last executing test programs:

11m24.574546095s ago: executing program 32 (id=101):
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x10, &(0x7f0000000480)=ANY=[@ANYRES32=0x0], 0xff, 0x59d5, &(0x7f00000007c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.self_freezing\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)

10m12.330397469s ago: executing program 33 (id=321):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x6, 0x0)
accept4$inet(0xffffffffffffffff, 0x0, &(0x7f0000000380), 0x800)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x70, 0x101301)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
pipe2$9p(&(0x7f00000001c0), 0x0)
r4 = socket$rxrpc(0x21, 0x2, 0xa)
recvmmsg(r4, 0x0, 0x0, 0x12002, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0), 0x141000, 0x0)

8m3.481816635s ago: executing program 7 (id=780):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC_PROXY(r3, 0x29, 0xd2, 0x0, 0x0)

7m58.989652003s ago: executing program 7 (id=799):
io_submit(0x0, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_script(r3, 0x0, 0xb)
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r5, &(0x7f0000000980), 0xfdef)
splice(r2, 0x0, r5, 0x0, 0x80, 0x7)
timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read$FUSE(r4, 0x0, 0x0)
syz_open_dev$MSR(0x0, 0x2, 0x0)

7m58.859227227s ago: executing program 7 (id=801):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
lstat(0x0, 0x0)
unlinkat(r0, 0x0, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x5, 0x6, &(0x7f0000000d80)=ANY=[@ANYBLOB="050000000000000071112400000000008510000002000000850000000e00000095000000000000009500a50500000000fbea53c02a31ff049e25d5214a6f0cb14e6d7f759423208522544cbd65f9fd4260d512e016b6fd03104c352fceaacf0fecfec106889482afeb9da8f52c56a044de7e31f654d1dd94a91ce533b2d11248bf83552cba029c63f5e309c759e53473d78ad08a07a7aad52b528d557f9138a748f447768fc0fe9fb93e812456bf932c96ce37498a49c5ff91a0090f783372d1328619aaca9c0ca34a11ae96425c0fa3b9d10f"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0xf, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
mount(0x0, 0x0, 0x0, 0x851800, 0x0)
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r2, &(0x7f00000001c0)="5cba91", 0x3)
r3 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r3, 0x800448d2, &(0x7f00000000c0)={0x0, &(0x7f0000000600)})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)

7m56.172015013s ago: executing program 7 (id=811):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC_PROXY(r3, 0x29, 0xd2, 0x0, 0x0)

7m54.548493633s ago: executing program 7 (id=814):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b81000085"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8b30, &(0x7f0000000040)={'wlan0\x00'})

7m53.814553437s ago: executing program 7 (id=817):
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x181000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$I2C_PEC(0xffffffffffffffff, 0x708, 0x7)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8)
r3 = accept(r2, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)="564004c6852da7a299e4c397614090d1a6e12edf1767f157", 0xfcdc}], 0x1, &(0x7f0000000480)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)

7m37.56484371s ago: executing program 34 (id=817):
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x181000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$I2C_PEC(0xffffffffffffffff, 0x708, 0x7)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8)
r3 = accept(r2, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)="564004c6852da7a299e4c397614090d1a6e12edf1767f157", 0xfcdc}], 0x1, &(0x7f0000000480)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)

6m20.276629924s ago: executing program 1 (id=1079):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})
creat(&(0x7f0000000300)='./file0\x00', 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

6m19.834230977s ago: executing program 1 (id=1080):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000000), 0x1, 0x457, &(0x7f0000000700)="$eJzs3MtvG0UYAPBvbSdt+iChKo8+gECLqHgkTVpKD1xAgDiAhASHcgxOWpW6DWqCRKsKCkLliCpxRxyR+As4wQUBJySucEeVKtRLCyejtXdrx7GTtHHsEv9+0rYzsxPNfJ4de3YnTgADazz9J4nYERF/RMRoPbu0wnj9v1s3LpX/uXGpnES1+vbfSa3ezRuXynnV/Oe255lSROHzJPa1aXfhwsUzM5XK3PksP7l49oPJhQsXnzt9dubU3Km5c9PHjx89MvXCsennsxpb1xVnGtfNvR/P79/z+rtX3yyfuPreL98lefwtcXTJ+Eonn6xWu9xcf+1sSielPnaEO1KsT9MYqs3/0ShGY/BG49XP+to5YENVq9Xqg51PX64Cm1gSbQpLBxtvD8AmlX/Qp/e/+dGLdce94vpL9RugNO5b2VE/U4pCVmeo5f62m8Yj4sTlf79Oj1j9OcSWDeoGADBAfkjXP8+2W/8Vovm50H3ZHspYRNwfEbsi4lhE7I6IByJqdR+KiIfvsP3WTZLl65/CtbsKbI3S9d+L2d7W0vVfvvqLsWKW21mLfyg5eboydzh7TQ7F0JY0P7VCGz++8vuXnc41r//SI20/Xwtm/bhWaln1zc4szqwn5mbXP43YW2oXf3J7JyCJiD0Rsfcu2zj99Lf7O51bPf4VdGGfqfpNxFP18b8cLfHnkpX3Jye3RmXu8GR+VSz3629X3urU/rri74J0/Le1vf5vxz+WNO/XLqRFw3fUxpU/vyg3ptNSd3v9DyfvLCn7aGZx8fxUxHDyRr3TzeXTLfWmG/XT+A8daD//d0XjldgXEelF/EhEPBoRj2V9fzwinoiIAyvE//PLB9/vdO52/CNZQR/Gf7bd+L/WafwbieFoLWmfKJ756fsljY41kmsb/6O11KGsZC3vf2vpV341AwAAwGZXiIgdxaQwkaejUJiYqP8O/+7YVqjMLyw+c3L+w3Oz9e8IjMVQIX/SNdr0PHQqu63P89Mt+SPZc+OviiO1/ER5vjLb7+BhwG2vzfnl8z/1V7HfvQM23Or7aLt60g+g93xfEwaX+Q+Dy/yHwdVm/o/0ox9A77X7/P+kD/0Aeq9l/tv2gwHi/h8Gl/kPg8v8h4G0MBKrf0leQmJZIgr3RDf+z4lqsvY/VNHzRL/fmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALrjvwAAAP//n1HZTw==")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
finit_module(r3, 0x0, 0x0)

6m14.734598968s ago: executing program 1 (id=1096):
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x1c, 0x1, 0xa, 0x100, 0x0, 0x0, {0x3, 0x0, 0x6}, [@NFTA_TABLE_FLAGS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8051}, 0x4000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
ioctl$UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f0000000080))
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@xino_auto}]})
r2 = open(0x0, 0x240002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0xfffffffffffffffe}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000000000)={0x3})
ioctl$VIDIOC_S_PRIORITY(0xffffffffffffffff, 0x40045644, 0x20000000)
r4 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_DV_TIMINGS(r4, 0xc0845657, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f000015bffc)='nfs\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r2, 0x0, r2, &(0x7f0000000240)='./file0\x00', 0x0)
mknod(&(0x7f00000002c0)='./bus\x00', 0x1, 0x0)
truncate(&(0x7f0000000500)='./file0\x00', 0xff)

6m13.473765043s ago: executing program 1 (id=1099):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x8040480)
socket$inet6_udp(0xa, 0x2, 0x0)
socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
unshare(0x24020400)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
close(0xffffffffffffffff)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000800), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000f40)={0x0, 0x0, 0x0}, 0x0)

6m12.153572851s ago: executing program 1 (id=1103):
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3589], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000000)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x6, 0x2, 0x1}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={r1, r0, 0x2}, 0x10)
bpf$ITER_CREATE(0x1d, &(0x7f0000000140)={r2, 0x7}, 0x8)

6m9.589649049s ago: executing program 1 (id=1111):
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x1c, 0x1, 0xa, 0x100, 0x0, 0x0, {0x3, 0x0, 0x6}, [@NFTA_TABLE_FLAGS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8051}, 0x4000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
ioctl$UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f0000000080))
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@xino_auto}]})
r2 = open(0x0, 0x240002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0xfffffffffffffffe}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000000000)={0x3})
ioctl$VIDIOC_S_PRIORITY(0xffffffffffffffff, 0x40045644, 0x20000000)
r4 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_DV_TIMINGS(r4, 0xc0845657, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f000015bffc)='nfs\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r2, 0x0, r2, &(0x7f0000000240)='./file0\x00', 0x0)
mknod(&(0x7f00000002c0)='./bus\x00', 0x1, 0x0)
truncate(&(0x7f0000000500)='./file0\x00', 0xff)

5m53.48751002s ago: executing program 35 (id=1111):
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x1c, 0x1, 0xa, 0x100, 0x0, 0x0, {0x3, 0x0, 0x6}, [@NFTA_TABLE_FLAGS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8051}, 0x4000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
ioctl$UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f0000000080))
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@xino_auto}]})
r2 = open(0x0, 0x240002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0xfffffffffffffffe}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000000000)={0x3})
ioctl$VIDIOC_S_PRIORITY(0xffffffffffffffff, 0x40045644, 0x20000000)
r4 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2)
ioctl$VIDIOC_S_DV_TIMINGS(r4, 0xc0845657, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f000015bffc)='nfs\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r2, 0x0, r2, &(0x7f0000000240)='./file0\x00', 0x0)
mknod(&(0x7f00000002c0)='./bus\x00', 0x1, 0x0)
truncate(&(0x7f0000000500)='./file0\x00', 0xff)

4m39.796187999s ago: executing program 5 (id=1448):
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/vlan/vlan0\x00')
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r1, 0x8923, &(0x7f0000000040)={'vlan0\x00', 0x40})
r2 = dup(r0)
write$6lowpan_enable(r2, 0x0, 0x0)

4m38.734753623s ago: executing program 5 (id=1453):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x503, 0x70bd2c, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_DATA={0x4}, @IFLA_MACVLAN_MACADDR={0xa, 0x4, @local}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x0)

4m37.775578294s ago: executing program 5 (id=1455):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="180000000000000000000000000000009500"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
syz_open_dev$sndctrl(0x0, 0x20000000, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000300)={0x0, 0x0, 0x0, 0xc9, 0x0, 0x0, 0x0, 0x0, 0x80, 0x8, 0x0, 0x0, 0x2, 0x7}, 0xe)
pipe2$watch_queue(&(0x7f0000000080), 0x80)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd}, 0x0, &(0x7f0000000080)={0x3ff}, 0x0, 0x0)
sendmmsg$inet6(r1, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000340)="b2", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000540)="56f9596d1f5982a7b3bd96", 0xb}], 0x1}}], 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r2 = dup(0xffffffffffffffff)
write$6lowpan_enable(r2, 0x0, 0x0)
syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)

4m37.025639974s ago: executing program 5 (id=1462):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r2)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000340)={'wpan1\x00', <r5=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x38, r4, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r5}]}, 0x38}, 0x4, 0x700000000000000}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)={0x50, r1, 0x607, 0x0, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0002}}]}, 0x50}}, 0x0)

4m35.008094546s ago: executing program 5 (id=1466):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB2(r2, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc1, 0x80, 0x20203843, 0x0, [0x2], [0x80ffff]})
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a00", @ANYBLOB], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fe05000000000000000000009500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r5, 0x0, 0x1ff}, 0x18)
syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x4000801}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r3, &(0x7f0000000780)}, 0x20)
ioctl$SIOCSIFMTU(r1, 0x89f3, &(0x7f0000000040)={'bond0\x00'})
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x28}}, 0x0)

4m34.604556436s ago: executing program 5 (id=1469):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
lstat(0x0, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x5, 0x6, &(0x7f0000000d80)=ANY=[@ANYBLOB="050000000000000071112400000000008510000002000000850000000e00000095000000000000009500a50500000000fbea53c02a31ff049e25d5214a6f0cb14e6d7f759423208522544cbd65f9fd4260d512e016b6fd03104c352fceaacf0fecfec106889482afeb9da8f52c56a044de7e31f654d1dd94a91ce533b2d11248bf83552cba029c63f5e309c759e53473d78ad08a07a7aad52b528d557f9138a748f447768fc0fe9fb93e812456bf932c96ce37498a49c5ff91a0090f783372d1328619aaca9c0ca34a11ae96425c0fa3b9d10f"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0xf, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
mount(0x0, 0x0, 0x0, 0x851800, 0x0)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r1, &(0x7f00000001c0)="5cba91", 0x3)
ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
r2 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f00000000c0)={0x0, &(0x7f0000000600)})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)

4m34.212949041s ago: executing program 6 (id=1472):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001000070100dd21200100005b91325b", @ANYRES32=0x0, @ANYBLOB="000000000080000008001b"], 0x30}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="3000000010000108000000000000000000024c00", @ANYRES32=0x0, @ANYBLOB="000000000000000008001b00000000000500100006000000"], 0x30}, 0x1, 0xffffa888}, 0x0)

4m33.874451745s ago: executing program 6 (id=1476):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bind$l2tp(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_io_uring_setup(0x112, &(0x7f0000000a00)={0x0, 0x0, 0x400}, &(0x7f0000000580)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r4, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000000c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x5, 0x0, 0x0})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)
preadv2(r0, &(0x7f0000000040)=[{&(0x7f0000000300)=""/97, 0x4}], 0x1, 0x0, 0x0, 0x0)
sendto$l2tp(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r5 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r5, 0x0)

4m29.734166191s ago: executing program 6 (id=1486):
socket(0x2, 0x80805, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x3, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x61637876)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4800}, 0x4040)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0x3, &(0x7f0000000000)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet(0x2, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})

4m29.061717808s ago: executing program 6 (id=1489):
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
connect$inet6(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000010500)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x60, 0x0)

4m29.042782516s ago: executing program 6 (id=1490):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f00000007c0)=ANY=[@ANYBLOB="180000000000000000000000000000009500"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000200), 0x20000000, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000300)={0x0, 0x0, 0x0, 0xc9, 0x0, 0x0, 0x0, 0x0, 0x80, 0x8, 0x0, 0x0, 0x2, 0x7}, 0xe)
pipe2$watch_queue(&(0x7f0000000080), 0x80)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd}, 0x0, &(0x7f0000000080)={0x3ff}, 0x0, 0x0)
sendmmsg$inet6(r1, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000340)="b2", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000540)="56f9596d1f5982a7b3bd96", 0xb}], 0x1}}], 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r2 = dup(0xffffffffffffffff)
write$6lowpan_enable(r2, 0x0, 0x0)
syz_io_uring_setup(0x239, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)

4m26.137012854s ago: executing program 6 (id=1496):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0xa, 0x6, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$sndpcmc(0x0, 0x0, 0x0)
read$snddsp(r2, 0x0, 0x0)
connect$inet6(r0, 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000940)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4})

4m19.308952305s ago: executing program 36 (id=1469):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
lstat(0x0, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x5, 0x6, &(0x7f0000000d80)=ANY=[@ANYBLOB="050000000000000071112400000000008510000002000000850000000e00000095000000000000009500a50500000000fbea53c02a31ff049e25d5214a6f0cb14e6d7f759423208522544cbd65f9fd4260d512e016b6fd03104c352fceaacf0fecfec106889482afeb9da8f52c56a044de7e31f654d1dd94a91ce533b2d11248bf83552cba029c63f5e309c759e53473d78ad08a07a7aad52b528d557f9138a748f447768fc0fe9fb93e812456bf932c96ce37498a49c5ff91a0090f783372d1328619aaca9c0ca34a11ae96425c0fa3b9d10f"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0xf, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
mount(0x0, 0x0, 0x0, 0x851800, 0x0)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r1, &(0x7f00000001c0)="5cba91", 0x3)
ioctl$SNDCTL_DSP_SYNC(r1, 0x5001, 0x0)
r2 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f00000000c0)={0x0, &(0x7f0000000600)})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)

4m10.036267927s ago: executing program 37 (id=1496):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet6(0xa, 0x6, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$sndpcmc(0x0, 0x0, 0x0)
read$snddsp(r2, 0x0, 0x0)
connect$inet6(r0, 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000940)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r3, 0xc05064a7, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4})

6.435578155s ago: executing program 8 (id=2389):
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_GET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f0000000340)={0x200000000, 0x0, 0x0, 0x0, {0x3a}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSFLAGS1(r1, 0x40047459, &(0x7f0000000300)=0xa691336)
r2 = dup(r1)
write$cgroup_subtree(r2, &(0x7f0000000580)=ANY=[], 0x24)

6.245419173s ago: executing program 8 (id=2391):
r0 = socket(0x1e, 0x1, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x8a, &(0x7f0000000580), 0x4)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(0xffffffffffffffff, 0xc01064d1, &(0x7f0000000040)={0x1, 0x0, &(0x7f0000000080)=[0x0]})
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
capset(&(0x7f0000000340)={0x20071026}, &(0x7f0000000380)={0x1, 0x1, 0x7, 0x10000, 0x9, 0x8})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='net/tcp6\x00')
r3 = socket$kcm(0x29, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff5070000000000000300000000000c00095000000000000002ba728041598d6fbd30cb599e83d24bd8137a3aa81e0ed139a85d36bb3019d13bd2321af3c2bd67ce68f15c0ec71d0e6adfefcf1d8f7faf75e0f226bd917060000007142fa9ea4318123751c0a0e168c1886d0d4d35379bd223ec839bc16ee988e6e0dc8cedf3ceb9fbfbf9b0a49ef42d430f6296b72a83438810720a159cda90363db3d221e152dfca64057ff3c4744aeaccd3641110bec4e9027a0c8055bbfc3a96d2e8910c2c39e4babe802f5ab3e89cf6c662ed40000000022278d00031e5388ee5c867ddd58211d6ece3ccb0cd2b6d3cffd962867a3a2f624f992daa94a6a556f3218ce740068725c37074e468ee207d2f73902ebcfcf49822775985bf31b715f5888b24efa190000000000000000000000000000ddffffff020000000000000000ddffffff0000b27cf3d1848a54d7132be1bfb0adf9deab3323aa9fdfb52faf9cb09c3bfd09000000b91ab219ef00bb7b3de8f67ffcad3f6c3c2b1f03550000000000001cf41ab11f12fb1e0a494034007de7c6592df1a6c64d8f20a67745409e011f1264d43f153b3d34889f40159e800ea2474b540500a30b23bcee46762e2093bcc9eae5ee3e980026c96f80ee1a00000000740750fa4d9aaa705989b8e673e3296e52d337c56abf112874ec51d6fe048ba6866adebab53168770a71ad901ace383e41d277b103923a9d961f7a2591dbe4a912ffaf6f658f3f9cd16286744f83a83f138f8f92efd92239eafcc5c1b3f97a297c9e49a0c3300ef7b7fb5f09e0c8a868a353409e34d3e82279637599f35ad3f7ffffff3cac394c7bbdcd0e0eb52162e0c410ade7000026a4e739c60f03cc4146a77af02c1d4cefd4a2b94c0aed8477dfa8ceefb467f05c6977c78cdbf3f704ec73754910fe050038ec9e47de89298b7bf4d769ccc18eedd9068ca1457870eb30d219e23ccc8e06dddeb61799257ab5000013c86ba99523d61a00000000c270246c878d01160e6c07bf6cf8809c3a0d062357ba2515567230a6f8b2ad1e1f4933545fc3c741374211663f6b63b1dd044dd0a2768e825972fc4300001467c89fa0f82e8440105051e5510a33dcda5e4e202bd622549c4cffffff501d3a5dd7143fbf221fff161c12ca389cbe0000000000000fff2ecf631c6c5fd9c26a54d43fa050b88d1d43a8645bd9109b7e07869bba7131421c0f397073943330baafd243c0c6ffe673bab4113be7664e08bdd7115c61afcb718cf3c4680b2f6c7a8400e378a9b15bc20f49e298727340e87cdefb40e56e9cfad9931b8c552b2c7c503f3d0e7ab0e958adb8629aeec90e6d1857da822e40009995ae166deb9856291a43a6f7eb2e32cefbf463789eaf79b8d4c22be89f44b032dad13007b82e6044f643fc8cd07ae636a5dbe9864a117d27326850a7c3b570863f532c218b10af13d7be94987005088a83880ccab9c9920c2d2af8c5e13d52c83ac3fa7c3ae6c08384865b66d2204c2e4f3ae200f279b512b4dcb5dd9cba16b62040bf8702ae12c77e6e34991af603e3856a346cf708feeb708ab22b560cf8a4a6f31ba6d9b8cb0908000000000000001a342c010000000000e667a7592b33406f1f71c739b55db91d2309dc7ae401005f52053a39e7307c09ff3ac3e820b01c57dd74d4aafc4c383a17bc1de5347bb71ca16dcbbbaa2935ae662082b56cf666e63a759e0ef3ea7af6881513be94b362e15ffca8ec453b3a2a67be70c17b0f9c2eac765816c30c2e7133dca1c7669522e8dff8bc570a93fbdb688c3aef810000007a6ea6b11163392a19d87995b51cb6febd5f34a34998d2010fd5facf68c4f84e2f66e27c81a149d7b331983d3b74444953fc1216dfec10b724be3733c26f12538376e177ffef6fd2020000000000000008e4919a463d5332a2546032a3c06b94f168e8fc4bda0c294723fe306f26c477af4b926644672985fab7cc67bc5b5f5d38cdd8df95147ebe1cd88b0a4c6cde9951be10ba7dfddfefb238fac2303cc8982f1e55b005afcfea5eb037248fefad6bb02c162ce92ab17744c8ec3d2e80cf3205d36699fd381bc81231fb5e12e45f3059f361d08d6a6d019ebf105eaf43083c29512bcedd79ca9bf24e063d0c273ed70a2b70be521ea27dc8cf3c9bdf83b93405db07e82e2db484f8673e0e97dd7e8a872148613c3a04f3d67f4375ba5c7f1b00ffffff7f000000000801f71d79d812ced782646b5f79c8fc08bb5c11020108d702edd2ea9c96cf0d2d48aa5fc0a7bf1b51afd85350ad00b78c598fa8701b000884de790b54e5ab2e8ff0c7ae23e0b6eeac95c4c2eef2e5eb1d019d52099fbd404e8ece970f67856ba7e960bd8b1e4105ce7e31f7c9c3e3fa61aaa967b90087e91d703e98535b107b8f4653be4c46a3a1adb07d226952b8573b417018316fa96e2b8e7370baa16d4122c863709b08d4639a19a46ac90ac48a13ee9bcaa875fc700000000000003b40dc5c745fe2491e8425e600000000000000000000000000000000000000000000000000000000000000250318a44ad31baac0520a913301e630ae540f3289aebde8633f6f450c0738e16df6c7f1e0832a2a16fe6e39959735758248032cdf7320c6dc87b01e3f9a7811b200000000ae189de4b9b25f7c7a9c070000002af1c06315270de4a6605e4b4b58bef76fac54f11b84bd7bcd6b6a485edfb7684c770a39b38b08e18a51a4d4e66ca21c06a4b4198e1bc2ef990c9ba911efed626e5ee341a17bf8132b09000000d31df213c802d74797056fd3bca8b2d6cb134437cba0193ba4360bdcc98aad2560aa48291c4eb9d4e08ad7a9c5f04be1ab597124d84dfc7bd8cca8f68154a0ed356e773a797ca6d66748857b4abbf8830abeea2a46342e6a7378173cb29d5cdcd698a0203f78116b710008000000000000007c2d86b94472807c10eb9a8e2fb8bd79fe3a8316deff3ee641c9a080a2173642e673a672279bae4e7e28055da9497d7edb53be6e80482bd4d9a74b8dd4221fff0f0000705d7257ff7f76c78ba0b44ec0bdfa0d32d7042059b13a079639f14f9032b856d892ad6af5124c9c3130485e9682ff1f3c54e475d5bb496aef4bb537d7e191dfdeba109fdcf7864763f87a6d711cf52e520a6ce30e134c55e0caac037209d2f14fcddd00000000000000000000000000000000e609893bdce015e8ccfb36399844db61f6171b0b0e845e48728450c6ba4f7098f8e000676b59ab9f851f3ab77847ce05c89411277ec69c409b7ec50a3337a78675f38a568612c235ab5f2cd6d035d5f5f6a693c381adbbf7b37e37292783b2c7efe7d3a067906552f76d419e0300000000000000000000008f3a20b49fe7636806867283e35cff8d00e7b251bab3cf6377a24f8e8d4bda7503674bc94bf7f4d2fa6f25944bf0a186436d9f6831995976328a1fdc78492c65c1434855dc35c3cf7cf9610c5387794443c99b304799114132362849c3fa85d6379729ff9094933db0cfbe8887c50b87e1469fdf454cef4cbc5f7bf384000000000000a4e8c1a25f47c440144a9776be6cb40aafdb9d3cc8f6a6050974e1c4000000000000008b753f4e1bef9556efcc087a99dbf231167013a4b2eaf6338a0b100c98a331dffc09"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x22)
r5 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r5, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f0000000040)={r5, r4})
close_range(r2, 0xffffffffffffffff, 0x0)

5.895080836s ago: executing program 0 (id=2392):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$SG_BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073017a31000000000800410072786500140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000680)=ANY=[@ANYBLOB="38008c73d9f4f85a6dc47000fcdbdf250900020073797a32000000000800410073697700140033006c6f0000000000000000000000000000a6bfb239bc03f90e488e94ecc7d89e3d00cfaa2a29e01737984b560cf1292f770275cfac0668beed95b431da7181476f41329d177358e7c09a360e4a77b7c161d6970bed2f36fbb15457873e76019bbc5dd4d7ab284b49338c4d698d2036bd5d5af73c4b4f4eaf2835b1fab16da6d6fc1666c658ef92b5f3f0a4f6645f6271d41b356c6a0f5ff1058db6638447ab2d25d7449f96e4bf"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x810)
r4 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_ifreq(r4, 0x8923, &(0x7f0000000040)={'lo\x00', @ifru_hwaddr=@multicast})
chdir(&(0x7f00000000c0)='./bus\x00')
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000200)='./bus/file0\x00', 0x0)

5.893980631s ago: executing program 8 (id=2393):
syz_open_dev$evdev(0x0, 0x20000000000000, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000004580)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000100)='./bus\x00', 0x0)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x143042, 0x83)
ftruncate(r1, 0x3000000)
sendfile(r0, r1, 0x0, 0x80000001)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)

4.644598318s ago: executing program 8 (id=2398):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}]}, 0x70}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f00000003c0)={0x40, r5, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x5, 0x13, [{0x30, 0x1}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x80c1}, 0x0)

3.433716235s ago: executing program 0 (id=2402):
syz_open_dev$evdev(&(0x7f0000000040), 0x20000000000000, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000004580)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000100)='./bus\x00', 0x0)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x143042, 0x83)
ftruncate(r1, 0x3000000)
statx(0xffffffffffffffff, 0x0, 0x1800, 0xffffff7f, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})

3.26471434s ago: executing program 2 (id=2404):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, 0x0, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000100)=<r1=>0x0)
capset(&(0x7f0000000140)={0x0, r1}, &(0x7f0000000180)={0x4, 0x80, 0x56b0, 0x800, 0xf, 0x300000})
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00')
read(r2, &(0x7f0000001a00)=""/177, 0xb1)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
unshare(0x2040600)
waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x8, 0x0)

3.192260789s ago: executing program 8 (id=2405):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0019030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r0)
preadv(r1, &(0x7f0000000440)=[{&(0x7f0000000640)=""/114, 0x72}], 0x1, 0x7, 0x101)

3.088578271s ago: executing program 3 (id=2407):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x60)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000740)={'#! ', './file0', [{0x20, ','}, {0x20, '\t\x1b\x1c\x1e\xc3h$\xb0^\xc1\xab/\xb9\xf0\x13\xed\xd2\x05\xdfn{q\xac\xca\'\xef\xb0*\x11j=\xda\xfd$pY\x1cD\xd4\xf3\x98\xc6\xa1\x88\x9c\xe4\r9!\a\x12\xa9\x18\x93C\v79?L\x98e\f\xb5\x0f8\bH\xa8l\r\xfb\xd6>G\xf5\x11dV\xc9ty\xdaJ'}, {0x20, '\x00{aU<7*g\xa0W\x110\xba\'\xd8\xad\xe4\x87\x0f\xbd\x0f\x1d\xfd\xbf]8\x0e\x1d\t\x12\xa2L\xb6i\x03\r\bYK8\xc9c\x99S\xc9\xed\x8b|\xc8r\n\x80\x04!\x80j\x9f\xb6s\xed1\x96\xc5\x16\x0f|h\xa8\xc9]\xfc\x1c\x97\x1bQMP\xf8\xc7\xea\xcf\x90\xad\xbf\xc1:\x96\xa1\x8a\xb7)m\x9e\xc81\x85qL\x06\x81\xa0\x1d\xd2\xc7\xe9\xe8V\xc4\x88I\xdb\xdd\xb1\x98yC\v\x9d\x1e\xad\xcbQA\x83\xd2e\xfekH\xe2\x86\x01;+\xea,a\x94\xce\xb0h<!^\xe9I\xf2\xd5u\x9c\xab^\n\xe1{B#uTb\xdb\xdc<\x00\x8d\xc6\xdc\x86)\xa5\xa9D5\xe9\x8a\xc3\xcc\xad\xa5\xd1\xef\xb3\xe7\x8cZ\xdb(\xbb\tV\xda%Kz\x04\xbe\xf1^\xe7%\x0e\xf1[|'}, {0x20, 'ext4\x00'}, {}, {0x20, 'ro\x00'}, {0x20, ':@'}, {0x20, '+'}, {0x20, ':\xf8@\xa5\xd1\xf7\x89md\x1d\x92\x8b\x12\xda\xce\x17a6\xeb`\xd8\xaa\xbc\xed\xcf\xe8\xa0>\xe9I\xe4\x87\x0f8\xfc\x02\x1d\xa5\xfd\xe9\xb4\xa6F\xd8yp7\x85\x9fqj<g\xdd\xcb\xf9\xbf\xcfk\xaax\x94\x16\xa0\xb5\x04\x14\xfc\x92*\xa2\xd1\x97\x02\xca\xa1\xeb\xd6\xe6\xe67+\x11\xff\xd1f\xe4\x1d\xbb\xaf\xb0\xfab\x94I\x92\x86{+\xb5'}, {0x20, 'GPL\x00'}, {}, {}]}, 0x1ab)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f00000005c0)="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", 0x164)
write$qrtrtun(r0, &(0x7f0000000c00)="9d8d645e53b6183d874f9e93a18dd009a09560ff682bd07dc3d28385a8f3f9e18418950d4dfe49f13a19e24320444a7d6c121741ba3dc510dba4f980bbd9a315544fa0a1622d949faba79788908354e467989e8458e6f5f76e0e4e781bfca4c928c956321dd514877569805db6602f1584a8bd051f13bad882bea021ffb5ce918a1f87f1d439ec93772d6ecaaf8891f7678f2037ccced78ea5c1aa805f1b9f5a2c3974c5124cac5e163d9b6f5b998c1c7263fa2331d1241523986dccbd4e1f32b2f521380a2ea4732132264de6d26ce40177a780df98cbf94b96d900a2dfc5c877", 0xe1)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x3c)

3.040487014s ago: executing program 4 (id=2408):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bea100000000000007010000f8ffffffb702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x3, 0x8, 0x7}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x100000, @void, @value}, 0x94)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x11, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a603f00000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r1], 0x4c}}, 0x0)

2.897758282s ago: executing program 9 (id=2409):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x1ff, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000280)='htcp\x00', 0x5)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r0, 0x0, 0x700)

2.836839753s ago: executing program 2 (id=2410):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x4400}})
write$FUSE_INIT(r1, &(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x29, 0x3, 0x200000, 0x9, 0x1, 0x3, 0xd4, 0x0, 0x0, 0x10, 0x7fffffff}}, 0x50)

2.814992967s ago: executing program 3 (id=2411):
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x1)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, 0x0, 0x0)
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)

2.744713511s ago: executing program 4 (id=2412):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0xa0000, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00'}, 0x10)
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)
r2 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r2, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f00000007c0))
r3 = socket$packet(0x11, 0x3, 0x300)
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

2.712222171s ago: executing program 9 (id=2413):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg(r0, 0x0, 0x4008000)

2.644661157s ago: executing program 0 (id=2414):
r0 = socket(0x10, 0x3, 0x0)
r1 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, 0x0, 0x0)
write(r0, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)='HGb', 0x3}], 0x1}}], 0x1, 0x44)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x20000000, 0x4000000000003, 0x2, @thr={0x0, 0x0}})

2.64418216s ago: executing program 3 (id=2415):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000140)={'full'}, 0xfffffdef)

2.62515682s ago: executing program 2 (id=2416):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r2 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
tkill(r2, 0xb)
close_range(r0, 0xffffffffffffffff, 0x0)

2.441606884s ago: executing program 9 (id=2417):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000b40d50401000000000000010902"], 0x0)
recvmsg(r0, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x2)

2.26362813s ago: executing program 2 (id=2418):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000006640)=[{{0x0, 0x0, 0x0}, 0x5d}], 0x1, 0x40000000, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d"], 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001800)=[{{&(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

2.204739327s ago: executing program 3 (id=2419):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x70, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}]}, 0x70}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f00000003c0)={0x40, r5, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x5, 0x13, [{0x30, 0x1}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x80c1}, 0x0)

2.185516519s ago: executing program 4 (id=2420):
r0 = socket$inet6(0xa, 0x80002, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2, 0x1)
faccessat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x200c8004, &(0x7f0000000280)={0xa, 0xe20, 0x0, @remote}, 0x1c)
sendto$inet6(r0, &(0x7f00000009c0)="c7cfcaaa22e10542fca5c0195350f15147657e0bfc59d383a47190db88690e6fedc3040ab5809ae02a54cd429cc3338c5afa0c9dce3f91950d1f567f358ac21154159130e88cbb6c43197813b2f23f3e442f80877490b393408142ebcfea6821f543e5ee9e27032e2b75d78f1b79f5a6bb6f0645e267770ef7e8f3a92148091217450ce8581e54223eeb6486205a209bf1fe854d211c03f8c3140fc3979d824082990d119473d20e94f253c9621fac339560ae46cb24b88bf2d01559bb658e343257b90f233b81bc5c398be3bbddb23a1e", 0xffd6, 0xc001, 0x0, 0xffffffffffffff0c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000240))
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
syz_io_uring_setup(0x7990, &(0x7f00000002c0)={0x0, 0xc05f, 0x800, 0x1, 0x77}, 0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000500)=@IORING_OP_RECVMSG={0xa, 0x72, 0x1, r1, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)=@nl, 0x80, &(0x7f0000000240)=[{0x0}, {&(0x7f00000001c0)=""/3, 0x3}, {&(0x7f0000000440)=""/102, 0x66}, {&(0x7f0000001ac0)=""/4096, 0x1000}], 0x4}, 0x0, 0x40012140})
r4 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=@dellink={0x20, 0x11, 0x101, 0x0, 0x0, {0x0, 0x0, 0x0, r6}}, 0x20}}, 0x0)
setsockopt$inet6_udp_int(r0, 0x88, 0x1, &(0x7f0000000080), 0x4)

2.117023498s ago: executing program 3 (id=2421):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

2.060917164s ago: executing program 2 (id=2422):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x0, 0x0)
open$dir(&(0x7f0000001240)='.\x00', 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYBLOB="21003300d0800000080211000000080211000001505050505050000000000000", @ANYRES8=r0], 0x40}}, 0x0)

1.917565495s ago: executing program 2 (id=2423):
sched_setaffinity(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000bc0)={0x14, 0x2, 0x6, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x2040804}, 0x2400c814)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0}, 0x18)
syz_io_uring_setup(0x3667, &(0x7f0000000540)={0x0, 0x0, 0x2, 0x0, 0x100000}, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f00000000c0), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x1)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_procs(r5, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000001c0), 0x12)

1.010957472s ago: executing program 4 (id=2424):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, 0x0, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000100)=<r1=>0x0)
capset(&(0x7f0000000140)={0x0, r1}, &(0x7f0000000180)={0x4, 0x80, 0x56b0, 0x800, 0xf, 0x300000})
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00')
read(r2, &(0x7f0000001a00)=""/177, 0xb1)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
waitid$P_PIDFD(0x3, r3, 0x0, 0x8, 0x0)

996.703653ms ago: executing program 0 (id=2425):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x1ff, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000280)='htcp\x00', 0x5)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r0, 0x0, 0x700)

953.81858ms ago: executing program 3 (id=2426):
openat(0xffffffffffffff9c, 0x0, 0x141842, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200400a1}, 0x20010084)
syz_usb_connect(0x6, 0x24, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB="50000000100003040000000000000000f2000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100766c616e000000001800028006000100010000000c000200540a00001800000008000500", @ANYRES32=r3], 0x50}, 0x1, 0xba01}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
write(r4, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040f63defa3d04"], 0x7)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
eventfd(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
r7 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r7, 0xc05c6104, &(0x7f00000002c0)={'\x00', 0x0, 0x1, 0x4, 0x0, 0x1, "f759ca14860e00", "00fbff02", "00060019", "f09749b3", ["ff954991066edcf5d7cc00", "c2248c084fcfc02000000008", '\x00', "001003000000000000000010"]})
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r8, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000008000/0x11000)=nil, 0x11000, 0x100000c)
ioctl$USBDEVFS_SETINTERFACE(r8, 0x80085504, &(0x7f0000000140)={0x0, 0x6})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
syz_clone3(0x0, 0x0)

869.510815ms ago: executing program 8 (id=2427):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000002c0)=0xa0000)
r1 = dup(r0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000040)={@my=0x0})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, &(0x7f0000000200)={&(0x7f0000000300)={{@my=0x0}, {}, 0x400, "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"}, 0x418})
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x4c, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @crypto_settings=[@NL80211_ATTR_CIPHER_SUITES_PAIRWISE={0x4}, @NL80211_ATTR_AKM_SUITES={0x10, 0x4c, [0x0, 0x0, 0x0]}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WPA_VERSIONS={0x8}]]}, 0x4c}}, 0x0)
chdir(&(0x7f00000001c0)='./file0\x00')
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/syz1\x00', 0x200002, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='blkio.throttle.write_bps_device\x00', 0x2, 0x0)
syz_open_dev$vim2m(0x0, 0x7, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r5, 0xc0045006, &(0x7f0000000180)=0x6)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000040))
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f00000013c0))
read$dsp(r5, &(0x7f0000000440)=""/171, 0xab)

837.464659ms ago: executing program 9 (id=2428):
syz_open_dev$evdev(&(0x7f0000000040), 0x20000000000000, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000004580)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000100)='./bus\x00', 0x0)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x143042, 0x83)
ftruncate(r1, 0x3000000)
statx(0xffffffffffffffff, 0x0, 0x1800, 0xffffff7f, 0x0)
sendfile(r0, r1, 0x0, 0x80000001)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})

705.681094ms ago: executing program 0 (id=2429):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg(r0, 0x0, 0x4008000)

578.958918ms ago: executing program 9 (id=2430):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, 0x0, &(0x7f0000000040)='c:::\x00', 0x0)
r2 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x0)
tkill(r2, 0xb)
close_range(r0, 0xffffffffffffffff, 0x0)

396.215738ms ago: executing program 4 (id=2431):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000140)={'full'}, 0xfffffdef)

395.223906ms ago: executing program 9 (id=2432):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, 0x0, 0x0)
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000100)=<r1=>0x0)
capset(&(0x7f0000000140)={0x0, r1}, &(0x7f0000000180)={0x4, 0x80, 0x56b0, 0x800, 0xf, 0x300000})
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00')
read(r2, &(0x7f0000001a00)=""/177, 0xb1)
socket$kcm(0x10, 0x2, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
r3 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
unshare(0x2040600)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
waitid$P_PIDFD(0x3, r4, 0x0, 0x8, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r2, 0x80045017, &(0x7f0000000080))
ioctl$CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, &(0x7f00000001c0)={'\x00', 0x0, 0x6, 0x9, 0x6, 0x6, "471d85001ff300", '\x00', "e1aa6045", "625fe46e", ["c81de44b0091fb7ce7442d42", "6d5eb3eec70d84000c00b4bd", "3433ff7f3300", "e996c9c4d21135876ea2fff7"]})
ppoll(&(0x7f0000000000)=[{r3}], 0x1, 0x0, 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, &(0x7f0000000400)={"0301bb47", 0x0, 0x0, 0x0, 0xca1c, 0x0, "b40c902e9a00", "7b7fc907", "e79112e5", "38c4da13", ["8185d3a8873d4b79a717fb97", "9b784e78fce2dbce00", "0000faffe0600000fcff3280", "547013ca3319d99bbc64fd5e"]})
r5 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000080)=@ethtool_sfeatures})
accept$phonet_pipe(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=0x10)
add_key$user(&(0x7f0000000200), 0x0, &(0x7f00000000c0), 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000200)='user\x00', &(0x7f0000000240)={'syz', 0x0}, &(0x7f00000002c0)='4', 0xba, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000600), &(0x7f00000005c0)={'syz', 0x2}, &(0x7f0000000580)="d2", 0x1, 0xffffffffffffffff)

165.772985ms ago: executing program 0 (id=2433):
syz_emit_ethernet(0x78, &(0x7f00000001c0)={@local, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x6a, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x13, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@lsrr={0x83, 0xf, 0x0, [@dev, @loopback, @loopback]}, @cipso={0x86, 0x28, 0x0, [{0x0, 0x5, "4b6cef"}, {0x1, 0xa, "8c93000000000000"}, {0x0, 0xa, "2189ea43a2149b84"}, {0x0, 0x9, "02a20948fd7406"}]}]}}, "a815"}}}}}, 0x0)

0s ago: executing program 4 (id=2434):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000006640)=[{{0x0, 0x0, 0x0}, 0x5d}], 0x1, 0x40000000, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d"], 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001800)=[{{&(0x7f0000000200)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)

kernel console output (not intermixed with test programs):

left promiscuous mode
[  469.860542][   T62] bond0 (unregistering): Released all slaves
[  469.865694][T10359] loop3: detected capacity change from 0 to 512
[  469.890383][   T62] bond1 (unregistering): Released all slaves
[  469.900979][T10359] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  469.948303][T10344] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1182'.
[  469.968834][T10359] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e128, mo2=0002]
[  469.991333][T10359] System zones: 1-12
[  469.995143][T10243] chnl_net:caif_netlink_parms(): no params data found
[  469.995530][T10359] EXT4-fs (loop3): orphan cleanup on readonly fs
[  470.007477][   T62] tipc: Disabling bearer <udp:syz2>
[  470.021682][   T62] tipc: Left network mode
[  470.030512][T10359] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1188: invalid indirect mapped block 12 (level 1)
[  470.088290][T10359] EXT4-fs (loop3): Remounting filesystem read-only
[  470.096026][T10359] EXT4-fs (loop3): 1 truncate cleaned up
[  470.159163][T10359] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  470.429836][T10243] bridge0: port 1(bridge_slave_0) entered blocking state
[  470.441159][ T5854] Bluetooth: hci1: command tx timeout
[  470.490894][T10243] bridge0: port 1(bridge_slave_0) entered disabled state
[  470.498936][   T29] kauditd_printk_skb: 21 callbacks suppressed
[  470.499408][   T29] audit: type=1326 audit(1734570091.922:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  470.570290][T10243] bridge_slave_0: entered allmulticast mode
[  470.606057][T10378] tipc: Failed to remove unknown binding: 66,1,1/0:2304773031/2304773033
[  470.614752][T10378] tipc: Failed to remove unknown binding: 66,1,1/0:2304773031/2304773033
[  470.841478][T10243] bridge_slave_0: entered promiscuous mode
[  471.091034][   T29] audit: type=1326 audit(1734570091.922:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.182449][   T29] audit: type=1326 audit(1734570091.942:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.206291][   T29] audit: type=1326 audit(1734570091.942:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.207634][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  471.229787][   T29] audit: type=1326 audit(1734570091.942:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.261842][   T29] audit: type=1326 audit(1734570091.952:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.284482][   T29] audit: type=1326 audit(1734570091.952:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.307108][   T29] audit: type=1326 audit(1734570091.952:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.361439][   T29] audit: type=1326 audit(1734570091.952:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.400982][   T29] audit: type=1326 audit(1734570091.952:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10372 comm="syz.6.1193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc768785d29 code=0x7ffc0000
[  471.602292][T10243] bridge0: port 2(bridge_slave_1) entered blocking state
[  471.609677][T10243] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.617437][T10243] bridge_slave_1: entered allmulticast mode
[  471.644130][T10243] bridge_slave_1: entered promiscuous mode
[  471.814229][T10243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  471.868003][T10243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  473.026999][T10385] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_rx_wq": -EINTR
[  473.530453][ T5854] Bluetooth: hci5: Ignoring connect complete event for invalid link type
[  473.599126][T10408] netlink: 96 bytes leftover after parsing attributes in process `syz.5.1203'.
[  473.898611][   T62] hsr_slave_0: left promiscuous mode
[  473.972433][   T62] hsr_slave_1: left promiscuous mode
[  473.989931][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  474.041638][   T62] batman_adv: batadv0: Removing interface: batadv_slave_0
[  474.094308][   T62] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  474.116531][T10435] loop3: detected capacity change from 0 to 64
[  474.136584][   T62] batman_adv: batadv0: Removing interface: batadv_slave_1
[  474.169790][T10433] loop5: detected capacity change from 0 to 2048
[  474.223660][T10433] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  474.299456][   T62] veth1_macvtap: left promiscuous mode
[  474.577060][   T62] veth0_macvtap: left promiscuous mode
[  474.759564][   T62] veth1_vlan: left promiscuous mode
[  474.800870][   T62] veth0_vlan: left promiscuous mode
[  477.574873][T10474] fuse: Bad value for 'group_id'
[  477.659416][T10474] fuse: Bad value for 'group_id'
[  477.929395][   T62] team0 (unregistering): Port device team_slave_1 removed
[  477.951072][ T5926] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  477.979058][   T62] team0 (unregistering): Port device team_slave_0 removed
[  478.116093][ T5926] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  478.130894][ T5926] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.151534][ T5926] usb 4-1: config 0 descriptor??
[  478.177080][ T5926] cp210x 4-1:0.0: cp210x converter detected
[  478.344190][T10243] team0: Port device team_slave_0 added
[  478.390235][T10453] netdevsim netdevsim6: loading /lib/firmware/. failed with error -22
[  478.409739][T10464] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1221'.
[  478.433389][T10453] netdevsim netdevsim6: Direct firmware load for . failed with error -22
[  478.442184][T10453] netdevsim netdevsim6: Falling back to sysfs fallback for: .
[  478.502882][T10243] team0: Port device team_slave_1 added
[  478.544596][T10488] loop6: detected capacity change from 0 to 256
[  478.551937][T10488] exfat: Deprecated parameter 'namecase'
[  478.609148][T10490] loop5: detected capacity change from 0 to 2048
[  478.620641][T10488] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  478.651640][ T5926] usb 4-1: cp210x converter now attached to ttyUSB0
[  478.706330][T10490] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  478.706422][T10243] batman_adv: batadv0: Adding interface: batadv_slave_0
[  478.772449][T10243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  478.866950][ T5926] usb 4-1: USB disconnect, device number 4
[  478.935449][ T5926] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  478.943542][T10243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  478.988804][T10243] batman_adv: batadv0: Adding interface: batadv_slave_1
[  479.006715][ T5926] cp210x 4-1:0.0: device disconnected
[  479.076337][T10243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  479.360897][T10243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  480.323766][T10243] hsr_slave_0: entered promiscuous mode
[  480.353326][T10511] fuse: Bad value for 'user_id'
[  480.376663][T10243] hsr_slave_1: entered promiscuous mode
[  480.385833][T10511] fuse: Bad value for 'user_id'
[  480.447260][T10243] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  480.470568][T10243] Cannot create hsr debugfs directory
[  480.497414][T10517] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1238'.
[  480.717106][   T62] IPVS: stop unused estimator thread 0...
[  481.965599][T10243] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  482.057583][T10551] fuse: Bad value for 'user_id'
[  482.062901][T10551] fuse: Bad value for 'user_id'
[  482.375048][T10557] loop8: detected capacity change from 0 to 64
[  482.530873][T10243] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  482.968098][T10243] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  483.035343][T10243] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  483.983680][T10243] 8021q: adding VLAN 0 to HW filter on device bond0
[  484.090523][T10243] 8021q: adding VLAN 0 to HW filter on device team0
[  484.157380][ T6624] bridge0: port 1(bridge_slave_0) entered blocking state
[  484.164549][ T6624] bridge0: port 1(bridge_slave_0) entered forwarding state
[  484.228218][ T6624] bridge0: port 2(bridge_slave_1) entered blocking state
[  484.235433][ T6624] bridge0: port 2(bridge_slave_1) entered forwarding state
[  484.347583][T10591] fuse: Bad value for 'user_id'
[  484.431159][T10591] fuse: Bad value for 'user_id'
[  485.336229][T10243] 8021q: adding VLAN 0 to HW filter on device batadv0
[  485.385188][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  485.385215][   T29] audit: type=1326 audit(1734570106.802:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10592 comm="syz.6.1264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc768785d29 code=0x7fc00000
[  488.261885][ T5854] Bluetooth: hci3: command 0x0406 tx timeout
[  488.571632][T10640] loop6: detected capacity change from 0 to 128
[  488.653890][T10640] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  488.713085][T10643] 9pnet_fd: Insufficient options for proto=fd
[  488.812661][T10243] veth0_vlan: entered promiscuous mode
[  488.874470][T10640] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  488.876234][T10243] veth1_vlan: entered promiscuous mode
[  488.978143][T10243] veth0_macvtap: entered promiscuous mode
[  489.000334][T10243] veth1_macvtap: entered promiscuous mode
[  489.164105][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.566121][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.589728][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.647791][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.680333][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.691877][   T29] audit: type=1326 audit(1734570111.102:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  489.714557][    C0] vkms_vblank_simulate: vblank timer overrun
[  489.751034][   T29] audit: type=1326 audit(1734570111.152:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  489.781875][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.800819][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.815945][   T29] audit: type=1326 audit(1734570111.162:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  489.817699][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.863474][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  489.884578][   T29] audit: type=1326 audit(1734570111.162:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  489.890362][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  489.940496][T10243] batman_adv: batadv0: Interface activated: batadv_slave_0
[  489.955001][   T29] audit: type=1326 audit(1734570111.162:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  490.068794][   T29] audit: type=1326 audit(1734570111.162:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  490.139207][   T29] audit: type=1326 audit(1734570111.162:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  490.141926][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.163034][   T29] audit: type=1326 audit(1734570111.202:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  490.195827][   T29] audit: type=1326 audit(1734570111.202:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10658 comm="syz.8.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa09c585d29 code=0x7ffc0000
[  490.218275][    C0] vkms_vblank_simulate: vblank timer overrun
[  490.252121][T10665] loop6: detected capacity change from 0 to 256
[  490.266201][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.295265][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.313833][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.336635][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.363821][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.385552][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.408592][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.429921][T10243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  490.478572][T10243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  490.512513][T10243] batman_adv: batadv0: Interface activated: batadv_slave_1
[  490.668891][T10243] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  490.679626][T10243] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  490.688508][T10243] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  490.697353][T10243] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  490.731488][T10675] loop5: detected capacity change from 0 to 512
[  490.933495][T10675] __quota_error: 8 callbacks suppressed
[  490.933523][T10675] Quota error (device loop5): v2_read_file_info: Can't read info structure
[  490.971205][T10675] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  491.012226][T10675] EXT4-fs (loop5): mount failed
[  492.232311][T10675] loop5: detected capacity change from 0 to 2048
[  492.276689][ T3470] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  492.290927][ T3470] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  492.537991][T10675]  loop5: p1 < > p2 p3 < p5 >
[  492.548024][T10675] loop5: partition table partially beyond EOD, truncated
[  492.571194][T10675] loop5: p1 start 4278190080 is beyond EOD, truncated
[  492.581026][T10675] loop5: p2 start 16908288 is beyond EOD, truncated
[  492.611383][T10675] loop5: p5 start 16908288 is beyond EOD, truncated
[  492.726077][ T6626] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  492.734263][ T6626] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  494.450042][T10741] loop3: detected capacity change from 0 to 512
[  494.604205][T10741] Quota error (device loop3): v2_read_file_info: Can't read info structure
[  494.638746][T10741] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  494.684395][T10741] EXT4-fs (loop3): mount failed
[  494.726995][ T5927] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  494.834044][T10741] loop3: detected capacity change from 0 to 2048
[  494.952091][T10741]  loop3: p1 < > p2 p3 < p5 >
[  494.956916][T10741] loop3: partition table partially beyond EOD, truncated
[  495.043252][T10741] loop3: p1 start 4278190080 is beyond EOD, truncated
[  495.051215][T10741] loop3: p2 start 16908288 is beyond EOD, truncated
[  495.054202][ T5927] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  495.105379][ T5927] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  495.158890][T10760] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1309'.
[  495.905139][ T5927] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  495.918643][ T5927] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  495.928090][ T5927] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  495.944579][ T5927] usb 7-1: config 0 descriptor??
[  495.953901][T10741] loop3: p5 start 16908288 is beyond EOD, truncated
[  496.477532][ T5927] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  496.526225][ T5927] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  496.560832][ T5927] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  496.586158][T10777] loop9: detected capacity change from 0 to 512
[  496.598706][ T5927] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  496.628001][ T5927] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  496.639614][T10771] xt_recent: Unsupported userspace flags (00000042)
[  496.645870][ T5927] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  496.658510][T10777] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  496.662330][ T5927] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  496.710511][ T5927] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  496.751992][T10777] EXT4-fs (loop9): 1 truncate cleaned up
[  496.758782][T10777] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  498.041416][ T5927] usb 7-1: USB disconnect, device number 5
[  498.419656][T10243] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  499.234814][T10809] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1324'.
[  500.438906][T10820] loop8: detected capacity change from 0 to 256
[  500.448483][T10820] FAT-fs (loop8): bogus sectors per cluster 30
[  500.475339][T10820] FAT-fs (loop8): Can't find a valid FAT filesystem
[  500.994205][ T5927] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  501.002375][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  501.169466][ T5927] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  501.207748][ T5927] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  501.259961][ T5927] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  501.307482][ T5927] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  501.371206][ T5927] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  501.453232][ T5927] usb 9-1: config 0 descriptor??
[  501.873104][ T5927] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  501.880535][ T5927] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  501.944122][ T5927] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  501.959850][ T5927] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  501.967597][ T5927] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  501.977815][ T5927] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  501.999816][ T5927] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving
[  502.025777][ T5927] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  503.045622][T10857] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1339'.
[  503.974249][    T8] usb 9-1: USB disconnect, device number 2
[  505.525361][T10893] fuse: Unknown parameter 'use00000000000000000000'
[  505.711494][T10898] loop8: detected capacity change from 0 to 512
[  506.010882][T10898] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  506.301149][T10898] EXT4-fs (loop8): 1 truncate cleaned up
[  506.307788][T10898] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  506.658676][T10912] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1355'.
[  506.671246][ T5927] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  506.894657][ T5927] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  507.188566][ T5927] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  507.259784][ T5927] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  507.333592][T10916] loop9: detected capacity change from 0 to 64
[  507.380986][ T5927] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  507.390095][ T5927] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  507.472260][ T5927] usb 7-1: config 0 descriptor??
[  508.317558][ T5927] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  508.330792][ T5927] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  508.339975][ T5927] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  508.347671][ T5927] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  508.355554][ T5927] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  508.363176][ T5927] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  508.371562][ T5927] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  508.455507][ T5927] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  508.810967][   T51] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  508.902172][ T9226] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.973160][   T51] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  508.993853][   T51] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  509.028339][   T51] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  509.054525][   T51] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  509.075309][   T51] usb 6-1: SerialNumber: syz
[  509.551747][T10949] loop3: detected capacity change from 0 to 512
[  509.591579][   T51] usb 6-1: 0:2 : does not exist
[  509.596790][   T51] usb 6-1: unit 5 not found!
[  509.637987][T10949] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.1369: casefold flag without casefold feature
[  509.658687][   T51] usb 6-1: USB disconnect, device number 6
[  509.680893][T10949] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1369: couldn't read orphan inode 15 (err -117)
[  509.746404][T10949] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  510.482433][ T5967] usb 7-1: USB disconnect, device number 6
[  510.861988][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.348487][T10973] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1372'.
[  513.791389][T10988] tipc: Failed to remove unknown binding: 66,1,1/0:3133343076/3133343078
[  513.799964][T10988] tipc: Failed to remove unknown binding: 66,1,1/0:3133343076/3133343078
[  515.052799][T11005] overlayfs: failed to clone upperpath
[  516.366737][ T5849] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  516.418672][T11015] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1389'.
[  516.577877][ T5849] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  516.611813][ T5849] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  516.640876][ T5849] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  516.683400][ T5849] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  516.706187][ T5849] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  516.726549][ T5849] usb 10-1: config 0 descriptor??
[  517.902150][T11038] tipc: Failed to remove unknown binding: 66,1,1/0:480402298/480402300
[  517.910993][T11038] tipc: Failed to remove unknown binding: 66,1,1/0:480402298/480402300
[  518.062738][ T5849] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  518.070491][ T5849] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  518.111142][ T5849] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  518.131287][ T5849] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  518.138837][ T5849] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  518.150890][ T5849] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  518.163905][ T5849] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  518.280167][ T5849] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.9-1/input0
[  518.348566][T11045] fuse: Unknown parameter 'group_i00000000000000000000'
[  519.640950][ T5849] usb 10-1: reset high-speed USB device number 2 using dummy_hcd
[  519.870931][T11058] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1403'.
[  520.542999][   T51] usb 10-1: USB disconnect, device number 2
[  520.823790][T11073] loop9: detected capacity change from 0 to 256
[  521.232970][T11082] loop8: detected capacity change from 0 to 512
[  521.284781][T11082] UDF-fs: warning (device loop8): udf_load_vrs: No VRS found
[  521.292772][T11082] UDF-fs: Scanning with blocksize 512 failed
[  521.334800][T11082] UDF-fs: warning (device loop8): udf_load_vrs: No VRS found
[  521.373479][T11082] UDF-fs: Scanning with blocksize 1024 failed
[  521.411973][T11082] UDF-fs: warning (device loop8): udf_load_vrs: No VRS found
[  521.447729][T11082] UDF-fs: Scanning with blocksize 2048 failed
[  522.974628][T11082] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  523.010503][T11082] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  523.701009][ T5849] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  523.894821][ T5849] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  523.947101][ T5849] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  523.981679][T11095] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1417'.
[  524.018671][ T5849] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  524.060763][ T5849] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  524.080751][ T5849] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  524.426341][ T5849] usb 7-1: config 0 descriptor??
[  524.456771][T11107] loop5: detected capacity change from 0 to 128
[  525.109121][T11107] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  525.296364][T11112] netlink: zone id is out of range
[  525.301938][T11112] netlink: zone id is out of range
[  525.307370][T11112] netlink: zone id is out of range
[  525.313472][T11112] netlink: zone id is out of range
[  525.319200][T11112] netlink: zone id is out of range
[  525.324818][T11112] netlink: zone id is out of range
[  525.330191][T11112] netlink: zone id is out of range
[  525.335720][T11112] netlink: zone id is out of range
[  525.366354][T11107] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  525.367323][ T5849] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  525.380084][T11112] netlink: del zone limit has 8 unknown bytes
[  525.386114][ T5849] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  525.397952][ T5849] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  525.405695][ T5849] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  525.413792][ T5849] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  525.421871][ T5849] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  525.429796][ T5849] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  525.489044][ T5849] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  528.547784][T11141] loop6: detected capacity change from 0 to 512
[  528.598348][T11141] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  528.640951][T11141] UDF-fs: Scanning with blocksize 512 failed
[  528.683565][T11141] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  528.722445][ T5967] usb 7-1: USB disconnect, device number 7
[  528.742089][T11141] UDF-fs: Scanning with blocksize 1024 failed
[  528.754051][T11141] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  528.770999][T11141] UDF-fs: Scanning with blocksize 2048 failed
[  528.800478][T11141] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  528.816328][T11141] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  529.046884][T11148] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1435'.
[  529.424782][T11159] netlink: zone id is out of range
[  529.447423][T11157] batadv0: entered promiscuous mode
[  529.477572][T11157] batadv_slave_0: entered promiscuous mode
[  529.511274][T11157] batadv_slave_0: left promiscuous mode
[  529.524104][T11162] loop8: detected capacity change from 0 to 128
[  529.538679][T11162] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  529.549101][T11157] batadv0: left promiscuous mode
[  529.565540][T11162] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  532.113084][T11158] loop6: detected capacity change from 0 to 32768
[  532.266438][T11158] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  532.336822][T11188] @: renamed from vlan0 (while UP)
[  532.611772][T11158] ocfs2: Unmounting device (7,6) on (node local)
[  533.067418][T11182] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  533.087921][T11182] batman_adv: batadv0: Adding interface: gretap1
[  533.120946][T11182] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  533.201186][T11182] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  533.398432][T11198] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1452'.
[  533.445929][T11201] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1451'.
[  533.530955][T11201] team_slave_0: entered promiscuous mode
[  533.536927][T11201] team_slave_1: entered promiscuous mode
[  533.552970][T11201] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  534.343520][T11201] team_slave_0: left promiscuous mode
[  534.349094][T11201] team_slave_1: left promiscuous mode
[  534.479988][T11213] loop8: detected capacity change from 0 to 128
[  534.511653][T11213] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  534.544060][T11213] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  536.128239][T11234] loop3: detected capacity change from 0 to 512
[  537.021457][T11234] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[  537.028917][T11234] UDF-fs: Scanning with blocksize 512 failed
[  537.047703][T11234] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[  537.130885][T11234] UDF-fs: Scanning with blocksize 1024 failed
[  537.160167][T11234] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found
[  537.324046][T11234] UDF-fs: Scanning with blocksize 2048 failed
[  537.355785][T11234] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  537.542509][T11234] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  538.004101][ T5834] Bluetooth: unknown link type 29
[  538.009261][ T5834] Bluetooth: hci1: connection err: -111
[  538.020619][T11255] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1472'.
[  540.749122][T11275] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  540.757101][T11275] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  540.764380][T11275] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  540.770534][T11275] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  540.777396][T11275] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  540.783509][T11275] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  540.790452][T11275] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  541.256506][T11296] xt_CT: You must specify a L4 protocol and not use inversions on it
[  542.760786][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout
[  542.830859][ T5141] Bluetooth: hci3: command 0x0406 tx timeout
[  542.837067][ T5141] Bluetooth: hci5: command 0x0c1a tx timeout
[  542.843272][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout
[  543.041404][T11309] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1488'.
[  543.294084][T11317] loop8: detected capacity change from 0 to 512
[  543.333975][T11317] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  543.561661][T11317] EXT4-fs (loop8): 1 truncate cleaned up
[  543.568675][T11317] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  543.604585][T11325] overlayfs: failed to clone upperpath
[  545.268745][T11307] Bluetooth: hci1: command 0x0c1a tx timeout
[  545.740781][ T5854] Bluetooth: hci3: command 0x0406 tx timeout
[  546.291795][ T9226] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.791744][ T5854] Bluetooth: hci1: command 0x0c1a tx timeout
[  548.245681][T11362] loop3: detected capacity change from 0 to 512
[  548.288219][T11362] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  548.485563][T11362] EXT4-fs (loop3): 1 truncate cleaned up
[  548.511741][T11362] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  549.292687][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.367253][T11374] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1510'.
[  551.840986][    T8] usb 9-1: new low-speed USB device number 3 using dummy_hcd
[  552.012965][    T8] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  552.368546][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  552.409722][    T8] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  552.461809][ T5854] Bluetooth: hci1: unexpected event for opcode 0x041c
[  552.494648][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  552.526395][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  552.548903][    T8] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  552.558726][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  552.591470][    T8] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  552.610881][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  552.633836][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  552.653250][    T8] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[  552.668558][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  552.701148][    T8] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  552.743528][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  552.818680][    T8] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  552.923038][    T8] usb 9-1: string descriptor 0 read error: -22
[  552.930994][    T8] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  552.994030][    T8] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  553.079412][    T8] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  553.169735][   T29] audit: type=1326 audit(1734570174.592:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  553.299411][    T8] usb 9-1: USB disconnect, device number 3
[  553.343309][   T29] audit: type=1326 audit(1734570174.632:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  553.499592][   T29] audit: type=1326 audit(1734570174.632:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  553.659135][   T29] audit: type=1326 audit(1734570174.632:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  553.822221][   T29] audit: type=1326 audit(1734570174.632:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  553.890244][T11429] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  553.989787][   T29] audit: type=1326 audit(1734570174.632:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  554.077789][T11429] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  554.137826][   T29] audit: type=1326 audit(1734570174.662:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  554.167442][T11429] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  554.259339][T11429] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  554.265696][   T29] audit: type=1326 audit(1734570174.662:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  554.375759][   T29] audit: type=1326 audit(1734570174.662:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  554.411656][T11307] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  554.439313][T11307] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  554.450034][T11307] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  554.468475][T11307] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  554.476323][T11307] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  554.483895][T11307] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  554.565770][   T29] audit: type=1326 audit(1734570174.662:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.0.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  555.003545][T11438] chnl_net:caif_netlink_parms(): no params data found
[  556.510997][T11336] sched: DL replenish lagged too much
[  556.531277][T11307] Bluetooth: hci4: command 0x0c1a tx timeout
[  556.537432][T11307] Bluetooth: hci5: command 0x0c1a tx timeout
[  556.543812][T11307] Bluetooth: hci3: command 0x0406 tx timeout
[  556.549852][T11307] Bluetooth: hci1: command 0x0c1a tx timeout
[  556.626335][ T5141] Bluetooth: hci2: command tx timeout
[  556.662068][T11438] bridge0: port 1(bridge_slave_0) entered blocking state
[  556.669189][T11438] bridge0: port 1(bridge_slave_0) entered disabled state
[  556.688344][T11438] bridge_slave_0: entered allmulticast mode
[  556.700141][T11438] bridge_slave_0: entered promiscuous mode
[  556.710473][T11438] bridge0: port 2(bridge_slave_1) entered blocking state
[  556.727322][T11438] bridge0: port 2(bridge_slave_1) entered disabled state
[  556.750336][T11438] bridge_slave_1: entered allmulticast mode
[  556.760974][T11438] bridge_slave_1: entered promiscuous mode
[  557.018458][T11438] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  557.033694][T11438] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  557.159579][T11438] team0: Port device team_slave_0 added
[  557.185898][T11474] loop8: detected capacity change from 0 to 64
[  557.255711][T11438] team0: Port device team_slave_1 added
[  557.261894][T11307] Bluetooth: hci3: unexpected event for opcode 0x1001
[  557.419955][T11438] batman_adv: batadv0: Adding interface: batadv_slave_0
[  557.465210][T11438] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  557.649738][T11438] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  557.732684][T11438] batman_adv: batadv0: Adding interface: batadv_slave_1
[  557.788564][T11438] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  557.920046][T11438] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  558.671671][T11307] Bluetooth: hci2: command tx timeout
[  559.073628][T11438] hsr_slave_0: entered promiscuous mode
[  559.105272][T11438] hsr_slave_1: entered promiscuous mode
[  559.134287][T11438] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  559.166404][T11438] Cannot create hsr debugfs directory
[  559.335580][   T51] IPVS: starting estimator thread 0...
[  559.451015][T11488] IPVS: using max 26 ests per chain, 62400 per kthread
[  560.759313][T11307] Bluetooth: hci2: command tx timeout
[  562.704136][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  562.831354][T11307] Bluetooth: hci2: command tx timeout
[  562.872964][T11512] netlink: 'syz.8.1551': attribute type 10 has an invalid length.
[  563.233448][T11512] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  563.337474][T11517] bridge_slave_0: left allmulticast mode
[  563.381565][T11517] bridge_slave_0: left promiscuous mode
[  563.413798][T11517] bridge0: port 1(bridge_slave_0) entered disabled state
[  563.493693][T11517] bridge_slave_1: left allmulticast mode
[  563.522857][T11517] bridge_slave_1: left promiscuous mode
[  563.570231][T11517] bridge0: port 2(bridge_slave_1) entered disabled state
[  563.672157][T11517] bond0: (slave bond_slave_0): Releasing backup interface
[  563.725291][ T5141] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  563.740510][ T5141] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  563.751650][ T5141] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  563.760038][ T5141] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  563.768130][ T5141] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  563.775956][ T5141] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  563.849513][T11517] bond0: (slave bond_slave_1): Releasing backup interface
[  563.952955][T11517] team0: Port device team_slave_0 removed
[  564.137364][T11517] team0: Port device team_slave_1 removed
[  564.168726][T11517] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  564.271368][T11517] batman_adv: batadv0: Removing interface: batadv_slave_0
[  564.296605][T11517] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  564.327896][T11517] batman_adv: batadv0: Removing interface: batadv_slave_1
[  564.363193][T11517] bond0: (slave netdevsim0): Releasing backup interface
[  564.387167][T11517] batman_adv: batadv0: Removing interface: gretap1
[  564.824788][T11544] xt_recent: Unsupported userspace flags (00000042)
[  564.940883][ T5967] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  565.163176][ T5967] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  565.172306][ T5967] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 4
[  565.210369][ T5967] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  565.265616][ T5967] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  565.285515][ T5967] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  565.314398][ T5967] usb 4-1: Product: syz
[  565.320187][ T5967] usb 4-1: Manufacturer: syz
[  565.340154][ T5967] usb 4-1: SerialNumber: syz
[  565.557989][ T5967] usb 4-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  565.596092][ T5967] usb 4-1: found format II with max.bitrate = 0, frame size=0
[  565.638870][ T5967] usb 4-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  565.689605][ T5967] usb 4-1: found format II with max.bitrate = 0, frame size=0
[  565.765287][ T5967] usb 4-1: USB disconnect, device number 5
[  565.873134][ T5141] Bluetooth: hci7: command tx timeout
[  566.525496][T11527] chnl_net:caif_netlink_parms(): no params data found
[  567.200900][T11438] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  567.241795][T11591] loop3: detected capacity change from 0 to 256
[  567.253149][T11438] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  567.406310][T11438] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  567.586446][T11527] bridge0: port 1(bridge_slave_0) entered blocking state
[  567.811332][T11527] bridge0: port 1(bridge_slave_0) entered disabled state
[  567.834567][T11527] bridge_slave_0: entered allmulticast mode
[  567.849158][T11527] bridge_slave_0: entered promiscuous mode
[  567.910068][T11607] fuse: Invalid rootmode
[  567.951143][ T5141] Bluetooth: hci7: command tx timeout
[  568.574209][T11438] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  568.836326][T11606] bond0: (slave bond_slave_0): Releasing backup interface
[  568.961739][T11606] bond0: (slave bond_slave_1): Releasing backup interface
[  569.098491][T11606] team0: Port device team_slave_0 removed
[  569.131713][T11606] team0: Port device team_slave_1 removed
[  569.138422][T11606] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  569.171302][T11606] batman_adv: batadv0: Removing interface: batadv_slave_0
[  569.180152][T11606] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  569.197454][T11606] batman_adv: batadv0: Removing interface: batadv_slave_1
[  569.252029][T11606] team0: Port device netdevsim0 removed
[  569.291353][T11527] bridge0: port 2(bridge_slave_1) entered blocking state
[  569.330808][T11527] bridge0: port 2(bridge_slave_1) entered disabled state
[  569.338548][T11527] bridge_slave_1: entered allmulticast mode
[  569.359313][T11527] bridge_slave_1: entered promiscuous mode
[  569.410036][T11609] team0: Port device wg2 added
[  569.697220][ T3580] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  569.792297][T11527] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  569.849634][T11527] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  569.936293][T11641] fuse: Unknown parameter '0x0000000000000003'
[  569.972775][ T3580] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  570.031395][ T5141] Bluetooth: hci7: command tx timeout
[  570.543157][ T3580] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  570.667751][T11527] team0: Port device team_slave_0 added
[  570.729938][T11527] team0: Port device team_slave_1 added
[  571.907158][ T3580] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  572.029483][T11438] 8021q: adding VLAN 0 to HW filter on device bond0
[  572.112756][ T5141] Bluetooth: hci7: command tx timeout
[  572.122858][T11527] batman_adv: batadv0: Adding interface: batadv_slave_0
[  572.129844][T11527] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  572.198842][T11689] fuse: Unknown parameter '0x0000000000000003'
[  572.217987][T11527] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  572.260174][T11527] batman_adv: batadv0: Adding interface: batadv_slave_1
[  572.278811][T11527] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  572.321789][T11692] fuse: Invalid rootmode
[  572.360792][T11527] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  572.433321][T11438] 8021q: adding VLAN 0 to HW filter on device team0
[  572.564846][T11527] hsr_slave_0: entered promiscuous mode
[  572.576720][T11527] hsr_slave_1: entered promiscuous mode
[  572.604626][T11527] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  572.631150][T11527] Cannot create hsr debugfs directory
[  572.674665][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[  572.681833][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[  573.083584][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  573.090804][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  573.258358][ T3580] bridge_slave_1: left allmulticast mode
[  573.284852][ T3580] bridge_slave_1: left promiscuous mode
[  573.345735][ T3580] bridge0: port 2(bridge_slave_1) entered disabled state
[  573.369165][T11718] loop8: detected capacity change from 0 to 512
[  573.432692][ T3580] bridge_slave_0: left allmulticast mode
[  573.462162][ T3580] bridge_slave_0: left promiscuous mode
[  573.485313][ T3580] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.511097][T11718] EXT4-fs error (device loop8): ext4_orphan_get:1389: inode #15: comm syz.8.1600: casefold flag without casefold feature
[  573.604330][T11718] EXT4-fs error (device loop8): ext4_orphan_get:1394: comm syz.8.1600: couldn't read orphan inode 15 (err -117)
[  573.638557][T11718] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  575.384358][ T9226] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.602970][T11746] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1605'.
[  575.743952][T11749] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1605'.
[  575.865096][ T3580] batman_adv: batadv0: Removing interface: gretap1
[  577.035129][ T3580] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  577.085077][ T3580] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  577.127303][ T3580] bond0 (unregistering): Released all slaves
[  577.604963][T11777] xt_recent: Unsupported userspace flags (00000042)
[  578.105399][T11799] loop3: detected capacity change from 0 to 512
[  578.180556][T11799] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.1614: casefold flag without casefold feature
[  578.205123][T11799] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1614: couldn't read orphan inode 15 (err -117)
[  578.239994][T11799] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.650447][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.713763][ T3580] hsr_slave_0: left promiscuous mode
[  579.720253][ T3580] hsr_slave_1: left promiscuous mode
[  579.729571][ T3580] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  579.746991][ T3580] batman_adv: batadv0: Removing interface: batadv_slave_0
[  579.769849][ T3580] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  579.788545][ T3580] batman_adv: batadv0: Removing interface: batadv_slave_1
[  579.866706][ T3580] veth1_macvtap: left promiscuous mode
[  579.902456][ T3580] veth0_macvtap: left promiscuous mode
[  579.908578][ T3580] veth1_vlan: left promiscuous mode
[  579.920179][ T3580] veth0_vlan: left promiscuous mode
[  580.889131][ T5141] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  580.901119][ T5141] Bluetooth: hci3: SCO packet for unknown connection handle 201
[  582.223941][T11877] tipc: Failed to remove unknown binding: 66,1,1/0:1764483631/1764483633
[  582.400933][T11877] tipc: Failed to remove unknown binding: 66,1,1/0:1764483631/1764483633
[  582.831312][T11885] loop9: detected capacity change from 0 to 256
[  583.651726][ T3580] team0 (unregistering): Port device team_slave_1 removed
[  583.771956][ T3580] team0 (unregistering): Port device team_slave_0 removed
[  585.679891][T11906] xt_CT: You must specify a L4 protocol and not use inversions on it
[  586.543362][T11921] xt_recent: Unsupported userspace flags (00000042)
[  586.601403][T11438] 8021q: adding VLAN 0 to HW filter on device batadv0
[  588.095339][T11944] fuse: Unknown parameter 'fd0x0000000000000003'
[  588.117365][T11942] loop3: detected capacity change from 0 to 2048
[  588.169254][T11527] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  588.232339][T11942]  loop3: p1 < > p2 p3 < p5 >
[  588.237821][T11942] loop3: partition table partially beyond EOD, truncated
[  588.249192][T11942] loop3: p1 start 4278190080 is beyond EOD, truncated
[  588.293524][T11527] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  588.321146][T11942] loop3: p2 start 16908288 is beyond EOD, truncated
[  588.623973][T11942] loop3: p5 start 16908288 is beyond EOD, truncated
[  588.844481][T11527] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  589.037006][T11955] loop9: detected capacity change from 0 to 512
[  589.125744][T11527] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  589.141165][T11955] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  589.347065][ T3580] IPVS: stop unused estimator thread 0...
[  589.365299][T11955] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e128, mo2=0002]
[  589.407810][T11955] System zones: 1-12
[  589.412376][T11955] EXT4-fs (loop9): orphan cleanup on readonly fs
[  590.147276][T11955] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.1646: invalid indirect mapped block 12 (level 1)
[  590.275238][T11438] veth0_vlan: entered promiscuous mode
[  590.340272][T11955] EXT4-fs (loop9): Remounting filesystem read-only
[  590.347942][T11955] EXT4-fs (loop9): 1 truncate cleaned up
[  590.370135][T11527] 8021q: adding VLAN 0 to HW filter on device bond0
[  590.408540][T11438] veth1_vlan: entered promiscuous mode
[  590.427787][T11955] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  590.586772][T11438] veth0_macvtap: entered promiscuous mode
[  590.625492][T11527] 8021q: adding VLAN 0 to HW filter on device team0
[  590.675595][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[  590.682819][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[  590.794672][T11438] veth1_macvtap: entered promiscuous mode
[  590.827617][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[  590.834818][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[  590.890214][T11438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  590.933441][T11438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  590.962480][T11975] tipc: Failed to remove unknown binding: 66,1,1/0:3667521221/3667521223
[  590.992523][T11438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  591.041789][T11438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  591.061274][T11975] tipc: Failed to remove unknown binding: 66,1,1/0:3667521221/3667521223
[  591.111749][T11438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  591.151357][T11438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  591.197867][T11438] batman_adv: batadv0: Interface activated: batadv_slave_0
[  591.275005][T11438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  591.350869][T11438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  591.383618][T11438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  591.435193][T11438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  591.471391][T11438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  591.528370][T11438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  591.582118][T11438] batman_adv: batadv0: Interface activated: batadv_slave_1
[  591.593249][T11527] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  591.629461][T11527] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  591.656643][T11438] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  591.680379][T11438] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  591.730903][T11438] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  591.744014][T11438] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  592.861768][T11991] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  592.869064][T11991] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  592.875240][T11991] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  592.881380][T11991] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  592.887316][T11991] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  592.979378][T11991] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  593.071726][T11991] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  593.077695][T11991] Bluetooth: hci7: Opcode 0x0406 failed: -4
[  593.161399][T11991] Bluetooth: hci7: Opcode 0x0406 failed: -4
[  593.830839][ T3580] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  593.902842][ T3580] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  594.574533][T11527] 8021q: adding VLAN 0 to HW filter on device batadv0
[  594.619635][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  594.663877][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  594.826582][T11527] veth0_vlan: entered promiscuous mode
[  594.888745][T11527] veth1_vlan: entered promiscuous mode
[  594.911352][T11307] Bluetooth: hci2: command 0x0c1a tx timeout
[  594.917578][T11307] Bluetooth: hci1: command 0x0c1a tx timeout
[  594.924313][ T5141] Bluetooth: hci3: command 0x0406 tx timeout
[  594.930371][ T5141] Bluetooth: hci5: command 0x0c1a tx timeout
[  595.137930][T11527] veth0_macvtap: entered promiscuous mode
[  595.153330][ T5854] Bluetooth: hci7: command 0x0c1a tx timeout
[  595.499060][T11527] veth1_macvtap: entered promiscuous mode
[  595.847929][T11527] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  595.930487][T11527] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  596.018366][T11527] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  596.070150][T11527] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  596.210789][T11527] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  596.240764][T11527] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  596.271036][T11527] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  596.310757][T11527] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  596.362131][T11527] batman_adv: batadv0: Interface activated: batadv_slave_0
[  596.372476][T11527] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.057376][T11527] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.140627][ T5854] Bluetooth: hci2: command 0x0c1a tx timeout
[  597.177706][T11527] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.188305][T11527] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.198228][T11527] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.208759][T11527] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.218696][T11527] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.229194][T11527] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.238118][T11307] Bluetooth: hci7: command 0x0c1a tx timeout
[  597.240284][T11527] batman_adv: batadv0: Interface activated: batadv_slave_1
[  597.256127][T11527] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  597.265457][T11527] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  597.275253][T11527] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  597.284064][T11527] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  597.394540][T10243] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  597.514509][T12043] xt_CT: You must specify a L4 protocol and not use inversions on it
[  597.975957][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.058931][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.857677][ T3580] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  598.934300][ T3580] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  599.694809][T11307] Bluetooth: hci2: command 0x0c1a tx timeout
[  599.701120][T11307] Bluetooth: hci7: command 0x0c1a tx timeout
[  600.394442][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  600.394468][   T29] audit: type=1326 audit(1734570221.472:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12057 comm="syz.9.1663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40fb785d29 code=0x7ffc0000
[  600.700480][   T29] audit: type=1326 audit(1734570221.472:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12057 comm="syz.9.1663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40fb785d29 code=0x7ffc0000
[  601.472112][T12086] loop9: detected capacity change from 0 to 512
[  601.510870][T12086] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  601.681020][T12086] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e128, mo2=0002]
[  601.689431][T12086] System zones: 1-12
[  601.694014][T12086] EXT4-fs (loop9): orphan cleanup on readonly fs
[  601.761111][T12086] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.1671: invalid indirect mapped block 12 (level 1)
[  601.832699][T12098] fuse: Unknown parameter '0x0000000000000003'
[  601.847595][T12086] EXT4-fs (loop9): Remounting filesystem read-only
[  601.856190][T12086] EXT4-fs (loop9): 1 truncate cleaned up
[  601.870621][T12086] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  603.058572][ T5854] Bluetooth: hci1: command 0x0c1a tx timeout
[  603.341266][   T29] audit: type=1326 audit(1734570224.442:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12108 comm="syz.2.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ad85d29 code=0x7ffc0000
[  603.392423][   T51] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  603.416740][   T29] audit: type=1326 audit(1734570224.442:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12108 comm="syz.2.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ad85d29 code=0x7ffc0000
[  603.459358][   T29] audit: type=1326 audit(1734570224.442:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12108 comm="syz.2.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f7e4ad85d29 code=0x7ffc0000
[  603.771648][   T29] audit: type=1326 audit(1734570224.452:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12108 comm="syz.2.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ad85d29 code=0x7ffc0000
[  604.753365][   T51] usb 9-1: Using ep0 maxpacket: 8
[  604.767929][   T51] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  604.773291][   T29] audit: type=1326 audit(1734570224.452:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12108 comm="syz.2.1678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e4ad85d29 code=0x7ffc0000
[  604.799369][    C0] vkms_vblank_simulate: vblank timer overrun
[  605.079599][   T51] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  605.093222][   T51] usb 9-1: Product: syz
[  605.097437][   T51] usb 9-1: Manufacturer: syz
[  605.102725][   T51] usb 9-1: SerialNumber: syz
[  605.109627][   T51] usb 9-1: config 0 descriptor??
[  605.329724][   T51] usb 9-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  605.434049][T10243] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  606.649035][T12159] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1689'.
[  608.251908][T12189] loop9: detected capacity change from 0 to 512
[  608.301024][T12189] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  608.378913][T12189] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e128, mo2=0002]
[  608.387295][T12189] System zones: 1-12
[  608.391672][T12189] EXT4-fs (loop9): orphan cleanup on readonly fs
[  609.411299][T12189] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.1698: invalid indirect mapped block 12 (level 1)
[  609.895292][   T51] dvb_usb_rtl28xxu 9-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  610.046188][T12189] EXT4-fs (loop9): Remounting filesystem read-only
[  610.053139][   T51] usb 9-1: USB disconnect, device number 4
[  610.060631][T12189] EXT4-fs (loop9): 1 truncate cleaned up
[  610.073790][T12189] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  610.170869][T12009] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  610.439827][T12218] tipc: Failed to remove unknown binding: 66,1,1/0:1717734895/1717734897
[  610.448402][T12218] tipc: Failed to remove unknown binding: 66,1,1/0:1717734895/1717734897
[  610.609085][T12009] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  610.633377][T12009] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  610.663291][T12009] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  610.677627][T12009] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  610.710019][T12009] usb 3-1: SerialNumber: syz
[  610.743884][T12213] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  610.759251][T12213] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  610.823361][T12213] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  610.964686][T12213] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  610.969341][T12009] usb 3-1: 0:2 : does not exist
[  610.976467][T12009] usb 3-1: unit 5 not found!
[  610.981932][T12213] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  610.998356][T12009] usb 3-1: USB disconnect, device number 4
[  611.657568][T12235] vlan2: entered promiscuous mode
[  611.727255][T12235] bond0: entered promiscuous mode
[  611.880592][T12235] bond0: left promiscuous mode
[  611.947208][T12244] net_ratelimit: 8 callbacks suppressed
[  611.947225][T12244] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  612.608741][T10243] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  612.676831][T12249] loop2: detected capacity change from 0 to 512
[  612.768383][T11307] Bluetooth: hci5: command 0x0c1a tx timeout
[  612.792262][T12252] loop9: detected capacity change from 0 to 256
[  612.830868][T11307] Bluetooth: hci3: command 0x0406 tx timeout
[  613.030818][T11307] Bluetooth: hci1: command 0x0c1a tx timeout
[  613.070998][ T5854] Bluetooth: hci2: command 0x0c1a tx timeout
[  613.078872][T11307] Bluetooth: hci7: command 0x0c1a tx timeout
[  614.161135][ T5899] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  615.201761][T12291] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1721'.
[  615.220863][ T5899] usb 3-1: not running at top speed; connect to a high speed hub
[  615.256552][ T5899] usb 3-1: config 1 interface 0 altsetting 68 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  615.267876][ T5899] usb 3-1: config 1 interface 0 altsetting 68 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  615.280982][ T5899] usb 3-1: config 1 interface 0 has no altsetting 0
[  615.363651][T12295] loop8: detected capacity change from 0 to 512
[  615.365968][ T5899] usb 3-1: New USB device found, idVendor=044f, idProduct=b654, bcdDevice= 0.40
[  615.379398][ T5899] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  615.387755][ T5899] usb 3-1: Product: syz
[  615.393317][ T5899] usb 3-1: Manufacturer: syz
[  615.397938][ T5899] usb 3-1: SerialNumber: syz
[  615.416610][T12295] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  615.427910][T12266] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  615.535058][T12295] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e128, mo2=0002]
[  615.612363][T12295] System zones: 1-12
[  615.616617][T12295] EXT4-fs (loop8): orphan cleanup on readonly fs
[  615.692355][T12295] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.1722: invalid indirect mapped block 12 (level 1)
[  615.755574][T12295] EXT4-fs (loop8): Remounting filesystem read-only
[  615.795149][T12295] EXT4-fs (loop8): 1 truncate cleaned up
[  615.821083][ T5899] usbhid 3-1:1.0: can't add hid device: -71
[  615.831108][ T5899] usbhid 3-1:1.0: probe with driver usbhid failed with error -71
[  615.870881][T12295] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  615.902340][ T5899] usb 3-1: USB disconnect, device number 5
[  617.142296][ T5899] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  617.291728][T12333] tipc: Failed to remove unknown binding: 66,1,1/0:433598680/433598682
[  617.300069][T12333] tipc: Failed to remove unknown binding: 66,1,1/0:433598680/433598682
[  617.363072][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  617.413758][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  617.447906][ T5899] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  617.513811][ T5899] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  617.620211][ T5899] usb 3-1: config 0 descriptor??
[  618.065265][ T5899] hid (null): bogus close delimiter
[  618.265513][ T5899] usb 3-1: string descriptor 0 read error: -22
[  618.667545][ T5899] uclogic 0003:256C:006D.000B: failed retrieving string descriptor #100: -71
[  618.708090][ T5899] uclogic 0003:256C:006D.000B: failed retrieving pen parameters: -71
[  618.740832][ T5899] uclogic 0003:256C:006D.000B: failed probing pen v1 parameters: -71
[  618.768476][ T5899] uclogic 0003:256C:006D.000B: failed probing parameters: -71
[  618.799519][ T5899] uclogic 0003:256C:006D.000B: probe with driver uclogic failed with error -71
[  619.618812][ T5899] usb 3-1: USB disconnect, device number 6
[  619.732371][ T9226] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  620.055062][T12377] loop2: detected capacity change from 0 to 256
[  620.285198][T12378] xt_recent: Unsupported userspace flags (00000042)
[  620.543891][T12402] overlayfs: failed to resolve './file0': -2
[  620.701237][ T5926] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  620.914744][T12420] loop2: detected capacity change from 0 to 512
[  620.978601][ T5926] usb 9-1: Using ep0 maxpacket: 32
[  620.984431][T12420] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  620.993465][ T5926] usb 9-1: config 0 has an invalid interface number: 12 but max is 0
[  621.003136][ T5926] usb 9-1: config 0 has no interface number 0
[  621.016074][ T5926] usb 9-1: config 0 interface 12 has no altsetting 0
[  621.027266][T12420] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e128, mo2=0002]
[  621.039299][ T5926] usb 9-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  621.049012][ T5926] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  621.057250][ T5926] usb 9-1: Product: syz
[  621.104438][T12420] System zones: 1-12
[  621.114061][ T5926] usb 9-1: Manufacturer: syz
[  621.121949][ T5926] usb 9-1: SerialNumber: syz
[  621.128568][T12428] loop9: detected capacity change from 0 to 128
[  621.168727][T12420] EXT4-fs (loop2): write access unavailable, skipping orphan cleanup
[  621.238200][T12428] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  621.253613][T12428] ext4 filesystem being mounted at /84/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  621.721856][T12420] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  622.202093][ T5926] usb 9-1: config 0 descriptor??
[  622.317537][T12435] tipc: Failed to remove unknown binding: 66,1,1/0:3067043719/3067043721
[  622.326155][T12435] tipc: Failed to remove unknown binding: 66,1,1/0:3067043719/3067043721
[  623.166713][T11527] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  623.893503][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  623.972178][T10243] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  624.120895][ T5926] f81534 9-1:0.12: f81534_set_register: reg: 1003 data: 30 failed: -71
[  624.149788][ T5926] f81534 9-1:0.12: f81534_find_config_idx: read failed: -71
[  624.375608][ T5926] f81534 9-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  624.383398][ T5926] f81534 9-1:0.12: probe with driver f81534 failed with error -71
[  624.401766][ T5926] usb 9-1: USB disconnect, device number 5
[  624.667074][T12470] vlan2: entered promiscuous mode
[  624.742808][T12470] bond0: entered promiscuous mode
[  624.747894][T12470] bond_slave_0: entered promiscuous mode
[  624.754128][T12470] bond_slave_1: entered promiscuous mode
[  624.763713][T12473] xt_CT: You must specify a L4 protocol and not use inversions on it
[  624.881444][T12470] bond0: left promiscuous mode
[  624.886475][T12470] bond_slave_0: left promiscuous mode
[  624.913917][T12470] bond_slave_1: left promiscuous mode
[  625.044223][T12483] vlan2: entered promiscuous mode
[  625.049698][T12483] bond0: entered promiscuous mode
[  625.055689][T12483] vlan2: entered allmulticast mode
[  625.069720][T12483] bond0: entered allmulticast mode
[  625.093688][T12483] bond0: left allmulticast mode
[  625.098930][T12483] bond0: left promiscuous mode
[  625.269545][T12485] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1766'.
[  626.160965][T12510] loop3: detected capacity change from 0 to 128
[  626.333334][T12510] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  626.404710][T12510] ext4 filesystem being mounted at /343/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  627.361045][   T51] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  627.570864][   T51] usb 3-1: Using ep0 maxpacket: 8
[  627.597109][   T51] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  627.636996][   T51] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  627.690905][   T51] usb 3-1: Product: syz
[  627.695142][   T51] usb 3-1: Manufacturer: syz
[  627.770936][   T51] usb 3-1: SerialNumber: syz
[  628.052664][   T51] usb 3-1: config 0 descriptor??
[  629.071276][   T51] dvb_usb_rtl28xxu 3-1:0.0: chip type detection failed -110
[  629.078933][   T51] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -110
[  630.166624][ T2142] usb 3-1: USB disconnect, device number 7
[  632.340838][ T5926] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  632.360979][ T5927] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  632.502667][ T5926] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  632.516156][ T5926] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  632.530778][ T5927] usb 10-1: Using ep0 maxpacket: 32
[  632.557080][ T5927] usb 10-1: config 0 has an invalid interface number: 12 but max is 0
[  632.578805][ T5926] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  632.601097][ T5927] usb 10-1: config 0 has no interface number 0
[  632.615086][ T5927] usb 10-1: config 0 interface 12 has no altsetting 0
[  632.641249][ T5926] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  632.651388][ T5927] usb 10-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  632.663932][ T5926] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  632.672892][ T5927] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  632.681485][ T5926] usb 3-1: Product: syz
[  632.686057][ T5927] usb 10-1: Product: syz
[  632.690328][ T5927] usb 10-1: Manufacturer: syz
[  632.697179][ T5926] usb 3-1: Manufacturer: syz
[  632.704268][ T5927] usb 10-1: SerialNumber: syz
[  632.710898][ T5926] cdc_wdm 3-1:1.0: skipping garbage
[  632.716137][ T5926] cdc_wdm 3-1:1.0: probe with driver cdc_wdm failed with error -22
[  632.732747][ T5927] usb 10-1: config 0 descriptor??
[  632.751796][ T5927] f81534 10-1:0.12: required endpoints missing
[  632.993806][ T5927] usb 10-1: USB disconnect, device number 3
[  634.118371][T12603] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  634.220578][ T5926] usb 3-1: USB disconnect, device number 8
[  634.601426][T12640] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  634.689291][T12640] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  634.806987][T12640] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  634.960257][T12640] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  635.114058][T12640] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  636.617176][T11307] Bluetooth: hci5: command 0x0c1a tx timeout
[  636.824243][T11307] Bluetooth: hci3: command 0x0406 tx timeout
[  636.840813][T11307] Bluetooth: hci1: command 0x0c1a tx timeout
[  636.990816][T11307] Bluetooth: hci2: command 0x0c1a tx timeout
[  637.162902][T11307] Bluetooth: hci7: command 0x0c1a tx timeout
[  637.623489][ T5842] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  640.060986][ T2142] IPVS: starting estimator thread 0...
[  640.133744][T12713] xt_recent: Unsupported userspace flags (00000042)
[  640.241432][T12738] IPVS: using max 19 ests per chain, 45600 per kthread
[  642.070898][    T8] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  642.321222][ T5927] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  642.341020][    T8] usb 4-1: Using ep0 maxpacket: 8
[  642.371442][    T8] usb 4-1: New USB device found, idVendor=0458, idProduct=7003, bcdDevice=7a.1a
[  642.380550][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  642.400788][    T8] usb 4-1: Product: syz
[  642.451202][    T8] usb 4-1: Manufacturer: syz
[  642.532045][    T8] usb 4-1: SerialNumber: syz
[  642.570488][    T8] usb 4-1: config 0 descriptor??
[  642.576543][ T5927] usb 3-1: too many endpoints for config 1 interface 0 altsetting 253: 68, using maximum allowed: 30
[  642.591677][    T8] gspca_main: sn9c2028-2.14.0 probing 0458:7003
[  642.598123][ T5927] usb 3-1: config 1 interface 0 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 68
[  642.611648][ T5927] usb 3-1: config 1 interface 0 has no altsetting 0
[  642.632956][ T5927] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  642.642260][ T5927] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  642.650373][ T5927] usb 3-1: Product: syz
[  642.671679][ T5927] usb 3-1: Manufacturer: syz
[  642.676381][ T5927] usb 3-1: SerialNumber: syz
[  643.023701][    T8] gspca_sn9c2028: read1 error -71
[  643.070468][    T8] gspca_sn9c2028: read1 error -71
[  643.211658][    T8] sn9c2028 4-1:0.0: probe with driver sn9c2028 failed with error -71
[  643.245446][    T8] usb 4-1: USB disconnect, device number 6
[  643.353649][ T5927] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 9 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  647.260807][    T8] usb 3-1: USB disconnect, device number 9
[  647.278690][    T8] usblp0: removed
[  647.600908][ T5927] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  647.775425][ T5927] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  647.793159][ T5927] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  647.838892][T12868] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  648.044170][ T5927] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  649.277451][ T5927] usb 4-1: string descriptor 0 read error: -71
[  649.284117][ T5927] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  649.310898][ T5927] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  649.351641][ T5927] usb 4-1: can't set config #1, error -71
[  649.368937][ T5927] usb 4-1: USB disconnect, device number 7
[  652.794449][   T29] audit: type=1326 audit(1734570273.912:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  652.879326][   T29] audit: type=1326 audit(1734570273.912:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  653.105670][T12958] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  653.110783][   T29] audit: type=1326 audit(1734570273.912:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  653.208468][T12958] batman_adv: batadv0: Adding interface: gretap1
[  653.261012][   T29] audit: type=1326 audit(1734570273.912:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  653.266240][T12958] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  653.554846][   T29] audit: type=1326 audit(1734570273.912:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12941 comm="syz.3.1884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  653.561139][T12958] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  653.649017][T12972] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1891'.
[  654.470888][ T5899] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  654.631253][ T5899] usb 4-1: Using ep0 maxpacket: 32
[  654.643276][ T5899] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  654.681019][ T5899] usb 4-1: config 0 has no interface number 0
[  654.694018][ T5899] usb 4-1: config 0 interface 12 has no altsetting 0
[  654.701269][   T51] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  654.799721][ T5899] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  654.809033][ T5899] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  654.817830][ T5899] usb 4-1: Product: syz
[  654.822771][ T5899] usb 4-1: Manufacturer: syz
[  654.827395][ T5899] usb 4-1: SerialNumber: syz
[  654.842667][ T5899] usb 4-1: config 0 descriptor??
[  654.849616][ T5899] f81534 4-1:0.12: required endpoints missing
[  654.900789][T10544] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  654.920827][   T51] usb 3-1: Using ep0 maxpacket: 32
[  654.929246][   T51] usb 3-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  654.938648][   T51] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  654.946757][   T51] usb 3-1: Product: syz
[  654.950990][   T51] usb 3-1: Manufacturer: syz
[  654.955648][   T51] usb 3-1: SerialNumber: syz
[  654.976263][   T51] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  655.077468][ T5927] usb 4-1: USB disconnect, device number 8
[  655.373299][T10544] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  655.382275][T10544] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  655.391743][T10544] usb 9-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  655.422963][T10544] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  655.434860][T10544] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  655.450869][T10544] usb 9-1: Product: syz
[  655.455112][T10544] usb 9-1: Manufacturer: syz
[  655.483587][T10544] cdc_wdm 9-1:1.0: skipping garbage
[  655.489117][T10544] cdc_wdm 9-1:1.0: probe with driver cdc_wdm failed with error -22
[  655.820273][T13009] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1901'.
[  656.697352][T12978] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  656.740463][ T5927] usb 9-1: USB disconnect, device number 6
[  657.514190][T13026] xt_CT: You must specify a L4 protocol and not use inversions on it
[  657.534006][   T29] audit: type=1326 audit(1734570278.572:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  657.655874][T13032] loop4: detected capacity change from 0 to 512
[  657.722073][   T29] audit: type=1326 audit(1734570278.572:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  657.781006][T13032] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  657.791393][   T29] audit: type=1326 audit(1734570278.572:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  657.791444][   T29] audit: type=1326 audit(1734570278.572:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  657.791497][   T29] audit: type=1326 audit(1734570278.572:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13012 comm="syz.3.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f699ad85d29 code=0x7ffc0000
[  658.126769][T13036] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1906'.
[  658.231312][T13032] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.1905: iget: bad extended attribute block 512
[  658.241959][   T51] gspca_stk1135: reg_w 0x200 err -71
[  658.250304][   T51] gspca_stk1135: serial bus timeout: status=0x00
[  658.256760][   T51] gspca_stk1135: Sensor write failed
[  658.262558][   T51] gspca_stk1135: serial bus timeout: status=0x00
[  658.268919][   T51] gspca_stk1135: Sensor write failed
[  658.274628][   T51] gspca_stk1135: serial bus timeout: status=0x00
[  658.281703][   T51] gspca_stk1135: Sensor read failed
[  658.287942][   T51] gspca_stk1135: serial bus timeout: status=0x00
[  658.295128][   T51] gspca_stk1135: Sensor read failed
[  658.301292][   T51] gspca_stk1135: Detected sensor type unknown (0x0)
[  658.307947][   T51] gspca_stk1135: serial bus timeout: status=0x00
[  658.314588][   T51] gspca_stk1135: Sensor read failed
[  658.319834][   T51] gspca_stk1135: serial bus timeout: status=0x00
[  658.326250][   T51] gspca_stk1135: Sensor read failed
[  658.331587][   T51] gspca_stk1135: serial bus timeout: status=0x00
[  658.337942][   T51] gspca_stk1135: Sensor write failed
[  658.343315][   T51] gspca_stk1135: serial bus timeout: status=0x00
[  658.349655][   T51] gspca_stk1135: Sensor write failed
[  658.355280][   T51] stk1135 3-1:64.0: probe with driver stk1135 failed with error -71
[  658.366223][T13032] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1905: couldn't read orphan inode 15 (err -117)
[  658.422261][   T51] usb 3-1: USB disconnect, device number 10
[  658.502615][T13032] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  660.661502][T11438] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.672333][T10544] libceph: connect (1)[c::]:6789 error -101
[  661.680409][T10544] libceph: mon0 (1)[c::]:6789 connect error
[  661.863037][T13072] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  661.948957][T13072] batman_adv: batadv0: Adding interface: gretap1
[  661.956173][T13072] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  661.983137][T13072] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  662.272583][T10544] libceph: connect (1)[c::]:6789 error -101
[  662.408168][T13071] ceph: No mds server is up or the cluster is laggy
[  662.443075][T10544] libceph: mon0 (1)[c::]:6789 connect error
[  662.958494][T13098] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1921'.
[  663.036959][T13098] mac80211_hwsim hwsim9 wlan0: entered promiscuous mode
[  663.041462][T10544] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  663.092559][T13098] macvlan2: entered allmulticast mode
[  663.098010][T13098] mac80211_hwsim hwsim9 wlan0: entered allmulticast mode
[  663.118071][T13102] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1922'.
[  663.433290][T10544] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  663.447478][T10544] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  663.457868][T10544] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  663.469845][T10544] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  663.528028][T13111] netlink: 32 bytes leftover after parsing attributes in process `syz.9.1923'.
[  663.549842][T10544] usb 4-1: SerialNumber: syz
[  666.256608][T10544] usb 4-1: skipping empty audio interface (v1)
[  666.302720][T10544] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[  666.768732][T10544] usb 4-1: USB disconnect, device number 9
[  667.701618][T13157] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1938'.
[  671.595107][T13192] xt_recent: Unsupported userspace flags (00000042)
[  671.640803][    T8] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  671.936075][T13210] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1955'.
[  671.997200][    T8] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  672.007941][    T8] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  672.031660][    T8] usb 10-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  672.044374][    T8] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  672.060545][    T8] usb 10-1: SerialNumber: syz
[  673.132206][    T8] usb 10-1: 0:2 : does not exist
[  673.145216][    T8] usb 10-1: USB disconnect, device number 4
[  677.396589][T13248] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1968'.
[  677.625532][T13254] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1970'.
[  678.334019][T13263] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1973'.
[  679.366250][T13263] loop8: detected capacity change from 0 to 32768
[  679.577654][T13281] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1980'.
[  679.588066][T13263] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  679.603268][T13281] bridge0: entered promiscuous mode
[  679.663595][T13281] bridge0: left promiscuous mode
[  679.681810][T13283] netlink: 'syz.2.1981': attribute type 10 has an invalid length.
[  679.689689][T13283] netlink: 55 bytes leftover after parsing attributes in process `syz.2.1981'.
[  679.749636][T13263] ocfs2: Unmounting device (7,8) on (node local)
[  679.793045][T13284] netlink: 'syz.2.1981': attribute type 2 has an invalid length.
[  682.967574][T13307] loop4: detected capacity change from 0 to 512
[  683.004806][T13307] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  683.119636][T10544] libceph: connect (1)[c::]:6789 error -101
[  683.126793][T10544] libceph: mon0 (1)[c::]:6789 connect error
[  683.135473][T13307] EXT4-fs (loop4): 1 truncate cleaned up
[  683.144887][T13307] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  683.402885][T10544] libceph: connect (1)[c::]:6789 error -101
[  683.409530][T10544] libceph: mon0 (1)[c::]:6789 connect error
[  683.872697][T13320] netlink: 112 bytes leftover after parsing attributes in process `syz.2.1993'.
[  683.898980][T13310] ceph: No mds server is up or the cluster is laggy
[  683.925124][T10544] libceph: connect (1)[c::]:6789 error -101
[  683.931892][T10544] libceph: mon0 (1)[c::]:6789 connect error
[  684.319131][T13323] xt_CT: You must specify a L4 protocol and not use inversions on it
[  684.464420][T11438] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  685.541430][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  686.140975][T13340] xt_socket: unknown flags 0x50
[  686.650906][T10544] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  686.813324][T10544] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  686.840893][T10544] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  686.964128][T13354] loop4: detected capacity change from 0 to 512
[  686.991071][T13354] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  687.028849][T10544] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  687.038866][T10544] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  687.046985][T10544] usb 3-1: SerialNumber: syz
[  687.152107][T13354] EXT4-fs (loop4): 1 truncate cleaned up
[  687.169970][T13354] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  687.614621][T10544] usb 3-1: 0:2 : does not exist
[  687.630633][T10544] usb 3-1: USB disconnect, device number 11
[  688.295508][T11438] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  688.304896][    T8] libceph: connect (1)[c::]:6789 error -101
[  688.305063][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  688.581770][    T8] libceph: connect (1)[c::]:6789 error -101
[  688.588079][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  688.648115][T13377] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  689.275030][T13367] ceph: No mds server is up or the cluster is laggy
[  689.298860][    T8] libceph: connect (1)[c::]:6789 error -101
[  689.314354][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  690.791895][T13409] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2020'.
[  692.582367][T13420] input: syz0 as /devices/virtual/input/input17
[  692.589457][T13420] input: failed to attach handler leds to device input17, error: -6
[  694.872332][T13438] ceph: No mds server is up or the cluster is laggy
[  694.997489][ T5927] libceph: connect (1)[c::]:6789 error -101
[  695.066948][T13443] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2030'.
[  695.070896][ T5927] libceph: mon0 (1)[c::]:6789 connect error
[  695.170640][T13454] loop4: detected capacity change from 0 to 512
[  695.369387][T13454] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.2035: casefold flag without casefold feature
[  695.384567][T13454] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.2035: couldn't read orphan inode 15 (err -117)
[  695.407749][T13454] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  696.334416][T13484] loop8: detected capacity change from 0 to 512
[  696.361641][T13484] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  696.871106][T13484] EXT4-fs (loop8): 1 truncate cleaned up
[  696.878168][T13484] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  697.012271][T13496] ������: renamed from lo (while UP)
[  698.516257][ T9226] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.874375][T13520] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2046'.
[  701.089594][T11438] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  701.641573][T13534] xt_socket: unknown flags 0x50
[  702.232978][T13541] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2057'.
[  702.611293][T13541] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2057'.
[  702.682229][T13540] netlink: 'syz.3.2057': attribute type 4 has an invalid length.
[  702.687429][T13548] loop4: detected capacity change from 0 to 512
[  702.737145][T13548] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  702.782605][   T29] audit: type=1326 audit(1734570324.212:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13537 comm="syz.0.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  702.844786][   T29] audit: type=1326 audit(1734570324.232:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13537 comm="syz.0.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  702.867584][   T29] audit: type=1326 audit(1734570324.232:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13537 comm="syz.0.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  702.890065][   T29] audit: type=1326 audit(1734570324.232:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13537 comm="syz.0.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  702.912538][   T29] audit: type=1326 audit(1734570324.232:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13537 comm="syz.0.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  703.099890][T13548] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.2058: iget: bad extended attribute block 512
[  703.156472][T13548] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.2058: couldn't read orphan inode 15 (err -117)
[  703.195279][T13548] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  705.827317][T11438] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  707.321246][T13582] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  707.327396][T13582] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  707.333595][T13582] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  707.339666][T13582] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  707.346609][T13582] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  709.476428][ T5854] Bluetooth: hci7: command 0x0c1a tx timeout
[  709.482798][ T5854] Bluetooth: hci2: command 0x0c1a tx timeout
[  709.489085][ T5854] Bluetooth: hci1: command 0x0c1a tx timeout
[  709.496595][ T5854] Bluetooth: hci3: command 0x0406 tx timeout
[  709.503019][ T5854] Bluetooth: hci5: command 0x0c1a tx timeout
[  713.363690][T13638] loop9: detected capacity change from 0 to 512
[  713.434202][T13638] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  713.555156][T13638] EXT4-fs error (device loop9): ext4_orphan_get:1389: inode #15: comm syz.9.2079: iget: bad extended attribute block 512
[  713.677258][T13638] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.2079: couldn't read orphan inode 15 (err -117)
[  713.758970][T13638] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  715.244383][T10243] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  717.051535][T13682] set match dimension is over the limit!
[  717.653018][T13679] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  717.661094][T13679] IPv6: NLM_F_CREATE should be set when creating new route
[  717.668419][T13679] IPv6: NLM_F_CREATE should be set when creating new route
[  720.184391][T13712] loop4: detected capacity change from 0 to 512
[  720.421180][T13712] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  721.462576][T13712] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.2104: iget: bad extended attribute block 512
[  721.478348][T13712] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.2104: couldn't read orphan inode 15 (err -117)
[  721.491008][T13720] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  721.498672][T13720] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  721.508201][T13720] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  721.514319][T13720] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  721.519819][T13712] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  721.520330][T13720] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  723.375322][T11438] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  723.601353][ T5854] Bluetooth: hci7: command 0x0c1a tx timeout
[  723.607781][ T5854] Bluetooth: hci2: command 0x0c1a tx timeout
[  723.614484][ T5854] Bluetooth: hci1: command 0x0c1a tx timeout
[  723.620932][ T5854] Bluetooth: hci3: command 0x0406 tx timeout
[  723.628592][ T5854] Bluetooth: hci5: command 0x0c1a tx timeout
[  724.055296][T13746] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2116'.
[  725.725543][T13761] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2114'.
[  727.768425][T13775] loop3: detected capacity change from 0 to 512
[  729.139545][T13775] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  729.780892][T13794] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2131'.
[  730.631489][T13775] EXT4-fs: error -4 creating inode table initialization thread
[  730.671681][T13775] EXT4-fs (loop3): mount failed
[  730.861004][    T8] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  733.533497][T13819] netlink: 32 bytes leftover after parsing attributes in process `syz.8.2137'.
[  733.848210][T13826] loop9: detected capacity change from 0 to 512
[  733.985818][T13826] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  734.618771][T13826] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e128, mo2=0002]
[  734.638209][T13826] System zones: 1-12
[  734.653423][T13826] EXT4-fs (loop9): orphan cleanup on readonly fs
[  734.903396][T13826] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.2140: invalid indirect mapped block 12 (level 1)
[  735.021816][T13837] loop3: detected capacity change from 0 to 256
[  735.141514][T13826] EXT4-fs (loop9): Remounting filesystem read-only
[  735.467651][T13826] EXT4-fs (loop9): 1 truncate cleaned up
[  735.722790][T13826] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  737.297104][T13845] netlink: 40 bytes leftover after parsing attributes in process `syz.8.2145'.
[  740.332039][T10243] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  745.027430][T13898] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  745.044172][T13894] netlink: 40 bytes leftover after parsing attributes in process `syz.9.2161'.
[  745.743212][T12009] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  746.761118][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  747.461277][T13901] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  747.624744][T12009] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  747.643964][T12009] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  747.736002][T12009] usb 9-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  748.151266][T10544] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  748.950899][T10544] usb 10-1: Using ep0 maxpacket: 16
[  748.963756][T10544] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  748.973896][T10544] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  749.499745][T10544] usb 10-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x6B, changing to 0xB
[  749.511708][T10544] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  749.745346][T12009] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  749.754547][T12009] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  749.862965][T12009] usb 9-1: can't set config #1, error -71
[  749.870254][T12009] usb 9-1: USB disconnect, device number 8
[  749.881794][T13931] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  749.887906][T13931] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  749.894068][T13931] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  749.900075][T13931] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  749.906229][T13931] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  750.048129][T10544] usb 10-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b
[  750.057428][T10544] usb 10-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3
[  750.065804][T10544] usb 10-1: Product: syz
[  750.070080][T10544] usb 10-1: Manufacturer: syz
[  750.074879][T10544] usb 10-1: SerialNumber: syz
[  750.109248][T10544] usb 10-1: config 0 descriptor??
[  750.161374][T10544] usb 10-1: can't set config #0, error -71
[  750.183415][T10544] usb 10-1: USB disconnect, device number 5
[  752.002647][ T5141] Bluetooth: hci7: command 0x0c1a tx timeout
[  752.009096][T11307] Bluetooth: hci2: command 0x0c1a tx timeout
[  752.017463][ T5854] Bluetooth: hci1: command 0x0c1a tx timeout
[  752.023742][ T5141] Bluetooth: hci3: command 0x0406 tx timeout
[  752.029975][T11307] Bluetooth: hci5: command 0x0c1a tx timeout
[  752.482572][    T9] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  752.724868][    T9] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  752.739474][    T9] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  752.754423][    T9] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  752.785620][    T9] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  752.799583][    T9] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  752.813750][    T9] usb 3-1: Product: syz
[  752.827624][    T9] usb 3-1: Manufacturer: syz
[  752.871016][    T9] cdc_wdm 3-1:1.0: skipping garbage
[  752.876342][    T9] cdc_wdm 3-1:1.0: probe with driver cdc_wdm failed with error -22
[  753.972740][T13996] xt_recent: Unsupported userspace flags (00000042)
[  754.111220][T11307] Bluetooth: hci7: command 0x0c1a tx timeout
[  754.191161][T13977] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  754.206460][ T5849] usb 3-1: USB disconnect, device number 12
[  756.172483][T14033] loop3: detected capacity change from 0 to 64
[  756.430854][T11307] Bluetooth: hci5: unexpected event for opcode 0x1001
[  756.731907][T14027] overlayfs: failed to clone upperpath
[  760.725919][T14072] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2220'.
[  760.789795][T14073] 9pnet_fd: Insufficient options for proto=fd
[  761.850179][T14097] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  764.214864][T14110] loop4: detected capacity change from 0 to 512
[  764.262858][T14110] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  765.378195][T14110] EXT4-fs (loop4): 1 truncate cleaned up
[  765.402012][T14110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  765.791811][T14134] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  765.799185][T14134] IPv6: NLM_F_CREATE should be set when creating new route
[  765.806503][T14134] IPv6: NLM_F_CREATE should be set when creating new route
[  766.357111][T14144] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  767.090139][T11438] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  767.527371][T14156] loop9: detected capacity change from 0 to 6
[  768.501530][T14156] Dev loop9: unable to read RDB block 6
[  768.507428][T14156]  loop9: unable to read partition table
[  768.513570][T14156] loop9: partition table beyond EOD, truncated
[  768.519921][T14156] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  768.519921][T14156] 
) failed (rc=-5)
[  768.540569][T14161] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2248'.
[  768.794162][T14160] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  768.800342][T14160] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  768.806465][T14160] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  768.812544][T14160] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  768.818586][T14160] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[  768.891422][T10243] Dev loop9: unable to read RDB block 6
[  768.907738][T10243]  loop9: unable to read partition table
[  768.924103][T10243] loop9: partition table beyond EOD, truncated
[  769.360450][T14179] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2254'.
[  769.887679][T14187] loop4: detected capacity change from 0 to 512
[  769.925411][T14187] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  770.091263][T14187] EXT4-fs (loop4): 1 truncate cleaned up
[  770.100421][T14187] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  771.043936][T11307] Bluetooth: hci7: command 0x0c1a tx timeout
[  771.050135][T11307] Bluetooth: hci2: command 0x0c1a tx timeout
[  771.052307][ T5141] Bluetooth: hci1: command 0x0c1a tx timeout
[  771.056365][T11307] Bluetooth: hci3: command 0x0406 tx timeout
[  771.062342][ T5141] Bluetooth: hci5: command 0x0c1a tx timeout
[  771.109275][T14200] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  771.116614][T14200] IPv6: NLM_F_CREATE should be set when creating new route
[  771.123880][T14200] IPv6: NLM_F_CREATE should be set when creating new route
[  771.186021][T11438] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  771.432001][T14205] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2262'.
[  771.472129][T14203] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2261'.
[  772.642097][T14234] netlink: 32 bytes leftover after parsing attributes in process `syz.8.2270'.
[  774.319309][T14251] set match dimension is over the limit!
[  775.461510][   T51] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  776.112376][   T51] usb 3-1: Using ep0 maxpacket: 32
[  777.186263][   T51] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[  777.272393][   T51] usb 3-1: config 0 has no interface number 0
[  777.278581][   T51] usb 3-1: config 0 interface 12 has no altsetting 0
[  777.291630][   T51] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  777.301164][   T51] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  777.309454][   T51] usb 3-1: Product: syz
[  777.314001][   T51] usb 3-1: Manufacturer: syz
[  777.318619][   T51] usb 3-1: SerialNumber: syz
[  777.325482][   T51] usb 3-1: config 0 descriptor??
[  777.462002][   T51] f81534 3-1:0.12: required endpoints missing
[  777.723588][T14301] Cannot find set identified by id 0 to match
[  777.763485][    T8] usb 3-1: USB disconnect, device number 13
[  778.819725][T14312] loop9: detected capacity change from 0 to 512
[  778.839669][T14312] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  778.902104][T14312] EXT4-fs (loop9): 1 truncate cleaned up
[  778.945784][T14317] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  778.962188][T14312] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  779.989313][T10243] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  780.091495][T14327] netlink: 'syz.2.2303': attribute type 10 has an invalid length.
[  781.440231][T14336] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2303'.
[  782.008696][T14327] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  782.031185][T14342] netlink: 'syz.9.2305': attribute type 29 has an invalid length.
[  782.046016][T14342] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2305'.
[  782.495820][T14330] syz.2.2303 (14330): drop_caches: 2
[  782.927282][ T5899] libceph: connect (1)[c::]:6789 error -101
[  782.933821][ T5899] libceph: mon0 (1)[c::]:6789 connect error
[  783.007497][T14367] ceph: No mds server is up or the cluster is laggy
[  783.401635][   T51] libceph: connect (1)[c::]:6789 error -101
[  783.407689][   T51] libceph: mon0 (1)[c::]:6789 connect error
[  783.920957][ T5902] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  784.041982][T14393] loop9: detected capacity change from 0 to 512
[  784.072323][T14393] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  784.120959][ T5902] usb 4-1: Using ep0 maxpacket: 32
[  784.134527][T14393] EXT4-fs (loop9): 1 truncate cleaned up
[  784.141188][ T5902] usb 4-1: config 0 has an invalid interface number: 12 but max is 0
[  784.150790][ T5902] usb 4-1: config 0 has no interface number 0
[  784.163851][ T5902] usb 4-1: config 0 interface 12 has no altsetting 0
[  784.172012][T14393] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  784.182544][ T5902] usb 4-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  784.200813][ T5902] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  784.208889][ T5902] usb 4-1: Product: syz
[  784.213975][ T5902] usb 4-1: Manufacturer: syz
[  784.218616][ T5902] usb 4-1: SerialNumber: syz
[  784.227670][ T5902] usb 4-1: config 0 descriptor??
[  784.234943][ T5902] f81534 4-1:0.12: required endpoints missing
[  784.605930][    T9] usb 4-1: USB disconnect, device number 10
[  786.766594][T10243] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  788.351708][T14448] loop3: detected capacity change from 0 to 512
[  788.479775][T14448] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  790.096687][T14448] EXT4-fs (loop3): 1 truncate cleaned up
[  790.103523][T14448] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  791.592600][T14488] xt_socket: unknown flags 0x50
[  792.735167][ T5842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  797.218723][T14556] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2354'.
[  797.283036][T14556] netlink: 16 bytes leftover after parsing attributes in process `syz.9.2354'.
[  797.338102][T14556] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2354'.
[  797.348044][T14556] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2354'.
[  797.413494][T14550] bond1: entered promiscuous mode
[  797.418826][T14550] bond1: entered allmulticast mode
[  797.486961][T14550] 8021q: adding VLAN 0 to HW filter on device bond1
[  800.248791][T14596] loop2: detected capacity change from 0 to 512
[  802.089901][   T29] audit: type=1326 audit(1734570423.162:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  802.172037][   T29] audit: type=1326 audit(1734570423.162:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  802.677559][   T29] audit: type=1326 audit(1734570423.162:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  802.774177][   T29] audit: type=1326 audit(1734570423.162:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  802.796932][   T29] audit: type=1326 audit(1734570423.162:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.2363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9483785d29 code=0x7ffc0000
[  803.806722][T14698] overlayfs: workdir and upperdir must reside under the same mount
[  805.097227][T14550] bond1 (unregistering): Released all slaves
[  806.560745][T14747] overlayfs: failed to clone upperpath
[  806.665656][T14748] lo speed is unknown, defaulting to 1000
[  806.700462][T14748] lo speed is unknown, defaulting to 1000
[  806.714624][T14748] lo speed is unknown, defaulting to 1000
[  807.265330][T14749] ������: renamed from lo (while UP)
[  807.298424][T14748] infiniband s
z1: set active
[  807.303443][T14748] infiniband s
z1: added ������
[  807.407540][T14748] RDS/IB: s
z1: added
[  807.412693][T14748] smc: adding ib device s
z1 with port count 1
[  807.419230][T14748] smc:    ib device s
z1 port 1 has pnetid 
[  807.467953][ T5849] ������ speed is unknown, defaulting to 1000
[  807.494778][T14748] ������ speed is unknown, defaulting to 1000
[  807.606997][T14748] ������ speed is unknown, defaulting to 1000
[  807.696962][    T9] ������ speed is unknown, defaulting to 1000
[  807.717749][T14748] ������ speed is unknown, defaulting to 1000
[  807.829602][T14748] ������ speed is unknown, defaulting to 1000
[  807.940383][T14748] ������ speed is unknown, defaulting to 1000
[  808.051180][T14748] ������ speed is unknown, defaulting to 1000
[  808.163130][T14748] ������ speed is unknown, defaulting to 1000
[  808.709713][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  808.944190][T14770] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2403'.
[  809.136097][T14777] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  809.143442][T14777] IPv6: NLM_F_CREATE should be set when creating new route
[  809.150638][T14777] IPv6: NLM_F_CREATE should be set when creating new route
[  809.371122][   T51] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  809.740908][   T51] usb 9-1: Using ep0 maxpacket: 32
[  809.751617][   T51] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  809.801362][   T51] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  809.829634][   T51] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  809.859309][   T51] usb 9-1: Product: syz
[  809.869423][   T51] usb 9-1: Manufacturer: syz
[  809.889187][   T51] usb 9-1: SerialNumber: syz
[  809.903774][   T51] usb 9-1: config 0 descriptor??
[  809.913631][T14781] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  809.951212][    T9] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  810.006330][T14814] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2422'.
[  810.168735][ T5926] usb 9-1: USB disconnect, device number 9
[  810.197751][    T9] usb 10-1: config 0 has no interfaces?
[  810.203705][    T9] usb 10-1: New USB device found, idVendor=04d5, idProduct=0001, bcdDevice= 0.00
[  810.213361][    T9] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  810.240432][    T9] usb 10-1: config 0 descriptor??
[  810.554231][   T51] usb 10-1: USB disconnect, device number 6
[  811.203139][T14826] netlink: 'syz.3.2426': attribute type 10 has an invalid length.
[  811.235176][T14826] bridge0: port 2(bridge_slave_1) entered disabled state
[  811.242655][T14826] bridge0: port 1(bridge_slave_0) entered disabled state
[  811.274060][T14834] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2426'.
[  811.290617][T14826] bridge0: port 2(bridge_slave_1) entered blocking state
[  811.298240][T14826] bridge0: port 2(bridge_slave_1) entered forwarding state
[  811.307484][T14826] bridge0: port 1(bridge_slave_0) entered blocking state
[  811.314842][T14826] bridge0: port 1(bridge_slave_0) entered forwarding state
[  811.392245][ T5834] Bluetooth: hci5: unexpected event for opcode 0x043d
[  811.473533][T14826] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  811.523500][T14834] bridge_slave_1: left allmulticast mode
[  811.544661][T14834] bridge_slave_1: left promiscuous mode
[  811.555813][T14834] bridge0: port 2(bridge_slave_1) entered disabled state
[  811.640227][T14834] bridge_slave_0: left allmulticast mode
[  811.684347][T14834] bridge_slave_0: left promiscuous mode
[  812.074000][T14834] bridge0: port 1(bridge_slave_0) entered disabled state
[  812.091047][T14665] 
[  812.093896][T14665] =============================
[  812.098795][T14665] WARNING: suspicious RCU usage
[  812.103958][T14665] 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 Not tainted
[  812.111444][T14665] -----------------------------
[  812.116289][T14665] net/sched/sch_generic.c:1290 suspicious rcu_dereference_protected() usage!
[  812.125126][T14665] 
[  812.125126][T14665] other info that might help us debug this:
[  812.125126][T14665] 
[  812.135473][T14665] 
[  812.135473][T14665] rcu_scheduler_active = 2, debug_locks = 1
[  812.143686][T14665] 3 locks held by kworker/u8:17/14665:
[  812.149237][T14665]  #0: ffff88805a169148 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  812.160416][T14665]  #1: ffffc9000457fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  812.173718][T14665]  #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  812.183555][T14665] 
[  812.183555][T14665] stack backtrace:
[  812.189449][T14665] CPU: 0 UID: 0 PID: 14665 Comm: kworker/u8:17 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  812.200647][T14665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  812.210728][T14665] Workqueue: bond0 bond_mii_monitor
[  812.215946][T14665] Call Trace:
[  812.219225][T14665]  <TASK>
[  812.222152][T14665]  dump_stack_lvl+0x241/0x360
[  812.226928][T14665]  ? __pfx_dump_stack_lvl+0x10/0x10
[  812.232219][T14665]  ? __pfx__printk+0x10/0x10
[  812.236817][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.242450][T14665]  lockdep_rcu_suspicious+0x226/0x340
[  812.247917][T14665]  dev_deactivate_queue+0x8f/0x160
[  812.253035][T14665]  dev_deactivate_many+0xc8/0xb10
[  812.258065][T14665]  dev_deactivate+0x184/0x280
[  812.262744][T14665]  ? __pfx_dev_deactivate+0x10/0x10
[  812.267942][T14665]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  812.273837][T14665]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  812.280171][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.285806][T14665]  ? rfc2863_policy+0x1db/0x3b0
[  812.290757][T14665]  linkwatch_do_dev+0x10a/0x170
[  812.295629][T14665]  ethtool_op_get_link+0x15/0x60
[  812.300655][T14665]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  812.306572][T14665]  bond_check_dev_link+0x1f3/0x3f0
[  812.311700][T14665]  ? __pfx_bond_check_dev_link+0x10/0x10
[  812.317339][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.322972][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.328622][T14665]  bond_mii_monitor+0x49a/0x3170
[  812.333576][T14665]  ? __lock_acquire+0x1397/0x2100
[  812.338606][T14665]  ? bond_mii_monitor+0x174/0x3170
[  812.343727][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.349363][T14665]  ? __pfx_bond_mii_monitor+0x10/0x10
[  812.354746][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.360392][T14665]  ? __pfx_lock_acquire+0x10/0x10
[  812.365417][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.371050][T14665]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  812.377127][T14665]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  812.383469][T14665]  ? process_scheduled_works+0x976/0x1840
[  812.389200][T14665]  process_scheduled_works+0xa68/0x1840
[  812.394782][T14665]  ? __pfx_process_scheduled_works+0x10/0x10
[  812.400778][T14665]  ? assign_work+0x364/0x3d0
[  812.405381][T14665]  worker_thread+0x870/0xd30
[  812.409981][T14665]  ? __kthread_parkme+0x169/0x1d0
[  812.415011][T14665]  ? __pfx_worker_thread+0x10/0x10
[  812.420211][T14665]  kthread+0x2f2/0x390
[  812.424287][T14665]  ? __pfx_worker_thread+0x10/0x10
[  812.429394][T14665]  ? __pfx_kthread+0x10/0x10
[  812.433989][T14665]  ret_from_fork+0x4d/0x80
[  812.438402][T14665]  ? __pfx_kthread+0x10/0x10
[  812.443001][T14665]  ret_from_fork_asm+0x1a/0x30
[  812.447777][T14665]  </TASK>
[  812.489322][T14665] 
[  812.492056][T14665] =============================
[  812.496955][T14665] WARNING: suspicious RCU usage
[  812.502040][T14665] 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 Not tainted
[  812.509311][T14665] -----------------------------
[  812.514780][T14665] ./include/linux/rtnetlink.h:156 suspicious rcu_dereference_protected() usage!
[  812.524077][T14665] 
[  812.524077][T14665] other info that might help us debug this:
[  812.524077][T14665] 
[  812.534612][T14665] 
[  812.534612][T14665] rcu_scheduler_active = 2, debug_locks = 1
[  812.543084][T14665] 3 locks held by kworker/u8:17/14665:
[  812.548710][T14665]  #0: ffff88805a169148 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  812.560060][T14665]  #1: ffffc9000457fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  812.573963][T14665]  #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  812.584005][T14665] 
[  812.584005][T14665] stack backtrace:
[  812.589970][T14665] CPU: 0 UID: 0 PID: 14665 Comm: kworker/u8:17 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  812.601031][T14665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  812.611101][T14665] Workqueue: bond0 bond_mii_monitor
[  812.616334][T14665] Call Trace:
[  812.619619][T14665]  <TASK>
[  812.622556][T14665]  dump_stack_lvl+0x241/0x360
[  812.627265][T14665]  ? __pfx_dump_stack_lvl+0x10/0x10
[  812.632493][T14665]  ? __pfx__printk+0x10/0x10
[  812.637107][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.642761][T14665]  lockdep_rcu_suspicious+0x226/0x340
[  812.648245][T14665]  dev_deactivate_many+0x18f/0xb10
[  812.653382][T14665]  dev_deactivate+0x184/0x280
[  812.658105][T14665]  ? __pfx_dev_deactivate+0x10/0x10
[  812.663313][T14665]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  812.669227][T14665]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  812.675594][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.681238][T14665]  ? rfc2863_policy+0x1db/0x3b0
[  812.686103][T14665]  linkwatch_do_dev+0x10a/0x170
[  812.690980][T14665]  ethtool_op_get_link+0x15/0x60
[  812.695939][T14665]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  812.701586][T14665]  bond_check_dev_link+0x1f3/0x3f0
[  812.706736][T14665]  ? __pfx_bond_check_dev_link+0x10/0x10
[  812.712405][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.718061][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.723711][T14665]  bond_mii_monitor+0x49a/0x3170
[  812.728676][T14665]  ? __lock_acquire+0x1397/0x2100
[  812.733728][T14665]  ? bond_mii_monitor+0x174/0x3170
[  812.738880][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.744530][T14665]  ? __pfx_bond_mii_monitor+0x10/0x10
[  812.749931][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.755582][T14665]  ? __pfx_lock_acquire+0x10/0x10
[  812.760611][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.766248][T14665]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  812.772241][T14665]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  812.778761][T14665]  ? process_scheduled_works+0x976/0x1840
[  812.784487][T14665]  process_scheduled_works+0xa68/0x1840
[  812.790060][T14665]  ? __pfx_process_scheduled_works+0x10/0x10
[  812.796167][T14665]  ? assign_work+0x364/0x3d0
[  812.800765][T14665]  worker_thread+0x870/0xd30
[  812.805371][T14665]  ? __kthread_parkme+0x169/0x1d0
[  812.810399][T14665]  ? __pfx_worker_thread+0x10/0x10
[  812.815511][T14665]  kthread+0x2f2/0x390
[  812.819588][T14665]  ? __pfx_worker_thread+0x10/0x10
[  812.824700][T14665]  ? __pfx_kthread+0x10/0x10
[  812.829311][T14665]  ret_from_fork+0x4d/0x80
[  812.833732][T14665]  ? __pfx_kthread+0x10/0x10
[  812.838332][T14665]  ret_from_fork_asm+0x1a/0x30
[  812.843112][T14665]  </TASK>
[  812.861042][T14665] BUG: sleeping function called from invalid context at net/core/dev.c:11403
[  812.869915][T14665] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 14665, name: kworker/u8:17
[  812.879743][T14665] preempt_count: 0, expected: 0
[  812.885054][T14665] RCU nest depth: 1, expected: 0
[  812.890237][T14665] 3 locks held by kworker/u8:17/14665:
[  812.895902][T14665]  #0: ffff88805a169148 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  812.907810][T14665]  #1: ffffc9000457fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  812.921045][T14665]  #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  812.931149][T14665] CPU: 0 UID: 0 PID: 14665 Comm: kworker/u8:17 Not tainted 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  812.942217][T14665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  812.952316][T14665] Workqueue: bond0 bond_mii_monitor
[  812.957588][T14665] Call Trace:
[  812.960887][T14665]  <TASK>
[  812.963836][T14665]  dump_stack_lvl+0x241/0x360
[  812.968570][T14665]  ? __pfx_dump_stack_lvl+0x10/0x10
[  812.973821][T14665]  ? __pfx__printk+0x10/0x10
[  812.978449][T14665]  ? preempt_schedule_common+0x84/0xd0
[  812.984070][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  812.989744][T14665]  __might_resched+0x5d4/0x780
[  812.994537][T14665]  ? preempt_schedule+0xe1/0xf0
[  812.999437][T14665]  ? __pfx___might_resched+0x10/0x10
[  813.004748][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.010391][T14665]  ? __local_bh_enable_ip+0x179/0x200
[  813.015793][T14665]  ? dev_deactivate_many+0x250/0xb10
[  813.021097][T14665]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  813.026843][T14665]  ? do_raw_spin_unlock+0x13c/0x8b0
[  813.032058][T14665]  synchronize_net+0x1b/0x50
[  813.036842][T14665]  dev_deactivate_many+0x4a7/0xb10
[  813.042147][T14665]  ? dev_deactivate_many+0x250/0xb10
[  813.047455][T14665]  dev_deactivate+0x184/0x280
[  813.052152][T14665]  ? __pfx_dev_deactivate+0x10/0x10
[  813.057361][T14665]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  813.063274][T14665]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  813.069623][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.075270][T14665]  ? rfc2863_policy+0x1db/0x3b0
[  813.080137][T14665]  linkwatch_do_dev+0x10a/0x170
[  813.085007][T14665]  ethtool_op_get_link+0x15/0x60
[  813.089960][T14665]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  813.095613][T14665]  bond_check_dev_link+0x1f3/0x3f0
[  813.100756][T14665]  ? __pfx_bond_check_dev_link+0x10/0x10
[  813.106419][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.112074][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.117810][T14665]  bond_mii_monitor+0x49a/0x3170
[  813.122786][T14665]  ? __lock_acquire+0x1397/0x2100
[  813.127832][T14665]  ? bond_mii_monitor+0x174/0x3170
[  813.132973][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.138623][T14665]  ? __pfx_bond_mii_monitor+0x10/0x10
[  813.144031][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.149691][T14665]  ? __pfx_lock_acquire+0x10/0x10
[  813.154740][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.160388][T14665]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  813.166399][T14665]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  813.172762][T14665]  ? process_scheduled_works+0x976/0x1840
[  813.178496][T14665]  process_scheduled_works+0xa68/0x1840
[  813.184110][T14665]  ? __pfx_process_scheduled_works+0x10/0x10
[  813.190118][T14665]  ? assign_work+0x364/0x3d0
[  813.194733][T14665]  worker_thread+0x870/0xd30
[  813.199358][T14665]  ? __kthread_parkme+0x169/0x1d0
[  813.204407][T14665]  ? __pfx_worker_thread+0x10/0x10
[  813.209540][T14665]  kthread+0x2f2/0x390
[  813.213722][T14665]  ? __pfx_worker_thread+0x10/0x10
[  813.218935][T14665]  ? __pfx_kthread+0x10/0x10
[  813.223546][T14665]  ret_from_fork+0x4d/0x80
[  813.228065][T14665]  ? __pfx_kthread+0x10/0x10
[  813.232672][T14665]  ret_from_fork_asm+0x1a/0x30
[  813.237460][T14665]  </TASK>
[  813.250839][T14665] 
[  813.253229][T14665] =============================
[  813.258153][T14665] WARNING: suspicious RCU usage
[  813.263098][T14665] 6.13.0-rc3-syzkaller-00062-gc061cf420ded #0 Tainted: G        W         
[  813.271760][T14665] -----------------------------
[  813.276623][T14665] kernel/rcu/tree_exp.h:949 Illegal synchronize_rcu_expedited() in RCU read-side critical section!
[  813.287445][T14665] 
[  813.287445][T14665] other info that might help us debug this:
[  813.287445][T14665] 
[  813.298036][T14665] 
[  813.298036][T14665] rcu_scheduler_active = 2, debug_locks = 1
[  813.306158][T14665] 3 locks held by kworker/u8:17/14665:
[  813.312890][T14665]  #0: ffff88805a169148 ((wq_completion)bond0){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  813.323882][T14665]  #1: ffffc9000457fd00 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  813.336906][T14665]  #2: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  813.346692][T14665] 
[  813.346692][T14665] stack backtrace:
[  813.352772][T14665] CPU: 1 UID: 0 PID: 14665 Comm: kworker/u8:17 Tainted: G        W          6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  813.365283][T14665] Tainted: [W]=WARN
[  813.369086][T14665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  813.379145][T14665] Workqueue: bond0 bond_mii_monitor
[  813.384367][T14665] Call Trace:
[  813.387644][T14665]  <TASK>
[  813.390571][T14665]  dump_stack_lvl+0x241/0x360
[  813.395270][T14665]  ? __pfx_dump_stack_lvl+0x10/0x10
[  813.400480][T14665]  ? __pfx__printk+0x10/0x10
[  813.405098][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.410919][T14665]  lockdep_rcu_suspicious+0x226/0x340
[  813.416305][T14665]  synchronize_rcu_expedited+0x12e/0x830
[  813.421952][T14665]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  813.428122][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.433760][T14665]  ? add_taint+0x99/0xe0
[  813.438010][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.443642][T14665]  ? __might_resched+0x5e0/0x780
[  813.448589][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.454220][T14665]  ? __local_bh_enable_ip+0x179/0x200
[  813.459606][T14665]  ? dev_deactivate_many+0x250/0xb10
[  813.464897][T14665]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  813.470627][T14665]  ? do_raw_spin_unlock+0x13c/0x8b0
[  813.475878][T14665]  dev_deactivate_many+0x4a7/0xb10
[  813.480999][T14665]  ? dev_deactivate_many+0x250/0xb10
[  813.486290][T14665]  dev_deactivate+0x184/0x280
[  813.490971][T14665]  ? __pfx_dev_deactivate+0x10/0x10
[  813.496173][T14665]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  813.502417][T14665]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  813.508752][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.514384][T14665]  ? rfc2863_policy+0x1db/0x3b0
[  813.519234][T14665]  linkwatch_do_dev+0x10a/0x170
[  813.524088][T14665]  ethtool_op_get_link+0x15/0x60
[  813.529028][T14665]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  813.534663][T14665]  bond_check_dev_link+0x1f3/0x3f0
[  813.539788][T14665]  ? __pfx_bond_check_dev_link+0x10/0x10
[  813.545433][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.551076][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.556721][T14665]  bond_mii_monitor+0x49a/0x3170
[  813.561679][T14665]  ? __lock_acquire+0x1397/0x2100
[  813.566707][T14665]  ? bond_mii_monitor+0x174/0x3170
[  813.571831][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.577465][T14665]  ? __pfx_bond_mii_monitor+0x10/0x10
[  813.582849][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.588492][T14665]  ? __pfx_lock_acquire+0x10/0x10
[  813.593524][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.599155][T14665]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  813.605143][T14665]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  813.611484][T14665]  ? process_scheduled_works+0x976/0x1840
[  813.617202][T14665]  process_scheduled_works+0xa68/0x1840
[  813.622773][T14665]  ? __pfx_process_scheduled_works+0x10/0x10
[  813.628849][T14665]  ? assign_work+0x364/0x3d0
[  813.633620][T14665]  worker_thread+0x870/0xd30
[  813.638224][T14665]  ? __kthread_parkme+0x169/0x1d0
[  813.643253][T14665]  ? __pfx_worker_thread+0x10/0x10
[  813.648365][T14665]  kthread+0x2f2/0x390
[  813.652439][T14665]  ? __pfx_worker_thread+0x10/0x10
[  813.657552][T14665]  ? __pfx_kthread+0x10/0x10
[  813.662152][T14665]  ret_from_fork+0x4d/0x80
[  813.666570][T14665]  ? __pfx_kthread+0x10/0x10
[  813.671169][T14665]  ret_from_fork_asm+0x1a/0x30
[  813.675943][T14665]  </TASK>
[  813.716724][T14665] ------------[ cut here ]------------
[  813.722256][T14665] Voluntary context switch within RCU read-side critical section!
[  813.722396][T14665] WARNING: CPU: 1 PID: 14665 at kernel/rcu/tree_plugin.h:331 rcu_note_context_switch+0xcf4/0xff0
[  813.740739][T14665] Modules linked in:
[  813.744655][T14665] CPU: 1 UID: 0 PID: 14665 Comm: kworker/u8:17 Tainted: G        W          6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  813.757258][T14665] Tainted: [W]=WARN
[  813.761067][T14665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  813.771138][T14665] Workqueue: bond0 bond_mii_monitor
[  813.776372][T14665] RIP: 0010:rcu_note_context_switch+0xcf4/0xff0
[  813.782720][T14665] Code: 00 ba 02 00 00 00 e8 7b 13 fe ff 4c 8b b4 24 80 00 00 00 eb 91 c6 05 74 bd 7d 0e 01 90 48 c7 c7 00 ed 0b 8c e8 0d 2b da ff 90 <0f> 0b 90 90 e9 3b f4 ff ff 90 0f 0b 90 45 84 ed 0f 84 00 f4 ff ff
[  813.802360][T14665] RSP: 0018:ffffc9000457f100 EFLAGS: 00010046
[  813.808449][T14665] RAX: 0a91917a082be600 RBX: ffff888024b34044 RCX: ffff888024b33c00
[  813.816523][T14665] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  813.824504][T14665] RBP: ffffc9000457f250 R08: ffffffff81601a42 R09: fffffbfff1cfa210
[  813.832487][T14665] R10: dffffc0000000000 R11: fffffbfff1cfa210 R12: ffff888024b33c00
[  813.840468][T14665] R13: 0000000000000000 R14: 1ffff920008afe38 R15: dffffc0000000000
[  813.848963][T14665] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  813.857928][T14665] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  813.864525][T14665] CR2: 00007f40fc626f98 CR3: 000000005a15c000 CR4: 0000000000350ef0
[  813.872606][T14665] Call Trace:
[  813.875888][T14665]  <TASK>
[  813.878822][T14665]  ? __warn+0x165/0x4d0
[  813.883004][T14665]  ? rcu_note_context_switch+0xcf4/0xff0
[  813.888832][T14665]  ? report_bug+0x2b3/0x500
[  813.893359][T14665]  ? rcu_note_context_switch+0xcf4/0xff0
[  813.899013][T14665]  ? handle_bug+0x60/0x90
[  813.903353][T14665]  ? exc_invalid_op+0x1a/0x50
[  813.908039][T14665]  ? asm_exc_invalid_op+0x1a/0x20
[  813.913094][T14665]  ? __warn_printk+0x292/0x360
[  813.917878][T14665]  ? rcu_note_context_switch+0xcf4/0xff0
[  813.923541][T14665]  ? __pfx___schedule+0x10/0x10
[  813.928413][T14665]  ? __pfx_rcu_note_context_switch+0x10/0x10
[  813.934407][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.940050][T14665]  ? mark_lock+0x9a/0x360
[  813.944402][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.950044][T14665]  ? rcu_is_watching+0x15/0xb0
[  813.954838][T14665]  __schedule+0x34b/0x4c30
[  813.959277][T14665]  ? preempt_schedule_common+0x84/0xd0
[  813.964767][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.970419][T14665]  ? __pfx___schedule+0x10/0x10
[  813.975289][T14665]  ? schedule+0x90/0x320
[  813.979546][T14665]  ? __pfx_lock_release+0x10/0x10
[  813.984588][T14665]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  813.990595][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  813.996237][T14665]  ? kthread_data+0x52/0xd0
[  814.000757][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.006398][T14665]  ? wq_worker_sleeping+0x66/0x240
[  814.011527][T14665]  ? schedule+0x90/0x320
[  814.015788][T14665]  schedule+0x14b/0x320
[  814.020055][T14665]  synchronize_rcu_expedited+0x70a/0x830
[  814.025718][T14665]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  814.031897][T14665]  ? __pfx_autoremove_wake_function+0x10/0x10
[  814.037976][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.043619][T14665]  ? add_taint+0x99/0xe0
[  814.047877][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.053519][T14665]  ? __might_resched+0x5e0/0x780
[  814.058476][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.064140][T14665]  ? __local_bh_enable_ip+0x179/0x200
[  814.069536][T14665]  ? dev_deactivate_many+0x250/0xb10
[  814.074842][T14665]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  814.080590][T14665]  ? do_raw_spin_unlock+0x13c/0x8b0
[  814.085809][T14665]  dev_deactivate_many+0x4a7/0xb10
[  814.090941][T14665]  ? dev_deactivate_many+0x250/0xb10
[  814.096243][T14665]  dev_deactivate+0x184/0x280
[  814.100938][T14665]  ? __pfx_dev_deactivate+0x10/0x10
[  814.106234][T14665]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  814.112145][T14665]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  814.118493][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.124153][T14665]  ? rfc2863_policy+0x1db/0x3b0
[  814.129015][T14665]  linkwatch_do_dev+0x10a/0x170
[  814.133878][T14665]  ethtool_op_get_link+0x15/0x60
[  814.138915][T14665]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  814.144565][T14665]  bond_check_dev_link+0x1f3/0x3f0
[  814.149710][T14665]  ? __pfx_bond_check_dev_link+0x10/0x10
[  814.155367][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.161019][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.166663][T14665]  bond_mii_monitor+0x49a/0x3170
[  814.171637][T14665]  ? __lock_acquire+0x1397/0x2100
[  814.176676][T14665]  ? bond_mii_monitor+0x174/0x3170
[  814.181901][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.187553][T14665]  ? __pfx_bond_mii_monitor+0x10/0x10
[  814.192949][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.198601][T14665]  ? __pfx_lock_acquire+0x10/0x10
[  814.203732][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.209383][T14665]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  814.215385][T14665]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  814.221739][T14665]  ? process_scheduled_works+0x976/0x1840
[  814.227467][T14665]  process_scheduled_works+0xa68/0x1840
[  814.233074][T14665]  ? __pfx_process_scheduled_works+0x10/0x10
[  814.239072][T14665]  ? assign_work+0x364/0x3d0
[  814.243677][T14665]  worker_thread+0x870/0xd30
[  814.248295][T14665]  ? __kthread_parkme+0x169/0x1d0
[  814.253337][T14665]  ? __pfx_worker_thread+0x10/0x10
[  814.258457][T14665]  kthread+0x2f2/0x390
[  814.262559][T14665]  ? __pfx_worker_thread+0x10/0x10
[  814.267682][T14665]  ? __pfx_kthread+0x10/0x10
[  814.272293][T14665]  ret_from_fork+0x4d/0x80
[  814.276737][T14665]  ? __pfx_kthread+0x10/0x10
[  814.281343][T14665]  ret_from_fork_asm+0x1a/0x30
[  814.286130][T14665]  </TASK>
[  814.289152][T14665] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  814.296434][T14665] CPU: 1 UID: 0 PID: 14665 Comm: kworker/u8:17 Tainted: G        W          6.13.0-rc3-syzkaller-00062-gc061cf420ded #0
[  814.308946][T14665] Tainted: [W]=WARN
[  814.312753][T14665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  814.322818][T14665] Workqueue: bond0 bond_mii_monitor
[  814.328400][T14665] Call Trace:
[  814.331683][T14665]  <TASK>
[  814.334618][T14665]  dump_stack_lvl+0x241/0x360
[  814.339319][T14665]  ? __pfx_dump_stack_lvl+0x10/0x10
[  814.344542][T14665]  ? __pfx__printk+0x10/0x10
[  814.349147][T14665]  ? _printk+0xd5/0x120
[  814.353584][T14665]  ? __init_begin+0x41000/0x41000
[  814.358633][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.364282][T14665]  ? vscnprintf+0x5d/0x90
[  814.368803][T14665]  panic+0x349/0x880
[  814.372723][T14665]  ? __warn+0x174/0x4d0
[  814.376894][T14665]  ? __pfx_panic+0x10/0x10
[  814.381338][T14665]  ? ret_from_fork_asm+0x1a/0x30
[  814.386290][T14665]  __warn+0x344/0x4d0
[  814.390287][T14665]  ? rcu_note_context_switch+0xcf4/0xff0
[  814.395943][T14665]  report_bug+0x2b3/0x500
[  814.400292][T14665]  ? rcu_note_context_switch+0xcf4/0xff0
[  814.405955][T14665]  handle_bug+0x60/0x90
[  814.410206][T14665]  exc_invalid_op+0x1a/0x50
[  814.414722][T14665]  asm_exc_invalid_op+0x1a/0x20
[  814.419594][T14665] RIP: 0010:rcu_note_context_switch+0xcf4/0xff0
[  814.425864][T14665] Code: 00 ba 02 00 00 00 e8 7b 13 fe ff 4c 8b b4 24 80 00 00 00 eb 91 c6 05 74 bd 7d 0e 01 90 48 c7 c7 00 ed 0b 8c e8 0d 2b da ff 90 <0f> 0b 90 90 e9 3b f4 ff ff 90 0f 0b 90 45 84 ed 0f 84 00 f4 ff ff
[  814.445484][T14665] RSP: 0018:ffffc9000457f100 EFLAGS: 00010046
[  814.451569][T14665] RAX: 0a91917a082be600 RBX: ffff888024b34044 RCX: ffff888024b33c00
[  814.459555][T14665] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  814.467534][T14665] RBP: ffffc9000457f250 R08: ffffffff81601a42 R09: fffffbfff1cfa210
[  814.475696][T14665] R10: dffffc0000000000 R11: fffffbfff1cfa210 R12: ffff888024b33c00
[  814.484206][T14665] R13: 0000000000000000 R14: 1ffff920008afe38 R15: dffffc0000000000
[  814.492200][T14665]  ? __warn_printk+0x292/0x360
[  814.497011][T14665]  ? __pfx___schedule+0x10/0x10
[  814.501885][T14665]  ? __pfx_rcu_note_context_switch+0x10/0x10
[  814.507882][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.513526][T14665]  ? mark_lock+0x9a/0x360
[  814.517878][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.523524][T14665]  ? rcu_is_watching+0x15/0xb0
[  814.528318][T14665]  __schedule+0x34b/0x4c30
[  814.532771][T14665]  ? preempt_schedule_common+0x84/0xd0
[  814.538268][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.543922][T14665]  ? __pfx___schedule+0x10/0x10
[  814.548796][T14665]  ? schedule+0x90/0x320
[  814.553065][T14665]  ? __pfx_lock_release+0x10/0x10
[  814.558106][T14665]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  814.564109][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.569756][T14665]  ? kthread_data+0x52/0xd0
[  814.574359][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.580003][T14665]  ? wq_worker_sleeping+0x66/0x240
[  814.585137][T14665]  ? schedule+0x90/0x320
[  814.589395][T14665]  schedule+0x14b/0x320
[  814.594010][T14665]  synchronize_rcu_expedited+0x70a/0x830
[  814.599674][T14665]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  814.605856][T14665]  ? __pfx_autoremove_wake_function+0x10/0x10
[  814.611941][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.617582][T14665]  ? add_taint+0x99/0xe0
[  814.621844][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.627484][T14665]  ? __might_resched+0x5e0/0x780
[  814.632445][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.638084][T14665]  ? __local_bh_enable_ip+0x179/0x200
[  814.643485][T14665]  ? dev_deactivate_many+0x250/0xb10
[  814.648784][T14665]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  814.654534][T14665]  ? do_raw_spin_unlock+0x13c/0x8b0
[  814.659755][T14665]  dev_deactivate_many+0x4a7/0xb10
[  814.664888][T14665]  ? dev_deactivate_many+0x250/0xb10
[  814.670194][T14665]  dev_deactivate+0x184/0x280
[  814.674892][T14665]  ? __pfx_dev_deactivate+0x10/0x10
[  814.680104][T14665]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  814.686017][T14665]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  814.692369][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.698011][T14665]  ? rfc2863_policy+0x1db/0x3b0
[  814.702876][T14665]  linkwatch_do_dev+0x10a/0x170
[  814.707754][T14665]  ethtool_op_get_link+0x15/0x60
[  814.712722][T14665]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  814.718368][T14665]  bond_check_dev_link+0x1f3/0x3f0
[  814.723506][T14665]  ? __pfx_bond_check_dev_link+0x10/0x10
[  814.729169][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.734821][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.740470][T14665]  bond_mii_monitor+0x49a/0x3170
[  814.745462][T14665]  ? __lock_acquire+0x1397/0x2100
[  814.750536][T14665]  ? bond_mii_monitor+0x174/0x3170
[  814.755695][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.761357][T14665]  ? __pfx_bond_mii_monitor+0x10/0x10
[  814.766756][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.772408][T14665]  ? __pfx_lock_acquire+0x10/0x10
[  814.777447][T14665]  ? srso_alias_return_thunk+0x5/0xfbef5
[  814.783090][T14665]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  814.789179][T14665]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  814.795533][T14665]  ? process_scheduled_works+0x976/0x1840
[  814.801271][T14665]  process_scheduled_works+0xa68/0x1840
[  814.806856][T14665]  ? __pfx_process_scheduled_works+0x10/0x10
[  814.812856][T14665]  ? assign_work+0x364/0x3d0
[  814.817462][T14665]  worker_thread+0x870/0xd30
[  814.822079][T14665]  ? __kthread_parkme+0x169/0x1d0
[  814.827118][T14665]  ? __pfx_worker_thread+0x10/0x10
[  814.832239][T14665]  kthread+0x2f2/0x390
[  814.836329][T14665]  ? __pfx_worker_thread+0x10/0x10
[  814.841452][T14665]  ? __pfx_kthread+0x10/0x10
[  814.846063][T14665]  ret_from_fork+0x4d/0x80
[  814.850487][T14665]  ? __pfx_kthread+0x10/0x10
[  814.855097][T14665]  ret_from_fork_asm+0x1a/0x30
[  814.859883][T14665]  </TASK>
[  814.863143][T14665] Kernel Offset: disabled
[  814.867620][T14665] Rebooting in 86400 seconds..