478] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1530.529347][T14478] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1530.530237][T14478] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1532.602807][T14478] Bluetooth: hci6: command tx timeout
[ 1533.262978][T16993] random: crng reseeded on system resumption
[ 1533.297261][T16860] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1533.297418][T16860] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1533.297699][T16860] bridge_slave_0: entered allmulticast mode
[ 1533.301224][T16860] bridge_slave_0: entered promiscuous mode
[ 1533.482772][T16860] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1533.482939][T16860] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1533.483205][T16860] bridge_slave_1: entered allmulticast mode
[ 1533.486626][T16860] bridge_slave_1: entered promiscuous mode
[ 1534.049176][ T8839] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1534.070598][ T8839] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1534.074628][ T8839] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1534.093773][ T8839] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1534.094633][ T8839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1534.682567][T14478] Bluetooth: hci6: command tx timeout
[ 1535.583747][T17005] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2860'.
[ 1535.749581][T17006] netlink: 'syz.5.2860': attribute type 14 has an invalid length.
[ 1535.749644][T17006] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2860'.
[ 1536.451246][T14478] Bluetooth: hci0: command tx timeout
[ 1536.455304][   T67] kworker/u8:4 (67) used greatest stack depth: 11528 bytes left
[ 1536.537470][T16860] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1536.575490][T16869] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1536.575738][T16869] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1536.576013][T16869] bridge_slave_0: entered allmulticast mode
[ 1536.579434][T16869] bridge_slave_0: entered promiscuous mode
[ 1536.643107][T16860] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1536.645779][T16869] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1536.645947][T16869] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1536.646184][T16869] bridge_slave_1: entered allmulticast mode
[ 1536.649536][T16869] bridge_slave_1: entered promiscuous mode
[ 1536.790311][T14478] Bluetooth: hci6: command tx timeout
[ 1537.380874][T16860] team0: Port device team_slave_0 added
[ 1537.391915][T16869] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1537.440747][T16860] team0: Port device team_slave_1 added
[ 1537.454365][T16869] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1538.523315][T14478] Bluetooth: hci0: command tx timeout
[ 1538.710454][T16860] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1538.710474][T16860] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1538.710511][T16860] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1538.719349][T16869] team0: Port device team_slave_0 added
[ 1538.782334][T16860] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1538.782354][T16860] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1538.782385][T16860] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1538.788411][T16869] team0: Port device team_slave_1 added
[ 1538.842745][T14478] Bluetooth: hci6: command tx timeout
[ 1539.644660][T16869] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1539.644680][T16869] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1539.644711][T16869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1539.983140][T16869] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1539.983160][T16869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1539.983192][T16869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1540.248018][T16860] hsr_slave_0: entered promiscuous mode
[ 1540.259164][T16860] hsr_slave_1: entered promiscuous mode
[ 1540.612968][T14478] Bluetooth: hci0: command tx timeout
[ 1541.703544][T16869] hsr_slave_0: entered promiscuous mode
[ 1541.705270][T16869] hsr_slave_1: entered promiscuous mode
[ 1541.706401][T16869] debugfs: 'hsr0' already exists in 'hsr'
[ 1541.706430][T16869] Cannot create hsr debugfs directory
[ 1542.683602][T14478] Bluetooth: hci0: command tx timeout
[ 1543.542059][T16982] chnl_net:caif_netlink_parms(): no params data found
[ 1544.173680][T16998] chnl_net:caif_netlink_parms(): no params data found
[ 1545.118651][T16982] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1545.118903][T16982] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1545.119136][T16982] bridge_slave_0: entered allmulticast mode
[ 1545.122951][T16982] bridge_slave_0: entered promiscuous mode
[ 1545.324601][T16982] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1545.324787][T16982] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1545.325063][T16982] bridge_slave_1: entered allmulticast mode
[ 1545.328418][T16982] bridge_slave_1: entered promiscuous mode
[ 1546.085712][T16998] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1546.092832][T16998] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1546.093113][T16998] bridge_slave_0: entered allmulticast mode
[ 1546.095935][T16998] bridge_slave_0: entered promiscuous mode
[ 1546.134233][T16982] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1546.135772][T16998] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1546.135955][T16998] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1546.136172][T16998] bridge_slave_1: entered allmulticast mode
[ 1546.144032][T16998] bridge_slave_1: entered promiscuous mode
[ 1546.291149][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.291248][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.504302][T16982] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1547.230340][T17067] CIFS: VFS: Malformed UNC in devname
[ 1547.974781][T16556] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1548.067761][T16998] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1548.087250][T16982] team0: Port device team_slave_0 added
[ 1548.101013][T16982] team0: Port device team_slave_1 added
[ 1548.117071][T16998] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1548.132668][T16556] usb 6-1: Using ep0 maxpacket: 32
[ 1548.135523][T16556] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1548.135558][T16556] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1548.135609][T16556] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1548.135634][T16556] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1548.195973][T16556] usb 6-1: config 0 descriptor??
[ 1548.211708][T16556] hub 6-1:0.0: USB hub found
[ 1548.453391][T16556] hub 6-1:0.0: config failed, can't read hub descriptor (err -90)
[ 1548.675534][T16556] usbhid 6-1:0.0: can't add hid device: -71
[ 1548.675683][T16556] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[ 1548.703678][T16556] usb 6-1: USB disconnect, device number 16
[ 1548.752026][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1549.274438][T16982] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1549.274458][T16982] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1549.274489][T16982] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1549.366894][T16998] team0: Port device team_slave_0 added
[ 1549.368215][T16982] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1549.368229][T16982] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1549.368254][T16982] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1549.486405][T16998] team0: Port device team_slave_1 added
[ 1550.004567][T17078] capability: warning: `syz.5.2873' uses 32-bit capabilities (legacy support in use)
[ 1550.344754][T17079] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1550.862634][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1551.329159][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1551.515539][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1551.561063][T16998] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1551.561084][T16998] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1551.561114][T16998] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1551.706847][T16998] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1551.706867][T16998] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1551.706898][T16998] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1552.274625][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1553.432278][T16982] hsr_slave_0: entered promiscuous mode
[ 1553.449589][T16982] hsr_slave_1: entered promiscuous mode
[ 1553.450591][T16982] debugfs: 'hsr0' already exists in 'hsr'
[ 1553.450616][T16982] Cannot create hsr debugfs directory
[ 1554.121700][T17090] CIFS: VFS: Malformed UNC in devname
[ 1554.355456][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1555.458233][T16998] hsr_slave_0: entered promiscuous mode
[ 1555.459823][T16998] hsr_slave_1: entered promiscuous mode
[ 1555.460862][T16998] debugfs: 'hsr0' already exists in 'hsr'
[ 1555.460890][T16998] Cannot create hsr debugfs directory
[ 1555.961225][T14986] bridge_slave_1: left allmulticast mode
[ 1555.961271][T14986] bridge_slave_1: left promiscuous mode
[ 1555.961617][T14986] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1556.064777][T14986] bridge_slave_0: left allmulticast mode
[ 1556.064814][T14986] bridge_slave_0: left promiscuous mode
[ 1556.065140][T14986] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1556.411640][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1556.471287][T14986] bridge_slave_1: left allmulticast mode
[ 1556.471329][T14986] bridge_slave_1: left promiscuous mode
[ 1556.471628][T14986] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1556.566133][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1556.907264][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1557.144735][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1557.530233][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1557.594666][T14986] bridge_slave_0: left allmulticast mode
[ 1557.594702][T14986] bridge_slave_0: left promiscuous mode
[ 1557.594995][T14986] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1557.701476][T14986] bridge_slave_1: left allmulticast mode
[ 1557.701516][T14986] bridge_slave_1: left promiscuous mode
[ 1557.701827][T14986] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1557.814501][T14986] bridge_slave_0: left allmulticast mode
[ 1557.814542][T14986] bridge_slave_0: left promiscuous mode
[ 1557.814851][T14986] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1557.890891][T16549] libceph: connect (1)[c::]:6789 error -101
[ 1557.891181][T16549] libceph: mon0 (1)[c::]:6789 connect error
[ 1557.924926][T16549] libceph: connect (1)[c::]:6789 error -101
[ 1557.925206][T16549] libceph: mon0 (1)[c::]:6789 connect error
[ 1558.186061][T16549] libceph: connect (1)[c::]:6789 error -101
[ 1558.186332][T16549] libceph: mon0 (1)[c::]:6789 connect error
[ 1558.503385][T17106] ceph: No mds server is up or the cluster is laggy
[ 1558.677053][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1558.875813][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1559.095434][T16549] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1559.272595][T16549] usb 6-1: Using ep0 maxpacket: 16
[ 1559.277196][T16549] usb 6-1: config 0 has an invalid interface number: 251 but max is 0
[ 1559.277234][T16549] usb 6-1: config 0 has no interface number 0
[ 1559.277288][T16549] usb 6-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[ 1559.277315][T16549] usb 6-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1559.282750][T16549] usb 6-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[ 1559.282782][T16549] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1559.282803][T16549] usb 6-1: Product: syz
[ 1559.282819][T16549] usb 6-1: Manufacturer: syz
[ 1559.282834][T16549] usb 6-1: SerialNumber: syz
[ 1559.359607][T16549] usb 6-1: config 0 descriptor??
[ 1559.373661][T17111] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1559.373808][T17111] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1559.586433][T17111] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1559.586739][T17111] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1561.241136][T17111] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1561.252822][T17111] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1561.255678][T14986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1561.343371][T14986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1561.388462][T14986] bond0 (unregistering): Released all slaves
[ 1561.662606][T17111] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2882'.
[ 1561.876652][T16549] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0002: -71
[ 1561.906930][T16549] asix 6-1:0.251 (unnamed net_device) (uninitialized): Could not register MDIO bus
[ 1561.907402][T16549] asix 6-1:0.251: probe with driver asix failed with error -5
[ 1561.938810][T16549] usb 6-1: USB disconnect, device number 17
[ 1562.834056][T17115] CIFS: VFS: Malformed UNC in devname
[ 1563.261808][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1563.755482][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1564.523691][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1564.573258][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1564.695813][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1564.747748][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.077358][T14986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1565.133860][T14986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1565.158619][T14986] bond0 (unregistering): Released all slaves
[ 1565.202031][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.284495][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.342808][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.421511][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.481252][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.551922][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.619066][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.680215][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.743108][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.885507][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1565.970151][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1566.092999][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1566.137804][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1566.178690][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1566.274200][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1566.953738][T14986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1567.013724][T14986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1567.039275][T14986] bond0 (unregistering): Released all slaves
[ 1567.372326][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1567.726174][T17127] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2886'.
[ 1567.957823][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1568.062852][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1568.154524][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1568.387500][T16860] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1568.472872][T17135] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2888'.
[ 1570.148074][T16860] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1570.995192][T16860] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1574.334037][T14986] hsr_slave_0: left promiscuous mode
[ 1574.412171][T14986] hsr_slave_1: left promiscuous mode
[ 1574.414128][T14986] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1574.453938][T14986] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1574.736790][T14986] hsr_slave_0: left promiscuous mode
[ 1574.814544][T14986] hsr_slave_1: left promiscuous mode
[ 1574.815609][T14986] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1574.873849][T14986] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1575.585129][T17000] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1575.613099][T17000] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1575.617840][T17000] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1575.635894][T17000] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1575.648751][T17000] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1575.709660][T14986] hsr_slave_0: left promiscuous mode
[ 1575.727329][T17144] CIFS: VFS: Malformed UNC in devname
[ 1575.742800][T14986] hsr_slave_1: left promiscuous mode
[ 1575.743452][T14986] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1575.787950][T14986] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1577.343879][T17000] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1577.374506][T17000] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1577.376745][T17000] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1577.378362][T17000] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1577.379960][T17000] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1577.504626][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1577.722737][T14478] Bluetooth: hci5: command tx timeout
[ 1577.754503][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1577.895979][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1578.134204][T14986] team0 (unregistering): Port device team_slave_1 removed
[ 1578.183178][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1578.312040][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1578.444088][T14986] team0 (unregistering): Port device team_slave_0 removed
[ 1578.585883][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1579.237610][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1579.496213][T14478] Bluetooth: hci7: command tx timeout
[ 1579.653994][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1579.802701][T14478] Bluetooth: hci5: command tx timeout
[ 1579.938241][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1580.223333][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1580.303170][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1580.362205][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1580.522555][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1581.562605][T14478] Bluetooth: hci7: command tx timeout
[ 1581.882685][T14478] Bluetooth: hci5: command tx timeout
[ 1582.554017][T14986] team0 (unregistering): Port device team_slave_1 removed
[ 1582.843301][T14986] team0 (unregistering): Port device team_slave_0 removed
[ 1583.642635][T14478] Bluetooth: hci7: command tx timeout
[ 1583.994930][T14478] Bluetooth: hci5: command tx timeout
[ 1585.732988][T14478] Bluetooth: hci7: command tx timeout
[ 1587.013567][T14986] team0 (unregistering): Port device team_slave_1 removed
[ 1587.346015][T14986] team0 (unregistering): Port device team_slave_0 removed
[ 1590.106929][T16860] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1591.219150][T17167] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2893'.
[ 1592.591541][T17186] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2895'.
[ 1594.322090][T17000] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1594.326968][T17000] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1594.610288][T17000] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1595.445285][T17000] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1595.888741][T17000] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1598.842963][T14478] Bluetooth: hci1: command tx timeout
[ 1599.019287][T17000] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1599.055541][T17000] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1599.057295][T17000] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1599.059271][T17000] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1599.060227][T17000] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1599.175661][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1599.277454][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.220063][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.347075][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.679476][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.794469][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.854042][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1600.947300][T17000] Bluetooth: hci1: command tx timeout
[ 1601.066889][T17156] chnl_net:caif_netlink_parms(): no params data found
[ 1601.165624][T17000] Bluetooth: hci2: command tx timeout
[ 1601.408662][T17145] chnl_net:caif_netlink_parms(): no params data found
[ 1602.004741][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1603.022709][T17000] Bluetooth: hci1: command tx timeout
[ 1603.272453][T17000] Bluetooth: hci2: command tx timeout
[ 1603.347489][T17217] CIFS: VFS: Malformed UNC in devname
[ 1603.541947][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1603.562312][T17156] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1603.570341][T17156] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1603.570643][T17156] bridge_slave_0: entered allmulticast mode
[ 1603.594606][T17156] bridge_slave_0: entered promiscuous mode
[ 1603.864248][T17156] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1603.864432][T17156] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1603.864676][T17156] bridge_slave_1: entered allmulticast mode
[ 1603.867976][T17156] bridge_slave_1: entered promiscuous mode
[ 1603.892924][T17222] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2898'.
[ 1604.269485][T17145] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1604.270265][T17145] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1604.270549][T17145] bridge_slave_0: entered allmulticast mode
[ 1604.294976][T17145] bridge_slave_0: entered promiscuous mode
[ 1604.456458][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1604.635518][T17145] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1604.635702][T17145] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1604.635967][T17145] bridge_slave_1: entered allmulticast mode
[ 1604.641048][T17145] bridge_slave_1: entered promiscuous mode
[ 1604.728153][T17156] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1604.962244][T17156] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1605.083279][T17000] Bluetooth: hci1: command tx timeout
[ 1605.290639][T17231] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2900'.
[ 1605.464562][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1605.536004][T17000] Bluetooth: hci2: command tx timeout
[ 1606.709323][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1607.562707][T17000] Bluetooth: hci2: command tx timeout
[ 1608.455062][   T38] INFO: task syz.6.2821:16606 blocked for more than 144 seconds.
[ 1608.455089][   T38]       Not tainted syzkaller #0
[ 1608.455103][   T38] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1608.455114][   T38] task:syz.6.2821      state:D stack:25128 pid:16606 tgid:16606 ppid:12394  task_flags:0x400040 flags:0x00004006
[ 1608.455182][   T38] Call Trace:
[ 1608.455191][   T38]  <TASK>
[ 1608.455207][   T38]  __schedule+0x16f3/0x4c20
[ 1608.455259][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1608.455359][   T38]  ? __lock_acquire+0xab9/0xd20
[ 1608.455414][   T38]  ? __pfx___schedule+0x10/0x10
[ 1608.455466][   T38]  ? schedule+0x91/0x360
[ 1608.455499][   T38]  schedule+0x165/0x360
[ 1608.455532][   T38]  __fuse_simple_request+0xf1b/0x18e0
[ 1608.455607][   T38]  ? __pfx___fuse_simple_request+0x10/0x10
[ 1608.455640][   T38]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1608.455685][   T38]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1608.455731][   T38]  fuse_flush+0x5dd/0x810
[ 1608.455759][   T38]  ? __pfx_fuse_flush+0x10/0x10
[ 1608.455782][   T38]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1608.455814][   T38]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1608.455862][   T38]  ? reacquire_held_locks+0x127/0x1d0
[ 1608.455894][   T38]  ? __pfx_migrate_enable+0x10/0x10
[ 1608.455936][   T38]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1608.455970][   T38]  ? __pfx_fuse_flush+0x10/0x10
[ 1608.455989][   T38]  filp_flush+0xc0/0x190
[ 1608.456017][   T38]  filp_close+0x1d/0x40
[ 1608.456039][   T38]  __se_sys_close_range+0x35c/0x650
[ 1608.456076][   T38]  ? __pfx___se_sys_close_range+0x10/0x10
[ 1608.456105][   T38]  ? rcu_is_watching+0x15/0xb0
[ 1608.456151][   T38]  ? do_syscall_64+0xbe/0x3b0
[ 1608.456177][   T38]  do_syscall_64+0xfa/0x3b0
[ 1608.456196][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1608.456227][   T38]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1608.456280][   T38]  ? clear_bhb_loop+0x60/0xb0
[ 1608.456307][   T38]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1608.456328][   T38] RIP: 0033:0x7fb5d703eba9
[ 1608.456347][   T38] RSP: 002b:00007ffecb5617f8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 1608.456370][   T38] RAX: ffffffffffffffda RBX: 0000000000163861 RCX: 00007fb5d703eba9
[ 1608.456386][   T38] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 1608.456400][   T38] RBP: 00007fb5d7287da0 R08: 0000000000000001 R09: 00000008cb561aef
[ 1608.456415][   T38] R10: 0000001b31b20000 R11: 0000000000000246 R12: 00007fb5d7285fac
[ 1608.456430][   T38] R13: 00007fb5d7285fa0 R14: ffffffffffffffff R15: 00007ffecb561910
[ 1608.456465][   T38]  </TASK>
[ 1608.456494][   T38] 
[ 1608.456494][   T38] Showing all locks held in the system:
[ 1608.456506][   T38] 1 lock held by khungtaskd/38:
[ 1608.456519][   T38]  #0: ffffffff8d9a8d80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1608.456606][   T38] 8 locks held by kworker/u8:5/154:
[ 1608.456620][   T38] 5 locks held by kworker/u8:6/815:
[ 1608.456648][   T38] 2 locks held by dhcpcd/5500:
[ 1608.456660][   T38]  #0: ffff888039974910 (nlk_cb_mutex-ROUTE){+.+.}-{4:4}, at: netlink_dump+0xbd/0xe90
[ 1608.456784][   T38]  #1: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_dumpit+0x92/0x200
[ 1608.456895][   T38] 2 locks held by getty/5595:
[ 1608.456907][   T38]  #0: ffff88814dc370a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1608.456969][   T38]  #1: ffffc90003e832e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x444/0x1410
[ 1608.457025][   T38] 3 locks held by kworker/u8:17/7714:
[ 1608.457037][   T38]  #0: ffff888019881138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1608.457091][   T38]  #1: ffffc90005017bc0 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1608.457144][   T38]  #2: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[ 1608.457195][   T38] 4 locks held by kworker/u8:11/14986:
[ 1608.457208][   T38]  #0: ffff88801a6f4138 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1608.457261][   T38]  #1: ffffc90003ecfbc0 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1608.457314][   T38]  #2: ffffffff8ecc6700 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xf7/0x800
[ 1608.457390][   T38]  #3: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: ipmr_net_exit_batch+0x20/0x90
[ 1608.457524][   T38] 1 lock held by syz-executor/17145:
[ 1608.457537][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1608.457599][   T38] 2 locks held by syz-executor/17156:
[ 1608.457612][   T38]  #0: ffffffff8e43b760 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 1608.457675][   T38]  #1: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1608.457730][   T38] 2 locks held by syz-executor/17188:
[ 1608.457742][   T38]  #0: ffffffff8f1d8540 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 1608.457804][   T38]  #1: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1608.457858][   T38] 2 locks held by syz-executor/17200:
[ 1608.457870][   T38]  #0: ffffffff8f1f2128 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 1608.457932][   T38]  #1: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1608.457988][   T38] 2 locks held by syz.5.2900/17231:
[ 1608.458000][   T38]  #0: ffffffff8e43b760 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x23/0x250
[ 1608.458062][   T38]  #1: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0x8db/0x1c70
[ 1608.458117][   T38] 1 lock held by syz.5.2900/17232:
[ 1608.458129][   T38]  #0: ffffffff8ecd35f8 (rtnl_mutex){+.+.}-{4:4}, at: rtnetlink_rcv_msg+0x71c/0xb70
[ 1608.458184][   T38] 
[ 1608.458190][   T38] =============================================
[ 1608.458190][   T38] 
[ 1608.458201][   T38] NMI backtrace for cpu 1
[ 1608.458216][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1608.458240][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1608.458253][   T38] Call Trace:
[ 1608.458261][   T38]  <TASK>
[ 1608.458270][   T38]  dump_stack_lvl+0x189/0x250
[ 1608.458306][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1608.458337][   T38]  ? __pfx__printk+0x10/0x10
[ 1608.458375][   T38]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1608.458453][   T38]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1608.458484][   T38]  ? __pfx__printk+0x10/0x10
[ 1608.458512][   T38]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1608.458549][   T38]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1608.458588][   T38]  watchdog+0xf93/0xfe0
[ 1608.458623][   T38]  ? watchdog+0x1de/0xfe0
[ 1608.458657][   T38]  kthread+0x70e/0x8a0
[ 1608.458693][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1608.458719][   T38]  ? __pfx_kthread+0x10/0x10
[ 1608.458757][   T38]  ? __pfx_kthread+0x10/0x10
[ 1608.458789][   T38]  ret_from_fork+0x439/0x7d0
[ 1608.458820][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1608.458854][   T38]  ? __switch_to_asm+0x39/0x70
[ 1608.458873][   T38]  ? __switch_to_asm+0x33/0x70
[ 1608.458892][   T38]  ? __pfx_kthread+0x10/0x10
[ 1608.458925][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1608.458964][   T38]  </TASK>
[ 1608.458973][   T38] Sending NMI from CPU 1 to CPUs 0:
[ 1608.459002][    C0] NMI backtrace for cpu 0
[ 1608.459018][    C0] CPU: 0 UID: 0 PID: 154 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1608.459039][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1608.459051][    C0] Workqueue: bat_events batadv_nc_worker
[ 1608.459130][    C0] RIP: 0010:__lock_acquire+0x467/0xd20
[ 1608.459153][    C0] Code: c5 45 8d 7c 24 01 49 ff cc 44 89 f9 83 c1 fe 78 44 44 89 e3 81 e3 ff ff ff 7f 83 f9 31 73 1d 48 8d 0c 9b 8b 8c cf 40 0b 00 00 <31> c1 41 ff cf 49 ff cc f7 c1 00 60 00 00 74 cf eb 1c 48 c7 c7 30
[ 1608.459168][    C0] RSP: 0018:ffffc90003a3f750 EFLAGS: 00000083
[ 1608.459182][    C0] RAX: 000000000002000b RBX: 0000000000000004 RCX: 000000000002000b
[ 1608.459195][    C0] RDX: 0000000000000003 RSI: 0000000000000000 RDI: ffff888020fa9dc0
[ 1608.459206][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8af93c4b
[ 1608.459217][    C0] R10: dffffc0000000000 R11: fffffbfff1e3ac07 R12: 0000000000000004
[ 1608.459229][    C0] R13: 0000000000000001 R14: ffff888020faa9f8 R15: 0000000000000006
[ 1608.459241][    C0] FS:  0000000000000000(0000) GS:ffff8881268bc000(0000) knlGS:0000000000000000
[ 1608.459255][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1608.459266][    C0] CR2: 00007ffdd9899000 CR3: 000000000d7a6000 CR4: 00000000003526f0
[ 1608.459285][    C0] Call Trace:
[ 1608.459291][    C0]  <TASK>
[ 1608.459302][    C0]  ? rt_spin_lock+0x1bb/0x2c0
[ 1608.459320][    C0]  lock_acquire+0x120/0x360
[ 1608.459340][    C0]  ? rt_spin_lock+0x1bb/0x2c0
[ 1608.459364][    C0]  rt_spin_lock+0x1d7/0x2c0
[ 1608.459381][    C0]  ? rt_spin_lock+0x1bb/0x2c0
[ 1608.459399][    C0]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[ 1608.459419][    C0]  ? __pfx_rt_spin_lock+0x10/0x10
[ 1608.459438][    C0]  ? rt_spin_unlock+0x65/0x80
[ 1608.459457][    C0]  ? __pfx_batadv_nc_to_purge_nc_path_decoding+0x10/0x10
[ 1608.459482][    C0]  batadv_nc_purge_paths+0x104/0x3f0
[ 1608.459505][    C0]  ? batadv_nc_purge_paths+0x6a/0x3f0
[ 1608.459529][    C0]  batadv_nc_worker+0x8c8/0xbc0
[ 1608.459551][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1608.459574][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[ 1608.459594][    C0]  process_scheduled_works+0xade/0x17b0
[ 1608.459625][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1608.459650][    C0]  worker_thread+0x8a0/0xda0
[ 1608.459680][    C0]  kthread+0x70e/0x8a0
[ 1608.459703][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1608.459723][    C0]  ? __pfx_kthread+0x10/0x10
[ 1608.459747][    C0]  ? __pfx_kthread+0x10/0x10
[ 1608.459770][    C0]  ret_from_fork+0x439/0x7d0
[ 1608.459791][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1608.459813][    C0]  ? __switch_to_asm+0x39/0x70
[ 1608.459836][    C0]  ? __switch_to_asm+0x33/0x70
[ 1608.459851][    C0]  ? __pfx_kthread+0x10/0x10
[ 1608.459873][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1608.459895][    C0]  </TASK>
[ 1608.459999][   T38] Kernel panic - not syncing: hung_task: blocked tasks
[ 1608.460015][   T38] CPU: 1 UID: 0 PID: 38 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[ 1608.460038][   T38] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1608.460051][   T38] Call Trace:
[ 1608.460060][   T38]  <TASK>
[ 1608.460070][   T38]  dump_stack_lvl+0x99/0x250
[ 1608.460101][   T38]  ? __asan_memcpy+0x40/0x70
[ 1608.460131][   T38]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1608.460162][   T38]  ? __pfx__printk+0x10/0x10
[ 1608.460201][   T38]  vpanic+0x281/0x750
[ 1608.460235][   T38]  ? __pfx_vpanic+0x10/0x10
[ 1608.460263][   T38]  ? __x2apic_send_IPI_mask+0x1e4/0x260
[ 1608.460285][   T38]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1608.460329][   T38]  panic+0xb9/0xc0
[ 1608.460358][   T38]  ? __pfx_panic+0x10/0x10
[ 1608.460392][   T38]  ? irq_work_queue+0xc3/0x140
[ 1608.460425][   T38]  ? nmi_trigger_cpumask_backtrace+0x234/0x300
[ 1608.460455][   T38]  watchdog+0xfd2/0xfe0
[ 1608.460488][   T38]  ? watchdog+0x1de/0xfe0
[ 1608.460522][   T38]  kthread+0x70e/0x8a0
[ 1608.460557][   T38]  ? __pfx_watchdog+0x10/0x10
[ 1608.460591][   T38]  ? __pfx_kthread+0x10/0x10
[ 1608.460625][   T38]  ? __pfx_kthread+0x10/0x10
[ 1608.460656][   T38]  ret_from_fork+0x439/0x7d0
[ 1608.460686][   T38]  ? __pfx_ret_from_fork+0x10/0x10
[ 1608.460718][   T38]  ? __switch_to_asm+0x39/0x70
[ 1608.460736][   T38]  ? __switch_to_asm+0x33/0x70
[ 1608.460754][   T38]  ? __pfx_kthread+0x10/0x10
[ 1608.460785][   T38]  ret_from_fork_asm+0x1a/0x30
[ 1608.460821][   T38]  </TASK>
[ 1608.460973][   T38] Kernel Offset: disabled